Analysis

  • max time kernel
    120s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    20-05-2024 02:18

General

  • Target

    5caeea575c653cc0f8e67e64d2d2e7c0_JaffaCakes118.html

  • Size

    4KB

  • MD5

    5caeea575c653cc0f8e67e64d2d2e7c0

  • SHA1

    775a09623029bbca16c5bec949cb689ec48721fc

  • SHA256

    b6183f0c3849abee83504e0b3e7ad1bf6a26b308ad64af6a35752ed2db6fa18d

  • SHA512

    1c63049aed468eb403d650f4d9574fc89fc6351cf3f5d414733a7e9d9ff5eb6730141474094a30b5e5062d69c62628b4f0e919302af1ea5dcc88e8b4575e8ff2

  • SSDEEP

    96:Pk7yJozTGknaEFHVKDZTBJl7sNjtXATIQFMA5e3fhrvDJUgwa71D5iJ8ohQPYe4f:Pk7yY1aEFHVKtF37sNjtXATIQFM93pDG

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\5caeea575c653cc0f8e67e64d2d2e7c0_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2656
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2656 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2556

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d245af4bf8688be49b20e19219ea8151

    SHA1

    538e5f480fe8191528f8d9f799c9353388447f0d

    SHA256

    a2225c30a4a7dffe963338b54161f89a81b807791d82b8a86ee9c2e209bd4187

    SHA512

    264f84b2bd4d14056e3c052b8bd84cb297e361baa8d1b4d781963b8b310f3baf044c11fc70838e53add472040e28ea49ee62cc26d052f56a5aa759d240d8822a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    566631297c3ee001bec1141f329c6e8d

    SHA1

    c1c3582308d3ee689e2780571449ddeae0dce86b

    SHA256

    96c35be999c47aa932b4bf1c801f50049d64190792ca3f7984498784e05e3cd6

    SHA512

    f431bed91abf7acd50b2d9fe10af35956ee473f06c3f231d862a207b00a45338dc632748623fcc8f4013a50463cba328970099078413a4a0c29275ba3262a883

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f8309d5a56d7e88677d4ddd2f1b16542

    SHA1

    60e3fb636d56d362472ddecb504bc0c665597908

    SHA256

    b26b4ee62bd1e405f15e7991c8e03a5ae31f47dd3e6676af22d517e28f80505a

    SHA512

    e718337610310536c5dcdf1b4f1503e6a9207db7cc0d3e4b3b06d806af0ce8ec6dbc700a4ff0dc02d4f059786a2ce17a83d6e6fb61d0506440f0c4c99b69a84c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    22c2df8b13777606b4ac12a7a9bbb8e2

    SHA1

    ae23423fc696b30e7c56e5a9b6693a59e364ea8e

    SHA256

    a8c923c3a8e5c807733134b9e4c0915943b37470420a73f3d9664518ac86c734

    SHA512

    030f01aac8c03133bf884824acdc5e2914b8f1afd7413f26ba328bc3c9475d0e9ed52999049b4748a6d8f8e5f5513c56f1edbfb78566f79ad5ee0b61034ba119

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    817d4e13d3856fa8f2479b0b1f1cc94d

    SHA1

    c6c20123b46aa1aa9b14c31f8e91aa2c8e4f85e5

    SHA256

    0cf69e2b17f8aaf0babadcbd81f721631fef5cfaf05d53cbbd52efddbec1d94f

    SHA512

    af3df85013f80dc87b73cf89c3e2a5ffb0140cd7d113337e18372d63c39ade06dd8d2b8e63209bc97a223e4c18e6c8fa61048974850b30675ec0910c1dcb8f8a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    60d7750c1f8d05148f6de53f6ad3af0b

    SHA1

    8b249baad67ac05444ea5ceeefde716ffca5fe14

    SHA256

    5bdfdec7596ebd144724a30f7052cd28b29d1984365378c6f9e7d1216b73d2a1

    SHA512

    7d509fe84726093c1593af1c9050ac88bb262e43c59427dbc06a16468984042717ee219b1adef19bf8b753c21c93d7ae2f73b3867816236d711c5c129158da4d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    cfb69bcafaf5f38cd936a730d894e967

    SHA1

    d5da9fc28315b44a5d5d5af4121469df0b743ab1

    SHA256

    bd57068911403c4af46977e4d8de9a39ef56c2d966faa888404223eb50604529

    SHA512

    199dde2b39c234614522fc9e4f134f5d32c969f8951e22ad8bf2023c0abfa4cec6bc67969ad11be24376c41e86856b5825515f1eb15aaf4748a4db986c3749da

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b4299bce6c623c330986b0eb549e35d7

    SHA1

    3cd076887acfd96c8f1b971057abc2bd25900d38

    SHA256

    a44add68309fab8d26b2b01c7d552aecd32cbfea1d7a356c5c8c96c4fa896616

    SHA512

    d465d978b71d7874531e863c8a8a73ab76319e502499f2b92c876a1dcb5d1f42762ff4d582f725ce916204cf9bee0051592aeb754e0355a1b10c15033ca05826

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b5c65515b9116bcd09b6ded042da4526

    SHA1

    64d76ca14e9abd29795285315d9e9fa84b1cf819

    SHA256

    82daea650f34b9b2092054414cc1a06f3c3a9a70e239c861bd1b9af0145052ec

    SHA512

    bc00b4c4a2c1225928a2e3b3e8f9d8b3f51564c25898a74a63b9abc98b26da1d74b7f55e50e2a03931baad768991c998e8bf510edf95451f2f55f9fe1b6b1104

