Analysis

  • max time kernel
    144s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    29-05-2024 21:46

General

  • Target

    820b15ccce9e18018435889defa83e56_JaffaCakes118.html

  • Size

    22KB

  • MD5

    820b15ccce9e18018435889defa83e56

  • SHA1

    4518393854770689de8ea64d5ca14f095b6229f7

  • SHA256

    f1d90ce997ea5b1735fffdc3b01c4d5f94c44898f22c28cbb94af54df3239b6a

  • SHA512

    d78eac228f9cf12a9c55ed43b6c934ac586795827b41fb681072ccfe2798f4e4361cac86bcf0dd296c632ebceaa812b100d649023e17923feeb91661f1fd00a5

  • SSDEEP

    384:T4/mXdibMQBjLMciMb+rirU8F3uk+Vo7kbHuYMV1:T4lbTBXHSGrU8F3uk+q4juv1

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\820b15ccce9e18018435889defa83e56_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2252
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2252 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2580

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416

    Filesize

    1KB

    MD5

    55540a230bdab55187a841cfe1aa1545

    SHA1

    363e4734f757bdeb89868efe94907774a327695e

    SHA256

    d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb

    SHA512

    c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\070E0202839D9D67350CD2613E78E416

    Filesize

    230B

    MD5

    6c5715d1ac2a844158868524884c80c1

    SHA1

    58ab3d237e25f645573d3951b393d985ed78657a

    SHA256

    d59c4739b217365521f2235e4ef922d3e1e4b16ac4f41293006bb562198ac928

    SHA512

    8902ec1b6c00a3a849d267ba8fae63a3ef48f9329334cad17d21b7bf6378902b809ded9d2b8a7c3d53d7d8f2704f993c35bde0cf33cb80c1e49b09f5d4fff245

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    03097e043c33c0fd516a851ffbae85f4

    SHA1

    38c2b00be3e65b114e32815c3721bf4b6be03b93

    SHA256

    d3ab647ccd9ef2b840357006bdb98e31d9529baad54d72c64489029773db5f98

    SHA512

    fe6fa2e3800c746f26a767a32fea72bda99eeffdf6bca49ab9571f4aa4032a7151a20fc406e2653825aac46106d84c4ea24a6db115ee5bfa399bb57a250cf4e4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f8fd2f0022c3e8162b7686b4a8af4a71

    SHA1

    160d457fbab37be133430c856678be8c91107b13

    SHA256

    57dcc0d7320f41403b53ce0a85f84fc128ba42864ba8f6805d4b7da382b00d0b

    SHA512

    7412293c81ca151e6b74b10af7ea4b02dda73a5fa98431f740103dc31e936328d9bfb1844c310b3e7338552b707743dcdd139aa56ca265913e141a93d0b4b053

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e0c957bfb58088d5ebad6c93d8cd9e50

    SHA1

    de7892427f245a4c6115dd054d308543dcf4894d

    SHA256

    d216514b2a738e11c03a537752b0db2926202c99917cb1ed611a42222b2c6dd0

    SHA512

    c624153bd5dc552ea07173130f2e02cc881ada95806b45f7a739656ef956d44666b3acef44b711756d28f2a586cb5478bdf487d67a3f4f8b7a3478a46ec9f5b3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dbcbd010b6e52140cce8f141fe2bc68c

    SHA1

    ed9b8a771192f607c53cafaca1e593236016d677

    SHA256

    6011da2b021f693c69c9131572069d0fb75cc010ab0b4d349240d56c72bdc8f6

    SHA512

    b536a0240b1da64547cc6850924d7462ad7bae7d904657d01c5e0f8002213c9b63e21769a9c116761162520dbd2740e4106285315596961270922302f51b1a0e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    900af6ed0ab263a8f8f367083ad6cad5

    SHA1

    09acc6e464c94be2c085febd012722f8369023be

    SHA256

    1ecdaf7386588cfb465bedd6a5a032fbdeb8dced55d2af45ed0d4a14230aeb83

    SHA512

    0eda2b003d860e36a6c42e20fb673a655bf87fcd1c89b08353864e44bdb254c59c17260ea86c1562ab3faf61d7a2e5bd6050e31e65c5bf0f159c56d9f11686cb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    adad1a7ec88334a0731760a147994b53

    SHA1

    f380f42926c800933fd7dd378246d4e006ca7b37

    SHA256

    1b4dd763ee6785a1b2170c58ac2ced317419db0cb0628b279ad6da66c9a4149e

    SHA512

    645be3c0078ffcf7c5bd93b29b715592a54d4e7afcb9a65fa5fb81e6f68f185c531b394163a390ea80123dad48e8a6526c59131286b63fe1803d5b05c87abc20

