Analysis

  • max time kernel
    117s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 07:57

General

  • Target

    91079036c6fb77396db3ab37faf44afb_JaffaCakes118.html

  • Size

    70KB

  • MD5

    91079036c6fb77396db3ab37faf44afb

  • SHA1

    9d4ac07fb9fb382e2b93444737d98fdba0523318

  • SHA256

    912f7cce8f109d68df86922cc74c1bb84693e02e5b2079ddb42fd4c930ca659b

  • SHA512

    0d7da207ba12e2041e9ff1fd33ea75a0b9b6d013f4387b384a0d06c5f3350f099aa99e851d9686f6711a5dee6770380a36a2f833dfa44704d0cf229f20b3b131

  • SSDEEP

    1536:LFvnqgV55yNot2jSn9qpCIZ00i7uwGdA+BaTCyhodoLlKMtV1:5vnF5Got2jdpCIrwGdIGOodoLlKMtV1

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\91079036c6fb77396db3ab37faf44afb_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2200
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2200 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2440

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    2a267c8371f84045236028d9d98b0988

    SHA1

    689e34bfc1f5b0d068c4ee62baca3e32f2a8e2f8

    SHA256

    3e6148f5d2f700962e4ca856d369cf61329d27095aab4081997a69c337194f4a

    SHA512

    7da74e5c2144e31887d70c62f623a0271b33153f0be825828f006ecec9fcb7d1f006249171b2b6746953cec27ce3ef159f980919e2b7ac996ae64d2519938e5c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F07644E38ED7C9F37D11EEC6D4335E02_827A2BD464611B5891D523F77B43FEB1

    Filesize

    472B

    MD5

    3cbd995f8bc61a3669d6dccec2391d8a

    SHA1

    39e5903bb99f1d045f6b0c2429b43ea8e2d551da

    SHA256

    d302d7266945490d5d06e91e1c2557830688004c572f39343357dfd57ada50e5

    SHA512

    6335e0e9db04d46564a47818a02c3ed714ee705dbc70ecadf252f2813ef62ed14bf739ea545d69e3214d21600a2d9257013545ab3bd7eeba17fe1fb07b2a22ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    606e89a164b0a10a4765094b96b0fae2

    SHA1

    cf68b05e0a981cefb4d46afcc38f1258affd1c32

    SHA256

    8ac56c03adb70987f3b64193c24a7b1ceecd5f498c0dce0289f7237abd087d29

    SHA512

    d325c11e10d0280ac39e5e6a3f1735dae66a95534f7929b04719ad27b54c85265bd8402b0dee241aef9a8de0b1c8dc41b10abd89b44212cee62cc98a47c47a3f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    9d8d404ce3f7ee1907c36e372392cbae

    SHA1

    c57c17064d488afa7d15251ec32549844234516c

    SHA256

    488a4ea4c4591283b09a3aac4a21e60f0db1a9fc4fb36f4451f53235b73255a9

    SHA512

    ab16320e61eb74f63a9b5207ed74cdc649accf083cc868d580ed6d1e28a228b979b2b0741556d7a07065055ee4d40c67405b6fea8d5ff6f2226d9d9054c53005

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    a8f943f495486d707d2b039e60e84d10

    SHA1

    37b2cf8f2147c825118d3ad6338304e482007ca6

    SHA256

    eb2416f367394d86d9a0a8c2018dee246e2786c07c6130c24abeff66f6d4c66d

    SHA512

    f565a430384030614c258efc435753a9733fd4e26d81c412e9e3b74c59a5477d15176bb60e6e64bef194fc2d1a96222c351478ecaccba3492e09b79b7c9b5559

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    8cf9d9628671414069a7255c8ce56cc1

    SHA1

    28a4fb87c516bbd62b8fac088f0a9e7ef7c118f0

    SHA256

    ffd4c699b40865f87db36df4816a54bef5c59644e62c610c0585c6ce49e5ef42

    SHA512

    104f9b86c78ce1d99884e7c8dbc48e60ec8a0675009139ee4f2f6a48c9ff915182b4f356c3b5798934a234eb95335cfe28cd1b7af66b2bd17c4bb539d2430907

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    283272f9c3dcec2acead10a49963cf43

    SHA1

    293b518b7282108826fef1c3fccc028d7795763f

    SHA256

    06b4646a3132b53f434a925aa01bc8b348030bda2737ccedbb4b4206c34090f7

    SHA512

    ece93795dc7905ba2d0a2ced1751826df73380840458d591c5c13e7a97d97b23f0bd6671ba85e99d2a8aaf72ece07594e3a2a614ffa25fbd65f78277397b7d6d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    0cee403daca3c770953f3f14ac860e51

    SHA1

    238d1c7e0be700df663f732fff66f0acd08fd2b5

    SHA256

    64ab0e20c9e3dde9a4989dfc039e84076e17deb9f4eced28bba33d6afa706e67

    SHA512

    3efafc3f319858212aabe3e93ac2d54acd6342d202c75beb406952dcf2c766da6ac03f8d358de1241d6cd0ed5762bc781244e1de5c4d7f34a3b67abd04430406

