Analysis

  • max time kernel
    138s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 08:49

General

  • Target

    912d6e59252b2c6ee9b38191ba0db3fd_JaffaCakes118.html

  • Size

    44KB

  • MD5

    912d6e59252b2c6ee9b38191ba0db3fd

  • SHA1

    cc7bfbaa78e8432877818ad14b779d5ad75cd6b6

  • SHA256

    e1ced84c75c4b9f36026cb3ab3fb00cc9565c7a98a884ba40d15ddbe3febc171

  • SHA512

    e95c383a8cf417a87b4978613e8c46ed51950172924773b2d1f1dfc2626327e85e30a469d575f19101d4d79f3950bb1b0aa19bfae4f49bb184d3b6f042f01f97

  • SSDEEP

    768:oyGgRGG4j8Jbd4UzGKo51C+8DMONgC2zNFy/ZhTmngwCiCcCZC+CdCaCcCXRauvI:oyGgRGG4jrUzGKo51C+8DMONgC2zNFyI

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\912d6e59252b2c6ee9b38191ba0db3fd_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1992
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1992 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2160

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d6e5a874e1ea4ca56d57920347760554

    SHA1

    9c6b52f5d31a2c654ace08dd7f73806f697ff133

    SHA256

    0a2debc8c2b48d518c41f6172b63a2a4f96c9db33ab54dcb211a6e5efe11ccff

    SHA512

    7a28ba70c5066b5638ea08c05819e9f472efecf99a195c9cbcbd8dc6a8ea19cddcf35268640101b931a5d8bd8ba8b26b90d73613034a2434f65ae5dda758b653

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b44b6874bef71f170b940305c688b6a5

    SHA1

    fda8f5885064291974c227cb77c1196d099d7e91

    SHA256

    b721d81ee6eef020f726d06bf55a9597e6f08b50b997b79b7ac9ee04d134fd69

    SHA512

    4715210b16862adc24c8c7748731f115c68abcf25af66325f3f26532c1b5845750a0d9f3e4badf094a3a5258ee1df49c83e3e822167688f37781d36f4ce9c3a1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f160216f2e31fd18935374c35565ee20

    SHA1

    02729543e42294eb4da5796e439df0ddd3b63366

    SHA256

    5ad8e2b1c67c2172a034917e763b73c0325b0c8584f41595a5ff77ab83501285

    SHA512

    18db0f22166ce31e37fb42589745527e77a36cdea04714ba3e6577d799ab1cd6cd9cc90292d0f383a4ea2b0c2435422248762bcabdb178615f3026f4691ec2f4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d98b843ae342467468e1e1f9d0e6f3cf

    SHA1

    2004d8b8b7378f16ccdf8d2657112560e142a0cd

    SHA256

    5b45de9841826969c478027af85de8f7b2b9c1e00dca6b336af690e4f1a936b1

    SHA512

    054544d421be140a43bd622f239e24be06c5cefc1c245d37b25499c01752f1d9a2c07110908ecb5035a3da03cdd9dd06a3e367a36219d2b1b01d042dea189565

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0361c1f4eecd9a6f1ecca5a97b3b2534

    SHA1

    00a4f8eea80766e3e8e4d00bcf3fd025332f9ef7

    SHA256

    0e0bf4ac5752e54670fd28d1592b3dcb293495681b2c1fcb3b4f60b951473bc0

    SHA512

    c98815114d789cf90956cbf90a924ba9b7a3500527be768dff071001426807f3d54676dc716c6d51e92206b71e017217769cd4adc8fb72862f3412b467803243

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0db0e1c226731e80a6737caa42cdb1b9

    SHA1

    06b7f4486be3c24648bea924aed0b138e072c9b0

    SHA256

    784c0a2495ae1bfb6c213f9ed61e31ca4e60997cee43eba1fd51f6c176431306

    SHA512

    1d9a1b6c8caba4944af556e57619feae6cc1dd5713d8c73c68ce5ba3b0b43935be53aa9b33391b3183f79c667b8a7a46517225fc5a1194eec5f0ee26a94bf465

