Analysis

  • max time kernel
    141s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 08:48

General

  • Target

    912d36d1c3dd5f816a5ada6e50eaa90a_JaffaCakes118.html

  • Size

    7KB

  • MD5

    912d36d1c3dd5f816a5ada6e50eaa90a

  • SHA1

    64e976648e77694a3772130371df2931c7bda67e

  • SHA256

    f4d925d1e6072fe29442812edb65d77d2ec7700921b1c63cee19589c6a5ccfc5

  • SHA512

    b46c70dc6bf102f463066907cf3ab919d8dd658b567b31fc909b866e5533df3037c9e9a7316dd9d43b2a49b7c1211ae4f34b3f443c0de35b5c0b7a1eea7b6fab

  • SSDEEP

    192:SE9iRhnN5iCJYBJYqtuYe5YSYy4zIQmPJjEun:SUiRhm1O+zIbPJjEun

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\912d36d1c3dd5f816a5ada6e50eaa90a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2360
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2360 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2104

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    25280565fdde19cb041b3857027fbc9c

    SHA1

    306785ed32da7351e063e68ca20e412beb00cef9

    SHA256

    a7e5605ce8df70200fda5f250134e5b8fd555604e51db2d862337fe412cf60b1

    SHA512

    b987a13405f4a55a3e47fe1e53541bb3b94a0e02d7095ecb8ee715467fe20bf2b4319c0e00e91270c51590fa153fe3777ca8bb3a50dd947987c7e92dd9a62f6f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c9c0a554c7f099c61455e7a9bc7e075f

    SHA1

    63b377d1405dfc2e953425b5834a443eed3ad6b9

    SHA256

    5dd6bc3bbdfc92329574d3895c66961941949bfa7e90812fce13513831942165

    SHA512

    8a45c702aa8f73d5f323131dea3215f497bd84848259be767ca52e9bc96df2f5faf3523027447303774e46782f46a7ef5224c0a164caf6fa840f41a00f732213

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d6adcb1cb9681d669cb9bcd4ed4c2bfb

    SHA1

    a57ef0666024ba6589022c4cd352f5b24cf5c300

    SHA256

    f5230032317d2020533ffaedf1aebe0a2152ac699e9c2f07401d455f3f6fcb9f

    SHA512

    b9aca08e98089a040198d4b8931089f5f20c5ff9bbdab891f66941ac200c97dcb9cf9c24f7c39b45db31ab3826533a93fee440d2946efa62ae687cc13d50d23e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    781dd3d22cad33201d013f84a74ae288

    SHA1

    503d2395709bfdf8c9c1100a4ef40722a55daa61

    SHA256

    20c3b7db3471a0828449146c2755449244c6b7a38bfcd6917bdb48d1d6f3b2fd

    SHA512

    47c2a26fb44bb37eeaaaa140205eb2b7376223636fe9a5fc44698293f3c2db094d650c60b34c5aa833e17e744bc38c13ea7330c6d338f5b7f757423f2b7c333b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    55601db2c2f7df555286fff2d144e66a

    SHA1

    24fbb9eb76bff6be3219fa9f02c5b687c0971960

    SHA256

    a398be7d88d3758a1b945f48f0a97cf891d9e18dd245f052945569d41418a1d0

    SHA512

    2febcf66dd84893ab1150d12d6a6f0bc3dec5eded6e60cc10b7178322259aa83d1dbe034dfd4f3bb6364455aeb0b45c088bbae61d749c3004c1f3634f1b4b388

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1b9fb8f311cce2aac402900bf5c05848

    SHA1

    b6b1f709f47ae57078fa1897b97b223f2ad94096

    SHA256

    fe888c296ef21d6ce62d1687179bf7dd2cc185282ff407885dee31fbfbf2b2e7

    SHA512

    8f074212a4815be8daca852faff014fbdc9e9522d386507d5b08f976bb9b280cc27f39d306ab1dffb5fe4ab4478d59e1a2d1160346e821c40ff0b58a4152bd8f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3f82d7f4582e21c4e4dc060d4157aaa3

