Analysis

  • max time kernel
    120s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 07:44

General

  • Target

    90fdc7f8c5f5bdf65d45f27512a2b8ec_JaffaCakes118.html

  • Size

    25KB

  • MD5

    90fdc7f8c5f5bdf65d45f27512a2b8ec

  • SHA1

    03d262cf34f8f46b088191aafbe7e77a1784f418

  • SHA256

    e246df02c7e60670826ac1c4e97468cfbe27fc61744aea74cd25e6bd7305d3ca

  • SHA512

    fc860724e634b575af7f1efda22b92cc25a19d9058711b46f1df1bec45c84281cf98c6d52fb5524c3afe7e8621d61b5e05c6a9ef8745c5e6f67f90833c7ba988

  • SSDEEP

    768:ysLhR/hnP7m5CG7AvKdQy6E1tIh/0sFetpG7uqjq+C:ysLhR/hnP7m5CG7AvKiyt1tIh/0sFetl

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\90fdc7f8c5f5bdf65d45f27512a2b8ec_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2864
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2864 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2620

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    da843d699250816f04107b855d3d1bf3

    SHA1

    dcf6eb639215c4624156d8da1c21d3df3b605da1

    SHA256

    0a649f53aecfccfb19bd765c275fec7f56760b6fd7e557b7584a2f4461a80a94

    SHA512

    a5fd3002ca95672be91d859a83e9da1cff023f758c0f69129cdbc2195ba7e72c6f0b0d0a6ebcf4f3d7f4076c49c3dc51c5c09a3204cf048e1684855e6efec7ac

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    416f12c6e00353570a4473b1e778372d

    SHA1

    679dd356c2e48e1f5a2bccd0e106ab971c46d954

    SHA256

    3f11a84389e271751b492fa255351d52688a98107713ff5b68fcdcfd986f00de

    SHA512

    4bc1901f033962973cc94cf164a81a007507c1f72a8999978f83a655bb0d055b0cec8c1445e23387cffaa61526cfac02aa513f55f222e82828e5244312135844

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ede9771f32b97a1cb5569b250984bc79

    SHA1

    ab87f0f2f05f8fe596011b95d669320a8739d0b3

    SHA256

    d0c6aa2047d6686a6015350011c9dbd6ac8a30b1f4a988cf931d5c7253fda3eb

    SHA512

    4f4fe45fdc91414da5492e8cb855dd7b16fd1f5b9b108831e11be589412da4ef08671dc4e78bba2448cd590161d40e14ca45991892059344b8c231a53ce5b9a0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dcf15b3a6d17a249d1d6e3f25ab45e06

    SHA1

    5b3a89c0376fe500f02076c62e58579314fe01f7

    SHA256

    1b99f8b033c3794502d1bc4651e338db652975460a87aa7b5f1259b68de4cb17

    SHA512

    ba09237f542664405093b5a5cc89b122978295931cdf99c8970967194721196914c0e1495926ddf44e641b1cf3673dfc08be22732dcc9d68a0507da00c1b67cf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d1010651bd7e06b952e3a6180ba5f835

    SHA1

    6e5153a39b62a0571b737f561cb4306ec64363de

    SHA256

    320fa1f481c380f6b16d4b0f6266322c6c68a175611d84ce1eb807011220f1ef

    SHA512

    b4b459db2328fbd345327342c7173555d5416e68dee4a9224cfdbbd0e6f24c7133eb336b55928930bbb98e56a45929b5c188702e43714c0c6b6faf8c88513ad8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    766531ac8f6799ff5a8e20ffd694a7bd

    SHA1

    317da0b050ef5a3e0d6fa44471752b01cda6eca1

    SHA256

    56ac56585a10a9837e7e1b542327e0cca0614df7baf2bd377fb1b95a86189cdc

    SHA512

    6b9c0d1312a537d89d3489bb65194262f3fcf75c41a9b45c310c111b848eb8eb7ee2dc8c236a5ad3c70b1347835e40ae78c5149ee77dd951d1c7fab669ffbfed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2eaf40dacaa238b0f08f06003cbbefa5

