Analysis

  • max time kernel
    122s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11-05-2024 00:00

General

  • Target

    31b5ee06ff368d2b9efc96601d7cbc21_JaffaCakes118.html

  • Size

    39KB

  • MD5

    31b5ee06ff368d2b9efc96601d7cbc21

  • SHA1

    989fbefcb820cc1b74f668a66dc91f58089a8f39

  • SHA256

    1a4ff13e7e25168db08ccfe4d885cb7f13439442c0b112639767a38d124ba517

  • SHA512

    7ee14d33cf0166b5ff551269e232c0ab1d79138881880d97042c39110eb7abf2dffd18a33bbda76a6fa068b4c2f8729cb46694e9f0f0ecfa7f33e13623686373

  • SSDEEP

    384:VfRLc4SXRl3GyQwXS8/jLoY2WdtGWd1RMDammdIofWU7VwCracDisfbcKy:pRLc4SXRlxL9dtPdsmBracD/4Ky

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\31b5ee06ff368d2b9efc96601d7cbc21_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1948
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1948 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2664

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f48349ab7e33d0d8f0972f767bd37c19

    SHA1

    0cc12d33e0fffeaff051f8424fbfb153a51a54a4

    SHA256

    4481ea10088b446ccd27c3ed0ba1dac23abbc74c7ac0c91e9b8cf0aade44758e

    SHA512

    114366aaa386904fa9a37721749820ca62e350c5398c2fff92cdced0acb9c591b8b0fef4b81c214b6b30df68d38af6df7c596fe112fdbc459fb851693e22ce0b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    48e772d5167b9211e5fce10258922955

    SHA1

    c001943d195595d75e55af8a6949785d16fcbc7d

    SHA256

    867921d8cb5058ac3daf74fbc5c12e681fba0896feec57b4be9365a881e0909f

    SHA512

    7f3ff9c2b8529fdac61d307cb8848d764f254a659d750d4749f3f96e95c819a57a811c2f129a36ffe372ffe1fc1c80fac9a6d3bccc5c44fa246be9b99cfb2ab2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    6aba7e8904cca7178d0841d90fafe818

    SHA1

    e0165d77725f291ea7e05eb9d03fb4a3ddf3e2ac

    SHA256

    9a4a5f407d87b261702471776ffb0e77c1510d0687a6a388db2f171a61286623

    SHA512

    2b67ced32f21aaf9a438470264d16b8df4c549ffdb871a0e35807ce97ee518522f4339bfe8c93a349bce86510ec3c74f30ea86c9cbcc924aeb6754e910e406b7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    0a9795f0ee14dc4ed4e4d7a78cc3b55c

    SHA1

    30a2d9daad3983f080f94f95fd7c2f19444ec504

    SHA256

    214eb017c75b79d6bbe669cd3236c3a169fa2bcd5b56ae9c75551453de488a6d

    SHA512

    dd037ccb5e550e9b8840afc10cf89046751761f426518885cb932336e300ab1b66ee3c2d3eed88941c35a5d15fbcb5c4b8fc8ba8ea9010e42d243b02fd95045f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a523b4d2d4628fcdcfa61ec9141174b3

    SHA1

    32704c27dec8ded1343168a6dda7561d2b427551

    SHA256

    02a2a201f3a80cfe52d7a191c05a245976837d60180de19c12eea5ae8be4a4ed

    SHA512

    3537e6386b24cc274cd6dbb664f1933139adde6c655c85977eeeae2da35bdc519862d33fa43d7de4cdcfb633cdbef81ab6e987350a3dd85b7d460880d3148ee8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f2d9e0b62d6a26a65c05b5a8a2c2c72a

    SHA1

    cc57011c5f10b10bbb0e4593244196ceb032a616

    SHA256

    68e30d78aea9908f5d4970676b4f3e6ce053d383db228868aaa092fd673464a1

    SHA512

    1004cd83df267c3548654e60dbe589435d6df014e7e18057be5f7e9c9c00f0f1c2806e7e298c0e390ec5fdd9a3e3eae36f5272908ab13e4f73e7ef1a84a11232

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c352ec79b06d924130ca53f1f3a1da88

    SHA1

    5c53681a557aa6ef91ab0bdacce08e30d24ccb5c

    SHA256

    b0342d7e967a0ee1bad185c1390bd76e60d6f9fab8cc9edf550a4f590721c34c

    SHA512

    8348fb98e77c203463d819142ca30d7c9a0b8651a2891dee67372c92b0cb3a11a90468b5d36cc0afc4227b36f4bd04c9af45d18e534de24a34972fc2423816f8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ad233c1c76b5544d44ced20bbe7a1c6f

    SHA1

    e854f41fdace0ec8e2dd987e92a43eeb6516ea37

    SHA256

    1fa3545289f727aa5b8a33573ac71f2537405f6b7b5f442fbf297742a129a8ac

    SHA512

    50779fde6ce6fb3b8a25e6d70f53646cf97140f02ee6ebcf6152ff7b1ce071aa1200c790447f85720ce440ca0cbe156aae7a823825e69176e67987e081406068

