Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 08:53

General

  • Target

    91308d2271d2b1352c0c96ca61267341_JaffaCakes118.html

  • Size

    202KB

  • MD5

    91308d2271d2b1352c0c96ca61267341

  • SHA1

    46c11a57a369e54f1d53b2d8426c879a70139e71

  • SHA256

    02adbb77c61825b0b3d47d4b8b81039186f37f187bf399fbadda79cd481578fc

  • SHA512

    43f8998d8bd79464959e629f6dfb27ec76e913347fffbdcaf3c35789a5279cdea508d46b64048eb305debcf20b88f5195054bed79c9531e4d8ceb941dbed50e1

  • SSDEEP

    6144:/VteRAgt8SUla0gQzFT44oBNm+2nnQFRR:NteRAgtZJ0gQzFT44oBNm+2nnQFRR

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\91308d2271d2b1352c0c96ca61267341_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2180
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2180 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2576

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\07CEF2F654E3ED6050FFC9B6EB844250_BACC6CD2B29F18349081C9FD2343833B

    Filesize

    2KB

    MD5

    e179b3bb13b2fa492860072feefe002d

    SHA1

    f08d0846f89079cf5c7496c25c9121a9ec73ec68

    SHA256

    9db668f073799480d1e9b934785cbd0f216c52fc3de394f5213bb51252ecdb3d

    SHA512

    2dc63bb312172115c670da6de7f34d133e6a8298d8130d5162f35ea8ee80ebf2760911839e493861a3f01a870c1c9cc40aba3b7f47189e1a58bb3cae28b5ce3f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B2FAF7692FD9FFBD64EDE317E42334BA_D7393C8F62BDE4D4CB606228BC7A711E

    Filesize

    1KB

    MD5

    5650d042c83759c5c76481780557bfbb

    SHA1

    d4a78d5a8b1f79f851a070f93e8666a6b31fb0c2

    SHA256

    ae5298e9c3360357f8442454a5784ffcb711f9aedc75817ee0e0f22d4cd9821e

    SHA512

    eec59f713ebd2de2f59aed6462424c25c571504d1d4049b75903862478880f622b821450ba2f479957d8990c3e9482b376c7c159003d5d5f2562c76e749629b1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\E0968A1E3A40D2582E7FD463BAEB59CD

    Filesize

    1KB

    MD5

    285ec909c4ab0d2d57f5086b225799aa

    SHA1

    d89e3bd43d5d909b47a18977aa9d5ce36cee184c

    SHA256

    68b9c761219a5b1f0131784474665db61bbdb109e00f05ca9f74244ee5f5f52b

    SHA512

    4cf305b95f94c7a9504c53c7f2dc8068e647a326d95976b7f4d80433b2284506fc5e3bb9a80a4e9a9889540bbf92908dd39ee4eb25f2566fe9ab37b4dc9a7c09

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a167d70e6a381a96abb056f1684997d7

    SHA1

    1499557e3cca6baeb0d88f6486ad1b4537b3563a

    SHA256

    3e56a44ee75c4a5d745a46c722d755c672d6ddf32bc3da816079f9b74bcbe185

    SHA512

    fb8062f4bb6244da99356ed7e836c97b4535cd839844fc512efeeca5b12b5444f1974844e2186538aba0d6f67cc1b7a32a1e361ed082af02382741aad81a62de

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cc457842329d1c5bcd915f063734679d

    SHA1

    7699aedeae0da4d2cd8023461c187f428125e5a1

    SHA256

    1eec3b1d75c2e048fdc352f5d2705458eeda4178d04d9c8ad9cd5e4ba4d7e73d

    SHA512

    e0044f6f1e2548f047b18c3c022db81045762d6925e9465d9ecb2b6fdf2c1c98707fc55dbd2225cf4e80f136ef16d3c51d520d1e645f944044617507fe6499e7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0b59bd565f523a85e4c2bd9ea6e263f0

