Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 07:56

General

  • Target

    910736bcd951a88cf640c46e9a77f4d1_JaffaCakes118.html

  • Size

    461KB

  • MD5

    910736bcd951a88cf640c46e9a77f4d1

  • SHA1

    16a5cd0aa6f67fedfe548189d65301afd686aa1c

  • SHA256

    c529a93aba8ddac2fbb3c9716d6f96d1535aa99bfb5516c401892e11480f4166

  • SHA512

    d580c5092cdabc7edf8249a021800478ee64b0fdd757917c5fa1d1a839ffc3ab2b068e7e5dcb98ab2c5d0c7f6911ab5550dfc8a201cac66d2711e2b1f1b08e5d

  • SSDEEP

    6144:S1sMYod+X3oI+YcQGsMYod+X3oI+YnsMYod+X3oI+YLsMYod+X3oI+YQ:U5d+X3u5d+X315d+X315d+X3+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\910736bcd951a88cf640c46e9a77f4d1_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2452
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2452 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2892

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    514557badedcabf05ce54640aec8466b

    SHA1

    ae007261240d286b0e3e329b76004fcc6a3f01e3

    SHA256

    5047d7d385d0a1050526bec5343a7960aafbee4cb38dd781a86c6b41116dcefc

    SHA512

    810a4d73493aa6ac9fa7412d6a9e21cfb0b1793c744549985b79bd646965d9d053717e5802bed5b502bd5bd68420dea8e170a773a6ae5a9af0d5f75e5d7039ed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    36527f43223e42024412e071f6920bee

    SHA1

    284c7f01bcd9a3c0719d45c9dc9db4efa5a6e1c5

    SHA256

    1ab075bb2503c2aa4548e0a37cba3f2488b4b1234701cd1693d4139a83161a6a

    SHA512

    8c8c7193a8e1693619822b8730e574a0ca95322a87bd19d96bf24bb465d48de63e5ea01e9beded42f08509090a247eff5a7de63f249efe215a3824d7f46bc05e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f97f496e7b676b447d3aaeaf556fe697

    SHA1

    2261e762efd1341a95db635bcaa12282dfc49003

    SHA256

    8e8a7145ce945914d73f0869e8a1a9975b5002c07b3247450c624197a5ac254b

    SHA512

    b079a5a5339c10bc918e64c9eb65ebe06d15cd0f4208d2d95df833de4bb18d0fa7e6d2210f0e39c0349aced175651bf68a572d205f619bf4a1e5e2aafa2f83b6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c21556c3d70aa3bede20c995ed5441c9

    SHA1

    9e22f7f9d693929a757468d3abb224cbc20b76c3

    SHA256

    b8890238b828249861327ce9cdff86d7e5fafe2f1d3a03be393a4f28dd18620b

    SHA512

    3c44b2977919973e7e31aea1153bbc73e8db2ff21dd17cf16e3c731b5c189a492c6b58c5c6d398b11e54db8aaf95a099a15487d5f3ad426ae1f630ddbd22f371

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bee2300f8391848e142b8e194b0dfeac

    SHA1

    8681cb35a62edfcb18de104e3374da4536c3bb44

    SHA256

    0eb121f529261add6c22576df0473580393293d02e97cd2d63df244a9d1dabd7

    SHA512

    e3cb6408781d292558c79022f137e03c6f0b52c6af286ed3b30fa7750518c78567f57a39379bbfae22f04bf3b4b1c2b82237f50f7cb2f03294948c354cf6a301

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1a1561fa5d3a49837a221c08781a0885

    SHA1

    490d44d0f308081fde3f4bbe7c4d8faedd9e2b0a

    SHA256

    3fedf89f2fa0e0b72398ae9f0905987994c9c0a9d3c2035546e27e8b021c0b26

    SHA512

    e18aeffa8fb730ae4a130fba992d715d0d10643ba3720ac8d25a763030a6c3129ae9e20009ae704c8948824b02024c4618e471b1754a36fc194b1a830bc97d80

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a3c309171ec32984f2b11b871b30e405

    SHA1

    87cca9a64a4e0e1850ddc74783446c2044862fa3

    SHA256

    473298cec0d5ba39357af065bfb054c6d08f0248144475789006224de661b018

    SHA512

    775d6a3093fd908a911510b542e78cb5cd3d7a012ff09afc92941f13a712aa911a60d9d7c5cac0259a1c3622c4344744494417859736337233081f557820bd27

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e9b029c9de0aa8fcb10363707d9f6279

    SHA1

    c1ec2fc29bc220520fd7742d07c9224ff599dd36

    SHA256

    f4c54c8a7d63411bf8421f0c40fb9ff684d3742fa0b3a59fae46659cebd5a265

    SHA512

    ddd80eee70bab7ff360936ebe2e6a8c29b0d68283dcb33adb85379b561377f87e2aa21bd1370bd1d22c09af6b1e69c2a31ddd15b0e2284c9e4f2d130aeaa969b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1d1d3305847e52d183539b27c26e4276

