Analysis

  • max time kernel
    142s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 08:53

General

  • Target

    9130eef1f328aec9bccdf37c2f5e9ec3_JaffaCakes118.html

  • Size

    119KB

  • MD5

    9130eef1f328aec9bccdf37c2f5e9ec3

  • SHA1

    e9360e4cbd937595e03434d6bc2da94e83ab4b6c

  • SHA256

    a282e1d5559f9adbc3dd4986024e2bf0e4fba1dc29001ab2d4b07e71624fff0c

  • SHA512

    8624469656a9d8100602c28f6ed526bb6c834a01ef9466cd210eb3d5dfd807dd0966049c93359d5c96b7475b1923691207335f36d2ecda76bf66f11e8f732dac

  • SSDEEP

    3072:rNNhd4q66ClPgM8Tm8bUZG16aduRVtDeGlMpjEpLOmfyb9b53vEzATWoccsLmakk:AG16ah9bGoccsCavT

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\9130eef1f328aec9bccdf37c2f5e9ec3_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1008
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1008 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2424

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    9c0a401426983071193a8f887e298e5b

    SHA1

    871c746bd7efed80971dbb061b441ad6322fa447

    SHA256

    b4817cbcd95fef5274f8ce086e76b9a4944f7f5967caec0be8cb320de5b5dfd3

    SHA512

    0348ab4831cdda3bea2ba97425ba6a8ee8eb1a047e906068745e2e0d01d411d6b8712ae2e906e18da00292c7604dbc2ad33643a961dd4b04f1e0cd0f0887bd9e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6263b97b89f930daba8564574ca1f195

    SHA1

    4c1ac90d0a35b0e14a8ffe91f20cfc47e39bbd40

    SHA256

    6155351dd23ca72a4539992501410bd6ccd07d084658c670df186d17f64b671b

    SHA512

    4c0faa9beb9a9a5b5f6aa7feef7d7ef2578c5aa922b698476a15e98baf92fa277469f00c56f33f525b5cb92b4d76809149d02ddfa841c6e151164224c29b0cf8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dc182f445f272976c5ab9e63439dc904

    SHA1

    8c3ae9b9e1153b72c7a6255c6f1c0e3dd0a5852a

    SHA256

    4f6272a58ff83131f8076e1995b7fdf9215d08ebd1c9f1d88a72153f42515ef0

    SHA512

    46577cd48ec712fe4e80dd27adbd2a099ef82c6346b84641feed4457185b502a4d01c3d5532ce76b766398887a78a383e791e9422a03ef865054a8fd654320f7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bd148c75c9a07218d7bcb68888c51302

    SHA1

    fa2127b7e49204380d141304f7b363ef3686d0aa

    SHA256

    09d4ba9c4a49b910a64d0c882c2e280bb078a84ba85c7d356351b3cb084eeeef

    SHA512

    fe6c67b6e982b4a8e625bcf7d6d034d7027810f5fedba9790fa1b8989c3d161f88a7aa2be3d6399ce740669d9f2a0390f01b8f2b0b42fd023e08f6ed3ea6d077

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7756c616b2774bea8b43e477951a5997

    SHA1

    a617a803015a85968289062b38db5bd2b861071b

    SHA256

    e7680986949a4185575fad4304908203757be4dd37ba5991a806c57ce01e2c66

    SHA512

    0ff8d19035fd4325ceb2cbc3da6fdbfea86e4f33f59cd844ec4a146a80c4a19ea34aed5290e0d7048fe069d6e32d26259fc958cc6e7ce258dfd4c41d10a1fac8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7ba0d1735cb239ba932b982b0e0d9711

    SHA1

    2d94f0955ab34e800e7a8de740fc9991386a3078

    SHA256

    0431280f621e91f99554bd370f1371b56721b453b60ed6b0a3f3199717da8f49

    SHA512

    2084a9e3d16fa88e1c4fd3043644b1971ebd920330e9a46c99e33b79a1087fa2c8d30bc1cfdefc909c24a01b7f605273b19089d5ec4bd9db1690fdea7e12f99e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    06d6ebe2bd70a87c8c8ac7936b19e1c4

    SHA1

    a1258a8dfed9f41fb3d0a0d547dd447c33e4e1d6

    SHA256

    6212e1e79d14fd903168dc8631f2c66084c7922dac7f6b44504b607d38c0942a

    SHA512

    dead1762fa61258afffbed4f10900dc442a1a4439be753e6c21f1cdaa6572a417dac20f7e60ef8a0c10b7ce96a1829178bf5c295d51f6996cec3d2d51d523720

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    89d991df1ccffab7ef0c618388bfa5b2

