Analysis

  • max time kernel
    120s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    27-05-2024 19:35

General

  • Target

    7a45ee6781f3be80719d0dabb75410df_JaffaCakes118.html

  • Size

    190KB

  • MD5

    7a45ee6781f3be80719d0dabb75410df

  • SHA1

    d606621caa74aa35ad700129a1a063593a1c6cf3

  • SHA256

    658340cb0d26986b326cdc3ee465f4de960590e9844ed4238813d29eeb23dd84

  • SHA512

    5d3eb0e003cbc961331e4a1ba7209fbea6729e376edfd454dfe431465558f00694063823c468347efd0d746a3a38c86fe5059ce6a7525942be2a4dbd0647f3fd

  • SSDEEP

    1536:ct95hxfsFEkZ/64rV78lgOyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09M:JN78DyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7a45ee6781f3be80719d0dabb75410df_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2268
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2268 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:352

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    0bf2b5d8bf7707b67bc64412670a83d0

    SHA1

    9d4fc5f2adb76fb7ffea806724e3560b305a610c

    SHA256

    f91bc1aec8447003778e0ec63794bac59d6a4cea5dd74c9befc26c4f6e123b2f

    SHA512

    51bb89988a2f009f2ebf2f93c3045542364002a779554f3dc75a495d410e988e93f1845972145365b775704ee8517b3b183780e2e3ec97c70d6a0e6d2cba5a02

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    731a7c6830c4f1197b433b5fc1930441

    SHA1

    dfdfc9ca5ea49cf3d69ce96a7e3763bd2645636a

    SHA256

    785240a424cb6beda8ee6287a0d19edd042b6573ec064c07855547d0dc2f26c1

    SHA512

    f026165c9e9c8615ec33902272fdd82a2391e3ffb9e4f4936f3e4922b4d718c85fbadee5c575d52ede5d833365c87f1aebd9ab1f5e05ef85d6be3cd456f068cd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c6642c075180d8eb5f5aa282e36feca6

    SHA1

    747fb20672da367eb6e89c0065e4ad92f6715e25

    SHA256

    469f2f664ccf0b4a5258fdfe29788fb5c6973e5ed1e2d229cc7f6f9728a1c866

    SHA512

    cc3529e8d72c38230b4575684d057eaeb6ab8ec8b09c517bf82d43e8549e2e5dd0a5d80d598a04d60415cf7cae5a6a789dd4297afeb77d37313731af9fd21b43

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    93a65e64342a0db8a422f3d7e0369cd1

    SHA1

    0d88b63ba557720b7e5f666fc5118490dd458673

    SHA256

    cc118ff1ac82e3674d7b48f396285d69b3ac7ee72ff0fa9be597ec9231f10b2f

    SHA512

    85ca452e57befef814d5ef59b73d181499760f294c59cdf322a2836e53e6f02e874046ccacd2770a05a577bb2b80b35b27c4ae0536cba1167728bbc97a903ae4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    eb621131fbdb797e7993b8b928383300

    SHA1

    4f2ba50b978fa023720cf2536450c1b519939079

    SHA256

    afc94793e55db5e252f40a4fc15a7f22de678f339b10697af3cfdd48fd011418

    SHA512

    d40b385dc9d885d5720ffbf9d73a0cde948c691ef4842300308b05a6618c730162017da7cfda28f0808eec82c5e317c98274d4cecf3eeb701e7a019b75e1645d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    aa6db658339ac94d11e8358792cb484e

    SHA1

    12700eb7ae3b2ee6b7fd1496fb0c1226abc1d38e

    SHA256

    ad7864313c3c3f3e5006386c9ef916793ec5603ea571cad404807974f3e2d558

    SHA512

    4977e1ab0fd6916e4c6d99832a1e08bde9dc03474a31a227b6d0b321d4586dcca75a097b705a39654d05e58a64ba594860756b4bdc81527d17d6a647b8e3e771

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    1f5166afc4fc9a248666a86ca57b2a03

    SHA1

    4eab981b7a5f1e41d8ef6ebb0dc488ac19c22389

    SHA256

    05f975c3d57d5c4057161c9062b1f25f5dd39608659319df0c36543f027906ac

    SHA512

    6f650d2108dd69ea4de1dbb523c00fa62dd8353ec2935112ff93beb015c9ad0a09ed748681d59db8f0d017b8cf0bd6904e5050239ac4a5e31398f0d4b68fd9da

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7fb06d53f57583499a1ddc75b344ced6

    SHA1

    058fc779d6d86434fe2eb4a0ade7f43684795dba

    SHA256

    b05de03dfa7b92c7a40c91b2958e886fd8f418e746ee41a598901ac74be9d7b4

    SHA512

    004bf5db00ca2f3f1c639cfdfe80b635b1c768862e5ae202a30c40ddb34d0634c715433c45c7c3bd4dc8dfdf7a8f8312408c86e722f7fccea2b962b9857ddbb1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bb89a047ae0cf7ac7e541dcfd80e0f04

    SHA1

    d81d00227f77eef1a058cf4c5eb46ed9125e8e55

    SHA256

    351149c9e8b88816651cbee57be2ee3efb075fb824d79728228e8622b8fe7e3d

    SHA512

    ab80d27706833494d3e594d8486214695d7b0906e3e8bfdb734cd2d059a4515c5ed174153042a8ffbf1f08373ec54a9be1a35977f2121cddc4052b2c0652c1d8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    fe391423855fc6ae61fedaa674fe9d68

