Analysis

  • max time kernel
    143s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 10:36

General

  • Target

    91783bfbacf9a053d2de4bd2b5962ef2_JaffaCakes118.html

  • Size

    100KB

  • MD5

    91783bfbacf9a053d2de4bd2b5962ef2

  • SHA1

    d4ff492a31ee9e97cf9269944b2397d67543a15d

  • SHA256

    847603c4a04fdeff9f6b61fe81c8aafad31b698452fc99e42d80ab69c17abc18

  • SHA512

    fc91af6aee3e3d0746f19102711fe6ecf9d08990ace0b028f89aae3026c31e36b7571f537826947d80cb0849e9116c5dcd811e7a1189d18990cc71a1ca3ddb62

  • SSDEEP

    768:SNn81xbb9aO4N1CtQydGXE1QqlzcHH23YgQpdKEMdDTC9OIe8ALaV0kyUlKT7d6P:SNnWBb9a71EGtMdUI6vX

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\91783bfbacf9a053d2de4bd2b5962ef2_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2916
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2916 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2304

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1798f54e5b67981710453be2471c75a8

    SHA1

    ebde9a970894914c66c735ac4cbed750ed1d36db

    SHA256

    c8e1b8ff9f38d24c7f71984b29a61acd6fcf76a1e8d5b2508957958addfdcd24

    SHA512

    0dad88c30d10893de18dec9873ea4d0d27d51b305c5ac342daa053cc7f636da9772ac78802c7bc442a905284ede50829a4b5e9933b3fdaca32eaa77acf32a596

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c4e86b0d4262fadadf167537cd5c85eb

    SHA1

    93f73f02dee81c7f42f94e182ad1d1215668eac8

    SHA256

    67864e3ba51f39e78c5ff666e4de15102b4e6995a9f209e47201c864926b85a8

    SHA512

    f1bdf00f2b28774e1644282201013200cded14022285abf2c6a9d86a6256e20f1de91d474d212401fa47dd0ab13850579645f57a97c2b1c42657a3b179afd238

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    07c18bd25fa091e9a27045bba31f966f

    SHA1

    25b541e733b9b93c1b9550b6c91d79f6bef65ceb

    SHA256

    cc954e1aba3202a90c07ef297cea6917486050307f452b7c28954dfb772bab89

    SHA512

    0032c5c41602cc9fd6ec8a0f5d8fa4752cb042bba89cdde54ca67884b0d14065cb3fa75c538fe6e538cf2cace80b704aa6ee2f33cc7ea1fbb7e2e1bc6164dde0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e03eb5ecd5113eb19500912f42117c29

    SHA1

    e19fb3aa76c0f673ce9ac7fea65835df648484ea

    SHA256

    12d2156df5aee43fa4f12d5b72b1fae795e2ebd29a3759c032bea6376a0fe1c4

    SHA512

    af4e076f7b7024554823768f5eb20d71b55b01ed7e155963c0ff57d6c1a3554ef13b3a58f558f795a15e8ce80c34246830c88660b1d4e1d78a43178f490bbb77

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0253416e074481c01b2b57d9fbc5ef1e

    SHA1

    546204ea1f7fabc357acd78f3d0568a40b4ec0ba

    SHA256

    7e79a607cfca1b8b34d110e985dffebcd071d80bcda1b8b29a0766470cae0f90

    SHA512

    a368eac367df87c5234e9b2a7a23dcfd1364b5978a612daf2d7d4ea459bc4f875345e15e6c11d8b0c0afb9dc0ac6a2f2ab9a53beb411a5bf4e006446ee7b0434

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bf48f095d47b3cced6baa45bbf203df7

    SHA1

    b5f37d0deeba4ba34cefdb5d9948767a552dc5c3

    SHA256

    6fa6db274c2014221366c21b5ed376c39d35185a83133c8c6abeb8577c5d951d

    SHA512

    1ee560ad0697d1bb6072a86f8e03e144ad70fa90b696e2522616871fd0203764a60210a8ef5e5f0d56e6dfe575f7340e41beeebe0f86f489573e7d23ae83b66b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    62f74a9a0f80b102e77b18e7175acd2c

    SHA1

    9cca2837343cd29fc052ae787ab9e4382ed2e16e

    SHA256

    0d28ede1839dd0173ec75f54987d9bad64d0336f65b56939060cc783722cf5ea

    SHA512

    070a596f072b46e763bf283e5bdbee43dd0b45ffbc54f0a6e2fba0518335320abf76ef4b71e0e745fcc9ff01acdc5ef2d65d0d577332774404f791e603e96f94

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    97fdb63fb77cd7bacad48a541665f5a4

    SHA1

    737088c6e174b193d239daad6a6a5b8c90fe46f9

    SHA256

    09f15b975bd3a6e32427633a6603bde25ad63eff64e487820090d5c54e8bacd5

    SHA512

    678fda8e969f54a5c53fa2f9862f442bebc46640fce179602d82999c16693ec52747606e3301d70d2f63820440605cbcb3bcd9286f44f8d68357f7c12a602bc7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f69cc970d8eccdc338937742ed5a6a5b

    SHA1

    fe81938d464b98474d3b883b9e61280a2d8d25b0

    SHA256

    f5a4b233706e3bb8939dfd620dfad73b0c5a4892f3b3e225b1e0597fb9af3868

    SHA512

    4540574ca529d538fd359fcaf11f3d270d5c7e144d2f903ea6be02e3e87ea1e92fd5f095ee8b39dc582835376f8a53520d07a9f1841467d6ffe3e2cdfa6485df

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dfcc9c5dc9fc9aaa0dc0bf420d2e2b33

