Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    14-05-2024 22:24

General

  • Target

    435277ece4b6076c4b64ba2ab430e87f_JaffaCakes118.html

  • Size

    64KB

  • MD5

    435277ece4b6076c4b64ba2ab430e87f

  • SHA1

    b31fbffc3e85f99fa5c0a5ca30dd619b021280b6

  • SHA256

    f088b225eaaa481a326fb938507caa72191a1eeee849cfc0ff39d344f046df76

  • SHA512

    1b136922255d760a6cd52d35d8f532df0ccbd66a0bd6d42084a63ccbe90e6c8cccb24561104dbd2e1bf263194116f08dcca78413266bea3cfe97420a82f1771d

  • SSDEEP

    768:7FtG8iUTCOrjv5N9nZooBfpQuoB3Dq8zgNKv7LubiFPvmAeQD7ayfme5cTcXMOP1:E7ybiFPeaD7aGcgi2

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\435277ece4b6076c4b64ba2ab430e87f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2100
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2100 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2152

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    79d1017543e5ebfa85a5ca314dcd5915

    SHA1

    54f154cac84119487900b3791523b2b27a32ee1b

    SHA256

    d0d037b3f8fe4262788daebac90ffe6b3b93d0021984916239659ba4454a40d1

    SHA512

    71399f4ad7eea9f2266b47faadde5cdaa3cb7f537a2e6c6821e775e66d5be22326d9e252dad9b81da9bb0e9346b5f66607c6fb4984c3bc6157cb1af90517ae2e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    394b02aa448fd874d60e76fbab869e90

    SHA1

    655291160ccfb77161f3a0b4162e1b7102ddf6eb

    SHA256

    07668a8bc6926908b7bf914adeeda8c380320adf071a374258861c413fe0b303

    SHA512

    e4b33ae915330b2eb2671e75148042edbb99af26b4b57db4d297a69e17ab1fb2c6283a32cf3862019c17a594342a53febf11ddf8cf80588d4736cb054f3c3ea9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    624371a9612242a2bc7aaa897f1911ef

    SHA1

    92a0f7ef4b98322e971157b6450b85db6c3dee27

    SHA256

    0eafa6b4bbc71509296201f1c5d3ea9f91160d56da87719434e35f80c43c2d69

    SHA512

    fcaaabca6313645ce6c2992e26cf8befb3ae4eef150b9fd4f660a717aae535c16a7234fb73375cdbbdc837d65ad00d4f77c14bd9b306554c69e204b95fdec9d8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5da9a92b1dc9f1163671e5fa831c9f03

    SHA1

    5a7bacf66a98d86d105b22ea16d81f5e6ef0120e

    SHA256

    112a06dd6498adfa9ae53c7841d266dcef10f67d67bbd80d5fa31acec6c66d24

    SHA512

    6e7e570848dd90afe4a0abc5052e6ecc3bbcdd9b7a588058b38cd8bf3f89b0791201a39e786fbb3871db01018b40bd1cddd95b16ae449ccc89c0470d20d327e8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    33f291f4cd32c8bf18165e465d45fdab

    SHA1

    6fc03ca6dbadfb9ef5dd15e295d404d6fbcc1cbe

    SHA256

    0b701905110c2cfb055e504f09de4c81bd7083755d9576cb0727a202fcdf98c0

    SHA512

    a9248482554c58509c19878fabf0e03ed47b87f916358d077f372a5832f68dd93cbac969cacfc7b7b485e44d20e417a92df55c46cd868558f000b2a723af4d64

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7d68d4f33a22708ed21f7d2a3a208d3f

    SHA1

    96779dd7b1f98e492a7634e4510932cf44507c21

    SHA256

    b3970ee922d3418be6ae5bf1b76b664e1680510d0947ebfa70ac981d9c0face4

    SHA512

    eb464c33f00aee0ea973aab507542df021237f9665fbfb9a42ef55acd9ff6909b69cafbad75a8bc1b4d4699df208c473d33f32b537e089b8006906b87b13ec4c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    1869305e7987a33ba7990391552dfbdf

