Analysis

  • max time kernel
    120s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    20-05-2024 17:42

General

  • Target

    605e0a171a2b815b99ffeee0f751ead3_JaffaCakes118.html

  • Size

    345KB

  • MD5

    605e0a171a2b815b99ffeee0f751ead3

  • SHA1

    fd25fd879e8f51a49501d216a777ce26e57de2a1

  • SHA256

    bfaa47d03977f5f3a4ac205eeb3a9a8d13dac4b6f073073b4372d645998a95ec

  • SHA512

    807b672e288460adecb2f632e8c38074565894755399ea689feea1c273ab5611042a8ba2180728ca2a421f58c53bb5354e2461bd82099d59c5b0e729c798b076

  • SSDEEP

    3072:RjmNbqLljT4oxZwHN5q23dgoRGoU78OHXu5zcVltBsi2P0bfTN:Rjm7LHN5D3dgoRGoUHHXkPm

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\605e0a171a2b815b99ffeee0f751ead3_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1848
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1848 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2780

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    2861063c0e5b4b97b9bceeff935fe681

    SHA1

    6a4bb48270c696cf111fc5c27206e84aec145f54

    SHA256

    104836bc45abba5fa0b04c6f65d9eb8c0d83faee20bbb2b515cc2474d5f109bb

    SHA512

    c6f3ef2ece358d6cb29f7640e3b470295ffdad5229eb307378c71000999bca58ec698881aa2571c7fde0e50b0bc1c69a915996260f4618c27245b25b9c4a24b6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F07644E38ED7C9F37D11EEC6D4335E02_02C4C6ED250727F9B08935C0A9565568

    Filesize

    472B

    MD5

    7a1e441067e2f71efad6da8ff30c7500

    SHA1

    247c339a52f9ce202be20f1524b462b7fa738bf7

    SHA256

    b125be7ccf15f5696afabf0c2962232f59245b7933d04d789c0d13a24bba22fc

    SHA512

    d139d706c00ead9dc1e6e438bbbd8df7f3bceae51440aab815661bd72ed8dac385f8b274613477049ebbee7124b5846e9b93d86e5914f7a521ad0974f898ff8d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    efafbc31aad360dfae1163d623f8706c

    SHA1

    05a3bdfe81d7d0435648ef03373c6f153a2720a0

    SHA256

    05bf8019bdbdf20dd894cbba18f0f8f17ec6fd502df6440de1fac4b179936d78

    SHA512

    d0dcd80b3f2a1a126093b72e10aebc5a1c79befa3dfc2bd47b716160df5fcd77c2eda4a498c22e9574171848ad83195a7451a72481d3347a22a198e5ee453007

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    c0b284d7ae57ffe508cb68a5fe938519

    SHA1

    2e0322c5139e415dd1687e8a5dbbc4fb88f7bae0

    SHA256

    b5467e7e07000b033f23e123c9badbe07134fc51041ab607ab0d8aa7ae9c5e3d

    SHA512

    5ca1ffe6c2596b837401fe9eb4c603358c5fc268d08f8848d9504bf00522298e5a00e572118c58254cf515a68a8703ce9e30253b345f9d1135e0d7b037f9598f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    351eb09aaed63024b533d6d4ef9f895a

    SHA1

    b1f5ac9add49eda8a98c0309bf45ba278dc23ad8

    SHA256

    2836182fdd8850a427187045c42de0bf4b0fce321f918479fee7894784f75aa3

    SHA512

    3d901034adb68924db1ab6d2d59edecade94b69e6a5e41206da81a89ec31418f0a5b35af61cd63741ac8e1912f9a6db2cf0d36722fca4d110f956cba76d87987

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7f35095bf488059c886363a06f2058fa

    SHA1

    c5ae6ba3406babe44be2090cc153efdcfce8e5a7

    SHA256

    e8cab257d67bfd196bf6c3b9e8006a639d923dd5884e37f6cafc95a4861b89c1

    SHA512

    37b08003ab4ecd0b3dfee7714cbe420f9941c92a42b5bf6ba1b4f4d9731f1c999118148c7498075cdb7c0c4df8dc7896f797bf4976b5de2884b7fd92e8bac538

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    764c25362ca0d55cfdf8a1d57f394a86

    SHA1

    37fb57b72776d50df67dd445185efdebfce5dd1d

    SHA256

    1186e216b207d2b9a9b63230fdd1d80ae804353b689bf65e4cbd652262c76241

    SHA512

    a8fed6c0da41400da676c071516981a3f4d0f62015fbc74426958df8286e1c2ffdf04663b6c9b85a361dc3b784d88aa88f3c57e2d501d9a8db7a930ef684227c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b91d4c69017beeace305b03e584a5c29

    SHA1

    b8d3b4c13c0a76416ffba30586938f5e3f5ce710

    SHA256

    ffd131185f2c850e40ad45beadf743ebece8773639ba5529443ddb5a6e3a6fbb

    SHA512

    c796c0a07560e738937b4563a9e08d15cc918af2bf640bd737877d74ccd80504c8df7a351e65809cd77166f57d213285ccc04d08f4c47b1ca69ecbaf6b639f86

