Analysis

  • max time kernel
    133s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11-05-2024 19:11

General

  • Target

    361c955000c80fbcee2f28799a4a8916_JaffaCakes118.html

  • Size

    5KB

  • MD5

    361c955000c80fbcee2f28799a4a8916

  • SHA1

    dcf039d4690d99404d7e8ac35c4a850f57c623a3

  • SHA256

    c76b3c7c8adf447edd402982e968dff2ec53926e4f2748c35628d6a73d5d507f

  • SHA512

    dc0493ae664c9f5ddd796559a46a43b7586443ece23f8b01786c0e02fea54fa69300d3b49646ecd0c28fc0564ac90ea1bed983ee1d467b8cc04fb35d2ebd3630

  • SSDEEP

    96:GKEEcwiErrHk3bzXy/a5g0GT8zrSZSZST988E0MHNVD7B:9EEcwiEHHk3vC/d0GT9IIGMMtL

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\361c955000c80fbcee2f28799a4a8916_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2924
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2924 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2904

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    63a36cdde588f6d08d386c82f722a8ad

    SHA1

    e430515da5f7f6258542e707ff0d266387c5e9b5

    SHA256

    772bdaf1a3a3795cdb079568ea23be24f43e732ac684fd2ed999141b8d1f0345

    SHA512

    38d1df0edc99994458c89b78a65226c08fe9f6933280368363e9d1e559dbf879b80533ac37c9e06a25db02f55960a824d98387aadfd374cfea8b08dec5e5bc27

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2c11b26bb379ebafe4a42ca0a18d6b31

    SHA1

    1b177d5ee498728ea9850c78d82cd5ee7d55be6a

    SHA256

    e42806641197ddc087020919f0c9dc02a35de946480fd0b7fbba3303ff7a4f34

    SHA512

    d04e1b9d4ce156d6977df40e17b8498f48b42916f7842b7f2b61f3edbe837c60d9698345c6a408daffacf31421263873309a5ce173b0e50002bc14a91664a603

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e358320bccb53b8f9461d7f61e146bcd

    SHA1

    4b6dca9c655c31d096f5932662850d4eaa7f720a

    SHA256

    4ab17a964076bc0e5e0406598ac49b08da83dde0a9143290853864772db738d9

    SHA512

    fd2fd3354eac81584af076dc2a334a6addbbec1248475e9e924a9bbef327b7c3285d94973b9073593b3d25c3a0b4f7145daa1131f8f7f6f7b7ffbafb6fd0e9d9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    384eb57c9d30c1bca1c4faaa5e0764aa

    SHA1

    8e7461f21873dc862983dc1150aa1c9f8531b8e3

    SHA256

    ab0608fb33a0fb5b8cc0d5eef7a3c06f00ca2c0a429fd998a2229a18dea13030

    SHA512

    e9a0b05aafbe2042a5c82ae1cc868fe1880b522789895ef237d27fcc80090b6426cee92c965cdd5bde351c59e6e8cf2bdb088b91225a2636686b558740648a70

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e4f02dc1c6872aa7f854557e31fd9717

    SHA1

    89df6a175d0f84d7b6a2d1d5698716550eda67c4

    SHA256

    b498cf8796cea2263445ac02d55e650ecc48ee0dbf3a55d1dc112fdcc2343337

    SHA512

    6d0fae04828f28e9e7066e9098d7c10c14f170c3820fe5e3e8b4dd92b01c909c823264ea4219cc2b4748b941645bc2d8af7efb5cb8f738ef70a0ccabaec36781

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7ae4fe032c7d4c7a3647ee58d3cf04ef

    SHA1

    4922bc8728ad0384224d813aca47a00407804c7c

    SHA256

    612e57dddc81bda06920c1c22619c911450a78ea6e1affac15479568ec7f5a03

    SHA512

    f9eb7d86f7bffb35f69678c7dcf5f19ecfaf6ab3b6b5df8e7d50e4550ba2722c4ec3e8e5d736674ed327292ce054c77065223979b02ae2d6788daa7e782b527b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ee1f19144baabc30e8b8b5911b41fc76

