Analysis

  • max time kernel
    138s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 08:03

General

  • Target

    910bff12b56c388ea3c08cae75cd8561_JaffaCakes118.html

  • Size

    68KB

  • MD5

    910bff12b56c388ea3c08cae75cd8561

  • SHA1

    fdc9cebe82bd8e8f7ff4a77e6270e747c5997866

  • SHA256

    a8fd0da7c8865620d1ffd26d1a1ce97c434cc18f3bd13fc7098469c6e8fa9061

  • SHA512

    777ac45fbe1170f02e0c7fb38ccc745998712a767c455902b30b921ae06ae86937e28863dcce70c8e3797b2f067b57af6a85b05463fdf4d4a043a0bc25315cba

  • SSDEEP

    768:JiqgcMiR3sI2PDDnX0g6NkV2mazBma5oTyv1wCZkoTyMdtbBnfBgN8/lboi2hcpq:JOLPjTcNen0tbrga94hcuNnQC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\910bff12b56c388ea3c08cae75cd8561_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1524
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1524 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2144

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    2a267c8371f84045236028d9d98b0988

    SHA1

    689e34bfc1f5b0d068c4ee62baca3e32f2a8e2f8

    SHA256

    3e6148f5d2f700962e4ca856d369cf61329d27095aab4081997a69c337194f4a

    SHA512

    7da74e5c2144e31887d70c62f623a0271b33153f0be825828f006ecec9fcb7d1f006249171b2b6746953cec27ce3ef159f980919e2b7ac996ae64d2519938e5c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    db6242402097722715313e42f78f5536

    SHA1

    baa9c745277f1c4542dda99dfe5225622bc7b173

    SHA256

    d0a332a18cbf1d347a6db7873e52fb503265f7fb77ca3513c97046a98a40d11b

    SHA512

    7282dc2aaca130a424ed410154037235d3ff98125b715c24ad67668d934bcedfb69c7b3476db87819e81ef6f0b0a48b9309a8ea441b51a63124894e68a020f9a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9bd2bbdce4475042f0edb3cd31e91e1b

    SHA1

    720ebb6355811d7f7598eac8a55dbf3ead7c5ba3

    SHA256

    672eae862ed1e877ee92a2414bd56e4bf80fa4580ff19384b143fb354f85caa9

    SHA512

    3d484108d87c37ab197e8657dc7ef24f045afa5dcae9c037c4b53e220e83f08039198bef29d341fc87d92413c25ffcbe3e43f032aced761b96af55e3e57ceab6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    127e29835492188275500d1abe541baa

    SHA1

    28fff0e76910b67f75810f5c5dc99fa569907a2c

    SHA256

    767efef79e892e368553b73e4f76421d4cb445e4c91df1a791452a99523f4e45

    SHA512

    8176b9f3c7ceab007a47b47d56c7767f5359160835616f9e48077bf97e3690f47ddbdb4b6f6b9763bb67452a4db2c5ad931ef1a70b9618bf249a5247efb347b6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    604a82c21d8ca0bb33b30696fda3748c

    SHA1

    fc6597c34f96961a43aeec0da30e3ce4581dc21f

    SHA256

    4f2a0d44a5af87af826d9c6be161a4ee82dea8aeff9eab796bd63c9201fe53f8

    SHA512

    268d7b1db03b608656c10085ecb82eb5ac768bb90759c98cafcc4ecc91d1617635578aae61d7bfb1ddd66779b597d8538f7e9b75beb19fd249f735320d2d2ad2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d0476665be56b8d0115de7c59d942751

    SHA1

    d3435e3ef28a35f49a529eb048126e7645a15562

    SHA256

    c8a30c4904d7003be6de9589798d2f8f20f58c5159a7a069801c7040d34cb711

    SHA512

    76c97fe0f70566dce1fbd737c94775780373e2bd510b3fe14ace91ac59c244b63ef4db1c78cee8ba1d97ff6c3f7cd159e61ab764f48bb78d8ef0dc1e09dbe1b8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6726938ebf1f03d8ccdb1beba2a17429