    SHA1

    af2e18ef41a80372998f4102240207f75e0bf632

    SHA256

    92e23b4f4e764cfa765fe8876ff40e0a8a09a0556ee1ec1a8b3ade78939689f5

    SHA512

    833e5996340f67ce38a0a6dc4fede370a56d3f4fdbfb85cef0e78cbaf582e97e226f0629336b534ce2edf426f632604b650603f611a3ad3a11076b9c67f322eb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    620667498c975b7b77f534b7e2caf72b

    SHA1

    d67bf2334d8083ef719c6619794a1a4167b3f4fd

    SHA256

    66b2e600bafbcf3537d13d78ac5a021ee7dac9186291ccf41ef34f87dff6403a

    SHA512

    c371a7778a96aa5cff1cedf7ed1b096fdf1d280cf41aff942368dbfeab5dddc7059c255f19021922edf738e1c71a6dc1efcf287d2c72507de4f96816c65953be

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    389dcabc9535a660294807f1ffb18123

    SHA1

    cb723186922b60da566a0d9a5911f495230dbadb

    SHA256

    9130557b509084c2f135974f68f67969a9f4cd9c0234601194bbe06980ce0d2a

    SHA512

    09e9389cf25b87a1db902743eecd4d45c1699a8a92ebe39a1656ad5419939b9a093c5a47bb7d22ef31e93cb2d7bc4239e4d5c2f8066edfeb523af88dbdfe64e3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    19f1b4c64ae7a5a70d4929616150cd40

    SHA1

    131a14cbaf27cfa2549578451aef28b55ca87a75

    SHA256

    441f4174397d488d76fdc3c59878334450f95599f07c8763771258be9fa79674

    SHA512

    dc7b309ccb3adeabc5db2ceec6301fcdd1565e4ce0cbbd3158bd00714b9fb85cc06c0577f29166c5c29bd9259d5bc57188638b1f6a888305c7c357ab5a98d6b4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    93500e723e4dee9f81c2124eb630405b

    SHA1

    c7bf2d1ba92e1cc8a430234a1da1976d49aa0930

    SHA256

    7f54b4ceb03e3d193219f846c36e2014a97cd39b9aeb486df6c59345dddbe042

    SHA512

    7b6089604737098bb073c0c126adce080389f5a0adf0bf768fe12e522aa6c29046ab42285d088103003203548a60e872b27f5563955aae2486892caa7ab44bd0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    88f94d9af2eaaae2664cf59133997e8b

    SHA1

    ae236be6fbf7f5fb1241f91791c39a0bdb393213

    SHA256

    cce1c7f7f59498879c6e20265d3d1256ba6aa951297e2daf3a93519e8c740786

    SHA512

    6210d4915e2258c677c808d61fd88e5b09b7f025d7479c7fe9deb8836c3a9139bdaa18e63f252beca1404ab068958bb30806e0d40b00378f2e435aaf07e6a0ef

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    11d5f46e77ff649f94afaa38887d2329

    SHA1

    19f7c8abe1b8bb865016602be763501f80105b58

    SHA256

    8c8a7ccace205e6b4cb6d7250e4c6a734252e7d5d3998609ab92fd872af635a6

    SHA512

    94fe89f2e7cab7c857ffe155457d0348fc372838126853c168b67e32819d08c45e618f42b47a019ba90ee99cc0a251cda5198a360f1b8542b578e2aed7c14beb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    438cc2232f421386a35f246a659fdd1b

    SHA1

    376fc4a1f0be73aec30f8e47648016255a72e01b

    SHA256

    aa518040cd43f42b3a750162493b6192d743392e0abae0bee90554d998d4ba8b

    SHA512

    8fc6e6fee9bc3ae37b2568a8138f72ea34dc8825cbf34f7b4d43b3901e39998591ba226c2030f73d3102487a031c631de4d56eda253a175a678d2fbcb0f7e0aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    846381904b08609d9f135ee85972a884

    SHA1

    a4891ffff410f7efd19def0493ca4903326f332a

    SHA256

    3bb5f397e2f3cb6561d7a987c5951ccb18f12e534db1556e74ba49d75fbd9aea

    SHA512

    f7ffbd681948949eb638c12976f7d1c9307d79d2d12fc500cd29e3891c582bf038542905b15427060328ecb38b427cb5741813bdd69ac21bc259be92e032379f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e953d237a00a0d9971a01be569f59c68

    SHA1

    9161e7ae0971eddf01c357674c67ad127d4d58f3

    SHA256

    79249e017f5d61cb07e80ebdf42ab977aec2d9cdca311138371d6e788d1a3b29

    SHA512

    674ca9c8a7ac080a0f78df4289e7572ecb74fbb6eba56b281cc995b5055dc43a3088616b8378386b42274cc84868d24d53362bd6b4607766e314247981c486c6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0493845342b55a09c2bddd66a63a8ca7

    SHA1

    67a3883d1b8bc13f8e129e143997a7a0113a41e2

    SHA256

    135a634d45be46315b23ff0f8f1acf3eecaed50aff06964a945cd79efa17b374

    SHA512

    92c171014c0748468faf847d68b15c4a3a063c8960d24e6a90455bc5e7482c041895c8fc3c39c051852e6064cb81f63db31ab5db2ad7973b70a876df44ac9245

  • C:\Users\Admin\AppData\Local\Temp\Cab3F53.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Cab4021.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar4036.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b