    SHA1

    c7b1506d3869dc852721d99fe92b8b01e5a5b2de

    SHA256

    9f2fe62e05dbf60c510bf05a60de56d3624f8e8d5002a55cd121da646d2561ac

    SHA512

    f2c39952cf78eb92746a1e43dde3cd457b62e4cd4979ba1a3d042552bb75aaa07224db4ee27bd08ecddfb706bfe9b5bd10cd7212fae639c11fcd30dbb7cdd1f6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    24922e4dce9614f85cf19792a809224a

    SHA1

    d0f5f458bed025556649c45797ccdab3004c140b

    SHA256

    425084a254181294afca776e6abc3cb6da16ce00535142d21fb4e5a31200dc4f

    SHA512

    8212b1c742dc46c7b4468999a951d024ae556d0cbd938346e6a9056aa9585bbe1ae0366190ffd0b0f983b843ced402bd88cfc3645b42910e143d6452a0e1cc14

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    db30d547058fc1cde2529ef222b2b9a5

    SHA1

    0d24761797df5f08b752671c4a42b023ea9a4f43

    SHA256

    4ac1fa3b3798d5350dbfb3cf43832e9ad67f852a7892bc20b454953a7ca4a4e8

    SHA512

    63b9b9b17d908fb3c87154618547749551ca0f0f7084ffdc726fd5db8a709f39f97a6f95bf1934d685f10626f7b3de1144d93a866207970e026721253cabe8e7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1b18c553c53eff25478977a85d100d68

    SHA1

    8c60169cc9f9143b02a00e5655a7405fd356e875

    SHA256

    91351215288adc81631b3dd42dfb92495bbe5e38723f776e8e5352ce95a99805

    SHA512

    a529981c3aaae00ff08ae7068ef8d07fe50d6dd5de26a0def76589a1c0ecdb949e2399caf98db23279de0cf78357b91a984bd35f669eac183edb85a6726d3507

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    78ee9dd0c57b3e469ac55d9c2381b4db

    SHA1

    a162cf568f6293b3dc304403b95b137b692b9d98

    SHA256

    dc49a6c6fcbb9bf3ee4317a5fb37b982b18321202a06e70c21b533e38da076ac

    SHA512

    a3cd65ece634c850951acb4f993c595ff1680d07c0b9cab7ace0e94f93ba55bdc4ce9f629ddac43bb0b48af71b9a7c9ea4471f067c3badc5bd9f0ca3975e255a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    10ecd004d6f886b2ded104561ac20539

    SHA1

    d9e386d21d0962086755a07e87ae44b84e7117ec

    SHA256

    6ef3db593a93d8d5b714c3ef5ee1c545af28a39fabdd2b1f43c36d6b50309c97

    SHA512

    fbafa5ac744f991e4d4053e7787511accd330018fa7b6429a31df3ae7eb5ad4af58f816d4ad8e7ee2c65e04948ba3bda0f455aa09a55b3f2ce491838d1a2fb91

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    30e203010b294284f48239fb9dbb6143

    SHA1

    e09616c2f92caf1f20c567cd7358338c261428a4

    SHA256

    50836d3cf6df54069011f1dc10130d094a4a92e30aa29b675d118edd1cd10929

    SHA512

    dd30a48f5168202c26e5f8a1f1952d9c2079a94dbc45aa544311a64d65e8c3dfb7c0f8f81025178e926efea3957a66dcdbabc15aeb2b04bef17811dc841e8767

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    80997fb02bd57435634c67b3e5d5fb8b

    SHA1

    258346a2497d2deed0d738f30eb5d1001836cba2

    SHA256

    aeda25e0b7eb39d3eb40e9d733f3bf639e4bc0d3763bf92a9fcfd872505f2b47

    SHA512

    fb94907f39be500edd5b3521e73dea6c9fd5d2a06454c9ef5968973c19802c8d4ef71e1be635ce61d7e68f4c9c60550beb218ae1df292d1974bede59768409f8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    688ae695c42a41f6912985d8d8d9ca36

    SHA1

    8e64b447cd030c9fb06c0d7c2c735ba81117c3d3

    SHA256

    97041a96415559d52a2d254d5ca33518385956186ab90e22e36c8fc719e04532

    SHA512

    343d3261b4752345abb87f4e950ae769ea2e6ab9cc348d71e32d8764884d3399ea459ada37ac933ff3af9df5793a877f32379a2ca95e7f19393898680a49263f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b433cc731cb7f6f06bcb1d3d03d63def

