Analysis

  • max time kernel
    145s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    30/05/2024, 14:14

General

  • Target

    846eb07bc111b04b0ac222375fa547f0_JaffaCakes118.html

  • Size

    10KB

  • MD5

    846eb07bc111b04b0ac222375fa547f0

  • SHA1

    2b566a5a55e46fb61f6e907d026697abfbe71d62

  • SHA256

    f79514920387e2058690e93d3a6da34653e46ce2aaab23fdf2dd01edefa3fc7f

  • SHA512

    515ddefb5118c160243d5654f6efe85019e50b18c7df2b687522e4668795758d765b5a8f19399988a830dc4104e51b465be557d31d9f3e4f57e51100aa273e6b

  • SSDEEP

    192:FZuyPCGaJou8qxdvuw0BMCLMnjyJ8HMC8VOekXilmea/1npbzy+N:mou8qxdvurBMAQjyJ8HMCEtkXilmeadD

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\846eb07bc111b04b0ac222375fa547f0_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1812
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1812 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2300

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    191b2729f915e454c643136c2a6fbd2c

    SHA1

    bcd60781327d7d131d1e9acb304336e5c6629339

    SHA256

    787cea4f3152ec19ea4963671dd18e8ffb256ae9b21a343794a569e767d81032

    SHA512

    c9c837cc142845f42f9eaef2202ca15a3b9cf835e6654bcc115583e9b9f9cb85e1b3db016d8497642f6dc0e50fdb0c22e6824c3b885b700b57fa32a8cb8cb0b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7468e990195d72256be28eda8b42220c

    SHA1

    a0d528f279ca7364f850114fbf07a774bca2159e

    SHA256

    93684ee6f2bb5c9e744b7dc4e31b2a2b4a188c058d71c1788aaa1a6b38f2d7c4

    SHA512

    c37a11b5aecbddcc29e109ffc57d2d8fc97d7657fabcea0d7549333b7018394dbf2eb33b3910fe8bfb3e8ed2706332f6ad1147873018f805e98ec4243a688778

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    485c633536677bf692642fee84414398

    SHA1

    0a4c8f9ae011183a8dc0695d444abc33927c4dbc

    SHA256

    502984db8df653d3a516b55387b13706c7afa6811c79896148789c29792db790

    SHA512

    a17fb1b7995379bc81c3d6cc6bfc6ee16ffe695c0e5a77b0c396150554dab8709448ba1702acc16379d080226c63fc3411ecd5df4a62041aeaa462f00f6fd5a7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1234c2120d04a80852e565f93668506b

    SHA1

    3e05d24de584890b400f847302a4efa9cc0e3b22

    SHA256

    a2212c3003d41075df65950b124d4d0518d930b4d8d427d0fceb4b216bb142c7

    SHA512

    b0378c101aa5512c1d7ba3c18e948f5cb7ba52634f5f2321a8fbf50dba9d570b8eb0df979ac26484c24440edc01c10650886575693ffc14fdc2795e64eca5678

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    769f11ca22757c73ed5e861d61f0589f

    SHA1

    c82ec28a756bea0b6a2447a32ef2e21f047b21d7

    SHA256

    7c69d7e3d9422f8194276b64c27ea38d5d080c632092c2acb3c0aeab60641e10

    SHA512

    48e0d8815b33be23d5a614d2ff10500cad081c90d9d7c138413659af41d20c6e60c6b41eb996a0d48d31bffab18f79c013868d8a5635907102b05d05b2bcd1dd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fcd86db6a51d8d2cd8e849ec1e29986e

    SHA1

    f3087fa7e23f0167221b084df2110501ae061fa2

    SHA256

    2b2a215d26e086cbb9da34158a0ed9f945d2ce836e66256cf176e4ceaca1ade9

    SHA512

    9d0eb4c356537c333fd420821cd89cc21e429002bc6152b8f8d5bb2894fb62b302d3a2dedef69f13dcc1644bd2b99fa89b12a5c367bd2d71064aa36e5827ad98

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f52a14b46025f846c5ad9cde31a28c50

    SHA1

    a8c86d176198bbd563e69fc2649aad47c6c20f13

    SHA256

    4f007dd813c16dcb3aac1fad9b7eb749c4f886ff0e54e51074531938c9e5b181

    SHA512

    e3d4a6932630c38d05337f13acad1fda387c427fa875a9bf7ad2f9026aebfdb7e94b476168da5aae12fa18d76191b09f71ab53231bd3210be118bce8c27ed960

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9f6d2b0b278b946cdb6de4aeadbdc4df

    SHA1

    938bbd2615c726763970eec2605157813787fa71

    SHA256

    6f0dee1054479b006e074ee0de07a36e6a778d3384ac58ca670e0e9e85fc911d

    SHA512

    055545556ee645348439226493fe2b4842cc45ae92f863680b6699234089cd75556fa293b14a8ae2ab59f53885ff68adfe18a086c81198abd3f7bf9d9f8fa769

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0d203a7bc3a3061c0913dfaa50868492

    SHA1

    e26a1c71a6d5922d06137b4c67041f21e57654b7

    SHA256

    1ab2fe5534be836cfc6acffa71819b6513f4740c00b93edba40a75b092905d14

    SHA512

    78643cef7d5f982ba20b594ec203e19ef76b904e73099ac9b9f7c8c9556ef350f684a6242c967fc8810130513f08c954229fbbc4ebb79ff6a10c1a649e51554d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    490d1d357d21f5d3c5b1a362be9c41ed

