Analysis

  • max time kernel
    120s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03-06-2024 12:54

General

  • Target

    91dbafb935387291419b9a4653d0dfa9_JaffaCakes118.html

  • Size

    36KB

  • MD5

    91dbafb935387291419b9a4653d0dfa9

  • SHA1

    7bb63d1dcaa4775a77a2f58878fb27dab83d7197

  • SHA256

    1148218578264bf8058600b1051bd89361135225156eafe936a52a682967a3d9

  • SHA512

    39363d8b7c2b1b3fbee482ccd2cd9b30aa1c2a67920ab0d660918e0cf7963f11bd3c4a335162e5c5ac39e7481980c160d7f8945825c62d61d1e997548731beac

  • SSDEEP

    768:zwx/MDTH4i88hARsZPXrE1XnXrFLxNLlDNoPqkPTHlnkM3Gr6ThZOg6f9U56lLRW:Q/XbJxNVNufSM/P8vK

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\91dbafb935387291419b9a4653d0dfa9_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2660
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2660 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2540

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    b8e8a0104dbe780d06cad3b6f60a456e

    SHA1

    f74d69e7227c3f73f8047ddbeb04d07aeb88ab26

    SHA256

    5b3aeab9ba08c6492e15eee3b3aa9b8d241bc095bdcf39ff5cd71538dca9eb19

    SHA512

    35de35402ad9290d3ce03d14fdba6604ed98c737fb27565a7ecb17fde2bddbbeb3357c812624135a4baa7618222e69b6fe0d8cc30a480424f62af254309f3c5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    22a560620b2ee1c88fd244e5db1a272a

    SHA1

    233eacb8d04db2b1d0e1bbce806c475d0925bf08

    SHA256

    a46b5f60b522b455827b9c1db8b671e3bd0ba0b95877c9d54cc40189a72e10ba

    SHA512

    023e82914b8cccca3861bd95e3062fee63a91b6f3f7cfc6672dafd9497fc5c783f909187f6e546a253a5381381be8b3b9fdb1d929abd647bc9a443eeb5200859

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    36e5cdb365407043ac3b6f241fab0296

    SHA1

    c042e81af02a8c8413bf56160075896a4e08fe2a

    SHA256

    76dd68e57cb17b6f5634ed3e27a8c64dc100a81b30d4416d68935ca51a35a0b8

    SHA512

    a9070026e30779c02eb74e1f53f04700dcf8b04391b934cc761debc5dfcbb41ed154e77cf7b0b9e561b739642871b718312eba98798ecd2950c7ed2d7aeeae76

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c182fdddbf1d15ea50139fab7fc3eeaf

    SHA1

    51a4ea5cfa938a401ba04d3b51961f083eeb40b4

    SHA256

    2a8dea3e9c2f2038e37518c742de9a371f99cba6534378e9c8c47587e500183e

    SHA512

    e8399f7789ac1415dd1ea0c1997c2eb5a389930b1e8e56db2c2872b385b00984ce98e144d9206dfa37330a98f428aecfc8fb0af6afd6619647d27e05e8d868e7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3ece9252dc0272333d8d3717cd520b9c

    SHA1

    dbcafec032dce23db4d6e61af33ec09d1f3ce488

    SHA256

    74fc70b337cbce085527d1e6581fa8257521739dddd64368686af8aa2cd4581a

    SHA512

    2a3188c07cd3757b7b536a53a4134dcdab2d4860ac433784796bb0d0250d82793ac3e1999afa0f866d4eba2b218d852af7cfb88538d3cbbb43fb3e1993ff1f92

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b4a4d040750e65ed9bb53a267021278c

    SHA1

    b8a3d9e856654f2d2370a4f4b9289e432f656d0d

    SHA256

    e141a41e790826d3dc5eb8a53cd9344927918f27009014057e76b2b96d915b2f

    SHA512

    70ee01f35498be91fa154df4d6227e232531fa906900370a0520dca360ef4e0fc39dd0798198029097b7bba829daf9a34df4072d234ce9756b3fc7678f94ac42

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aa5b6d5294f4fb32edee7cf348b65af0

    SHA1

    2a95710f357ce9fce2d54232a56981c2d89ad32a

    SHA256

    870302690f65b7ff13969916e44f452e24c7fef1f0eb9c5042ec161ee931ce9d

    SHA512

    18697cd76739d467b2f09454b958bf854c3a2c373a5212cf1bea453b9e0fabc2e6fd59e9e094b52a621957166a623d779ad651ad51242f014cf8136f3e2df017