    SHA1

    004b2e9d8a47069571f8c9261f383291233f13b1

    SHA256

    99e919a0f33e5d628c925d71e53d8d9e1f013d91246a0bc257a6b53d1c9b8ea3

    SHA512

    021ce583f7ae869beba2738702fcb4b40b9aa08df489fcfa789016a547226cd6dabf3b48a8b8a7181cef605f7b42546f38769bf08f2951dc929a3730d4cde09d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    829cae8f1166478cf4eb641c8e608d11

    SHA1

    9999539ebd8251dd2a730ecfd58ae312d101bade

    SHA256

    81a2fe9410dc264cb16904f1847a44e970d309a5914226c4535997e2526197d1

    SHA512

    f82a8a0da1bc680b7f79a20c6b8763dc97891a571f9cab3120df4b2c4693055933e26b6b67b71ca07452ead22cc284dc644dce12e4c82e8b2b28fed571720142

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    840d83969932b663044a790e6f9062f7

    SHA1

    06f294e740e3db1e0be44559c0c7527ee5527efa

    SHA256

    1ce5a0a4c7f38ff435d46e52ac4bb8bd08387a8df5115939081ef2c47cd2aa4a

    SHA512

    6521543eda0c5da6be262982f400f0d400c7534a9e3a05dbe0c1404aa69ee99901f8315100999cfa4d34f934abb176c5c040b3853a34eadd259db9ab83718979

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a3b167e2d7821533d7a7958689457e92

    SHA1

    ff68255ec97ebf913bb91ef0d9f58f3cb488f661

    SHA256

    76fb67ddaea16cb0e83af0529952e8802bc02521d3501a976e4098712b1853a7

    SHA512

    e021aad408cd201ab517efbffd1460a14c4fb38c55157ff31c8f3830789df66b59288d189a6a0f41f1624f40a8645a41757ae9b2b27cba4964c1835b17bc0d3d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    3d06eea3b30cb04ebaedbf9240413e5f

    SHA1

    7dc26e6b20ef1b996a9f793bc16fbe0b9b4128cf

    SHA256

    028ff756499045c1dc1a853c6aa8ac1691431382ec57cc950c3f4881e2ca79e4

    SHA512

    dfd30ae250e16cf1e1e54d1553664ce2aa863b787e6786d4ae8537f57c33ff00c79685364996cb8c1f912a40d5ee6b2acd082bf6a0b03fed10e43b186081ddd3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    546deaba2200fd07099ecdc435fc8538

    SHA1

    1a767d44625f538e189c8d4cca292cdcbe39e79a

    SHA256

    122dcad1e6c79daa5fdc4f46190515e410d66981cb91900fa4db743f46405532

    SHA512

    527010deb0a4e3a1ead16aaf37c77af4043da119f917895e14ae860ccfd9779805fcd2acfc42de9cd1c64763bed179a48b0bc641b59175f20abf5d1f0cd5aea7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f87e4b19c2ee43c01cf2df8193aa1319

    SHA1

    af8d114fd17991f9bf24d6a4de9af2c0a038469b

    SHA256

    57c37ed67c462451783fb7d6726866e404f4e7b6a63441dd578ed4f0529cc111

    SHA512

    f2ab06178b197dddae99b1963b3f730137b2feec1940f56e633c4d849584559051376a4b0bbd3cf124c08b82ba7775ba3b9424a0b27077c7d6610d1b2d468c6d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2b11d9eef00e7cfdc58954d29b422fbc

    SHA1

    2b7d0f6ad7361605dfb7f07a08b9cfd5ea3135a0

    SHA256

    b55aa909b90db0287ca96a23392a0d6eff40115e8cc3fdf8eca9cd36fb22b184

    SHA512

    e2029fa102179adcdd549b54c9c137aee5c693c76f379cb18d55d9ea4a2d1616c9987411f6f4028bdd82a57831ad54040ee4228d3abf8bb4b2f3cd193a10e4ae

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5bb8ff7da49f08c63a7c2cb1192df692

    SHA1

    da7b1564ae76d792caa58e7734ab9dae76696fbd

    SHA256

    2b8521fa8d5c7ec914a2c1ece67f597219d7fb9a3e623004283b002f2b7b7783

    SHA512

    cd3bd8c694a109cdee88a4b14be519c435c1d8ee9358a3dba7d795fa0b2e70c451621d6fd3df954354b84456d1e6f0553c7dd4bf8892501ab4303607ce736693

