Analysis

  • max time kernel
    136s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 10:40

General

  • Target

    917a22194505743b48811875fb73c986_JaffaCakes118.html

  • Size

    156KB

  • MD5

    917a22194505743b48811875fb73c986

  • SHA1

    9f75b7d0dcc4a978bddad43b5d8a14833398619e

  • SHA256

    162dea398d61235c59f100fe3b8fc99df2fafa89f41aaf111de337a58c5c25e5

  • SHA512

    4f5075323740a17208d1a4ea70d56ea4d1290347fd850a085251dd61057dddb71f846a26145fcbb7813002d0eb17090b49fbfec36c574f1775be6fb94399b632

  • SSDEEP

    3072:SICbVtkTC2yfkMY+BES09JXAnyrZalI+YQ:SIKVtkTCzsMYod+X3oI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\917a22194505743b48811875fb73c986_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2100
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2100 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2512

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ff16fe52c2395c6de4baf4b6c5e7920e

    SHA1

    443d744b58e3119fefe258cd24aa546f61859894

    SHA256

    d30376925889c4a492ce8413df57bb1bfbc0ab8f2a371f522e4e3f9798da5c09

    SHA512

    8d468daeaf786475ef2de4240156c39444ffe7736eb8359b294ae812620ffb322211c7cfb4a68997e2fb7588789a25da6af99c4b8ff9829b3003e0aa939c0027

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    38212d12ca4b2cdee16720c1dd0571a5

    SHA1

    56afa63d27b86f5e1cafe8735a1d321fed19ce66

    SHA256

    e27fe9f5bfb20aafd962aee66d29630ba852b2293a89f2d133c4b180e61f74f4

    SHA512

    ebe94295cdd23991ad45aa1c5328fad786499882c10e3830069760a02835766ee5fa65058d7c0bb1437914a7a86e0a4ff76fce43c3c49094bee6f152a04f74ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    15099dd0c5c2ee03de3c3d8cc7c8e420

    SHA1

    56a60c07fe2aa99d1877e2ccb4342d44f4f53f7b

    SHA256

    5799bd6e751995d17523a95b7b0bf8907f152640d4c62bae0b48fe21d33680fa

    SHA512

    fc629dc3a026cf650f6a7af4d43d3cbd5e478b77186a37f69cded12dc0233ee6c767ba6280dfdca6c2347392ecf96ded9c98c03c1f8b6a0ec58cbe3f5ee2b060

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bf634ff377cd02289b9c495df94ba1f0

    SHA1

    b698fa67aebd0336c996733c0192fa42e438df24

    SHA256

    602b4586bb81873c49bf333c318b058416de52514cb8169ed9a8ccb899fe5c56

    SHA512

    edb42cee3a98a5a10229d52505e94f394fcc8c26f9a73348f18190284966cf97f642e9e65818de1636c69fbdb06dbfedcb9d859851a8f971545c7760088e94d7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3f787ad8065b845e64f638ace8fd1c8b

    SHA1

    40e8b74d7315ace76181d1ab6d99984d0609c3d3

    SHA256

    af5b1c66e05c8d7895734f8a6b0fdcff19971d3839f36d2ace9dc98cdd6d65f9

    SHA512

    0e38e06bfd08d22fbfdc6b52c16d15452fad3d33899a025230f9b8f98b0eb8a84ec33fbfb955d2a0f1a2829f5ebf3ab141a82890cf296b0aa6a00846798eff7c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f3eb023d84cbe6d2b65a681c6a4810a5

    SHA1

    bfc7fe9dee87d239eaad3fcb6eb6e8f2aea9e8f6

    SHA256

    4222a7918a2fea01473c70aa3e6e73ce7a0b3d33c158ccdd6db40fffa18b1a8c

    SHA512

    9a0fbb38e47daf31468f50329afbbd250e53224c05843adee019a68771a1e06e38130df07686a126681b3ffe8143213269816bfff577f86d8209767408fd1d1a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    43336e0ff2e0dbe59e57f73e81b38250

    SHA1

    3b6c8eaa6bbb4e45812a8f8d10d0bd6b32e9abd2

    SHA256

    4dc151678008235e9cecb02da803342e90be7bb54abdd06db68bed8fa06a33b4

    SHA512

    fa08eef50edfd790232451932fd5ff0f03d141cdf13c9757ab26130285c151d093d08ff8b85eb86b318e8f2ec19887d3a7833403a15dbaa27adabae9bbf2466d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    22c3a14c7a4d2b3c7d602d5fb71c10c5

    SHA1

    05ce08dd8370b938e699994a04f67cb26b26b5d4

    SHA256

    87fd4c2a0b3d35009cc70e1ce8ae0112c55b3cef24118ca7a7c4a87c9f6dda65

    SHA512

    847b748120b6a5c0ed7ded668908911ef7cec2aa4d56a074dca681cc3d0d42ec8a5af59c53caec6ccef8567c1303f823a53f8253dd1aab76ded118552a179697

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9679bff1a02ef981caeb53b4369bc066

    SHA1

    f501a8bc51a7ed3c3787bc464b3769444cdba305

    SHA256

    16185c77f9c8e723d80b995afa57755fc5c67b71ae94af5f4d4230f2836d23c6

    SHA512

    9a63cac065e6c9119de7007c3189f06120e40545a7af3c1e0f96efb6dca35cea025a4ce32eddb269f24394acf4866e6530c4e7451abf0901eaacd58f87e3f8c4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9e8aae63f29de69ecfad3848caa7a3aa

