Analysis

  • max time kernel
    142s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 08:00

General

  • Target

    9109ab817464adc123f1e64c52aef5f0_JaffaCakes118.html

  • Size

    29KB

  • MD5

    9109ab817464adc123f1e64c52aef5f0

  • SHA1

    a5a277634a9aa5dbe742b8c6048980e5bccf727b

  • SHA256

    5575822537f60e8b037b7debbb22f20de98a12fe2171e729107315c3597290a1

  • SHA512

    2f39d4e3f627786ac60e38131fbc84d8e29e36544c8565e3c0f466cffd5db1e6cc142ea13c60937430795324f9158b6740686d129ea337cf4ed58d7056a0e7f1

  • SSDEEP

    384:S2hP9qOMp1O+ZQpSuMUM00IEn4iXbOpWVsmY8Avh+YpZ0ccic8qMp8A/WInImm06:SE0OMpjXGl70sO8Y50Zfa

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\9109ab817464adc123f1e64c52aef5f0_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1684
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1684 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1996

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e8555e6f6719b402b265ae6cb4a53438

    SHA1

    798df2f550ce18244a70150b7fb88ffb014cfeef

    SHA256

    b0c58cd577b795fcfd6215a08014f68e72e8b5edd064c78a03fc1fe8409ceccf

    SHA512

    c0b664e692a28034f69bbc840f0fa9118b54aa6ce9a8fe60e71293834669342e02b18a82cf0665ee48d9497e5c0a945f48a433681bb5d8e420f2e022e7264a64

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5a42b9e0aec667cb1670907dbcc7eed4

    SHA1

    347e1e9e9a16854aac421d1481f926de355e757a

    SHA256

    d3fb2c5d76c7b2cef05f0234bdb70483128daccdad5ce8ec88d5d5eeca6a3899

    SHA512

    b1358d6fd7b735e1e3b38640508aa155214c194120df5e1dc4b891d609dd1e87d542d0715507108d5dc21fe209672112897a353f1791a61ca38286a2391d8ee9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    22dc1a84515f12e45c65bf04b8e11675

    SHA1

    f171e6c928414c77329701dd01b3d7c38c194925

    SHA256

    0c0dba902f3a86fb58fdc516b8ac9dffead200ae345918c2f9cdb4a54c0b89b5

    SHA512

    aa7cb197d0d5f32b0a9615ea01e2b22fdb8b0d433360b0e231436cde3fc6545663ff116b9957809138109a6895b7aa07bcc31182f10712f3f69726a7bcf7bbdc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a0b75e410c7d5fc2a6e2b0a947d4e84d

    SHA1

    7df9b56cd8108ee5e05a8111c02379696d71cbf1

    SHA256

    1d20f0e6e59d2bda7245ce180ac09266c8824e115d624b40442d7351f1b1400b

    SHA512

    395542de1453cfbe1b1f6ad5b51c9269552b285d13120748ce109dd9e0311997394b93fa96523a9d675ec1997129382eea3548c4a4c99194ddbe242b8a458599

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    009901ce11d59fd635410d6c15bc1a63

    SHA1

    8f00473f3a4980d4a691623afcc972965aeb360e

    SHA256

    8dc4db44b62d49c62ce9a768b603608fb12fea514b99f001dd731bdde834874b

    SHA512

    a5b93a70b983b24fd3c8a4d7ced1f834587b528169f231000aa25c697cd66d3d51f39565cf5ed61e956e2898dfad14ed5e2d856d0fd0eeefea77d3b174bc8c82

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1cd79017c6ecb0a9e415b791ccb989ec

    SHA1

    3d5f5d0839bfa06f08b9284ce1e61593d80de4fd

    SHA256

    5854fbd4315da2d049688b7d666f46aef0bafa341cba4dd11c4a8dc3e66003a7

    SHA512

    8016a07f3339cf9bc27e548ed034e28a6e14302eab11a352e2cc5fec1caba310539d8a9e8ca6e0c1893e130786a9aa9ea16fef0773b31b77c95ce00ebd79bcd3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f24518a8827be54a3da1dd4b25cffaa2

    SHA1

    5ae5624f5ff3a160740eddb45f32064961169c50

    SHA256

    3bd41c3aaef2c02a57bc607f673f3bd145579cc35fa8f52d71d339c6360371de

    SHA512

    16586423ed39412e74f343bd0c96a692a881c2887280e34c6d50c8a5ccf7ca6c76ce4df8a7ba9d4a7bf20963e8ac092ba71c145e8a51012a2fc30df53db6ec4d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    13386c0a18024e89484eb43681935bb9

