Analysis

  • max time kernel
    118s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    09-05-2024 20:59

General

  • Target

    2bae442ea47f0f87aa908022665ce7ae_JaffaCakes118.html

  • Size

    141KB

  • MD5

    2bae442ea47f0f87aa908022665ce7ae

  • SHA1

    ad06a4c8f9089f4b115811919959ce71e2cb5295

  • SHA256

    bfc0bc2577e2cf629faf2a69851fd0ed73699f997b9634b34eb3269c5de009c9

  • SHA512

    708f129d5014ea2b012209ffec5599ff2ef7c15940f0e86ba1a36a678234735a73a334c3362846150cbb89da0ee927ad432fc22083bdb0cbbab8bb15f49a10c6

  • SSDEEP

    1536:Sm6+yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGCW:SmnyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2bae442ea47f0f87aa908022665ce7ae_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1936
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1936 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2148

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4331ea00a0efec0fa1dddbd3284436db

    SHA1

    d095aefd46a890a18b9afc4c24abd9982458d590

    SHA256

    d94c225d679ce63a690f4782fd20c932e28e0c21893ca025950804f09af1b635

    SHA512

    f92ef3a8fa8099deb2edee0584514e16b94f15fdced8ff70e2ff481127590443ae1b1d91454ad23f3a41b8bb9471515af49cb7aca5f2913a5c504a2f379d9982

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    dc135ef82fb57544f4d7de11bfc9e75b

    SHA1

    01cd4acf3b39ca21c3a22709eaa26c9a17e3f12d

    SHA256

    403afc60a40abc240b0594e74a629081b0242e401bd71a025ac1c9cbf9aa0273

    SHA512

    c3c784fbc922ddc4a117b81ed4abef6a39a9e42fac5fc827df9b8736f44179c7cdad914c08e86d6eb37d01d73458019d3d9e6e518badb71061a1a6c00a5d8685

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    991330cd911dc95b37cf3e212c024c82

    SHA1

    d0fb03d002da615658361379d29f2632a1ebd898

    SHA256

    57afad3b715396b821ee1b4e440294af035f3b34cd5028875a2e0b441547b2b2

    SHA512

    2629d810629923e51ed31c7b75e798db586402bcb7e66fc5887c01d868c567f4fb725e40f8cd7b26b20e2daa3d08f90ae6b9a5275e66102232b02d62914bef6a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7456150d56e8817c1b1759801c95229d

    SHA1

    45a187d87a1514cc7e7ed08bb913ab85704dfd45

    SHA256

    cf611c36a413848b7274342cadc7c67e3f6629256fbb9d8d3b921a09eeaaa515

    SHA512

    6beef5172686f6ecff3df1bf69384b9fc4c318d765c47009882bb85813f3a65ca6e9376697d114c59714a328432e2ec21d669c018b5b4e51d06d92fa4934eca6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    618a67c486c340b74bc221ee7905bb96

    SHA1

    edf41d51d4b24ce94117196b06eb6aec67b28f50

    SHA256

    0044e8192a1f7f29a0d8a7bf73173ad18e2719cc6a720a391dbcb57948a160cd

    SHA512

    87e7a6a3d27669bee026a369c15328916224d729244fd5eb6ac479702cef862e32f617fd07087b5242dd0f83d451498eef0b3d79ecf17dac7c042ba27b92b29e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e8f7a092aeff72e4c0f6644a64dc3e8b

    SHA1

    fc581ffbffaa87898faf9692131203caf700a732

    SHA256

    74b5731364cba29421decaf31f1142fd38edd6ce6b7b89c430dd26998b1d8ef1

    SHA512

    27e9dbf59b4add322df9a1e9e8898d419fd44e4a1c76910276900a7c8c5ed2c64330e24ed7c4bb38bad5172bd7399918a879e3f2ad9ea2fc8ce4cd6760ed669f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    87c5742f3c7eeae102cd62236454aaad

    SHA1

    4494d1ebc66c249cda6f10b62a2ca083d2b83bd6

    SHA256

    32165b34a8d6c88b5ac269f9e31f5a46186e9f553062309ef9f5bd5af845c32a

    SHA512

    0cf8c74713b9d9facc69579cad09a9a0c5ed859e60b8c75c265ecd4c834f2c3742b922b02d0a0369351f7b608c1f3388a5cf29e0bb97997c3f8fcc14478cbb2e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4af7e9e6ab1a0c628dd42c82bd2ce9a3

    SHA1

    90fe3758ef2479c9d1916b76a7dd8207d47e1450

    SHA256

    afced4b3757de821bf6cc2ed085c3b7bcc3e9241946a1099ec0c977c45e700f4

    SHA512

    2e6a9801777b8097522a9eb7ad1c040fd72e1089b94fff92916b7b4e9d431260b1f9d28713e9cc4cbaf77f40ac92744c362bf83f8362edcb2779e0761151efad

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9081ae40270ac2682c859f615ae2836a

    SHA1

    bbc8c50d02a607169ebb03d3db2f3782e55f597c

    SHA256

    0963cce84847ba775c950fb3b6c39457fe6ae5a5a5597c1bb74c2f7330d02b6a

    SHA512

    6e780cfa618adbd595ef9fc9b74c43e1de264a1bbb64261b81ed7c6256d3f00d6da6db834adf70bf8258816d75d5423d7af2d441894f69adb66709bf1dafd8ef

