Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    21-05-2024 15:56

General

  • Target

    63de46693e4700f1187f80fae7e23897_JaffaCakes118.html

  • Size

    36KB

  • MD5

    63de46693e4700f1187f80fae7e23897

  • SHA1

    019d14d6fb62e38fb7a9478946cbd8badf87b380

  • SHA256

    8aec1547afe5d3b18e9827607512c7c348593040e6b7c9f96132acdb9757af8f

  • SHA512

    164618e79adc5754dcdd7a2f3f24602252f1c96f4f8202fc8aab0470071546169bc6df7c14bf928a76efb2b8a1c4ace3f891337e9c2e810bb38331d02d884e43

  • SSDEEP

    768:zwx/MDTHWI88hARMZPXDE1XnXrFLxNLlDNoPqkPTHlnkM3Gr6ThZOg6f9U56lLRi:Q/PbJxNVNufSM/P8jK

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\63de46693e4700f1187f80fae7e23897_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1384
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1384 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2168

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    df80f9ba75076db634761b6132e0d4e3

    SHA1

    07983946fb660752c7cccb2ef82d01ec4c9ecc5d

    SHA256

    d5ff96fd8b416de93a85783192206224cf8821c240cd8ff755f2e8270153dd99

    SHA512

    4ec734c5d29e9ce00b00e42b627253195e8c7a158433fedfcee428e692a6501981c33d7c8a39235f8b691f087145cdbe660b430493edbeedb12588c5cdd5a66a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

    Filesize

    724B

    MD5

    8202a1cd02e7d69597995cabbe881a12

    SHA1

    8858d9d934b7aa9330ee73de6c476acf19929ff6

    SHA256

    58f381c3a0a0ace6321da22e40bd44a597bd98b9c9390ab9258426b5cf75a7a5

    SHA512

    97ba9fceab995d4bef706f8deef99e06862999734ebe6a05832c710104479c6337cbf0a76e1c1e0f91566a61334dc100d837dfd049e20da765fe49def684f9c9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    30253d67c07af83dc1e94728ad417e5f

    SHA1

    5dbcc5d16cd7284d66b504d60460c65288ece428

    SHA256

    2ab67db7f4faf7057566ca73abe276f37b9135b40d233dedc2097b40ba8b1350

    SHA512

    8ac4eda954ca189e6b35f7121341837a9f152792eae25edc66e0a188465994af8df2fce3b33f747518629dcf0feced7ca44d39e3a7c3226b580a54b5f87c1be7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    0d6e4da26fcb98201c236f015900a13d

    SHA1

    6e1e1e476bc8e80c1cc8ea5836751def56d45cb3

    SHA256

    2a7fd5abfc2dbbc84b2f2e1483ebd43a71f564161bc8178f17a2560c9817eec8

    SHA512

    f1d181ad20d37cb52ac8772fe050f81fc3f4e193127b81a44d7ccb9b80a10eca513d9bbecf527b2f261f638145ad76f94c804fea9f095ca50fdc214451b67230

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d8b271b896e143fed9e4708ed2c73874

    SHA1

    cd75cadf0d9cf65c14493b3cb52aaec2bd8070d4

    SHA256

    a617e54c3d25f5f697fe9eafef5d2ba117892ccc55f00f760b454b4102520583

    SHA512

    8aac1048750905c59ec42437b96f3ef8223a041e7101a2647129e8181c89d277a20e860f1e83d200e561cf1e7d30c1ca97f4766b1cdc109752f4c97caeb29baa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    650ce3e723d3bb6c58174fbba999605f

    SHA1

    c74afa1105926e410bea600f0048b6d23cb0f453

    SHA256

    66dee4cd32174c0ba45fdb9172eaba49a192eb90785320c6c315103f63c27db7

    SHA512

    5775926cc9727fd072e0110f30e8a31987890631caffce825a7e6af34303a44287b8268e28054d9d83a2adb2fc79f749842db03e513a0be5aaa8fc6e169cdd66

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    41811d9ff13bac4983c5e5ffb57bded4

    SHA1

    ac46f625d850195f6106b50dde8c8d753fd769f5

    SHA256

    0f0f46f3b0acc34a9ea6d0960daff0d3d4ed0f909b46c837a6a0abaea60b2929

    SHA512

    f77652bff4f85454ae609379a6996cd104185e8fcadc6de0624a56acf546d2c4f044f567f950b85292b7ff2fea05ed8dc0cbd4c8f23f6b28499a05fa58a110ed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    8170cd675f20d5b8b56bea4b609acb19