    SHA1

    23307ea9f29a7886ba90590522323ccbd7eb2a2d

    SHA256

    1917561f8fe33e3666d05247ac7d42d0770e27694494e216fdc451890fa995fd

    SHA512

    38e5562f7510def2ac57384972caf22da1385acf43d680ba6b6b921dcc445b49361d01dd2c0fd5db9bbc82cd24cac82bc98ff01f728138c0ec12a5d841729893

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    38b4ffc780a2104a87c0473c7a0e91f8

    SHA1

    56fad53a4656a2f6f153049a58ecad009c6e6fbb

    SHA256

    4bfddfcc41d87ac05df3df13c150890df4e0237384fecd7f2590c4e73de59fd6

    SHA512

    f393081324ab87f6d737f1631fd45ae1459a4088e2dc26026dbed63a484094d0293d685f18699c82b3215aaff65a1732b6e249732bc590aac24e296f9b68b6f4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d765fc320e296ac6a7a4ac345ab56d24

    SHA1

    21344edf639dd04603859b1d6b11ff13ee55104d

    SHA256

    d1a6b20629edbfedfc672e2f078a280c46a12eeef290d80532aa77f00f779e60

    SHA512

    1082588c95ad1036fc51d1a4f76238a4ce6dba09894c9355f8b33cb1dd74a2063d9e7def0ae65872df34a1da79f79893eb5eb554a995150966e066487efb87ac

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    28f6e548c1910b74861728fe8b197cbd

    SHA1

    a90fcbcd5a50bc07b48f3d2d9a0b0b10fa61204c

    SHA256

    6ddf15dfc8c561221c3636ac866597448b494117f1af9d1aaaba032c593260f9

    SHA512

    2a159c27cda87d090474d40d1834cfbd4241bfc5fe78c1b6635d9cc8348798faae8a8378f297ef3ad729b0525a6bbd1645e7fdb29746df873563302c466c7309

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4e84ba0b4fbdf51f00c9075fea3c1804

    SHA1

    b3a6700bf0f1023cd6edc2b6f3262a2cf42a62f1

    SHA256

    a3816c7a7cb3f7f0238dca21812ed69d62676dd1a8a39a67bbde21c4e193ab15

    SHA512

    13bb26dddc3543ed5a5c88b5dbff9d35d0f7946299d528b61adc986d5be82390e6de31914fa244cd2ff3c963ced4dc57d239a92e16c56c4b083ee8738a40f54b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    40a8efb302e47df87d9e9ad6a2d5af5e

    SHA1

    858fcd12236ffa7308f6302ce04aea41037ecbc5

    SHA256

    c3a774bfb02d6482e4ed116a142bd97d5c63c65c9736386975193e6167eb6288

    SHA512

    592f5e3d0ad981be0866e5cfe7004c3526c6b1f164b8e2d48488edcad1163fa5275b6627d2003f20844b8d64f0d115448b70f85971c0bac4a058cfbb3d3da2d8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6467c5d45c4ccd918bd440647674e973

    SHA1

    2ce0e3a7518ccb2073fffb6ebf9c8187457227de

    SHA256

    8ff0c3afb0a78eca00489bd9ca66515a7a8c0c3cfcc2530d3759358d60d8a86a

    SHA512

    2ff54853f68d01d711e004d9892ad7c2691523cb712adf7fa97f402402b06e2dc63d4943c3929ea5f0a61306dd1944d2a0a55e8590b384345150f2a339a27353

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    992f9f253b0b9871b7abe944f024a9be

    SHA1

    bbdc8f1e1b9fafacc0e85d4d746a9144cebb1929

    SHA256

    d65dec8f46c0081c1181afd9bba2548fd25426dcded394cd445cd87e2933889e

    SHA512

    b6a89df0d33f2e6e90a110d2d49fd18117c9731250d67542db37ee523e1e9b875c4c560113fc35f21e242fb0a4b0b1d6bdfaeee71689dfc3b17879e244ddfba2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7a1a1cfae0381d0ab036513fdcae6d11

    SHA1

    5518186123421e23b076bafa9436d78c6c57b25b

    SHA256

    45ad3dc396b7502c33bd01f869653223193d408ea64ffb58a284673f63247577

    SHA512

    8b86d7625f39cc3c4e72a915b998127ff1bcfe8a3f2f1617e6d88e9f6f3c65f1096b064ae2e7297235effce0485ca8697070920a4d1e3e3cc6061a4be1781648

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1aca0979bc5d480e9b588c12fcde4e60

    SHA1

    991f29c9eac7c3f599a0294abc90ebd964315500

    SHA256

    215fe7898471969a6fec427db77a4640440798657f8f5ac58a83ea75f5062f91

    SHA512

    94916dd0185047c59886154e7e48b0017bf1c6fe2d0e2e7f9ff8d3f7d8cd6ad80918af9ec6d1d8caf79f2b3d188507eed9ce361928e562c4c43a54f818998c94

  • C:\Users\Admin\AppData\Local\Temp\Cab11DE.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar12CF.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b