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    48bfef56c3206b2e985be94ec4f2a12b

    SHA1

    bb9cf39f3adf10b263a570dd4b0aedfc465fd9c0

    SHA256

    ed8c7701b365ed73c9852333e3ae362b2d0f0ed8eae7dbd6e0a30337a2b84c1e

    SHA512

    ba346e8f12875257cfb06d81916f9d5297a92efaca6a5c7b7dd58bfa00862208d25a028ec357bb13f0502e20637295b6c5b22aa44d59647d328445353a7cb0c7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    578737ff07a1402f157d311bcad2162e

    SHA1

    05c5300fd498fd57b1d32f978b134d5c50747062

    SHA256

    ce1efdcba73d409b8b0c078d17d70c4d2b8de0ebb0bb1347d46c512b79ffc073

    SHA512

    67af4d508ade0373639aa9aa0b72d0d1b132155713b24ee12e5df29700434bafde140233a0ab3d95ea26b63c6c10a3a117103fc22b5da529d40164c47bb6e065

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ea17b6c17c5943daaf224a22869cafc1

    SHA1

    71912743becabbe13f7ea949da4f57bb3f50cc33

    SHA256

    bb7bb361c51a753974b46f48a8d28fdb5915d7ee66a505a0a714833f5e9292f4

    SHA512

    ad707cb54b3d3269533418eb5bb644ccac32da1e832a8215d7e0a3a9ba0e8c71b12aa0e5bc380f1b82478b8ccc0901247a8df29a53a50d9b84a70333acf00697

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    150f83211a0656a0fb7706aed5a02a3d

    SHA1

    51acd555e8ca8d9c4954848be8af117a729f9c10

    SHA256

    beac6a432ed1fb35610abbc127596f4def53ef5f8fc91e8e87c0b265f32cbd4d

    SHA512

    a6fa234ff0d3df9461399930857279b6b9486d00b4deca81bd004f1f4148e25945d2606fcd6b45d3316c5580170c427ad883c4698cbaa35b6a4c92c1c0a41cc7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2f5eb567a055b35114249e07e27c009a

    SHA1

    9dc81139025052125201ae4ced548d0ad5613d1e

    SHA256

    318a51ba43b6c7b7d3f52a6ab1be98192aeaa98729575609ba5d411066a1a773

    SHA512

    dea7ae16b93806084fb9c7d04c6e2c3e65375e47c835e0f7fbe12ffa9fa234695732da7501e6b7406177c0483065095b4579138bcdb1a73dafbc73b4a81eba22

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e4efb0bc607783c86f0c35552a81bf19

    SHA1

    ad6f8e9b2fd0e20ee82cb967e3f56136017cdfc8

    SHA256

    7a5a58f7287adb1e6a2ca14f969b109dd98325913b775a0b503ac5fdd0883e64

    SHA512

    2a7dff0174b156c2eb15405abdd6ae32cd44e7fb4b58df01b4ceaaaecf33e70549bf4839a8eac0b69f88a7565259c8d8a15f87c8387ac13450ed06fe1543e3dd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b147df2c0659046d96cd23bde90a1a92

    SHA1

    80a6a33989daec8781f303575542e32a63fd194b

    SHA256

    ff04eb7acb5a7fb4aa78e265d6e1fd3a7c8f78bbd4577b268271c9e0e8dd3ce5

    SHA512

    3074396e769b4729c24077d56891ba80ae4a800f97431d57fa234c62e4f37a0df1dc54915db8dff7ed7865e2c478a32987e7defab71796442110c63a2fdd639b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b1d18fa54085f0a72549b841a887dc03

    SHA1

    852e5e64edc78014c9173869e474f975ce2b3ebd

    SHA256

    48da58df2470d89a7648191be2297247f61860e34abfcf7dd14e8bde0d42bdfb

    SHA512

    b43832d6ce1d583bfa4122db7d5753cd2fd7128ef37a6065a2d6a5fa1eea3b2edb220f7ddee824940bdab8ce694af9c08f3118d0c9f6f59c9defd556f443b482