    SHA1

    96f4daddb62807bddf8c3826d08f22f1be5a1cfa

    SHA256

    8dd326fcd0efa8bcdc51fe716e8b951428f7c32acfd5a21f8bd51f0540e99d6d

    SHA512

    151fc30fb1abef6ccb7697b45d4ec44d6a3ae649063c45ee09e375df3a8cab9fb907c46c44f5e4a6dcfe8c1816e11f066d66db6da8f3fd37dc2a8f604e1281a0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    42c17053ff820e5aa134e06a0ae504f9

    SHA1

    2957e9cdb4a50680795fb46b65d4d69f61b68b75

    SHA256

    b818c8eaa84c68380b8ec5b175877c580d81a00c8c656df19f345a0e901ffbcd

    SHA512

    877685c665a1e5e78cfcbb338cd17c44f4347a0e1f1ed7dbd18292ec8bdc2c6c94973d6c5589fd2d77c42abcc6c8bab8d01b87f6b9c7a3ab0a181aa1276f0de7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b69aaa7739506c2f1eaa16bccfa17964

    SHA1

    80ed63ee45855bd6509df80b6f19fbce8b3e2ea6

    SHA256

    d5221a42edef12a613b081ed9ee6285ba38db6fb9bfe4385c52b74072f7c69e4

    SHA512

    6cb001faaa9ca942432dfcbfdc5cf930b07d252daab422f14a0906e8f1d585fb050d5c8200590032d55426c60eee2eaa6469d3acce5410adce334b79e981d74a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c990dded4f8c7a41893763201824b562

    SHA1

    56fc432fdbbcc88c5851dea02f3ac9ef3ddb7ebd

    SHA256

    3de1481266e6e59c47b47a7a0ac6bb7e00ccd34f18866eccf8124405b99184b1

    SHA512

    4bccf9566300804d9c01985ac799ca9706dfc06320d67c0988b304cb7c923ac4f57fcc1fba427b94f51356514e567a5acaccda96c1ab84137a9c0568e912d05f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    6a6644a205f53e5b8f7b847cbf736008

    SHA1

    d6efc4fb40e3db128e686d40128220e864c14e84

    SHA256

    a0c161e1dd53d64148c90084d8b93fcafb35288f20728e414cba2b1be9f14a16

    SHA512

    38d91f11f245247a1f23321250c9d6865a16e92f170c3dac120a182caef63332e924265d3c8fc704c8dc89cdb0fe217d3ac8cfb6a69f3674ff9f14bf0161345c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a729d306b8a0c084d36aa24fdb28f811

    SHA1

    9be8f32e304977e8d374826359b071987c0de1a6

    SHA256

    1181432e01b8363c9aedb399229463559ad71442c82283ad9b95a477e9c97e42

    SHA512

    85d5626b7007fefea304d51850570a745203535f923286162a8e12391bcf2d4465a749c939b0815a1586ca988ff6841966752993a02bf1d6f15162e3e9983273

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    6b2593bbde4bee95f07c9da0a272504f

    SHA1

    a70adf5ad57a3a10059e719f2a13928c530c3415

    SHA256

    ce794bcc855a32e9e21bc48e4e053e1cbf68ce2e5580a18e64dcaf00d45b586d

    SHA512

    ab415cd72c787c5e056767580cf3623d442da467ab36cc809d5413f0198c27606d1d43a05287e0b311273b9ffa189e70ed00bae1f71c65475250747013789d58

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ebdb1594b32f2bcd430c101f73a4cb0a

    SHA1

    cf3b278ca4be17d981957d31b0d51c6dcb4646c7

    SHA256

    8f7ab9fd58b4b93a2fe845b1e20b9ce527575d2a59690a19edd691667591b00e

    SHA512

    72c39cdfa5d24566e1a6027ee0783f31902db044b8949a05462817b1fe8dfb8171832e57e61bbcba42135b7b3112d6d12c1656293a8c15d8b1bed489b235c14e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    14f96fbc0f724960b41c882ffc637061

