Analysis

  • max time kernel
    144s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    30/05/2024, 13:57

General

  • Target

    8462bab4e0c186fb336e9cd19e6745f3_JaffaCakes118.html

  • Size

    44KB

  • MD5

    8462bab4e0c186fb336e9cd19e6745f3

  • SHA1

    24111ef2e56dba16a84576f02798c0cf91c82987

  • SHA256

    5953a01c12d24dd0d33f0b814e28e1055f2aebb45b9614e04acd6c5588c72852

  • SHA512

    ff80410b0024d0013c6b52d77139a71faf2fe9655339269bf6482c5797f37199da9ab3ed04284f060ac70ef7d89432029c80ade9c774f2b067b4be8da5dd1672

  • SSDEEP

    768:McueiSZUmX6zFvgF5mul0DYkHqSScxeAKJIl0DYkzAF63:McueiRmX6Rkmul0DYk3sApl0DYkzAF63

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8462bab4e0c186fb336e9cd19e6745f3_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2040
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2040 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2036

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    f8a89005cb6f516b5500c7cc2ba27a9f

    SHA1

    d689a93f97c33ea40c4af4769ecf766f1e8eb06a

    SHA256

    750a480adbdcf4bf2bb64f7f845e8c920e6972ee4bd1d4f03ff416ca01022d84

    SHA512

    10cd164a5d8c6380813d81d26e83fbda457418ce6cbf4889b0c1d56335ffee89d80966c1fe893de6f6a29e0d6d0c04e65bd960194988772efe23af42da446b6a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9635b39d765bafe26f91459a7c55cee8

    SHA1

    fb670550f31d74b13bd01841fc538189608ada2a

    SHA256

    1f66c36a6663ca99679f502ce758718bb34653324ab72b8a71380a57ba4b8948

    SHA512

    4ca46074013df45b4bc304bbb8e23de66c3064c8f06d70a2d38789093f03a623cd5fea7f51c767e9f6bab8ac46b4ea206ec9f36f055435f3b74a2288722dbdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6029146a13947a6b18e3421c1320ec26

    SHA1

    eac41887c4de9cb36ed78a4704046cd7e63b4cd5

    SHA256

    845eb4256823fd2735c93a8eb13661026002d9a9542c64a0fb9c0ff61936d5da

    SHA512

    74684e73c27be5be349c1a1f73828e47ebc9bb390072ff0b55e8eb31ff163f8a06cf0644de7cfdbdfab87262ac832fde1bbfe17a91fc4a042b6ffdc0da33af76

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a327042a463011f0c19fee9ac1f67c1e

    SHA1

    c00604c9d5a6e52e608858cbaa80e0c8d9b83ffd

    SHA256

    5fc2e47b3fbe2ef87ac7477d08e014979645be27cfc5709437e82795d4432aa1

    SHA512

    9591ef2b704c18e565ef95ccfa1968056487e85915d4187da1bd966fc76546d6edbfc0284626cdd5feac07a58827aae9ca295a6968c2416354ef4119ba59d946

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9b0f99fcc2deae205547e6a307f38c15

    SHA1

    110ef13a03a37256b56fa777c80ee2d061c93f49

    SHA256

    60efac267895bf7dd1125a3699a6ee873614f865684c37e9432eba490464502e

    SHA512

    0034872f8668963a91c01da37741b244cc03f0f2623a82479ea9dfcde8a685f7bb6565b3a35ca5801b132edf3b4724a9a9c48f40660dd51664e6b641ada04e79

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7d8692b85a55de4bd02a54fa71637dff

    SHA1

    3f1fe37eaefd7f85018d7499902cb7b347bb1c67

    SHA256

    118ab8670552f6fa4ecdcda91e8178ad12c3a9f3b12f0a4ac95a60b7a9fa541b

    SHA512

    b1d54f5c9136fc046bdace6330c3c35f3326e10b1b5191e19e2faa5c9a761dbf44f0e3cb8a41538aadc60c4672c646019a1b814d9b81102df342375fff757651

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a506e522edd76b1d23dd1ced42c35cc6

