Analysis

  • max time kernel
    130s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 10:34

General

  • Target

    9176b4dac13d3338aa3668f1dfe32c5f_JaffaCakes118.html

  • Size

    31KB

  • MD5

    9176b4dac13d3338aa3668f1dfe32c5f

  • SHA1

    ca95b5b0d70b3231cd7b60e16a9322229700182d

  • SHA256

    557cd21bd535fb5219972f8b29bb81f4ed346edd53fecb3100f0c60d97f9de7d

  • SHA512

    5203c01a1532f2a6bafed92a5746e7db50558aa1728d00a129853e656f07c4d2d21694fcabee774621875540cbf055905d833a1f695e695afd5f76655a8b6156

  • SSDEEP

    768:PMhT66Wlc4wnRPcQBF9QKKFUWmncpwokhqBRbukSJHy:Eh6lc4w0QjLiTuNy

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\9176b4dac13d3338aa3668f1dfe32c5f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2868
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2868 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2208

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\103621DE9CD5414CC2538780B4B75751

    Filesize

    717B

    MD5

    822467b728b7a66b081c91795373789a

    SHA1

    d8f2f02e1eef62485a9feffd59ce837511749865

    SHA256

    af2343382b88335eea72251ad84949e244ff54b6995063e24459a7216e9576b9

    SHA512

    bacea07d92c32078ca6a0161549b4e18edab745dd44947e5f181d28cc24468e07769d6835816cdfb944fd3d0099bde5e21b48f4966824c5c16c1801712303eb6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\A16C6C16D94F76E0808C087DFC657D99_D727CFA7BCFAF501CEA426110263B756

    Filesize

    472B

    MD5

    495abe1928643ed730ca074a5266a645

    SHA1

    1e29b95486a0eff557b8535c607c2240ede505db

    SHA256

    c4267593e63a51c0e3103d42bfa4667515ce34b8636011959e0aedf58e82cbba

    SHA512

    cb994c8fede0f952460368b3a53e8bcb76b45f92e53f38f93fbf57d91cdda01354b22e172c40e4057ac002a6e443a0a5beaf0fefaf2c7f08b3165a8dc45c5e1b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\103621DE9CD5414CC2538780B4B75751

    Filesize

    192B

    MD5

    9e6cf2fef82657aa35760eaa914b6fe1

    SHA1

    c7e5fcd9f1c1592fcddf463cc47888c8364440e2

    SHA256

    6da50ab8c254db9353707ed64b92433b044ddeea3d861e6a5ff263b8a1518bd0

    SHA512

    c4c88c4fe47fd7c600241b13960e34a3e3387da67d32b29683c5c58089903a5fed7b387eb5737cb706f485e34cf66c4b52d0fb9aa6591efa4c6e5db0ee1395d8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    f6a2bc829831a254e08c2726359ce0c8

    SHA1

    b237b713d55175ae6ecc7a98dc0b9e50ec1daa5d

    SHA256

    b601622cff0b8e49534be7982522997b2bd3828a2a62c5934b84a11c84531821

    SHA512

    b17dc0bffec0709a2c35bfbbb3d5bc03dfc047858e4f0a566e4464638b45c41c807b178dcaa52ab03581ae93879ff62bb47af390bb2a380d485a70f0597a0e88

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    90483b4ec8b8e7e3f088ceb6af0a5c66

    SHA1

    46e57d33070f7fc4f63d5cace7ebcfe8ae1c62db

    SHA256

    d6652942d01f80d0dd75217bd2e3ed65528c83904f4f16250289919198c56e33

    SHA512

    f13500291bbc36224c2838200b067479adb214c2877944f783d6ecd122bfed80ee11d75e75cd1a5df33de0f1f375396c60b089e29f398e86d15286eb96feef53

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c510432c460eebf94b8098e16ece73cc

    SHA1

    01b83a25f2b7a62447400eb2da593c76735ac8cd

    SHA256

    3e11970589731f6408434e8a8bf4472cec1f065e362cb97b80aaca74fa0576ec

    SHA512

    6b99bf419a06badc5330ed39e9155e3cebb752a6b1b6684a5b3ae1715f614a2ccc17e7af51f80c23ae6744c781fdbfbf12b6a7cb69a62026b8559c3cc98228a9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6c2386757904b9b144f3377eb5177675

    SHA1

    e7dd22f746ef57886273ea928b9c55522c532c8b

    SHA256

    d7ff40dee2f3ebb1b9b83aab7f613550388fb8f2975a5a95143b20f77dcf9855

    SHA512

    08973408d4fc151354b3a6c5a3e570990d30014caafc7d842b90d6f5d3ff0d87a57c36ef8d3ddf95ad6503c861d4cffdfd19ab1213835a7583cf1441c0194d24

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f2c26eeaed545f52c40dba761e241acb

