Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 08:52

General

  • Target

    912f439c180a56d0ede2ca5d7be4b651_JaffaCakes118.html

  • Size

    249KB

  • MD5

    912f439c180a56d0ede2ca5d7be4b651

  • SHA1

    288d64f43b7cafba39a8e480c8bd509c445bb7ff

  • SHA256

    bbd7c167d532381e219f67a4691d9e81f9890acfb30c544ba6d686fbda52fe75

  • SHA512

    24b1357c24676b3a23edf5a8241a6bdad34b6a58f6d8979e50f3497095e8c7e127cf23b49423d5264181ac9d494b08c54c946c798112eff5b6966b76c27c6ddf

  • SSDEEP

    3072:SFyfkMY+BES09JXAnyrZalI+YhyfkMY+BES09JXAnyrZalI+Ywsn:SwsMYod+X3oI+YksMYod+X3oI+Ywsn

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\912f439c180a56d0ede2ca5d7be4b651_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2252
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2252 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2612

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3217AAECE20956500C22BDB70A7D005F

    Filesize

    471B

    MD5

    6004b8a5190a559cd88b7b8df207bd98

    SHA1

    ae6913b524ad28cdb9309c3cd2117938c4ee5f29

    SHA256

    c346959662979fe5d8f8ff504cc326c8a5f26833519a0be0af9ab69aba209c43

    SHA512

    2d8071c64062692b7acff3dd91813a947910a39b95783d8986a317f85929af44099b846ebf06f8afa59ec6f50567699c0017e1dc4ee7fb0dacf509d4c100fced

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B398B80134F72209547439DB21AB308D_D14B79B440CDC26D7D21C81855E2C04D

    Filesize

    471B

    MD5

    7935ca4f61bb1977c52ce5ef12ec48b7

    SHA1

    17dcd4cfa72c37911cc769b83e0840ff92c28a33

    SHA256

    d4ce4954a157a5a9130f4cb29efca3259571fc127b7f7c3a130f818c70f114b2

    SHA512

    6c19e652fe41d0f99903a42239c3e838b20bac91f5dd9f665d9cf431e61e863813cb1b1ff0d2c754058cc85ca9cd5877eb9e7f6294d741615cc435dcb149a20c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3217AAECE20956500C22BDB70A7D005F

    Filesize

    400B

    MD5

    3445b22403c57aa8a1331ae305c25dba

    SHA1

    03e238e9e6b5233738c7a3b513aded7f2156fcfe

    SHA256

    b2ae53f5ad154c6c0f80ebce5252b23ab0a6802e941b5211ae130943cc8c11df

    SHA512

    77a61134f818a8124fecba483a1e2081e4e267e2e4c483490343d860e3ce46e31833903ebcef42a685d03a66761f22d345b4b4fc6ce062ce97981b140a711936

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7bc083c651325c27451f2c8bcbc6e2ca

    SHA1

    8c4945a82f09a7c3a4d28a3120ff070a48148289

    SHA256

    9a0e3083a55098d4238f7b43ca8531e45a885d2e08904241fba913c63adbaa52

    SHA512

    b332a3f9f9625dcc9e320bda6c8aa05342268a9b8350c7cd59fdb2c085d7f20fb2071e35bd61d75d43b6990d3bd7949f64f3aef447523cde3010ffd300e81bde

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2c0b20ca83c22ec353334b30226362d8

    SHA1

    7bea7ef84337bfeec2540d9fce5a430cbdb963a5

    SHA256

    8c972b9270951b9cdbb8a60a1a0abba90fef4e8323cd8c6a6810b3b6c0d3ac37

    SHA512

    be5fe81bba78d844eaf5a62597583a4a2074e3204efb99be38338684634cdd36997ca9fdec7a589f3df5c92e1041e5ddf05de8bcf70e9d88d000879b447b2838

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e9c60fa355e245672d9b12ddb5902e55

    SHA1

    bb60e625d52bdfac914dcd1d5964d43186c6de7a

    SHA256

    965df62b4be2b26d0d04d1d2b757fcc1cc826b8676219ba99bb84ed166ffa3e4

    SHA512

    8ec5e1c9c260b58e999deba7c3b02ff4766c4f15d1e8baa8abe457974ad719b72d918aaae87786b74d31cad28e497c0ea7b13ccf377bb3794e4ddb54a243e572

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    46d98b351c62f41ee68d8cfc78387d94

    SHA1

    0b10c83ceabcfb847bb2f1021ea4094867349c71

    SHA256

    cd9b051843c80e50d7961afecaebdae17c61824d0ade58619148f69140371542

    SHA512

    ec3887e14f21432422c9715f4c139e77cd982a194d324aca6ad6aca20904a83f48d4ef793b9a027d5cfe86e899b3f6a5ff7e09eccf00ecd05f2005d77c2cadfe

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    739642b04f7daf88657c34bab24df684

    SHA1

    a8499d57968209bd972b16bd82d005348db5046e

    SHA256

    41fbdff1cd75b815f8b32f235a234bef414ec3d7f5b730d6dd032adf343a5681

    SHA512

    80d564f7fe10b6e33501a3b9630b01b02b9933f713866b0a9faa7ebd2337ce7b992aea22a675bf51a54004b213ea92f5c0481fed2c0108e398a8dbb4ed5795cb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8c3f8a88abd333b611fb78a0c0d3f3ba

