Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    03-06-2024 12:53

General

  • Target

    91daa3e076c340a4282ea2776543107b_JaffaCakes118.html

  • Size

    1KB

  • MD5

    91daa3e076c340a4282ea2776543107b

  • SHA1

    89bf005fc0b520098eafc09bfa6d6d371a02ca28

  • SHA256

    32d129099eeee4303b0f2c911040bf36c55104d23b7937dc141f36c2ae8ce4cc

  • SHA512

    5c1f7b05697200ddfab707a81e5c57b8ff3c4ddf1c259f47193e2bcd9081d1a78c1d3566ab18201a4d08f7b890130963126072205e2aab3d527532447c528dba

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\91daa3e076c340a4282ea2776543107b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2984
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2984 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2660

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c14c884be41c4f4912db59ab1f59b1dc

    SHA1

    d162bb5aefaf46ad6c6c36f5ea920d673ced4afd

    SHA256

    6b35c2c330772e095cb6547a1cc12da4f7c2936dde72d3f5b6d9f272248d28e8

    SHA512

    e296ade119f921f8e8f8c863da378ea53d257e208e5d9638082043c7a99f0e6186bfe4269da0e89d7cba9eda1ff878410370174c6d1970f9ebdb8e0b2e0a4f81

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6eb0022ea2e5e6fac778a910c93b3a66

    SHA1

    c054f13a8c135a1fbfd4d12ddc03a3b4a6137564

    SHA256

    4c543dc4b584cd38d74389e73cf3c3436ccd8cbee231d83b291680b089ce5455

    SHA512

    146bec5d52062b7a0f40a2e3d2be0c4a8cae74e95fef03bbb95afaf36ccd29ece504017313dca0c77dcde81b59043fdb569d0d4251eed429f9b1c9534e698349

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7cb9ce71b1a871e21375ea3e90748cf8

    SHA1

    0f34e5a28e0e3fde6e6276e3ed1683cf348ce1e7

    SHA256

    0b59d7e6bd2041721ab7b4abbe6b3a4f12cdc12f16cdfb67a8ba3acc002ec6ba

    SHA512

    1f83515f6b982cb93cc83283e53e1895dd5ec399cacf8e76db066523d76d64d8f28355fcf6e6bc744cfdf98b1b616927b5c98f4fb9c4c0075c3d6dcdd49b753f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    04296c08be293063c3abeabb258a190c

    SHA1

    2bde723e215562e13bb5a66386636295b6a959cb

    SHA256

    83f127e99f8218a1c6ac1a3cff3f981a783d37cd972cefd1804eed9afb45af63

    SHA512

    1e729b474be03be18e7c7507b350f94bd8592a525c203f41e1c9d8e5da7d7298232d17ec2862b5ecdcf1671e2e72d6dd07bb6f95a6bbbb0d59504db7c6c45d0f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f9bd4686e888f4ce02eaaa643c4f7d10

    SHA1

    9b9e1b97e07492ee1e7e921bbf5ddfbaafd5b0bf

    SHA256

    5bd60e4eb28098d46b2835dfa7b36b5b9771cefc34d7916897069c0081f421e5

    SHA512

    8ebe3d735b3071089e335cf922e77a2b027598f5794fb4027825681aed0fb20361bc12bb2b5cc927b1e1ec563021cb9b7a78d8d2b9ff77ab8620e4cd980887dd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    195b57296d14a20f3a0b710d5c5f1523

    SHA1

    1e30da66cba9d127cb7a333d5f9b8c37cf83a61e

    SHA256

    7318a9dac0fe4bc1f0795220dbd8af315e7911575261b1c059baffda936e7ee3

    SHA512

    7fdac86d3ab160fb9904fae711e918cae6c7e90f927c05830c6c486e3b27675d0c312bf0aa5f92a6d2facab865d3ac406d57f9b27234dfdd4c6f57d317872096

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0999bdadfc056d9b85cd7adf5919f59c

    SHA1

    a884d8605d2f09a61d54f2f428daa0d387d6f165

    SHA256

    ba25a5ac7a1579bb2c7de1522b770c878f0b1479fb04c914c302e3271e5d08c5

    SHA512

    3280e4bfa94602640758b76aaaccc11053faeb6514a9e83907b0f0eb84bb47e166b89f4e842ebfcb2198450dd8454991bed2bac287c1ed3d79f50ece8ce0c339

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7510bc28d48a24c91bfe9120eb3e1b08

    SHA1

    f2b053feb34a3c0448d5fc4a80a889e48714ef2c

    SHA256

    e266b02b7044f0f7a99cc992a247ff3ee744607c29a028650cae98c2450b10a5

    SHA512

    c726af8ca6941686de51dddbde9330b5ed74002ce5fa906df0c3253c68ce43bc2ee53b5b1112baa912e49a069ccb501ff8fb3b7a71b6305a221da1ba93a8a292

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ff68579a03a14c546bc3f5ef0c3ff6f0

