Analysis

  • max time kernel
    137s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    30/05/2024, 14:14

General

  • Target

    846e7cd69840541e14ca41d8d1485271_JaffaCakes118.html

  • Size

    61KB

  • MD5

    846e7cd69840541e14ca41d8d1485271

  • SHA1

    ad871e9e034a56bf57dbffb12059ad0bb9e7cb5b

  • SHA256

    f83e40d8db3a1d19aa3e28170a1dac88b4f7a4cbab24611791eeb6369267a724

  • SHA512

    3bf0d59f9f31ed327060165eff5128cf4a44fc45f0921a19ab0d87924c4e5a2fcaa565071b399e148124bfb5e523403eac171d7e27205a0a1044deceb4588d99

  • SSDEEP

    768:Ji+gcMYUcXGeCSXuhDOUFoTyZCZkoTnMdtbBnfBgN8/uQcc8QFVG8sP/Ijkk5nnt:JM2RbTbec0tbrgamchNnWC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\846e7cd69840541e14ca41d8d1485271_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2156
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2156 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1724

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3a1bf5a13bedf64581d0038d689a51a5

    SHA1

    abf577edfa6d906a3ddacb071074f374dc58b9be

    SHA256

    9adb5684829349c4d5e2d88d55c802483bc1cd9c69910f4196235f07d4c93054

    SHA512

    2e837653b6dfb394b34c2d126ef0eac1ea04d687117a94d6f834ac240e410deb2213959704ee6ebbf1acc5f9c3e7903dc85bde94ac1a07977cd378b18ff02bd5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    58bb1ef3cb36209d6086ca7bb7f23476

    SHA1

    89d5969cfae8b98b509847b483c620f326454e4d

    SHA256

    6eebac0ce929c0457969f3d9ecdb1ef55d12fe63a6f3d2361dd2e2e798cb3ec8

    SHA512

    7101b3b08ecce121813d1c48f984590443d975ba701d979d26b0ebe945c97248fcfbd582a62d2fb8a21bcb1219ee94b71353401aa9a26319123be69cc9ec91dd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b43f91af02838b0b8415503d0a19db14

    SHA1

    9726a1e01d48e3285b5fb70f30e6d20694cfd5e2

    SHA256

    90f85267fe00e5d6af4b6e9d18362c706a81b32a02b06b0dabaa3ebcb1001661

    SHA512

    a08e532b8a7222969fe7d93084b89bb283f912e44c6eea2678c3069df677cde8a664461a09636d0ffa6531b98064ffb3c6f5904b805639a64145776e5d7ecafd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bdcb14e366d8198a0370fab980fdf9da

    SHA1

    724b34c0c74b8044a0f55c27a16bca74aaee61fe

    SHA256

    56f2f784ae7003d37923a18f4908569a7ffc7bd71c259a8d01edf84df40fcb8b

    SHA512

    6f22d5cf99f84b2127c4ca84015d4e7b45266e9b9ff66a2dc0eacf1c11e086716a2d115261c54227254dba8ccbfae19eb841fbd48e6f4ab591e613b163c6bada

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c16361e1a780d79080980cad4fb7d132

    SHA1

    3e340f90f9571aa64e9d85545431895e8ba32631

    SHA256

    8210329ce55917199ce32010b136c1e266cd3e05c75aa7d60cb830c407e4ca24

    SHA512

    76a847efb726ca5786f7a1939abf8a8241162c4dc8dc84e8221b71b63bf00eb218d9ac36360066e094185a3a0f33e58d550775bba1a0ea7872977cb079c688d1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    83aed7ae5c9e5ed983a21592d10f370b

    SHA1

    e0230b24c2cbce9053952f3305530ee6583c0ede

    SHA256

    e2a9373b87fee06deee25fe8544aa0d76d366fe40db2870a4bcb13a7bf63999a

    SHA512

    174abc0d94df0e829121badee73936e05e47b07229b8bb5d64040b5322ca83784143152bea2828f47a4a6808b4514f6e3b49cd4760f34d2545ec4d1683dba22d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c41d7d326cbc31a5166c2bbbefdfb124