    SHA1

    def40133b5b7c16fdb5988b645536560ce8f7344

    SHA256

    fd32076a3631dadde8ebbbe32303aafb4d8b6616c8c8db72a6593f06dbdce160

    SHA512

    83d8f041b5db563e64ae0988a6dce2eee6cfa6593f786d620641cd72ac5192b219a38c2107f877695284f940b089caf9464c503848ecd38c7d35bd62f797f4d3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c502298687a83a5827db936a658e799c

    SHA1

    f80b2a200dfce91eb2fc608dcfcbc85b0abf03a8

    SHA256

    84af6d14a6f10347a1b4b9ac1aa851ed2f1ba37127f74cd106054c074068f5eb

    SHA512

    7d314ff24da90b98e285f900f24b3416ae5037ee97ffd804dd1fb5957ca47afb7ff730ba059f203e6055883154854a0d8134e854bb80144f92189d7cbfe88eb1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a96b09dca768f152de8d4c653164bbef

    SHA1

    d16862f383f207eefa123b94ec35af65630238e9

    SHA256

    384c4fb07b231a8bb128acd140babddcf9776e4f2ce4b7eb7f7261294913bd82

    SHA512

    98924ac6dbca716f3ba53d2257684437daa46cd2991e206dde457946f2ae6cc17ec47c7c1eb4399729b91674a80a9cbec1fa400cfd74e61c32875ab7d482c941

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    baa78cf5d3922fcfc77db56e6769a882

    SHA1

    0d59b8bfbce2de5062f9338af44cdba0bd67d8df

    SHA256

    722d70053edd2580f4ad1183378d2f68fef7d15bc4da5f2a0c582a6a26155ca8

    SHA512

    f07d167f55069963a9eb46e94dd0e996e7cd3d3b151db7bacdf263a17558f494429bb2c20e7374d2d1d239877338036ac7d9289ce1b3a5de112c6f09ab7acbfa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2468dc7c299e606902a04a33d10ab4bb

    SHA1

    0c466b11928149655e87668c15c4ca450a240b46

    SHA256

    65a72572f049043e8808017d85c9224ef2a3457c28b23289776bfdc9377f8416

    SHA512

    930f6b25bce3bc2cbee107408383e100be3ee08f8f6b2b82f93a0b4d0fdc16ff48b0294f7184e8f95a99e2cfa4b2b733db05ccc7767d582de6d87e243f92105b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0d6a15af73e6d0494e758515c23cf632

    SHA1

    627b776e7284c015ea44b53cfc8f5230cc6c1c69

    SHA256

    36a9e81638931404172709203bb75f7ba707daa15333fe700bce74f6c4dd2cf8

    SHA512

    77e56715e408bed50b0234144631e053fc2bd6cd463df9d7ef86542e5323de99e589c6dd6d46e3817fbe24a068071ec36c85c272268a0e79858a0856939d2a6b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    354dd12457e295c3e6c60e79f9dc27d1

    SHA1

    0836958e4306c6f72cce5f7981f5c9bc4c999655

    SHA256

    7bef41500a6dacc5168fec4c293fb1422f4c2dfee6bd22841fd53b7967690c9c

    SHA512

    b03f312dd0906db41eeb63adea6eb0edaa10bbe4a6bdd5249a396b4882e08318e77684f85ad9bfd963e3b3e5b70ad759b43be8d1c189c4b4ed21599414a9343f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9b40b6ceb6ab1ad768a76be1a572cb0e

    SHA1

    9b0ece8958c138b5750601fed1b6317a6dc87a25

    SHA256

    2e4580407b5417e849fb61c89b8ab6628ce21d6eb1fe8e719681b0a34380bb41

    SHA512

    631316806d5b11522f3cd03fe9ce6ad97d52deea74e071f61ded673c1bfd88a1a38ddcde7a2a513d3a55080dd146f441c4d9b35f8611c3024552c75b0e6735fc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3eff7de4d1234d3777adc7af21f7b6ac

    SHA1

    ae101fb735abd7d3320f2b2ce6ab73570f0a7408

    SHA256

    d5bfabb60209b655b89b6533f565763482ff08f6ae2376b25ff9ea9a3016787d

    SHA512

    833f76909271d2e5a7bba09cfabd9274087e96ddb6100b9bf4cf75eda7325472403a60a4f9bafbcf4b177f0a978540e3d8109185df677a3a2517b4f70334d5bd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\A16C6C16D94F76E0808C087DFC657D99_D727CFA7BCFAF501CEA426110263B756

    Filesize

    406B

    MD5

    83a1eb088712f7a8ccf2487370a915af

    SHA1

    226407866914bdaab3b9deee724fe78fb55be515

    SHA256

    98e3308fe35775329ad4f5f8d38af4d991b7a38d2eeb1f0642d63f1052726b84

    SHA512

    748aeee9b765596abf97be2a0b40e097364b6d77e24da0aaf8db4a5315f92ce62eb8718793b6a327a19ac682b1267ef9475c70ab8a0c305bbd8bf0ddedf0b5a8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    fa12cc04044f0a5dbf296696f55f65df