    SHA1

    adbb3c120674307bf23c4937a0ab79ae44f051dc

    SHA256

    6341dcb39f22a2a126098452edf37438c704873016dae5255e265dd02462f076

    SHA512

    8d6578df8dcc1645bd91ea3ac37faefe90e5cedc4ffd5e8d7c7639bb9af261a3db0992ec3a9dc5635d183e2d191d45d244d6fbbf945e8eb36c9761e38b65d99f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    be27b6696947f8149f3c5a17cab48e9f

    SHA1

    ee873f73771ab7e4ad56bb005b5b9e86d76ac8b6

    SHA256

    e4247172420a666da067c26ece55412253f19b5e4229f34c663ed7c1c4732fad

    SHA512

    6de84168b8df51922796781b7f6a33f3c905e341f81cfa4fb4c122d251be73701237d42d86a876eceb372ed4c97e7a097e8bd6fb34e42d4e708acecb5f3b2917

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    77354f55b31bf79f1221ed9798b57bf5

    SHA1

    24b0360135821eacacd6f1f4c74c19449b38c335

    SHA256

    161fb1d867977eaa9e9c1627ee8eb41a61e3a9c12922bf0ba65c3a601555d6c6

    SHA512

    91d01c9ea6e8a0082b84b6a570a05624bdefab62eab1fbc19432eb52afb8964e8d1452953e38ac0c31ddd7d95217c0671f4bbdec2c4755fb025a0ddb077eea34

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    feb9cfc6ffdc2f398a845a8501026a6b

    SHA1

    22da38a6556ea94896bac7a86ca7ae5a31514821

    SHA256

    bc443c18ec3b263e6992852dead3ed641a1e49b78fcbfbde1632a79ec9d3ec5f

    SHA512

    2a0138f7d04ff2dda20bd87358d852911c8b274e37bd0f423dedf0b448112a9fbb53cafd5c96f1748a0a2fd9adbfe5f62577da248076bfbe37086d3b3cbf0295

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fcee34fb4fb5204236e006b8dfe143da

    SHA1

    89675d0ce173a937b3ecc8d2f66a8920b980af78

    SHA256

    7f04809db675b849318e58c528126a9cdbfeaede4c96de26578e1afde053655d

    SHA512

    821515903f8ecd370ee120d2a1bca7d4381b3ca2ef3c20a802ad5a1ddca0742aa105938e66591f53984817bdea6bbca1778eb00b3761ad53a103295ec5c06ec6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6e1df15d21992b9d30d4b98751160700

    SHA1

    0224f8eb94b0b919a02c35343aa9214f461da888

    SHA256

    fdfe60825765722939366716d0e391b3ce395e8048e54b45e035d0b077f73c37

    SHA512

    6a44b21a9f8d7f768485a35116e2715c5e4edbba2bca6afb02f9021e4a7c925e6d1adc609d0860913b704ba916e8c755a5af9de8e0ac30710eb6880ef03ab4cd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    19a4331afa657b44521e9e29372eb3c5

    SHA1

    6c060deb380c5a602bac58ee45a71d2b9fc0df59

    SHA256

    100a4c6633b5a7feaffcb634352ce7c17a350f8271580ed8b0099b1b62df260e

    SHA512

    a730ce25e0bd08eec29cbfa3be83f27bbb388aafa790d03029393e1c9056d5f10a8fd201fa3b8600290f6d196fddca56a6bedb2b52eeccc7dd9ed10c24b28750

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    66c1e4f3a0f4077fb1f8cc5899ac72bd

    SHA1

    79a332bc602a78e71d87c5faa337e2526e31366b

    SHA256

    b5af40b45d098d3fa4c7906409de731c7daf18349f9f63ab6552be364156d9ae

    SHA512

    b0199c71cd4b3a130999fda0b672e94f0b291304b4e65acb470269ae910e34e9bd9125ddd0952910a3f15ddb2bb076c328aa01d9cc17198b0b61f1d8502f4b5d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a672deb72ae11ce43fde4381ce4cbac9

