Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    15-05-2024 12:15

General

  • Target

    4622ed8e94ecc48b8c736b2df6bce901_JaffaCakes118.html

  • Size

    826B

  • MD5

    4622ed8e94ecc48b8c736b2df6bce901

  • SHA1

    0feebc5e9f012740e8ba4134d820d9fc35bb1873

  • SHA256

    a6cc7c35dffae8f220c531bf8b034e19b6ea25b470badd7f3767a1c0e023a737

  • SHA512

    034dde1322aa427317ecd71c0a3cb8d8748e9d65207b2e92a1f7287a2d7e7d58480a0a9d98ece2b6ccba8686ea33bc315f36d03fd70a61cf4011819f235e9d50

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4622ed8e94ecc48b8c736b2df6bce901_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2400
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2400 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2740

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    158d93c7b45b23f6d61a35f79fb8f415

    SHA1

    2875be238ec14b55886aea473cf85b5a8ed81f16

    SHA256

    dd640939527e7eb4f5573ef4d2c3612a04c99507958d3aa511acef15d98f6ded

    SHA512

    f2cb3dad46b6dfcf28be764ef23a911c9d4fb77b1ee15fac7d019a6503abfb054776f1218df2e56c64831a8dd692016deb55ee02ae111292756ec90b4dbd4ea8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7470613e60fd149bc9a55a6b5d276035

    SHA1

    914a822367032c1ac1c7ce25eb2a7766b544119a

    SHA256

    1de73f75f0b3325f8263954e415ea0a87b2815a7618ab4de4135a7c6b8a2fc91

    SHA512

    9ab7dbbe7943b5fe9390e0c61eed0f6c28121528fc616bbf009089fbc0ac58e6068438544b7986e7cc443087b6b5fec4082bd8ce3e953b6e126c6eb6e6d2e7ac

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    96f6f5c843ccaa604fff448a94009d86

    SHA1

    aa693554d27d7dbb918c69cdd43012be36b62415

    SHA256

    334e7224017f0b8fbf986130e14f1aefa1f5b0a054c00e2d7e40a211eab85299

    SHA512

    c4f7972ca1b362e8362b051eecbb7968f526b039c671f52f0054e7bd6767bb886b26a6bb0c1e4fe55ead1ec0e7fa96663d86ebfa79de6a081789ed391feef983

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b051adb4225412e12431f9a44bd18f1e

    SHA1

    ac565b766a7b2ada35ff2bd5c9e4847e41baff47

    SHA256

    40934f510df56da1111d4985051a3fa06f1398a6874597a0d6df54e7a0f6534a

    SHA512

    458ee4a7d50a40a30f47698b5aaabc4f64155a6142e0a5356b3d6b5a6396d3e184879ff45c4b01fdb57810194c2fd7f5e07712e7ff9e72d2465f1607cdb90e21

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    045ef37c9bf52214428e415bf9bccf2a

    SHA1

    63527832be20470ecbf1748270b6bd96bdb47a68

    SHA256

    6255466fb9c86ce928dec442e24666f55334f0b4b0c30ea148aae2392a858a81

    SHA512

    d7335ac7f24e3a52b1aef94795055fd3bce815d8c2f139a54355663f935fccb4243ff1c8125fe701ee2b1a85c0270d441796bd0e0381cefb2f5acba100c02e34

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d49e0a279e4825dcbef43dae7da2f102

    SHA1

    60fec26082f09ce8728521db59e1f9e2bdb4ffdc

    SHA256

    6b2c10886d8ab0ca5c853ad139a59643a439afbd0218cf02b97a0acb50304d32

    SHA512

    c316659b04f2957ea4d9ec8ba0f98cb96425ec5a10ea7ada0e5823d4b3e938353056e40473b087a8e89fa7f23c5825a7bba9a82e521efab24557424f43403229

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    22278c58f48a0724a95b4c926539a459

    SHA1

    554541b40070aa4ac8ced34a89646d0c147bd470

    SHA256

    5f7f56c237fc1a01598553a98f2034a07391331a28f43815bcd5e8f8bff5ea96

    SHA512

    47724295dad2f321184088af2353ee28998cd4fa5fcb6bce8644b7303c73508c3845e56df3f391ba55e47bf85356c24384cd736a1101afd7b6afa3a7fb861e90

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f76d5b814ddc240bef53c11d239eef9d

    SHA1

    795359445ec9df3a815dfe12a3af01c983127a16

    SHA256

    853a8b814d46295237baadeb37142ee6c3ed0814ac86250aaf2fff4082086911

    SHA512

    b4580467e859c5582f31933f47200ca2dddda6333e9c623e85177c08118f449cfa74754da4151727fcd2f69fcebb8ced4bd7d80d27a36227849e411c1a85f438

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5d12c2eb857fe97a2cc1d3a102bedb8f

    SHA1

    c6548af46b8f8b072ba87b798944be9de645232c

    SHA256

    f8ba64d4cfbc6b20eec62eb4004ecfb972577a887b6e16669029639143c5f576

    SHA512

    9512d0a4af3ee570bef00250fab2d213498a196713eaba5b746837c9c7f764bd764fc961139e7a3fefc6f07c6542d4e600e1ad5d32817a0738f3aaeff8b4711d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4e952f4c5aed28a1cc6760d33aca2982

    SHA1

    039b4cc010995e84e0b0781fd65ffc3ae248fa3b

    SHA256

    ba1775ce2c06bfe06b0d22f9e85701497723916cd64c4d1bde54cd30899c1dad

    SHA512

    31d861f8e414a1834bbdcb627a2ce581fa26dd4e11393b8061fdbe66db3581c107216689760e49f9cbaaed4ea27e8549f786e9f94943cddb24ec8ea01f51598c

  • C:\Users\Admin\AppData\Local\Temp\Cab53CD.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar543E.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a