Analysis

  • max time kernel
    137s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30/05/2024, 13:58

General

  • Target

    84630143050f2c4c1a22e33738e28136_JaffaCakes118.html

  • Size

    18KB

  • MD5

    84630143050f2c4c1a22e33738e28136

  • SHA1

    f8962901a6e40a52bd7f6ce68c4eb27637b3f20a

  • SHA256

    7cc660822d2cc777ba745819cabb3a52fcd16b5b5d82ff8a6130d884b5b1cd75

  • SHA512

    bf1bad74e958d4b6ca216c86301028dbd6eac75472660992e50ef9c54547d98f6f16c0a03fc75ba8bf51b17282ac999ca96447813e2a445b603172d3b2af8bad

  • SSDEEP

    384:mjs6UFJOKiu7ux5Tm0ZQzoeFcLKLidJ2+viOI9hd004xv6:cUFHnux5Tm0ZQMDKGJ2jhd00iC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\84630143050f2c4c1a22e33738e28136_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2216
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2216 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3008

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    a0bfc7316a0f3364e8333720dc3d34e4

    SHA1

    6b89d14f25614ae66fd6ba1e214750f3ad36dfbd

    SHA256

    519caaa69e46262a641a14b42d0aa070040b77d6f133b1e6812666a59bfa6e23

    SHA512

    15eb16c14f75fa673f54693c2a656cd6bd0a0fe622a0b01f894a07d2fb934ffcac998e8afe9f39cf90b47fc44d9fb3863d1613b1972b64a671b07332407a9141

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0cc9fc6a5239dc365c18220f68a5c1c3

    SHA1

    639a5aa327c34596ab7b5bcd4d880acaaab0755b

    SHA256

    d963d1019d488d0f4f1f5dd4fc9002369581c56cc9d999fe54d23409f235605b

    SHA512

    a3d81a440d5018589be6fea1aee64bb40573e69598c9bdbcb7ef5a5dcd02bdc974c9b83acb717d4fe3e0f748abb4d9defe606325c3b5023d748d23be5aa6a831

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dfb2286ebe72d3950715db428e3a874d

    SHA1

    419312f1f759fd4e92c4842b455ca11bbd3d2258

    SHA256

    7f50cdf712cae8becf12c98ff722b692a5b2a602d0639880edf4081c6a55ea49

    SHA512

    a5baedf20b98ae5c12eb0d39b59d4fe93890726865614bc3aae78fb8e3966a30f6f6138ae6a734188a570f7721e793dd8e81f2cc83fa99f9862a4b9578cfcba3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0e928f919c1ce34918621bacaa97dc50

    SHA1

    4bd65ea5f7ff495a4a8f292f7416fc52f1652133

    SHA256

    7d2f8284d6e06c630856300dedb1c924a9f0e5f7bf084874c734fd039995f8b3

    SHA512

    431399d68e22474fddfee05cb592923ae228035927c21592a05e89e171047777b47fe9cd5f5b49bc5319d62d5273d3e98ff0286bbad7ff5379a4f5d0f3aa4a0a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4c4f957ed37ac139a409fb65e8d5c65a

    SHA1

    927c3f6a0f4a65af6d745e3eecfd3a9fb31b4168

    SHA256

    6f1daf5d5832d9f0b70f981945bcfa1b1b29e2236ce3d140276658f176516fc4

    SHA512

    eed7939de7be5eb95eb228cf868cc6e8276eba37e0a77f352f6a8be56680906fe8d18afd308cf09ceecf5b7a42758393f241194ef2a5c2fee6cf25036f7ba9a1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    67b37c7873e852aa09353d8866f1b0ac

    SHA1

    48c2d77a9a11c5b8748c79f663b82f3d17f91246

    SHA256

    180a2918da5be3e7ea70384f55f8363f961938e2480265409c15b4b0ed2d7432

    SHA512

    f73285372630f74d05149cc4fa6160c92e8ce2341a022a7099d1552691c38e9fd1c9b6788ce401464a30858c761063e1a80ce079996b5ecea231ae710dc9c9d1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e47f9a6d1f712bd5a1111ed93c573c25