    SHA1

    7435df465c99f28ad8dc8c149caf86518731ae82

    SHA256

    a374044831811f8d7c9917c5bfb6bd3d13ec9299c07ceb77f5ad1b2d2d80ca14

    SHA512

    f280beda952593fd471e76ecc1389102d713959d2868dab9bb39efa568675e87ca701fdfc41cccfe2297ef21135d7ecd669f9fbff16fc3e97fc36f5d56dea7fd

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3NPBB818\api[1].js

    Filesize

    919B

    MD5

    a50e4775c307953e4334514495b187fc

    SHA1

    8f9655b790234bc595dee31d37c5e5c061b9b335

    SHA256

    c07bd7d9283831b2c0139f39c20f251f31bac33db8ba15a2e93f9364f440c0d9

    SHA512

    4643a47d419aa6db45dab5317c87f5194efb4df19b90182fa8421129ddffca94086d2336c00593db4a1aec685c95f2303fc3a242445566f60de5cc2e2c6310c3

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5OCCPTL4\jquery-1.12.4.min[1].js

    Filesize

    94KB

    MD5

    4f252523d4af0b478c810c2547a63e19

    SHA1

    5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb

    SHA256

    668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404

    SHA512

    8c6b0c1fcde829ef5ab02a643959019d4ac30d3a7cc25f9a7640760fefff26d9713b84ab2e825d85b3b2b08150265a10143f82e05975accb10645efa26357479

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\B1014REI\jquery.min[1].js

    Filesize

    87KB

    MD5

    dc5e7f18c8d36ac1d3d4753a87c98d0a

    SHA1

    c8e1c8b386dc5b7a9184c763c88d19a346eb3342

    SHA256

    f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

    SHA512

    6cb4f4426f559c06190df97229c05a436820d21498350ac9f118a5625758435171418a022ed523bae46e668f9f8ea871feab6aff58ad2740b67a30f196d65516

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\B1014REI\jquery.min[2].js

    Filesize

    82KB

    MD5

    e40ec2161fe7993196f23c8a07346306

    SHA1

    afb90752e0a90c24b7f724faca86c5f3d15d1178

    SHA256

    874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4

    SHA512

    5f57cc757fff0e9990a72e78f6373f0a24bce2edf3c4559f0b6fef3cf65edf932c0f3eca5a35511ea11eabc0a412f1c7563282ec76f6fa005cc59504417159eb

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\B1014REI\js[1].js

    Filesize

    267KB

    MD5

    e00bad566cdc162829910f98827adcc8

    SHA1

    f4a4ec19404cf2de9a323ec75c0de61b78a5ad40

    SHA256

    50a69cde390ac75d97cc9f2bb72e9181636332bd9757ba254099ba642fd5ca17

    SHA512

    15daa025564025d93a540336a5bfb1a60206c4527dc9faf1d0476a6cd5015db42f791b74144f6c43ef8d5cd6fe8dd466fdb1ecf34debcd27d7c3c4e0b38a3499

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EDQW9R5V\bootstrap.min[1].css

    Filesize

    118KB

    MD5

    7f89537eaf606bff49f5cc1a7c24dbca

    SHA1

    b0972fdcce82fd583d4c2ccc3f2e3df7404a19d0

    SHA256

    6d92dfc1700fd38cd130ad818e23bc8aef697f815b2ea5face2b5dfad22f2e11

    SHA512

    0e8a7fbd6de23ad6b27ab95802a0a0915af6693af612bc304d83af445529ce5d95842309ca3405d10f538d45c8a3a261b8cff78b4bd512dd9effb4109a71d0ab

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EDQW9R5V\demo[1].htm

    Filesize

    192KB

    MD5

    8217ff7feaced09f82b0ea6132b377b7

    SHA1

    ad54a33078f20b570b4e6f001218bbbfbe98f1b7

    SHA256

    d7dc935d14559291076ab95c78e40129d16cead033950cd83a0a770cea94aa85

    SHA512

    247d0e582cd92e9fd2a8706b9bcb96afdfa4722f82deaeb2d58e63ba08176964174f3e88be2a9b02aac67a17b8b0bbf055d0c4fef073f94a67a59cf32bf5451c

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EDQW9R5V\recaptcha__en[1].js

    Filesize

    522KB

    MD5

    4668e74b2b2a58381399e91a61b6d63d

    SHA1

    89ebf54e996e46f4b1e26f6dcda93bad74fc0a1c

    SHA256

    b0e3acc54460721385d2e472dda7288382f2766a06b38d2e732d034619f9b929

    SHA512

    b2ead3410dea89b658bfb0ce67842569641cd6c29889ecfb223a83637600b82b0d2e55cec26750593359663a22896f5da91d3df9f085c204803cd646a7cabc28

  • C:\Users\Admin\AppData\Local\Temp\Cab191E.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar1A0F.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b