Analysis

  • max time kernel
    136s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 08:50

General

  • Target

    912e48c31df36763637d73f52626528b_JaffaCakes118.html

  • Size

    63KB

  • MD5

    912e48c31df36763637d73f52626528b

  • SHA1

    d7cbde95fe578eda87bdd0a714e4bfac371e582d

  • SHA256

    4c40b7cd9b8eb9c91dce1b72d9aecc38d5ceebf2dc3c6565707bb32a1ea5c628

  • SHA512

    8958314178f55d112ca9172f3f8c410699dfb2f98c3de8e8d2534bbd28ca650e00b8514709e7c3f47a13b3913ace175777150ecee798fcc2f401fc4036ed1c4c

  • SSDEEP

    768:Ji5gcMiz3sI2PDDZf0glue9xuE0oTykyCZkoTnMdtbBnfBgN8/oi2c8QFVGys//b:JZxrvJTTFec0tbrgaMc7NndC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\912e48c31df36763637d73f52626528b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1420
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1420 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2916

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a585332d61f9046732cb1c108503b932

    SHA1

    cd3f64e31bf4309b6b57c0e1d129f18d84f9b35e

    SHA256

    d0af94b1a3d5b8ba5c90cfc700aefdc33413baf7f5bd694279a215c466451c61

    SHA512

    6c861204279252837a0c7afc9756a76494aaccd10c19020778f7a36cc308bffe03e54178a1e4c8af5c0ad48a6b130ee5d284d92f071cf312b4f42bcc4f9f83e3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bb2efae17f5853146c460e9297b76128

    SHA1

    4b4823afb0909fd378c1c25c075ff2b419467bbc

    SHA256

    b9e75b6d3010c62e89c81d8351c737ca16111c608058453432fe5f53d7e35fed

    SHA512

    2c9921193fe631ce15b943662a18d7a15db81e3bbb1a0ac421012a23ddb4e5c48b9d3dee5a9f66441ee33db6935dedd2a9531ba312921038c4ef92cd344b6861

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d4ae04a443aba51b8b39f775d7a79451

    SHA1

    cbee32a58fbd95ad3d7e1cff3cc8b2eae1028126

    SHA256

    21e92147601f33b889b4cebf64e6048ef937f79b07c9d81e0ea9cac9a38d72e5

    SHA512

    10f1e8218d7d770cfe6aa6afd9944d0553b79f1d20fc3f6174ac80a8bf27563bb55cd4449e2577972b9781a325557d0515a3d80e65a17f7f4c5556fc3ec06278

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f3bc940192cc341353c4c66fdb07156b

    SHA1

    8ed920b09b4a8056a9bd2031790acb0382db0fa8

    SHA256

    d7ed1193055597cc219449b0a8cdd09216227b080accf4133c044a3057b1212d

    SHA512

    e6ac95735f89d2148b25f48a9e73912b4becc7410966e01dd399e48b4dddb2c5e00b14e8c7dd14eb89b471c3ab11d72a1a7c30415386b08ed1d6016c09feb331

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    44be46a1066dc96c561b403ecd460232

    SHA1

    4af9b62290595da06b1eedb7fc907a498ad37c78

    SHA256

    a1a220e965af924ceb1d2a26880a3eb9559e94c288dac8fce6c0ee2ac92114c2

    SHA512

    0546495a843614393351a3cec05c8f58eb92e51421dd87c2b05c1faa49a70c28b09d54778031cefa4cdf3ca522f60def12d29b0ccb4270b38df7dce4ad89b936

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a052ba6b16b9d3da2677065d7069cffc

    SHA1

    84a031997542ef6ef07f6a4f424ecdb9a69ce555

    SHA256

    fcafff6fcb89ed9ca792c18d707ac4ac511690f134f65e5c98147e7622b5a35b

    SHA512

    a89482c40584b53d71fc65651a4ff82177dfc7f21d8de80ca3c0b50ab79a093c573c7db187a058c557320235d6769f7c2303458d5c99ec45e76e650f0cd12216

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7b38a1c366904d36a68120f9362b44d4