    SHA1

    c22433a6ae9a48b5efa79cce5ef3e6759bb497fd

    SHA256

    be5a31747ff233f460b11df79d8fc3b2e02f6e327508ae7881c9e0edbdd39766

    SHA512

    9314dad1fa82b43ae6f7108b3f3da14bbab847e79ba20337c6c481d368bbd434c28288f0c4c9096b9e696dbcd790997367421547d7a39f12b52ae588e5044028

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    453664dea4058eb8976ddb22f95a1831

    SHA1

    2a58d722771d6f53e4601a2aa8c6e6455bc942b0

    SHA256

    4126ce9ccdeb3dd414935429579bf66aa5a790425cd3073ab631a935f42bca45

    SHA512

    a7211563c63aad4ea2cac4476a9dcdebcefec783aed27c34a0a06c5057c343ee2b0ef1c1ddf2e10235416131317fc869cb678fba53f5244e63cbc9dc781abb36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    262fee313ff33f992c62dd064c53e853

    SHA1

    8e077dac6156054e88f0e5d59712e1e28d0ed9de

    SHA256

    315ef6fec5718138bb25252b26cdaf5681cb7ae596eb26102e8e18f9995679fe

    SHA512

    25f038b48c7e28e892621a8c5978ad93f5d3b7df91356038c470203fe5b1a4283d4c99b44a95cc47f97d9737ee85dfdf3b842cc2b41979d9bbd2f87f6454a937

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c626af6d602376fb95f89a409e45e48c

    SHA1

    1333a675ae5174252750024c4f0965c93506d4c2

    SHA256

    ce14cffac479f589ced8c047582e5002f9a0145f77e20aed629ffb3d316e7171

    SHA512

    3b26863454088fc49a8bd1ad70592b1339ab6b6e41479aaadf9ddca27be89b4328ec7c342d3c3a9f684989983b28e5ed2e7fcd74a75a0651e69778ed17431864

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6fb346f2773050d937c8f91a83f4946c

    SHA1

    d40dfaafb9561b2cf27c5ab2537abe79f95c6282

    SHA256

    debffc37ba00a7d664b5b8ea7c7ccb3da8293dc61a9fcd9780244d447afd5e3e

    SHA512

    51ea9ca49e1c639e106636ae898133efe05e9ba216e2906556c230892d29a4d7487163ae089ce07c6c7f27dca1089f9211ce5630165ccf1a23d9bdcd1ad2c2eb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    44c9af4a43cb1abd4ae6f4187f7680e3

    SHA1

    a0fc6e8af90c081bbda398ea806eda8697c17061

    SHA256

    33ab5ff59ac8bc0a42fa72fd13b73a746a9d5d72925cae4da2f245b8017122ca

    SHA512

    e6fc9d7aca678c3501dc78e296fde7f97de6e2be7346019863673c7093e61308e986dba8f1b67cdb36aafcf6bffe7aefebc003d18cbdb0343fc4696fecc5dfc8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6effaecd118cfe4475c317233d0f8aa0

    SHA1

    c4c29f05729ae55744f4315700c651932c6847a6

    SHA256

    4240fe5f8d8c98e14c1566a2d6d5044d3b0efd9ddba5ce834b64d8a0152fed67

    SHA512

    705863d07c2b4a423d6645a136cf3e421c1eed7803eb951c4d5d5e4f520c4e8df7825b1a8c207482584f8f82811849c77044fdc03df6edcb725f79cc574d7e0d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b45ff9e27f5d2f0c2aceb179e8d32e50

