Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 07:45

General

  • Target

    90fea1b0b99d2abaf6b124113ef713d0_JaffaCakes118.html

  • Size

    32KB

  • MD5

    90fea1b0b99d2abaf6b124113ef713d0

  • SHA1

    30e1473e3f920059e617d70adb425bdb59750dad

  • SHA256

    dffd7df7ab48b6f809f83700c9dd76b688b24a081cca626c515507501a3ff086

  • SHA512

    7aa77a53e42fff7ad8d37456e40cfe63675f70da7f0d741d78299916de33aef457d113d8850e295405a9772fe552253369102bae0f0f450a949a3df88e7404d7

  • SSDEEP

    384:SIqUc4SXR2gCJidCTjQxpUVFxvq2TjWz4ZYWaCEy8qnoX6kq2J87CF:S3Uc4SXRaQxp6q2TSVWa/yxo4X7CF

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\90fea1b0b99d2abaf6b124113ef713d0_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:376
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:376 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3004

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b2ce10ac60b37f0a6b9ddd56498fccea

    SHA1

    de7c91b41baf485d71e1df98b1bbcec05ed72898

    SHA256

    bdcedef3255162d00404d5e7d101d32b05f14ec9bef3703a8cc99d15f1fd6208

    SHA512

    c982f06626726c3757e29fc5d7ddbe45370a638b1e1295ee3ba246d44bea24d3f5d46b06e114da7576f554c6a7f10525e03dbde25ebe508a1ccea0effe06edce

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0be58a5d580934e041b735527c372e2c

    SHA1

    4a3f75004f54c7aa4a57f3a603ed5a096cb90cf1

    SHA256

    d30954f58f1c262bc8518cff6ae07c74556a1cc2452467cfbc0a1b5c0131addc

    SHA512

    1be74286071d58929d0a5584b4b2c0a1876c12c0cbe54c27c16eacc4e7ff3a95becf034f8d3a83bb55952c1bc3c7ac3794bae5efaefd64456f92d2824f83b0bb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dbc821cca217022fe6dbe2fa3fb1a9c8

    SHA1

    0bca08ce37febe2c076bb747c2b0ced668beb5f4

    SHA256

    3a1eadd56b4a88c46305d4c2d4ba0e2486a5e478da9ff79378b2d0959f5859de

    SHA512

    9e14713f9b11928e05e1fbf100254f2671aa11ce35fccb551aca6dae9ef934f9e8d557f0a8623c78ddef87f75afaff6e081d38448eb9437ce917b1679621fbcc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0e50fb985e29822d03ac040d38b65cae

    SHA1

    a095f7d95227f8fb2a6c9764accfa28bd3e3c4e1

    SHA256

    5639a68806453e85ce89878420bbbc2a5f8e087f4ab5f79bd0fa713acd0c5440

    SHA512

    c197471c6ea61fe8dcd0e8abcaa8f7d740243018105d3f68769b65e65d083d53372b1250638d5c62f30391c12c620b5be0bcd95c7fc28d99a40e8090ae6fdbee

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2e245d9cb46d8e4bfc6a06a8cca53968

    SHA1

    1ebfef475cd12248c6f84522a64c612fe30057d0

    SHA256

    d5d5464836d249908b789f876827de3e727ea050c66d51578a4565d50010e020

    SHA512

    ae489d29885c271a5a244b32de7bac7d6b8bf2b247c7751abb5023631b450fb8cd4bc24fab068c2286cb9c743597b86bb258ed14c1330d635941f78334799f9f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e31e88be7a29a31ca567906eee411de7

    SHA1

    251479eedc40355160668466b53e5cc3231f119c

    SHA256

    270a6ef549b9bcab42d21887c5c58b05179cdbe202c79e1fd72e96c20b59af56

    SHA512

    17223f87020bf1a95ad0b43525f68e94baa1f2532a266901e8223b0f51062c1228b9a87a2c1db4938ce986db9f11166685f89ffeb8633279e2b3803402060c2a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    416880ab9b32ca68ad498ae9b4941645

    SHA1

    f2fb1908b62591a4245939e7ddb524e84d55bdda

    SHA256

    170da67475aabe9e0cb3292bc3c4dff99afb5e4c8947bd5877739dba399c53bb

    SHA512

    074c412f585f638064eba2b12c7bd091d6c7fb49f61cbbf854c1cf692abeccfa9badc6ac864e146346c1dbb2f4055e683bc223df725f40a77a6b6444c2ba2be2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    660d0814d851f5a3cfbc77b04223ad8c

    SHA1

    685dc101c01ca7949039af03f4ed2749fff12617

    SHA256

    40f75a634f700b5308c8fb3360b47d069a503f4caaab3f07d4e8ecef6c82aaa1

    SHA512

    9ecb2652a24fa72a90b4be1db58c6b85775b02d02f4d69df32fddfadb0b9f9a9c1af0b42fdef1ce5962b723483b9f42fe631b5ffafebc6c9c8b2a83c97df818e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    af55381d94e9e78bf6cfca53c30b05e8

    SHA1

    f753398fe50d5ee9fb41785f87b65048daedb7f6

    SHA256

    27a1a6fdd6529a1feb98ead28b00db25f3c9113d7032228d93f7d79f0bf6e925

    SHA512

    ebd44c145a129803712522c95621d36a58eaf17cd15eab65f4d80bab75c2324037e8b0b296d3ecc99f19d2bd6818bbd6501abe720346008b09529217f88bd3dc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aff5d5ef1584d397916eecc60f0e8e1e