    SHA1

    b768454301be33ca6ec9566729f908a2188e73d7

    SHA256

    7aea3fc95cf05b2568d95e6c023f919e49eddc90450a58e831ef098f2ff6fa64

    SHA512

    804f23334e76c4d4869ac535c34225de77ae8851a1b37ed0fb6199561939bdc839dc5fd47e50021faea59eebd1cf9f946f337f4236d81184918fb2182c4d2e35

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8477b1555f647bfad27e0b7f3381e141

    SHA1

    ca1e5332207cdb7a8d52c20724e9c0ff3d081dc3

    SHA256

    ff6edd72d01a256cda0bd1afb2dd6c627898e7c2e52356133dbf17adca3c0e99

    SHA512

    06a03b46525cc134b49ca0110409ec540d759ec6b189cd16890afb26bff95a2c8934180e749a3b5986dfe3533175748ca816a073e7acea78266047b600c8c6bd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a107097fc5fd903ef144739ba44f3076

    SHA1

    9703c655fe0ebe2c02b0b8b8b2888bc495e41624

    SHA256

    959a7f4df680ef326d6cae908a24d8b6bdf5edc8f8f273910916b5966a556d7a

    SHA512

    711d57eca93c8840471afb3a35c3d3e01b0d0b91fe3fb0dd212fa8122407558ef34e7e15d4c10f975a3ee5282a1555cadba6f56fac218f122732675b1446c2e6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c2698b27b6555ba7796565464e19d5af

    SHA1

    0774bd546827ff19d9f8287cd575d7e1fc8fe5a1

    SHA256

    ebfacb31f30a43dc43b0023b93fa1c80864285415dacf63dcc5e1628df85f962

    SHA512

    3cc3af5de2990fbbe1c6c2867896f4cb73ff83373c9470b72a7e3dfd6acd501f0b26bb03624b8466dbae505455b44cee993d70caedb213bb56d38e7d5dca8c7a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    67e63c5b5243e0b411159ac621e7616d

    SHA1

    f06666b3f88f16eaef7e6eb9a2dbe95aca17e9fa

    SHA256

    14c1cd59b6b09c2876cc785369b901067fb76e82598a6e265b69ed42d347cc6d

    SHA512

    8375ee8c7b5e341415a04a4bea5f389a57f84ba5b6edbd79d64ba8ef4484450af5eb3940756335014ec25f655e5da0fea3a178ef601a73625d434120205c390b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c6c6d49ee6f8346b94c3158b709e962e

    SHA1

    41ae5c1e23086305cf89ddf8b70681accd3e80d0

    SHA256

    b897b04d5c56ce777d2acb1dd93b53bb8baab9032e8f3a0226d7ad6d4c9cf95c

    SHA512

    6671ffa3266ce606ed2d79db2f84cfcc00449d66020e8f8f80798d05963ad4293a10418840a6d3aff0dbc3421d864e336b57c16c9a169dad2d60cced13f51306

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    746bfeb489dbfae7fb99b4ffe34fddc9

    SHA1

    8004ae4818635e3a622964e24151ee997d23ace2

    SHA256

    b6a4401ab8d2a20ebe626d70c4d52f3e0aec8f755e1dbc3cbbb39501b26d6cec

    SHA512

    81adbfccc785a6c9cb5a75fe3e1a4658b7586e35b99d6a57d4635f120b1e5209384f166d58b84d7c9938b6bb96fe7ae8673e6d33bbf99edf44ed8651edd13855

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2f5c9acbb5a6fc855c6173af8c17686c

    SHA1

    f5ead0a86b95d7765d0e8e18f4fd775cd08d8fb5

    SHA256

    30923b8cb7df08cfb44dc1f634c9f0dc2e5f597b17d72f857cd5ec80f9520eb3

    SHA512

    3dd17870c2e44b559d17ddd8af39378118f8e0b5ee1e3244eadfcbce4922a4ad567a4526c974e0cb17c465eb21d51748bc7b4237577b753e6197df2cdcc1c073

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    65b07a4fcac1c8c92891077e01dc7f9d

    SHA1

    4fd27d13dcd289917687f5bab5c33060085e1c50

    SHA256

    ac6f33ebc83893c2030200fe5ba03b656ed668593798699caa22a841160025b5

    SHA512

    af16b228dd67fce83889510140185f2cace5ef54a6faaf12327dabdace248e9f17d01758786219b80e95bb7873b4f28906c19ac02052476f894342c73c45f4ae

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aa9f9b9e039843a82fc25853932feaec

    SHA1

    ee47952a1170dea44093d777ef8c7fbfe1963669

    SHA256

    fb25888f2f6abea88a90f0baeb285b126cee56a942dec389fbd602646f44b590

    SHA512

    37b5dcf39650e0edbec68d94bcb167e6e72d3b50cfb13c75e9dad497c19cd735463765a8c0384983594d4cce5eddb56835fc91b9f97d216c9b6814b7f698e28d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B398B80134F72209547439DB21AB308D_D14B79B440CDC26D7D21C81855E2C04D

    Filesize

    404B

    MD5

    e2c417dbc51f4278789531c57673b4bf

    SHA1

    b37a2aa0cd44dae6aec108acbae59ebdabc95767

    SHA256

    f21ef62fd6fc2449c08d6eee64faee0c63be708bfb2ff8027d431e366627e0d5

    SHA512

    e3417172b1edd3e70ee59c449fca910ca3e0469b2ec8a0275247ecac3dbd6b2e67509b783c126402bd32e5f6c3108cf52f9876d3d268026ae42e073f78acdcb5

  • C:\Users\Admin\AppData\Local\Temp\Cab389F.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar38A1.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

  • C:\Users\Admin\AppData\Local\Temp\Tar3C7E.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b