Analysis

  • max time kernel
    139s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    30/05/2024, 13:58

General

  • Target

    84636801d6a4a97075cca84908bab3e4_JaffaCakes118.html

  • Size

    67KB

  • MD5

    84636801d6a4a97075cca84908bab3e4

  • SHA1

    0ffdfa2907d142a6a43e211808579d9298410a0c

  • SHA256

    38dbb0fa3a9f2d3ee8d8a8206ee9de13d84678da2d43534d6f101002ff065008

  • SHA512

    a3176d5dca14779c805451be8fb7d0c04b8eb58551da117aeb8072f26245fbf0d0f2a3f67594cc157eb6eb89e9e985113d6aa864ddfc21e02b7305b32a5a9e6a

  • SSDEEP

    768:Ji/gcMiR3sI2PDDnX0g6scM67Di4Nq9HoTyS1wCZkoTyMdtbBnfBgN8/lboi2hcc:JdQxDNNq9ITzNen0tbrga94hcuNnQC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\84636801d6a4a97075cca84908bab3e4_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2220
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2220 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:820

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f2b3feaa935192278dd368d55b4270e8

    SHA1

    0e4bd842ec941fb52c89867bd501b0e8c43f680d

    SHA256

    b789508e167d3bf3cb87e69ac29ec2eb3a22b3747ca90bfd8b664a1431e916c6

    SHA512

    dbea6684da4beeed0e905a0e021a7c757b3e3fae4821a3b5ade072b30d21d2a65c0f5a6adc2dfdfd4ae809e1c5dbade4762e9bde142d02d1b733a793af0f71ed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e12ef4f627e7538774f8010cf646f573

    SHA1

    93feceb59df903bf40cf337d3bae6cdb3ac4cf38

    SHA256

    952f55c277bb8651e54e761a2ef5cd371d043194b7f2dd9ffb4d89f1304fb452

    SHA512

    9b47df1f2d5e0b54371b4a8b202e51884e96827dd082884d4a5e97e3686c1b680464b0c17a08244e13ebdc3385dbeff8a7e7fa0e8f1307d880a819644bdf4ba2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    83d33e3f6bda646ffe49fac091f6b566

    SHA1

    110c3cf4509a51f88d2dc28350891544c170737a

    SHA256

    bbad21a2370d97cc02cac4f1138ae36b9d7de3263bea806b48511e7cb432292a

    SHA512

    114cd16c057de1fcc1c21d30cae13f9659ce56cc5a9de666312d10bc5a5ff84c1280c0306c760304680f6495d22bb68c35153720cad38c9d6012a6beaad07a04

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cb82a626da5e1ce846db2e918db4d9f4

    SHA1

    69277150d8af82d472d339de2f2dfd59580c91f0

    SHA256

    7a86943ff3e388d6add64bc552251fc2af85cf18451c6674bbf91949658ca715

    SHA512

    3b3e16e04519d3ac02f64289033e691d12eccfbe18fca5cb9cba72c92d8b8376cd3f89f1aabbb2454752777cd4816a0c65378a75d7db8f9a2a02d532c1fe3110

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c8937262a5bd054b3d96483de5f54575

    SHA1

    ab2f79ff62edafff6f0c2c55ef17cfb369337a83

    SHA256

    26f7b4e1263abf364764967311741229d0f54db161cbae1d6879ac04db5c4c31

    SHA512

    af952f62fba2266b39cbca401db98412da5c87f49a92979841e46476cd5b1f813bcbe20de66a98e1cb549af1f0e44a109537abde08f563cdfab7742064603001

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c2853ac6bda8d0c191d23c8800efc068

    SHA1

    5f641f0aa31c40ee269c072044a7ddc8644ab3e4

    SHA256

    186a18171dcd1588eb3b97b2e05a091701badbab7716768aac39c0c2673754d7

    SHA512

    19410c399ef02a8ca8de2f78e9540ce56cf0b4bff71105c1e0d192a8cde7c8ade255ec0cdb3cb304bb2d0a62a15ee878f3eb3cc26d131b92938c193144b0be14

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2836b0b47d1bf072d05941f66fabf10a

    SHA1

    337bf4b4ebfefe97e162f7246c0fb5b0c304dbb5

    SHA256

    ec64fb5ea7261fa995ea4e76d02d88aa9feea32b9512e858c169f6a297ac95c6

    SHA512

    510c9f7d30d143be87c179ea3991fb9bb56c1e7d8127a7bd8a7387f5e057305880b4a15cbe0a7c0fe397bdc0b392386fe04bb4745424bb790402c9b107b7dd02

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a674239d02260db15c35d5fe15ad5668

    SHA1

    599747fb1c0d32b283976d11b6b452ca8d801516

    SHA256

    d6b0ae70a4c4047c9f8d1e2ed34151e7bf42b49e0f42ffcdef6516ca88019749

    SHA512

    582c3fcfe5490128653c08fec8b667d86ff435cb9fb4fb2dec69e2eb1d40acc3a9b21aa05f03521900d1c92662e0ef969fdd39bfd6650a9020f5fdce4f8d4bca

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    75d58aa48cab2d6048b61c6cbf336a8a

    SHA1

    deaf6f6838a2fffe61a4ed738a8514b20cdf84bb

    SHA256

    22ec13babdedb02d81ed623352cc7cfe1a3682cde7f7f9946143217a60659e0c

    SHA512

    f446589113d2ab40abaceb3fa6a321f41bd7924fbac60dcd5d8c4a178d52cfa4f05449d4f5a188f310613d4b45aea11441c0764c69cdb3b8bffb6cf6c42b084c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4f29b9bdc8d65ad02f5e9da27ca6c659

