Analysis

  • max time kernel
    140s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    20-05-2024 15:49

General

  • Target

    5fe970ac664ae3f0da8f9eada31180af_JaffaCakes118.html

  • Size

    75KB

  • MD5

    5fe970ac664ae3f0da8f9eada31180af

  • SHA1

    3b6b9e755b5eaca6b16963425757ba684217b2f7

  • SHA256

    a25741f28832298ffc79c2b97cba5a4a513851301d5093f107d74042666e8f46

  • SHA512

    1593244f5900ece055a687ad7a9e7ed0c7085d0cfad3388524f3bb995e79a116906cb04ed4a0a46e1853325d571098671e85640cea0be7d30d1165377834866e

  • SSDEEP

    1536:Vi90GSy2XXCTWTnXb33ZEvHwZEvDnEKq1fWNZA1ZMmGFyu+wDWpo40/ErK/9Pyk:Ly2XywXb5Ev2EvDnxqsNZAmTUk

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\5fe970ac664ae3f0da8f9eada31180af_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2248
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2248 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2916

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\103621DE9CD5414CC2538780B4B75751

    Filesize

    717B

    MD5

    822467b728b7a66b081c91795373789a

    SHA1

    d8f2f02e1eef62485a9feffd59ce837511749865

    SHA256

    af2343382b88335eea72251ad84949e244ff54b6995063e24459a7216e9576b9

    SHA512

    bacea07d92c32078ca6a0161549b4e18edab745dd44947e5f181d28cc24468e07769d6835816cdfb944fd3d0099bde5e21b48f4966824c5c16c1801712303eb6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    56a1fab7f9ddfd084c77e8382a0c3c08

    SHA1

    b2b047794e480212c2a1bc049bedaa74393281bd

    SHA256

    2ba39e6d04841d29a97c5d4afeade3cb81f42a2030cce4de71410dcf2681193c

    SHA512

    5f4d653c7413da176a41777be10231c3770c795bfc74dba631834d7a166ab9b482cfbafe4d9f3a6c8782ae5ace09900f28bae35f5853ccfb5b2244cb5f85c3d0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ab3a34aa3fed0b05d54b42f8ddb0af70

    SHA1

    68a63552a27cf1692eaf8fa832f2f6e1d154efa5

    SHA256

    b46a8785f4b7c50d3509c40dd59fb85a1c235941f83218042ca2da09fc25e531

    SHA512

    59f6b8770c656772043c117115140a413e54839c05a185aeac668a32298e455b35ce7676d0c5cf8445bd25f90fda8f4767137028d36b1c65a2efa0ec041a6653

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b37d3bf8b1108b9c4d95f9cc290dd149

    SHA1

    cad4d8ec8d81bd38cf7adb615fd0ca1aa5b1f6fd

    SHA256

    cfefad6ec6b6efdb6bce3ef7f9032db5dfb0d151c5733fef6a0e501c7ada9f8d

    SHA512

    8c0b0b802afadf56c5ced84158166ec94c134ad920b792f350d95502f30496875b34b812c2860f384ada49b83e15457dd2ae6d1f29f0aa4522df9bf0f085fc71

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4ac31c3bd94ff62f65ac190215ddc6b4

    SHA1

    7b5642a9027bdd8cb3c1ed7de478434d48f3672d

    SHA256

    08a4ee2c19aff2c9863a1d14fcb2bca78a9963db057b6060dee6e10214d14af6

    SHA512

    a0b5595683ac2d97cf18100d6e9865d57ce652379c3133b34ad9b905be3f4dbb94d084e8974b9e8fa6ec48e373fa28a4189f5f446437987511c64e4486540664

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c64c14f6ffac432378c26db503264e83

    SHA1

    a61488b1eac151a94b298455640bbb82750f6dc8

    SHA256

    d9406f1b7d14043c2fdf64c2c3a826ef8677d4400578d59699d2346d6b73e47c

    SHA512

    1a785c9e253e4e6f67453e91b3d70543f6a79bddca00892ec0ba4f2fda0b5fb0d34b733b91a8e2063143759068ba80eff5e12f74f8a2ea4ae1b02c1e0b305cbf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    976f310ec5e8c4552ae9fddebdcc9c7f

