Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 08:05

General

  • Target

    910d3c64253fc11ec2457431649a59cd_JaffaCakes118.html

  • Size

    18KB

  • MD5

    910d3c64253fc11ec2457431649a59cd

  • SHA1

    8a7a786f028583dae923ad055c3a013645c41746

  • SHA256

    44b50b3ea3329a5b6566a8c6b9c3276486aafdf33578e8796b9972ae20e74e7a

  • SHA512

    526e432089cb07a00bd8a0d9239586d70c76e44499d59f735547d6be03cba484ddab550c1b6a8bd68bb1c4ddbe35ace10f8010c7a53215f9a65f1a47decf82ea

  • SSDEEP

    192:tNarN8f8efCaO+yEpIz4K8TmV8IpWz9MWxNM8BM8VM8UM8IYf1W2wlAw14w6ZwGx:za+7RQdsI

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\910d3c64253fc11ec2457431649a59cd_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2880
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2880 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2536

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9e3737c209e1a21bfbf1098738013af2

    SHA1

    6e1e61476b124feec5d098782694f366d06d3677

    SHA256

    c38245a538bbdcb2246df232cb94fd88e5a7ebe512e1159271d8382f390d5831

    SHA512

    c0809aaf0163d71934da69bcacf20d4c7069aa62b9cfff21e04059503138d01b899c3a4ab7ab33f3c055472a280cc15824b6793afd8629bb9c146755043ec818

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ae5639ef2ac526461dca67d7e51b7771

    SHA1

    c3cee11f36debd6d75e36e09782f073e5d31aaab

    SHA256

    04641003d7e276633897f290f20a12ea5aadf33dcaa8c493762b84b2c30c8672

    SHA512

    cfff3f86e564c44074f697403d2c9463beb7d6e8d31b9e1bba3cc3291fe4091246d0df1056674daf61f9725d299f6fad97e63771cbff6e3e49b74ca627a71c6c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bb5b18a346dea15903542601583386a0

    SHA1

    50e0e13548dedc8e5be16b36aa92ca905420dcbe

    SHA256

    d55cf3623fe6d4f3d01e8eea4e1b7961eaca493aa9e777927f6daef7f08c7501

    SHA512

    9d5011c4fe6f2438a5cca1bb4a8bf11eb6a6d9cd30cb003ea78b7e6a22d7997d8c5b80385b2fb64c6db956037f0482e7087919efff8b8367d62c264a1b26a258

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7c9ff37b161baa0e3167010faf53fdf8

    SHA1

    3e37fc99ab184b4a9063bf209659d56722f02667

    SHA256

    a5c4dcc490a9efc5376fbe079ffe4a69404feb14caf76a3b1f40096c66810d8d

    SHA512

    8bffcc0b4cbed12486ba1775c41e056a523f9c0b1fa7ac1cd109a15a1cd56319b74a4da63edc67b994d09ebe685fc695d4a78278d0cb75b3dae14ab7391da6c3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c1c704eebab004aeb7099112a70e21be

    SHA1

    0c0c04bd30fcba6a03ce83278eb4104a26db1c61

    SHA256

    2734128e28091d05c14cbdbe48375e1e13f63ae48399a42de87d89d679e73f91

    SHA512

    53d35b19fcd112e5f0bb1401ae25611002ff32e415aafa83f873c192b41b027f1d13b513728d294c9a3837a5eda4ae5a356ba6c6363deb287bde2453673da389

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3e3427e1697e8d362df49cc6080ca7e3

    SHA1

    2837dbeac6a44dd8298e9620d58353d78586a734

    SHA256

    3f5f1a1c7660aa361d1796acdd2024517c0a8a4a56b04584b7da9d839f155b8f

    SHA512

    597d5f0fd23a5aa58e5937780fe0c84c8b3ceaeaed13970c9f0432bb8818513ac0971bf797a28d6978dffc296aaf5e456f3fa20e74a178d9a5292af63c7d367f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    350f0ff6a5ebb65e57859a7641e821dd

    SHA1

    4b591e0080549656f73c94ca059f461f876647f0

    SHA256

    12de9d96235a05aacd8ac27241cb54ae38938a0ba0d316baf422baa935d7fc66

    SHA512

    126abeea17fd99fa63d20a78bade44cfde33e9ae29cb9c508080c8bc677c5151b8b9daccf46a5651ed60921784a283309b55b058fc499726b73a2e73528c841c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e5e577d0a713fdab6c66341cf4a633cd

    SHA1

    f10e2e76d2f8c18f28d78c84413e66af86f04c36

    SHA256

    c04407e82a20ab39f5f1d3ab2354c34910b08c1667986b399d0afdfc6ac7804d

    SHA512

    051cbd62fcbca17966e75caeff61541d529b97bae28dd020f7438d00c9afdf7a00b187e3030039564074276ab392d6d629583a3f8978b86689e3edd339042753

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    edfb21748e9e195f209f88bfd477db31

    SHA1

    80a8b7fc8d713b3b1a6c9df489c5b4bad45afd02

    SHA256

    b3ad1b6613c148cebca342e7c4cfd5e26753802aa7ddafd161c1b84611cf293a

    SHA512

    8599a33e14a2fe4af54fb5c9b7098fd24ef39bfc42038349746b99ab278e710764cb566c757ae27bbf8c55514272dc3f061a0e981af7bb9b970ce6addfaef7c5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bdca535c23af81d112ab4cd66c4710ac