    SHA1

    7f4c912f4adf1c417addf1c88cc1724e8024aa67

    SHA256

    a3eaa58f389f7ff800854766a9bf02ae249a72c3c6db05aaf0196530f6c454ae

    SHA512

    357ccb86dc147803030884de49d06dce41fecdb2e7ac9f13ede5214da7f4282672f8d8c124b6de0c42490dc83867dd9497da5c601977527ce2ad861d8f2fe395

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f8c02d7ff0fb6d38ebc46206698e6073

    SHA1

    9f6e15344321e3b192c037eae3828e1781d3213b

    SHA256

    cc38e0031da07ebd759bee2736cd62ab2982a6eac0580bf306334eb78a18fa05

    SHA512

    65c7039a3fce1caf724871ff6e17f1a3d4392cc4d7ab70dbb9641544859360b329bc5258d1129f72a4f2ea6c25bdd0ca8629ff39d7c4fb51338c0a7439cdd040

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    01272e5a05c7651123cce79c0e385be5

    SHA1

    3dc6bd6814809ac6f737f5508b6e4f9500b0ef9a

    SHA256

    e5f8066ef31dbe197b67da9070136063e797adf95d3244957d45c546a89c8e81

    SHA512

    99759ae011a45ea5a60f127d0a94569bc3f2e2f4db5cc99ff0122a52883693dee2e4eff92acd93582f4a4cdb8d3e17793a1c8bf958ca6ec07a3d04a6dd0ac934

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6afef65f66b7b750895f154d33aea345

    SHA1

    9b348cb60f9f67e9c12b4caa47d8cd9feda233a8

    SHA256

    d5d0750a21cd4a4d2f8627ccc004fa52deb86d57f94f62b78f6dfcde436585b6

    SHA512

    c05c04424546bae37fcea053e1e99706c63d237d962b6a4c193047828dc6952b9886ad9625a32d0d525aa36084a09b0fc952d734507e04db8adffd3467d84658

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e75cf258c407fd7cc76ac280c57e7351

    SHA1

    008dcc85bc3498157071084dcf3fc38505dbf639

    SHA256

    c64a59dce3753bd4813b9638d9694be283d4e9f786ab58c6e26ad6a19f596b46

    SHA512

    62319ccc9373870e1e3aff124496b8a712fddd5681c8fb1913dd5eb73fdef2e00b8eb1898c091f9cc0114bcb7c8e27489e96b3700c50ac32ca66bdef48bb4e48

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d461a290cf4f2dff8d72cd72708c881a

    SHA1

    77c5a3d0779baef7140616f4e7c2acc21a4643a3

    SHA256

    e7fe6b6ed1af95e8f48d1f832fa9c84db315b7d715424f67619b673529cf27e0

    SHA512

    473ba1f375e98c7202cc7ee47f82b33717b35f132ee900ab97a3627126ec084170aa099f3d1405d7722e6065954d46b78e0d2e0320238918c426e5b86599b4d6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c5e3bfdfeef18ba946adb1d5aa915b05

    SHA1

    0f1bb351883a16abe3189b86fd0fcd67d9eaa852

    SHA256

    dd88a07ad798d568abf167b5278184a5e98e5f823aca292dcc50459335c358a7

    SHA512

    c687a9f9e29320a22dd8cd6dea7ae50ee2fd33bd3e5111a7550a0b67a29d20c9dea5ae9f888bc2dee53400c8b26080e71fe4f145eeb41cd4aab67d5b3922497c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2744b3652e919abcc75361a2dc219cd9

    SHA1

    68354d7e2fb2bcf489536c5a1deaf7284517c653

    SHA256

    a447c15d442c3b7506c57771e1fee6175ef6bd48174a6f80094b5d28abfd20f0

    SHA512

    226f6fe89227e6a3d5b5eecc99be81f571be1c858eda736d401653202269057e33667f195cc58bb9e56e79f145d3b8597fdc26584cf3a301648a59a702fb5c48

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2f160f1302091ccc2ea85feb76bce824