    SHA1

    f2a0ada6146566a663f6ba59c69f05dfd5c9b120

    SHA256

    b7d596ab81257ccf4adb88ecfd5d2c1cba766f9bf01c475dcca1a3da07b9be04

    SHA512

    17307da5aa12281746d671d90f54c7e2a4ba503e259b111d7106f7f6a83147c3af334baf96316c65e85be1874fc0dc6cc7a1baeaa97a42a4b87f58bb53c11628

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    573e5e4a16cea94f122d125978dd33db

    SHA1

    f94498ac9e13a46a1be404eac124735f77188180

    SHA256

    d7a928488f4884526a93d5df335611ef449270faa962ecb49c02f5438f10643a

    SHA512

    ccbedc02062d2aba5683387b46a2d2256dc6e2a6d4db79b1f2665ce54bf55958191121f24e87e6be308fb1bb8fee3e35639d14ad7b09d4973a3d65e589511104

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    283cbdd0c8bd59f98270c58273200586

    SHA1

    e9c2c52a30297ca0378bf1e098e6b9c194daa973

    SHA256

    6a5ac2b9ed3560f3804f44b4a4e8e44d02bc1de6bf4e3b9057107876d8b3272b

    SHA512

    6dd078a31a8104f31b341a9735901c33f060225bd4cbb464061a55bd79d53d19d39fd649b7dfb04b8a998b71b422511ef488bcb6fbf9dd164a4609547079e675

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    98039fe9f3294957c3966884d9c21b70

    SHA1

    cfa07aa5075514a2afdb1564ef16680ccc7da46c

    SHA256

    4823dbc145bf0a4a50364307190bb879f85e67fc60a67345dcbfcae94996ef21

    SHA512

    c4edb4c67e7e564e8a84460be3f397bddee061c9d38bbadbdd8b196cdcd02696d4b9106dcc892c5fcfc45ba061cce0da6cdb1f788bed31bca89a200d893934e4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8f31889769aadc18f1fcea1840ba1889

    SHA1

    b74e9f087aee9dfb5f9cd7254d07a9999fdf7b7d

    SHA256

    2bedd33cca09c7761183fd999f634d0e8097bb27891cdc67670a1ffa97edf633

    SHA512

    77f9daf203720cfb98a674fd3fffdd489fa2feecc7f1d59221405d6bc6ed3f979daf25a4d0327b0c4e2e58c02988b83e8a5589112d95f57cb900af178503de98

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c52ef2e14027c869e8b2797b10c2ed92

    SHA1

    3d549cf0e50afa8d31cf55bfdda1573fa7cb01e7

    SHA256

    77ce804dbe8093b1e1aa3e2bdcfc98f5b5620f7343d6e1d3e44ded9052112977

    SHA512

    3d5f6e9728812d38f7bafb6265ea34dcca873d1df7324aace7f9b446bec8eafdfed9488bcaad10fe4e90f8479d8fab6efca3b0cf0f4c6b5bf18cb56fe0017b77

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b4fabc0a06d0272fffc28d7c5d876fc8

    SHA1

    4c88e26242328a11bc4cf19df6e1421b6c841d8e

    SHA256

    d0c2bc1eb099588f44bf27ed49716eaa0158885476459b509bc13fd3665bcf73

    SHA512

    7bb3e628e2ddaebd593acd9873830d044d7efca9b8558f4e689916c931f0b56cf0dd020a543e81a441776e8e21a2f389fb77625020df1b6d6e28135767000948

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c94bc5ba9ca400f1603dd8ac8bb8311a

