Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 08:09

General

  • Target

    911051602a6941a58cc34507b66ea51d_JaffaCakes118.html

  • Size

    8KB

  • MD5

    911051602a6941a58cc34507b66ea51d

  • SHA1

    0557ee6ad9ea5678d2a7a04d19eec7a9dae8e15f

  • SHA256

    eefc3ed7034893aad61b871f0e493f8c30a00a094ab6166a4d263780a98e091b

  • SHA512

    4ca6748562459209b41598cc04da4048309e67e49a9d4280c3289d6272d039a4c6c9cdea1173afd152461c4999369d16c9e4a1b25d74372f222a3bd6f1db53a6

  • SSDEEP

    192:jj5Uwi1Zayv/02EKzBnfKhPM+uHv7Ic4cu+RNB2AM:jj5UwiWyv/02EKuElUc4cu+3RM

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\911051602a6941a58cc34507b66ea51d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2180
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2180 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2504

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    a3fa3af16c22eeba40f181715ae57cb4

    SHA1

    becd32e63bc29133fc2eb77896d2e55ab1191fe7

    SHA256

    252bb803169602307128ad5fa951a358876958d209729c764f5d036e34e740ee

    SHA512

    c7b6b2af5fa3ae94b47cd4e68db4637aebbe5b874e8c26760e2a5688cf5db67c9e31b42d0ad359b294019d561fd7b5f6abfc77bdeffd5009745611bd904af277

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    efbfa2ad844399fbe1afa7b7aa207d06

    SHA1

    6398c1d11a492cf96cedafb0f223ca5f70bae574

    SHA256

    746415e9e70535ff6d7314cd5c6be9f009acb09ae3f884459ccf005c5b5911f6

    SHA512

    49b789a5d6d37959bea5bc7bbdaf3da6fc4cdee3495cc92f404effcd7cd2e65aa50bddf4ceeb2dcdba7a95a5ab224fe7835ccae1314369e681097a65baac9335

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    41b5ee8fc116064748c85ab2cbfd4678

    SHA1

    a278a5017aa473ffd2b431f6267a41e7ebee93f0

    SHA256

    a276baa8f99f67ef70443c5c978a75c8ab1e021aa39be6251a99ca19302d799c

    SHA512

    53c1a018f15f8949c0b3f48066b078981080372a93cf87943cdedd7ef168ae280ca1723de6b7de7e86ac9ef4fe3040b1bcc4c2312e4f8ccdde6ea57e27b9dda5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e48113005410785389ca3fb18b9e72ac

    SHA1

    02704a462dae8f614fb41b07c9520c6d7e1d4bdf

    SHA256

    48771baf47789a52a5f06f8b384e62d35f484f29785a33d5b65bcd67e102f106

    SHA512

    01a8b476702fa420beb240978aa14f5be9db65048fb6b05d5883685dd7fda3ad582070218cd44135907e6140896ac242c6ef3273d30b998666a225bb6c87aef8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b012f1b8f65497bbea805cc7a9299fde

    SHA1

    4f92fe6ac4740bf96c01565e768531669ead057f

    SHA256

    ec0b660f6a2ecd31f921698cee692efeb9b4cbd64027c5c638543e9d6071a90c

    SHA512

    fdc8c2bc9c9fd158e3232fa82c45f8183987b0f58adec83b7143d98f9fe01c11f998e71bdde99a30f6756eb4de7d340edf02ef0b8ccde54a0c1d457b495cebd3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f63654cd395df8ad42335e8f3059a8cc

    SHA1

    f8a175ae12ad7b722f56c48a854843f2070155d4

    SHA256

    fe88fb6d310f0d2b6b67fcfbc07b12f167607b085679aaef50aa91090e62fca8

    SHA512

    178f0da23f37c10be8e46679c7f3234142bcd4b7f0257094533b297833b8b9c65983383ae61a65cb75a173f9df89b70943dffac1c7db719bc4b8799aab6ad5ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    97ae6c4cee549ad94f1be4fe847ad8cb

    SHA1

    13c900c49bbcdcee392b1796134d384df2c0d39b

    SHA256

    9f71b99179a989535a53b82c23c38e3c8b8bb738100ae53c5cf164e4f5c04cd2

    SHA512

    02a3e5d9b6396afdd3ed9a3ba25ad5c58e07fe6c9b63ae05b7bf2cb9240f7d7f7488ffbd614bc21007d21ae0c5fabee87be496ccde706029574b47fc7d87a4c6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    380c7022204dd0429c0340bd0e4cc6c3

    SHA1

    02af41b5125d29445816a021e4bf0d31d621cd3b

    SHA256

    2c2879c7b36c3b072d4d03884f805a85e5c77f9bdb12d0233bd1e15134b0bdcb

    SHA512

    3ea2f26b6cb7a1f7cd1971a8362546752ce64ec07b0f154a6e08a113599c74f621f40252e858c7f36b884301916ae79972ef290a45155d69d6dd4715d67891ab