    SHA1

    ce1f1f2deac0c0aa4aaefe14472b6a55f75f29a0

    SHA256

    fe7f7bc3ef9a9b1d50eef71791189e278df63a7cad30c2ee82e385ecd6caaca0

    SHA512

    450ab0c03becf72b15425c0efccec5f55d4e568c33ba58505091e3d4d4fdbda084132bd7957748b5d298ea7b804fe6b13062f928b71bbe7f6e8c656485832827

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ab7cb4bb575a6dc9d0a8e2168beefdfa

    SHA1

    fed150ad3b2a261adb19a24fff28408918302ce0

    SHA256

    54dd4feb56218fccd14171f29c3af559f0b3bb8dda63bbc170b1a92a99f2d70b

    SHA512

    1f0f70f5ae569b356c9ba2b4cffb807cf566d90367286654b7cc232c15c86445df8601565aa357dabb61934b0dd8b70d0e0e6e23a299e45b667cfcae319931d8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c01bd776f9214be78ac565a68602b9ae

    SHA1

    d37d04539f9c4bdba462ceb241160b348c5c10d2

    SHA256

    b508f86b6f62954a82d809179f825c15358785c225206363fb48370545bc9cb8

    SHA512

    447d2afccebea088f9c1b3d1993e79d75481c42e17812da064f51a69cac0a6e451dade1ce6f68f8bb885eea2b92e773015c60f5447606d7418795b48e73b8f73

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    322f34ce2feea1a85b40e88d7507cce8

    SHA1

    07654a93f1e4a27c4acb80afddc655b2bbd5548e

    SHA256

    7a83dad135e6d7b00c4aafcd37e3f92436b278b06e4f4c7cc9bd2806bbaa8a5a

    SHA512

    0c5f17009814204dfd8c095e035ac873370983ee923572d7705f5d085b0171169cbdd80cb4fe0d7f2827e35618088ef3ed95e1517371338c13168cdea339445d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cdcae01af3002e9ccb5f54bf039c7d13

    SHA1

    5dfa7f7d92bc967cbc61b9355b695676a6fd1ef4

    SHA256

    3b097870b7a0469f80321ac012408caf4f94217f468fd835ff28f53d1606c336

    SHA512

    2dfe2239c37c2dfd0729f24c2f239060bc00a46cda90fc1184e288f29b30b2c0267e8eb8c8b292c75f0009611da4a535bad5b73eee4eab7048bf6a472f894cbe

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d2576d526aea848414026c76f186acc3

    SHA1

    fa91e3de5298807db59db5bfb45266f941067f0d

    SHA256

    48902b46d3b7c32408e19f9255521c3630d08b4b4373b8118bb6449ea626deb0

    SHA512

    4b35ce002ce9479c4c00d1fd3fbd8ffc68ac6bab282fb47ccbefb7eaec10a69595548a87c5d2ca61186f3406eca6e8401d0a329cc7ec1a3409e4f207cd5b4c00

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b3366b78b25d4e874328b22cdc501924

    SHA1

    d1b6a4f1d64183186f8bc4f4e6193fa70459c45c

    SHA256

    7b9f26defb38c06ee10e8c4b7358284bf3a96cf8631c9a692e5656d61d5264b2

    SHA512

    7eaffb74d6454bcdc6949724311f3f066bebed2169c39acf8404d5fb2fed899bed131f7ea8668a73b628a5f150e7e2429679d3d396d437096c0dd556a57e3eca

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    baf99566103c41d21bd9a300fa1828da

    SHA1

    4f08a589d9137ab8ca36cfa2189e1e1f713c44b4

    SHA256

    0dc6ee635d0e3a5a42c5b7620cf934877e2d9bbd1da5ba118c36038531241893

    SHA512

    0c5897d5865a9b57fb60c1e31402be6a98d956fb0c9941dd955e259ce8497b6a5eb3eb1eb068ded9f6b9c74b0ffd5e2ae73dc8fe02bec0ae9a1d1c4469ff5415

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1402253c651238c576bd1bac13cee5b8

    SHA1

    d6f5db84a5cc5adf2896d91bfde55bdd5b2f502d

    SHA256

    c2201e54a4ff3ee28ad7913a57e5c107fa0c8224e9345ee209062fcfa4d2e0f7

    SHA512

    370d1fa5523ce9d5c027f9cbfa8353a9a95cb682277f6e5d7f906b80bd18aac9b00756ffac57e97d2236a6b1004cca32384ce24b7c396311ce26d550375e0b08

