Analysis

  • max time kernel
    141s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03-06-2024 12:00

General

  • Target

    91b5df071498450cfc3fc1c52e861d82_JaffaCakes118.html

  • Size

    139KB

  • MD5

    91b5df071498450cfc3fc1c52e861d82

  • SHA1

    ef54b343aa9633ffdcdaf26099dc74439df88719

  • SHA256

    f96444337f9a8ed13388acfb064f201e31bbd32a5ee202013bac5811d0ecb484

  • SHA512

    ddf1766337532bee1bf403463765bd14a9fa4179d9fe0aea7a786cdddf5fa8bfaf196c44885096260ceebc2e5f725c13ae0b63277d85f2f9740827f75c552021

  • SSDEEP

    1536:SzVhCblmSwyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTs:SzCMSwyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\91b5df071498450cfc3fc1c52e861d82_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2724
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2724 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2228

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4a451a8e890df657cd1fd244c1f3e40d

    SHA1

    5985810c977abadb06e0be5e39e08ca00b14c7ca

    SHA256

    f003b90b2095ea4d83d30f48628c1d40300b65acb65df22bded5c57ad5d083f3

    SHA512

    68ce30e6a6d3771005cf690cf03175f19a977756b4f7be70357889c67895976c2f28b21a00f51cb4bebe8ad8aa3e3f22bcdd80f49323d1a6e2fdac37f6286824

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    be9b04333d4b16d9127a590784310511

    SHA1

    6ad436a9a56a32c77a01c1d8cdd28aeb2792d4c9

    SHA256

    ad756706f6c610e3a502381c2c62b7aa4da80b26b22863a1708d6d33c904fbff

    SHA512

    91e4a5babefc8556b7e5f71c8578ac96dcf23a885bc53084d38cb683ae0f26b25db1cb1c630b65a925b747dde1a0a8e5df51f788654c81231eaf7c89b05ee204

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    eb1e6e0d1e600c32130da4fd0cf40ee6

    SHA1

    d2da8181b07338fc312deb3f80ceaa197bfe36b0

    SHA256

    a6547c290daad2797a68bdfecda2f498a0d93bba599eb63733ebab7b88a7b622

    SHA512

    b06372379a8e1a98aa9a24583153aafc37c8f19d0a43fed9190251efbffafe0f2731208eac70a35b97af5e6a03334acc518bcc38e18722fd484dfbaeef449913

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5a85554bf08d4bf5501b7029b8d261eb

    SHA1

    3ed90befba5db01f55c0955728849f348c970847

    SHA256

    0c8752c325b40a0e53ac49a6e9ec8c2ae335c712773ab6b24505e45205dd43e8

    SHA512

    c6e3eaf228b225b46abe834629ec815a8c5adf5c84cb3672bf9a2889e2c9ee64d6be25ad639c074bec942bc0fd2108a6e3f876074bf4aa177068dd5a05d1f001

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    01d0ab66b9815618e8021f225dd7e677

    SHA1

    d224cb8006cab3d860c2b323f6c0f07b4c45ba23

    SHA256

    d53fe760bb641f8c6edb29c4f58a0ddd2a9eafc995a2f075ffbd92ac9650e962

    SHA512

    0a7e8bf5bc0d8989fa345727209ccdcb744e7b5f9be0cdbd06d9091a46b1c26a66d392aa8e00ee024904a9e480b972ff741179d571671b37601e50736fad03ce

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    941170e625a667809cd3909dee113469

    SHA1

    deee81e7c2d0db4ae3c328ac7fbfcada60656a52

    SHA256

    937b475a4ad14a3245f89576ecc7ce57d70a1958aab267c44ccda0b18d4dbeea

    SHA512

    4e2b5c5c3240abc7f1bb53623490163a17199bd2995b1aad9917f68d3d1723fb73b8ad7a5f783b0185b51303c203ca567e2406fcd92b821d6f5c6dec0ef1bdc4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f46f28bbc525ab208c851f781911b6fd

    SHA1

    162df78637c0ed793c446aa38bbaeccc98fad497

    SHA256

    f68a38995cfe798c82b25c9dfd85314056677dede1b6fa33ed782f72ba9ddf5d

    SHA512

    ccb4d694614e04e4239caddac3c1d07f8b147ffcea6f3aa0330b207527aee007502d4375a66147f8d472d9e472ca567befb70a0afaa8a7d5d515ec4f92dbc4a2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b3681e17bb2c077edd7c2f2add450f36

    SHA1

    6f05345b533bc7d6b547bdd6f98f7fc37817b676

    SHA256

    394c68a2c6bcd406d9c906834c558fbfd2cacc943015de072da1f4ae0ba2b23e

    SHA512

    63ca274840eed3eb31810ddc3a60569d6ee9966f52a26533933baa36b919a55931d3721ecede310dd03b1a10dbd76131962c809a3c27be115bc97bb596df06d8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3f134bff450f3253459d2de367cf3264

    SHA1

    e3fcefe7b91c896d50c4209b90cb4508e64688e8

    SHA256

    d5f6d64384aa0bca418c83675487fe5392c54b41a999b784bf59bc72b374fa1c

    SHA512

    e2353d5610fd2abfa2965fc10c49e266daabd8f1dd466623813730d037003f910bc8ae2e9670e2878d786b28e9746355adafc32a1e8c5ac6f451152eabcc8c5e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5db896140facfacb1f52956773984043

