Analysis

  • max time kernel
    141s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29-05-2024 11:54

General

  • Target

    80a5678a59cdeba3735ce23f8ba198ef_JaffaCakes118.html

  • Size

    84KB

  • MD5

    80a5678a59cdeba3735ce23f8ba198ef

  • SHA1

    466761b020a48c3665701ac9ed2fef3159aeb21b

  • SHA256

    11b12aa63fb21a3d6473e1715e84e8b3372120089f5cd821461eb66e1524edaa

  • SHA512

    e9c259eb1ba96722d1dcd79157b28d28ddb1018c7dfdd43d43fbf022de8936c1105155093f12d1664746048991ccbce2ee635329c70934c87fd1f9533487afe6

  • SSDEEP

    1536:OpvQjIk1TLq5Q8ExENE1FIzEV8EBj6AjeEPEPPVgqUEih4E8EME9J5My2mT/EOP/:evQHpBxUWE1csdVFE1J

Score
4/10

Malware Config

Signatures

  • Detected phishing page
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\80a5678a59cdeba3735ce23f8ba198ef_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1688
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1688 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3024

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    43cb67de8f68433c5710d2df763db823

    SHA1

    eaf2a1e30b5d5537753e6afb4ee6dc9b862def0d

    SHA256

    aed3b133a444ff6d96e93ac81c4acf85b462d855499dc49864d1d1b8206096bd

    SHA512

    f7a19225cc08d319afb9c9d9db46b07a19abb916a0abdbf498eb47ef812def574d8478f1c99b5f85033146a9da67922097a829222ba15265fc2c40cc7362bf6c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    72ef284011f4eee0edd2e2fa4a4d0d73

    SHA1

    9c86e5b55fa9298ef04db292e53ff690a127838d

    SHA256

    ddf595b5fcddc49812b3d5333a844a7dc55d9c87824d7f4b927bf11f07dec27f

    SHA512

    afe37996a14148dd3889d51122e2e2c4fa67e3041b4425d2027cba9029e32346d5dc7f5402588ceac36ba6ea039bd50887d5f60abe4c442e3958df22049d0ab0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    962825eabe9a1036ba763524d5d7d269

    SHA1

    28c05de809938362dbe911cb94a2c09e1de77a73

    SHA256

    ba23daed83a03025ca15a4d1ecb969e4fb570a26a1cfeffdc03d5b07ee66de2b

    SHA512

    9bdd4805712f94fdb0bc2654ea02efc0b49af1ab704536835b46f7941c9bd73b8d8886f73c282fa8cc71d4b431778f4b019edce6a1392d0ca166b4bb461907c3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    401320149161671d61ee1ab176ec20f8

    SHA1

    7fc789aec6a0f3e6ace8a09d276b2c829cdd25b6

    SHA256

    db90e6a875568949a10e13abc9c4c0f71a47da7d9d46b0ca64a6d9973fe47027

    SHA512

    cf2cf29647f2a6adc877c698c9dbef95fbbabd68b9d06cc79da428a7639b036d973f2acf53a6847d0edef24667a1033da07a2cfa9fc0cf5c9681cf258bd866cf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a33294fadff990dd0143a807cb845e7f

    SHA1

    c1314c10227e7400e0d09412b53b3a5aa361b7e4

    SHA256

    f9b1ad025da3871117b1f7e75b620bc28bac1ad197a12269e7d8fc75a54bdc2e

    SHA512

    acf11fbdb24bc15418390884c8a861385ecb7c7a3b12a736264787c4fa0b08e923089d64ef26a5e09bd260485db853a8c4cd10955b6f326f472cafc777ed8a05

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    823019eee1ff987d4f76447551ab5c28

    SHA1

    338ea1b3460a5b12326b85c1da64573b9b401849

    SHA256

    de371cc04dd0a5f3c2af8b5c5a97524304eee85d5c98d5691acd726e8a37ad25

    SHA512

    f245705f48a71884b122cbc25fcb6d13e8a89501369fe1888a79d39b6f754e6854eeb30e9a79fc0ede95f37d1808a650d9f5f090ba90e6ab4a598386b94f0928

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b55d04bda37bb71eb861f12b06bcfd4f

