Analysis

  • max time kernel
    119s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15-05-2024 10:51

General

  • Target

    45d31d883a8dfee1c9bfb14ddc747d9c_JaffaCakes118.html

  • Size

    21KB

  • MD5

    45d31d883a8dfee1c9bfb14ddc747d9c

  • SHA1

    d56840f8ec549260d1db8a78288a6592e9ec0852

  • SHA256

    a095dc13e111733eebcd9e412552888465496c0b2fd4b067edd1ca3ef2ed141e

  • SHA512

    15436c375e79be1771166504c8690c89a377e34322510f116fd9894cdf8d9f78fc58ac87dce067d29706a16b6b41df79b0469b46134826a37b18e75b6e0b2b7a

  • SSDEEP

    384:d7dI6hxRqth4mIj8o4NTNAW7060/eYmaNMB4BLOMjMR0DJ0rVMFAQjURRYTm91cY:dWKQth4mb0602/a+4BLXMR0DJcMFAQjq

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\45d31d883a8dfee1c9bfb14ddc747d9c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2820
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2820 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2816

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b4bec682afcda332024b0a15dc294d0c

    SHA1

    e50c8fbd81bf9a92a1b37412387bc2a35e8fc382

    SHA256

    206e26c8592676a343c14e72cff7edf26c193e1c7fbee0ba133da0a1bb5af999

    SHA512

    87b718277cc4d912a55c8f3d22f2747d057a749529f3b286d4e690015aa799b14cb1b0b37c00f53861fac4250c838f3ff3c9db6cd16e668458717d8105816b50

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f0044d4dac84c6163b284d9b04ee3815

    SHA1

    8e77749d7b51fc507794ec935fb6784e4ea4f1ce

    SHA256

    c48d968c3032cccab6abe68d865e5f4a3c0a304f424498d7d45bdc6500bf7e7b

    SHA512

    81f8872a3e2bd08ab8fca43fcf7a2c0bb3bfab8dde0fb8f34b6803dcdcd7eb63c76e186f236bcb66261b5d9983fe925125be65a1fb53beb7493a5dd293340301

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    08ecefb1df85f876333d1388d41e66d2

    SHA1

    81cbb8cfc55de944392b731a4004362fa7c3ab6c

    SHA256

    944e7333a7f37a0bad445b29d3861d75f3412ae54f01e7a9ff03919161adbcd1

    SHA512

    e27bafa5d4e586ab441126edd900668b4357e1a0b31b1c445d2d5ea5de0354aebae710d564a4a041d46739c70a1c8dd6a113f3390247aaf545cc3ea835f10e0f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d8776821677c7efd514b7bae3bca73a7

    SHA1

    4820e7d629a91dd198d1c91c08ac1711d4fb96a4

    SHA256

    a2bfb9d93bde2a2fd23f85048b8bf7054098e82bd5c96379e22ed662f4e12934

    SHA512

    59355a1960fbace63313439a20fd821d795c42a1139dce2be5a590503742662be33936deac7d30f45401421cda5dd13583fafc5fe695de41b3694b962c2bec24

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5ed94e28d852705e7c5d77d62d80b7a6

    SHA1

    de43a8180b27e5ec7a47966af3d8074adf16ae64

    SHA256

    3eff0dc8c61895d546f87e5957d5e118a314a36f98416ead2239de78a4540f9e

    SHA512

    7833c8955bcee15d0ff6c5cd58c12c606a1f0541f8de38d4c7a3f0222233e1babc6811741f552f2e0e9f9c65ad11b072c1167d8bd494091e699e45b3d79c0909

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2092452a8ab6308b1a60597ac89bb7bc

    SHA1

    65c572c3ea89f06fa6d4226c17b245c78fa0e61c

    SHA256

    31d6500e7e16edcfeb1e81d68fcc611f7e15a3f5f4e41b8198aa4d29008d013d

    SHA512

    f42058179f354fcf94d7dad90a63bfabd41fa0f9d48a0407202dd245fe05f8090015eb8c67fa3c4e28698d7a6d5fbc6023a6bc900ab2248a896b6e0eba37b732