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    486ecb8c39664f09f05dfe707ac673d9

    SHA1

    6d088f6eddb590924f00086cc8fc077701ef92c0

    SHA256

    7cc36753fbd29f6e0e9ed9f62cf62088ba156bb9d66e5b675222efeb08d52964

    SHA512

    f14e8bf0aa8974677d5b409bd54322208e541340d72df1465836acf71d0e1e496753c47cc53078955fdb21781da4ef42acfa8742c0a41d333354dca2c9207c63

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    02dd764e09a90fe6166bfc60c0ed3a3b

    SHA1

    058942b75b5db509d1f09613b0a5e33528e685b4

    SHA256

    f863cfc5b2ae7665257fb1f35905a23b04b1ebc3eb75dcb47d0cb4fbbe92d2b2

    SHA512

    edc7479c4d0e2ea1b642366f2af354fb479b491a2b3af2f1436aea0b8b7316a137475a47df6f4ab3c9cb0e7fc34a87a95e9c55c5693512428a8d500fd281ffbc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    72239551b88889922d5cc91ae3b4a1ad

    SHA1

    b865c3781cf6e6a6d79efc0936d12168ba2ff19e

    SHA256

    5d5c5d89055af9d7637035cc8043b6988dc2af4277fbbf87fd3b7316d707767a

    SHA512

    c8b3eb7b5672a7903352b5423dc8feda3241974b4f07f9661c05d10a346c80213956b5647c6527365eddbea1b579bb4bc6a6084f5f02867d41fa42b30d3aa40d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f43d4ceeb5ce3fc4390f929145d830fd

    SHA1

    9f1e20e593c079ddfd966c0febeb23a58eda172f

    SHA256

    01fcb3ce0bcc00dd7f04c6df69873e583ce68cbf2b6f5c6bf972c003c726e303

    SHA512

    80e63710c4ccd7740c96cca8e79612de493264cbf5e2017b8ff0709defa5bcc2fd4150e8b936ee8710896942848d6c02b4a73072ed05c89491fad53b99a46d94

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    36270a0fb03bada095351a70a796658e

    SHA1

    2c2c1b5ef23eb26f997ee2725912cc5c340a7f72

    SHA256

    3c740f4e14dece60a64f7ad1a57dbcc8ba5a5f1b9ce2b02c0ff71a9550307fc1

    SHA512

    004c740036862ffa92e8f759d88778f0110810816c77c0f02eb20b30fd798aeb9f2cc449131c021d3bba0d25d0bd9e541ac8193067a01422f13e8bfc87109880

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e36e13e7ab5e6adac2e7dab8599927d2

    SHA1

    b5276cf7f3b4bd060a890e6b2732b4a1902e74c7

    SHA256

    007a08778acd681350aec3953472474fe077617c7a8243ac285af381fea861fb

    SHA512

    a4d011095484c42784e4944c9b725337f7701f2cee3288610a038ad27b09e44a411cc81508d709ec903904c4e39dd8d0e6af877ac866abace8f070f790fc012d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    45d78795c962bb191fa778f950c5842c

    SHA1

    d4e36faff14f4a76abb8e0b74cee955289bc5d64

    SHA256

    99dd5a6b6ccdf2ed939016acc8a847ea930dca1cec7fe78cbac6cb821bb57b19

    SHA512

    17816df6f54879eb3adcfeee962d9a23d11ff22815db12a1bbc08bba9e7974b7f64f9f4dabf42b10e372351cc2f1fa9ee554e4306b44a93114f5c38e601f2e3d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c5dc93b4186225a1f2e091e12cdad437

    SHA1

    fd4d6586b09f25c66b0a25550ce0b443d7da1a00

    SHA256

    c70694b8197d1d0ec67095e95b3d4785e608213b1d77592752473062796f39ea

    SHA512

    11a9296a1d0c79322fcc0a8155d619f6dd4625dcc04f582c916aeccc2cb3c745483a8ef514151a04b18cbd57dc72a51ca03f444ab182bb3daacd7e4656558565

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    180d628d308eb58145111cdf969116b4

    SHA1

    2945edee43fe272f1fc2d1392a257c0232d23e7c

    SHA256

    67a4d96acf6000da13236bb919e5350bf116d67717a3e1bc74bf5320ac3561d7

    SHA512

    d528efa060e463052cc77a2f3537ac922384424682148f2b0668bc891f4e13cc9c71853e57d053d138143f25b6107dd8e51be1a42172f93f2f56f08f0bb88474

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3f65164363fc671c5b5342475631510c

