Analysis

  • max time kernel
    145s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15-05-2024 14:46

General

  • Target

    46a678d64d17f17c390f7d94c41b7933_JaffaCakes118.html

  • Size

    139KB

  • MD5

    46a678d64d17f17c390f7d94c41b7933

  • SHA1

    6d5cbe20cc4fe3c03d6594a54e27b8b118c41fee

  • SHA256

    b9017c60238079bc97288e2abb625d6fe204cdb28c41423163f612e9e354b853

  • SHA512

    88f7cfaf805647b404c6295b36de55acfcda1a4e08417293c8edaa6696d33ff869304a85deba5b086107c429238e9c48fd69fa8ccc50f024dbbf6745f72e8516

  • SSDEEP

    1536:SMPN3Jq9Ygl2eyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJruH:SMP2YyyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\46a678d64d17f17c390f7d94c41b7933_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1252
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1252 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1904

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    481004f9b011c4ce99b689784ae9e6ed

    SHA1

    2da66360c578350e38ee3ad1671068e884036b16

    SHA256

    b163d2815ac75733a422dbc76d3df2b7f086768cfc3a0050965901f6a2350606

    SHA512

    39361474da79a2e22c241ffae87dd4f544a0a80f5ca1d9be8a76ff2cfd8153f085fe51c7d093324dc2c2e6b30d6ddc650428875cbfaf1d1c3384ebb1fe1ec0c1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    5b9ff979640e92f66f57f4791557233a

    SHA1

    36b7cccd660d2d9422ea01e6286a5546702ed487

    SHA256

    d3c87af0bf99473fd69616794cece9537d934fa7b00fa322bd21a1fdf7e5131f

    SHA512

    dcb54ea4ad29551a0ec129e9fdee2cd08b460fbc392e71d2794e4573b0710db931c0fbb6259739edb1ea9778f525a967a44c7b7a68dbc1a2aef35c3038556090

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    fffe25a8a77b3b86c6d36f8ccb183165

    SHA1

    13675279672c0fefbed745a7efb1a507ad9658f1

    SHA256

    65d7f21fe789abd4d39fa839e21cae90a5b722603933c5473799045eefb90951

    SHA512

    5d60b7f7e63c8f38a9d495d7bb77e7ecc082ce7b7158270d0ae38f09fbb46e9f50218826042773e3ffe5520dda891ee94b60c512705183f802674e87ed6a8e70

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    24bd972da6824d7f63a7601a36a7ba35

    SHA1

    2675d04c3a8b4c2980f552ec3587a0aa7cae6c76

    SHA256

    199abf3ded4a4c1743335c0501707778f9ed396869e765a643770c65e02582ae

    SHA512

    e6ba599a7a946f11300b3a72ce9a0963245398127c0f8277670d66e668624fe3130515c49fc21b57b024131d472a3c1610e5aa5041887ac90e352458739b06d1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    8f9e78dfcf1761fc18d39d5309694d6e

    SHA1

    4c460cd28fea6da319f7c48bdf580b7b31a73907

    SHA256

    6fbd7acfd6bfb801b6a6e1658cf9be92aa4c6a32308b58837f4ad6cdeef9b2fc

    SHA512

    b40eefc21ff1146f2c9ba02f0de87330caafecb50105cdcaf3753a66df3e492d3d3248eebb3fde2c5ab770392536cbbe2a6c7fa1debadbcae5d22836d458d8d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    e48cf8604607bd89a315623b29124bd5

    SHA1

    e41fadff65cec3c5030be0615fe29bab1a55530d

    SHA256

    f9f86b8b8072aaed6030304f6f5573a9d040dd4bc720ee4041f9663e04a889ca

    SHA512

    d37a6b8fe6880b93c02029227ea53e2203cc93b709dfed789ebda2f4d716f6307eb99cb33c506bb5b65e54fb2d9b62146005b3eb542087b69efebc66445354f6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    58dc8b47fcde3bed849f5b9a75a42dbc

    SHA1

    9940cbd54f2de8532e0c56c50c6d4137b3493e59

    SHA256

    825030a16e6cacc025922f9688eb98c07f643a557da9ddcf21ac3a3009192836

    SHA512

    9e7432a5d198a6176e5020da3a3ab0efbf668d724d6a61e78de592c6c90b5a1971210019a6df80f507e55e9c47db4cc7962e5da10b957db3227c691ab6f5c39f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    faf5374eef7636a5d7292f2621ecec6d

    SHA1

    c211070d0a25f884186e0f4445a65b6619119996

    SHA256

    d4d1fe49037016f6a3e7046562c09848978e36bff009ba34bf8f2bde381df00f

    SHA512

    404fdbb8f6222c2b018c9e4089579dfa57598638ecd7d14a1d31a3c2987881b55f0f1c59518e450d3e14d355b73c4c42d7b2736692744cc0716e68dac2eb5268

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    34da964384765b689ee102c1e2ea52f7

    SHA1

    06a5e87382f2ff07259cc651e9123c8aeef0a0b4

    SHA256

    9a0665ed307b629913d7f1cc0a373b37a964d9024343cb6b9f16f9b3e7a97e35

    SHA512

    dfadd6072a8cc788efea0f280834f33002819bc691d8aa8f52b8c1baea4548c9e8345e8de41999317898801df1071d8f0c93f613b9292309f615082a4ec1c439