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    3010c6b15b9c4a65f8a80371d3f5a21d

    SHA1

    1a519eec2a13c0a5e6143eaf7e37a2dd865bcfeb

    SHA256

    5a98027166e3844b925d28ed0634cef18da865b0b86b1c7218b42960167d4eaa

    SHA512

    0700f78a9ec4caf2736592bf6810107d4179abc6aa09d6a363256ef5f79016ddac033f6b7f11b57b3c17fda1e72707880dc74972ca3bde14486124504c3b1f47

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b1c9d711e255c1d2fbe340da5c05319d

    SHA1

    8f1b3e42744842a2b98d25e863901887a80c7fa6

    SHA256

    97553460b45116dd36c2be2ec7fbb898752aca105c784f95371ab2b6e2364ef4

    SHA512

    aec52c4d498b1b74e4a9d1bf1ad123c50b21f35f556ef0aab18ae5c829d5fe91f458147526cdf5adb7d17fbbe0f76d9d557e1f7bc7775135f7741343f9ad0286

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a6e66608ec840da6a8ed2a63583af751

    SHA1

    20b53b867ac405a8a9f744ba36dc6ba4fbcbc5b0

    SHA256

    6e602d6a7081971b0beb7b585f228fa894130cb338e61dbf263f7636bbf23865

    SHA512

    b1bd0233636bd507c07654550d960c0fae0b6dcec5f8b6c43a99b3455dacf924d48e5bf6fd0bef603d43ebd6f0b5a5ce3015f5854d0cde0ae6527e7c50087ff4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    add3be9f5d5ed03797ebfa66c1a062bf

    SHA1

    4f82fa599f29d15a43e723256f9d1dc89f028acd

    SHA256

    5151c031cdbc38eb7cfd6f5620afeb130ce50526674543d640a46c6df1ff9533

    SHA512

    ba4139c911329bf9a5085241edfe25c8715f460c3d9ddbfb2f25ba8f2dd018f46c24199fa9a81faf86df7be33ce16926a8c496fc8aa404ae9a4a295359d23d5c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    57bcf1c3b48cfbc41e41c4278fa900ae

    SHA1

    fdae93df50aa32e9e9587782637acecd2f14dfbf

    SHA256

    b7bee136138294846d733ce5cff1565882b29543119f5b41b198b67b62aecb81

    SHA512

    fcd8a2a0a8daa7628358ea1e41094cdbe7e80750d867487c2b4f81b57366de3dfe8c79cbf63ffaa09c9390a574a46c46ec51b213186c4051b995a507a5eed48e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9f18e7f02fdc6fb6a652c5dc18f7c838

    SHA1

    3f0d828476005e156bdf26b4e1dd06fbbde1fc1b

    SHA256

    c836674cdac28317de7343885ad32c0cacf0dbc9ff30ec3ca21829e5b3610f33

    SHA512

    565f8785272fdadbf1fa3edbe58a3a9863ba1a7a9481d60bb3b54279f27cd6012a75b446faad37dc291f91319bd080436b0572bb8f4e39bab15d910384741ad3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a3523838f63c1f6984046f6b3fc3ad6b

    SHA1

    7fb51f83e8ca7378dfda2ed3b297642b7260c89d

    SHA256

    ea250d0ba7a9aa2fea6e4bddc192d553bddcd59b8763fd5204c61d315a037c92

    SHA512

    9180454a6e54c2afc1ecea3e628deeaddd610c6bf06985b584aa2f91dfa8c5507f8c00e8ba747d589459c25f165e5671a2cb1db22191bcd9b5611b8e0f35dff1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    684a67b1d3ac5afa37e5b8ee037804ea