    SHA1

    500b23ae66cd2f9defcd03804c791befc096ffb4

    SHA256

    9faa6c6af471f32b90269e6f937963edb713dff45b65d2a24f6c0a5ebd241d36

    SHA512

    cc75976ec260bfaec4d0c55c2dd966ede1e0217baecd07d721e724a03699c17b0c9fa8fa6079714585cab38ef83e41b05cf93694fc8a03ad951fc759eec1f33e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c2c3d4a84b32d03a4ee464132cc123bb

    SHA1

    d02282f92365bca8bc673089b69b4737d0c5e80d

    SHA256

    62132b23e33edc9479e677c2d67420aed015b7defd375c0496c13b3dd376ecc8

    SHA512

    3835f979e4e2f3418f6263aab606fdaa0fc4baab3df609e95c0120f92634b27f11bc1a44e96bc2a2f8cdfadcd33c54714b1d281a2f3ce92bc035d3cec7b7fce1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7523f327c987ebe9bb74980f5b35c384

    SHA1

    258ff3e0866c50bcbebcaf7debec8d4daaa97ec1

    SHA256

    6dea6f10dc64380e343d20e15a77b616407cd418893d7d92b24da9b1a6981262

    SHA512

    419b1a543093f8f695d67ced1aedb28e5796c539b70f2da4f711a7d8c8df4811e62b834d859457e6ad861ab48c663ebc63c7277f549b0f22f2ea81b627adf68d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    30be86b017400c997fe6844ed5459645

    SHA1

    414d517cfc66fb848bd645b1ea826142a5998d05

    SHA256

    1df8f0d93d0e4cf0a5ef0c983e90e382382c2d9dbc7e2acc98252e80a6b7e612

    SHA512

    00c9fb6c15e9d98b0979248bfdeeb0a3fe879a39441d2b62adce2083f450f023bccc2274ee74d895d732a2a7fa79bd4352cea386b25d2305c3c973e5e77cd045

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    43b81dc39c4d4c4694148d621dda4673

    SHA1

    c20ab561cd2b8cc65d17ac7fffd5b36f904a9f36

    SHA256

    761f73becad7d3add63f5c29f170c03d5183257230f7e02a86399bae7db95c64

    SHA512

    c904863ec0818d27de6e789e76da75d5432722ad8ef7f124e3b1a63d47553072335296cbbd206b471592d5d946e16b0377034c942234ba6e01451f2fd385380a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    dc248a7cba836e7dbf39cfcfc9e36dfc

    SHA1

    881ef5fefefb6f78bd23be788ebc90d523d83015

    SHA256

    626ada89b763d886ed15d0325af3d03f7b4fb4d88d5ce9153569c976e02e7fec

    SHA512

    c898b9d305f143d848263836182a9463934603d04677e16f5eadf8e01d6b9c3333acc34e434c22faa582434aefb0b42dd711a53d1fa66b4ff9443d7ebd840d67

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    37d4817bbe91bed8650739bf8ded4ceb

    SHA1

    d8f0e25a13562073a1c19298bca680e69e4af7c2

    SHA256

    7c0b523a476d2f3d542e41958ad092d79d6bd6cd39dfff8ddd29a9c86dbdbb0b

    SHA512

    9f629414273603496925da0361621d1327b4dd2c172d6a4d7e7c2968310ae4715c273625f8e994ab8e357b86567c529172a712700911d1c688407ffb6b7e0d50

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    473a71d52802513bc62b889d9fa9665b

    SHA1

    5db33265473c35df6dbe3f920de82a28f19aa67c

    SHA256

    7f16737f945bcbf454957c793f6c4f63fd3e4033d7dac6d8afc73c7ebe06cc49

    SHA512

    55e034f9bd9abdfb0a661c5c15aef04373c87c6150bb70ae70f4474b8e07cf88a5706f758eca2f77d4201c0d6d5abd45cf15ca5cfbe6fbf2b5216fd8d41b2f7a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    82e86823dba2c3c58355ab0ada4870b4

    SHA1

    a6ea7d7ab99321ebf52b261458ef3bd03c148ca1

    SHA256

    1c2fd2442ac2451f3a30eb8df067132fde71775419227d918a4a3424a0296ff3

    SHA512

    fefe1dd717125f0acb747fc2bd93a2fe6eba954562d0a6482b566de9a5d4fce5cec2987cdb6c42cb86b6f88466cbe588654ebf2a7da5ab849041de7a912825f3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    3729f067063f77013c52bc74c6eabd25

