Analysis

  • max time kernel
    120s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 07:46

General

  • Target

    90ff5c3ec694357aaf77188cffe2df3a_JaffaCakes118.html

  • Size

    18KB

  • MD5

    90ff5c3ec694357aaf77188cffe2df3a

  • SHA1

    99f436386c706e8c99d80219bc17491424cc5c7f

  • SHA256

    eacf6dbdfd75b2a78d2f43fd9f4f824e8ad1eb44aabb0415ab93bd99348d6b5c

  • SHA512

    9c3d70b1c634ce853e4ad159ff1e79c3b5cbb93a1f8fa6bde38259acbd82db8cf1e84176451415f7d34f9060ea525dd837348bbb8e0d23b8a9000a4c6958eac3

  • SSDEEP

    384:5KM3KuiDt0t+hw5LW6W/YwJl6N4ljjaqLDiV/yXB5Tatm3e:5KKKLR0t+hw5LW6Ww4l04xjaqPQaXTaT

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 8 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\90ff5c3ec694357aaf77188cffe2df3a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2888
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2888 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1744

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    8e863c47be71a5db7cb34f136c6b5635

    SHA1

    ccf7249243cf76df3a2372c64dde9af1255ec55e

    SHA256

    842c4969f1b73c5f95a8bb627a7f8583f7a762b2b51ba095029f0c8b42f7f5cc

    SHA512

    994d0e780c7244d78bb9958450460cbd0e5bc5ba22034aa89c759106a5c9cf3944929af4452bfbf9cc62ad90ee0012e51f720d46ea549bcff9cc20c1e1fe8e44

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    6c838cef8c945a7504745b329ebc25e3

    SHA1

    4cf658d8648c8ceaef3fc763362aa796b7400df3

    SHA256

    e7cfba29f3cb74f561208d62b0573ae53ecbf0a44053e4b8ad9614492ac1a65e

    SHA512

    ddeedada84b9b4e54e7cb6d19e2c330ddceb96426d4836509d259c9623b345ac0a6765c007d31f87e0202398e6056621f0397034322dab50c1352a48f3b4bf23

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    366fa1b7be014a6c68720ec2a5727702

    SHA1

    7f22595d07a7b15936a5583ab92048e0024021e5

    SHA256

    37a838ebbcadca1ade979e642d7f90dabbebd7c3dcaa4d0bcabb194718d76701

    SHA512

    470fe794334700c07fed56b262a16a1b87d1b2fee98ee7056d3ed5d0a09284671d1f2439cda0463220b5629925548ace5603a465bda9e851687c77d546ce7560

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6557c8839e0f6d60a0966e52c0cf47bf

    SHA1

    79a811a72a142fc819b7b29880f9a20d54bff24d

    SHA256

    49ec033a9e5b4a2691b205989e13d673cf303cb458213b1e7ddbd212d0fe8aff

    SHA512

    9bf378509a8ef59e71b380e59abc7fdafcf5d2b5c12573eb60200b6e525e89cabca4ad449ba1af309e5e378c824ada4e80fbcce980a377653fb9f48019a8efd8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    29de22ad5c1c18758d8aa42fca7b44a4

    SHA1

    55e5bd4522481c817f6e67696e2adeae5197e3f3

    SHA256

    a453501a6a297c08de917e6a2ccd689cf9947a3c9f45aa93e38b8fe379eb1344

    SHA512

    b8fbb1cd47913135278f630cb679efaf6313f31c9da5a5c47575196643d7adf4dd111fdfbd292ae28ac88891e4bb53eeca710fa92815071cf4f071a424da1825

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4c6dd78810df068110a7a13ac49d3311

    SHA1

    5666b6696c934cff2f9d89e2fcfc3c5bb211ce30

    SHA256

    8c51287be02efda250316ec81b22ec785f94d16fbf068743aefcc5506a854928

    SHA512

    db8738509d7d6a41003551097fdfbc95a87c8fdf6de68de6b904795e2f8f3d454bad6e0c5172709e089b939dddd6f8783c2b1f6d861d2113fdf94fc482ab6f19

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f268b66a5a3fb20f0816cfc0b66a501a

    SHA1

    ad5f44fd280b4767c433c1dea13c9b717f7ee190

    SHA256

    0a3d8c4dc0b224ab299f9df06ed12ed0cb2f2c2cc75cb5a374bdf45523ce2927

    SHA512

    79b72a3daa23493690190856e250bd3fcf000e35c1ded2db2c31fd7afa86cff94790c941145891dad926207ca20a957984f1fa50990afcfa6be65e77bbe02482

