Analysis

  • max time kernel
    120s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    12-05-2024 12:58

General

  • Target

    3a3b69fbf0ce50eaddb3c6adab846af6_JaffaCakes118.html

  • Size

    174KB

  • MD5

    3a3b69fbf0ce50eaddb3c6adab846af6

  • SHA1

    9d789b2a9359066a939795acdff38922f4f26110

  • SHA256

    4a1ab2cb8ce72adc306bf603302aee30e6958ad126773dde851c09098f3ecc3b

  • SHA512

    2cddadd6f4fad23a4447a7cfb9db516c2f6d397914bd782b458d0ecc9bb94aee5f64218f277b7a7cc23452549be78fe219f294ebaf7dbf48c624ef746c5a875c

  • SSDEEP

    1536:SvyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGCsQO:SvyfkMY+BES09JXAnyrZalI+Y0IAJwNY

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3a3b69fbf0ce50eaddb3c6adab846af6_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1612
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1612 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2696

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f86e68fd3716878c006149004af786e3

    SHA1

    c9239070a5b7fb1a22d6805f91a1526841ca7613

    SHA256

    9c0e1bd0f4bffbd93c88c44941c4f4f4568538b2cc87f97c96fb7b997cdfe199

    SHA512

    67ab99653c37e5870c16692e341acab972e48d6b0f69a5c084b3a57699b34bc2a15a98d1af118f9f510e9c25d948093c619df817a12d1a78002cbc23aac3a659

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    3ef7c56068cf075364229844e275831a

    SHA1

    41527e8fc0f1379564f472890fae613d55196750

    SHA256

    be2e8e82bd41890411011f84b630d080820fe67573ebe5e0a8e3abf61460572f

    SHA512

    b9f73ee7fa0cbd24b1802b3259a16d89c9fb8ec7161899e5ab1becb9823c3d65b5922f74cd81f859c5e5efaef01f8b54f9a8d047ee9073a40d360698fd250b25

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    75367e022c0ef06a7e1e5989f2257d98

    SHA1

    b7ec47508a98bacda417db481161ca9838248e6f

    SHA256

    8ca48d5b773707d5de90f69533664b5e3bc4477e5b366b5a065d0bdccefc67e9

    SHA512

    ed3e2bbf863f7031d66038b59cafc820ba822b3844b73da44eea6e28d90cf730a8e15704de04716e8b36994f3281c526c1dc3ea5f4e107b9195f2e280113e9f5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    8d3a30c6717ab1af6b29ebc8670bf274

    SHA1

    115efa8ec1959fdd63e3e9f161a8d4f5ec09bacf

    SHA256

    a44c567767ffce49af1409f9ce6c1e6cbe8fa0b1ee0fe3aa1f740523a3f426f2

    SHA512

    77d1717a79e168e9519953d71588c15fb9b48a51b442ec0ab27b53b3f3337bbadad988f9ea42a7826e5c9c8d23ab2e80b94972c1da4dae9279b082cf34684375

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    52a57145a3eb50f496ce56b108551a20

    SHA1

    f20bdd4ec8cc7197aaba1dc1e6a6335eef336a55

    SHA256

    eb84986b402b6aff7b8d6ef9c212ef2958358ffa49174736f5a6fdd4211d4934

    SHA512

    0c0f1c6cbd1bfc857668422ce9e4e681a02943cb3e88fa84d0c8d15cc18fd5bb1283414e6b16670a6df45243d9d5bd57392cdca37d2c635fd2fc7b00b894f5c2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    1fca127eb8ce6683f00a9739cba1e75c

    SHA1

    f9e80f8dee8aa83c3b703d17e8bc70c5eff3a1cd

    SHA256

    97171280714719e5c81130c99899aff3518a27d813c54efac0010c4a2489faa3

    SHA512

    4878b4e1acc9c68eb85086d88df72780a79e8862c1036a5fd9e18c42823438a71c1df3f571054c50a4e1750e50ae328d6d4e0a0f9f84ef9f0fd8a3ce5be5cc98

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    73711317b2f98c48103323c61c10da66

    SHA1

    b5ecd046a5cc514d7906cbc03ed393a85235bbab

    SHA256

    b2a343fb7c49efc5cb51539bb199edccf9a645bb19fb364787ee1ab7a3a8aba7

    SHA512

    04950e2192dd9ff35147deb75f53610ed47615f234be315d2b6d164a66d6c2300dd366778d1becc5125d9356403f025a5b813861be5fb9bdb5b4f215bc53c31a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    cf693e8e964a0cf29ab90db0ba893868

    SHA1

    198855430ff1b5a276387d2dafd43f9cac2522ab

    SHA256

    2426648282594d1370d9ab55a7c2f909ac63fa92c4e792f1b794b6153937badf

    SHA512

    e8b8c6679e44b09dafeb2015c2a8414ccda4655056981f38bd64f851435ecd974526a7975eee56aff6546597c43ccbca0f82bbbfb41f824fb110f54691641d66

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    98562b2d3f3a7f5d57e5c4fdb26ef9c3