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9a322dabdabd0c4599997b023680398a

    SHA1

    30307f6f435476b714d2c508a47633f5d21e551d

    SHA256

    f684b5100ceb19a89f145739fa3d67a709f9f07980da479a9a4adee173fb89a4

    SHA512

    68b0ab9dd8a4b4f671b799b1be4e1fbc2da1b86cd1467d156bb8f6dce40af0fcdf198654434d8862d93f87daeecac883ea65d547c565e1b5b3295503f4e36963

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c953ff154b6fc2fe65ffdc7da86072eb

    SHA1

    4c21032ba9496566fb56a529a4fe47b83b935a71

    SHA256

    1ff14e388fabb8a2c2160aec59d8acaa4ced3601e81f2b7542b071b93ae6bad1

    SHA512

    7295d8ad443eb4bd3674bfdc6934c0249becef8eb20083588ebe117002335d694ba4a5af79f8721d5e6f120c0f0abd2eb4948a50c272562ea937b3f286a5ef6b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7d4ce4cf261e452f733c6b7c77487292

    SHA1

    5f7a4770c7bd0371d62092c1b07ed54a77124fef

    SHA256

    6fa68cefe0bbf12d51bb108f7786e21b22bfe0af94f2694bf6c3e4354f8ea4e7

    SHA512

    b376048b22d4e9f1f18610fc2968d1043d17936d1a14ea0952f9795d70f502ca246c69467a53516feab53667610ed8394048fcc5d5b28e072d2fc97ca3b09532

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    325f7ba984ab2b773b93f50ef294117b

    SHA1

    a82b58a599a478469cdc43164bdb56b559b2da11

    SHA256

    81a4d52d8d29fe2d947a14e9d4090e2c54cee69b08023f7a77d7d1cb0de11a84

    SHA512

    b7e1d67b30df039478978779af4104aaa371aa0279c0697afa5f5e24021f21ed9128303489847f5617db899c6a6a54a39aed042759cae7c0d794cb4b57210678

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    8589e240afb853445377c2e485b54a9b

    SHA1

    ab1c0b466e33db4edecf8d38ec32b9405c9a66c8

    SHA256

    cd556aad99e23860a9f19af05565ccea4c6f630063772fe40ea6b67f443a368e

    SHA512

    d08cccb36749a6b5955284e77e9cb43e0138e4506f251b36b104ba4410f13832d5c8119d948b7cff99f130f1dbf68d72e8ef76f304f9b2c78b96146cd9988c5a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    af60fca9895336ec7f64b12a9088caa1

    SHA1

    790227c6e3b038469a1103eec00eb05db1ad36a8

    SHA256

    74e3a312a9575399abaaa01be1439d2768d3f417958a155e364ed8134e4f16f2

    SHA512

    51d9dd3f3563880259ecd0532ec39a1b323bcee069f6496685014d7c1591d0c87d2e7c043d1adf9b9f08bb60ebdcffa5e3272510855c8c625692f1ece0365e27

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    dd97f0ea30517b6a80b4bf2462e67dcf

    SHA1

    72b9b352b0d5fb15aa6a300d3ee0ea320f97c3c8

    SHA256

    0137c75cb887f55991decc985ee747e099859c29719db53871ea85526e0b577c

    SHA512

    6a74ade0443e2ba20dfba88170c34d06dbb349336e454f782ae56d522bfbb4bdea03dae8e368ca1e5b0832b4ce28eb930638c91fd47219399483d3f2f14dc14d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    3f2d40889c803be51c0a8cf28a44bd0f

    SHA1

    39d463e4d2f6758328f3e6abb95f6f8b05435142

    SHA256

    ec5fc957abe00558f49e5b5f770e088ec9ef1fa6c61cfcb5d84bbf0e6bc3d581

    SHA512

    24826a4832aea025601cbf508ede61473b9d75f963d7af5b05a801a75d3abea85567e2eb45cb6a7ada7ec8218058a4c7c6f2f5b9f59ba05d40ceb8407771a678

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    65a20acc41ef3ee344325aaceec735e8

    SHA1

    ae6579c4cf25ad449b913fdf35e877056bd9619b

    SHA256

    095437b3c6ea4d70b4ddbfd6077f3dba129e5f564f919b1f0e6ea0d2c9b3e01a

    SHA512

    00f92e9a8ae382d0d4eb132030d1ab7e117852a7523ded176b5ec2d3bf846dc4b9b42a483e85bf7b7ac54b1fb3962ee09aa37fded0ae06e53d5ee246f7db7625

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    34f8fd7ae18f1519b02f572995b30b3b

    SHA1

    b4069adf507d0498bffa5bf48b4f2e216afeb488

    SHA256

    32bb8177a86787e32acfc02f2fd89175bb536e2b636b2ff44c7423861dd99454

    SHA512

    a1770b64b0187dec368767db657f901663c956383298ace88092e9ded4871bd48850655d700b15e30f8923d8a779df4be3e060abe9849551a1b908b20c5883aa

  • C:\Users\Admin\AppData\Local\Temp\CabD4CF.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\TarD520.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a