    SHA1

    6bdd97d563e77ed94998adac9c8864edb9176dfe

    SHA256

    ededdb90fa89258f496fee59c07a78a18ae5ae92d46bde72603bdbf713a88760

    SHA512

    92389be87a9dbea5a8c3be4e9d500f15512ff8ad3fd4d7899e90bd4ebb57e2de91b0a0dd9ac9a86f9186812588e1208dba3e12f2d74c01670b5fd393c1b1df85

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    07924d84ddae1b8178cecfde546822fa

    SHA1

    20a2289b604d058306d339867c70d44b48d43d0c

    SHA256

    35190fbd880cf59f05747c8638065bbc67dead8c941c963642c6db99a90ebb48

    SHA512

    aa73bdebb1328b3a6783fe927abe7ffaf92367fac87e0e7ea3dcc3dd0f36e3959b6a669e3a1a02ab1cac585fac85977d911c696c91f29d96f5dcb02b2654d59e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3d6d9e2ea75fb127c749aef94d26e3cf

    SHA1

    9752897913d0314fa827ec4852fdd097943b737b

    SHA256

    e5d5282ff1f52a89ba217a105ed25a1e98f50570d182dd07e9c9c8192f32ad17

    SHA512

    7e0af1b9161cd27da6a9301b4f65bcd5157160f9a79997b9d4bbef11c1de0fc118c4cee8d0b7fbfea8cf68a713460b13d1ebf78c13c89b5e72deb6de6e2d611a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7648a52277f90bff1a037ba3b3cc9f73

    SHA1

    594647f599c324fd2ac35544e0ba9f50755fb067

    SHA256

    3cd82cdd5566887e3c4f98e87faa1304702c19ecdaca087962fd3a3b6a90389f

    SHA512

    89d16d84f6f234f8821d9baffc4983cf6f396076cb95d9d32afeca3c990c6eaaef9d65e17bd475c94f028fbd1e9673eb8425cd71dca350c83cac294f7786baef

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    03070ba754c747a0b7cb6a3b7e3e39df

    SHA1

    364b3bdb41b145e4d941b2c95a73198da8c2eb62

    SHA256

    fdd6bfe3dd40234df02d892a0b43136886ed8b504d09a293afbc34855494587b

    SHA512

    6b22fe893290a5c2c88c4367a4b84af5b3cb14c5ae68c21f5722d9b13e5157a46aae3f11d77382f2559be3ad6acd5b51aac55b6d3c3b65230b099025f96d982b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aee4ad089a3f64448085a025fe04ed72

    SHA1

    c716344340fe159f7a7c44ff869ffcc0ac4ad94f

    SHA256

    d0355416c971a70a1770f66f1fcabc63363dcc39495373ca1c179d8689fa0ba0

    SHA512

    1fdf18a92eed43e4487611f3249ebd73d21cf47e9c5364609f6149e88e46c63e64c7c3c82f5193eaff8ea2b22805df934803a9ea565bb09dcdd0e9fd17d1ced6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5269abd2346b3d8a1aa2eb1c9fcff860

    SHA1

    01a05e3a735d8fcb3c5a8051f36b06f844e1e2e6

    SHA256

    9bc25c2ec0ff9b7bf6d5d55fcfbf3c38514829d1fc4cdf3e2dc8783a8a7d7f9c

    SHA512

    5acf2f10fd9cedd5d6d87f5e3cde071001bb16d4e023056648f0bda409dd07ec5bd1215b7483eab0f4f80989d1cd29464cbebfaf439427bb346788964a8ea9ab

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    354f6e3eccbf0edbda30974878ff3fa0

    SHA1

    9b334646bf9a6cc5933f061d4ab1d4f5c593905a

    SHA256

    cca5bfa6d327a91d46b6c8d93809f801ef89cdab5ae81b4286de5843d6f50c2b

    SHA512

    947e51a88a77667e0607f93c3fbaa365f380cf4c7b490bf71ef8ac679d05460667c0831cc209f11ceef619fcb1e5cb3a943a7ed10284f58319c1d3e6990a2548

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1e81362ec8e676ad5a5d114d7059a22c

    SHA1

    fd5ff50897d2e795b8a815c6749e74ee788cdb67

    SHA256

    baf8550629555927d0c642b7ae16045dd4669066710ece2b16df4584df33e4d8

    SHA512

    acebb9a6a53810bf4a903a6c4ac26bd1296c899b293670e51d874888c871b9ede55ee4ed3b79fc633fea101134e6ca85cc6804c3787686567536569a1d6c1680

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a8d2a273b374e626fd6f601562edb049

    SHA1

    bc32e4a834755538f5b491b6a896e14203ebde39

    SHA256

    841a22c7ae41701aa50c4b7f36f5dc4ada3809ec12403685da1dd7512c693d0d

    SHA512

    ac1983acc01af30e25a6409441de613ac5b8438556b50787883e40fced44c34608e9f8cead328a2efd97bca44024e71b4085abf0f7dabb8e1a55ba81b5cff8f6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    98d8b31c505dc561175d9be182b99a04

