Analysis

  • max time kernel
    144s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    29-05-2024 08:51

General

  • Target

    8029a7edc4a766f273011efb07c3078e_JaffaCakes118.html

  • Size

    201KB

  • MD5

    8029a7edc4a766f273011efb07c3078e

  • SHA1

    b89c9942f1a84fa4b951de5b8eeffa6194e769cb

  • SHA256

    4ab16583d8912f9e7c2b1c0f254db5641f63faf7b04297d560f1037877d2c453

  • SHA512

    d81763d4da360c2f434b2cd9fb21d8af580036191201e4007b55fe7a3bb60f5d4d7c390990a99d5b1c267b7e37dbe8fa118bfe8ec0cb312cb0ca38cbf2c0dbac

  • SSDEEP

    1536:ka+98Y/EyA+tW4glczSF/hHXqaOx1eJlSdJH+CrzjyJGvM:d+wHXlUo

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8029a7edc4a766f273011efb07c3078e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2080
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2080 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2508

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    ff965419e43247dbe44e603b9e1eb1df

    SHA1

    da008e8e19734e2ec5918650fd9270f23b53154a

    SHA256

    41e9849b5f7a194679b2d2dac64a7bfb121b615876fa102aa1a3536632a19d73

    SHA512

    0a318f01f26829ed779b3a4690344614124b1af39481352116fa60e5879cd77af191e8af1716498e88c89779fffe36bfdbe8208d74ee9cd1dc311bbde77025ec

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    da5016c41d0aa1bd5bec598cf927750f

    SHA1

    31d4fe300ea4f185eb71f08639a47c592e291f98

    SHA256

    a3c8545280fe84cf0a8f1a488550f12c2c3845500ec781f5a0922f21ee71471d

    SHA512

    fd730a9883cc687dcb5799825e86ffefbfcbf4d5b612b676fb15d456b7646683a5842605cf144db4df99d2c38c61223725bdf6b4f7299fc048a8c4f67cfb5fda

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    78498dc9098557316c611f0ca2268aed

    SHA1

    3d40cbde86d5fdfdda4b439671d3e842b72a6efa

    SHA256

    6a6bf1067c52b92796a0d708deeff75a6f9fc3ea4ae1de255d37215baafe8668

    SHA512

    253f1a101d800235592b87a2b4436658861213fc4e2546cd13744394473f8e5dd368a73a48ef3c5644a5a5c917ecb83f626bf72299c685d30d8ea4018ac138f8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c3c4431c30ed4bc2c43ef1bd29a5c5a6

    SHA1

    a8cbbe9eb8b3bf9cca633859098b7d5d4b42b48b

    SHA256

    72f8a9da9053484746899dbeae37e96bbd10372e85774f7bed6ebe87393cf726

    SHA512

    5e08c434648c6a9f5d2c3c868175d443950ad171b5d3db92a9ca0f43b84d71989a3cf7859904199e183b010a7595ba210bfba8368624c11bb3053c09e260630c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a0b04154b87cd785a5ccf5ecc7c32024

    SHA1

    88d68d3351efce4190e37c098a909efe9ddf1a97

    SHA256

    dfbe701904bd869ed736fc4b69ff9e0d6f9935c026b6a150086e488329fcc216

    SHA512

    bcbee3ce9702eea771cb93c9ada4597112f97776aa0c8465e65d23eda35a25adc9704cc78210d907699fa9cd6d6aa4345a83b9df656f691f0ebaf204e14b522e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9bac1e40874c06340aeeea8bf9a21599

    SHA1

    7a770b10a388b31c03f26cd97ae841b2c89b8216

    SHA256

    2dcfa8f709e75ecf18c51fe5fc499cf38ea7defdff644ccc90bfff4188cbfaad

    SHA512

    eca5357fc41e5f198183f10a3158f9d67a1d4793640d4dd1115e1897a1ab1ae2b9df4994cde29ece764b8e567c74d5eb857c4f522b0b906fb5d0731203fd4282

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4d7b8fb3688677b315a103a9bd2fa77c

