Analysis

  • max time kernel
    133s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 10:41

General

  • Target

    917a88e27f0e80acb35287d2e175be97_JaffaCakes118.html

  • Size

    413B

  • MD5

    917a88e27f0e80acb35287d2e175be97

  • SHA1

    2d479e0fa904316805037f3dae6db835530f789a

  • SHA256

    59155332da6e02fcb53f2c20507d0ec915c3ae9f3d6ee6d911ee583cca7e4f0c

  • SHA512

    eade60a5cf503c77ba781fe7eab1c3001424c44c940177a85d5c229b5d9a7bb1fe7edbcd21efc1cb8cf17f564487c62fd03462c09def5d09e2844231862d6e27

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\917a88e27f0e80acb35287d2e175be97_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2988
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2988 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2700

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    942b8ffb9d8a99be1af84d510d05f0a4

    SHA1

    d63403d979136045564f9c2f894ab03c3a4eae16

    SHA256

    7274a9f62969d56e1e1015a35f9eeeac0e9a32a0c8716fde5b831260bb512a13

    SHA512

    aa83cacdba4bab20896cdb8b64691de5af80405d9fa19eb279615bd3bf27de752486591343bf6ec81e8c8ebaac5a54f8fb15e958dbcb1d9865d75af8d07d31d4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6282daec24ba084e5eedb98de1bfed57

    SHA1

    b0f3748a2bfd6507114de2506e4d21f5f6c7514e

    SHA256

    c2a681933db30c2cd7ff27c8c64523944a77fa867f3bd80a98bf2326c1c1cd19

    SHA512

    e8d138fc6af68f62eaa41d90f9fa8d84e02bda10ae2ee33ecc517d6bd38515c85e1fabc2457c6a4393f50c65470dc51f6b7cbfa8d8ac40a2b7e19ace070f0946

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ae4e46dc17e3c74b31eef0a00261c2f8

    SHA1

    01e2f751474a25ae13f4a64ec9614daf3aae284f

    SHA256

    3649b94cd028e198f04316687361e11fd6ad5d226cd5b740776b704cc3e3a6ca

    SHA512

    06b1b1cae8956d177a82711defed855d340a4cf2290bdb1ddc8996425f8877fbf4fd38689c74a2670a94828553af0a52bfd1caed30c240520a5e934d940ef858

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    68acf7b78fcb5d5ec9b210c20863d928

    SHA1

    cc02426cc61c89f1fda141616155fa4984765811

    SHA256

    ea36b7e172e996116603dfc6b07411c241d4ba7e6868d6d12ae3e47408fc8216

    SHA512

    9dc16a35b3b6f3ced324e09a1913ae75125f9d83f12c3fec9193b9463683ea2fff3c8d182fa436e12356c23c9fcb4353aaa6d485c2116eb160a77979aa62930e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    70aacd7af05679101cefd9f4f491b3cd

    SHA1

    eea9415cc5a1e6082a608bbda769b5a959207681

    SHA256

    f4bbe835264094fa3a7e5d579dfdecc2ef95a532ba641cba02345a8674b5ba92

    SHA512

    3ed7966068fa0c3c0cf1ff774bd9505b93834ac898eb47550f8477cda27b51f94c17cff21a26aaf2896e55dcd303c919a55d6b4f01bf068cc266dd465acca37f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b65e483b3c7641cc2c882c84b589aa2b

    SHA1

    f3f232ab2f0aad4090c98552fff75002e4f3f60c

    SHA256

    5a6f4406cfa3c342c49239710af10204453ba99174ef3616d942841cc358f08d

    SHA512

    82cbe7146196b6409539a9aadad67c42909569251a8e89f578ef5ee82d5c9606f439fbeaacec351ad8435535a01a5bb2d998142e31b8914079492d1e8d79b235

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    45a908990f0aac4ba68a83be68632876

    SHA1

    f57264190aada8d7d673d73c439886850f41060a

    SHA256

    6dfc5a0728210f56c80979b346f03ebf951b2729cd4af45baf7a7745a3ad719b

    SHA512

    258615388a78b53ba1b17584cc13ca51d5bc3095cd41448d1c0ca76cb5e0524f278b8d02bc8e4210fa3d31b3fcdb7f044cce3960c9f4718ce84deb328c9e7358

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c076fbb87332269e0a9e8d7db96919b4

    SHA1

    43a60f6d91e1780508b07d49ce6fd5f8e3197987

    SHA256

    0d21aab11394de06c353b0d12f4da3c3f5b797c5707bf6a316f5d016d5077605

    SHA512

    ba58958a2ce4b9f5f1ecbc1e846ddea545cd9dad3094224682e096f43165299eae5bd4587fc02c263000deadc4335b4bd65ac923163f9f85639984a7ee5c25f8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4e3d474ce105a781feeb18aa72c3c76a

    SHA1

    f6cefcfdfce057aa3b4af6ea91cc4e0472eb7737

    SHA256

    a299bd9b87bbcb1176e7493e5b24ed35a82842263bda10a4cfda064de906cdd3

    SHA512

    3f487c2ee6155d481c39babba190773d69076e11764506efbe615105d37c70d8c563318842175e5cf5dc9c5e12b72d277753c59cadf116ea0405caefc714054b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    74268b9b45a0187d019107473493483c