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c73c4d5bf33e318c45bb53b7de66fcaf

    SHA1

    3321ce2c6d84027a55bdc5fa9fef7d3fd8faa267

    SHA256

    e2aefb6f99defd1c1f27b8499b012026d2722452d967531ba59411e9b8342412

    SHA512

    bfcc8380e93bd5c01d9a73a641ef1999d6d494a247d4f0186a85fdd5ab52c0e4f7aa75f5811b95ce3c6d24699ede3e979214b71df1a4845614a9857cfcec1d13

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    8802ba028551e7bfc9c822818b7efc34

    SHA1

    c552108d2a18fa200ce75ef4d7c37997f3ede6a7

    SHA256

    a7743ddf62236b61da45afccc52c66e65458d8bda357ed048acb611995acc284

    SHA512

    edb61c4bd36fcdade25604722ba9bb3485532a678afca9c6cf14b757b38985ba4c6d85c586420ef83266b0e522574d1f5068c4825c6a54ab7464262a76635fc3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    0ff2825ed5dd65ea6a3fd96378c1afe5

    SHA1

    9bca4608a3171feab53b0f61a09eef8e7e5507ee

    SHA256

    7c96b51f6ae095c631735a8050546c74193b5b605e5af600aa421b37a9178e71

    SHA512

    36cc172c18e78bbd4f76eab849b10aad3270d1b1f8c062fb563d4b934b2f44d21a8242f29425962dd034a1659a91723c878dde2637eaaba9e62692b22a72bf70

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f22bd9547c9e1b4887f4e1a8bb056574

    SHA1

    0fae79e38e80c1d67e96611f8e1308f8fb6bcc01

    SHA256

    48547c687d555982c0e56ded0e64fdbe17dda01dab1db057fd166c8c1ab3d72d

    SHA512

    4e5275c5c4464567af4d0802bff16f92a567959be86d316df69a9a7a0e3a48e0e087236df4f174cc61fdceb5cf31121dbabdddf1f0744bfd1e3fe4a1fcd38064

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    89cf15f0f8a2f92584de37c74fe2fd58

    SHA1

    c473de2be807085c00738772716b3cf619a64ee6

    SHA256

    b96bc75d2ec09e5d5500ea93fc0d6d428f390c2c6bfa8d4cd9f4b866df87c734

    SHA512

    4ca7c02ea9b261ee7ce6b9cc7b1dd0458cd86eb7aaef30de5ae67d3854f955fb6a6c9b695fbe35e359d39302e181a8cad0ee33bbccf59066e4cc0a00f473012c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4f5b172c8e7a6bbf6c45a32a0013f5ec

    SHA1

    cf8bf6b9242e032d6e94c38030f7ff49b4d9c71b

    SHA256

    d1435c95e95d1f3dcda84a84fb864031bad7895ea27646296bf3884eb70542ce

    SHA512

    f4f04a758c28973455eae28cb156e87fbe246e11cb72ac11a13fe60677d24567ff4fcc76a0f9fb21a0554c38953f0cde4b416e2562cb5d691432a5136bf323b6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c8b236221a14065fadb282f1d1728a43

    SHA1

    988ce4966badafa50bc16d2ddc72bb96d4e07b74

    SHA256

    21ae9c9ff8d21ce32b0d5e30ef967a3163154785ed2dbb962dc98e451658f2f4

    SHA512

    8ba87a75f9166fbb23968e952a00f86a507cfed8f9bd7cf5d2b79fda81792982deedaeb2443b6a6ebbbdce97190c60c51ca6199acede54a58d5fc5e4dd1ebfdc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a1be07ac4a3c09b0633ad94f6c6dad85

    SHA1

    0dbaf9f8dadf5378bdb0cd917a9358fd002182b1

    SHA256

    4ceac5f807b43d7c3c79198b85d8ff77fa292afedcbdacd15b19aa4fcfd71e53

    SHA512

    ee387bd4ff75e215abdf282e9d4b96c51157ffe937ffe74a41cadd1339804caabbb2de9282b1d941853811f4e0b9acdebe233f986d00c8736cbaca15898618e7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    1cbc93259dda88e78aeeaff360bb6948

    SHA1

    79c7781aea4924ce2672d48c0fa8242f481d59af

    SHA256

    0b8745aadf9b04ee5d38c6dd39b3bd64250d344095ed2bdefd4d3ffb87fb94b2

    SHA512

    53e3d73fe61eb4e06e78a6df7b702953e19f212f96c1539b6162566917f455b0bca404f2d6e654fc86dc09c82f47004bfafc5354aa17d8bca4f1c0bbb437d7fc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    0bc09d5343ab4fcffa2e035f006953b9

    SHA1

    4c5d28c746edc29219334959dcd8d20fc7923bc2

    SHA256

    28b26cfb8d879ef1dec9c8e75a7b422b433398cca8baa1d568a3ce9fb9e1590d

    SHA512

    153fce013013dc9d2bb745d7354b1603bf586cd334fabb65cd07a36a52f9fb04f2ffb160c2898d7998de8f5bde66d934bdbab944f073aca06e14dfb886078fb1

  • C:\Users\Admin\AppData\Local\Temp\Cab9A6C.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar9BCD.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a