    SHA1

    14bbd4a8d261291613dcff3f1cc848310ad34fa7

    SHA256

    817ac0c632a7053cd3de850f861d0c2a0e8501379a3751e986d8a72eaaf07801

    SHA512

    7b8669ede5da200dab9db8de506434490937e25165752e7c219812e15f8f64b979e317eac9309fc1bdbac041477be6d7c7a14ee25df9cef62d6b5d842e4f034f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    280d386b1a7a3f2056f7de46efc807b3

    SHA1

    6fde250d0a83918d7b5f3c81f3a937aa0c9bdc45

    SHA256

    f879cc79eb26abb3c705f2d567abed61b3828043f6d00d33e07453a402b5f81c

    SHA512

    7622768cdd130041e9aaff4b395b9d00d5d5ec210e66a19f67858f70efc0ad32bc3f82da6258fd2d571ad1d7eccf1ade073719f9c4f8b7beb6b9a3b94c2026be

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    da6ceb41422b0a8b497a5f51e9fa41b7

    SHA1

    2d5e490209c5398be298fdc0274b3ab4fa8611e2

    SHA256

    1a8ac13b04d032e2ffc91242746a87e025e4ca8329b340105cc42e0eb10ae93f

    SHA512

    3c40fe367859076d0eb012bcb50831e0f82d993c08c242c2352d97d8477960e2d7789dff2a261e2bafe3a21c342f9d49452dd461010fb561359b718309bc92fe

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e5a5be9657fc6e7b2f8c458ef8717feb

    SHA1

    310949edfcf36eda69ac58c1c895ba6f8350addf

    SHA256

    f0308fd2f823afdf0e3b8be9c3580945eb5f05cce98311d6e7106e3af3284067

    SHA512

    615c8fba7485e78e3d9f84b9cd3663646824b0c8dfc09c6db20bf27158b2e20819f8ded6a5f0c839cbc19b403e04b16f34a8749f885e5902792fcc5600487d30

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    750f1331bbb3ffff41ad78b9c95efd2e

    SHA1

    b32859f480fcf7643984f6f68d636b2041de77fa

    SHA256

    8bd0d6ab9f307dfc07a4bc1770b1081fae1a8d53b636779c0948c98c1a6f3fa6

    SHA512

    59a9b381c9ddfd5efa49728adeaa4b82caea82f387cbfe0a9e05c57ddc691f2659b2d0364128691465eeae0c58956a582add77db208f061b52f4642fbdc407c0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b1168a54c25391848f2fee5600630fcc

    SHA1

    7da11d5f96f62b77d45863c8495da273ee01d115

    SHA256

    7eaa0d07cefcac62c9393aa63de444ee229aabfb605834b259124d302d64d560

    SHA512

    ef0288a8199b794d89475c63f3bd64b07fb268769fa8001d6393528bf64db42373698ccaee45b939faad01cca4b2b1bf1ce5069bb6deb6a03e1ae860bbbe8807

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e51ee92e91a6af348da5a7b2fd2722b8

    SHA1

    49cd8e3c4ada4eb56df2392091c8e2210e9c1cee

    SHA256

    19745c2fa0c51ce21787ec9c576418bed18a7435da3d7665c6af3708ce2bd055

    SHA512

    88459c0ab5e76374a74c8cd510dac9d9ec7f47b9ad672bb7f70bf1f3f5f1ff014003330bcbb6bcc2b3cb7f8c6a60a94e3c38b25c3b498dd8794809f09e963b32

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    80adc4b343282687870c1f205f1f78b6

    SHA1

    f32f5497a9180ec473493ef0d9fb6c9bf342da42

    SHA256

    92f0f6425ddd0d9701d0bed7a5722c67e172f64501e96b0b6bfe0691fba00c3f

    SHA512

    7d049e6053beb1fb0052186e17d49b4258cd347029fdd03d629c5ae8d71ff74701612ff190294460628309b81f8c542be81ec600b5fb9b2cb4bbfa95aa3563a6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f4e3d9a2000c923014c85c12362003c6

    SHA1

    2c3512695a709b38721924b73e2d2c46916cfaf5

    SHA256

    d947214502d52cc1476c0dc8fdb88defdc8797c13c27753f29aa3dfde7be5bde

    SHA512

    a7fad7a7c8b3c59579a8e41d3c0fe6d084622ac3d91e5240735276fc0559dea2fb8b4ed64faa74bc2c9cd08a6e1d9214507904ed8613161f163f94407ed54a56

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    97d15b3f14dda4c7ef86875a39460d02

    SHA1

    7007476ab3a303c267c12b91825125789c7aa87f

    SHA256

    6151537025e7d8593b70c397a2e9a861e70c7667ff869eca2d76e42901b48169

    SHA512

    092bdede62ccdbf63a384821bf5b8965047fb04289ae01c541f6bac817c040c2ebae370cafddcaf2d7013b52a6c5aa64b823614d5e488de981bcb3349adc3a66

  • C:\Users\Admin\AppData\Local\Temp\Cab3363.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar3444.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b