    SHA1

    1df06a69ae49cab62073946cf86432d7a89b16e9

    SHA256

    67c43eabc9a6e6bba4ffd524d7abdb4a09f562f15785adf5c62ac8fc7ba2a4ee

    SHA512

    9b3048535310ab3c2822013ef04d748cde72836211e3f29206f3086d377081a1609fc1b74f528d1286cc60ace77abd8ee76d23ef1d90e8f1f0ab5c355027984f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8a47bea8be6e6818c79889027b3f5b41

    SHA1

    8c10a011a334bc8239be439453dcb83a17f2c6a4

    SHA256

    9ee70e18d136427bd06ff7435af9ee1ce5fbab52bf31a8d1fea26dc9b32cd29c

    SHA512

    e35f89ad59f40db27a6b1ae11318f4b5c589fd87b48097e8ce1e2bb0e453c862ba652922a3df50d8d2fd64a9261a8c59e31430c76154a36ed15aa45cc696906a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e13476661a110f00d35490d2cfe93fa3

    SHA1

    89d31c78b7cc28fb496c2fce5f437a19cc193394

    SHA256

    17b81bb7c3fbf0779d38f99cdc806a5eb487913602f5fe2f79ee081de03dad35

    SHA512

    422bb1ad1c1d7c7cc8fc531b2418c867a4e0fff8d7228e505bd08180db99f949cdbc06060a634f7c8960b1d88a8e945b8cd91cc6395f1d15ab82ddd43dcf231d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ed4ffe5d07e54f14ee4fc5e452fbb3d2

    SHA1

    8188e449644126592bf02616319e58208dc76b98

    SHA256

    f74253607970dab5fe6c42848c7e247ea3db925995078a2b9e932467b6ed8f9b

    SHA512

    231ce4f1a96057bdf91ba33842608f4c38d015f59da36f454a99212d6bf80a3a818653dbe7821c96f4d5b6b7b3d4add3702e08843e051b9cbc8617a4f5c064d4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    df79cabaef6e9863e0441c2ff59927b3

    SHA1

    e40f0b08c00f95b443f44490ea88027c36654f83

    SHA256

    cead14a920c1a3a5dc02ec12e5ad575894030d276c994d222f63b8e13df731ed

    SHA512

    15bad6402c0bdefd4f5cfe29dc3806e08a64e2335f97e9368f4362694cd488648b0957302b7446ae292fa114f2af7e9703a3c62c25ebe94195986682e2248a13

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    de22ce274cfc85a5b4df9bdca6035608

    SHA1

    fa09bff51d2982a4f364424ac83b00bfcdb6b675

    SHA256

    c6b864a6518f551dfea4a6633e99f94525b971dd701da0bc8942f7dec453e581

    SHA512

    62ca78e8d68286a4ba192850d0b101afe35accbe9234ef14faebdfec7434eff8d5f8980b0f179475aec32ce23bc4eb988ee3554174a4ef0fd1781078bf0bc5c2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    968fd394b74d028d34cb34a0ad6d4caf

    SHA1

    c921f14bebde09786704b98a0ade3f46ae19cce2

    SHA256

    c82088eef2d2743541b07d707bf3be3fccc36000582492d5103cc0b57ee0aac6

    SHA512

    3b3112ed882f4fbde6945828f30c12807e4a6fd9860cc7de2efc9be51d54f0558ee131657e28aa29ce147fa55cf3111d0f4a8cd024b74ef9e11010523b8532f2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d528baa50ffdf9824a9a070be0f64f87

    SHA1

    2cdd5dcce2d28233af5f5566d28aed590c6411d1

    SHA256

    e5c7800e953e29f331844e4b1236133f3a94852dfaf8df9a365126996bdba7f1

    SHA512

    80a657920dad98ba775156e219f1c8dfd2792e07556df3150a4e58894b0d35c71c846146d3d7cf7ce1f63a8239d0c8e3b4e2848ab2d6fe6f0d99787e95b9dda7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    117272560b30a1619c923716dce6cc00