    SHA1

    3aca10c9495f07c015d06cf655c4d2f6b9a0afde

    SHA256

    036c7987fca2862be9d14ea93b528830f92d4864b15b4b047e9916f613ead249

    SHA512

    434ba5ea36c83e1669e749ba4ec3abb7c1652c5ee849be6461fd7788195644de8d7446edb2956d2157a353f6019b7ea819ca41441d7e19a49c92e248acddad83

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    93fb54e9c5902b3db7410fc3df78c1e3

    SHA1

    4192f1ff47856ba4e27f7b7d300bc080e129dd2f

    SHA256

    28554abc399324161f8d28a7fc6c041fae7f788c8990492d398f587dcd66bec2

    SHA512

    2e248f81f105261071eb8f34fc76db22c94dcf20e4b11b3825a4cf25bb4464a05c8011e6bca28643b07a8ed6c9a14e428a2a4e096dd088449d96db42354a2b10

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bd027e33339fb32aabb24b0af3fc5539

    SHA1

    474c2909c4eee755eec51d346191cadf29774744

    SHA256

    03edcfa3966f3e49d1b1aec1342735337c00baff0cd33f33bc58224e4532415c

    SHA512

    47524dbb384ae52ed819d6c71382fd33d512ae10b1ff5eec7d4a73e6d98149ac58a18f34443623841c02c9b9dc83e09f6f88ff1c04b1f84f96652e1da59c3c1b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4fab2596a23e4c7b1939a071249b52cf

    SHA1

    251c54b6bcba7f28cabf8cc11963686508e60d73

    SHA256

    21bb7e81e13f4660fb29e01096f9e4c041df47068bf08cf48f2cc1ed6f903047

    SHA512

    efc9092609d00a549d175c34a4118a628f6f231b2e459915e16d096d0bd3d2831291b93628806c6378a86cdcd0acf03f96b8d7c97917a3244184507e090d2070

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bbd821287a10aa5e579f8c5084ed4cc7

    SHA1

    62291cd606bd21c02669a1a1cd9955c03b520ca5

    SHA256

    08c0cd32dd4362d36855e3f2ec2e4b4c6c5c13daf92afd38f8bdbfcef87f7ccb

    SHA512

    ed03abd6012facf2cdd85ddf31f34249fe15bb4baecb69e3d65d9923f5737a905c5c0700f4f77b8465b745f59a7fcd28a207bc73516521ba14a38b869ee653a9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fb5e1d3096a941ea12fe683cc0893b78

    SHA1

    bc7bb58fb69818ceb56cd53aa3cfa264bb670774

    SHA256

    a2a7a0b008a5ca8bf113c74e019e41c19a51bcb10781c019c54e7c30691905a9

    SHA512

    4212c9b86cebecf4b005919f14d68ac68cd7ee628f8a4a9ee274fb669eff0d93aa4807e8b8e24f529978b45f98b718d99b93e8e38840df15a19182634c432e68

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    85bcd1f2d4a80fd123ca16c00c511f10

    SHA1

    089d882ded368be7ba9711d6aae65cdcfd88c11c

    SHA256

    521b159d140bd31139203cdfaa7b4ef2d829b9833b6f8fc715c22197e5117dd5

    SHA512

    287f2cd822a1a4f2150d1a077ac6c0b1b85e48436bab0aa0589676f54a00a847d0c91c30da0c09d4f3ef368009d10cd3d061b61b9d2f4366574f32e1dd03da02

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9ee15b8377e2e85f1f35ce8c5f75fd57

    SHA1

    8da17a750abdfd2e2ac984544cbce43614cf7208

    SHA256

    7dda1cf7fcb1923862c400eab87f07390a55ddda4e77d28580cda85b24d8a40e

    SHA512

    88fdd7a8de78f12448ee4ac7e45234b7f0e06b6c696711506ee66d51525c661acf65ede6dc801e3ec59a198f62e78dad31cdce87752243d3631bff31d7b48dea

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    82d8abf34c544b0e04e35ea30664e7f6