    SHA1

    289aaa8e585d39bcf10628a71f70121d0a00afca

    SHA256

    04abca104eaa498c71d326d90021ea18a8e1131864629c239be068788359ab0a

    SHA512

    890bf4967c1b2e666eb79057c4acb78f15f77eccc3f85fb999b9ac6f3952d5eb8eefe70f317653fedb1877049ca6b2d9d8b4a07c77232cb282e47cbf86eb1660

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cb41beeef8c8c6cb5e4650885089c51b

    SHA1

    8f5f5df292e00df8f8d93d90c6f6208fc55afa7a

    SHA256

    2801f86719a4e9029ee01f49242b9d5eef2eaeffb5d12c63d5a7c8f7170f5c48

    SHA512

    74399ed197671c3c8247d33aa0aa05e1ba9bbabd67cff945beb72c266162d6aa99d41d38570bcf3755c2e2edeb6f72af8fbc406f1375d48480cb17528ef214f0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3791999fede421365a4078080132b96d

    SHA1

    8af4eeb9a22c2cbccbb6a7d35d8e768b8114ecf7

    SHA256

    fead0f857f727ff4e1f1716ca92b3678e6b9900574a6912f9b3d4deac588f45d

    SHA512

    490d323faca8d773e22b6a069b96cbd8e8b2e86d66e8a5d969f172285babee8d88607c1449a063763d9498299af140b6394a715c4d4c47a98ea14d46a0364559

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3b0760c92c8a014cd152456ebcd73bd4

    SHA1

    3b09c5d131a15e23c5d20e82032b363b6f912283

    SHA256

    dd01978f02e651ebc494b7eb7f249f635a3f1f6d7b077132bd6f149c48c5d857

    SHA512

    8cb16b85be4d2e4f79b60199b6b018ccf8df6490738140b91acfdca2c200d1bb7f1ba36bd5281bda133156740ab00589661e614625278fa7045baba34ec59451

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    60e46fdf210d8fdd6110de32125f7c36

    SHA1

    4671a5810bbc093fd48f930e39ba67263c91d600

    SHA256

    1c5b9683b9725d808475bb88b8d14ea7a0176e2fe443b8d7428a2435533029dc

    SHA512

    f8763ccf2d2db0320b895485b76b8631de5544c3c303ac2b73d7f164c0f37e6c862c9028d956d0f4d1472f2ea7fabc2922e46b99968aa554e20d0f8b1994de03

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ac37f1077fef746c264acc5f1337de4f

    SHA1

    8146b5639dded4949785d666104afe9b2556186b

    SHA256

    f6ce99716a46e518c9fee9d7b392707ba5b8fb4fae3997c34e68ead41c24bd85

    SHA512

    aa917fc2c25c2ef32d55cbbc25fae65363016761a93e17960cac436b7353acd56e93f02f5dae9a87eb308042c089bf0dfdee445c5fda7601fddf2a25e0719b23

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    14d928654a641836af1a38f06489e01f

    SHA1

    e83aa86a23010fd640f836666b16abb7a0a0e5ab

    SHA256

    2b75630abe96645de1874412dfb285f8328f8e23b7efbdf2a174a3a5cf60416d

    SHA512

    85222325a608f95d3b94b00e1b85185db6126d7ee849342c1a379a233d7b658145edf43ec5bdd9a0bca80a8a7085920141698432fb697b63447c16809ce21deb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a6884de2186b48f5f4b360d0f10e5b3c

    SHA1

    97b7133c40c75a22ed7aa79c36df2904879d16c2

    SHA256

    4aec9fb586df305a1e729097d91e6c78e88f59114795e7b17fa297625c48b2f1

    SHA512

    e40bed03ccdd11d41227183abe8b250b3bf460b0567e1841d4ae650dfd7db1d835b7804394215ccbc2c8f255feea2d721924b7c63b1c5ccebb47f9e5af318e73

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    389032d98defe2f197f0d2dacae150de

    SHA1

    400b4b9af0efe3a008cc1cc4f749b24fc460bd36

    SHA256

    131c577c102c6454a9969f7bb34bf8c6d3d1c0bbf55d0c8b43fc4e916eb3a307

    SHA512

    ca79d42356ba415220713942d32b2a15797c02385288fef2955cfcefd06e75f754c81194bfb7bc5a6b75145bc29d8c983c18c8a6a5b0cd9e822921801b1ef934

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ffd1998f81ce56da311ef0b4d828f23d

    SHA1

    0b471a242f4d39bb5fdc48f22366f1d082a078e7

    SHA256

    49aacb36822afdea73d681553e405be105d2af39da96d9ae3b52181e21c51811

    SHA512

    e44a96d15ae69f69e990067179ae6686b954cff1c66006b60ccffb9059c2803110b16878819d2da9129488f12ab185e6018055d6c3b1629b47dd9439036a9c40

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5cd6a552b701af56936f9dbc4d4e1182

    SHA1

    fc726cf9e01087540f75bf90e75a6d12871c5f2a

    SHA256

    d2eed0dde30434e41b6d3f049de9c6b3ea5702d543b686a14f365e9e6dd0e82f

    SHA512

    9940ed4bd80f42075c14349df0fb365cd10ef4b8298dbeb61593d0f0f19da5ef7891e06157c5b26bb37f8daa234d97512d0a7793931624f816919624645567c2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    7323ebb5f66e9cf0ce774410eeddb7f9

    SHA1

    9e27ec919536852603132f3032655138f5e31298

    SHA256

    6199627ad24493cd5de12ca90d6857be79a5823558b83e98ed70a347fe1184ac

    SHA512

    65f9fcda4d6fc36cc8296a30b0b7613217373a11eaaf3144a1ae031daf37369db60742a74ad5ae9a828c27ae66a066fbf27ec24eaa893b536f7805eb3f8d0e6a

  • C:\Users\Admin\AppData\Local\Temp\Cab1564.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar1677.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b