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7a4636d2873aae40699a0d377019d817

    SHA1

    f2eae653e03c432e22f195f03fe0661b3c160a06

    SHA256

    0375a8a2fbe2064b4de4b0feb3ea84d3380402a02238d6391577e4193807f6fb

    SHA512

    b396bff7277752d772e375a32e46136435e25f12525eccc81f9b59eee2ffc08f65fd345fc5168a629bd52b5510209b81f96e445f4d45ea18d8c36f3894d8ed20

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d551dd683792a6a2e0a1e4667378a9d1

    SHA1

    1d8859d0cc598e56265a7f6ad5876fdf58ea1ab2

    SHA256

    06b6b3019ffe7662ece618a8b209d976b4f306863533400e0ad8bdd3a30b57c8

    SHA512

    62427b43bc6b1a90953ca139112e3e8af51541d264e54e88402ae1655261df03f6304a7ce718729025c36e210982219c85cf28f5054155e010f0426766a9262c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    779ca33b3b8d1206a91d2b2260c9b509

    SHA1

    6be0d7655214402a6922f31b4a97a35dd07e88fd

    SHA256

    b469246911d9061bae053566ac0619d2f74c1b734de9a515cacf193b2e6d58f8

    SHA512

    40057dbd61683108c79a3b5123e7a7c5de7ee0bd9614ec7cc707042430750abeacb637d37d2f14cc8a3b82e779ac4dbdfc7db698627a1eab37d8ea4320a4ac2b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ba6252d34cf0f84c8e21f7eee3b51a9d

    SHA1

    0f021a3e9a306ee4178c410397142d01353a116a

    SHA256

    1b239391f3ea4f262aee0102708b21e1bb210b4895c88bfa04220d5e849f3b60

    SHA512

    b1fa7980cdb4474322ad5688d5598f9d5e9f6baa747841018a7a0a361007c2777dfb541559ec6fd68ff6cd420aa5262f01b13bfbfabe1b18a9866654def9d700

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    163df2c01657f739b975b5f4f6ae7dad

    SHA1

    c5e6a9d1a2b38e6005295c771749a9bc5710d9a3

    SHA256

    cbc18bb6eb16f4ca3069c20756dc5c10a1196a552e9a89cb78ad2c759bb34bce

    SHA512

    94fe2dd0f8084357aa32682b0a2c46a13bb9197bb969e4d55748c2e39492a5ca83129e74c1623c722a071d7ad7212e68ba6b586f126c61ecdbbccd1458d4ab95

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    80f33d80eb32a1179a30017868d6dc99

    SHA1

    f47a5e95aabc51f3cb842626916ebbcfe51b88e3

    SHA256

    953e6531f116bace388516b96240375e0c56053f4edd1f3628aef2e325820077

    SHA512

    57a1d72bc330b18da64d9ece46e35114d7790fa098a35ffd0fca05bdebd4d22fd60f4ab8eca931dc2e83b42ee3fb03e6580806d4def662413835bb093f2da07c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f60c126444ec44bcc37af681093ae5a6

    SHA1

    7e8578692a46fffe815d60b1ce459c50a01b8843

    SHA256

    62b1702751b09dbe6b2f402b01477deb97825e3c1745c776643c38eac70c4ff8

    SHA512

    85122a9dac6be05103bd4dec21af88516d6c35914b52378f2bf24fbc677979ac567593dea13a851e8c3ec9ffca64d5f0635acd390e6640beffdf37214c018a6d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d1137265f887d5e9ad23e6744a830716

    SHA1

    81b326bb23eb576662d11dcfae1022bcd34581b2

    SHA256

    2044003d2a18fe2ae9d40483cb601394ba66482234716c19b17941708487d005

    SHA512

    9567c25755f2fd94884f2cd69ccadf11453363ca25652806e7713d65d2fa13029cc79584e20f8d2069503931b007bee9224cef37d2f082a5648e4a9ecb31c216

  • C:\Users\Admin\AppData\Local\Temp\Cab46A3.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar4757.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b