Analysis

  • max time kernel
    133s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 07:56

General

  • Target

    9106b5d4af68463058b2f98f9d9b3600_JaffaCakes118.html

  • Size

    84KB

  • MD5

    9106b5d4af68463058b2f98f9d9b3600

  • SHA1

    0d5bd93210c66cec674f766818c461365cfa3295

  • SHA256

    dec9d6321589b9920ecf386b33e855d212710b17f55e2b54787c091fd76b8221

  • SHA512

    d7d32622a6e1ecb1aa36a00fd4a808284d34deaf9398891d8a6af9efa4de89648580d4fd69849c2d903b6bcb47d6534e1b2cf57f655fa0463b440af70c804b5d

  • SSDEEP

    1536:50XSQnRfatgZA9BQguxWDzlT+ABOGdbbw3jCwB/nUzM3CQmaGZ5CMf5NRdYQnBiS:wSkf7C9jwNV3enf1Y337aX

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\9106b5d4af68463058b2f98f9d9b3600_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2368
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2368 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2560

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cc58b02004f3356ea07b95d491a77274

    SHA1

    bd7269937df52ba12be1b96ba4520a66c0c3d1ae

    SHA256

    b8fd09a756eb878b5f6463176bba5efda0d215000756a19c1f9399420baa11f7

    SHA512

    e64d915c27c2408c8e4bfd5a4630e486ff20618674c0da9a5b1067f463d363f087ec04cd1f0796f026e7bc901457b63b4fbb5f07ab83b342560e7c508c402d28

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5e40155dde43ae801c15b77774f00ca8

    SHA1

    1da51f80b66f03b5846775e81b406393bb27ed8e

    SHA256

    50b5efc5f7156a039044d39499a075bea8459243bcb53395eca45ec1105b8a70

    SHA512

    397dc3abbe8e6f089f00dda0f2d2c79266bb9b26649ab5feab7558d24161b2e563a1c85816ce0ba274fd8030a921dadbaca6ad3bff4ba4ff62020cd4f72f2e77

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ed8c0e444cd972a8cf2093d89452e257

    SHA1

    5c49c46150c550dd202feec4e1913607f0cce4b3

    SHA256

    af639de567eb0d3a89eb4e8669a63e73f6776b5939811085c1a31552005e2e12

    SHA512

    b9db41346fde7d022f0fb53933e4e32f4c6ed0b564c02e9a0877dbcb6d6f4fcd4ef758c2f53a41f937b9ef29df5233b669e129331738e84969d4f98ab1f9398e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c4e0fe7addbb75749e53ada3ebc0202e

    SHA1

    8533e1c8bd987210479f1c2a72d6bfff79ea893c

    SHA256

    401a6a23cba361392a1786faad968ea8511a2a2d3614ebb7067ef4ea73daabb6

    SHA512

    ba3466e86564618f9edc3573047593b10b5d45533ca6301d20737b5451823805827a96ee9cf7a75f4ff41058e97d32b85ab44e5246622250d40d7bea9d5aa6ef

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c48efb71df18cffc987cdfe37c86344d

    SHA1

    cd50bbd00f81a08b4aeae39c61a7861589c050b4

    SHA256

    9a4fb87cc35a3958102bcaa5daa641f185c7c843f6036773e81c16de331215b8

    SHA512

    12e234069aed08a6bad62c51ddda74fa3eb29f667c0deb4bcbdaa3baf86e722236abbb272f027270714a9b1fd9c5066d2735a1bab854c6fbd5959a1097bba80b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a78f81e92631e2b18fda8e5b0ac2dfd2

    SHA1

    314b0b922afcecd507386616589ed273887e3084

    SHA256

    f9e8b5911955b044067b2f17834ad3e5990863984e998efed2f19d724b29d8b5

    SHA512

    43839b09b7445b83cb70326cdd848f042288cac00651354d07fce4124ae8d61a0c8a3b816f007cd1ba81b92897073eedd7e530aee4e0a75a6d49b7957dd1b341

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fa9f7ff6349217bfb0a163ff08147c5c

    SHA1

    986bc74c406e7f85d6cd47f76a6ff223bdfa2a98

    SHA256

    40394963698888ad2edceef14befacb112eb7d788153f101861faa376177e4ec

    SHA512

    be4435b8a1d7f89a016d8e41c6a81d17104f4007ac2ab2340cebd8e4ee1331bd8e3e95e9dd51930b42805943dffcab2af3728c2ea0f931506032bd44b62cb019

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    54b6390ab735b273e4b4a2e5df310b90

    SHA1

    50e548418305bd4177b3c7c5b41990960651b3b0

    SHA256

    01bfa28c7fd3a2bff9a2f3ac8dbccbef91f53ce57d992de8cb942f368c2082b7

    SHA512

    7cf4d8c761fcbcd61268a221d0805825bdca921c94a2a2bebab4b6b0c1e84f755def2d39eea95e1787ed2e6ce0454f357059ed0210d03b9f031b4ae51ecc6ddf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    db68e8b78ea3272b3f62d128e2d86a99

    SHA1

    64b9173a3c05eedaf8363f9a93e35634ae6c37a3

    SHA256

    ca6822bba3fc1bdd3fbb572538cb030c8f864206b6a46770c24de53b9e6e279e

    SHA512

    3bca1bc1e4ec690a49e443ba94bc3d69682e3af673fc38fa3df7d31a61dbcaae82bca7108cd64af8821971ed8e30f08fa7f539fb17f23ad5b76ec50ad50e75d5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    88d305b30aaa25da5d2087c03b0c1b46