    SHA1

    c6f1ecd39754277abf5f6b7e83c6ff144a6e2595

    SHA256

    0b062669aca16aa557cd82df15af94df60576adc80c0c63a56aa7d7f505a123e

    SHA512

    030cc81ac29a6825ce207ce5e55cd5c46af98926a262a63480b6660e1db0f3e8238132b73e09947566b9084a83f07259544677f4bc30030996b8028ed82c40ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f276b0885a6f605897042c3850fe9117

    SHA1

    4c359d08bc964d6adcf97c3abf42eb4e5b639f7b

    SHA256

    aeab49e3f4af4a1ccf1feb657e8b2ab06baad37ea679f2ccd3421123ce0ac7f8

    SHA512

    ec914f518ade2714baa48c7c6d152c58cf37c445e4c8f4f957fd9630be455910e2819b3f2ab2f445f4eadcdf682d1df82473e80614aa1ad42f958d83868ed2f9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b77693f438658d374a1c7dccd8559e4d

    SHA1

    d13855206c3f878cff6436525948d96cad13394f

    SHA256

    0ac0d8c9213980b0ddd6e916283431be54f9fcaf2d5d77730fe2509451cba511

    SHA512

    032147ca55ac7851c723e83fa47253a9f19962da6d63cb25c2c5b0d019eb601d487ee2ebc27b7bef18ac445ad7b3dc62b05752187427a6a913c50ae16bc93769

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a91c207f8266a5836cda8799cdbd9d4a

    SHA1

    310014e668a89d6766d21b9e53fbe057904609eb

    SHA256

    5339a456d117f520e2ef9f4d181c66091a835884af4e197aadd56bc3ac5098e7

    SHA512

    e6a05d89e0dc2f31e9c9a3e6f7e99e880a32769784d08f5930c0f13bf3cbc40ab3b11a135b9fcac8384979bb25b922ac3c2cb15190628028767021a2dac50724

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1c4a75afd859ac838a35c8e7ca4bf26b

    SHA1

    6c51659a7fc3c83180e140fbceab9a9610fae858

    SHA256

    7f2d344348a832904aa565ec4c71af64889d8da1fa9c8015324bec80852dc68c

    SHA512

    7f5d44746cb74590cd4c1e9d7049194d45666ef16d5917e86106481a7d9685a44ab86d25dcf5e8953eb68e61ad3fea187a8cd2bc5ed94254fa42fc188a9ae010

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5d0f1d3ea599e5719c60bc8c077dbe5b

    SHA1

    5d278b50e7fda583a4e462342ca201c0bde7d0c1

    SHA256

    c35e151c257a22eb63123e07a5630c72f5848cc4b4b486c40cc602bf741acafa

    SHA512

    60aa5bfb05104c679b02f68eacd682674248b001c207599609c14a5fb8d891693352607d4587defeda38c7e929665ddab84d0670ce769a49625cca895260caf5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b65edfbe254895f29ce7f60552befe9b

    SHA1

    8cebe89687e4f362e77d3881bf0969d1bae9737c

    SHA256

    ae65b48f3bca90e5b47f9ae118ced012a984f4b4b747c8fb16190482bed9a09b

    SHA512

    f06ed5044fa7a70938e62f5e8ba7a909dca4344a3b6e8af49cc6807daeedac59b2b0fd16e93167da62ca43b72d256326df788ca8ac8d1b06b84d09d61709e7af

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    600db6dc6476614c926e9ba364f82991

    SHA1

    05e2d40528b51799947e31f5d0068cfae1a87f07

    SHA256

    6ad854776bef6b57cdcda210cc2abd9a191d39c03522db82b06f166d90d795c8

    SHA512

    bd3cea036cd03024d46f8b3848fa469415ac21da34352f61dd2ecf9ab9ca5909376a3d22cd1465c4e280663323f7f0aa8b1a85bfba3826ae9580279812c455c7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    83d41081baccb6e7e7f4b13b72685bc6

    SHA1

    3e6dd25bb58c6746694031575211ba0087af7c71

    SHA256

    8c534e2b4f8ad405dc5eb2d28f31cdc5e4849d5c83103d52e00cd30060276ae8

    SHA512

    4c402deb9720ee9ac6a4e2e9066f106d60e1abaeca4dacf4cfb5be6d9cecd921538bb5bd9f4c3025069ee81e6258b08ad6222a7eee5660c7427ab91403d18162

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    53ae735fb58dfa4f319bd47e9c98cd58

    SHA1

    8ab765e9fe023a80b0abe8576ba81879f017750b

    SHA256

    7558ea449897d7f823d9141fea8bdaa639414224e57a5f13de60b5285f09ea16

    SHA512

    8ec35a3b9e8088452b15ae9474249d2c61a8000c8d34d1907bf2cb3dfc631cb837d996e4c271ccea273d3220e71952eb0c3b7843e4a750bc3047e8cfc38de3a3

  • C:\Users\Admin\AppData\Local\Temp\Cab17B5.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar18B8.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b