Analysis

  • max time kernel
    135s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 10:40

General

  • Target

    9179feeb641a6ba52b9c2e8e1f0e960f_JaffaCakes118.html

  • Size

    78KB

  • MD5

    9179feeb641a6ba52b9c2e8e1f0e960f

  • SHA1

    f0636b41a7a3ebdc3d05e8471cbb58705088b7e1

  • SHA256

    caaeff1b5f5d569be8a736f3f2d238019606e4ff33e634913513e3a71e9868da

  • SHA512

    961129cb03d3d6d110fe65fd82b9fd293914b6d46b6896e444998d131ca38f84bcba2a734675650fb7145820a2c073c4babcdbf9019e7a95af90a5ac0377dbeb

  • SSDEEP

    1536:vRFSzQMYeIEeaPmxHaj0ghNxgefN3MU39DMglNJfXwJ0:Z94+xHaIgeefR9Dt+J0

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\9179feeb641a6ba52b9c2e8e1f0e960f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2820
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2820 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2816

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    c0aa6ea63fd440516d746a2bcde59808

    SHA1

    193c2cc0f1ebf1232efac073d65668e09b84861e

    SHA256

    2515d4a9b71d47af7b476c3942d8f121c91d94af5fb7c9ac686294c42654f159

    SHA512

    9b0ffd185c87d0e05d1cc8bb19489ab485ac8692c64b9a702d3ca8b800e450e84692c611ec50104f2c4398c75b5961448248e1ce865e0f10e48d6ff21e9e2540

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    460b5b69c82551d550b1242933cdd743

    SHA1

    cced92149541ae92c5f0137b2f5f0f9a792ceb98

    SHA256

    7f8abe876b7811d63707c42d4e4289e2974bd9cd36df624ee6de9155b00a34fe

    SHA512

    430395754ccea91b969d0a940d7e79d2880e4e4458651b093d2d126c94f4528f3d161735cec4d4bbe9666946070e3cda659103a2f9c8eaf72c174a8f771d1310

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e7cbc4bd60da03db42b73a48c0c00574

    SHA1

    4a2e215c6dd6d79985c3d44ea2d62268995b5768

    SHA256

    1e785c293102845b3cc4cffa98cead92928c67cf5cbf315eadedcb4514d22462

    SHA512

    414b43feeb1dcf397d1d6e44669a3caaf8ae63e8f48d900dd73878d1ca6ba1181d94aa0cd7f79d4730bc583a0fbcc267cb502299b109651076e7c44be559c9f4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c76a0e4c3d36e1c35e97655d52879042

    SHA1

    938d3c93b716a319efffd1d767b67efa50076600

    SHA256

    b0a023133cfa51cb36fc1791d8ad57974397784ee4c36ef12c9fc278f9dcf2b6

    SHA512

    bd61115a4ff16deaa61e3701e68fc451f351d31fed9eed7c835ee95e5ef97f7fc18573df703796ae40dfd442486ca76030a47ac7bace30e5040e20ca2c26dedb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    055ed1edcb3a04a1f8a99288d2001797

    SHA1

    344df1dbae206be4c7a4bbd1e6c8f97333eea7f1

    SHA256

    48080a079c8b2230f0de08956d79bebeb9401ed60e140a679e5d46e6406c9fab

    SHA512

    3b98c7b1ab9345362e6b54f704ac0827708d7992310874bdefd43e08441cc727c8a5b026775728782204aba341cc9b97327c242a4ea437622d81503cc701dce2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    408bb77856608109fdae98839bb16388

    SHA1

    4aa820bd872b4456bbd24c911617fd0b02393f86

    SHA256

    caba1d53979f918b274ecf8a737532ab88511774ac8e3964fcd05f46a6d8ca62

    SHA512

    c9ce8736ad4e36fff4dd28b6493796e26681ef4140425c22ddddd084e2441fd4ef94f8adb89fe50c0d25fb040f834e5b842b94eed4acc86956dab7b3c9cbed6e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    93e08dc6ba641a16e2d12a845b23bcd4