    SHA1

    4fa1ad93d4fe7be50932a755016a2b33e601f9c6

    SHA256

    a15e0e988ceed659368f1ecb2d67d131494335657baa21e9ae8d048c44104205

    SHA512

    43179dfeb17429227fdf21fc34aa5d2c1b9f543ed29efff87a62a6a048dd6aee68454056b9b284e4b8af46869ba60dcc06400760af49e507c0f3d47ac312c5f4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7706cb7272542729383c88e49a323f49

    SHA1

    eb802fd3a540a4972083165e9f3d3fd97e9c60d9

    SHA256

    41c30ab425b9552e59232b5844a47f0c6ff7ab0b267d0486ed9c94876455bb7d

    SHA512

    e8a37a8ad8c7c983ed1a745d1c3c441a7ad71f55f934fc9cf25c0fa67368508d47349f486d24093b26af8752f25996ebaf3da2cbc78e5409f6479cd50ff6b34c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    da8d7467492ba7797426690bade37f89

    SHA1

    1d2896e97aa0dd3c7baf9fbc58514dcf5f00c057

    SHA256

    1268f862bf3ca3bdabcc24f81f0cd7916c84c059a2aec2772f4f4036c0701593

    SHA512

    fdebcc4059c0082be6fc9c482c63e6732883784b4004d3a979693f3b62083e20639575bffe7e5a9790014a2f54910ca658c4aafa66f91cac7667e157ed1627ae

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    51676739d4b7e2ea9ae52f573722e32e

    SHA1

    e1fe8387886dea88fd39822481ac8792443a72c1

    SHA256

    30acf56eff1f0274e10341896717481950f5f464db29d2dddd1bb6b567b92eb8

    SHA512

    e37ce5d63f7527da9fdcae1007815aba6b0a1a81537e815fbc6f174f9a00e56bcbd44d6249646c445aab30b938df8a906c2ce895cecefd7b340b1ecee1a2ce04

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a2bbfc2cc59de19cb9cd14c179b2285a

    SHA1

    0bf461df40596440cec9a92e68be39c2e5ae0097

    SHA256

    dcd203a8e2273f70adf632423cc89c0d83dd49c830bdc24999879509c79e2a78

    SHA512

    73e6cd2dd645c2084172b7cee0899fffb9919aceddaadafbca8931d1ad4704b865fd9f15564541f30449f19aa92cedc4c1e4599ce0a94463ed953ce891e46e9f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    941d5fe368966dd43877771eef45a68a

    SHA1

    9abf369773f347ccd5c0a66524e42cf5f1b53f7d

    SHA256

    9dc212046b54b8e7d903e42c8f5c98266a0ee3f5b17a6932d493a38af6757ded

    SHA512

    b9f95dc8b6ea941a4a51e897734ea031a5ba422da40bb7887a43817daeb4b45778abc000404d037a150b4c619035ec3787ac0405e6b24690f694d5d7abdbd1fe

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6fd0c548dd355538ce49f84a313182ad

    SHA1

    1f13253a1393c71dd9ca962c0b77124bfb8b7cc9

    SHA256

    bd74152565e54a1a079b5892408e8ca8556a4e11f5c1f8d1f728953436a38eed

    SHA512

    9aaedce144f744e93468bc4880bed4b99c79e337fb2b4293711c34f218a1f797383b0cf598f8c2b64ba40c9fb30bdb8fa7171fbcaa3fbcfdd4f62f0dacedf8c1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    46740844a41fcd19c77f87c66d5bb4be

    SHA1

    2d85dfa54fed3fcecc0950b0f4a736237993b513

    SHA256

    d4d509fa545c169cf8f9e85b0ef54c26bff4a0a02b074c2e9f48b36067641915

    SHA512

    210df2f58d7925adf8f7a1ab7c6d18210e1f25427eb64041ac01f598c88e5d34f886fbf353123b1b1789be72621656658284761a03fa5932716c77a70e66fbb4

  • C:\Users\Admin\AppData\Local\Temp\Cab3B5D.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar3C5F.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b