    SHA1

    7f82afae81e5208ebd8b07742280c6c1471f9287

    SHA256

    95b78bfbba61d85721dbc1bc604fdb388126fd00ba56b3b1f9fd14a3928ccc78

    SHA512

    d2cff3960c5edfc817260e63553159819572a7378e9029d141ebe40733121aff02565ab9f9f1d41e5be1b2d54088da1a516859b4da13020f16d6c0200745096f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    277a0ff1fb87533f2a4a2c50768677b6

    SHA1

    18483af451a3aed76d36e9053eca650d49f059f7

    SHA256

    92a2c401d3cd4301bea321412abf8e9567bea44c16293c076858e5d73765b963

    SHA512

    b0e96b15d224745ba783dc59e532c33429283f3671cfddfdd9294fdf2eae6ed561fa598a9719487a164b4f5c71eda0cdbfeed4c95b2a39049fe0cef7b518ed46

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    36e381513a3c4758da930b53fe8a773d

    SHA1

    ce9585b86fcd978dc064c13cb5527320bfd4363c

    SHA256

    e11ca47cd5d319c210f1b1a0d81bab303c1e310dd3a2c7d19561d16ce8910141

    SHA512

    9beaeca43519bf39e1aad8d961e8d9a650f3b3ed212f5d886503c26c0f11beeeaa71081105727a51de0cb3e2cc05ef143ea8c09edd2e3311c3f605bea56bef0f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5e4692b060622565a907bd860dd06a31

    SHA1

    c1ccdd3bb1d0740faf491476de5afb63e85a9506

    SHA256

    7a8c79a1b699d0994c878bc83ef063083c2098ee86e984199540f250a6dec514

    SHA512

    c2e4ce16a737aa628dc021f734d6d95ba38eb04f2ab05aaa2911b64aec6acdd8eaca2f7e57baf07a1ad57475fa0c9932f6514f275d12b12030fc2f27d3f84136

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    1a6f187f848b953390b22e18c91396a0

    SHA1

    d06e4133ad7193aa15f7a202982da9a9d430daa8

    SHA256

    ac8e7cab9a404427938722bc0eec128218419ec0adc5d5060d7386974b22141f

    SHA512

    490b487c6c64d994c5baa9d59170b27ff9cf9bb9a579a95cdd35fac8df0e3aa54f6c1d94beafe0b9cb334e21f62c8f380048f642dddd67bdcc3d64efa43052b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7dec5d574c059e68c39f41085417326a

    SHA1

    70134878dfa4cc0ee1258f24c3e82ebd96ee86da

    SHA256

    a15c5b04ebd6eb62955d9cd3d89d24dfda0b396791d2c2476a09bad4ef9e3dac

    SHA512

    af397b5e8c13afa723036a637d9b1deec2783ea6176a0d5d5d6958632a70647ebd63944af904925908670b6d13fa4b7337527c1e1ef8ef70f042e55b602deb5f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    99039205e8cad30bee6a9539c5ac47b4

    SHA1

    f278f103302035d67812746891ba6a123b05d40a

    SHA256

    9633f9340109bc8e4f1e85b49f36df5c277c8e132b12e36c7c4448504a049637

    SHA512

    735df25fa874f73293f8b65de9b3502ae5e490ab99b9e9eceffc2afc39e57246ed0324d79001dbbd67dd5613ea4dbd101ef19430bc14a83b5895cf90fa8a4178

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bf459709aa94757e2178f20a8115cdd9

    SHA1

    f30a8fa9b586a4ddf280ca527e6483f3c368f402

    SHA256

    f1c40c39fb10410dbc978e8302a90632997babec183a6ba0aaf56f5b9f150ee3

    SHA512

    119f39523874138c62f6965c27ad37df0e66d35e911a1b677556dce1d986ee6f01be2aa2dc671216d9a87847df35c68fd687707c0b83e9bf0fcc2703b9dbbddf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b297f850a72797f1781f3dde06ebe7fe

    SHA1

    508b6871252ab7bb5700424a1bb94d3281005bd1

    SHA256

    46b0fff1a5600c8a54a488d63ea59f6b5c43eede0ec821a5e7d3378d13d0f44c

    SHA512

    09f46b4a533d6c003e80046e2c55799f3ff845ff7ed7c3cee0c6520a9654aa383aa3bf27b59bb5f2fca6d081a43087bcfae13a542999eaa5822a50600fd80429

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    83c800fa5e53809780f79ec519e696bb

    SHA1

    bb43bf69c0a34a0470088278a4247d9f34bed1c0

    SHA256

    a45cd3965bfc890bd767a4fa678cb2c95c9f3c5c99c583f43b843300c4d4abb3

    SHA512

    6b4f4e6347689d9409f42f96480edae11059c68345e168378c994462feef3c6e7da7438d664420125fea5eb12f402606d74d3bbafca5c771fc99b114bc8a5bc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    8caee54bdcb017dacea1f53923f12dfe

    SHA1

    168acb23a4fff83770188f16b92d73fdb3c1960d

    SHA256

    2b981930892ca596fc7c14d6fda6cd4d36a22c1ffffaaed60524950ba1c66c3f

    SHA512

    910dbad551817fb9cf3c7cb64b23d3db32ee592ceb66bc1429d220a728264bf36bfea99b915bd21f501ea445d92873772d9b224c88929cb84544d0418425d79e

  • C:\Users\Admin\AppData\Local\Temp\Cab49BF.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar4A92.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a