    SHA1

    a04118ce9ef7e0c62cb2a18c1ebdd0d58154ce6c

    SHA256

    0a1a18a3f66afd2d3e6adbfd910525dc04fd751cbc565c9a2dc20761635d070a

    SHA512

    72c99d2e34c898a68c0461a4199bdf0ee709e6d7169819458bb6b53479725720f2ea1fdbf010ddef47e9d653ee4c09bfaa08d99b0e0bb6f98f53ba9e7c6cc008

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f25a7b36779fff38e4610686a9a4f1c9

    SHA1

    3d2d5b69ba34bd67b44e906413d93e31d19a307a

    SHA256

    32475adf75989a51e2ec81a43c2ea5956335659a32a3994488d5481dc1e5467e

    SHA512

    72994431a5028ad7dccb053984b26f392e644f309038fbc6756d767d76df99f7f173a4e59fea302e2b64dbb274fb34b1428c330e2d8468c2bb64c9bb9877ccf5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f923e0e5dc76e0b418387bb936ecc5af

    SHA1

    3a124d9d56f5f71c94cd56ca2fd2c0e979750318

    SHA256

    121581d8d8b19086b99aa392d5e7020144f42bc8d9283b297b34ff51d961f76e

    SHA512

    e623711b46fe2e245d26c359d6cac0cfc2bd389cc434cdd133ec164177f0cdffc88ea9431ef978d435d74ee609941ee3e72dc6f59db992a20dfa3c43b9e6d102

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2fed92af2f6dd484c1a44f82071ea57f

    SHA1

    2bb55710c86cab154a6b313aa1ce3b0018a9923a

    SHA256

    036ace13b6dac99b5ba18cbaa7ec6b6cc6cf16cac5dc5dfbf3f4cfe02c54aa5b

    SHA512

    502b059a68b4f1fb67d1d847b6c0b4d77a0a0003d42cf33b548cec2fff23a19b91eab04955521729a716aed3a417f5dc4848e94adf7466fa09d4f60fbe240e80

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    29a397cf06c5cb4c4b2e9dfb3d51efb2

    SHA1

    ef20e599b28fd916efc9ae3aa3e7f1171de30e69

    SHA256

    33426c20810ce470d8951df35b7a451a3532060781fbe82d9444deb8f80bf809

    SHA512

    501283fcacbfb6a1e48e5e805c75290b02f5ad314fbbad2e97dbcb65a106f8d94c31c561d9bbc7054bbb075d62311a809dc289334976d32787df6cea18dfb9a6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1fe8622e5ea513b12a282343da8c8b56

    SHA1

    6d5380c6775781d7632ef0065f025026b70017f3

    SHA256

    db859d9d993d6ff1fea531799be050e013ee94648fbfe12b6eadceca7e64aace

    SHA512

    5c076ac50e9f378d242f5fc910c626e9af1dec63f9c8111a938113d51d28345d2b7f0ba0c3cde69b1b4bb77a2d2c340ca20056c45837648ec35e0c4580d3bfb2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    122fe14cbff9c22d5a85022d4160d386

    SHA1

    5841751c1c9d86047e5085e7ad934088430e791f

    SHA256

    e7204f1883efaa1844a1bf7d1dc6e2df961142d6c18be82c33680925c314e165

    SHA512

    a57670bb48c9311db62d5943ab19cfbc2b270ffb236871ce7ab1ec6be32de8edc32f0d2767057378e14a8ccbcf2b3c73f54118f19234ed9225460ff42cac6281

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b2685bc9c19b482eb784b78e91c4dbe9

    SHA1

    7e25f3238944739680c4801f2b47dc9329aad468

    SHA256

    2f713f560951290948fff547d4b11d3a161058edfe52c4d23c545a1d9c4391c2

    SHA512

    3039e945b5e6db16014a510c733594c4d8a7319236aaba9ea04064a7ecea152d73f211449797334755cf9875010c1f16ffa6134ebdbb66f5ef462d0a4c59b10b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    fca313831c3a00c3fa5bfbd62cbe71c3

    SHA1

    04a4c3260c4477e55ebdee3afde97a283e66d9c7

    SHA256

    d9bc067a13b2c4e498c73720d1d45bd2464a70ac475986aca47a965987405511

    SHA512

    bbf92fd0f5b0113d116f65b7e83df1fb465463a5aa0ec10d9711b3ebf21f5e94bb28e2beb05148d150ca0f17693ee1a38d34e098af67d15ba3aec9a48b2c49fe

  • C:\Users\Admin\AppData\Local\Temp\Cab7FCA.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar7FEC.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\Tar810D.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b