    SHA1

    fc3e9517a7746cac184438b53e04d06aeb9b7cda

    SHA256

    4dfb6cb9aeafc0cfb97c3ca94bf9b47fc83ac5792d49a1c11fb4a1a771c80726

    SHA512

    b7473c1e39f7d4a648773e24ca08a0eceb4ac8a90fe6a2a763581ea4a459789cd42e24e8eacfbdc47a403c973712bf1e5c85cc53f2f1d82857d5aef8dff8b54e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9fd0ff0df17e3b84025d1f5d73c91b72

    SHA1

    9e070be48ca03107f91032dc056ced52c6634cbb

    SHA256

    79fcf381535b82aef624544d99343aaace398cde718d0b2d9734cfd8f9654468

    SHA512

    00a755a28049d41b173b6cbb546aa559da94e52bdd0d3adbb4139dbbc1648dc1b58ba07c7ca5ff07792b733c2022d75bb1e61a9f226154dc9dce71cb600bc98d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ddfb8c050a76af45a10810f08e14d79c

    SHA1

    60a95805893d530c09186d29fcf0b3b7ceb4a2a2

    SHA256

    88fd816433d47e64781e35a30664e11d913ab45390f9a35122bb0dc47615f9e4

    SHA512

    a641a384ea26503ce31b3c913b6abc05bf0a63c9ae963d172c6d71e31a75cdf99976df2ddbe3d786bd5251c07135ce0d6d92621db4959c96e85a9c5e92ea33bc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    8b7df03b234615b41c471d3f66b2dcc0

    SHA1

    a3d4b401d81d3c226d25d54fc7e06b81bf466c73

    SHA256

    a27bf492691cce5f4fc6807b21e373a4564793ae9c421dc8d7e7ceeccf77d2e2

    SHA512

    cf481839398a3ae6f89eaa4208902a50c4de075ff447710bf441de35870b9531b9143b852306b6c9973226ae148b00a6af41574c603738a6e69fe71fcfac525d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    acbbeab4f14bc2bb5d100b6565ed4317

    SHA1

    1b3533a6e5d9c8390d3c059054aba956cb07a7ef

    SHA256

    62103981fd33c8b21dc7678713e4e352c9a6c67058eb1d1c25165d0ea8d0ede8

    SHA512

    d23ffa1e9697b4cdebcad87998ce99c1c0d0a2a73a9f5867070d24121af5c39f3198b2b63175f4c07e19b5fa5b285b25528a64e75c31acfd91317865c9b71199

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    0c802311b847a3de4f070a58e85f439e

    SHA1

    986c73664ab897ba05a068070f87575005f299ee

    SHA256

    3498df79bf7af4ad34f5019c9e4e9bb1b2db79c91cda083b4a702e3e3eac4614

    SHA512

    b1294978109caff7b4fddc3a8e79b689eb85d532371378f31edd22b9f84491c01c79f37c69027864cf5b28c64028e5a379258dc0a4dccd67d7f0016ae8084879

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d8be2564cab9423ccee51d088373243f

    SHA1

    2cb4cc012df2246fd98a34a652d3445a191e0b8b

    SHA256

    a86bd7f423a4e489dec19e40f5a60cfafcfda9e70011fdaf6cb94072c606383f

    SHA512

    ffaa1465fc862b0a16b517d6bf3cf7cddee809d7e747f12c53c2ea24f8a6b5a3fff26cc6ca1ee0e03271e51af8bc44f0b1ea5ea66883d32dfd5a46f4c59c2dff

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    647f760998bf672216d6d00a43358bb1

    SHA1

    1adf3279f9d726113ba736ed26914b7c06c4723b

    SHA256

    c299a6aa27c068e7a7a60b41f11478e5a88c08aba53ac09bb799138c4dd4e527

    SHA512

    a882546cfd4a92a17b723c7845e201fa2ea00507e2473ce971697373d28e609e5b45402bb4212780914b06ac1629390ebfe4a238e33bf563983bee3bae97f19a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    fd229f7e50e40ab6a355d22a4dbc547f

    SHA1

    731ecc978a491de0bc53fc24743ea38cbe4dbefb

    SHA256

    483c0b8b4446dcc41459f658e7d5aede108198d07fb0f1cf50257d9fdba5a28b

    SHA512

    a41d56d0302f3192e58fd54b95ed6430594aba521779da73165d9f53c6f7ee4a812c68a9298d2917f96c6cf02a0d41d1be89769dc2ad451f84ed68f317a7f61b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    936f7b57cb8de9e8fb3aa17f904b3b0f

    SHA1

    22debe5cfcf0c9131797275349ba0c85a884b53a

    SHA256

    f26929a85fe80537c82a594ae6c4d6aee1a3f80a03df43fa73e5b92d69e07cfb

    SHA512

    fd6d74e162a8b8e84763ec7b4c27b6fc8dc1340cab50768f13ba7dc32006762ef414a72997c54bb8b54c432a3c3a2907cf4c6089e63deb1799487f38c14c2409

  • C:\Users\Admin\AppData\Local\Temp\Cab2EB0.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Cab2F7E.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar2FA2.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a