    SHA1

    c7f75172225b377efe646e13d3255ff2cebb1570

    SHA256

    d27def8be778b072d35e8dc8a18e6ac8f4048fbabd0ca645f739e09e9f7c2dfc

    SHA512

    8097e29f0be84a39bfcb50bab376f4ec2e801c2bbee8e7c5effda0e8040e5bec97283cc281b40b1c460408e1da1d87fea90d579bcd0dc51fbf7d03fb2bd6c099

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b6d39eeb5127d34079e8bcafa15eea94

    SHA1

    7af1493ec371d960ef343daa1352536831d1406b

    SHA256

    4dd05eed165f1ff7cca275ba784f2c089a00226b25751cbfd89c5429fffc58c3

    SHA512

    c3cdbe4cba312fd0c856012a6261599c992f7cc6b4bba44b3acfdbb506f1ce0c991cb4a5586f444236f0a2ee673be4f1c62bedc86c9b4355202f973bcc10506c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9d34f1d70bd5e7d7c1145c2e64b0dfc4

    SHA1

    d2cda907b006c0f4ee09bafadbad93e86ac8c0d3

    SHA256

    10462f4aab3a913516a1580a7ef1107582858baa6e5eb41cb569ac0befa4b762

    SHA512

    c380ef0a6fc52635e7e2c98c393ed09b7b01084103fda8d58768eff93cddebeafd74a969216030ba04e04f08a32f90339c2d4718284edd36637b26473ab27f5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f12890620ce618d50bf3fb8deb18bb20

    SHA1

    f1b850b5963e939d8c6e8f16a79fe41834efc4b2

    SHA256

    9ab065d32a1c54267f4382833c7089071254d438c2ddfdfe263c6cbac45caed9

    SHA512

    885f419ba77182ee276ed686e664ddfe74028b4e01782ed3bb6877c5d70eeb48a885b4f9656a734218a6ff084de5a44b85a00320b65e2a7d88476ce0be3df9ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c10af07f2c6544214b74f27b97d680d1

    SHA1

    0b194ca28e5a2ec9261d464b69df1256dfadb05c

    SHA256

    b10291b6adfeb1e6b223accbd50ee0ba3909441fe9ed1e3ec1971b9368a844e9

    SHA512

    be2eb2608b96b2327079b37eb3d93b365102061823a772fedaf81672f5a5fff22739660131488513582975a6d8a2b7bd141b250f1e4cba3cdb57e979658fc298

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5dd27382ee500b9fbeebc45090384878

    SHA1

    e478df252b2e4186840b5189c2a99af4a01eddd0

    SHA256

    3ef45d2918e87316a2e3029d77b95ff3704410a43d30b894656f389abf976792

    SHA512

    7b114ccb4ff0b902ac2f0fb9f8343634dcd7e26f5d97da7ef574d17973af2c85cd3bc2ea252e311eade3131dda60b99a5eefea661bc52ef8f12e2c3e4fe1e695

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2bb9d72ce89679305a8d13bb331c78fc

    SHA1

    354b702ca482fcadb1636dc27ff396b679713cbd

    SHA256

    5732f2ffb1f22fba8c3eea3d514e80d4117608bec0bf9953cfcb1efaa8ec20c4

    SHA512

    a24b73e08b4ff3c1c0db8c5a9e480e77860de15eb468f733a64d323b4c5368d028b003fe5b163429f575847227d6f4deff924c6cfa25525c2d0be7225861fe6a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2e87cee3aba48e0b2a14fc1e13033d0a

    SHA1

    28b825781d707e0c1d867839f45d1434b45eb057

    SHA256

    6157fefbee4a0d1c5e5f1e251ff0db8faf48bb92fba8bd5c341519ab6c51cc9b

    SHA512

    bc3f402291238aad0a1d44f8507fc8a2fb9fd207386173110cf2d9c06a3846edabc83b5cb8b9b5a7667e018d7b2fd7f3e093243760386e187073854d80554f1a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    07579a84f14a1bf28a0f12339110fb9b

    SHA1

    bc56d34bd85fdb3513639a240835d83bc87a9ac9

    SHA256

    d18043c8f613b5ca4f864f6f0f819c6234206abf7f4d1bde0d8444f023a106d5

    SHA512

    7f00d8a1fbb7d889ab0bac267ad72cfa642990a686a14d27d417b1d4f74450e3dbb8d0d6b1aeaffc528287d64a10c7937b1d02e1a293eb39548c05c1e8946ffc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    76dd933d7bcf7f4522f237ed76883cf9

    SHA1

    49384307c3b162c7816638bec11979a56d757475

    SHA256

    aac2eceb4771de3ac057602aa3f2a7efa4ecf596e48ae4a656c6820e27dc10f8

    SHA512

    0da112b25b546829209436e91a3b336985fc278dec7502f6f468708fd11115c2d9cb6ad1be3f0b17f1f7e187e5780fb624d3f0eb6c5df7221112cc81c166353a

  • C:\Users\Admin\AppData\Local\Temp\Cab2C60.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Cab2CDF.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar2C61.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

  • C:\Users\Admin\AppData\Local\Temp\Tar2D04.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b