    SHA1

    bfa96268ac9f270aa034a9f74adbe7951e717b0d

    SHA256

    e1adccfc426c39cd8e0a9a9441360b04912bbf3351498168ab99072983d57bd7

    SHA512

    de493663ce5d86850009188d1d417532fcb018c04c646200a2c5c7377f484265d38275bcf75db43a5e4990f23c45dd7b78db27cb3561e28c0c1eed364c43dbb7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7755a79675714433d9aaed7114a23763

    SHA1

    76df433a61f893d63b31e4fa7799b4c0c53a4b52

    SHA256

    41e504adee059f72a503af36d85587548f17d9eb73f199de4a43dd4f4196a736

    SHA512

    ac0a57628820765bf94e17d6876d486728d12a3005886dbbf109d8add6a94484cd70fa109a2a3e8e6170a0d84950f385d00884e41c49d378c52a87f74656cd52

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a5cb985878f89d3af2e204f324abbf64

    SHA1

    63f13709fdcc408b44f8010ec6f2ff15c9d69adf

    SHA256

    2b841d731f6d3d573e20a778757a78b30b0df432aec303b12b8a4e56d8137571

    SHA512

    abb075a7479d018e2f0b442bf4e6e5780645d1d0cf419b8ae04148b4e8af4014757d81b2aaec8c25533dab12b77f67e19293ee459e2354a0b38df99ccd1ead7f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c48a9caacd30b408f775ebaedc080993

    SHA1

    b4e6b6aeea4ee5dc378cd20d6695866cb44d292e

    SHA256

    22d278385d37e426b336b5ec986458da56caf400794788bc8a9da88484ed45f8

    SHA512

    66c2429051bcd64cc39c86a3261c84ed93ec101bb6ede9d42986210a84b876c6fbc5738bf6706ac52265a79bb0d5b3668626fd6f77a70a8b58f0c0315c33e9ea

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bc4f9f0ecc8b9b3d8a53d6199cfe2001

    SHA1

    0d02e137b663ee50d839bf1821b3b3c0a4bcc5e3

    SHA256

    8d4fd0ac36b1fd0866609f5d3ba7cece56c87c7b6f017b7e0535cf95994990a2

    SHA512

    41b358a0b58613c7493118c6ea8aaa4441c78857ba28089a5b9f68cb6c1fb682408d8a292f8d971a4d29241774614ce6dcdc4e4a5f8f31a0ed3bd78eaa2a9b9a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5f545633251ffcd4b748df41dc71fecf

    SHA1

    1ba7c4d5f5992de31babbb68223bda467c14d322

    SHA256

    281c1759203b79969c8b32b4e419831ca1accd13d8c196af066a729005e8800c

    SHA512

    6adeaddf1959104ea9468c3ec5a8163b4262f4db17f0e48b8a0ef201191197e510c9ade57a5bc19e641bd740559db0f2c15a49b2225377563ac009c54510154a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7270a2413a5cffdcafaaae6b3d64c941

    SHA1

    b3dd2e7c937ff3ace5af6a1d3e3bd3470b2e7afe

    SHA256

    62a11b775e60af499ab1fb69a8727bb2e0c182d6c0ae394f881c190227c1b51c

    SHA512

    d1a254b46d9f1d720975e63063208d15e34a6f586ece5b010576e5eee3330daba8e7185062377fdf0b54d971a33ec72cf369896309deab278f03a1bf9a4044d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d7cd18ccbc4a325d65e5d7fd13e19e31

    SHA1

    cd02b1e1c6cafb0114f7222312fb16a2399b5280

    SHA256

    b8ec5ca7cf2806ba9bae78554a98a351466f36bb82c68fa48d20a0858231b0b6

    SHA512

    7c5f2fa27086cf1a4168781cd79426c69cb3a25b8db793edd6a631bfec853bba917c6b960e56eadf4703a2413c0d99dd9c589dbfd6fd262544383803b794bed0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8249283852e6a31d834b506443fafbb3

    SHA1

    6d2f2ae321def52d7a1996b61fde2b77011d7dc3

    SHA256

    3f6e0b2b40542b0f24f8785ac797571ba2dcacbee12ca22280277d804b76308e

    SHA512

    a2301adf34522984bb561befc0519ea7a262577559be8a5b552600781b2997b5ba8d27b6da9fe669f991a305f3a7f8f18f865aa4201b0c32a71e0d13518c1740

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aaef15e2f4edf5ec5e1ccbd95e6125d7

    SHA1

    11be12196a087150cc1796e036a49f6eb8495126

    SHA256

    58592d5fe98b2039a47a5a940caf547db2a7cfc4f4fd69b9885095ab9d0e287e

    SHA512

    1dd41951ab04289e66ec6898e56bbaad5bfce104a11b976d5d7cb402f3573ebafa1dd77a93cde6172811c94b54fd9d39735cc94353e2d917167ed92f363686ef

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    576c80e711e6366cd0571b07e93a9a40

    SHA1

    f75c831084ba4dc9be2079522a98d97d12c47677

    SHA256

    9cc7847c0c04b18c0f289bc0f616cb563c14cbf2294c909da76e47cfc53b0ded

    SHA512

    abe861138b0efcca6fe99f952025cd249b617b314767aebb5f468c3b82e8896af9e3740fb453e3f7935dd4d2ca5e3d6e4b31a630deb71be95171e91ea29ba785

  • C:\Users\Admin\AppData\Local\Temp\Cab8519.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar85BD.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b