    SHA1

    12f9e675d3b18d29e4dc4eb82e1bca07d4c62de1

    SHA256

    4e739f70340168ef2b6d1a0535bc15a06473b9d38713a5a1edcf9f0d963b8c39

    SHA512

    f0096bd2b88714409c4ff7cbefd5a1eaa173d14ce9e41b560cf676a1ec2b1ee9014fc7621795a4e0d3d55e20d6660f321be4d1f38d9ced42084370fb61e8a78f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6a3ca4473fe193b20d6201b808a11e09

    SHA1

    64a556a70eecd55c73e983d9862781efb5282bf3

    SHA256

    0fad7f5cf0d001292d487f20010c56f3b6ed306ddca17d48167e3ea1a5e5b297

    SHA512

    7e312caf099a667f084a1a1215c973ea8a1f70ea3bed7018abcee9e2b4fd230a9907945994b541df72111945c499f4a1cf817517eed7faa31f970f7ecc2e8269

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9de4861aa7f22deb7bb0d70b255550e1

    SHA1

    7c21eff0269e57e1ae01009351ca1cae8798b95d

    SHA256

    d73602222558f261ab3de38859da710ec97d6c8b88711de944a0dd8e6d2877c0

    SHA512

    5c517a5defc9a2b284fbb7a5e3c6cf3251a8ca87a1c0fac866c9f9e762b22ac5f73711115a7c71c10ceea696a1cefcb468468623df5e3367165ac3d02f2ee873

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ef6f520ffa6982e71837d84f2cfbb5d4

    SHA1

    40ab3bcead5fb93cc1fb02c082766aaa73ab71fe

    SHA256

    1340531ba585c5da878d55e66049522cb8c3393699ca3d565d25d1c69955263a

    SHA512

    26418ed9cf3cea08fe1e24170d199d8feb71fa11d0f85a4e9f0b44613b354b723bdb2b917c7d8ea4b2b44cd8bf2075a3a4e00db1ffeb4475d17f40b071dfbb00

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9c21a8f7a6f0312ec38f0a66d713aab9

    SHA1

    5328309fde86752e7c1efd84cecdb97e72dadf46

    SHA256

    fd308eccc189bd367a1823458529220683ff92e5ee584c316e7d2852ab25a116

    SHA512

    738269592c5ce2336c22456436c4f652d04bc957699c03267d11f582b6c56960433c86a59400e997a3c916f8896ed451fc47312202155e58ef8f8b4ca6571206

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    83be846426e5f76d6176fd761ea27c9f

    SHA1

    8195d04aa9389a744cf65b9bfa6646df86faae56

    SHA256

    e1c39ec2df1d4be49f70d1b3bb94f97518cd9b50babc7f8a9dcfac721198cfe0

    SHA512

    24a37f1216376fbba95a5d91d18a74e14fc37f6ffffe862e82aca4b12699b662b9c7ee5eecbef1ca33fd58780f2857395031fb77f7508f8f609eef9d54ed65b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7efac9a2fbbc2aceb43e73995d80250d

    SHA1

    55e159bea42ea80fc6b47ff1e897299618885d64

    SHA256

    5b305395b6f0291fe82c32fa75ba2d45ca6f89b16e7b4df35df16fbc98ce23b9

    SHA512

    06d16500746b459ca40b34a3a12f6ad75ea2e879aa848cc4ad8fba350f9fee9bc9d4f37996ff4ab38561797740daa2a6f2357c9e1695b073591f0358ffd93155

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    192465034739392327644467e927d54c

    SHA1

    2426a04e5384cb25a5a04f12530f99125fbceffd

    SHA256

    73bae6fbc2d3e78da5c327af062dce1fa4a47d0e285141cc2d2556d4a3695df7

    SHA512

    05765d7d451d500c1e1e626a7643f3fd66eac86f12e065dd87faa39004ec3f2ff1d8e4e19f242267164c90a8fdb2db815cc120f0945e4777a2dc01e6ed24b98e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0ffc53d88c084d50007fd27d7a4a819c

    SHA1

    60fe44d996d6cdd52df9b20a7404ef0579d67a28

    SHA256

    637a51bcf4bcb027b11ddddd599c381e7eaf443cd169f5d47452c5b9dc04ca69

    SHA512

    8848c26814e0bc9f6788cea823720365b236a864c886e39692121aa909c4b8ce2c9d2417010029c4ac0645a240f178c9ec09eba11061a334550e21d84b26bf76