    SHA1

    f4a3aaf33ba4d92f93f85206f65c01a3661ce391

    SHA256

    6330f7804344f40f2a22e0e767b8ef73d47d141f83f69f8f15b971d889510a73

    SHA512

    358ecf69e9af1f03a40a717d52f2092d3054527260e5366272e928957b35ce955ba10591b3e9373a611c696c122808e62c9102261c27a0c4996ab8b0ea446782

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6a31e51182c92b09ee5a82d2a60deae0

    SHA1

    f14b1370d5a6f1fd632a566cf6cf4ba28ad0299c

    SHA256

    b6c76e8cc89d158da1e2dfc928d3a3ee03ecf9a7f4d9370bbcd1bb53780fd984

    SHA512

    7f6bbcee21ac26091164786ebe4de7256b8dec2bfbed68ad8b9b24ea54b51311ad070cc975631468494f1466297621aaa79b8a453f0c705ceedc03bdd1f744b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4dc9f16dd56216bf5d0d3fa8c53ea0c2

    SHA1

    633af4581becab97dea50ca60804e0ec88bc1097

    SHA256

    4f54367da8d73dbda9574a288ef793415241867464b0060a60dea5330baf7f72

    SHA512

    2012c7e26247a044c550405b542cfa87997a1f841860a7dc490be56f31b497d26906f8e7ddc89aa6c08f29bb1b6dd2f664f5700fbc8647ff60e539d0ab44cf17

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    095cef59c494e7a1a0c377284ac800d1

    SHA1

    a2ec8b7e9cc7c46c5a6e972c63f70feeb80f36e9

    SHA256

    36b14f708e013308b516c5248ad39a5df3d4beb4256b7af4ff7e4b73a872fb4e

    SHA512

    a5e760a6761b07e5c3c8a4ffc8fef88bf48bcce0f91427560f3f733ed03b1b4c890809e6c154f40b92fdc52ad5f09c22fa8b5f73155a11543dc492a944020ce4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4169ba936c2fe5db33fad16091bab6e5

    SHA1

    6aec57549f49309507e4c4416242fc92f2a7a200

    SHA256

    4e93af72d85f63899f98b6794211088abcffd6bec31c67b3b22902a79ce23998

    SHA512

    6663a2ad64aabd66af62bcd76cdab5a0dbf294a7d54b936bea8c2a6038188cf583f858b260d73c90fd41e890daf3da94d329b48c8a3b9555dd52e026c5c7e156

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ef4aa526c8fcfa5c56bb8abc02562192

    SHA1

    9c221c90604b6a55809fc40cbd18d87f6a2fd100

    SHA256

    f0ce9221965323a603a885f9a720dce138b3a9a6d5fd8bcbb3e21ae0a47745b9

    SHA512

    c44a3ee0fadfe84c0a0a75551046ddb2347323768b321cf1126f93079cab68e798d16b61185a1dc8c2e4d7a4d8c75587e3088669a788b5146bfdcb6fec9664eb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    941de135223092221bc11bed75529158

    SHA1

    54afa9531de123039e8ddda538fdbf957ea4c3d1

    SHA256

    742c0462b292dd229d8cf2226be22b5e509982808bea3f2cf8c2b11e8e6b43d1

    SHA512

    2af79c81867cdfeaaefa90f68165fe212fdbd260d5e041362bfbb105adb26ad2a87df44d60f60ae9a838f1976aa1c16d3fe9a5dd36c45543aef216cc61344941

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d69ef1b1247179bb0af01d2e034490c3

    SHA1

    84e881eeb89b91ceea6a3aca8c67d9422a91cda7

    SHA256

    bccb9c7d2446e7a8d3ec53950c82a97e60291d7316c76d73a435b06b30355653

    SHA512

    2bbbada0a594e9945a27c423c28c60f06857d9c13d74313c0bebf0807c89dc747b5f3a7d327aa2e96293d5b1a6949ab6a814a804da1273edd3699e4fb68350bf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    63c40b0a24524b3fdea99358879d3c60

    SHA1

    c6f4862c4eebb9041083d08225eebe9342a7edba

    SHA256

    3244e141ce85ccdee82222fd2058dc6892860e3c17ce7ad1b1fa725f19ad0854

    SHA512

    45f26f057bf6d35d8d418a8e1a507138b5cd4dc42b6d0e5f72d901bc4679d7f865df966446a28b49c9bc55a6441e46dab8072d947bf72abb9eb22a3e2ec2a943

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    83db1ce842000b571ab65b5021640525

    SHA1

    7827cd1b86f94c1c311d2c6c681305c70e21218b

    SHA256

    4c16eb69ad00d86e6f364b06f4a70ac8571b2ebaf390c8857e01bc55c5b6c991

    SHA512

    cf36c5e599c380d39b30aaaa5a4c15b6dd95b61e2dd0c90b31c03ff45e40798bdab94f0357cbb9bc0e47d5fc82dc724809788294b2103c5e859fc1dc097327c6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9a51095622ed70fa63246eb91316e27e

    SHA1

    ebcef67d5f8f578cb8f02d3d651993ba495cebca

    SHA256

    6501bd4e370cd960d6ab8ec8e5cacc16234005eda65b1e6fa0b39134068c09d7

    SHA512

    ac660625e074ecf369c5d7dc2ca604e2d17843e34b0e9152be46b56ae349d4668f8cfe334beb25674cf5854c2c9c22009d9ee9f43f527fd7b9f24dc83dfe0a58

  • C:\Users\Admin\AppData\Local\Temp\CabE948.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\TarE94A.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

  • C:\Users\Admin\AppData\Local\Temp\TarE9FC.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b