    SHA1

    f3c671a5d1f7f0849ff5131363f1b59b974762c3

    SHA256

    3719b4ae95a65b01da20940ea71a640b4757260b6cd84024a0d59173f8c474a3

    SHA512

    6c2d08c077a16a333e81e15a59f297533778a6e1b94f5c861d69720e82aaffc2c578a19727cd4f3f8711ce63be7146fb35ae7aac962f5ec4ce40629e816d7eb9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    0cd82472270dc4af72004280cc7a9c2e

    SHA1

    a8678477f3b0983720bd04a5593b54168f3c5b17

    SHA256

    90319da5161633d4dd18d35f4845fa5b337685b67333ba3392093dcbde2fe406

    SHA512

    ab8dcf51c30736db33dbef6990a2d6ce6e72fa1fcb6dd001099c7bd15de68ba8ed574ac0191d9e073ba431df446c9b8fda0682cdda61030dbf73a46202d75624

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    92a55a3115c1133eb5920350fb7c2fd4

    SHA1

    8fbcb02900e4b8a4ed52afdd9122f909e8daed56

    SHA256

    edc43eb776e1c799edd4622ab8cdbd68ae8b3ef57bfbd6c80ccf3db3902bbde5

    SHA512

    3d1895fc2b299e541a55f55926d957d7d6c3427f979f939fbde2706f3fab60b6871ac7eaee01af680804a871e79586408491e52e6c60e84eae619894390d301b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    877e2df52e71ebb0e2c477b1a746724e

    SHA1

    6078e93484852f60e6b53046af107e2f354e7421

    SHA256

    3cb2f9a91824e603ada102e00f61d47ce2d89a08eb8c6d9f77139bdf2eb0e174

    SHA512

    39201612c5c4367bb0ef8396849edca788cd3c34efc1a36a657f126fe3a26fd3b9ce2b8c14b194f89dac8ad2d9590bc109d934ebfe2674f14a588d7da628190a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a1155d65908c78f8db8e592efd25e0a6

    SHA1

    379bbf9a7c0a9fc2cb84e4e0d96da08db77e8919

    SHA256

    3b0bacbe9f861f9fe7132d7085b0c3a097c98bc9950bcdf70a9f0d77ac4089fc

    SHA512

    643bc56a314fd44308b6fa68fb81df92ed6de4a9a4b613ecaa32a749952dd312413ee379045fac0e49dacc507f2c99f349436a8d4f3361f20d3d8d89b2a9c15c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e49c86ade6223e11c623b497127d28df

    SHA1

    aa396a3fa929cb2425bb064af3e3483e7c91371a

    SHA256

    670deed9b7b30acb62a66311525f6afeded353db643ef0ed326918535023dba2

    SHA512

    c55d64bb67da347caefb225ecbd3353f9b551abc4809a9526743a06598fa6fa585e82e2ec5b88e74e2c726214d4119709a34649f124683a483eb05674e5499db

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    946863063f678ec2055ef47f69bb3d0a

    SHA1

    b124a40be2636ff2f1bb485bcecb67ab575d4a98

    SHA256

    c1bb6c98ddafa535e5d9318c0ad02dc1fa04406ac7b4496e51bff53bc1d04329

    SHA512

    8463266f39ab1746439a57e4ea5b52ef21dc4202c2c05a3758a39d6c43299957a8a8583d8697e33cbee72413d3f3ab4363cc07f8eff09d2f88bbf807da069482

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    49f6118ed0c7c3bb9452710111c19373

    SHA1

    7070ac544d5ec8b6ca6e145460f9804a1fbf3123

    SHA256

    b36420a52e3c5aca51ae9f3516e38f6c5e8aa2b3fb0639dddaec7168ed924d16

    SHA512

    69ed02555248656a2e162ac8df04ac70fb0def08db9a98cbb8c81c9033cc3893a3545d37d0d83e6759bd427287be9dc14bb2154abd11cc521afe0fcbe6caa003

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    41d289388774782aad1d97ef604fcfa2

