Analysis

  • max time kernel
    118s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    16-05-2024 17:20

General

  • Target

    4c33cbf5611f3c57e5da64fac5475243_JaffaCakes118.html

  • Size

    36KB

  • MD5

    4c33cbf5611f3c57e5da64fac5475243

  • SHA1

    81d2b8d3da0e118340b0bf040174b0b21d80b005

  • SHA256

    8a4ef5f5ee90849334eb65df116213672b60f1da0d709f49b74120b1141e6ba6

  • SHA512

    4fdaf3c6a3eca17b5fcdc6811aa46c8da6ad97102eafa0bda7831724a70b561c9f074ae0acfba9b7c80a3ae2203d4947d7ee657cc1afd58e131ac4933e4f69f3

  • SSDEEP

    768:zwx/MDTHsW88hARvZPXuE1XnXrFLxNLlDNoPqkPTHlnkM3Gr6ThZOg6f9U56lLRf:Q/3bJxNVNufSM/P8OK

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4c33cbf5611f3c57e5da64fac5475243_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2248
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2248 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2084

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    c385b784ab9ca816e84a497ed6ae04cc

    SHA1

    ebf2dba7c1f1425116a8ff8b73eab06fc4e47a7a

    SHA256

    8b1eaa18dd169f3513c85869aca04c1a469ce3351e81bb54ea0fde5c80396566

    SHA512

    19bf0214112ce18c9f804d386a9d306b5e77479cb863dfd9eb90ce16ab7eab9dd2aa490e82b99df81ddcde41525eff5c4997c912ea0d85db589c2121e3db0718

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b97e50b2be6edef31d3b345e37755f98

    SHA1

    ad64141a84592763b0fe46e58c8483d56e16df45

    SHA256

    9be044bc4ef51b02def3a9a3faa48fe6903083da0fef2e67c3c11ff6afb9a289

    SHA512

    d90602564b7bfad24f5dce911f29344b0fc25aa081332d775b7f4bf1ed5d1252c037509b1e175d2acd641a79faa83204ec22543862405597dd51574ffb61f771

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4291e9268e2a241caa693f1fff019d42

    SHA1

    e71e59fbb21cdfd7fc7ece9ade38f0c865a94d3d

    SHA256

    2b2b6ebeff0825eec1b83e00b87fa8e3ecf3824b21b4daa5fa1ea5813a849d89

    SHA512

    c3ed227742035d2411274bb87bd2ae5b2770013f02985be37d62e04bec9d54ad7261ed3317ee2bdfb7cee9579c39238379b6c38f8b5af9d59c1a0b17e2bb1167

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    80290b8f7e921a90b31be96d3f80213e

    SHA1

    68afbb24093a1d6f054dcfd7bc96f20c57202f00

    SHA256

    474e5da636ef0fbdbc685fda0d76bd85ee39544ad580730a18b89f0f9b7bd865

    SHA512

    ad039f049c90b34e2c8681794c2503025481fc9dd6b63184847466386ac4d1fef842f12b0f12dc1e3b235bcc7abd5cf3d35faddcdfc4105084c95b28ee0d9f2a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bdcdbb1aeb516c2f22dd234b3ff7fec0

    SHA1

    1b2e2782239e37dacc56195107995f2428106671

    SHA256

    793515b5f9c9482f6c591b2f436b95856e4cf012290f62c6cc44675df31ed98c

    SHA512

    1bb7d09fb092aae4bb56575c3a10d816ff8826c4ec38409750a1c1c6299a24c2843866839dff165610f2f705a519cd9c7ba1fa7806ccebebba9f6b4a7b9de175

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bbba84af2b47c9dd522dbe4df5d3d7a9

    SHA1

    459bd1fa15fb95707f21dbb38e0eef865a6bafed

    SHA256

    2c1e56207b7ef85ab04c092865f11562a3a2c2d6dfff895a7d47c4b7997afbc1

    SHA512

    3a12bfb9ff39c58ab8f0085bb5f4411575bf26a54be8fff1518870e7a621742519144aed41c8bbaadf0cd7c54cc9b055d24b01f1432e2057a89ae63c4ebc3589

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    94095b1c40d578f42486b38f3f0a2f2f