    SHA1

    b2a85b163cf2f294e98c6591fb599d38f65c057c

    SHA256

    12dba9ebb236c66fc922d9a9508d64186dfe690f8517fb217f1bb186fbefa368

    SHA512

    219616a44676439259b2a391cefe2118a9988eca0b6a99efbd79ab212eb60ea34fa1bf7303cb3cf1c0a6f329c95ff6be44f6b6ca703974b886071552f5555866

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    503e40a676de24cbc96889608a06d2e1

    SHA1

    11e7c7de19f7938777b4c4afadab62b4d8ae0563

    SHA256

    72128f72123f0e35ead4b49c955cfb89c380eb9aa52765e9ee24506a9431873c

    SHA512

    01adcc9c8d6614438970e741e17fcb20079f0fa3616d67ac1b8185470b8c0ccdb22ccf9bc875e77e3dc3cb1f4c7752ec44dde13ac974acaad51a60da7a21b328

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d1b824bf75387bf258a35642d9f6e93f

    SHA1

    fd40a369b8d67bf4217d5d32c29a69f9363d55dd

    SHA256

    f2bb90e898cbdfc2e78ce7f21213e8ee976ed4254aec4ae29e3822dbfbadd12d

    SHA512

    748b1a3dbea461b8e885b54101ba9ec03349143bb06a1b1b2b82a3e0260e2ac1b3a655d0e6abfc29207ca317d874beaac4d1b614660e116a9f8170e34e74dc5f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    516e06b9c77ec256793e38590474bf5c

    SHA1

    9696ff7d90c7a5efd8dad76a8fb06a6473d50643

    SHA256

    6368009da902b1fb6141d2e4d3bfc15be6615529782cd507992601f373b63d3a

    SHA512

    9795a312f7fb621d301388cfc46a9c6bd5f8fe08a9f012e1cda295d5dc5135ec81c8c1d7666391cc224010e74e353e541f90b9dc85ca62dad1ecd432582e5bb4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    60afdec0b1f6fc8af427ab81454b4b1b

    SHA1

    1594753a01fec1ab56d7e72bccdc56ee33beb532

    SHA256

    554f2856f6be9155f6fadb20360cf974bbafb491c89af2174c1c9a704fa21c05

    SHA512

    54235acaea28e2fd2f89a40979c4be83af17614b05c6f1bd715fa8664c14a9a2b9071e68121b9e4db009386c9e82cc17a63b12fc2c5e080232a8eec639b7d7ed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8c9c8509a9ff99b66f1e6d4787d4a0ee

    SHA1

    781f1230fb44fb8ee92d81cfff93f0680fcd5801

    SHA256

    d196da78ee991a4c8f66552ee1b609a63e56a00868584b48743a8cacb4409d1a

    SHA512

    9cc705243c18a63e5837e525df3c465ae2a84dbc8d7a4774a1613e40b282e26a20008f279d18faf30165a6c736e43d1c607ef43365a2220e8ce78e9920eb18d3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    baa9e8a70ebbdb8c2d189f0985ab17b6

    SHA1

    002e42dca42775027a69d6c1c480dd2a038bde43

    SHA256

    8cb3e946de719422110a2713dacdf530d304d8ab19e7ad41caff1ba020b85878

    SHA512

    0818f697d2bb2bd0b2236c6b8272a528ada436fcf8dd9f54e57b6b89dd1d7421bbde955b9d3c0aaf377c54b96c72e2990bacba59d83083fe56559cff2b74a726

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    b88f1b2f713d530f68e58b63a4e16737

    SHA1

    51dd651fde432544a63fcfdbfa71830615f20228

    SHA256

    b66df748f57ded18b7622269c0efb48a2d538fdb2d4516fa237031f3bca1709c

    SHA512

    8612306830d5fc77ea2972c24249f65d8b9bf6c25ba2466d1b75a59ff0373cd2778aa7467a4291f588a8451e27f582cb6fa549f232ad43b4a81165237601e411

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

  • C:\Users\Admin\AppData\Local\Temp\Tar19DC.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b