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    0eb3b13dfff4ea1d3344a9905d432fcd

    SHA1

    90a95a9d24dde23a4ed4ae40c5eef08455175836

    SHA256

    a05cde27ffd326f1e9917e0be34fc6a35fa3285ba6fbf4060eb187de271670ab

    SHA512

    c6a18cd1cc8324866a6df6594e984ef39b3001936d9ff4958346fcae310eeefd8150d250b83c190c7dec3fb1353e33e83e93ae7165b06f20fc55fd493f8966dc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    527e705240c9a5149a7292beeb083ad4

    SHA1

    4f0cf2a6a8830925d2cab8c4cf7ab5bb3db8ac6c

    SHA256

    5c932bc8f7df418672932ba079ad5cf7d183a95a49e39615e477ef8f15eaa686

    SHA512

    08ced5c5deacfa3e74c1330e7f20ff7b0e4bda553d9c6b6dc3db7ffd975471963693738298f67ca969af5602af7d15102bb5b93339e3fb075c60c514a5be2b60

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    940bea4c7d7dbe9fd3013bac86c182f9

    SHA1

    ed6825f462ca379c51f095923dc6fd127292ad5c

    SHA256

    66fc0bbbda4020fe54b7e025dab4b6235ba6c2cc411a1b35f639cd417da27086

    SHA512

    0df444e7abf625642a510fb98673a74cb360627a9d60268440c38cd418580f7006eca35895eb78a8fc69696dc7876e83c61ea6d41fd4228e0d1b6daae849da44

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    43abfb7cd9176b7b6aa6e29fd574ab1b

    SHA1

    9308aa315fb2a226af2e65e9193456c19704bdd0

    SHA256

    e079138cc93308fd53a271c9525a8b893c80fe2771e86bc02bc0b45aef05cd18

    SHA512

    f3b29ed12d940b03459c5dae83003cf61bc60838c95808ffb477fe685168f7c5b135f7abdf647c20de6285479f7511b62031e2831e96e8abbd38f7c8f497e1ff

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    35a9d46c7eadfb6df0609ff98b813ef1

    SHA1

    131f4fbd26ecc7722e72f3e566e9762ecbbd336b

    SHA256

    4b17fbfcbbe8df799747523d58535569107ae759623d6dcab45884ee872098e3

    SHA512

    9d35f90a779e5412ff252c55fcc070f4b721b62d01c9737f40cbfdc4b1b0a4d1552b82b6dffd51d6e54b5c62d955012cc0c40197c361981d4412169fcb2d69a1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    aece73a34cd19fa0f750a9bec192e444

    SHA1

    5193ad7ad255511deb4e3a604a8cd71566da9004

    SHA256

    e40c106089f95242d49142bd790f4985fe99e377ab4947fdc1a7405923dc8fea

    SHA512

    8514d960b9face9305cec9dbddd5cf81912f2032a6cd7753f3f64fc9e31bed25edf5c35063af158b194f30ed9c3750bf38f7394ea1f6a2f9163a3098131db403

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bdac543d5e6e8c871b0e6459abd19e32

    SHA1

    5262814af982cd1e9e9a2bd216641d74603025dd

    SHA256

    1e8f50fccb1d74efa7a16f451284d9d34042d7b3052e8e987a3a039a8ce6c962

    SHA512

    9e093023f149cbe1aeae4d5d3deaaa3d2c961c371d915015b949159fa1de4fd546d7acf621a0478e869af618bbee29812bb0db20289ef113b9129a8891b7ae8d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    1b013c79c3c8ea68b5ae780930e1f539

    SHA1

    f8f93d965a615001544b525d6771343fe479452d

    SHA256

    7b1a5c3b5abac363cf55bd4c2c4abc5eded42e8b400687587e9854ee8508d93a

    SHA512

    a005176ce331dcccefc19270c09183195ff2c29535340ecfc5362ca1ae985f96b7467dd26c5472934621ab80c0056e402dda6543dd0371b12bebcc5be40607fb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    225a2be4e84524bd8563d51618ee1666

    SHA1

    33b6b6743de3f7c53d439ddf1988b19752b8df9c

    SHA256

    d01700e91c86c32756ff54a62c2909c0935b58fd2b76b9096114c195088b5407

    SHA512

    ffbb050d8e5a3d0608eb346169638b86e7416ca245a4d205a6ea9baebb7f042748a1f5f7e21c10fdae733403c08e60ac6c6da4957592f47c2f1dac2410995f7d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    82c60c1e4b470e832ce86d61886d4255

    SHA1

    1e99699fa7017dff9b92388fafb3f8900e64f1ef

    SHA256

    3e1e3091006b1d389556a97b64a6345b81e572ec160d630b295c0e7249db7764

    SHA512

    95183ab908ac0b46a8484aeb0bf95836b1b0830e398ba51ca78442da276a4e97d41f90838b9a0c779e4149f42d9bb463d62be28bb7acc9e0935f3e4f19e9c2f0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e2e8792d6777041c61f6519753e07532