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a931321f7860dbf95380c7ce98faca54

    SHA1

    7fcffd577811920902c41fc75cf54fab4e823064

    SHA256

    59eceb4303fa03e5afb21fd31e40594f7494b2352f3967074c09df8b805d1433

    SHA512

    f9d964a4d71f84bef318fa88d74b6e7bb2f49af4233741e01d5bdeebeee616060b429dcd132104856e88673d5ef6d6aabee33688b1d704392770e25d518b569c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    058e779be3480ebd819c0fb64459fe28

    SHA1

    a338265c2bf854eb16a7c55fd642574cd3db01b7

    SHA256

    c01739c47a513599f701b585e5df9be028858a2af57ccfb2a8dda56500ff53df

    SHA512

    1c7cde3468e9c95813a84836f283efc2ad77118a66770687c8ed1330481cec80aa9cc7aeba61ef1596cd30cad9592be3ff69ccea4e488e2767d6434c59ae6b70

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    75d260dc0c058515302a532f997a729c

    SHA1

    b3e50bdd476d7fb3a53efdb512d526d83fcb1e80

    SHA256

    e7774b62b2ea0eca00357287a03bfc18a4e226697567c33de8da1d3a05c499cb

    SHA512

    e33ad35e16869b5f850d002c9d13628fdbccef82631b60d44d6d0f8677a1436f4f638a3747cdf6350f83d9ea5df663b5a40874f8f177fe85c15c0826ace8bce6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ceb13e5dc4ecd9b1daad08c1c2d2da49

    SHA1

    6683da88792c826223a540fe216fe42a3ff90090

    SHA256

    1283f4274b6920fe78df44b31a6fad2a75a0adbe2d9a028f2852e6484a5911ac

    SHA512

    b03f2447b3e73db25f6b924000e06d7dd61fe33a8c93df2df96342cbd355d686cdf7a2f835d9d7d103bffd10e5c9b060d789f21ffe143f53e20878405678b03f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    00298cdde5118470bd312c234147c70f

    SHA1

    cce34c8ef2babc59ba4b30be9836d89e354d0a14

    SHA256

    c15e1011105cfe5e809647b780288ddfbaa1487abe76699cff87564d6dfb48b6

    SHA512

    8147a3384cf0e728411e74cf6b2b409018af67f47843d456cf638701f2e6bd41b897700b3a58649db16679fe6efc4fd75edcf30d8f3244b4e1a3fca5d827ea5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2fc873a1f9a84989e8a0a98c6980b239

    SHA1

    439432c3a18d3c4830e1bd539c3e9f23b84408d7

    SHA256

    dbe74cc533a3c44c20589f1bce7e151e74f6d104e5edeee6d36153cfc071f882

    SHA512

    7df3bd566104e6c62092a6bb61d79540b51988b3d1e64b0658b70aed9301dbc125d7e877db64563385609500fd30deebdee3a1d0828a408a960b89f7a3dd2e35

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    fe8488f2655b2ad9ab459297f2a5c28c

    SHA1

    0f1e543d3a8a529233791330d94206b01c23d493

    SHA256

    3bafac001569e72b39e99c4138e2a4f9a8795bda442e3c0d7c9b8c4b672c057c

    SHA512

    0328832f16a61d09392e8554c3c88ac0863576fd72c384756b6f2f6a3396cbf2d658ad6e222dbd5d1782df9ae3e5bf512572938332fe71256e369f88f5ea885a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    cafb6ef9ab738cfc8176faf6c56098b5

    SHA1

    00991e9b645083dccc7034e3175310fd5da67c56

    SHA256

    29b2bd4704009ad44158172b53357deee3eca2a87fcf36d1253204ff61a19020

    SHA512

    033a2d47ca2ac8f9e2a1f1275fc29f2e8382d7488a43ca754c6b4bff2525e8f8b0fd91a16e65678ae76ee3e842d078be06c7546127d01424faa529e0ad01ce86

  • C:\Users\Admin\AppData\Local\Temp\Cab3B5D.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar3B5F.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\Tar3CBC.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a