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    46166ff32e17606a8dfe26c850c1871b

    SHA1

    b3b5e773c3b915f39e1720f48060b1ad24319b69

    SHA256

    6314483bd32bd2e59803e5f3c9d17240878a78365e2e60284426e8e876899c4b

    SHA512

    9b38ab7f6b0957fd9714132882d687b881cabb59ca96ca03abee4451bcebd96b61e175545fc2a7cc7fc76464d6213f3816a7b0126dca1d2b2f458e0bde2d953f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    43269ab67f5e4060c2925f8c53e05a3a

    SHA1

    39c45896e417c058e1144e563ac9ffb00a6dd185

    SHA256

    ceb7d61d8bfc1e08be602795a37630cc0f902f7c425f6d7729b297f4fc18ef9b

    SHA512

    2d7c16a34dbe2dbb74326c809e7b5183034ca2319a9686458fcdfc86050bcd160ca43aa9487e74d43984fe6b600b9146407683b2723d34c04d63e996e2679111

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    c4252ee9e60079c30e02454daf2139f8

    SHA1

    32398fcf0806d7c16211fe6905f55d6a70a1e411

    SHA256

    f153ba2b4d2e6360fb9aefcc198477fe2d10bdc9c686b7c414bdd0d9a93da4d0

    SHA512

    a2ec776d34324b121035a4a71daa07b25a80e7b006d7d21027b52eba963c87e9c69fdf6d543dbc3974cc6cbf5c36fef3d908cb4805b3efdd8b82412931f0f810

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    de5aedc2b12b7d642777d9d4dc7c8a6d

    SHA1

    3d5fcac5086885e3b2d0103209c8bc383b529b2a

    SHA256

    bfccfcdf794a452ae04a6b6e70fbb96a79797ca7e0317e54ab5f113b105907ba

    SHA512

    c4d52bdade40b5285513e49c948522bbf7a4ece6f432111fb6d1cbfb89e9a0f1f0deeec1a8292b91f8744877846448797a2662a0a153d848d39532a8c3062298

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    07e4dae07e2ea78081335a2de68473c4

    SHA1

    5a7eb2dc42a5d1500b54f091dae4cf11ca6fc40c

    SHA256

    803f254f5806d55ebf040d6b8ee70801d64884cfd5ddac591c91c9bc16d02949

    SHA512

    79894254d81a758685787c9fb286c035d99b79bae2b4a2f0d9e27b88607e98c987b4492fce7cf2764712eff2006fdbc1b5482a7f569d19554b448069ede3c3dc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    47a91cdd2b8b965d8f2fdae408b12f83

    SHA1

    66aead18c26fc533e426e5f8e4644678ee51bd4f

    SHA256

    6fce8cb038d730cb9a41fbc2c99cff91e19b48580d3747ecfea7c75e52bb6aaf

    SHA512

    875b7560f7de4039f39316dec654da3a51170285517476828ba02377f7d75afeb07bf4d65dee0636a72da56e62bffedaa79db0c915452f10bb930bc5fd6053e2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    865e10ac4916f285d650f698dcbffd51

    SHA1

    d583e23dc3c09af7527d9469ac581f514c1e612b

    SHA256

    5dea588755e6ab7d331daa5be8d1405f77aa71ca7ac4880c6ca852202d31eb72

    SHA512

    dc6be5fc90783c12d0ed1bc89615f39d7eb9de1c4347c15f77617aa86a66c07f119b97d154e3d16d678c55e0085ef0965ca1a22e1ea8cb3e1dbe3ae982451e1d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    33a370af68a04d7d0cacc1d391962c5c

    SHA1

    597b32b9dfb0bc9c39194ff491c2fde4f00dbe64

    SHA256

    0e9baa92f7c25d25046a218819f6a965cc8f35d7c465d9aa742d553368a2a0a5

    SHA512

    5936904eb1096e10e391ccf524adc62f0efc78c5f72d84af88fa79932efa9633e960bea4a779fb57506238660454223d9fed9b22f72f9e73e0b93de4160a704d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    96c26387bd9bc021b94417490fdaf3ca

    SHA1

    aa64becb0ed29faa84be6ece84fa43831f445170

    SHA256

    28e3af8014acf302dc85f9351e1b15a9e7c529ceba13d768016de28d8ca86417

    SHA512

    8b3640f9c13a8ede31a9a95d6bd60a1082f66781adb6036af71e103b22909c7e010110974ce9190046c8bf0ac8b8175b55d024b5425ecd1979ccb9020856b1bb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    ea03828531aa1085d027de415880b4f2