    SHA1

    ebf9a177c9a725525af18d5a51d5eab2ecd855e1

    SHA256

    63e7b642d37517cb21925e660ca648a6be0b0e44f14ab0cbcb88d5d6f484b5bd

    SHA512

    9898e43a49380e40797257ec845c766317d919704528864078bbabda27f1c52aa99872b71e3fb1c9b9db89be18587e9e0d3f1a9293cb56b8b977475aa1644581

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ad435ebcab43bcee2910d635b55596bf

    SHA1

    d99268c4f2f8acdd989abf49bfe8040b57209d2a

    SHA256

    2814f96dc733b16d43232780f087e0e681193cfb05678a7604ee21495ee90498

    SHA512

    80d0104c14539dca05fb550c2abc3661774ddab6f3affa0343876b567d892f28948c480d181f2383e0e1480bb997197df4b826d8b527b0f74d0aa9a511e5c88e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    997b3f19fb5d863df3858d9f384d4b97

    SHA1

    121f3ca0bd63707a2d867956424b9662241ff15d

    SHA256

    7e6a1287d3f782e6dd0660252573abc096fb28c8d9c1bb0f83f122fb57330559

    SHA512

    f64b818724209ac9fa404d2f58a3ad1074f2c583f29f3993a040647818a4e2c6bbde3229d63abb809f12e2c806188b4b9688585f6b4a092abce39f0787b020e1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    91c58890a30613e53fb56cf3fb0f5150

    SHA1

    58d5635260dd036ba2b480a4b6adb45d2a717cac

    SHA256

    46f1f8048901f1e35a38c79d6639a29c2d42a970601e94466abb9986915572e1

    SHA512

    b5ee4bf12a14d8d8ba68b5097fe3a71725afe09fc4d1125da4eb338b438eb95d8a3505347425ebf7af7c126166b8a48ffcd7dc6feb5c82078af7a993314b6000

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0ec3cb107b4fb1c985daa70d729a4021

    SHA1

    3f6ff23951a2714bc871c4c793ed460a9748913c

    SHA256

    5b9aa0ba3ab4ea8f33cccc8826a7ce8817e2b7247bf1637aac0dcde3e7dfce7b

    SHA512

    29bddc1fb7e8ef569e6ca6c26a6b5fb47d5efb9f87a96f25538d9fed81c9932d7994bbf6ea3bc2726f1f4001aad97dc3d5a61194216be5e7ae71f52f11fc1c73

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fc0b166d1fed494beb904e043c49ac78

    SHA1

    2315e4a1ab5482b86d9a3a2105534bfba1f388a5

    SHA256

    823faf0613e54e80e1491def48de12dab609ee0147cdab48602bfde10474cee2

    SHA512

    44d7f576a66c1721a8ebd840b4de8d59f9ea51d792057e4b03aded3eb12eaada80dd35e8c36bfd0ec498fda625c1b5e53b492668891bde304bb7fefb025e592c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    de961b1d6770df8a7a0c6f0edb2bb279

    SHA1

    1f5eadbff075e8bc88d85465b2bfd63757bbf66d

    SHA256

    0e6644514074fa53590fbb601a349262c88f02b9d19bfe90b6648e5bef044093

    SHA512

    1016ee2426d53f60f3ecf454167008bff3c018a58b9a983169117cad86ddea8ac25fb5894d4f41d9aecb39167de81d78276d6a679e695303c093fa2453ca96ec

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f6f2836b7c9d0dbdb61da95a4111ae21

    SHA1

    9b1a6cacaddfc001ac4a5df15a364196b1e49d0b

    SHA256

    f3cd1ceb1a994ab8e3c7de77d7b955a5b4af2c89bc01746410eb46539a448dd8

    SHA512

    2432c2383a4c2c4a930009e94f757589ff2a6ef9e7ce907f8ba8929b30fdefbe53dbda68fccf302d7e44319b6376d1e4c4d74026b077afbacde87c9823afcdb2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2573eab937c01c9143ac17f675fe133b

    SHA1

    32d7d05b8c3ad628fed381bfea2e61c5d2c1cdb7

    SHA256

    b3b2d40039a18ac9c9fba09b1c7d2b7565113b3e7353a31a01f615db673201cb

    SHA512

    5aede87e54a2eaa5c6d641f5e69b9cb0e2772e560e575b1ea41ba38c7a93cd9ca5e0b04dc37317e090e7f3e02df90ca541a6716233542525e35d659e1ed25c0b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bc21567d038dc8802fb7e91aefaa8b90

    SHA1

    f72d35f80cdabcfcff6134c06f9b2720bb66d1a8

    SHA256

    d88f78daff838a79b97ea615d7aaba4bb27ad22910e85c901d76152da8e94d3d

    SHA512

    948b91530e2be7bbb3a0f3e22f66cbe111eb5e20965d7f5f472a7a713e0fef465994f91952d242b6cb0210d371cc7e49e0a5c9f17272e2c02ecd0c854c99a32e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a636a07cdfa14c60f5ff137bcd98295d

    SHA1

    4d5316232f343871b4b1247f0d2f8a513966dffa

    SHA256

    368d2d5893f2de59cb92ce06269e36fbd29cc4543783c9380681035f0d177b84

    SHA512

    7fb0e6a55e342dee6a810b39fd7f7be2844e3712d88ff8cf8a7a60c226ef292d23e7895bf445190fd92d826c20cae0bdfcb3e0b59648e9f448920dafef6aeab3

  • C:\Users\Admin\AppData\Local\Temp\Tar3441.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b