Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 08:05

General

  • Target

    910d35a788cb6d5ba3048645cbb8c0ff_JaffaCakes118.html

  • Size

    487B

  • MD5

    910d35a788cb6d5ba3048645cbb8c0ff

  • SHA1

    429632e1e9e4fdce1885f6539fa140ded14be761

  • SHA256

    c1a84cc4eb3de0b8c5b3e5c1c7629f905df9fdeea8d286cc1605feda8bd2f915

  • SHA512

    8dc95f6761c8e434f07dbc23761f080e838f15badfadf60acb23a95c71ab516a2f2c2711964d74f877e7a55d41dbb49c755bc5f26c69b78382a7d630edaa5a73

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\910d35a788cb6d5ba3048645cbb8c0ff_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1932
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1932 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2916

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f741a2e24c7be021f49dcc6da14f67d8

    SHA1

    20bd20386db274d058aab7e965973855795274ea

    SHA256

    30c5ae68258e7d78ccbc91e6be3357ca185c8fa43ef59cfef0c47f6043789b07

    SHA512

    6443a1102f57601121363a918b7fbcc0214a0b1f6e7ce1236ccc0f76d96cf13fe3a798c3df2d49764a7956a4096f2ce6922abf0688394112ee4077227d38caa8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5221cb128a707957e1c1f453f0329b73

    SHA1

    c302bfcdeed77aaed2fb3592ffd748eca181fe05

    SHA256

    6225615e347c5179e8c23a316b7bc581eefd8308eb6f136e6fb9534b2629cee1

    SHA512

    88bc5f8ae6d8d04e749829fb42607b077db1d99df2f942ef90946d82bf284dbdfee1cb97518d07effb7f511a7d820b1b58bbaa38b3b70230339027b88af3acdc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    03d48762123e0bc643387570e26e0f07

    SHA1

    495e62dc7244e91db21d7ee789108a676aada400

    SHA256

    03db33e493906add9c5478ab90f8e025578b5fa4689379cca8b2359bd27c575e

    SHA512

    eb1e5f1be0452b3061812d643a33c21a51ed689c97da76af5abb394a57715a856d5e6c4509f5ad5bbe164674fbe83432a0f052e056f925fc02588888e1b931ec

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dba3b2877ddb528bb7baea36a3d4bb42

    SHA1

    5c1add4786de7faf7f0fce2911018e790f03aa50

    SHA256

    c106d987d408ae7031272b904b92a2e87a214fbdfd746cb67cef061862c37420

    SHA512

    54bb9208b10ec1ec789630a0433621e15252fb8bd5ccf2e9d127be0f2ca60dcb94bc4b4463bbe356054f3f728d77531632bc4f14daf42d769052e6391be46798

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6d0aea6f35be5b4c2cc3cd39d0cdcd80

    SHA1

    807cb22cace0ac0e214fb764b49cacf4bec80c3a

    SHA256

    c718b80e4894fa33674e65536ccc3397ab0cc654b68a0ca4c941c4e5c5dc770c

    SHA512

    8ca3469323c44b88f60ca0c967781569c59f707167d5ecb357d0795f31a79d10b8ef812905287460187b6f68a2bbad93ebefa8c432a6b5f65eaabd9bae8f35e2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    103ad343379425aa724cc9717dff582e

    SHA1

    fb873ab05141a881d75c450ca43498f91725be46

    SHA256

    0986b97805168b7012d6caf79b0fe75d4355dc1a76830630b0531c296a6f5382

    SHA512

    acaa473e88393d83d0b2a7e07d616eab7eae7cf1dab8bc15302450b3ea2468a14991d895f90af966329da907f573a70b1e1018d89c528ff0048f3636e5297c76

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2a5550929318b9d7be4a45ebf6fd79d6

    SHA1

    0f281d62d0a35c17be121ef977eb8a28a5ff9700

    SHA256

    41c44da85d390ede9d3286e1c58f53962b99d235859c86826e6abf5ac96fe3cb

    SHA512

    c2a68d9d7dd0b3b8fead400d4175e453234f5738871552dc2ddba6e48043e0f4c28cbd2821b891ea2eda871eed07d8a1dd973d429d1aead6112dc192e0864c3b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    475aeaebd3d30002000cd07e52ad825b

    SHA1

    33a0d439c46816bf6aa2b358d7c924b8b3b67724

    SHA256

    2426f180361fcad233340e3a6a98e75f1152c0fa2a9708a0f84a897ae1d50bf3

    SHA512

    6cd698493b003cb5e9a1b47cbec4dbf92dd05f0fd8d3f7e91a5a40d9db86be5a9444f998c7998b1a34f2fe37bc83ba3d55e917940424832010efc92428a6dcc9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2787d813033c05f8ecd660a67e44867b