    SHA1

    edb6316f4a1f9a7425eb9c307ff89b2aa3768219

    SHA256

    3d8c8bc510f2befbc5bf445fcf42e5a8a7a7406cbb0cf6a0ccb237006c8477a6

    SHA512

    c5879fa0e06587219bc9f5999558d2944bec52a29352cf8ed220065ab92ea9d39b5dd9d8a8bd1b8d6d03dba62edea3efb1f96f4b7dfda839364c95918c1048b5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f2af76329d8b603cff002f4854ee946c

    SHA1

    c068949d0eebe8eb0c9d378b18f64c2a57f64cdb

    SHA256

    821b48f2745005a32dc1543bac6967482dfc5fe59e38541281085e845b36a35c

    SHA512

    dc69588bafede48e85a0c6cfca2d50b32d12f8432c1d207abdfbba3c029c68c2c6f319b3e40c77e921c50ac2ed1679a53d1a8fbb144e055def31503d4b2ec55a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    12d26a6637369e71eb19963ba8dae948

    SHA1

    a965e569cf28feb0d28333f339bbd94a9ab3f04c

    SHA256

    a2613a2ce85f1b5f3905911ca7752794846350f59aa552d8b9e881ac0bb461ef

    SHA512

    ba51e23d061e1ae7a9fc29b0597ed29cc230de71848875a9efdaa3320a972bbf9cb9fdbcd34485cfd71a1a5c0e9a3b16e4577a5fab72d5c1ae707da81a53e0c2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0617f9100aec1b877236e85ed82abdb2

    SHA1

    1d8bf836863a0fd59174c3e6bc9a8ec75166fccd

    SHA256

    b9abc868ab93598c0b3c8ec45d4678347e3a708f02296dc42e888abe2833fba2

    SHA512

    352abe0b3265c5e62aa5d75224c3b1a9a9029a1204afba07e70ea20becac77b2e8c070cd0d825a19168eaad69bd7857e0cbfcacc8aef5c7d79a918a2c606b7db

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    61bfa3dabc5527a331980253373cf405

    SHA1

    229fd4d3d1ce119a61f3af420b8fc5da82d2db99

    SHA256

    537d5814a9642e285773689cfe59dcc4cb9f187dcfc2592bc7340966861807db

    SHA512

    436a3f9e1637de13302457e0dae62a978c8fe1ad263aceb78404aca329a4324387f852308449e9020d8fa1f2c94aece7967026f8c3b364f742e47e615be5d6fa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bb10bd585677b88bbb7baec6831986a6

    SHA1

    772d916b64f5cb73183c4230bf15cb60d49528bf

    SHA256

    58b346370105ace8ee58961aa8195f64802f18decf2d6b66146b52c8ab47fd3d

    SHA512

    e79f6c7712de2a24546c472ccc0a0b638d4d1c6d90be6a115e759b80def749df24e915dffd5175ba5858db3817d2a01224553829094ced04b2406753c2a03b63

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    aca85d08a7222a90dee0075293cdd2eb

    SHA1

    b9cedbbf3deb1a2c62293774713e6fbda6607152

    SHA256

    786f0b78cc094dd5e6fc9843daa43e89df2a1536293d5eccec8fb835c07c58a9

    SHA512

    403802b4922291d40117181b88f9a8df22c267e45051626c4fea2416100120a32db790fb233d7cfb83563d0a5d010cfaaece94f8dfa80fb8a2570bafd9f40e74

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\528EVS6A\dest[2].htm

    Filesize

    1KB

    MD5

    1a2e5d5a3083b536c62800362e1e4cb9

    SHA1

    24303e15b13a5bcf0bb82e2ba856dbaec8950c57

    SHA256

    f9c414ace2986735e3d8b6f435dba0122a631b88cee5a8f6ae735cf0cf0ebe85

    SHA512

    746eb6696fa1dfbe01816bc8b4c401d0d11e0ca40c5393158a8fe6b261a038ef4b36b77bae39702df1389e657c9c69a7f7281c47e170dfad5af946a1eeca5661

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OV51DDG5\jquery-1.9.1.min[1].htm

    Filesize

    795B

    MD5

    5d8d79c3cb9af023240b1be6f5057aaa

    SHA1

    df22980677b134e83d878893f7c7984e0d78a240

    SHA256

    e8b101a7c7f64aad528cc734513cbeb02243c0af37930dc0f3239749cff184b6

    SHA512

    66f432b622cee0bcc06cbc0f833de1471ea36c295b4cd93eb848d97e69c2252acd2fc8972db51ea35475a424f4d6cb5001325525fb04f71b8704eb24de1c4008

  • C:\Users\Admin\AppData\Local\Temp\Cab782.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar8A1.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b