Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 08:00

General

  • Target

    910916891153781b14be208d80632e9d_JaffaCakes118.html

  • Size

    462KB

  • MD5

    910916891153781b14be208d80632e9d

  • SHA1

    e99be2a912a92db43ca4a343f801fdd65055c971

  • SHA256

    6f0d4c88e2670078a2a9c382efed150dc8cb26ca9180d68a1245f0b8f133a071

  • SHA512

    fe2a4a96c342c637a27e957f209e38a7bb7085b36f1ee9c3f7d6a69e89658ced7a4040a734d0f737436cdc47e3ca008801d7b1529fb825a54fd08c53628f8217

  • SSDEEP

    6144:SusMYod+X3oI+YRsMYod+X3oI+YBsMYod+X3oI+YLsMYod+X3oI+YQ:r5d+X3z5d+X3L5d+X315d+X3+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\910916891153781b14be208d80632e9d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2976
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2976 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3024

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    671b950352b2a9db7e10052570d0a27d

    SHA1

    aeee9a172aa64a7ef287f54d385651c8358a4c2a

    SHA256

    5b4a49441cf18a0acda377132f579270254acb57bff2b0ba794a9bb37941093d

    SHA512

    659aac1f8a8de671403a325e023c08d7f13015337c2f5e5cdc32297b9f9ce28a75d0fb188d0295b0c2530e2c8eacc301900fa30d0d0ded172439d36af396174e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d385d2265d3c8b16fbf52cf489db96b9

    SHA1

    f684e2cb5ce9e8b0bb73096ccee8ba9a144de2cc

    SHA256

    4b1e3fe4fa7552da752289fbc8ee663f521f966c0eb81f5974ba9e74244085a5

    SHA512

    b8dfe4634abf19b526371c9f1957d84995f520f222d666229fda20378fab62e3008dd3cccb4b4ca46c6a416b3964fea23d8c426968c2c4e9ee69811e0c53369e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0592e24f48609a9255f6ef101e30ab5b

    SHA1

    d8858391cf23ad87fc459e900ecf478f54e4994c

    SHA256

    d1f494c5ea455e04f77444101be06510b017aa3583af12eb384838fea5a8ecd3

    SHA512

    4d818f2eb1538f461e6ba86052639ab772620bd9db8cb59797340b86637ed1c03d1b3b78255691d7df90206fcc38c565b2313203e4db572adc0700058967cbe9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d92af640a0bd647410906e1357011ee5

    SHA1

    6b91b7e8bbada1a02c21cf09a96172f7c307e54f

    SHA256

    6651edd9a1543cd635d5ff3db40e0ba5b0a8c97546a7af830e18fdbfea5a673f

    SHA512

    9747546a802cd2bfd716d1797fa554ac6b4adf0ab16ae7d9462e4b069c426a1b432c1df82e350fa52bdb0fae92453dde2a89498715a62f4127b32639727b8374

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0638c6c5ff0e81ce0049e48a9589a394

    SHA1

    6633ef153b56463be8b3271554fb9d0f33bd1215

    SHA256

    2914eac68e7849deb19f7af7512c87b0e4528a493fb8fce67882d150b53ba576

    SHA512

    e9cd937da487f90cd7a5fab48b069cd52c99ebd48c48b569b960320fe9388ccc7fc5bc921c3d37a3f1171b8821cbeb9f5172146ff8e82b322079df816686f32d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    64e10263d58ef5b47cb6eb5d5f93af86

    SHA1

    0dff473e93c49e3d3adaec6d6bb103e0df85cbe4

    SHA256

    966fb0fc6ad4709af98b85725dad57f3cbaff29ac40744fba75001323e1cb667

    SHA512

    17233718f06c138dfadc05cf27fda6dade4e831701ef06da2d9c68b2e84165731858fa5e66cd28c54d36feb665d62a476ba0a7cfc55cf94179616dcd6bd24387

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    05034d1e30b5727476a6113c34130b96

    SHA1

    c73837813c6d84d89dbbd7de1ebc7c2a0f2b0ccc

    SHA256

    f80322483aba68d641a427b4324bec264863e3134bd3ca947f15295a6cfe4a84

    SHA512

    4cbe22e56a478a1aabb9147728c72d03db64c005d05fb45df7f28671dd55fdd8b0dfb39427e7a96c340b4193621a8ca445b1eb32adb72c9a8d69798383348c31

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3fc8ace1a928b565035b85819a95d304

    SHA1

    f71d57252748b51492eeb0e7b6ffabbbad820f40

    SHA256

    055405b6cee0e7c4f1a73f1420266a486d234febbce167185c4ca694cabccdc6

    SHA512

    fb69da3308e720a70a07168ecc2ed411c51b2f179718fd3bae460c55ca7da4fa15a304ad9e69d38b7389d12fecb8b6fe74c0ef76e95d046864a89165eb890c16

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    54215dbd38d6f44c48b9f4eb42657010

    SHA1

    a033a24de3dde8c687d044763e30301b8b3d032b

    SHA256

    66a6b37297f127da620b05d47b16163d75d77fe6d4b87398c2032046117c77f2

    SHA512

    997b54f6a3a6cf72159d10112c858171dd280d3593bd534187467854fff96974e5edccbba32678cafe3cab120bd2c40ac44ac9b6f19d0a97f8c363c5718a65fd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cd9180eb155b879263e9d5117e226470

