Analysis

  • max time kernel
    133s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    20-05-2024 17:34

General

  • Target

    6055360e4c817496c17f9e1bee7ce280_JaffaCakes118.html

  • Size

    23KB

  • MD5

    6055360e4c817496c17f9e1bee7ce280

  • SHA1

    c7f0d4ef2effb2d6aa4c136b91ef08787b3564c2

  • SHA256

    952407763cf1e24827d352703fc203c30f2b0209040dd71357fd87ce12fad893

  • SHA512

    12c963ee66d7bc4cfffd50eac45f26008a2fb23ba1cbb4e3c810496d781c2fa4b9fac31ab4c6e38d8ec28d404261a5a17cc0905696515840dcb5a6a604fde718

  • SSDEEP

    384:xL7QS1cQdEzv3jwFc6bU4DQ/ygEV1sCtxCBOsReIgaIEVwC1AKYz:X

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\6055360e4c817496c17f9e1bee7ce280_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1900
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1900 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2644

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4d0a98629566b468352669d10152dae5

    SHA1

    69a35f80a604eb3f37fe74910486e37d97167426

    SHA256

    d08ed8afdab5914e721e8820f3e8cada9679652950f1b7092e2ac1669c3638cd

    SHA512

    9c0538c6c7ca8fdba935ab45dcaf0def7ba9c89d2846cdeab769d006c8bd5351bba554f6fc98ae7f3d18261efa97b628f5c70984b9483d242ebccbe0c684f79a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    3077e1d0f1f4c91e1c8b0a41762df4a6

    SHA1

    4ad422eb2cdd0a342ed5c8d7ccfbf8fc92d6a36f

    SHA256

    471f633dfb398eee7f7403db9eb42317f44ce75b7791701b296927019246ebda

    SHA512

    0e23a831086986bfe34700e05ade9a8a4091f1be95bc0663ceab463e58fde5099cba072382e315cdd25f862bbe4aa1c4503f367887ce7c804720b156559e7fc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    60d3d9648b1b73c75d118e3418eab3f5

    SHA1

    5f81087aa1b17886afdcbcd3ecce9bfc5c188cad

    SHA256

    f5c6d0f72ae84ac41f3de83126910e1ed60749748e687d9927f53154b2dfbe27

    SHA512

    536452a93f39d1dfee4490d39cc9d809a54f3e7e6592bcf8198e6767d7287c496399eb3e50df917faaec1cbdf3e9f235e2f74aa26cc0808cb8015ac47392d9e8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    850db71398954da7038fc941190e8dc9

    SHA1

    88592f3a837f2cea4306f4a624395e2d725b2d8b

    SHA256

    9fcb556a24a123cc5d035b82e94d3b39028fb31099960f2c54d8c604fc18b7cc

    SHA512

    9c5eb476a6b81eff99c974d59411a58fe11dee89a61170506fdff0cb164739d857ceb9ca55311bfc24d5cdd051c1d40cfc4efcec25bb8a5b5a98799785023529

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    657253c7ecc900f6d05b3794d0369006

    SHA1

    3e4c0b6a0e3296a0bfa6439dd0c1a0eea8c8f7bd

    SHA256

    270dc0a36e473d95b0bd0e787bda42c631a77151dd60a5ad871ee3017262db32

    SHA512

    1338e4fea723bcff3eaefad9e5d876cd445a831b866f5571c4faf044b3e6afac93f4588ff0fd92a25b1c82fe7449c7fcb35a63f53752243f7db928da763b2a74

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2a7f3ef9f16e06b2b5ec0eca556dff20

    SHA1

    1547fbe9ee842b6ae63d06175765ff51988c493b

    SHA256

    a45f055442df3fdaa8bca6250d97db83fbb1bcab238264ca687622b9ee88412f

    SHA512

    7c584fc4953f32d34d1516910ac231c1b1e6f19935f1cb19e6934d2db0e6c3e634304633e2bd25582f31eab90a5ee5741ad88f1b897f2053cf376badb95d86b1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    75693e0d025c3f8d3595cd8c77d9f681

    SHA1

    c869341ba8123ec74f468358c2e7b2d625fb8212

    SHA256

    18fb08d77446f6f5925f7612d5aaa9016d2c9173b310d2c8d783213887264432

    SHA512

    a3248b30807d7c49f86448cf1d0198e3b6352c6c52dd76f2772d42286cbba93ec9d97b1553b8fe5a8842fff95fb81ed77b6e6f7c7ff56216fc280e9a81bd669a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bb0071500d5f45a48733072109c98482

    SHA1

    5cd65fde77a4d98245e3b4251a29e70a566d7a76

    SHA256

    507ee190d62a5a0377f6f42911ddcdffa436b614808ea8355e842eec23b7d7b5

    SHA512

    9f964c5ca4502ee5c54ef0d9681f60dfcc3b6361c1f89a1f1d9bdd89e32e85bc38b78650abc0c6dd7a7ff3ad885e028c9ba7f25115ae9df499a4ad9a32b47f34

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    01e877a7d1cd5eb1a26b005d00495011

    SHA1

    ef9aba4989db99105a9b915c6e07e4e297eaf3e1

    SHA256

    192c1373962ffc2f2038b7e3e400064d5a0e78a4af3243030ec28a8b1e5259f2

    SHA512

    22ff34e62da71ec240f7c7656302538c727a9502b731bbcabe715170eefe3c5725e79cd89d28f87c775314561fbac6300b01d7ffe64449ed3e85d14a11a8de13

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f4f547b3a6f3e5efd9f2ba7a30a82703

