Analysis

  • max time kernel
    150s
  • max time network
    154s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 07:58

General

  • Target

    91080b69c96117950f9784da46ddab66_JaffaCakes118.html

  • Size

    31KB

  • MD5

    91080b69c96117950f9784da46ddab66

  • SHA1

    23bf238ddb5ce5d5ec26a31ffd739fbf2f2fcaec

  • SHA256

    0f0f012c7ed664a6c7e8287acdfc61e5c42924f54e4fa6487e518703526a1081

  • SHA512

    40ff0831ef38b75df8b4f44ca23d312d5e0a0a6e206aa5d53f8b1ac279a14a3e5399e30b72df78aa4823c9ed798804088ecead9111748d00de2ef65156f98a0b

  • SSDEEP

    192:uwDTb5nNmnQjxn5Q/ZnQieENnTnQOkEntXLnQTbnxnQmS7xHlMWVs3ytcBP2a5ge:DQ/iYxHMysrafUvQQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 31 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\91080b69c96117950f9784da46ddab66_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2848
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2848 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2516

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b658dee127c9b7d4d19f2cab51aedc7c

    SHA1

    4ee80a3b32ae0fd1eadbeeffe12d6d48f345b8f7

    SHA256

    457ba1478a695cb81a1579bd91f038a6ed41189c94ae671aac1e9bbdee8c632b

    SHA512

    709c776c54890fa184612b680fb9727a5783a462507d0a8a96007d095ef20f35e59dbb09728f28194a5bb2967be0a2abe68df53fa54686f1fdae1aa4398144ea

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    42798507516326187c2996324a4f805a

    SHA1

    cb694e8092a44b004ce0946430b6963970f1fa55

    SHA256

    46b8f2ac7e3019e42f11755209de4cc1baf6767100f5feb2679f3538430c6ad4

    SHA512

    2be0c0c1ec7a3ceb89d3a4fa7021f235791e313bffbb03f01d1042eff7a9c98ce9d041ff54c4c333a6fc7e5eae82e053168b2390317cc5d71850e812f7785e23

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cca551a10f294a7df2c16cfff8d6dc85

    SHA1

    7c1425a1d3834375ce3937aab3119a8346d77257

    SHA256

    336532d5e0f0f694b68b829a87706c83765ea5f86583f0a18cc1e152c0f116fc

    SHA512

    d0afaca204baab9ef5b830b2cf7ea102947fe2c7db3998449da05a866c8b2230478092829e1b0f55d7f80c648d646f726cb448063282d200ac3ff66411a4be37

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3e230dea57f69a41f4e10b62ade78078

    SHA1

    5bcf9142f6a6766edd8f61ab4716f578526a9290

    SHA256

    89dd3640479f1419641750d34c3591d35642333db053d300079bb4384371db1f

    SHA512

    9c4584f752f4b30a8d5152c030b8cc09a57524aee2f515928b655d9fd5d8816624e2b8b97ba20971a886f9394adfc49b9b5b0df66493c6cde0f2490b25038102

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    43af7cf709ac16a1af9d988712023193

    SHA1

    4414f250794671a67743eb57c53d2cebe8f2b9a6

    SHA256

    7ff2d2227b3ba5d361fea3f609b33f1163b7cfdd05c96c877c0385401d91252f

    SHA512

    39f5a31202c787e21100a6ba440b568b3986180abfb81aecc2a87d46c0452f4e9b95ccb6b629df8bded8dfc2a6939eb7f5d6a7023419f0c2bc165a3c371b29ed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1f59afd81bf391291df7bb7691ef350c

    SHA1

    69c3a0434a6a2f855cf214f9aebb8e73a7206916

    SHA256

    05e518fc4d97422b749bd526ca3de0e4f5044cbe102622e0c94a7066cd8d8bb7

    SHA512

    f659c861e6e0e5c4ebc3b183cc1001418e9781f65c02eaa3ac84cd85522df417d1c755ab14fc164c37900bb1150c9d9bbe4018344d3c2ef05e5cb63e6685f362

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b976dc668b0148dd028dab2691c14852

    SHA1

    7a41578e7013595d55686b30cf7feca8d77da706

    SHA256

    facd800bfef3336fdda5ba5d8794790ea54c3db8d068a6fd5a7114f41b5bd51c

    SHA512

    0dd3f15c6e6d83f46b32898a8180c878e8fc7741aa99f662e84c48dd2c865cf25d877913c841d4b66e5902922f9668eac64ad4edc932f44be37d39f1d447f4f2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a166aedb8a24409c0fad8701b092c34a

    SHA1

    49d1bd24e8b6abff5533aef0bcda8fa1664ac071

    SHA256

    5f083bd369d0f697c21a5d0aa4cc0d6522994586d94fcbe2817d3fc21f3e3294

    SHA512

    a8b672745308a1f18ce186c8cabc738cb3aed6dbcaa19fbcc5132c7dc5c83f6fe9f7ee9a613ad28d7df9b10beb9b93f67397dc0550a9dcf0e9d64d892584dd00

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    226d675716536bbda65eb3bec1b8b86e

    SHA1

    61263b78a3f8d175a3c0f0fec98b4c38869aeb0a

    SHA256

    49e03a73e4739dbecb6be44e2ef889066523e92da9ec07a632f1dc966db4265b

    SHA512

    99c79fcf29ecd0186168959e77a1d846c86f26aae80dbe950bebd7147659ed264d89f8f76eececd745fd4d4d4de19f408dac43b332eb0a258d4e4e6815fb5db1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9c3273058a767696e80ff5f0f8b5cf03

    SHA1

    6fe3c2d0509780bc68c91558d4d673d45609cfe4

    SHA256

    6381a5a059536a54e5bf2286ae16c4d2440d7bc0aebf56a20581770b309e1b74

    SHA512

    ed665640fbfb65bf99a82fb799bc1911e82bfc70fa7ceec2e1fc4ced6004ebc4700e3a5b6c05ac1fda6408c3d15ecf6e05aa7f88b1aae4cc37406778cdf30059

  • C:\Users\Admin\AppData\Local\Temp\Cab6DB3.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar6ED3.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b