    SHA1

    210d8695bcd3af04fab8788d229dd870fb896efb

    SHA256

    4d7b5001c2fef0e5426d195c96c0c6fe9ef279a997db812fd10d121996dbcfa6

    SHA512

    38eaa34cc55491658a9c067dbd5d102ca31f4e722bf98347a6a8d07e5aa3bad69fe0ae71c9b948c11770ed68cff90a0dca2b02420227d200c26ba68952a50959

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f105706f1655ec98ed106cea72e9f938

    SHA1

    158bb83b6a064dd978a172f55ea3aedbcce13d50

    SHA256

    b04454724f2d4aa37d7564501b52e3d422422d69610a544365646a22d87cb96b

    SHA512

    887422d78bcb1ff8c217b69b4ead80bd4e60f89c357558016f8cb60391921d8730445a1150f766d42e21a820fb1532b3537d035d8e0b6138074250baa65988cb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    de78f750d28cc30d4e53d3515d2e368d

    SHA1

    12f9c61205ed4be5269d0dc19664a9dbe1b44cac

    SHA256

    3cda71032c01c9666459a5e744dac3aa9f4a4beaad5a5ae7acae6bf7fd08d861

    SHA512

    e6723212a522225cdaf2e86ab276da3cd374995a36d7476dcefdd621e02912546031bb733f1d8c796a24dded516a63a447eabb62734f845a9ae4b57462220c0f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bfe4f634e65b9cbc93b5110362364552

    SHA1

    22c0f45384f0f34a7b941ec9ce1c7a4d879012b0

    SHA256

    34e5e33a3606cbf4b97a27ddfbf08482eaa3efa3c25e0e68fc74b1ee3b546bad

    SHA512

    d66e0d71103fa17db4bc61fa9a60a29fa206981aea2b62a1f35c638f685fc4546ac910c6bdb9bc212855acca547ae4569bd82c17e11f94c8c3ab1dcc1d1d4aee

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    3a60a59ffb31e8afaa214af7301ec3b3

    SHA1

    e835d2544e9b98bb1493e164e9f6c5bc634063ee

    SHA256

    1b97b63d533e3024ccc2846d6168eb7bdc77db55c4760900489d4b237138c1c8

    SHA512

    94b96ec03017c8f39ff9d3ac839ea38f7a0abc8f0ed39141bd4df06de6fe03bef0f57ecd77886111998ff4735c8bd8ef6fa07d7faa08b19f7c383b048aa18dc0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    25d45dd5ebdeb3cb87fe27c98af436e8

    SHA1

    a49e3031e1c0895a6c66939ba1b03ee08d8f89d5

    SHA256

    aa03699d7f397dd40addf14f685b5e50556e1d98210f103afdd49d1e82dc563b

    SHA512

    8f96c3908a7e28e18b5752e621e90ef07f2450d91e7e1d7d06f6f94308951b1323032de54ba4117e25353f938e012c4c99560e9db6a3e2c38033ad3b6b2b431f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    0c1369bb1540798e2771cc27b61a2c33

    SHA1

    cc3640d817590ce6ef40e0e3195e031ea7095944

    SHA256

    6f642f4e93b4107110cb7b86dc7da549fbc753e05acc6cd7dfe96e679c6d5769

    SHA512

    e11143cec2abf42311765b3452b8ff7cbaff62c9ff6de97804cb040988a4145f5aa09946bf00bcddf6d8c13674764a33b98886173742c1fa66776736e316ed97

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L9PN2QMY\style[1].htm

    Filesize

    707B

    MD5

    1304294c0823ca486542ba408ed761e3

    SHA1

    b2a70fb2d810ca13985882e6981f33998823e83e

    SHA256

    3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

    SHA512

    67430e967118d2b2d8a448c583bde082bf512da88eae75b0501ec5a6c2b0bf46936306317bd3ddd956c5c6e01fe0c7dbed43927588efba06c5f84d8a557f7b8b

  • C:\Users\Admin\AppData\Local\Temp\Cab7B98.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar7CF6.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a