    SHA1

    56ece69d113ffe5a9151e55bccc6c36bab78acb2

    SHA256

    4ccf45e02cba77d4fd4cfff32eefaefa29202f48f2254d218c31f9779a408458

    SHA512

    d614313ef6cf1606e85159101f01acb6b4e9c21cd0946c78b650e26aedf98d6dde63e3070d34b21f93197b03e9e345ed94baeba5a30cd6e4f88da27ead46a9db

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    3b7f9024e0f9a4b47166705f22f9e0be

    SHA1

    e1e56d6cd4b59009764d5f6a84aae06122cb9c3c

    SHA256

    06f4fa9e50b42c51fd7746adc41963126ae71b976230fd899a5f54af2c34d88b

    SHA512

    2d5acaaf753b8cb24e56f594fe035ab55f2a0e00c412e4b99be7f856eb06766ec59c1814b191b12cc9be5618e3e172c92e111e1ad08688e9331c728b7f972565

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2d643847179cc0c3549381dad8ad27cc

    SHA1

    22d059db3bcaa77145cbfc7980105bb2da8dbb0b

    SHA256

    3bac2c89a9c521d0fb3f61bef0429a0681f76daf6569bb114b082063e899f21c

    SHA512

    2e2c2208fa525d568a8fb0ae83e37751a94c2f37877c9de60f4f4c7e8f8b16bbcba2f19bdcf53e251061c2e3e703ac9664d38d99f0e0a0b3344e304df9447c2a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e3a3d38f20faf5a029c107cc840a1869

    SHA1

    81389232bd49c2fc14bd02855316a3ba351e3515

    SHA256

    22989ca5b7669744ece49637f7a9f51e1940bbb3f4a6c7dbc567379b98fe3f48

    SHA512

    fd4e870915b36c721d4ab2d314f5f6b016f4604576ff91326884f45bce6e03c7bc0f0d6ad076c213109c41b283295b70d731e4a8b03b71e65e2a30e9868a2ce0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    46d54f3555203fc6c8bc7eb092a26f6e

    SHA1

    1cf4d50d0a95ead80b2be959cfa6f70d5430180c

    SHA256

    443dfa972544360bb7e6dfb120d594c117bbc48159e1567bd36edf8d4d79c795

    SHA512

    3fa8411933f8e7707fbe944b794af1c5c47394abe71268a9f8e8675a9b2c5cdd34fd82c4760f2a892d40bdaed140bf119bf514d7e729003cd8d51c9c1ab1c638

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e3a3e2721357c8b4df5eae5583c5e751

    SHA1

    9268bd07aa0882845b3f8493261d07de2a352ca9

    SHA256

    e4db5784d67f30f79954e2493c94c8937f503486a9fc0525082931b7ea9e3915

    SHA512

    cf292cb68e1a60092fe184de2b47e8248f4b752403b2e8fc7245a135a5d752d49968f96f85ec0b89aca49b31bdf216192ad8573fda6f2d839ac946ec03251dab

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    48ba38fc87687af1488674a3a0b7f7a6

    SHA1

    35da61d89640b7586bfb84c18394ad5b45da7ddf

    SHA256

    bda6b2fbdd18b47b3cb03251afa135232bc39bf4aed6b94c83e7482faff55642

    SHA512

    69ecaea895435f21e0c8ba4111b0e770ef5c1eade130074f8703259ce377674397137e47a31df06c839e6e86624030e4f84f8790282a96e5ecc60fae85a4fee8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b826c35ea21600f7572833f9d10801d1

    SHA1

    679c4ea4ae37f898ec812d0bff99f8e8f28c4ad5

    SHA256

    607fea0b9cff822da3d59991764bed6a60b027df4b351c3ba322551350eeb831

    SHA512

    23a455ceb15cbca8096f6c1af9beb91a88e99ab5d15465751e3aac7a12a9aff436b612258e446382d55d50ce0ac13e749459da6b32be59ad4d2e792dabfc0f7b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b5ab0659a90975aac68c6b5353848c06

    SHA1

    c55c1e2a28ea58fff5049d0cadcbfb865f5abc12

    SHA256

    964e0b8b9b3c19498695ac662a0d49bf95d66ed2ccdcb641509a4f5a2f84fee9

    SHA512

    b5d10cff159f5096fef09ee82bf3901dc8c667e9d5d0d1519e2ada427e5ad435940fdffa328b0605465e5ccd4423494bdc33ba438d92bfaa0ab770d9d50e611e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    35fac12f6b851809160c45147922eb32