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    86a365d0b0bc00ccc818878301783472

    SHA1

    de376e63dae34dc0158a2593139c94f71fa908b2

    SHA256

    7147653314317f16489d6c0eeca8f2eaf7dbfb9d16464bc66a057b2088228515

    SHA512

    0957011ad56f47e3d2189a695ac90c8f1c5e72d72d479b834938d33cc00b5cca2a3d0a12b034d334c9ae7c43b23791c9f239f7de3c93b4c88f97e48abbcbab61

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4c1d97ddf640e60ae83ffc047aa0c49b

    SHA1

    0a3efd8ffc703943236dc3e5d4491819d0dd02b9

    SHA256

    5b6d9978c89ae657a807a4fcdbea784cdd0e047a5e1feeda90bb9b658e3c48f4

    SHA512

    80ca5cada397c37ca6e64e7a967c27a5e9c26311ad2872ea29d0e11d838e82a653c289a21bb1a88e8ad1241142380df2d67bfccafed55bb263bcf79116290b53

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b256695cf2b3092d9a87f9fd80e6a58c

    SHA1

    5616e16e54206c53f22df94afbfd5899bdd987b4

    SHA256

    928f41dcaee5118afdf5f39a9aab6b8d778758cae61c41b3c56b6efd50c9a40a

    SHA512

    b8c73bc6eb54b1c91f36ffd70c03f2a8d518f13d7e15d791edd00f468b73cb32e470b7ebf2fb451b7718c5288e1824e57669c3a1381588ae78f19557d2156ca9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    63dd2b9b34447e796605dc57ad030a91

    SHA1

    eac66535cd9d87b260339a4c9c18107c462d80f1

    SHA256

    231ac779134c36c14c8ccf2c94f9549fc607fe3aad8da7289d29397a042d3480

    SHA512

    1058a1a33186552bcd38cea88ecd957efd3ce62ea4aa5b6c2db010befcf7b1c9a85e57b459232e1fbdf1c7df2860f2abd8075bc00178f747d5fae927d64ddfc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e8b7deacf39e64aed321c699e354ab27

    SHA1

    9d2e9bf2b0cc033374064ef54426a6d35c02eb88

    SHA256

    f1f184b101c297f06eeb8104a31149e13bf01325b1233f327866cfd10ffd5bd1

    SHA512

    33b9ca6ac06247a0a7efc8b4af1657b174619f9f5391fabd6c54dfe47deb16179554f9d692fd45c99dbbbafe29fd40ee1a34196daf48dc73f45abe27c61465cd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    33f8da7aec6d5dda9b256c2a03bf54be

    SHA1

    7bdfc5ef960352ffd22e35b615783c7fa8029db1

    SHA256

    a28cb50593a1d10a32215738660113ff48d89c3b71d509ceea482f03189c57ee

    SHA512

    b40b217da7f96500e79149af0e7a662fa9b24ebff2e024428c83c7021f69ab281a4d1bb4722ab0992ff79c31c13c25fd1cff87fb089640a959b31e8a04693872

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6e058712bec1a73fd32f7da46943517a

    SHA1

    a200adae0715766c3a2b6451c9ca8c53c5eb27ec

    SHA256

    3cde87708696178e905c103c8bfdf398fe3027a5e2e0cc403aa1797c9b6bc694

    SHA512

    4b4fb649dfaa0da6c6cd11994bd1009e0ab6fa696e6070ec43c4d5c9549c251379775db020710ce44f139ccccb94055ac0c03a02e45604c3d9c5a795275b9a2b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    40c121cf21679372dec69ab32b2453de

    SHA1

    5f2c83b3229c5461566f45e0611e49692cd6a558

    SHA256

    47dd52d54450ea4b6d2e0fe9b9c512f54b1d53dfe88e8acda459947f8a46f5b3

    SHA512

    ab8482465d45e8e02627816474ea2797a0bccd19af678e6d1b2f384e0ca26a1a41446825311476df74b134cdedb0ed9a118d73544a2e94a9265aed59c334255c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    66f9f9809e68065afe664ad1934076f6