    SHA1

    61e0b22109fd3f1e61c691488179301ca35498a1

    SHA256

    1d6e8874759005902516409a53d88c3e3c7aa31fdd2163f6ff40dc7cd949f4ee

    SHA512

    89281ef3b06304ded0aaacdb903df399b72393d6ebe9077129cc8f7c77aa554ff3beb99c230dae719df2a02337845425301f4680c2aad71366c1e6beea711c76

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a465b10987f3e2c73fc4d71dbfb394d0

    SHA1

    2df1a8ac807eeb15a903ff6cd807be300a201a07

    SHA256

    f00e43a5e07aea2bbe87c49b53e43d95c0cacc426f96d2a2b3ceb389e14d0ff2

    SHA512

    8769b9c49b96b0f6e92e7219fb0f78bd06587a932e611f4718d7bf49c699c0d980c972406d9bd72d3ed305b90dc56cfe6d457924c2108d8a7982ae0bdbb2c705

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    97dd5b9fa408cee60efadafde02daba0

    SHA1

    cf9abd27d4fd66a093bb905f6f96a18272168fbc

    SHA256

    bb93449a67a8a5c3781705cc01f15a3ae9f4dd021bd08136fb9b682bc6fde6cd

    SHA512

    2d8e408234886657936c5a38daf0cf884309f03ef978b846bce2cc2e0a7ea4ea3bcebcab7f5e7f860e6abe02584b4bc06369bb259eddf259928d1a47c9d61420

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1ab853a8eff7105e4933bc64bc968d4a

    SHA1

    dbbad3c39273d3a9cc708d41d04ae0ee8152995a

    SHA256

    64b74e24462460d671018481970553d686b5125a920e107b97329dbe27cb32dd

    SHA512

    abed72d6b2faff9f831dc2bdab181eddbc1ea3187b6e9daf820c35970cd37ab755699c1327fe08d48853b784f808bac8e48d7259623ca53d98698537bf86f40a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    735f9c2c8098e997fe923eee9f807790

    SHA1

    2bfbbcacc2e6def17796964a2af7d6c562fafbe6

    SHA256

    abec1d868143304c8e1da6d043a5efb126ac3460b019c8598ba75e2a2cd7721f

    SHA512

    4c80966d8ce5ea088d3102fefa058ffca48cadf6757e48eae1f67895093b0ff862e9acce4475bc26485b56c27d4d2837345187cdd0a0a9f1c17120263eed1cf4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c521f2074ec3f48df11b0d15bc21d27a

    SHA1

    b150dd9d72dd92cb42169ae5e8f832832bfa8625

    SHA256

    e7a9ffc26f7ce78353252805314fee7596d31900842bae313aa245d106ae30ab

    SHA512

    9b4f836a01ce1d7bbd6c6fcbb137e52c7061a7dd27a31ed0d29b4de973590a857e075a98da4d14192839ba2e8da33d60edfd310335967ead54abc94023452d05

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2b613a1ae11c7c08786128d51688c26d

    SHA1

    9cd6fe598e4ee7647477728b07add088939bd059

    SHA256

    92d8b12c62e21868c86eae9695499ebf51159d3f4942c03651c071ea37c2917a

    SHA512

    98da68b9583cc47e6e0ff69f5549cf3d50a193235843ca3a309be36e3c4eb15431e05386c93c9bc5af5d9dd4043634ed5cdb25bcb565b197725307be5a5709e4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c1fe86f11f903a4b2f58ff24c7b2df6f

    SHA1

    cd2b89cbd892d277c4ca576350310c12a305f417

    SHA256

    8f98741aa14ffbd95e64196d79c7f4ecee39e15e88dcd63b2d100610bfc2cd4d

    SHA512

    f596a68100b7840b04566311aea3554635f45d84e1d688e2c187c4f4db22fe43203cd7cfd0f5ee680e2eebc78a32ac737ceefb9c22190e22285223de2d305f3e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    40a3c93bafc092449aea73b21eae8461

    SHA1

    48a0034439d3b2c070efca9ea10dd9631c98d754

    SHA256

    e55c037649341bcfe6c053bbfb9b34347aacb4f0171f0c4b3655d82e97227ca3

    SHA512

    93055eedd6d1db8961cb37506a1fd8ad1f73f80c4986d69849fafd2e5d1d8e53bc8b4d1dcf1654c4fde417e160a00c063d1038740d73c271621d5f389326ef27

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d2b424cd6f3f337244de9c995016e6b4

    SHA1

    e6383e7975f053caba8a544f4619a8f50e64b63c

    SHA256

    dd0bf21d86d74b9d50f7e5f86a9ef8e992a34f0058aa52055dfe5cc0712e505a

    SHA512

    a9e37b789e84f6c8a671c62c3685b4a54e3a77dedd6cb99e9de4903a2ddf0ab8d22e275124e94784e301f65f309e7a1f0fb33dfb7876e29d9dd2d80854d4961f

  • C:\Users\Admin\AppData\Local\Temp\Cab35D1.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Cab3661.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar3676.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b