    SHA1

    516002aaba87aa93cbf7d84f7a03747d414962ac

    SHA256

    9701dd442bb5f8ba4a68c2c6f5caae7b2b18fc37b238076873ff47cb3fd4ab8d

    SHA512

    6a5078d4f8de719208e09c126447b5567edabbe71c56eeed95ebef5145171e84064bb50e30da8f8c5243678b83d5638940e40ff69961f0eb383198e73c866399

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fa75b95ca3ffb9a2c1e7634719fe4251

    SHA1

    e0570c9c88cd4c4788237e8f9e96ed17a9e56752

    SHA256

    4167fe24a379cee061807c1a7f608405f065032cad0ad1b8e252ce725187f1e6

    SHA512

    0460ca392141126c9e67d1ff96d212d752ce53f68a056f4f737b456f476b5a223b4a36e1de8b0e3e3e80cbae5573ce8f2363ac5c0eb7f02a04020f499e05159a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ee9a8fa88e4e4cbc2574fbedfe541bd2

    SHA1

    360cf26e6de9534c613a4168a8522f4e0ffc19fe

    SHA256

    28e100991425e2ccb26c93b0705cbdbbcba3f863b2b144a35440cf25bb5bcb78

    SHA512

    8198407286964236fbe5a5e0f083fc1d5e3498efde6f8559669904a579f7a9053e962cdcfd26f3850d14016aa9aaa341438707c90e6dca47bcba659f4a1b72d1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    57ed4db93aeb391b3f70418d0d8bd414

    SHA1

    37b48070022255b49ab9136e080e421db13fbf35

    SHA256

    38a3e8b827ff0f32781f614fcb7eac63524792555ee3e2048a6a78ef14941c5d

    SHA512

    10feba5809ed412d4f06da23ec3ee46ea06265adf18edad347cbe2c0ea3986b4af627281708d40f4d0d59e4785259194eb733642bceba35828dd2f7c33074eb6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    66e85c2a967dfdecdc8ad43a9a280f08

    SHA1

    220dcfef632245cb3546251aa65889c5a985f052

    SHA256

    5cc9b8b537832fc2fe9d4f9a29a770388419e464c09ae064204224f18e237c7c

    SHA512

    4edcd6819fb25e91cf23f224535a005037e2906582679fbd85ee823ba65967ca2630c30cd5dc9b19f4b3ba7ee58369429eb5103f5571e81b80b166b89cbc5ad7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f4d6220a10ab4e84de81c0b0f25195c3

    SHA1

    625da285caf4e355c7fb620de70bee247f7726dc

    SHA256

    995fca605760c91ec55f5dfe1ab6646bab4facef487a50923b0ccd62f0388ce1

    SHA512

    fd40a2bdf73ede975ac6b166ba5cdb8f08dfaec53acd2fc260381f95390a123d9a604069fae21aaced1a75e4cfc37b7fc4f270277ac5fa3dce8ee1b373db6db2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    10a7f9c6551040a7548f053cf77fbbd6

    SHA1

    2438606e66f782f2b41e25fb8ba43d09877788c3

    SHA256

    ec9e0adf7a397900598d2792033eae0091200bc5d9daee972e28ff8998e8bbfa

    SHA512

    850921a9d42c1c82d7e32c99bb7044a4b7de3c6e1932b39c32ac2bf9908f8bd1bbb06e7da7d036888fb5ac033b47f895deed67c2f2ad7982580d4b0ceea42291

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7106dde541bb2614e09b724a97ef4a48