    SHA1

    21492d597edfa83642f7ad43f2e64610e97fdeaa

    SHA256

    4ed89008b7f106a8e2d2172b1f7e1394dfa73985f835b34a0aafd8e3652dfd85

    SHA512

    ad5e8c3a87d5c2e7181d4eebbff67d480ff337a993b27d7fa4c94e39e5050a5426c856465a9b51bdba6de527cf1a6acaac57bd766d5f8fae1ca03e8e0a3ca223

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    462c7b8236a2015e1c3743107be505b2

    SHA1

    f6d0edbfaf8bb8c8d1a8228c26909d92d2307b2f

    SHA256

    877404cebe55dd364115ca753536624a57185d9e0662a9be77d65bb9c8403ae2

    SHA512

    64a310d44e3e1842572faa0985aa713b39e9e818cb35046b2e36e394dba128663423fdc6afe41355716dc6b399f36f8bdb5904015d336f1f67fd0f35c1e9ce79

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    374c0122b03b90c90cab0c6062e96820

    SHA1

    44009b879266ef084ed7a4cd4a6477496925db2c

    SHA256

    dce27d26c31895da0de5a7f4a1b0ab228bdd9d55ea1fc1006a6b2847b96b60d6

    SHA512

    46eb83d4187c4b2554b5dcbd649919e664f3659ae6fe14dd8bab1069d9bffd5f5ca67975307a083149f81c0537233f7d11e157412e5903d658d9cef53711b6f9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a3f7b8a7cc4707c0907645742e297a67

    SHA1

    ea66d9baeeed63ba36046d6b248a9785f8914a92

    SHA256

    6fe60418e174055e85cf38d8875d1a88d1ecaff08de0a6926d9fa12cb5ff276a

    SHA512

    704d1474fc040a2ba706e7daf7b6fee1d4c52addf454f19bca637f92445ce0c732d717e86f55f21e44160678e331e20034999728a101b87cabd1d13a8c1cb396

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    88493c379e92b145b365b1649339acfa

    SHA1

    0eb561ce0bae3fb135a7354c6d30db37ba6e0876

    SHA256

    fe1ffd388a185e7ee4cbfcb137e774b7102840a0f8a02b1f7142b0976729b617

    SHA512

    a1e57d9cd3867c5bbd097cc2da183694dc5889362bfe27732d6de3f72d71dcd7b16fba7f903f5243d8c1adf579510ccf3de1d79fbd97c99c4a29d58a6e3a7354

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    374354a308e96f659552bb92476fd1a8

    SHA1

    e9e7dbcc726b73d9375a0960c46d6d3e28b558b7

    SHA256

    acf7b1d73dceb274f2930a1784b4e41faabd8e07ec218ed355bd4ac280068ac1

    SHA512

    a5304621e4152be7fe47a1f920f9e77c5b282a45f3af553359a0d1b3e3942d97af69f535952ad9790d3ad881e5317ae5997bc2fa990353804f105696a90c7a6c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    21f50bb6766cf26be2979bb4b1f33e12

    SHA1

    f2418d54e25caa04164805d623a399a65a4419c6

    SHA256

    cb4ab1814cec7d266a16d42d9975be624e5606c5a1dedae3aba28aa1d8ac36c7

    SHA512

    3e5cf669e778d7617d0dc447652e9b7e8c761e282df54be284ee3b212d564c66c4e506a7594402a5990b31bf51310679c00656d123f6f29fc40992704a672585

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    1080114f5c085e9b39b1b4048f5389bc

    SHA1

    c3c3b6e8e3c3e06ead37bac5ad3fd34a47a024f8

    SHA256

    3d6e7daa17e193053994c78f3c80dd576600e58036c1e9d85412701bede69c2c

    SHA512

    03e8636c16af7feed3413c26bfe1315f8f073339846bbeb8cba3abc48279e63de0afba29ff7fe924ea7cbfe4ba145b5ed2cebbc2e5ad8fefcfdc9fd492ac8d8a

  • C:\Users\Admin\AppData\Local\Temp\Tar19AF.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b