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c92ddee1b16101cf982530298184d0f4

    SHA1

    549b6e1bfb368e16ee3962944e48bacac477c344

    SHA256

    b7b27cd24f53595d57c16df391230f6e207c3e0be214da38bf0737fc276de05e

    SHA512

    9230d76f53a7fae81cd217977c050de8d62c1cd362504396ebfc702c185e897b8ea6a56f22875a9e1f31fe1e1dd029965f58bb4a30a39d754d77f46af1d1a564

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    372ef7727d086746327f8891a052228a

    SHA1

    1d4164bdc4d8921276fc46b5394f9cba15a1aff6

    SHA256

    08f02ae886aa54e4188ed2343f4720f8e6f522c21586294b5735435c3a64b5e5

    SHA512

    efac25c86524798d3955e18216e665fd0d3343fbd81f1c17ac2b511706aa44487adc574322cee089ed2d33c55427414993cea5064ebbd1b7ccfb5ae60421ea33

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    277c096afbd8e1560ab57272acd18676

    SHA1

    686e1eba90e05ff3f1e48fb2dcc5d9ec734d7dca

    SHA256

    327e4d658afb934ae86da8010afc4042d9c8c3d755bd74862d2c63e215bfb2e2

    SHA512

    dc8795f143b818068ec3d0b5919c302f7f3a6b09ca2be717018acb92fbab7fef8a04d1ad7891bae3c4be38a5a0b8a358e1d4a2c6a83d29316a4d1fc3ab00caad

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    967b226a21f742617c7a750883b67270

    SHA1

    9b3e29bb75a253ed25575ba45c884477f0ec0ad1

    SHA256

    0b6f4dbe95184670d10796241401e694e29e52ab0fdaa42820eb451e8bc3a6f0

    SHA512

    833dbcf6fe698bd11949de7a500a8cbc6d25cb854915b30678c739a0b7680f68ea4c50160b4ee5e6ddf276149cac9ef0759dbcf0cda03224915980fa4dea31f7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    900371bb6e56589e647fb51f20c28c88

    SHA1

    469df99733c62dff0827bf8bfac1f0d78afd1876

    SHA256

    934e293b4ae39a3b1bb928da959bed2adfc86d6d57cc71bf1c2d70b951d7995f

    SHA512

    597964c4c0699f699bfffb408aaff1e7fabebcefcfc801c6ef787e436ddb036a05ba2db3d8838c4b4639a9feed79787baa1279adb3b350c49d9367e0863a9602

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2af75a24261becc7202bb8c9d26785a8

    SHA1

    6a05e3fbad7f42a2fd6ec734864ad05c29f9d4b0

    SHA256

    e6156ff8c833e5535cd483b4fccc4b3a178fdd695bbb81c0a2af0e4bd3158d55

    SHA512

    6e1efcf0d21eccad38caef75d6d40ee29f0385012e2727636a34be9a16525ebd244160950a04a9e9f56b587742744f8d3741945fe0ca283afb708d7c2174fe4d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a72db095d5d8aa803cf58249d98fbdd1

    SHA1

    534316d1621b609030a146b00afc56b536af5514

    SHA256

    c656c75b53d3007edde51eb89d3ede54fe2e5e827c21c37b05c2472847860cf3

    SHA512

    06ff9a4598f9b2232eb154cf408da5d1ea0e334cb41f9713c804006bf1a840164017d127cc103fc129d3a7ac9edf72ee536e39caa698db2f19e3ebe5645ff3d3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    5b0ccfd02fa69c5b0ac527d9456c7e49

    SHA1

    60a53a3881d243e6f22073625ebafb3bc399bce6

    SHA256

    694a8bd900848f36cbb96c0edbb844981675e31e1aa4988f248dda84b5a6e55f

    SHA512

    4bbbec253439d0c33f641d39cc15b78d32c907e842468ff41da222e94588b309075dc9a90edcb96ed0a3323a33b09895fa8be7ee696621349b40327327f8a38a

  • C:\Users\Admin\AppData\Local\Temp\Cab8047.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar81B7.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b