    SHA1

    37d906c5007345e8028090b5349552c331a690d2

    SHA256

    3a2e60aaa9b3003a22cdfe8033a808797d6533d7d3d8d5e58cbfa99a074a1e12

    SHA512

    a5a854e4d5615fb31dcc1e56ca97423216d2b0c005cc4308ea88f1d72a27ec414deaae95b109a7077a3398d52e14d6c41a9ffee35374bcdd3b79bdc50dd4e2de

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    24499c874fc8f1285c76caca8245a68c

    SHA1

    6d5b6f9927313e968165663eaa2ebaf699c46430

    SHA256

    805c1787e620cf95a2dacb4561578482786cd8c8455d60d7418c41e4f1e92878

    SHA512

    6eba92690fe71ce22d5bcfa7039670cf36edaee2c3ff0483644a97ed7fd69185feafda22c5bee22fcc4c34c93bd2f75d1d55cd45ee9406a293b69705a6c1e6c3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5082c58551569c9d51a1213701d49d4e

    SHA1

    a0e126e2ac9e6f4f021d4e27289a590b62886f05

    SHA256

    5263875277d8e6d0939b68913ff87ab5d274855edef9a60f80c2917d19904c8c

    SHA512

    c80e9bc1e98d39d4a8d1daa58090887d8d36bcb57e66f350287a3a4b1ac292eda3948e5789643146c641a52beed8dbc1aa8a8272caa7ae40a61420bebc48e34e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    14d0bac732b1f6e6d8b1477329741800

    SHA1

    dfe3784bf03a5c24c2955e4deddf11504010f105

    SHA256

    8f7fab0c9dfe4753ded41e777689d0fedddcf806dd7fcd2a96991ab42a85858d

    SHA512

    86bd43068e35b6a27b5493c4bf90b91a97b4f4c859c10f7f8f8c03c1b9c2df12aff834dcb478c5848d1dbc2e50f1a171395c881f040c9683d6f3da032248cc1b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1ba94123226eed646c33e275ecd5d013

    SHA1

    108134629998f2fd0e92b676b7d82914935f5bd7

    SHA256

    b3727a1f371f46ba1e03b24baeaee1115248605a583077831db52fc2ddbd2424

    SHA512

    32065c8911bb7a9d1f2a72fcf0fb7bb239552fcf12f95680640a23953d49d952f4e01197c361186b15168fada63bb27844b80a844f928ead190883f357063e0c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f747b7d8bcabb2c17b0040ac505cabe3

    SHA1

    2575e5d59e08deca5483044bbe0dead709d85642

    SHA256

    748b8bfb2659646cf0550788f59d60dbcd90a045c09bd04ef513e57ce291aad0

    SHA512

    64b9a3716745f117ced974400534ced80add98563a1336a457a75874ede50de7691e68cdbded134e627aaca95ea3e12e4197604d69d6ed9ef8caf85068cd5a78

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    19ab8df7a6a71c94fab34610165ef6fc

    SHA1

    4a0ed26347ddc7830303ec93591b3e1c4e215e52

    SHA256

    4ed6875691af3413f05f47c7addd1f66d96a62b3afb7eda29f13db9dc20c9cc6

    SHA512

    cd1096f350cbe0f8a8c54ef1d4576131ae0b53f538d95bceb091f503179f32524422c5d75e406df614b403865bc1c7b7bbecf7f37a6e3b198c4c9669b8fb3322

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    226503d7d5bf9eb42bc75de262de5f1f

    SHA1

    af66e8a47d166925f4a9b86bbe1d9d207029293b

    SHA256

    731344b12f797437c9d75f95965f7dd0a11a36edaa91b58410402445937a4d58

    SHA512

    bd8c00ff9ec06f9aa5501a7ccc169915940cc1071586735c8fa19c3b280f3710ac8fb81ad8ee7dd4ea94883fe4539dd1a33fa92e35a059a29b501787a69c9e9d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    93986135ce34f4893b7ac9b49905ea99

    SHA1

    8c935091450b631ba1199600b8eb9da7c268158d

    SHA256

    3589fba7f7345ffa277dc505c78a1e1234490574b5c30d40755b2dc1a6ae68b1

    SHA512

    1d90f326484e65be4b6d45a6c8f04866fdf7f1ff959683308b173a4c4429cde18a923ce5d45f8da5cd463e85c57a58816f30a2f896e69f1ae3fb688a034e7bea