    SHA1

    6755eff5f7177788ab2f7255da9e8f9af38a2e81

    SHA256

    9bbf84d70f4e748d57118a1f6ce704199e77ed6b5defcef2370b2ada55d693d5

    SHA512

    1271f1a658cb12eec02b2b22bc95e39b4863d987fc727d9045cad2ace57c37fa0aa01fc27926a5f45ad7427b61041e08a2d0541ddb7dee1aebb38b4538537c4f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    65581e85e94fa0a063ec02069345aa61

    SHA1

    f84f5cfbcee4e38a61c7c2b631a1c5c891eee494

    SHA256

    50b84c996d60ee8699a236466a1b9d34a7978167da5a7a1b832ef907e10a7f5e

    SHA512

    941ca569cb0694adbe28e29150ff58b69e7a3ac84022df3bd67adea89492495a87ba6ec230b9735a606a18a665e85c84fdb42e1054b2f804ec1e45be19c35792

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    7f1461634d52e49233af28f5dc11ed85

    SHA1

    3aab6b1506486abd4aa2077538b50ed9d27df3a5

    SHA256

    948a018a08a679f99c77b4501a6f0e9b1a20df0ddaf144a5322d9d461a76303d

    SHA512

    c0f4a55dcb8340010d18e6ed9af12ea8854cb20b8597a7dfcc0131a9862ccea7293220e9e4aa4d128ae2f2baef7ff2cb9045e8f258b5d582a439d1d0ff2b4a98

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    2ca12247f9635406903648cbe3249f3d

    SHA1

    a36e7b0f5dc9fbb24c846966061223b9fbc516f5

    SHA256

    ec353995fef76e1629f46708a26f2a2545e7352130fc5e05ca8547285a232a3a

    SHA512

    be7efc5256f227a1ca07d7a13a6f563c7009a708903383f799cf86b57a4e18d1c17183c671d03e4820e24914d46dc70b1f84a2cd4a00eb3241364054291d5367

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    883a37d7b64c13fd5980bfcbdc1a01e7

    SHA1

    e2a779a78674070057650df768b48af10475ac96

    SHA256

    a002205b62cd92a97c07c187b30cbf09845facac031b64b99d8599b4749e60f9

    SHA512

    ff626a3fc38b018f31f61cfba0befdb37b421b08720d9cee9da48f2e18c5fbabafa1a0c5b33a5550fae28b8a55411fec364dd63eaa0e0c0ab5c6bf5a96a0020f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    9e22e1789108e2da512b777aed4e620e

    SHA1

    e38b1fc28ebbe626e0b74531fa79f92f9009cecf

    SHA256

    e4709683f223365cf163ca01bd24e76025aa11b74af3d7d1130fb76a7875e194

    SHA512

    3ad29ec07d71a1b18eebcd21d882f15e4e4d36fcc0afb9cdcbc90a18498907e6862c699a60660e28a0742e7c6b518f9aaec1606fbdf50de44ca9d30af049037e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    24170ba82fae5a00d2a2ce025f015975

    SHA1

    3bfa351378a962a878835422d623cf0592da61b0

    SHA256

    f7673ea0e4dbb84a6d46f36c8d41c78b46167664a0c49b36abf0e33e140b6422

    SHA512

    191baa5bb854fe61f20f30674c9141374d814d73a3187489007d1c8a0fbcee3726d5311d5bc46d529d4d444e42f746e387c6ce406dafdb5e799cd9bff1eb24d0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    392B

    MD5

    1e6d4f7570150c51b24998b5011c56a2

    SHA1

    5fc0747f52451c90bb1710f03d036c76a9f9a7e1

    SHA256

    f0cce71c22df6b9ed09be893e12f06a7292f02dafa429e0e34cc198375841f1d

    SHA512

    97e5803f696afcad8d105209821e0a568b74b3edc1b97689409bc5df2f31dcd47c3499df5b6afef312063a9d357a2763dfc923f4bb57cbcdf3bb2b26dba558ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F07644E38ED7C9F37D11EEC6D4335E02_827A2BD464611B5891D523F77B43FEB1

    Filesize

    406B

    MD5

    d546745c4940997ad20e6b9c254a26f9

    SHA1

    9254a6300b1d8796bf026acd8f5aa50d7c1d11ef

    SHA256

    dce95dc2e09645abf1c81db6c6f99c309acd794022ebcaf0a8ae001c41924517

    SHA512

    86009b1e5ec9982cf2f64e93715f868958a37c3da5e34dd8b8829859dfeeed7ca7cde6057cc6135a734a1c12a0f378c8831f8ddaf52203bb43a25467dd53f118

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    3bca99034863d031d457c968c12501a6

    SHA1

    2098a1613c8429fcad8d532c5cb7c84d5bb56313

    SHA256

    830ed8ebe2c63736e1a0f37fa1ae0045a8a7053fa40a3022f322e5b7526f3a4b

    SHA512

    72933345dd430d281a733cc83f6dd3785677eaed7d51efe10a25092212497531434d2a55e7fb4e63d804ecc30bffa86eb3ffc175f895fd56f3d834383849b6e6

  • C:\Users\Admin\AppData\Local\Temp\Cab9281.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar940E.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b