Analysis

  • max time kernel
    118s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 07:46

General

  • Target

    90ff3ea84ab2b6f0f9315eb1a9bc99bd_JaffaCakes118.html

  • Size

    460KB

  • MD5

    90ff3ea84ab2b6f0f9315eb1a9bc99bd

  • SHA1

    e36896627d6525a69f99c6a70af810d64a94fad5

  • SHA256

    234618459794369a71ca830b80e460a0a56615817a3126b5156340b487412394

  • SHA512

    bbe98c75f145ad91437c96f30ee36a5ef102a2efeac71020174a78b8553e91f81ec54ef077e4587c9f3f63151ed08945c981c255d0ba3bed7e9ae833190320ba

  • SSDEEP

    6144:ScsMYod+X3oI+YAsMYod+X3oI+YXsMYod+X3oI+YLsMYod+X3oI+YQ:X5d+X3k5d+X315d+X315d+X3+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\90ff3ea84ab2b6f0f9315eb1a9bc99bd_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2944
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2944 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2076

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cb0866c01fc5e49586bae89988e374ad

    SHA1

    cbc4ff38a724fe0ff38c266e55e79a659ef2a417

    SHA256

    ce7427eb18b8252befce86c4f8b1e9ddc2caab738f7a2d3776bf4b17f307ad74

    SHA512

    dfdd995119c0f03a032d2dd1c14645bccf3d711467b5e17fcc9d0a1e8d44187e3bbf7b91e3ca78c59022640a8a77236a43e64d77d3b322372d7cde78c99c8a8b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8e76747778fe8735c85e7b4ca8046068

    SHA1

    547cc08e1ef23abddf772231d9699ac984ea60cb

    SHA256

    2d2646f7ed5ee90ef99350d649e15de6e9454a4beb657b888da6960970726a64

    SHA512

    0c48e6d43fd26a03a725baf8ef700514b328113d336b34a32836cf66fd365ef4e50e22e07f6b869c641d3264ddc925d7dd66a970886a388e34bad4d5053a39b8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    319c75af732eeb32536ec0e60f3f6cd5

    SHA1

    1545a1b8657251fa35df72ee829f1eab672977e8

    SHA256

    e912b2b62156c1b02b5be00a67e576567c080294857d6672a4662981c5c6e47b

    SHA512

    1783468cb2ecebd832c6a6c65844e26ba3534338239864dd335f20c86b64398a081b83e19e87657d02c0d6516879d3812cfccc5bf20cda457897bcdec3796620

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fc0391dc9f3add2a544bd64adeb8aa9e

    SHA1

    a26b1b26bccbf8f8c5a9c28316f8499e180e61e0

    SHA256

    e1b6858a4104085603322f5fc7abfdb3b0f32d2f188e8e5495b56df4781eda99

    SHA512

    a6d65137d4bc2e118c831880fe723ef9d2e5f8462087fef6851b6054732b8408a13f96d64a159796094d164bbc677295ab58d39fab686ba9bd85222f393a04e2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cfcf7eb45f584f34dc771a4b94680a09

    SHA1

    d7101fbe64500119e32225dacb97ccda27948902

    SHA256

    1ac209eee3b727285b1bb4c2cbffd6a5c4be567bb47dbdabdb8e190eb473da92

    SHA512

    512eff890919a8c7861dbab8fe9ebbd0b7b42b34c3a63e50f4f8f5cf39ba93d6389fa35d71e26912147283767941097726c82afaed5e343eeeefab203b2f1552

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    018874dce03cd1ec663f325d417b5420

    SHA1

    2f173dd75eaa34948d526c3a17f1374a1d1f8a31

    SHA256

    f975b06f7be5558faa90dd03d8a85945c88b5fa1f64225f5aabb657776f4a4bb

    SHA512

    11bb4501a220070169cb234c881db1558f7da79291497ff16a71fcb7ecf81e297d7cf9664e6743874703208b4b809466e20b0fc1f4a3ac0da78b5355a4d09f93

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    77e703b30048c237320d701f5af81dfe

    SHA1

    dc22eb73b129d501bc161d5f320aabc1fc7ef660

    SHA256

    28a2f5bcbfaf1934148e4432426dde94b0e72149c1d825ada389196f76e2437f

    SHA512

    39fae1c2b211bb6d87aa10f3f6dba35944b31cc64c30c96ffc54f7c23c31baf6c67c6fa95bde2e05c7a15004b398882cd1963454a5aab507f138c9267bd65b3e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1bd669c41e727123d9e4a769bc5d9d1a

    SHA1

    83b573314f4e34d992c964b6399575f6898d1154

    SHA256

    6d9c7e4c441d12aaf0cc7c6ee7349e1db423e8b96e31b1d6fb9eb023f5da7fa7

    SHA512

    0d30eeae055c9c0d5fc4a738da2acbed952f295e35cf1d7a4a827bda48b83edc27b70d2028de53a12ae5a69e8aebce05c4899eefe70dc371ffb44a715bca370c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e102641f34ec662411a44b45b765e49d

    SHA1

    c1064cfef9c16d94cf27e4e36feb834fdac81b2f

    SHA256

    5e06a519a8f23f62f25723dd4a06f5556bcf5fef45fd4df8637320e0bdb835d4

    SHA512

    189ce16dad18488161bd5f119bf2c6e80c097e456499fda67a49dad27a40c23f129e2335ad16871de0641925329aa3b0a1e3eb62476e1baf80afaa94b9015606