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c2a6e8ab3bc89f2f1be163addf68c058

    SHA1

    a542098fdb08c946233f9812937b162f3daaf517

    SHA256

    81d144e273f197652481e5cdde070881df94952a97bab96032bd551ace987dc0

    SHA512

    197dab60c42dec5c6f492f668bc29dd57f9b7438426d274935e55f994496e91604bd18cc4d7289610371d8e1b01c77c68f353006c4d33f697ae5083c3c8a697c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ab4762920f0e19630018a35d9b68fd59

    SHA1

    3b248ea03d80f7007f3cb5ca7bfe1673003d7d65

    SHA256

    e455374133e387f257a04bacfa8d8a72538be30bc5471d21f71a03dd2f70c34a

    SHA512

    a0c2332ca4a59ca547169df39b5f85ea2895ac2db518d84337f12d59d6d46379036f1f64a67e797a064b76e34bfae4187bebac805e5d3f1d9453fc6a5a4fe266

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f63a180aa9a4e1e9affa44f909a9d2e4

    SHA1

    0c41658e2421e90e03d1a3369726e66c129d8fd1

    SHA256

    e97c975ec99c584bf355bd9ef52dae5c61794ae5d7f9c4dc67de8590e8622431

    SHA512

    80fe3ad82301260e3b72473bb5bfea22a17eafb39f9e5c9573052208eaa0cd57f94f430ddd39560846bed8e9c67f7463fb6fe36e0e4241bb88ac509dab1ee614

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    491bd8a94237ab4aca675c0d8893f91a

    SHA1

    0509dfe91d3648099bc99c43d8a60adf0dcaaf0d

    SHA256

    a2209cbd15bf1923f2cb543359b7960e9bf3b4e0addd731e045b90619af0aee8

    SHA512

    a603e11b364f556139a414bd67e9685e19a89487e183621c05ac0b15a2385d26d095081f8ce9a5ab9688e62d9e69a198063b152c2304384db79cbfbcf725ae11

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    491072f9033d39dae4245005981a9f9a

    SHA1

    559b8f6421009e77596e59e2401154d34c27937b

    SHA256

    d87a2be17a2e5812e49bdeb8b94d35c0ccc0cb212830c4ec846aa7fe242017ec

    SHA512

    231eda9f1bbb45aa06c73cce7c62fe905b7bb7731f379c732780e4c1c35c490fbbb8e899f3853cdd8f7d8ed53d7bd309d149baeb9416c6ecdf25d6bde00d1e14

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    841d6ce04c237c476202c399f6a45e40

    SHA1

    c6020fe972bf735461cda888c7ab8eedea746f2c

    SHA256

    e8fb1970b0467691db2de69ada9655447ae49f502942eed07949b54ba1b09c6c

    SHA512

    626f9a5a9f2663b4aea9a6a05e8d24eb5182b8cd49810d78fd83e9886ea866625a60bf7b40cfa7141cfed02b8745003b893a0bdc2843806580fe26e116854803

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a973239b3b5d28d4a4e097867231e6b1

    SHA1

    b6eb173858885848d07da95940775cb6ce4c76e5

    SHA256

    ea2d5cc30b0d961eb939e611684846abd7807da4331470f05f0a0e34aa2f83ce

    SHA512

    9c6d068dfd445f50104277700b1f80a8fed9811bc927fd12759b8c18a72ec2a0163ecb6a7f69302e76279e4a02e35e4da9f6be347c7c3cf3574079bd6c49fdab

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5b2f397e8552fe7d112330a56dd5af25

    SHA1

    5c8d49158205fd6cd42ff7414110c6a3c5832194

    SHA256

    15f2d65e22ebd594a4704366717328f27fb6a31471443ff7b36875daa1b6e2ac

    SHA512

    417b8c84b8e92c60638370b4262591559765f6c9156ac4006189b24ae33cadfd578863206f01c7ce78de063c18383d4ea1689357d4b1030e2125ab78e17cf355

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e4a347ff2035b61726888f66c5bf139a

    SHA1

    dd7296c36b686a6b41cb8f9bb846677c71a428df

    SHA256

    2401f38ab3a82f0800e145b101754cd194724fd5af6dc5c6ed8e5dba20a5a0e8

    SHA512

    24c08308c07c3bde9e06cddc28598382ede2666f111f1ec87af2d10fd195a41b2f4f05eb80aec00d0db6dba1aaf2fb6bcdf7c07a55f8d54a267c1ab1e04a6b52

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d9495da6c6ab12109d9a45b5ed39c4d6