    SHA1

    12d95161d20994300bbff069fff7f9956cd2c6f7

    SHA256

    c3c0e9e41ccbca7fd47e137fd220b8ba0266306c0def5fe8b6308dfc63e035c4

    SHA512

    301ffe13f788284cba47a7b5a919c707ba2251c549373d3cd803f9c8fb9b57c5454c8e0e33b857937d57534e18d88d35fc4837e584db4913364c0ff5c66a6edf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    fe7517f54845cb38c1a11fcd808ce0ac

    SHA1

    7d52433fdf9a3202fd9eed393218fc5b1222731a

    SHA256

    ddf7e392dfdce0e69e492da63225cb4fb985849d2867bf2fcd38002fa0967704

    SHA512

    de60ef671c16aeac973e460e0815dda702fabd1ecc5be75c11f7ac8c2e999648417fb3ae01389100a26f08cc32dbdd7e94f3a3d312aa41e52f3d83b8e1c1a513

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e199a7655fdfe1dc43d49be899ca1bf3

    SHA1

    2c5500350d45588e786fab43afc2adbf50987ed9

    SHA256

    2d1c63913c40a9264cbc870f485a7e61da7d023bd5e1f1dfa421bc67aae2fc56

    SHA512

    b35d62414d3b82a1e929abf5d166c5a2f11e6792a7e858798e683b7d69690cf3ce435c5a65366342b108f7ea4860d7506f13501b2cb70c12bb8de9b37b7b8f9d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    690323928dd927a0f30f1be2705d4c70

    SHA1

    ff54b0532dbcc1de92044648468c8eb83eb45123

    SHA256

    08053e43deb5f13e97c7ac71afe28e82ac91e637100255f1bc42c85d7786f2d0

    SHA512

    be670cd2cf5da384840617e8e70bd219cc59a7b8118f16afaa03a2dda711de6d0ff78f2e0b8af98918e4c4021553acdf5c1855b54abf6062b5800b791354838d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    0132a049ca4676ec2aad428e0d69060f

    SHA1

    b335e1efbe68b34da5747160184daa5a14480e7b

    SHA256

    4fea0e7cd75b5194676aa6428cef7c541537b2a367e5b86dcf008c3ab5294904

    SHA512

    8dbe1f6c2861ab769d3b132109d5b1ec6d5023038fefef76564322dbc789367370589bd49ac931fedbebb18abc02d0782ab0dd0292c5c7e2309c19d95ad5d450

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    583c97fec1a32d49dec77acb9d5c0cd5

    SHA1

    0d4e7309acd3bed1b86dd6d19d7c7843b9416344

    SHA256

    d12554f6c74c5e8ec6b9b0af798022b7d92d82f5ce38bacb7013a876e400edd1

    SHA512

    33f3aed5f4f4bf2da148433f944dadb8b20f92c49663d48bc0068ceeed16299048dd269bdda3bf1f887c03764cbe3898e2d99b063753f625fa4e8ab6486e251d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    63ec0c80881a2c2afe024c0118a5bf25

    SHA1

    398228409c89c41bde5703c259233103eca70907

    SHA256

    6fc94f128b47c0ab142f6ea9d350952ad8fbf078cf24c57e147a857817030bdd

    SHA512

    23bdc8c273d87318cc8b2ab159e07edb4055051c8f4b4d1c5a9c8cc214a02670e2bdc6f47b39067b150ca966dfc077c1a33c1080bdcca1f2c0e660524b6e4789

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9d728626744262ff75441cfc88850e72

    SHA1

    c45ab938f159c3987a9707a537a987f1a6dd95bb

    SHA256

    dc89d34ae5005c04c0432dabce1878f79649a23ee336f370859f0163e7eadbaf

    SHA512

    473ab275a74222e6fa29eb9fe9c11282dd78650c061d89f680887c1f06de5685a71e0bb2e9d7e0b861c94033da1e8eb3543c1f3f5d75acf8d8c1d864da434a4c

  • C:\Users\Admin\AppData\Local\Temp\Cab9B3.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar9C6.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a