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    cb264203d6675b20378dee36e9572485

    SHA1

    b6aa39eea1c66c528e8ce08f310aab7b811a3e3e

    SHA256

    6771c96bbdfb695c12f6ed52f3def870a2af5f68c59700c0a57c220f8161a554

    SHA512

    b52e376cd8a1f807f8b39d8474ffb5086bea43fcdb78b72a741cf33e5fa1f1e66f1d8421a292d3635b2c605c877c630c54ba7f8e1cbb3a1205e1660338fa3da7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d2865e7fda51715db7b3b053e8a1af59

    SHA1

    19a6f122c120b02c9a00fbfce367ba23a5613140

    SHA256

    1f084f8d28a261a6c5aa254ab1ca058284c8588f8a6c1144331b07e0492e130a

    SHA512

    48501112b14bd6063eb03c2c12b8a3ba4de307498853fa43262fa75f63341d3c2ae0ea65ab4c482d34cb21dd6252f2bf487b737252111c892313016d28fac035

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    573e781acc554748b85fd4284f13a591

    SHA1

    797275ab6d358335da80f331aa526060e1721485

    SHA256

    c6503fca8f2b7d4598006124f303323593608d6806f8b29b791ef7d33a4ee117

    SHA512

    82cc099d618f168fbc732403c4c58dfa91820eb241ff71a71e1fa39a0ae69fa0729d7675d50e1cb662ad2786e86e96415458cb5878b2084a06501247db713356

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    943ec2331ca7a9836839304074683ac3

    SHA1

    4052f4426024288faab0e0cee58b908c37d17776

    SHA256

    4171a57ae96536d363659dbad387a5b50902a7bd0fcaa067b4505efeb7dcf373

    SHA512

    287be797c05be2b79de6c59a93033ea07a2a7fe7468c750048a9d05f0b94cb49771e26b755b6d9afd4415566efab413da58f11b9529560f4d9b75db943c1a30a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    19e0f17eb89c9e31732faa0b3284fbd7

    SHA1

    ce76a8825f266c0723f33ea2bcbb16683b6e03c8

    SHA256

    b9bf965737bf563d0c9098955fba085f9612cc52981e905c06fab2b8394fc14a

    SHA512

    655ac95b5ef53032323d16d77b4ec3cd7d1e85d823d82cb01bbb5a589fa42691ecc2d1869b39457255693f0f3f1a4f1134419fa8ca4e078696e7bcf05413a841

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    53ebbf675cfcf80835edf77d5ccf1026

    SHA1

    f6de2760e89039130e86d501708d777861fceb55

    SHA256

    6ac2f0036325855d4eed76f56363ee96a544544f2b94b2932008509dd663a77e

    SHA512

    3fec2e1449d5d20f9cd821727b3c2f557ee4174d65a23559789664ea426d31577e1e29522ccac022c50ef122f5f336f40a82c15f7b8ab4f1af36b4829d97ff14

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c3d54e05da67084828329ef933902bf6

    SHA1

    5618a269c757b0a58f5060d17cca870a16c84915

    SHA256

    2cd92c8d6d00a32b4323daf250a6696303448fbf50de3d8d166cf4f813e1437d

    SHA512

    afaf1db376b1d5de3a9d9bee4fb0546a03fd42f5c9e8e03ff722ca09d95ed2f30b4913ff36ea3ca82404a74666d3df4a92f35e12f125d3e13a04b002d3c0b77a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9e908509c66feb02df0510f17403c8f7

    SHA1

    d89ecf549ff8471af56a7140a39c36678d46710f

    SHA256

    94bb979d352de307d230b9e1d724c8865b02b6112111e965c8413b8fef5c7d62

    SHA512

    67e1503a1e8c16617f143b2fdd54b512d3120a849d495b57f05aeb423b410e75508f0932c944bc4fe9d2dc9c617715af68456f23958f51c483e29164ab0c01df

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    74484aacaa32f014ca76d80074cf0279

    SHA1

    ac15936b43b55cb5331162fce88ffbec956df4a3

    SHA256

    607c7ed06b7051285bb249bd6a803a7fe3c9b185c55e89ebf5ca7b496bc780f6

    SHA512

    75ca38e27e335e2c0e0ca816beeff459ea6880a8994393371bfb871bc4af4740e2f17da411d0db1ee6d675451f323f7ae62d3fe916927847465af085f1fa9c78

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    933c1e0977e1fec61f0a870df09ef665

    SHA1

    35f5e34d3728f8df746e22d787c21c1cc0770f49

    SHA256

    e77cf0c2e3522006ac3d49772636a4b4e761116c7151187860e1621da9e7d87a

    SHA512

    c1d56108de05179a5a2c0dfb12e4c874aa162aa457fb8fa2b7aed486bca821a4e0beab3c068997bd6efebcdf93c46593e9b8558f7ad9aa6585997aa0145d3e91

  • C:\Users\Admin\AppData\Local\Temp\Cab9D2B.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar9DFE.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a