    SHA1

    4458b04856b2b70765beca3dcfbb70cb07ded527

    SHA256

    ee19de11a37d95c641cc9c6196cef82a8c2639412cb6920f28671385e3b5c2e7

    SHA512

    37308364250ed050167fb83cef63ee35784cd94d70133c3b810da534300741d6de1835312c53ff3e91eb5e1de84d528f3295da7fa27a67fbc64eb68d055c9f8a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b4e7cf1e472ec9e9643122e3e9d3be3e

    SHA1

    787d9014e1bbd1f28f115b4e234eeec6db099826

    SHA256

    d4e16664c16b7edc95dd027f9b10312ef91bb3b6839a921e74e3af34d83fd87e

    SHA512

    cbbf01c4253765d4cb7a02274d37e3e472407e6d686c64ef96eb21a65fe90edef0cebebf8e70c9109cbbbba3cbd82ef50aada6959e4e86f8c07e00603d4425a5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    baea6d82306e602113ae71079ce3793a

    SHA1

    4263a390ee490d909a6c3c027f8f4acfb3c4f5ab

    SHA256

    4440cbabba81c83fe913bd417d26dce5b449aefc04ba8499ea0736199d96f48f

    SHA512

    dd3f94cccb7b40c609ef622642a6f2445e929f58be1a7e2175e07577f31ae8771f5b2d28074f45e111ced793d08dcb1a42c4de2524fbd1e940207946e733263a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    af7f29f77d6d917253afebedc0de5a45

    SHA1

    b099e0d2744ef4b325eaeb2f782f7bb23589cadf

    SHA256

    e15330c8ad32913fd0c37d8542178f7fa6c47129af45118312452a0f1160272b

    SHA512

    3a886b9480e56376eb5afa466c8f9fd74125cbf61940c74046bdd62fff372a8e35c9af35e971308b816a478e0101b6befbb97209d5ff6e2d7646021263d3a59f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    38e64956bdcde1439cc6d5f09f08dc16

    SHA1

    6c491bf275b2e1abb762d4d57e212637d94cd6ff

    SHA256

    844ff529964420c2ecec76f5bf749e8703793de4d199e4b0c24186a07dc91809

    SHA512

    44b9b43c8cb4b0d7e88a1317925cad7a8c28c14010bb0b2fcb1214644c9c6132d78037e8d23248012e3769d782ce293ab47b8a6c857e2a0d98a61d2fcdffeb4a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ea39473da25b8b20329b224b562ed9ca

    SHA1

    1f608733608c651c7d7ca5b9b1c819e78bc00bed

    SHA256

    17edb9c44d408e457673dc14175ce129636651b8c0ce3de1a122a58fdd3f4919

    SHA512

    330eebb9ca193464b4d6b3383d7ba0ea17166dd8a6ade25106eb359b8058140b17220177d5e8bea22f01b9848f1475bc68004fb46f4cb6434e6e87f5e1da7167

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b7a5675fdfa82bfe29a9cf9308312d19

    SHA1

    b304042501af762dd25ef959ef22dfd6f71c993a

    SHA256

    a95b7525f620e41be4e69271ed2ca4120b022fdf3279b9cf9511432844ad6aa6

    SHA512

    c7053c3c360cb5a22442725c20738d517935121b85331808d497b9e11f565684dc35e221f9ef223f65ee4f2450dca96fb383a6a56f4bed5c4381cde957c0af9a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e3fcdc895444816b13e01ddb45fd34f6

    SHA1

    f36a26dc7697d582d91ce33c88b51c4e61bd59e7

    SHA256

    abc4cead287c439a52ffeeb39da67cc06efc28ca1aee8fd3b2172e5604d4aa8c

    SHA512

    a2f86450b5cb590d959242927cf26f9a6aefa7b4a151eba96447c489d0d0b21c71026d94a55b5ff64bba8254826ef1b2975d0189932fd866c7adbcdb9b91752a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b77e147a8fef3ded25b46fe488e2e8ac

    SHA1

    ba5947ca99e0586d4bbc67751443f1ba8d64feca

    SHA256

    28a46202031099470ca4f33fa5497d900e0feded358cd2a4f862fe90f40da176

    SHA512

    a49de62ea2ef2369351711fd19be8502e40e9cfb57e6e1e1b3d1f170a5c8440ee1df645a3e7832646bfb32ec62125412109957f4b004d373381e979df36ba8b2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    503a7a5894ac00c884efb1eff50f0c7a

    SHA1

    26fe74df5a85ad0101dd68876ca117fc08659a66

    SHA256

    66a8fd31d5b49d1e8f86a16d0cbdcf7588862d782114c9def3184901285abf39

    SHA512

    0780506cc51fb9e90ea59a1324f453cd1575a4e88f0c739b205b11ea67f87c2a7069cab3bb1df463fd079ad35019daa8a3c6cd2a706407ace714831ca918b77f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bae14817e13a37de8df5b49515c0768d

    SHA1

    7318212bd2905f99b661f03f19c8cced819a4f77

    SHA256

    081a73c634adf96ff0483b26add66700ed065084265c883e6fec7965a80022b6

    SHA512

    3a02e6d7eb79a0291f43e0833d82bff93a80fb37a696d8ff3c61cb321446330aabdab85f1d41ced57fb314edc671d0a6cecbd82482a5379f23ef472dc249fcc0

  • C:\Users\Admin\AppData\Local\Temp\Cab34B9.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Cab3548.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar354D.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b