    SHA1

    0b96022347f3f69c18aef7727a1d39077d7fecf9

    SHA256

    3d2fecbebeb8289fb55378119107b4d08e3d0962164c952fb42841bfeece824c

    SHA512

    c0019e1c72a223b10e2ce540f8d8bb8ed5978db54fd0d425192b309b2ca57f02d8d9f175b2e5bc0ec71e21fbce4fdc61251f9b7c4056ba733695d6fa846ba397

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0e806b1e903f92a7beee0ff55d52139a

    SHA1

    49c39cf3375c768b5988c86f3fdd7750fa84c5a9

    SHA256

    769546cdccab1807f98cc7c053f7e955f2029722f1d0f45a34c01a1fc1d9837f

    SHA512

    13f8550660ce30d30d29255c56a44f65e0974cf6b4dd95a14a9178c1883589bf6b193288cc6fde0a49d403c1cc0f763483af2bb6e0303c5824e29a49b410e9ff

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f3899eb1e7255f8011dfc8c747235220

    SHA1

    7010a9032745cb97a885cddcb617be8c1a4fe3b9

    SHA256

    ec7193f765ad1acd6b9bbf0005cd2d420c3d2b460e667267dc88fe976a3494c1

    SHA512

    033653774e53dfdbb6e6638f30be3a9ce154df6fbe657f4ad98a4989e75b5cd32fbe0a70418026adc35bbbb2619a9fbeb8864713286acca27cc9ceb6b8500ae7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4a34c0f5bdeff26a6cbd12aee92c128d

    SHA1

    8a2906303408c0fc2d7665941c179505b842a040

    SHA256

    375b6e7e958744e47f4c8dc854d44a9d6708286e073b96bcc265cc369496fdea

    SHA512

    879717f45d3902ba1dc566a3a467df68a12782efd9a0540a3793eefb2a6ee0cbc40daec900f41eca88de1fed2857dfc5faa7ce4c1e8201b7aa247d3ed66f5334

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    617fe97f26dfb962ae6e52248020c639

    SHA1

    a389250e2ecd701e7683c19e3253637be337556d

    SHA256

    16c3e8b30bd28b80e00148e905db0d4de08cecd41720029db696c8ee634abf06

    SHA512

    1e809bea6876e934b95b1ea02110fd7ec2718ac445797f382d0255d0bcbfe7c514982a41cc8f810dcb904842b7a0f292c319632370668eac77814422f8fab4bc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0a2ed8ec34f1fa16b5b2ad6a3c80f650

    SHA1

    62cc63ca5208c55a889c8cf76940c1cb6fd80588

    SHA256

    84493c1a42454e21d049456c21722392141cf7460ef6ff5845bd2620783af43f

    SHA512

    3cf66e5e280f1b1d79469fc78501717c436a01f5e24270dc2bd71cf455cd8858db92064476da1c069bc0f23d1ee362999c26672e504ff13f333000e0ec571b39

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    68509a9d44a0f44d14a2e22dd9a16ea6

    SHA1

    2ef02475d48e2a0b0f1a8dae250ae4dcc438d35a

    SHA256

    636d98973f5c2e65c2846c75de66442fdb9f0293d986ed56c41d6c3e1554e9b3

    SHA512

    e51929ea8977413020314b9a5a96acda9ec27ebb96015338ab7e6c574b64116aec4aca74a85e35f6d130353af3b452b21319aaa96125aadf14de4dd8153bfcc6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    44f223164ddc589f9266703e116f1026

    SHA1

    a9185d4189b2f3bf48689a4d80fc3db9fecdf987

    SHA256

    d9b93a9dfc8aed1935ab2c1322ca4dffafe718dc0797f14d1c7a24b99c649b06

    SHA512

    c86779bdeb122023abbe518e0e00411255846fa608253573a9171d88783d96546a4478c355a8dda922a08471be0b23b6525a365edc33abea02839ac5d9baf0a3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    625b8174a974fca8d61c544bfc7ee28e

    SHA1

    a78a8ef0a5c2c9ee81e7221cbb953f079c118514

    SHA256

    8e79193e16714777cf895a016d4db2ea49316c27f122325cfeae493f389b607f

    SHA512

    33233f9fe5b93acaeee3e6efb360784520245115ba45a80b4d9e156048c41ade88fd440e53210607150be484b4539e11c268ab253f2ffff24c99f990fec4861e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    125debf085be1fa086412e1f668b0b92

    SHA1

    895edcd5ad9e33a5f13dab6b3950ce80a4198cd3

    SHA256

    585bdd982805fa384b0583dff5b7e5db2d2bff33c16ca1249cb7db10c1dc1684

    SHA512

    63de0b55635ca4ce7e08d04ea2f49b6448bfe7e4e0e2fc0cf77f7c63f35a8a5c009443858c02f0183eed18a97f0f308fbc73c10e05a2e4f585ddc368185ca58f

  • C:\Users\Admin\AppData\Local\Temp\Cab1F56.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar2047.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b