    SHA1

    d34d8b507a429d90d957e192e79b81d512916e2c

    SHA256

    0b65bda9794122e2b87ef216fefc55b8a6c6ee4562316f66f835d2b739e89e7e

    SHA512

    f696356aa0c50b3902124f229eea8b858be012d2c994fbbba88f6ff4ebaa9142f1a51244570d5904890a2f879dd1044bc3e0c4ae38f18c11fab294d8e16c8f64

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ba89a187843294ac8f89515ba7d03ad2

    SHA1

    9823a0b5fea1c9b909251ae97eb958be5206f77f

    SHA256

    ca8d9d35f5ee9f0a306052b8ce64555bebea42789c68a69cc6fac543a0ef6d60

    SHA512

    e3ac90dea6c04a234030a2f44d8de275aa9a0464e16ab6a63ba0d7d06aff2cfb6b41241d5627cff311c8c0c34717877c029cfc0f48264c3625297c7f47bd3363

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    48f0d60c89db556ac8998e69a8f03f79

    SHA1

    ed39c251a9c65df2dbf9f95280fb60e58854a517

    SHA256

    16722eef6a579f021119776c6ac40b8c34a9c676952221a75646db71e2444e7d

    SHA512

    05ff4320d19caf86581950730f5cd1adf51b0447ab46106e7d94359e4516f87c28363dcb1513ef742b5b4067fbc376251b75bc2088d6b9b31584c8b61a19b9fc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bb41fc30b04d646056fc86a65bd33f29

    SHA1

    93333b02aa80e54941f2a253f470f45e8f3483f8

    SHA256

    bbef47f27141f755e7acf6c5a0c6b99cf8701fec071464a99e2743e791b284b4

    SHA512

    b28777bac5936f991ccfd76f14beb2c761149b0c44035edfeec9125f5a751d48117f8daf1066706b227671fb89df6522b300d2ce8fecd916f2f67f3fc9a9e4ac

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    8bab267e36a234da3a088755c3f3358e

    SHA1

    125fd24f3825b47aa163b99474b6c52018813faa

    SHA256

    4edbd8b55173c5824a77d5a290f19496417c6d164bf4a3bbfaad4961d1375b75

    SHA512

    997262c5993831b71af76ace0ba6ec1684589d84bd700bdf769d505e190528ee02236caa78d9b66186d7c44d952a6f9a9f4034f2cc7e98f23d1012be315ef59f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    6a8cc68a1b87a6a83ff4c8fde36d38fc

    SHA1

    306c12494018b0b07200887ada6711de635960bf

    SHA256

    0c7c872bf97c07692c8698fb9bf815d353eedd1f5f3468ee8653498f8bdb9157

    SHA512

    17f272b19528c7e598fd7603ccea7b4a54c128163d02da49dfdb621a8456c4837546f54cea74713104756d51f52cad05b9f975f3deb8ed38e1aa025aca954e24

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c01658ff30ef4b09c56ce5a02a4a58b4

    SHA1

    ca67ce011d9bc2a5141a0843a9c267a1dac40818

    SHA256

    021e18e164341f78c31bac333369223d0d151aa85da81d6592e1010f206d061a

    SHA512

    dc00922786baf0ccb2483d34f70c5761612ddeac1ea660c6d23e5677bc4216c4bb3086f7bbee1a12b3c5871c49ca81e0c44ca85a59c69f84e2f06435c2f7cc84

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7891d31b2caaa2804fc6e3a4c141c7be

    SHA1

    cbcfc7f775e5b5060874d7dd13a87ad772deca21

    SHA256

    ec741143353226814908ee9ac7bc0ba04a6d4976c22e4e7de376389117c1cb10

    SHA512

    4614461056c2dfcde3481b1b8a8447af7cf2afc1f2006ae7f54cc5684c1d27f0f4031f3844329030cc6b5210d7f97c7e0c0a47f47ab8bbb15bfe2d900b116ba1

  • C:\Users\Admin\AppData\Local\Temp\Cab319E.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar322E.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a