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5b5c79402562c98cd625b2fc08b7dcdb

    SHA1

    7c75b1848ca9e1f69134735c4fb59ffa2783ff3c

    SHA256

    ac09a492ff8ac2bfb1b93b6f70882eb02742941f1d6f18ee8d07d1d1858ff60e

    SHA512

    080dcadcb09fc1a32c10a54929dbf133a91968f3d0f037cb79ba03720b16818bfae83111dc336969dce9209bdfe33e56734ad9ea4078775cc666ed38386456f8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f285b6d6260010d803ed4ac09c401df2

    SHA1

    4a2131362132773eadfe056270408325756ae133

    SHA256

    d00af3003b69f669d76820ce46c80fd22ade6a9883fe9e7b5d760e9c8ac4bb52

    SHA512

    81cf6343043a6750547e1c9bf057c66bdc11cc986421d036957231cb3c7d3302ae4c5be154cf33b77fc269780d6ae76a61a04434e856bdcb7600fc84a7550e31

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c026b0203cf9c692a59dc7453c830a0f

    SHA1

    3baace9472eef56ebcb0c6ccde85bf530479b95c

    SHA256

    c0a75eab49e5aa93aa652d2b65911cd2ac5256eff63d0f2c5a804e0508499e96

    SHA512

    8051b88859e3ca28ee0acf5ab8f41efa11c60c007b1003f36ca7ab22db8e9dd22cd8cfb36b28b2b830413a4a8b29141a3bfd1db74874891e4720979668613e7a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    322f90b6f996fd9f2b321220d2e58482

    SHA1

    09e53ff858ad1e0f0a3cf8aab8c505c1c888175b

    SHA256

    8052ef1ae61a2274b76550cebb0c5cc7739d895d04ab97eee8cb79854726cfbb

    SHA512

    d443239aa6a004345a27d3bd329e6675baacc9c3e8f4cee59944184e609447f3bb3bbd189c580db4d040539d111723e570cce13b7c0e835146719204a0b66624

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    54b1b85d71ad58c057e59742cbd95473

    SHA1

    8ad8cfbbfeb9cd7dc7e6399030e634ae60eca0f7

    SHA256

    3cebac226d793e45b0c8350282be77e23a4e79c75b4ab91c753de2f5de36631f

    SHA512

    3f657bff4620f95e435a3ab23af1370d3153236c0f6e21329520bc4e30c7451ff8560a6ddcf56fdbd8918fe9a5910fa5e478474b02c121e280f312f1e26edab0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    77c19a0497bff4b0121b7a05b19f223a

    SHA1

    e3a3e314cf61f832bfe3e6b65b0e0c50147c3b82

    SHA256

    1c0c188d9b2fc77568f8dd57c53191942aa2a969fcfd54bf297b53db46d15e9b

    SHA512

    66b36a3dd242d86787cda2e251a3093dfa89d35c0429d5fba9ddd5aee6aa1311f8ebb8e7a4f672b02709512f7a058458b06bf8c3e6781a6c1cb62c0c9e295355

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dbdfae72fec829f63a6ed150b3e9b1f2

    SHA1

    f31d86f692c4473a948961892676d8b1475af832

    SHA256

    c4b91022d8523b5dd419c998368b1f8eb7304b3243577303377916496b4cee20

    SHA512

    de7e809950a2c7d5690c9ddc2e725a51f724f4876f635f42e599cf2a4dc63e6550f623dd7316d6f948a8257255418e5e15dfeb71948c3cbdef4f3ae05c418523

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f0bb19e69d32c1a5fcd5f6b8776694a8

    SHA1

    41485c4973791413b065547766dbf923923295e3

    SHA256

    c31b796bd0bb6abd93b95a5a4d61978d233c7c9710e93e30cea793f180c65b8e

    SHA512

    85fe6db2f0ae8ca0b67eed55e1db3f75999f3939e5e7d02dde2a1947de88c90be15fb627ebf8b292712be47fe2a84c9f88091516c71916d270e2de34910afa1f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b07b444d4c6f73cb6771611060bd415b

    SHA1

    b667818dad20b9adf71d325ca6c033b3f2ae5387

    SHA256

    eba366e024b392347d7e1a977aec9019b54e50f7173f822e9576da456a38dd35

    SHA512

    4ad9ab002ce3b5cd29e69c89ec0b9e6ffd6b4cc0d230105d61b649dbe484e0e24ea4a16e79edba2d2814df595e3b9d0d88d13836b03eb152a787916e6d630367

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c7d61adad51ee9b7191ae3e8560dd9b8