    SHA1

    a5e2e19d551d5adf06c0d94ba59ea76435468e7e

    SHA256

    8721c5e4bb32b289fdece8fba33de57405f919edfc33bcd022b9f64cd7480937

    SHA512

    016d1e2bd042376872b84c258619d6e5aa1ebcf80204bed51603d3a2897a0e00fa6115e581e2cbcd26db9b0a07910baf8c9ecb1e38e7ad3becd1cfa8af926d84

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c2caebbc5373bd1ee0d486ebb73231e4

    SHA1

    4c8ebac677ba30d5a15b538374cae15ea4557868

    SHA256

    990880d488ca65e9bcf4dea04807a512b18c20e5cedf7dd4f967429d9426c2a9

    SHA512

    eb648e91dcf0042793073ffc327a2777086b38ebbc2a30fea84630e9208a13985a75ab6b99c192a6ed1e4f535782aca0b46e7d4c55e20bcc7b6d75cebc3685c0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    033dc721d72f2982ab80ba70ed920b2c

    SHA1

    19a3d0930b9a29033f4d47efcb5069fb8d2d68f3

    SHA256

    2cafde5fe7cc507c1c6f855b59edc36ddbd9486fe85a45e12c4cdd5df82d1821

    SHA512

    4e80032b8eef6222b61fa226eda9e2a14cf16702ce4acf174ec8bb8e6e013b831650f6009dff4cad7c569c138d72cc30e64b409d2f309e3c00bf613dc01916c3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    221caadc6e00a7df877306cdaf017795

    SHA1

    715e947ae5af29fba31667290063ad2c63a1020e

    SHA256

    ecdc4980fb6f5e13cc18810ea88d7a81412710e35df73ddf93f86de6a49a3c2e

    SHA512

    a425c5d690d9890a9f20cdde04a9e84c0c6c00a07eb0b11594ffba832f000f1a952cf3bc5007799becb373dad7926a9bc81d4b01682133190044accba5418b3b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9625d54c850ce77779c75845e02389e0

    SHA1

    3dd9896a4f7de672d8b894c8aa9f1de9e425351f

    SHA256

    cb063733f3fa7d6d1f353e8d3ede2f9db85740e9778e60d5f4f28c0351f28d51

    SHA512

    5b23e5ff59f51b9486b11da8149284e8cd2e82bf93e69d54f25a2e7ab1118f70de9a3362887916f7b8d221c1a1fc57edae236eb19fd5eed099544e91f5cc86d5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7ab7005c50fd05fa68547d73908e545f

    SHA1

    95dbf7723d6ec25959c33dbf9edbc2d34385103a

    SHA256

    65c7312edcba125ce4dee4dec6b32f85c4bb4509dfd1c5b9ecde7c822b72c76e

    SHA512

    91dc435a473ed7119074598c311ca33d08e8f5b0c47d93ab4fcb7600d7c006a3f0fd4f73294d6dc404fd545245c38630a57590eff99d25c194bad45ba1c756d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d529c242f74394d34b5316dc91fe69fa

    SHA1

    780a0f7b5637603c9717e9f7c8d96febb5ff4f2f

    SHA256

    5b9bed131bada6f0abc06d63d279afdfb3e5f3747930b1f968388eb5559dac1c

    SHA512

    835869d5c36f4fb65cff4e3d79260e4d88bed44f7b2f458518f9dc67c22baee57ea408e87e3bfcd7359bcfc9572db0e491e88aebc5da1497952317c742fcbe2a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    68c12a1cf13882733ae94b6e7bb48066

    SHA1

    642fc339cdb83d67a5876cae3d14440c2e68b002

    SHA256

    117d36da04729f5d9e95b950c285f09f71a609a40879e1b88917ea0b29f2932e

    SHA512

    8626bcb653367e01ed8362500fa566c7245003eb9f575eeaf100f4b05aaf8bf3fd95f8691c95ecc2ff4c78e1cd1677e1284ef89e3aba65eb6c106519c0344b08

  • C:\Users\Admin\AppData\Local\Temp\Tar25C0.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b