    SHA1

    77380cc1f5a529aca8c4979a40a7b0b7f805706d

    SHA256

    5a0ec1df945913167acefbb25cefcf0923f16b4de0d26cd78a32eaca176c16e3

    SHA512

    15a01ccc329f2c66d8615dc8ac7d01f6305b53c58cc41f42bc6fa65d1b0c94316fea508f74dde9055e25e70b2a84341d689f58e6576dae811f5ca58d438ce15e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7175b8e34d4fe2b06590f4a3f5c1e521

    SHA1

    6daf826a85c5c274cd1cd29055bdf49581c62407

    SHA256

    bd47d88ba38f4d47ca9907a2a37585398c7349bf5646a2df801c1206ae056b95

    SHA512

    1c9bfe25b1b7974ec3c2691e22f4890c9751155ce011347fcf95cf93339320f1d7e0ad1a05bc07c8a855d5b49149c3697122159b73efe242acc8de32e37994b4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    1e0a43829afd8c85682ffd64610e17f6

    SHA1

    d5904386845327148e9c1df45a9786cfa742364b

    SHA256

    07df4919db21a01eef4e49797efae48bb03c34f37f6c6614e01fc8976371583d

    SHA512

    0d996c67ae1ac1b45ef0c6f09d4ba43ec2a3a286e6968473a203620785bff5b39453f635bd3ba4dc62de83ba775f155d1efcac562af19b9dc4a85cdc1f617d58

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    20e27658ffbc1d5e31e8f470cd0a758e

    SHA1

    7cdc923e90a77b742c10e39ac306391c36fe2648

    SHA256

    54b2d0f005e3cfaa4b8a2652bf5cefa11f5a263be6701cfec539f0f28d61a817

    SHA512

    013bcaeb1755cee4e6d619ab4528eb2b3aea5f84e8e94b8109cc8537ec02640d2dd2dbca9e0424a2c20d4aebbe4173fe6150c53d7ba352370de0e27401d68259

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    52dacd868bc3095569165a7f023fbbd6

    SHA1

    9407e4537292cd44142bffe76969c289904eb597

    SHA256

    b4a1ed35af5aa18d2233521e213b1a1c2ee41a9ed3a45834b20231f5fa85f790

    SHA512

    6a61677cf68c608f923010648d41f92c4dc64c71948ac9be683d20b177b64e4a49fc96d5c839a9fb63897ba81df7c96cc05c1f93d58fb38db3fa162efa80d654

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ff9182581097630617621940f39e4313

    SHA1

    e492150ce0e1ba56179568fe2f8a53777dcbc64f

    SHA256

    6415ea22856d487aa9ba968940f6a7ab918b36c718b5c273030573fa718b3cde

    SHA512

    6c7cac2578e48cf3227d604b3038d7ddac896c466adac01353a4427c98b01efa323a5caed4f129ef13f32dd0f41e203d1224906448f428fc614a2eccc0eb364b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    392B

    MD5

    e70fe3b0991a92a540d9b9ac7ebfbdab

    SHA1

    f5b781ceb61892d4165527f3ee55050e6bc8107e

    SHA256

    43eb0e2a3d7a7fabcb773f9e27f5114e3aa85e6357487d05baeb3bee1a322410

    SHA512

    13777ed80d118720cbcf36d381abfb0301836afb3b0e420fe81b09b872a9ac1423aea21cb0577b8e26c0a7d09113ddcdf6833053542bc0261483a4cced029d9c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    a3f42f1592fe1eaaf8821bd095fe4ed5

    SHA1

    84e60fb48f61ac40720e919f8827aa94e8c5b7b3

    SHA256

    5b91ea63ed48b22e00c9e4bdef749bbd324d8ce9d6a73a7735476f8ffdd23a02

    SHA512

    730908d7e35a4728654c056ab2dd0597bb77c8988112cdbbe0718b72051d7671906c987ee0867a3c20967d2c4e88ef4c0d8b5b48d8d1680a8c598a1246aebfdf

  • C:\Users\Admin\AppData\Local\Temp\Cab843E.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Cab850D.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar8451.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\Tar8560.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b