Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 08:52

General

  • Target

    912f3f0eef4796771ffe373cf4a587f1_JaffaCakes118.html

  • Size

    31KB

  • MD5

    912f3f0eef4796771ffe373cf4a587f1

  • SHA1

    a2b961f8ebcf4654b9f0ff8225d30983fde47bda

  • SHA256

    62e37e335de7fa71255413ef26215ef860fc77bda372f1d8b8957db041d7f774

  • SHA512

    f8710f40ef5646e8730dcd074dfb2019d4c21aebc7c032edfdb7ad24674f84b4781777e865aa4acb796f01310ff2c77aa79da8e39ebbf1748d1e96165df97d29

  • SSDEEP

    768:REwN4kjOvjAqbVCRq+1dYvgQ2dST4WlP0fjjUCLs:RzN4kjOvj7CRr2N0vDs

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\912f3f0eef4796771ffe373cf4a587f1_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1860
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1860 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2548

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    66b632a811bd4f20d75b465bfe935d3c

    SHA1

    39f7637ec6242c565a8fd293a8adf4f31ca5a5ac

    SHA256

    b482419bdde07a8b6cdac1f673c29553b0a74a17e45254cbdbf0feecd636b260

    SHA512

    f2dfe19f2d2fc63fdd285cc77201102fd60d35ea025cf4a75f6c14ec47e0bc3feca04fa4f76b46c302683ce2ae7095dc8f571ad454fafcb5332340f7c6f7bd03

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    19d8e2f76d16c73fd221c0e2b3bb62f2

    SHA1

    8be0aa34665d8bf61e3c8c3d81ebb0e71a1aa6d1

    SHA256

    17374502c8692a43f0d9011ae2e113aa9365e4ddd3659d4b6ce6f3414fc23389

    SHA512

    7044989009e31c260143908026d81caf5dd643fc15688de170b118ddfcaf26512e43392745e89cc2cd239e232b37f9b47602dc9710f617983a330305f3ce3bd7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    10fa96efc4119304c4a58e3aa9e1a576

    SHA1

    d11a983898a5b04586db57a421155be14068eaa8

    SHA256

    6dbe5266489fbb0e46d2eff3befad58fe4b1c8bce769f7df164a274cb302a8ca

    SHA512

    a1a6ff07bf320a0057eb77fbf6f81ebdda21c2fa180d939670e5c6946702d7f5b87e78eadb54ede973f8c3b473a7944f665e48affd1d1c27fb727e7de6386e78

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ea4699c3d4deff1e7b467df6344d5015

    SHA1

    e1dceb149a892bf1a408ea77a0165c939756932f

    SHA256

    9cf7c7bc120bbf8cd5c8a48eb1be36d35f29be4d64c61084403c3ea4cc470b09

    SHA512

    407603a7954bb5f558a3b5a3b8ba9337cfa6b2a6cf9063f600f6c13bc3d1285c23e51f56509cfaf29ae790e3d10bd320c88662f22557e40bde119b40f1d80384

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    506efd08b9da774d0b240bae6233bee1

    SHA1

    d58d80c103c91ae94719d9cb83b69305c2a084a8

    SHA256

    73bdf27935daad90a8cfb7393ff3a39282de91a5166790d6629ed649c69a8320

    SHA512

    62eae1a45c7576e1492af3e802d15c32f94dc05d61add509f988dc1a709ae0841f0352b0b2227292d1a2685bd943bdfe9a017c4a1d8f12c7bfbc35cd4bcb3262

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2051547cc03f8975ffbe01511744ebee

    SHA1

    d25334b81e15fc904d4b56949ed69b8a12c28244

    SHA256

    02561a9c2de85a89d15b7436538d805cee7acd710beeaa237aa7071b8106ab6c

    SHA512

    9fdf774d3db93f3348bae9f2476d09b948dca0a54e2692498c5fa65795c69312f44c6c92246f71b72cff0ae59845303340bc7069a2263d0afd4066452365e06b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aa63304521888f10bb85d5d403e128c1

    SHA1

    a6ef5e1b5ac13f7f000696fe2ae4ec5df86a9170

    SHA256

    c7a2dd1a315c5406ef03ea658efb89a0ab55bbcb270780bfc36f862dd7d2e53e

    SHA512

    90e9b2bf563c1f0b2b9b99c2c8e8fe22ed4cf04305810bbb8a70e07fbed7a2bb8c6b063a9ac6dc0c6ffc68e8031880bf6c0835255685aedd93614f86eff66a61

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    09b893cec9f4829dd63c77f2ea0e90ae

    SHA1

    b5a2bc4114538469f06352d16c1b5beedf1949da

    SHA256

    772d020c5885c2fb73240ea12dee225baf350e2c9e9292bba6a226bf88121c7a

    SHA512

    1ba410f79d0595609a62512bfb6128871510dcd53f55d815805a7f1aa44064a3b769ab6d8c891275b019faeb90f4898cce637637c4afa74f9f84550b5bf325c1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e35e9491e01090ec2143210d0fea03db