    SHA1

    2e8265331c14d36ffac2b2a29bdd9829d08d2a0f

    SHA256

    403dd608cce3687007762f162c28b38f1527f8b452acda487b65083ef0d4fc73

    SHA512

    996ef66a6bfd29a98fdb36b4f5fc494345d624b0a3bed38f2cb9a5cc7046e4524dc9128652121919f8f36b2ef24cbcddbddca9c7115006fa30a434272866e507

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    33ea602441f5c8fa36280f7c0bb1775d

    SHA1

    a939bd99f0cf386a154be8da626cff22baf7716b

    SHA256

    9a0eb82c760292c32582cfe8091ffbcf3205319db0889a532c1e7a94931bb85f

    SHA512

    100dff25a8ca55e528f60ebdbad8eaf267f2cb4d330e7bd6c209bafbc842bebf9bac1a29cd3a7fc005eaff8a6561e4de11739d5a81732d8c2bb28d60acc26e96

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bbdb197ba4c4a7057da81ab2acdca7d9

    SHA1

    ca530ae265fb0a670b6315a549edd2cc37444477

    SHA256

    e36ac15cfc4c5772d86cdf32be265bc0d4ff606ec256bf219a7fbda7366ab79c

    SHA512

    3faf3728d9dea020da59e72183a68fd35f7af10c09a64dd61bd8922a179a727d2ad85747d6fe8bc0190cbd9ecf349e5a9910e2b7910e7200fe5d1edb04dca915

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9ee1d3cd31535d59cb75542b63254ea1

    SHA1

    72f12b7e4801438b36d21e580d1f3128da285da7

    SHA256

    80e4c0315f3b18794d33f44ea4f52ac8026855d6afd51e3322b42f8f8e6150e1

    SHA512

    fd201cf264a45dc962a479ae2eddfda58c66fbc4c42f88e1bcdf44d0eee8937882c76b7e03fa8082e7babf7622b929872b2be21e8230a62c66f8c9ba27b3bea7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9e73f01d2a81a7a11f3b471d0d92a9cc

    SHA1

    31a70f33c1234822448035532d14a1c6a7bf6326

    SHA256

    806013d3b373262615368495e6345618f949da84bb3761a98a56a73dfe7fcd7d

    SHA512

    f21fb957b2dc3e4ac3ea1100b7123b016c01f41be4893949e7981eb08e9bc5fe3c8f0cf986b1617878bb3e44ee438ac6c1011717370dd4802405c06ddfd486f6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ba2e49b9f9561fdd2bc2391da7476534

    SHA1

    dc6ef2c21abb937d8fe53a868fe5f221f0211abb

    SHA256

    cd5e979464f705336e503fde1b32508143b9191edbadf841a32fdd98cc99f8ac

    SHA512

    b12b062b1532b02ce7cce76aad91821aea2bf95e4745f76d8e7e2f7d5c05d1eb4c16f7e07bc488a43e48cf5a65ab11d68b24c2bb3a484fc5e4625b88b7865b6f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ae9970415450f69147321e75791257ed

    SHA1

    15fe4d7a8ae5f2364b383f24aaba9ee83e35aff9

    SHA256

    a6077c7d4401ba134c9d962e3197f1882a7ffc237de9f115b2972b7b5d4f42ef

    SHA512

    9710b949bf976c0fff71aee3b015c7d25a1f4dbd00b3318add7537ed1a26fd36a5d3aafb7936f69d17fc8834720205956b1e043f33c4620208e497d5da550905

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    00a9b56bfdda4bbefd47fc6b557d2690

    SHA1

    e83155a00b5d7af1e93f143b35e3c555b9770fc7

    SHA256

    7f735a1ffe206c8ab7748b254d650ee4a02527da7128fe62a2653f60f1a48c97

    SHA512

    551ce4dd91602543cfbaf74a9fe2065715e7b46983c0bdbccc6096a2416f1b326ed4db3e801e31950e18d7fc3490f9b56a9835b6000dc55eb8f0449847360b9a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8d4e3952a63e5b23c95766cf9c1a767b

    SHA1

    ab851d5b18ee9b4de2d88d47b7bc7f9b00e646ec

    SHA256

    f1a56af9a1864de6716d5eb434d1955feacd542fb5f59ecb4a4a368ebd1f85ae

    SHA512

    386e9e2801e95df531fce3068dce4623aa980f5790018ec53236178ea4719e26d8adbb37ab77def3fc38bac4a75a46b845a05f644dcf5f6b7eaa535e5d29588c

  • C:\Users\Admin\AppData\Local\Temp\Cab1A46.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Cab1AD5.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar1B09.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b