    SHA1

    c018fb35e0db99224292233cbe1bc7cdca4cd7ad

    SHA256

    811911d0839dbac971f2debd1aa566c4aa06eb8cc7bcd59de92ba741a256e7de

    SHA512

    0e74e887cce1f710c06bb917daca895cf74a406a100481bf7aa4f1aa3277b778ef7a4f751b7d258aa1082440b871045b789da21966956cf93fcdd9ddc9437f21

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a56741b3ad66fac1a0bf5f3bdc0e69a7

    SHA1

    0fdffb5cc5c3dbb440764db8706eb51be8376003

    SHA256

    c2682156814d3a04f12117f8ca452b1be0145da78f8becbb9516de8e1508d3f0

    SHA512

    132dac66835703187b8057ead34fefce6c033dfd86580b682959adf671c0136e6f155c861c6ab0b09b7dbe6c41bd296f604804dab9b3ada4883b6fa3081f8977

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    888f8e7dd9e6673dd8b3f4aec0bf162b

    SHA1

    7714e66588249acd1a58d157a19df43011126d2a

    SHA256

    8d0169c8203db757cc323c80ea2bb1c94a12ac5325e592fef5b8c0c3b93ec41d

    SHA512

    dc4e5f5fa647419637b52c0865db76032d8415d5005f8c0080907cd9f18dd50a735c557dee3f982e591394a9827709b752c77ec182613262fef06ebd857c92eb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aaedfc14ed25b25e9850946ba34b9ef2

    SHA1

    9ba0bc9492465ecaeb9c536f4b2834993afb25ce

    SHA256

    650dac5e974bc283825df29b39767660cf13e7320026f59e46197e54be516e15

    SHA512

    9fbaa16b37f102f027a22a69712cc7cf245ef28bc6b08c794dc6f6ab73387e266f5817179fc4006bcc9779fe26a350de66f8b2f77d9b1b874552e45bfa8d1b37

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ca15450af1a06f3cace5f824a1db5a4f

    SHA1

    d2583a36c7641456134f589efdc35fb5ca8bf417

    SHA256

    7c19fa520029af1ebd4151b1ade6fbf9c7222d8d397193d37bceb874b73d4447

    SHA512

    808086d891b65563cfd99f9f481c14e6fc84a6c7301909ce1aa063a49a599449f3a104cec261f37ab4ea362992015f5a4cb089ce8147e6cf9c5a8c7924439e63

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5a38a98bdf49d0b4a02c280a8adeaff5

    SHA1

    4c8741aa8994fb4e5441353942d2df1aae21ff28

    SHA256

    18a50f2906e639052e59926345f10815c783737d249c937a63aaeceb57dedea8

    SHA512

    99dfa5bdd2b7e2f44328d3d797b5c161e9b01d32c7a1074752dfdbb27b6f1c72819e7317db4585d9be5b7f76abf40b0d5da56f09e9540a5f5dda789c893705b7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    28bdf6250ccee00006e689b006670dda

    SHA1

    707dc02da1fd02ea14baa665baceb4d7dffea190

    SHA256

    340f8aab450cfdd7c624c19b29a6f4a8b487bf877d62ca85e0ae45cd7f781cc4

    SHA512

    3c03edef1418323768543cbe628a6f6f6304fe9f8bcd2237eeb36b36b0cfdc85442d99bdfe2c16ad2bad75d8348a0b286c5ed771e2f6382cbdedbfa8ebbe01b8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    68ea062dcf88d1777552c0fc6e5c0ece

    SHA1

    5bfd09fc513da62df9f8bdeb65c19771ded8cd1e

    SHA256

    3ba17e0c47532cd965eaf0a555507220b1ba27a5918a76a30a9346805de648b8

    SHA512

    9304473f312292432b401bde0e0ef31a834a8d974979b9a609492c043bdfbddf2f85eac5a58707fdab3f06e392815c028ab88ceff70fb24eb5823f37d55d8477

  • C:\Users\Admin\AppData\Local\Temp\Tar178D.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b