    SHA1

    da3c6720c4d04233fd81b5a99576d00f5407ebf8

    SHA256

    d03344630f01b71a5af725a988d850a88a8dd3ac41f57bed8de850eb6161c3fc

    SHA512

    1034b12b9d6ae1133562f042a2b8ca0214d686ece8ad7d125053a5a19c9db5af00e090696f2c167c4381d9af6efeb7d9acfc21b1f6ce14d501ca8c211dcae730

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ff004badc93ae65b736d50487a12bfc4

    SHA1

    4059ca383651c7e6be0397d91669735b93539b66

    SHA256

    06c036b64fd33b834a3341e635212ff8d5b4126bdfb8603d558b04c1c542f712

    SHA512

    abb1f28d53295d311d1ee46b63c828c487bb318c645399a434bab00e5c47aab6b20a5ec3ab22d747dae7910beeb020f6fd2f13579f8f11ffbf3ccc8ca8a89416

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    00ee6b8a1935142ee3da3c4d61cd5ba3

    SHA1

    ae1f93e4016c9b331d0d8397a58e95dd2c194b94

    SHA256

    44ce10f440d0f386e1602ba9a5fd2195460d59e6e4fb3643c0b571104ce79bf6

    SHA512

    64a7810ce6b4f87803e5d8f44db4600e8e01181648e3a49043daa476266dfa431348e7f1278bccfcd78e15ca7b577ba2344aa5788a679e5e8b3f35f58a27868e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    54f64d5f57a851caf928ef8a5904dc22

    SHA1

    a0d769b9293c6d1293b5b6f9380ba7e117ddea6e

    SHA256

    a6a0fe21b760d3a176533fdbb6b92700ed3e7c17f1bafc5ccb58b26d7454b2c0

    SHA512

    6a073625b3ea5e22f0698e1840376121551412e14a21f6e4d276ab48988e57d76556ae7192272c7adf6536f435b2ef28f790498dc2cf835fc18b571d2946d3c4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d3603a021c917d5364cc61ed1a508a73

    SHA1

    ca407b104e14b22d21ddc9eb7ff6b878162d6be0

    SHA256

    f3d6598338bc232f640521bf5ba94c927c45f662d820d684e2edf4780c8a2a4c

    SHA512

    d3ebea57323b872c3c755f9a155ad1eda2abec349d9e22518a3dfbcba083dd750e522357b40c0dca8becf3573aa3f66e7d8db057171a50e3589be170c5b58445

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    6476abf349ae91ed06cb52d2216c2f40

    SHA1

    2018f666a87f3c3163660b1dea611e0191479985

    SHA256

    11ddf3d321887a52b60389e17d2a69ff63d5b97bbc5542537aaa8b8f5f2bc67a

    SHA512

    1e52b4a35e7629fc8bcf8cf420e5c23a7d6c992ac9364c0ba6bc4155f2ba0773ae583861c419d4ad3bf49a7e2c82e287bdbd66cb174a0f2039f3d2a530ea3118

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    14848bee179545d8a3c0123176691ed1

    SHA1

    cbafe446a32ce770643372b6d5901329ba0a423b

    SHA256

    395ee242a3d5918f02de11d38c869ff85a54e29a05659f0dd335495cc0a14bb7

    SHA512

    002381c0ddc6176826b63c08b029a9e41d1e207a4d183f408a7a12de420bf91c83fd4ce2aebc39822188f8324a3875d648841dfe779f59c060f1674d42b232c4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9e0550defea7771da9c38cfabee83236

    SHA1

    ee1e451e06fc2124ddb0c31e6f5aded2cab3a78d

    SHA256

    cf797a42125f7a56df989c4b9388d2c69cc0de3efba0e70a24a57af0ba248ff4

    SHA512

    46ded1e588ab3e4b811dc730481a3106586158a64641a15e1455038993ff408dc541e849b85a74ecbd8fc9c24488065e0a54b7ca16d37b5064e5c1d2a0f89a7d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    392B

    MD5

    e5a5343b91696ac680816dbbcfc8b9b0

    SHA1

    211dce1ccf0ef50103c876538b8363974a6cc4cc

    SHA256

    f4c1126b9475eb5532ee55f81def36e0002ece2927993a260d4f3bf28f4f74da

    SHA512

    77d48dd20c42dfdf83950b86bca23d61cf297b0e8acdac4fd34a8dd1f74bd2edad5f7ccf503994ca787a68494ebca117c49186522bb22a7da43fa37772309fc1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F07644E38ED7C9F37D11EEC6D4335E02_91E41FAE8B0B67645773C1C9A8DB10E4

    Filesize

    406B

    MD5

    bc36876df0d40a7212a8edc5b0e9f4a1

    SHA1

    ea69bfc38b2a95ea4aa607d0000e02d69dd41005

    SHA256

    01a888692d876ea5b9d7729be99f2a72b5cca91fce12a4f642a4b8da0a445a37

    SHA512

    30dfb2db409cccb6766dfde4f7f3f314df477f640aa5625b0a550f3fec4aeb2fba05b7dacf6c2004ecf41af86201a1657f93e063b930501b0c52afd81e6c80c6

  • C:\Users\Admin\AppData\Local\Temp\Cab145D.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar149F.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a