    SHA1

    36e94c3bbe7c1e2338967c676af04a61dd9f9958

    SHA256

    0883e3fd0c0fa821a1b65312ddfe3a5ffe4e61410d474096d911a78f620826f2

    SHA512

    0d3f92fa3cb539cab4470bac4c5eb2f6d9bf75ef98c3e5035325eb8cd8eea234396271315ca8618ced8cc9bc6bc2ae08d09b6edb5cf8589b37a249dc7099dec6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    563c92bf238adf7cb980fb40161b5352

    SHA1

    95881440cef4c41ec39915ec89361a1cf38f4222

    SHA256

    a841ff3dc2af61c96f2e41900d79743992e2af75dafe79a0cfc5b14fa6c3df26

    SHA512

    9c05492b440a90b13e8d5e113207fab3b8ad4d87b231f87a1616da01a8966c86660cc132480333045cbcab8cfa06c429f982639f028ec640b8c406b428276218

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d3e1d102e087022dbf5a07f07fb60cba

    SHA1

    14ac88618b8ac202b07bcdec94fbee23fc988f72

    SHA256

    2b9b9962e9cb66bae253aba7750afa5ce0f691eeef68246a2761458023d2ee63

    SHA512

    efc1a534c912c708674b4866d80b76ee3f5ffbf09d9f87603b9e70760a68d4383fb126f5d7ba2f2c3b17fdf02e90dfb7f351845a09bfb1450caa2078c629a501

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d16c30961285b9f9dcca3051c18a78e6

    SHA1

    71d5814a298247dacdcdd8270e8b5f99dd3057aa

    SHA256

    1bee7989fdd30e9d2bc942489b6452e9b873cb07823b95180c0f7bcc3f2a0c12

    SHA512

    49879724e90c0134fae10e6eae7a940bc35fdbf3e4af1ad9d950d64d35aaf8401b1898dc99c17a06f34137c3258468233e09b4c3eef5f8acf923a0ed9cb46dd2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c1efcd8fe1ef7a4c8ba5f9c83d96913c

    SHA1

    f46a7f4730ac98388bbfdd2c2c1de7812138c6cd

    SHA256

    b39b2cc7f943034aebbb1ae1d27e5a1a9d2fa924ccff4d53cb9bf62049c1b0e0

    SHA512

    0f172c1a312860488aa5e77fc5ee1e598c1d62f65cade6d2ef82047ab30bbada518816834c16d2ea113a747e25cac314a07a5c29e36d0e1cdf40688f7f8e4598

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0c12c41fec7a3bfe25b06d851c14b1d4

    SHA1

    15435d71935a492cf8db7467e8b90431e3dc7035

    SHA256

    db66f0f38b636e0fee533922a59368e0e1ed3390ba41ba6e69be066afa5b1a82

    SHA512

    b00c5214b71437a2a1ea338f6ae30e5c7d3c8ebba9284df5eb57c3f4508f7ea9080e8be8199f163a651f4ff9b2fb90a1e9512b66d4327cb098e6ccb294607ca6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    59b11779978f591a7b7be7f78f2540fd

    SHA1

    505e7b13409a2e675d1e32aef0204616dfce885f

    SHA256

    a4f64d5a8ea56e29ccc1bf89a69c880638640a1c0974b198d859b494870531c8

    SHA512

    1e903fa5464910af9aa3b549b40a3a7acf44cc193d3688558ac32693f98f5c65ed3b2234cd9b57d2657eb79a7da5a48432264401da260d89b045b612682cacbd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e27f6223d0eedf7ffe12560a6c9f29e2

    SHA1

    6862e97194f0d494b84375d3719f10f43d52e2c7

    SHA256

    c2790ecbb331707fea011b2ea84852d62821f7b540a0fc05e877c00c817da5f4

    SHA512

    65369fd368dca1b931dc34a86dbcb4326e1580a325b43d89b474dbda6a60da0dc56883dc72f3d2c95cda13ef2da4e1fd552539a87aa7e81bab819263e9cb2079

  • C:\Users\Admin\AppData\Local\Temp\Cab3556.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar3656.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b