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a3eb81b30ecb2bfafdcdc66af7dd3dba

    SHA1

    27d0dca071897c0d427c6ad05db9ad762553dba8

    SHA256

    26f5e74df4d1189345e488ad84627dcf79274a4ebf2801caa2ecf2559d11e707

    SHA512

    96cf664eef8942cbe4e146001deecf13e7fb8011eff67fc0c540819d73cc84e8185d154e08912cb04ec3e5d3470bd3572eec9a4622ded12e589480e9ea48780c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    19078b95558ee45c6a6143b76e111819

    SHA1

    3287795e5647d49fb0b9857780cf488ab5a99354

    SHA256

    849f328c9aef7f2c4060d8affa34b6650b0cb7ebf7ec55e5651c67863cd859c8

    SHA512

    9a790ca50c60723f5c02f7fd5aecce40660500f2a500f0abe7a19acf6f35c19f0e9b972bdc58802c25e0d168e72e231fc9bc941dfb0deabb95bf2542700ae360

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a900af721dc9460ab3a3023801296c36

    SHA1

    3b1d5699a233ef0e8473063dc8ce6e1bba9ef064

    SHA256

    e5fc8f0f494efcad227f7d682d0e1cfa970a267a10b7307630dcbdc3074feb7f

    SHA512

    f7cffe9426d0bc156c8f93c5c6de877f98e345936bf276a0224591def906a79ab70b307dcd5bd08d24839b400eaef021d192a951b314d38ba2d645a1329f46e9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    14e6ff47a9a214bab61b225d8e71f031

    SHA1

    373160320a9c77aeae19e5a66549746ee9fd5d8c

    SHA256

    cfd71779db79693881c26f55ba7197212941205cb2b6f8a17b0c9fc993d84d37

    SHA512

    6a4cbd1995c82fb125d70aef5617f262f826ff977c8497d31f5ed6984933729d56c021b7505f69e062959abed387c731cb74ec6829bcc4f40bd3014291a22ae6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b3e022c95665ae07a09fac7652f9da8e

    SHA1

    3b7bc456c8144ef43887b0ecd55278000766c533

    SHA256

    eb9aa640eafb8edc3e8cb0e73caf620efeb667d108438c3f454a891d6ba0d1f1

    SHA512

    699caa5af5c15b55cb725ae248a99d607d21e40ee07175892dd3208b8ab235e6e70098f6ec9b2f2ea2bbccbebf38329babeca65d6707643ac83edfba24a62c43

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    da5e891b00abb76661ec5735e86765e9

    SHA1

    36376bb56051b48a5f4ebeee3360aa3c4b1d8ae3

    SHA256

    66a2eea8c7508ee33785bd3d64bb61f3b844847def9bdbd13ac0602a1309de14

    SHA512

    0e5f485306b9401d3784b13fa467c86b5b7abd01c3176ca1d294c7739296feb6b03d3a8f35be42506ee1e7c3b206cb96429fd82f23a0bab8abf91958edb0a563

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c7249370ca10b2700fa9b79ccdd6a2de

    SHA1

    aaf83adec4c140bd682c23020e76415fc1919d6f

    SHA256

    8a437877ed36fa7273f239509240519b37e7b78925531c446753e2b72890135b

    SHA512

    fd89cf1492081a7e8cb6f00efbeea24ad9ed6ef15a6cc7a10fb7858a7e026603262abf6d46d422cadbb285e3450dd160fc915cd795090f64c4ca1adcde8554e6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    53e16b44bbc8760ffa2160b0e2dfd577

    SHA1

    0a3bd56c190edfe7e875712fb3f9b119c2c77987

    SHA256

    7bc0d36dd48516024b97ba579e678a2f9877ab7f81314a67a81f412c6fbaf6db

    SHA512

    7a3d3c162ff4ba97768ca58acd71c396b83484501743753729c4c4e049797922e39c88a6dfd6be4aedbd97247fd9197a8224b0490420a06ebdea5e2a58099e60

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    32957ca66c94f63429e8561284b7e9ce

    SHA1

    30a8d7faaba57554857cd14a97ce95d9724b7798

    SHA256

    58ef0d84aa9d061ff47dc1935aeb7baa3f14a3ca7db56ac9bda414db1dcc7b6e

    SHA512

    bb41a29f1904a262401fcf3521ac56798c08fbf6c7e785ea47d4db82119f86237c9e0a9834f0e796d3eab2e680a5ebb4af509742e13c1c5eb742cd060647ca49

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0a1689adf271d2141dba53e82f706703