    SHA1

    9973db29c067532a2c9717e93c1ddf84ad373a11

    SHA256

    0268d8170c81b19034a21ac96f377f5fc06a38be824ddd4d9884f8d54765d925

    SHA512

    a3c1206d241fbf61395e1f2c4916c515ed0d1393d0e898e90a32f0eea762c1890c013343a12a5bd43fd74f0c367ae2a243392ef2b5d4f7c88cbf69381b863ac8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f3ff60e1259885581ab3bb4bfd06f833

    SHA1

    ca027bfc1173cc8d288005a2f221cc84bd2fc361

    SHA256

    2d176a99e69daed72b9f77d42d319305474e0cadc14306b4a4997e6ff0c6d016

    SHA512

    5000a6dcefb077cb5e5102f4e48aef7c747fe77420367e7bb9b90b66f3ecf2c522d461f751769854f8a13e284b075bb761b7ada2f16f26b8afce423c92db8741

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f7c5fdb26bc9ba0f0a5dd294a3458b9f

    SHA1

    4c71ce4b7b123c506ded8b9ebd8c164853a67b69

    SHA256

    83d1fd96fb84aa5a845bd2ad3a33d97f0900f4793b6354269e2d7c417fbb13d6

    SHA512

    9ea618761add374cc35246c471770a936d88a102332e27bfb7b4930a2ecae94801700e4bf8f8e27cbd2c7ee57e67677c62608ac8dd3f9a2be7afee4376e71692

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    824192799456ffed8c18f606d13bc625

    SHA1

    5b2b555c1ceddd3fd36ebb7f24fadd3e148dfe48

    SHA256

    b0af7a36746066c0edbea1f270ea0b9dafc047d1f040dd55e04f5840b93ee9c1

    SHA512

    37f707b8889f154f3638a03372a69aa7dae021e75d179df1a40febb8ef10824284f7a0b871bd04a445026462ad29194a3bbf84862152d37404886144e23b2415

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    dd2902aa18833a26860b6cfa164e8d77

    SHA1

    22ceb209720832eb0a1f4298df7b1289043faaf8

    SHA256

    6414655d4a5edbac5672969ced0fccda11cf66daf17d8c56d4791675c4f70bdf

    SHA512

    fd897f4900f3a6ef69954dc656e204fff9dffe5e9dcaf8cbd28edc2bc9883cc46c805f9a089ea62cfed6b815afa440257a38037eeddc01c17f3391e988342d43

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a82764ba0e977b3fc89ad5d4b8b6a04b

    SHA1

    c2de809b7624eccf4b917e1a3900cc9eba1bbc8e

    SHA256

    1da4dcdf05e0786658fb4427cdd908bfea364a7d8cf50abb4414a7bfa15fc927

    SHA512

    26715aec6d5ad3a23dd5614611a15e883f6209b8de670ee5a03a56c6f806f6251d4d67debd952c877b0df0196572c1328374a42d4ec983a59bda0026e75f6932

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4bd7a4449f4e7fb5d8ef63d279d21414

    SHA1

    e69cde629238db735bec2701acfc98cac1cb74a7

    SHA256

    8e2ad0b614f1d03609a57025ca4430239e6a0d5bf24da5aa97f72d9ae9dfb1ed

    SHA512

    d5214343b459a2c26ad81b2b8113ef5dc88262962497fc0c77a797fb232dc27b6c8c4cfb50cc06e8f6ca5a8aafbdd2d5f4fffb974e4b90c8e5993786005f47c9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ed0963a767d51b19b921dea35f3d8624

    SHA1

    bc722e7ac0b7ec4b34f89d2955d4f214e8eaf122

    SHA256

    e1b0d72b91ce6940e626df35df320f4fe24df7820a26e5132a80a692c219a3d3

    SHA512

    6ca57cd084bea85630390a3267050bf3e1301780ebd9caf364dd5f9afec5eddb1e826ceca29a24b8d5958e1720a361c40d86c40aae4012558b996788318317d9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    72626849dab1114405f17231e901affc

    SHA1

    80ab3a32ecdb5f50d65a439856d7dbc94cb6be9d

    SHA256

    babecebde301e6005066173a6e1a546352e19fae4ea7db23e9c771f1a6bb90a6

    SHA512

    b318fe5488d87a0422409fcf8896a7618f38ec18fd48b07fa3ed3739ddbdff367501888498c3aac4cd41adfa6ca21e4f48c03df335aade2abb032383c12c668d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2c4cb78c123b9f5fd35eed85b1e6aa76

    SHA1

    ed3eb8c7eb987351a379f48b7a3f87a0f840a2b1

    SHA256

    84ee90a9c1e6e8b9eea18b826089aa7de687ffb27035c665b43492145b6a8708

    SHA512

    49736433fc50c3b4bf5d9dbff5ad60367ac65ded1d625c9dfe2dbddece5400b879daf70f48f3db1a865a3d4b4785d5215ee10bf0fbe97706a5ef7711d44bdc72

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    44b0e58372dcc333807816b42f888dc8

    SHA1

    876a07d444169b5b2f46017aeb99b569817d6f81

    SHA256

    6ff736548c44279c4e0249fd6b9e1b241fc9cdead35ba9b0642721501ee66901

    SHA512

    9c1918d0fa2ced8d41975186092ae9f8ac3a225db71f06e23c5f6931893ab46794cddc0f9bdfbec1d964b38f3cc07f30edb9fb23e8b4cec0438eae7c81c07be4

  • C:\Users\Admin\AppData\Local\Temp\Cab3D30.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar3D93.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a