    SHA1

    2f10a0f63d9ce894a70f0dd9f5fb51bfe1ab0690

    SHA256

    4acbb82ca001bd1504b2305bee69b4e7a88116309825ff076e7bfea10ff77fba

    SHA512

    8cd5e044105c1853382fd3a4e1844b0333d9ec5bd9c51ea344d36965450e60a81816aba4c3f94be4ff4723aa7bcd0ae8d775eb3f933d367004576a6212717ac4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f9922a0d2ad863b272458ccfc50ba2c4

    SHA1

    148ee0407b3aa24c454eca0710e60a35a3dbed60

    SHA256

    dc4e5522b714df51da3dd4a11188470773dc015102b83e40f3ca2b9652645663

    SHA512

    11aac3ea2fa5da285304f50cf2be2b401112609b984f0eadb0494517b39f1645aa486559fb0c2b70a1b2c0e2a14464adaec95c65a848cb9fc858e860f711116c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    71d089e326c644eece3e914cdfe9d9ae

    SHA1

    53f8616829bfc5223d09ce21b72f2150c6d7c3b2

    SHA256

    e2986f522d4b6803eea963068bb88c1737d51d1d710f8db399bd07831f39c413

    SHA512

    f579050ed56ef175b218d3bf19a695fa5f9bb204beadd840e53f383a1c17f15a923f3df6c61fed70e36998aa9bf51fa4f12c5123e2eac1d7257ff38a8264cf14

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b14b58e7383e57bdc9445502702426c8

    SHA1

    21014c4f5ce6e83af72baac5b8d351a25bc4cdd4

    SHA256

    35eef48389bfe63db192ec2da7380cf77f309f78347378484b4f719e238ca753

    SHA512

    30038ff2cda4a66ba5ea80b2d68c98a907489e69f0be04fde879bc97cb4687d5711ff9f0912ee225388ea803e46d120cb6961c7d0554184685afd3a415fbffd5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    3596b987ba1e15938bd5ef0c56458a78

    SHA1

    b4328b2c575998b40ccae93c504588711c195efc

    SHA256

    6e8b139827170dc23d8b5e8753966bf0c80615895574a23d451963181985c9ba

    SHA512

    c752ca514f5b80cd92686a4924656ddd5222c9d117883087f528a6162436e0832e66d03e0ab1c82ffe11031ccf3f58d7c9d130bc1f12802dfcc3f6446c531e3a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    94b941b67f06e17167e956e7030d22e6

    SHA1

    0c03ea6d8528a79a85210e11ef015c89ca9aa4d6

    SHA256

    23ea94bd8e461410606d6afd2eed6d43b6f4fee4044446a6e6ca4a316f5074d6

    SHA512

    d81bb4c1a80e412f02676da624387de25dc2b655a8096ac7f718d054c962e36fd85472c5fe3f08ca1bfa2c52d7005a1b5513cc4ec7b5ad0d28f46df3d9ed7a87

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ceeda7b61e989c1d9e5f0202d7da59c2

    SHA1

    45d039199cb653fde827692fdca9a4a6cd56c600

    SHA256

    2d9f4e66cab2d9975a8c625c818b58299a2430fd44f40750151d95a65de80b6e

    SHA512

    c5e8b46f97dfe0bfe27f346f5201487d5c319006652df8d498304acde0860fd029bc743f408a87f906cb8a74066f5018f844798835e966e5c8a270fc12b06c2c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4cbda936e0d15b680fd826a271c33aa3

    SHA1

    c9ac03ca00db9e83d8590f36da2817747c47008b

    SHA256

    9b8b431a59aa80e36b1bd86d26cd3883188e20eeadb49e183bc1eed22266614a

    SHA512

    0dfe3d19e19ecde951e869f298dcd9f23ce52895fb5ab0fd3d549cdac5092f083762014b85584aab012ce4d5cb45f2e23d4c4db40a71b5ec53e75dbbe1932a29

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c82d1615d87e37d0e61ff283a0a731ae

    SHA1

    5b706c2eb87f631779d10977d223f84424a2d24b

    SHA256

    852086008aa6ca74315a133cfb7a85f32b9ae15fd5fd235632548a437f9b8bc4

    SHA512

    40ae27c3699d1622d20b8443d7712ae2a53068822c34e382c024c66280f91824bc117d34d32b621efd7586d93549c6fc63f5423fb719b24cfdeae25ce28aac56