    SHA1

    d6b8ca78d4044a7a5d60d485c34d5d5d3bbbfa53

    SHA256

    c255955b21d215d6ca11efe90b2f8405e2fb0e2062262a203a9d36ffd3e0f35d

    SHA512

    c6f7d50c2c4b6049f20126eb66390b8aa96e538ba5f308609e8d6935685a4c9e67bf70e7324079fd32a8a7da93e6315f67449346314ce99e87e8938af1742b10

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    6e8b501d38261257876d89dd0e0d19d4

    SHA1

    17608c1bfcea09011ea21353b71966e06a5bbd12

    SHA256

    42de546fa6bdf73614792e3d614fb9d3acf51f7430699c56a5f7e25508e08bd8

    SHA512

    32149e11a95277b0fb979e200afc118ff25199c48b1e3ec778b4bdb58cd0836a660355dad3765bc99de7b6791f17e78710987c3f0e2e48a865929aabdcab522f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3fd3fc17ad3dbc11dc109401156e36d7

    SHA1

    b4f4b02dcc75e6ca7fb0c5f24f21ccadd1994d92

    SHA256

    79dfa32a298d0e8aef48d799fc44250523e3d2fd7bdd476b3e544b9fd532f93c

    SHA512

    008dc6dd5ebab4098e8625997b81046361e5408f64c3f77ded9d8efd39c24ec041593a73d467b57c8c295cd79c71d4b691f3f8777d33d2d5f22ee85d17186bac

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9f2505c58f0fbcdf5ead3980ea4f06da

    SHA1

    ba03790866e72d5aeef5dd75d00fa683faba49fb

    SHA256

    943ff3d53a3af4e461e299f5f3499b5982b69d0164d8db4cbbe9b84cd829efbd

    SHA512

    0d695ca7d0a1dc28074a30f828ce271f4bb44bd69738811f351a9b99f60974f6b3320ee84eaef5ec51ddd95dde369dbb487ee0f7d58685649686f896a54cb37d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    68a894554b55e7bf01a2b3390f58a64b

    SHA1

    ce2c69dd80d7e980bc3a60612242762a85b44dad

    SHA256

    11197286c9f47cfe252e2fa529db01cea80dd3b408fb26b6c904d1ff5333849d

    SHA512

    18525655a3d7c7cbdaed6b9a067c68f3f6d4690d59024371f57636586e369c7a424fe718c56b43524491391feec81b34faa7a1bb901a1907d79d5b4592e14905

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    340defc36eb84a7167ac7fafded1ddee

    SHA1

    43c196a699497c0e4bea84f6b35327da9276c1a5

    SHA256

    ea441c98d7ee86848b21d36505b6d2d6e4bd99c7651c43f9770f2dc9696b9c2a

    SHA512

    104f540f29f4c5aa2a48123dc95ec8f5b653ffaa8dbaf59f9559f8203a37dcdd70786ccb0d9f042fa0dcf1f752e432d96b2d07bab8a704e6c0d9df075db14acb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    1af5fd88c7f8f19b087e15ec16a8de3b

    SHA1

    19ab898ad23a612d556417355f7fd60e49b82642

    SHA256

    597c25dccbcba952f5254e712e26a5f5c53b32147a4b4bb16ee0fffa2a15a9bb

    SHA512

    207e27eb9a33fd1867c5d3ece73da5370bb92341b0076d9ae6b22544a771c91b737a5571d5686d77fc0d6a119a585a8472c30c1fa191f88333b13824f478a664

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I819HQXH\f[1].txt

    Filesize

    36KB

    MD5

    9734b698b22f067b766287c894714eb5

    SHA1

    58136cb46f777f0bfae39210f77eab23d913a45b

    SHA256

    8a0ab36a2532943ffa3695c49f8205365695c57304539883ce7992a444fc23ca

    SHA512

    a9ac14ee258cea31a1b45909c83dbe1f4dba9468be931bbbdd97922687184ba5154590fe39953e6e1ba4dcc559911f3bb4a749e28cee3b580ba6748ae4bb479b

  • C:\Users\Admin\AppData\Local\Temp\Cab2666.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar2669.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\Tar2759.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b