    SHA1

    6582c5e5b7ab3b64c06ee63878b1cd59216beb26

    SHA256

    e8ef9186fb63cda25e0a1e91fbd9039fc47564cd52011da86f01ed88fc0b4628

    SHA512

    2892f9d7cf44f95d969ca2f2f33d6779e8e53c50d6e4fafdb2364c25a4793a206a88d9c7b780d0e3119474e67b8871ed78a1f6f6b524b2402bf37f3b906bae13

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    437b0ce952b3a1ce860e68ced2b3d3fc

    SHA1

    debf6392fd2fe34b351044a3deee8d35611cede4

    SHA256

    a9e93f0d17e9e4f0d38f4f47f28e9af1550af1386eb2196d84742d04ce5a38eb

    SHA512

    7d76cfb4948aac583673dc39b2286d0c332a11a409c8f09f3958cb899000923e7bfee63f17830b2985166b5ceef1b6ea045f089993400749160253534a6af3d8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2aa160696310c97e80c5c541514ff34e

    SHA1

    7881fb245560cc533474f4cf74e7b0fd40d9d280

    SHA256

    eda07fcddcde9ebeed13f93c37f19eb70d355379409e40c7cdfff253fe546ba2

    SHA512

    5a04e81af2ab2b5b5d694181b4ee55c06f84b95cc12cf27eae54871bf6463789f37b0ecb65bbef194ac9c1d048de84effd96cf1218a3c18b4491c18dd28d2b3b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f375e179f7eafe2c86964d041e41bea8

    SHA1

    db08c9468fcb62648e7a02ea0b5623eecab87c7b

    SHA256

    b01198b641f7ae61e31d6bc22e183dde4ba6e92f5690c2694900730c89f6b4e2

    SHA512

    2c27cd808f9c322c52d505f1c814684283cf5f527a10dd2a27c1ce8b08a82b89ff846d675f5bf90e6a7aa9dcd0411cb70cee834e25998be57b5bfd54bb56cf2e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8968ba591ba7cfb7ba336e2dc7adf628

    SHA1

    3f1edd15ccfa0d5978fed8b9b11412bb454e6549

    SHA256

    a2bd83451a5bb35a072c2a842ebe00d39e14351450377cc0f1bfbd773d01bc3d

    SHA512

    aa96aa883b3600697dcf6df550463b23f9a0f9ba37bee3ded001efc2ddb910a829949ec8a05626102a813f72d02147fbd852ca22dabd54af293c590cb7860d4b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2285f7e708f52ace95aca92b3059cd11

    SHA1

    f49972b555827b8cddf2fff6d567b8c52beffdb6

    SHA256

    ae66802a40793da7165ff788bc7937a16a7c23af4c287cf8245d9fb2e8b64515

    SHA512

    6fce0d74cbfd80c67eaf6cc2618e32a47352c989fe5b028e905c5c14a59877cb963ece18f2b6753c9b53cdafb4c0abd33e29292e5d046dc1529ea265d45e74f7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    c41e5fe49895914cdf543e8baa0edcd5

    SHA1

    83a6a3427816620653709b379d3cd06e0adacdf4

    SHA256

    3d48cbd0d33114fafe85d9020a3cfb9b57eb01899c8a5983e3be83072130abf4

    SHA512

    6dcacfd23ef51a69e29c215b458b3b7faeac08432f358bf51c98992d09d06a7dcaa865c52f33084036154b57ae48b8b9fc127c2a0e56499b104ddd21a4e661e8

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9ZQLLOZN\functions[1].htm

    Filesize

    121B

    MD5

    81eab78d39f7a2ac60af59e0a40e0820

    SHA1

    224964a32fdfa015ac10ded74094950804f2004f

    SHA256

    7e30633114fb96ad0edab317837f9aaa19c7fbefefb7826ee583d31d4da47d21

    SHA512

    6bb2c93e7f984336fc657148033d15449be92fb335c94e5a5fe81c53f792ed3a7a0ccca707bf5c5d96097e6c3a0c6fb96fdbfaf5cab3243370c93a60e1f5c098

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9ZQLLOZN\jquery-1.4.2.min[1].htm

    Filesize

    114B

    MD5

    e89f75f918dbdcee28604d4e09dd71d7

    SHA1

    f9d9055e9878723a12063b47d4a1a5f58c3eb1e9

    SHA256

    6dc9c7fc93bb488bb0520a6c780a8d3c0fb5486a4711aca49b4c53fac7393023

    SHA512

    8df0ab2e3679b64a6174deff4259ae5680f88e3ae307e0ea2dfff88ec4ba14f3477c9fe3a5aa5da3a8e857601170a5108ed75f6d6975958ac7a314e4a336aed0

  • C:\Users\Admin\AppData\Local\Temp\Cab3574.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Cab3662.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar3587.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\Tar3696.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b