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ba71a9a2f1916c0c8c23bcacf28e087d

    SHA1

    1ff2c4ca04f70b71de382e733a2353c91f286185

    SHA256

    041bd05acd07a85d016ee7d21cf1908a18f86b8a8686dcba17164a2e40675080

    SHA512

    bfc5b0345a44cc92a0d5bab55c89c710b3a4c5619e61562b077a9aa094e2996998521cfb7f09e79c20f343893dc1f033839918f338ee9a78041e075e56218bc6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d3010a0483d813d7bb2086eec023e197

    SHA1

    437bb1c974698fb15a32dc3320313b97d9d0ba6b

    SHA256

    e56a53755c1871887272f647f9ae1c20ad258c4d5ced8fadfba8610dd286cfc7

    SHA512

    81b662e4a18f46d141b82ec99ce334f6a2d6cc5239054125ec98fc6aee28528a4300a5222419e30ca346bd8754e17b85d7b489eb6e77c6ddfa4b78d74d833566

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c3bf7e185ac1c53cc6e61e35ee52344e

    SHA1

    7d08c940090255080c2d86772642c898a15a4eb1

    SHA256

    4beef199b209b7d69b9dfc98dbe3a66fc44b2a0422cb91fe4a1b058a1abdd6e9

    SHA512

    38671226abe004eee20f44302f6bdea4415e9f0bf1d0f96db2c16229ad839f14bf0657c25ac2880aa8a8294f41c87df6d99839e26fa79a04a91faa55cf8a16ef

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ceb8d155e4556b6ab8192b936e7600c4

    SHA1

    232a0e62c119e403dafb018943d2b321a20ab271

    SHA256

    9081d38afca03bdde12bb2663075583569a89d427ffa330552445ba2b4aa2dc1

    SHA512

    c4cce66ec39f72137d34890154ed79a0e96fa55d1109c7c15ddf0f5b6514eef0b3236ca4b2f03d48cf6edca631dd2c26b060d67df546c3f93d2ca9cff9061e08

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e0a6e37377b86eb454a01ce66f57cd05

    SHA1

    e55976307aefbc1a0e8aaf2a3e8089580ebb7bdf

    SHA256

    313ec98c1cfdcbcdad60d0382797cc16deec0ff2af6890ccd23eccdf5e0251f3

    SHA512

    80dae2cf27b8c6cd99a74396ffa543ce42e16b88ceae000594c7df5f276c960358968f26cbd5d404184e3e254981d95fcfc42269be2468d3508087bff438233f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e0e21b38a569bba0151b1067362a2382

    SHA1

    0f347098803195d58ff9d7d11ec628b14e63a438

    SHA256

    7486c3d1c2ee67a287d647692760ac2ee180ca52a93ff1ccc438e900a946b1bb

    SHA512

    e221d0b1019c2d1798c650624fa7d9af86e70b2e7b8686b9cf923780cae3fabe34baa07e308d9ac7cb248d1752493128a020e5b4f5de78f29b903c94adefce45

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5d3d01c1aef066a312d570dafb2f451a

    SHA1

    9c58b0a0e9aee53449813d31e9c9afd0d9e5f6d3

    SHA256

    ef333b2b18957229dabcf27702afa6bdc0f10b59b260fd8a2361a6f2157678d1

    SHA512

    7567baa8b40939f1b38d9f508360b0faec158f69e2a9b850a067b06ae69e5fd5bdf22d82aee07e4d3c7ee04e5199ff18a507a8966b5240c744272b9232674280

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    4cb1d5d55e5ac1aec9fe90e350d6278e

    SHA1

    791d9b753c333d93e76cf9674ebd5c4bfc58a120

    SHA256

    0c20646120485ee24d3337909bae6f2869e3bff11e300d081b1f7334dd538848

    SHA512

    bfce514a2cad50c10a742fb729c332530e3340786e970ebd3662236da9329410d912b9a51986d1d8ea9c215928a13980d6ad209da50a111cf6e024fd1a4ddef1

  • C:\Users\Admin\AppData\Local\Temp\Cab49ED.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar49F0.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\Tar4AD0.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a