    SHA1

    f8f6e8f4cea1c940785309063a581e0e32795340

    SHA256

    b3460ed9d21e363ea6bcbcfb67b43e6f41ba483a50124cf79ea321d41e87d2e5

    SHA512

    46d456a45d668b1156f5b71b0735e02a5c2bad8fcfc7c614cde9fb3603313f232a011867a8b6893caa5f852e30fdf40825a8fd302b24f0c0ca98fc810148ae33

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aef84b524ca5216c75ceefdffd5c8b33

    SHA1

    c882fff51b6f1060caaa91b08648bbac5187af57

    SHA256

    ac49377e3ba2685280a81f177b79ca7fd9108591b1f2d0eabcc711042d4ef553

    SHA512

    e4a501b71c39f4a72cf88b2c276c3120cca061b41c6181f3c20367129ea9132b8182fac6380ae4c4a6350a7b8a75716b6c8a3c9cc83ec0b8b08267401c495324

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3bf849bc9f4326ff5e5221e1043d72cc

    SHA1

    448770ccbeda7f65eb2e2453b470884f799bed66

    SHA256

    194d346520c79c2c99150de34398e57425e65c4b65ff740d8c928e4df323982c

    SHA512

    6ec017ccae01bb2f698819f312adaa70d0616bbc63c0c1f29ab3fbe10268f534010e57e7222dcef7b88620fcbaeed9694f8d66cba142796abe9d11e229b84825

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b06b5dc99423a852b10c035d4edf327c

    SHA1

    d0cb0d3145214925bea4a77f8f32ca09843a76bd

    SHA256

    2317769cc8947f8ee90d01e20fbf6216f96eae4a06649d778d533a19198d826d

    SHA512

    4fd32bca61595393c82ca0bc1bed08a15f578bb5f6ab6e4510d86eaad9a773b3c0cb76d5233112974d5bff6fe2c3d67c7a42c096f168e8b9b81d4d1b3a875db5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    acb9a416b4fc8d86b11d2c991e515249

    SHA1

    f775897f1224b62559ba55120fc38bd0c50a0e06

    SHA256

    75e7cf683a5bf0e3d5b68cb8320712838f91302461d72ee45f12dd2da6eacc8f

    SHA512

    5450592045eb33c2156a5a9994930e90a013faac7d3f491d88f63667c94fd6c2a0c9f6a009c4945e6c11b09317d6980164a7170c5f3a56bccdb3925de13cbe89

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f55d0826940ba47eec4ac3dce3abb4ac

    SHA1

    8840c9792d21f597282d859780f192a97ff8afdf

    SHA256

    e858d69e8a848d03393d9a8bc18a681baeb9b23d344f9845d2087436588d0827

    SHA512

    726da42dbdd406239cdd8800fbcd5fae5c1baf1f492c0bf2309c4dc1cefe74e0994afc9efe20feaedf85ec14f61d674d5a629e9cd344013bbe0801f91af1b017

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aecc603ec76a63fd35c070d07ae22612

    SHA1

    cf77f01b86435dc8d71506e2ee6b4f5f1f661f00

    SHA256

    ec8d3311c695cf3fb6fcfcbe3237512c98c0a14f8bd45ff834ad13a144f719f6

    SHA512

    dd1263bccb0a8d8df6c503200b534e015c31cb601a65207b89f369214ab8e76e12f85af7a7a99e25517dbffbfc59b6bf77ec69b2dbb8f108dd2d79b5b8f57fb2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    72e6aa5cf957dfd706020184adce1b86

    SHA1

    8cade62ce8b084677931144f94a6144a7be9d008

    SHA256

    602d2016732f378022b9e84deff3faa4d50d8dd08db3ba228113767167a74bb4

    SHA512

    f57fd9648005ea8f529fefcf33494eaf162e90d2806b12cccff78efa56795bb427ca3a3fdd3bba1111bca4df4ca0a91011f258e12142eee8a57dbaf60581227b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    6fddcf0070ac72fb5a0fa9b836363802

    SHA1

    b0b3b47a4bd0faf0e057e90d7c9349d56bdf7bfb

    SHA256

    6e46e06ace96561d5826686453f19218509a91fa37c7fa8dce0a71b856958fe7

    SHA512

    e34d0912c82a3e5dd2a996a3d1b0fe20a6a286987e861d5dfc70f18969190d19d9949d966f9c66e59177d97b6ec7d2bedc2ee9229d2ce908c20cd66620019d54

  • C:\Users\Admin\AppData\Local\Temp\CabAC67.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\TarAC79.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\TarAD88.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b