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9c870028b37996130634fc64452f617d

    SHA1

    743e166c59006f91a1053820ef01a4008711fc01

    SHA256

    a40cbe267c09324db59e5e477b51e8528401ea9aa9dd10870d3ee4e1ec7289c5

    SHA512

    d28edae9f00157d52963ad7066d5dac55ae9a8701edd8b22bf7a861f31d8a128c95520b2c459b4e0ad6a4a3fde53674da575eed0c3a379de906ce6f57134d497

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7983584d6ea50f89a565343fb233953a

    SHA1

    e027df0d9d0714a4bb71fd53856438f5d330adc0

    SHA256

    45ee6c69aeb09cf566def6216e60c73bf3ab2ef5f6bbb8e144427af9bccca70b

    SHA512

    7dfe94f37556ba0c8b76beacf8a944c20088bd4c411ffba5832848df4562fda974b2f5cf0fe5b3a5e03b95e6df75ccde133d245920e19b8851ba57eda519a383

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5b8e0771fee9962edb91bc2f4c879376

    SHA1

    a0d6a3caeae4ddfab033ee114d0cf97b5fbfb658

    SHA256

    83494f1f4b1d3771de762496b660d831a64b17f401fe8a786bead42e44e50e34

    SHA512

    8fba9c1b40bf6b50037f0f280623b5f0570275c3f2c6fd6afb91a5e51f086073f6c5afb287a13b548c16fd64d6e01b5e67dffbfb856d7b3902da851a7632b03a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c0a88a67101c1b75da5879de80b19b32

    SHA1

    5345a4c949fa8a9ba8d08d0671ac81090f339d1f

    SHA256

    bd3ef343bec08454ac1c64afc4b76b5a30183779792e1f72e584a011e79bb83f

    SHA512

    65bea1eb30324a68b8afe0a61c287dc657f63217cc0aa44c68be854ee1d18f7b19c6872424556175bfa4ed78e30f6e40b4bb0149f8e9faf80297c6d19090e788

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    21bece44868ceae0b1ddd612904d8066

    SHA1

    106993f4890e16e62a649003a18d8165759e5a5e

    SHA256

    4a5b1dcb081d02efd4f12df660dfb3bf00d180950a01d0cff89643befe54ccb5

    SHA512

    da9f54ef6a42b22ade04d0eedc1efa7fd8c799370a4aa1615fce16e3bc86c3993b1914ca4c3e41515db276d39c926502abdfb24784bcffbfee434360207dab0d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    49365d70b7bc8271b003be84069f6827

    SHA1

    c47ba41954bc13a3ae01ad4e104d8b0c49de1173

    SHA256

    955372b1b8be612cca3a2841ff53254eae81099ff48a4a9dfecc0383682bd324

    SHA512

    1e318f00a956f15db83213630941763f546fb6b22a343aedbc1f05f3520c5a1ccc84effd99f5f3c3dc377aafb5a3c43befae12adf1234fb38792a127de719eed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a835dae3867ead0bc74e4ba7e4a63a8d

    SHA1

    a667661d59650135b584ce80a53a3c73ccb47a0a

    SHA256

    14eb57e504e5e96451ade49644a413f47de89b3ab2630c8cff14333111d63e20

    SHA512

    a93bf26dfddba7f0d3b5f223ee7fb90fa7ae96e2756afdffb7cc6c36654611898aa51ab771ccd4a64939fa209be228d71b1dd67408626dba7f7ff1167655a7f6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    ba3ce26e5f1b5d2150ea4667202115be

    SHA1

    769de4b032062c9d5ba86a138cb52f4c78658c9d

    SHA256

    313441a40c917d50b77af609d1191215d6c7dba5622b4a327e500e78eb1187e1

    SHA512

    e57befb705390169d7d67e15871ad213cd8f833a1a250866683abfe5d0dcf0d9547f33993818ec27e5534b18f51d66e9fee5c36bb119bbb4fec38f83149aa017

  • C:\Users\Admin\AppData\Local\Temp\CabB3B8.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\TarB3B9.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\TarB4F7.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b