    SHA1

    fa4bafa7a9bfa20042c5eba29145375d36716063

    SHA256

    aecbf952414e48bb7ae6b1b4929ad7f78e7931ae9d6f2bfb4840b44df6f5ec66

    SHA512

    460c966ba4e4b5e84222cf7e2a37f2fbea791ece8f986a1926eb4c68eee520bf0450a3a5b556f31d0ffb7c6b3b9885647c3bc0ed66d6194ce18d5f4b7d6d4256

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5132be75808c12aff29e562f61f1ff6f

    SHA1

    aefad6a9667845753326a89e47ec2334368ed6ca

    SHA256

    a8c372411a29959c0ecd628157193c6122519a71294e22f221e1a12f9338d24f

    SHA512

    8a51fe879be1b4bfe6c78cfc8272e38bf651cc15ff8e1f71e417cf02fcf8902900f5e9940d3ac87f390def63bcb8e9b9bc9bcf0523d5425132f2005a9c00bad6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    363b35aa658b5cf676adda4471ce2648

    SHA1

    d53eb3263af6d8f12637b561c7ba85ab921bcb24

    SHA256

    8427b612a3efb3b60b9600b6d74a9128b71411f656223920632863056765fc46

    SHA512

    5fcb4c40fd169fece5bca9015a5721ce3a516fa6bab709d19d7781b873b8f25cabb0d61ed83ee0d26f7f8dbf7d39399cbcde5206dff07c6e12fb78d78931e6d5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    fb218a69d98d61ec8e1556aea379fadf

    SHA1

    2cfa252afbdc8a3507fd2e3fcd599f63decfe8cf

    SHA256

    84eea6d743a3a16fa3935707f93ea05110ff463ece45da88af2c0c7b4d607d3a

    SHA512

    7899b68fbe2919876f10e14109680adda1e9e00bac7240a9b77a8d3917ed72ce37a70d6545cd0aaa14e04d7e5e8608ba4cc9fd7818327ba5d9ae7edea030eea6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ea66ea3b856a8369261d5179330b9e9b

    SHA1

    258c4de4b8041b1007512fd5260fda835c9cec25

    SHA256

    6fcd31f99669a9f41f2a01ecb65bfc331efd8cbab9907a467e37ce98c8932282

    SHA512

    8f05bb01d3aee31088abb0b913148ed995b54bf14d1bc282d360172feb92904d1ab0acd891c744948582ce308f1e12dade6223841a39f16820d60d5e0f46c184

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5d65cde372243e6fc3de8f4d2b6aabd8

    SHA1

    a4c26a18ac1edf99517bf59a7227dcb9304d1fe7

    SHA256

    f93657832b435f65a70f42febcce520c0b2ff8af736131244f6121b7053b8c3e

    SHA512

    dc5772b5efb95ce605cf537706d8cefdd55de4682efd8e9ad265d56a7cae47e0851bbedf69a365f6e8861c678c733ca8d8524ddb130113dcd30294377541ede1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    60d77d08bd01c7a169e4caa687ed57ac

    SHA1

    ce5db8f4e4fc7945148844f15e9b8d246b430360

    SHA256

    5c3f32e09d291be558e1aed1ced6010ed33630e316986d8589dc3c4d049c7b3e

    SHA512

    9e14e90000c8441ce6542447bec647aa7e60217af1ae19a01b61c7f9e8de6a4dd38ba9670428c74780d7559caec679fd5ec3f62b12b669cd4e0a436df0a2f18b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B2FAF7692FD9FFBD64EDE317E42334BA_89854CA6A0F0936A4D2ECA78845CEA25

    Filesize

    482B

    MD5

    bac8660faebabeb217f95c5117d3ed87

    SHA1

    2b27eef76339cc884536430d4c2dc55796ad59ec

    SHA256

    243ba2b90824ff76f3975cbad9be40ad110c3f036264616bc3fa93b89edcc24a

    SHA512

    bcebbcfc8836cbf13bd75c48ca52591c2a4ba08dee2b8a9cc965bdebb04fdbdbca7996fb3381161bebd315407581cb6c9c3828805cfe4684fb1506da1c889592

  • C:\Users\Admin\AppData\Local\Temp\Cab22A0.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar22A3.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a