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    828adea5c34a675a4401edae375c49e8

    SHA1

    45edeedc4cc634a93198a0d03d20014cdaec4330

    SHA256

    8b14fe51087c995a5a061ff1bfac53774f6b0c17470e7ad1ecc113865b111535

    SHA512

    e94d9e3eccfa5cdd09551d2af6f398a2369e225d587cb498e30b27aad55e257cc20beae83e316f9b8717e355aceba00d20988e8ef58566da88c2c6ec820ad4f9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    6a48d540038fbcd00e6b9a493f357639

    SHA1

    4b41d956c26b3f930e02129f54c1f60c01675c0d

    SHA256

    60b8808a148860b7e50f8d09604399f88191ba2e949e72b4cd83c4a324de4f4c

    SHA512

    2c3b8afba5d64c8e91df432a5f1e576ed1eee35a7c11afbe8038de9e03d51c4e0fee68c7a1b64137da4a407fc25d233302951a0c0c8ad1c59440633d80d24035

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    1a19123e62b22bb17521505c2f43d12e

    SHA1

    ab6fcc3384e702d0ccc76f31fa406aa2961633c5

    SHA256

    17143b80295c0070b3b2a3797687bd368aec6a9d6cc878d557a205f2a5bb6ac8

    SHA512

    fb0aded88f2fa60e18c3ae213bed2a7c3ab550c9ce21a4a5995c1d38237fb8a5d2a64bc1e8dfd7436be9e482fdbca0a5420f1abecc10572060dd3c634d2b418b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    5fe0650f0af2ab2cbe18517a365df2e8

    SHA1

    b670c84ed54b7caa2a73d8033e1ba24e60a15505

    SHA256

    519832a30103013e167738289179d9318288d0620721af3724a8e1fe7d3b41c9

    SHA512

    00374b900b7310ebd6ec9c0afa515812cbddca53e459581638ffde29ca081eec01f6c0ed0ef6a4a34ec216fe704e2d021897d801fa41276183f50965f3415778

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    896e8629bfe13a36eabbab5b884d0342

    SHA1

    c392b5fc197a3484d030a945aa94323e3042d589

    SHA256

    8939874f2464c2a87c5dcad6e7203d6ab6a628ac8f71a41afe653eef2ea5afd7

    SHA512

    01e415992883db7540ff9e15724296566dfe86a6b7baf0572c684c788c4d0c8c95dd274d4f845baf096b533cf9510bd7567a0ee9634efd5fc727dceb751caa7f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    b00b291983e39ef7093a28be4b470f19

    SHA1

    d52534763e77308c9007c36d682581cea9f4bede

    SHA256

    eadaa3f19f858836c0624001e7f5fee87728a53ebe7d146d8e0f926dce4369c7

    SHA512

    0a73229f003828a3011046ff77b943c771aea9fcabd723d11be455d2a3cbe5b285cbf9284b1597808c354a27ca9e5bf0885fa2712afa46d5b59249e7f10e5f4a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    ecf7d327ccdaf027b76e184ae0be2359

    SHA1

    e00c695cd1f5d7c67feca8eee18a2305dfda0193

    SHA256

    0d3874de5a7997bbee0b0edfeb115bc3610ba8f1899cf14db44e6d3bd88ffce8

    SHA512

    33766d5a6b2cafc7c43027a2b28b4247a74c5808213d345a367d44e07a8121493cfb98e0f879044ec49011738274c1401c6534a5fd3e9d99d9269cd60a751912

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    e92879f6d5d309734e5860bd732b5d0d

    SHA1

    f546c9d7aae4959390e32c7da27fdd33d1be9161

    SHA256

    4e5b0a96ce4806deaa255296ed6026ff25559bf791090dff4acce06ca571d94e

    SHA512

    a8589a3268cb6c8214cdbb9e193afbfee6cc599e16682b44e3d3415b7dd5d16ee3887d19ba8340899be04cb46798cf78b4e751336c0525eaaec8f3e069489388

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    f7f47541b54800a75bffbc98d97dd1ba

    SHA1

    e966ed09bdbe9136c261dd88cd90c46289065692

    SHA256

    ff556dabc86e5c5c62fe17c719a52302df3e54ed3de21ae8c5802eb7f81c7163

    SHA512

    4a98c2eea6005e238a897004526d95c7f9a67d58fcc066300f37014bbdf1e69f925284318e985989b132f985ef2ee35b19310edee3958e4b0e368285ecc77dc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    e03527c101235bb65e36abe157940c89

    SHA1

    c8d2440e96ca7532ead661759c764d76378a5237

    SHA256

    09e3be603ab35fe7661a8d2d838b50b46a979d7c4023bcc1df6664017029b53d

    SHA512

    5f6e6a345647c6902566c7b80fcf36c1132bc9cb4fe421858ca7c065629a2075ae5c9a7f99dbefc67eb6e3ae8dcfc78259e1f6bdd99cc1481b195871adb311a0

  • C:\Users\Admin\AppData\Local\Temp\Cab7DF7.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar7FA4.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a