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    257fcb3fd9a1b136f315263a1126180b

    SHA1

    7a9d145c9c58a0b17a31bae53acad6b9877f7bc1

    SHA256

    18c269f04523161c504cf5aee0ecce2dd94fbbbb3866cc3022f1830d28def800

    SHA512

    0db60b06f2755f83fb83c74d8b43373d3cba455ce5b8850114a151a447fd5af894c80cde8b1b0f0329a4299b617c7e0c36cab27fc0ce1e366df71c29df509e0b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c93f993e0290b8b7e0e6e81be3bc90f7

    SHA1

    16d820ec3e70fa9150610be655da2fc4024e5270

    SHA256

    1b27cd2280839fe997204f834d9dd724ec6ed662bc274bbe8552f86faa5f7dde

    SHA512

    11c8d79a56b04bbc88bbd688308f4512bf16208e87c90715583d42cc993e33ff326a9426206946ba163169840ccb713a0bb22e2fc8a7e2296569ffdb69bb6061

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    76c890fb590a026096ee17899e1af56f

    SHA1

    56cce90a20191b9ab553a2faa58ae5d6694382f5

    SHA256

    7823bccca44902894836e83b203074d2a9b2e4265aa7b90a3cac8f69de782a96

    SHA512

    0cf082dc3367581077fad6826a770a9431b6a41e04c32acb153521b4200f2568b540e14a9bcf89659353bf4cf70bdd742701c74c91623240db6cc5b34b5e5e31

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f698feb58ab737744c1f097844faf597

    SHA1

    e8c22d3eec485acb98a198ca92385b6dc71b566d

    SHA256

    cb00ae7b70a34cd525477a9df07ea9110265611f7ed499bfc682dba6d2533181

    SHA512

    9cff4d4c718ed3d509f8c6f77172d5397633a940cecb9299ce91bc6991f32b58177738c4acad0b635d290955d40157ffd2a4d313b30e3e6592d2c2d227925d03

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b89820dff2286f89b7bea4e13d655c62

    SHA1

    e1a74874d65c50c7175bc02ffeeb9a4ebd3b1885

    SHA256

    c2797a81c09fc14bf1c80f5e92cac52cdf703c04c7781cdebda07fd5af7b91a8

    SHA512

    feb762f85d2e08beeb1dd341c441d1ef757af747b217f5c7ffffd2eb6342cf9eecb859b549ba1b0ac94c47c426fafffec480df018241244a09f120119d63c030

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b99bb12f05565f766c270b82eb6c6c6c

    SHA1

    ce2d518a749540733f51fc6e37e1a18e367f7ba7

    SHA256

    c258014c143ee8ad3f154aeb29f3721ca0a8ce657acf262288befd5566f3e9da

    SHA512

    b918b6dc6ed5d8f5ca3961956e9b763c2a287fa983927f7551cca4affa8f49b0d09ff13515717dc22b64584656797fe13666f7b0f5211f4c4d086f129c9e9fa7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0bf9b8da595f4636623bd358855dd585

    SHA1

    92f4b69b97b09ad7517725a24e6aa31c4987ec49

    SHA256

    88dad8852c906322bc516497f83ca983ff34fdac049f36e023b147aea39e4cd6

    SHA512

    ccf33197c11600a6023bbc4c457ddcc25c6513e09bf8c826cde4211f81594b00eaaaf8ad63f83245f4d6fbb38c3c83fee882529f9b76f99b6802c0dcac909925

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7193237a38802f429d847701d58123f6

    SHA1

    a218d5ed9a47a3123eba33e75782b3f5080ff653

    SHA256

    2a449b0d7ac5789c27ee1f9f6121041b8a29bad71731cf62a27e325889bf976e

    SHA512

    d978690d54a20584e69e3e91e4593f1d3e1c9634811dac1dc7d1c1fb18a23d89bdb1df1673ca50a583bf7e5e7685201c643dcfc3cc8bb370e27f4f5530989adf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a6fd677d27071b50ff9895652d315847

    SHA1

    8dfb68d681546106aa13c2496d376b8fa08a0b53

    SHA256

    b795085547ba4e5717d5031385d43d5f89d3fa56bc56c696a5c17da75190a06e

    SHA512

    9335b56ce87f40600f4c5c9a278bc7d40738eba389bc1a9dffc96635f6b72b70696ce297b855e92c42a50472a535ca5d3f202dfad4140fe5a54673c318040de6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0bbc77586c20f9f017fa227fdc55b85a

    SHA1

    1b6b8d443fcc3c1a39d5a2c33f999909c4f0d388

    SHA256

    eae88c11e51a7e29b42d33a5e884f7a75bf9e6f5c7e6bd28346af90957dcae36

    SHA512

    4fafd4ae7ebc90734e3db52a8239f7a722d023f02a47a1f945fedf409c4eee10ca7aafbc42b359e0b60061b9a69aa6165aa6e1cf8b6a33a51d63dad0ffbc163a

  • C:\Users\Admin\AppData\Local\Temp\Cab52E2.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar53C5.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b