    SHA1

    983fd65e56c2549c830cc17c14e7e69b217d6700

    SHA256

    70ece48b3279935067c6acbc52bdc8924d53a1e753c6c5e69289f06491a22e95

    SHA512

    9919d37867179a98edac7f174464ce71a87998b2510c3039d191789f879a27478d655aeda90144d129b047661cb6285cce2b1e37f9d61e926f16065e016409e6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    83acad2b6b2755f128b75b2938216d96

    SHA1

    31842777a2832258b9834cc4b6d59de5ed454535

    SHA256

    a7dc8d4ce18b3d7b88f6407dcfba26e4b3bb6cddc9ec5a5312c503f44fa6af86

    SHA512

    dc986a5ddd89561ad3584030a9086aa229925b3dd5a4c2e32e0c55e876002f4584acbc73171cbeac8480320817a84886010607e37308d0a91721c0d4645a1387

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4bf70cebccd1bfd5833b6a2ee1026f69

    SHA1

    d184ae14cbc3274da613780a19b17e8b5662a281

    SHA256

    1fb7417c30936c511229dfed281d6697278348141519779c19698323b240ed19

    SHA512

    6f31930b7ddf527cfbcc95fa4ce1ebbc7cf4f0d3500965b800a68a4d92bfa98b4c7c0407c72f159680287be2b74bffac2bcf59974ea86df5306b775cc069b12e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    feb3c694e4517a32cf05ec691c65445a

    SHA1

    ddfb79b831847eca901675538425d9a4cd298f48

    SHA256

    a09df6858dd28057cec5373bff798fc7dff4a178f8f4fdee396aa1331ffc92fe

    SHA512

    9998b62c5f009f3b3014346228907ce780df6297765d94a66bc8edee213fb4b47a983a2a5e1293d6d9d4b4b21c2442e94bba3cbefa1846ac8e45b2796dc4dcf6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    06e85cd3a899095490631150e3520772

    SHA1

    94e53a19288f3500227d172fd1d99b5f856fa808

    SHA256

    5d2b55a6a2ce82138a3de55db8d46b05ea470d311e11e3e3bde16a04ddf84831

    SHA512

    4f607b01cd638b5d9142bc2272e299f738f88760d0a59063049fab820950ddb5e798b7dc192abf039b93a4dc1ae6db0c106577de1e4f9507768a043f78d72ad5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2903522bc3927f76b80fca5e0b4df98e

    SHA1

    cbaba19fb261e70bdc06ff0dc81fbb4edefb171e

    SHA256

    e8d0794f33b1ea3574bf0d0841eefef4d0295506cddc20b776764eb170790280

    SHA512

    c40418a46ecceef57cdadd201b5c094cfe8228967716daa8d799a8ec3d663b51b78969a68c458bafe7a43c6e22349bb5fcc6f596eb57fd770bef360ae1c2546b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f744602a7ff8127f2ed57e47e3f00557

    SHA1

    e7afd2bb3d60052badd084e979195bb0ef6f6368

    SHA256

    a180db4073d8f12f527ecc30a30cbfe17ac457107dfb52f72bc37c34adf9d000

    SHA512

    81a8eef997b6916307fbdd1599fc14a591483446917787ead75b5e711b9ce2a14c0e7cfdc297cc411c583bcff76104c4e5850634ccb30953fa362ba20dd57a1b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3880a6cd7644cc90e443fcd58bf0c290

    SHA1

    f97c24313631d6191029d39bab5c04a86b190a10

    SHA256

    8b6d22e765ffd35e2946740d8972ff06abd2c5a252cfcedbd8e15550e0448d72

    SHA512

    eec35727d3d80a173cbe297c38e59c61f3767e08c135f6494cbaa8335fe4057319420d0519821b9274a606c423f5a1f185e9642ef2fe7640791685c668f06350

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a635983791c8613401d3126b49ab8e90

    SHA1

    ada5d5cf76b25420fe05de53a77da2884aaa8eb4

    SHA256

    890f2e67fafc20b9c9a5cc23df5eb02bba649b7614a52a81ca59b111dfa0ad09

    SHA512

    15fbe098d2a2385f0239a9830c5d0cc6faf13e885a47fc31d498ff8a6d81436dd1112509349fa76b4ce11886630d3d682f5ab7fb03cdab9d326dc30af3113c4e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e3b4ab8174154f31d64e66293831925b

    SHA1

    22c3e178d883bd266543844501cd92b299b6e050

    SHA256

    8b4a21225a4d8680b69edc3c9d60d8f832e1dcc1a27b534cf09c1a1757b88e7c

    SHA512

    e58768ea43bb74b5bde3e13e258948778c99e948595072a335aa98331dc616276a578e53107951987f16f429f3a8a878ea7c0b210e74a9183119224834a678af

  • C:\Users\Admin\AppData\Local\Temp\Cab1D53.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar1E64.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b