    SHA1

    b5c61cd7817b3b5c58d9002e14437dbe9c9bead0

    SHA256

    960986ae22140d8c1624fa820fa2907804f29647b389c6dffb574e67a1e7828a

    SHA512

    e971a0c1dc961315378f2308f24234ac51200115d16d792ebb84a24a672aec63f52089ecfd80a9291e29de758f3b17d9a71322f00b92d33f19a9e83092be86a5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d9b2e32a084d8bc78631fdebfb59e1ea

    SHA1

    cde15d503671f3e1b1004c0015b98024b0698c4f

    SHA256

    a08ba7ef06ae4b85ceadf2910f17145fd0a15a940b0158d6968770aca1c8cb96

    SHA512

    7f467f2e35aa0ab9571d52fd8fcc70de3f6fc796e6c4e1ea6a5d1988535d8355177b6338fefecbf7a069cbaca09b62e8eacf8669030ce1e9d9f9e891dbd15401

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5d2b3bba7057e95fbf44078e55b8ea2a

    SHA1

    8140722eb5c01bb22822cc540810e589eae65bd7

    SHA256

    807098423afec3b3987f01d2f02d8d816dd767c3864da6ee94e6609b81cfe62b

    SHA512

    d6437c21da859fe073bbb746005b5cfc13523fd5c052c734e77cd483b34479712f58252d4dd9d94b4ba849aceec43723d1876f99d800b63cb8bf009f00fcc4c5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    68b531fa43a09047e64fb16abc3bba99

    SHA1

    c6dd611105c99624240d94042a934fbb8abafa3a

    SHA256

    da471b44e382cf24fa524dfb48b37f91a5ffa2f5fb21ee4c6ed8d6a2733b0b3f

    SHA512

    83fd4c1a1d06ce37496251b092752c2f2259d786a86355372aac1f9240f579cdd51be7c393e33fe9f381e4b93e2ffd810b3b46bacba6be408853038b630bdcb4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e59be2b5ad8dac469311bd3923eafeb3

    SHA1

    7f0dcfeaaa47511107708d80d899e8fd66f186f6

    SHA256

    d492138bd4fc54a34ac843aa9bb9c12c18139884e0ee6233e761124c50cfe768

    SHA512

    bc9a92b4865dcc4afa6602d4a9da21e3004ff00226b8ae6fd61814223f5399085fd8b8ef49403d69afce35353e7cff9dde582438a106c92a3ddcede2310bbb50

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1f747509ece219812da054dad1e37e5d

    SHA1

    7a1c16d690e6dcd4194c231947d2ed1e537c3493

    SHA256

    d8179fce0854ea9e82bedfe19485a5c50050555de5c46b9f7bab1d703763fa1c

    SHA512

    3019d76fe496c041556410e6261ff0d21aca953ed6d5612594d7d9750fbad26aa6e4fbf6fa34b0b20d7f6c7cf48859522bf929fbac05c5126729c67b9a84f9d4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1e086b53786635eeb73f5d2aaf9753b8

    SHA1

    17eb6edfb1c800c9bb3efe34cca7f2b83470d0a1

    SHA256

    ab8d95a1536037cd747073b3724ad9cc055ec4b527c503c5fb4bd497196caa9d

    SHA512

    9656882033e943da328eddc4628adcab92ddecc1b04bf7c9e1b505d720b6606d24506b25f1b644e89d52a48398274e815251b38c364a0eb8eb726f05a667118a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e485af5c4fcf3907ed0c2c66fd100188

    SHA1

    988de68016fee04aa678eefec186a706175d1b3b

    SHA256

    d6783d66b133f1a4e89a065336e80514885cf780fbffc969688b149ff2b91b8a

    SHA512

    d7137e6d072fb600e59d6154982111cd652548dde34440257e6c955eeb67ef1c12ef83df3d2dc4d8ca2b9e9281b4d92eafbec95a7a7296e650d2751dd2a711b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1562b99038002d8cd6c4ab4ed90e4d8b

    SHA1

    f59ad49ade3b8106f937db92a6188717b6cb2565

    SHA256

    1f650817fa88a02670972836dec4bb37242ce50798450cec8726d0fa4045f1fe

    SHA512

    df19e74fdcc8fca768ae7d4afcc36ec91cb668bb51fa3a34e77eff662c79e8ca8d4862a6c2452920ae8605e90a105790a1cbaad805fc4e947e586d2a1f0cf1fc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    47e2b7d0195aaa3446b75ccd1d6aaf7c

    SHA1

    e756c4e199e42d678dc47afa3b44c936bdc043b9

    SHA256

    220a136a6dd6f1dad3b4a28412e8216a0aaf7d67248f9e90f2126eb7a665675e

    SHA512

    8f9bfe9a8661fbf358b9aadb13455b3586d0a31aa1f48a064550d4e9acd2ef631bbf0a3d91b339132976ecceea9466ae1b45c022d6db617de579d2c3a86b64e1

  • C:\Users\Admin\AppData\Local\Temp\Cab583F.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar58C4.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b