    SHA1

    0fb05a900b7c947cba53875474455c824a3aec1d

    SHA256

    86844b10a7c6862476654437e6078a80e42acd0bc4d0fd88761123577cef824d

    SHA512

    afe87c64b90f612b26c96fbb0d41bbc68fcd945aa4bce22026254b23c16bfb2ddac043c65582f509966bc4d1c47ea93dc222f48008bad86e1b76a3a8021df3b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0bd022219fbcbc2d66eaec36a874d25d

    SHA1

    70682e425f2859fa1bd90676d22ba6b167471d08

    SHA256

    08c7d41bbbef85699f10572da811d5146d080e16874f01a021c84273689cee1c

    SHA512

    42f87a9e4e407eefff10ee28f78b3e7276742822df77e06668158873cba5b3c80973cfda4ed37877f0b4abbf28ba6d5afc02f6e0ea825c5c17c40130c44f76f8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    72e105e87937d9f00255f6dba1a30301

    SHA1

    cf6311503b6f052d0edad4a99a5dc7d535ee9de2

    SHA256

    b7f54468db63aeb2a50bb295a4afb7a970a80d3e39e8cfb53a664d33201f0be6

    SHA512

    4210bfc2307fe77f10ad043201367861fb1811f752ce9cd13674a0cda50d3144c371bdb455d0e57b78ec518942e1d58b4fe2b2235d9c241c690e46d1e0eaee26

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    04f1bf5b6b711438a19ce290a1dad770

    SHA1

    34c5354a6d1d456d420e7ef32d1629cea6d25953

    SHA256

    adf2cbba98fe179ad06ab362714cb95c0ae6f60724fa19fe6d02a7ae82b95c20

    SHA512

    161f5bcf8f6ad781080870a310ac9b77dfcc1e4845e24de8e4245ef61cf885939be0f68f58aec27c47c6c8143634bb494a2921f1974a02cf3b8c94ef9b30d595

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e65a76271205569ef50f6062e72dfe90

    SHA1

    4d70af6ff1e02caa4354a0c1dfb776320a53c331

    SHA256

    01f0c6d8a0e50544a6f1866caed73fe4cb55920f2eb5b866d191a41c503739ff

    SHA512

    67fd5097ee3faeb592da615ecc42a7b85dd3748a474468f0e45f7123d83e0d87e583ea5ea68639eae2bbc426af80f9d810617a534ee9e876fb85241916e17b08

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7124b883cbfb700823eff134ab333a8f

    SHA1

    2f263c7c3d5acc39fd99becfb3d5b0cde5983838

    SHA256

    b6ea3b2e53d9f994d1cadd6b4e547790f1d57e0e4119cc2814fba00ecc8b9fc6

    SHA512

    3b580ed2116274f82adea4a6a70dafe2544416009f86e97da7e6546a7d224115e598b88d130b8def120e2473664b9a7b125e1822136b21b1764ae3926bc9aae2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    577945a17f9528e2d6d5ce298db218cd

    SHA1

    fa9df82b8a668ef053e969bf5af370f8a50c7def

    SHA256

    aee3a31deba3c9015e1480b0af4f996391f87955fe9204a0cfd3ab9fc81e961a

    SHA512

    4b731971f1ddb070f22ead9be91ea0ef45aaecd80a0f902d48ba7aa34ad110d64ed3361ce37ac4868101dfbd96b156683160518e4d8887bf719e6c56d0c179d3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b3462e5872d6200b0d6b9bd5aa12ff80

    SHA1

    aa0403a615ed785fd276fd718135340c6698c125

    SHA256

    112d6e5280981c12e53f8e6789f3fe89a9bd61317a237163f49af871251e2360

    SHA512

    435bd09a13625052109f1314dfb0d20fe9ce4eba158a231d70a481a51976ce063605d4c12185a07021007407d008c96a647fb9f2db3d56ca5485527fc8ede4f3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0da71b25f3227a2592d86202da780b99

    SHA1

    77c03f27416b544adb5663c884a08b11d433deab

    SHA256

    5c090b4976859ed1fb8c6725555a08d117d94d7e5cc906fd53466f0cb0149bfb

    SHA512

    88e500aa65c9aa54bfa79363094c2e4eae6deb2f093ebb7d01cab1ded65fd464b71dad036894abf743c86d0b732f9afa135e040c0a8d960ac22f972e3a15c808

  • C:\Users\Admin\AppData\Local\Temp\Cab5D40.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar5D3F.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

  • C:\Users\Admin\AppData\Local\Temp\Tar5DE3.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b