    SHA1

    ce6dbcdbf3b1ac77d6d3c7b65fe41514a9ec69c9

    SHA256

    0c5381e48d2b55f927a03f4ffb61e20d8a964ff78c82269f7ea715eba8367e57

    SHA512

    bf202c40891a19d4472767d2364881643c43ac605647a2487f2b854346fca4cd941da6ccb00ca1ebe75144e32eba14fc31d7e4e9751f046806ac09b5bd67dbe8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5c3b5b4084cd481e52bab437d59b3e3c

    SHA1

    531ed43cfb15376771e85e827eda13455927864b

    SHA256

    eb93c1618558c3dcc651afdaa1dd484456df5f09bf87ed0f1579886f1b9947b9

    SHA512

    e1994b8cd276c1d313fa2f539994a36409e6fa3c0131281ac2bfb6b37d2d92062ddae4ca0c3d1522d844b365fed0e0d3423cce75f25e8fc80d80f62fa4562ad1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8f031c6fc30ae3af6407bfa4c7c5279f

    SHA1

    67d549f0947e62807fff5b8d7f5dde4a75727068

    SHA256

    3ea70887efeba16917ccf6d5180d67ca5fcaadce46f96c822a96b5fc02ea626f

    SHA512

    144bc5e2da6cb5900569dc7794a3464903129c36813a9d1d3e15b84d8c33b5396567359ba1035b999aa693058aab8e60ff28f498af18dd53f4c2a37afdcf8699

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    da90dd5315d00205326691bd4e9b5fc8

    SHA1

    22ac2ce1c8e5697473bf705fb59b24a107584348

    SHA256

    b5ce4e3eea358ce0aef3be67d680fd7bfa8907f120b68e82a1ce2e5b4285f0b2

    SHA512

    d67c954a5d44a10af9e71491148f9c678446c7f639bb443dfbc2834ff9d5819dff073529f966af4e0fabfe3a33824e65fc33ae93f14ab79da48c41f86f842512

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B2FAF7692FD9FFBD64EDE317E42334BA_D7393C8F62BDE4D4CB606228BC7A711E

    Filesize

    482B

    MD5

    3d00d62649fabda301baabe4dc70e82b

    SHA1

    f7c217db4a1294d883fdc7c9bcf9704cc9b83559

    SHA256

    cdf81b2f133f429c1ea37a280e14acb84ca5d612c26f980cc44c78d6a0d9af0c

    SHA512

    79fcad996d88a35826b8fa7a729de6bc1fb47f82b6a716bbf4be565ffa703cb55458b78edef180f9caee5d94719030085be258d7858283578ffeb85061b1602c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\E0968A1E3A40D2582E7FD463BAEB59CD

    Filesize

    306B

    MD5

    88314a8bdccdb643a09c4d4928ee6382

    SHA1

    5386d5bcd4e47fb34b76cbc1ca07ec04fb36cea9

    SHA256

    6e71f232155c3236709c94bb6460eb3c4c9b038215bee4c63d53c7c5128de69d

    SHA512

    dc8515d7706a5a4a852c8bb7ecb2687be9bce28ee791bb9b564dd741ff96793ba49f04a3a0023ce9c3e1e627368a43a092dd35cfe5d4a9dc855945a7fb70f056

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TTL9DZJ3\9[2].gif

    Filesize

    42B

    MD5

    b4682377ddfbe4e7dabfddb2e543e842

    SHA1

    328e472721a93345801ed5533240eac2d1f8498c

    SHA256

    6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93

    SHA512

    202612457d9042fe853daab3ddcc1f0f960c5ffdbe8462fa435713e4d1d85ff0c3f197daf8dba15bda9f5266d7e1f9ecaeee045cbc156a4892d2f931fe6fa1bb

  • C:\Users\Admin\AppData\Local\Temp\Cab33EC.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar3402.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

  • C:\Users\Admin\AppData\Local\Temp\Tar352D.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b