Analysis

  • max time kernel
    119s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03-06-2024 13:00

General

  • Target

    91e0aa81ea75460583c6a307ef69df57_JaffaCakes118.html

  • Size

    226KB

  • MD5

    91e0aa81ea75460583c6a307ef69df57

  • SHA1

    3deaa8c782be62a7f57ab0512941bf5d3d2e0410

  • SHA256

    ecc309858be2898b57cfa3aea8964762ea3a78788da4b4ef114361c8d29d27ea

  • SHA512

    c197f01b06cde98e9faa90ff3e424b0b84d84c89144fd2e6ab8c7918129d17dcd3ff932a2540bf7d7736124142d41aff0af7e6c66d424cfe2bae3fe5ad910011

  • SSDEEP

    3072:StVyfkMY+BES09JXAnyrZalI+YuyfkMY+BES09JXAnyrZalI+YQ:StAsMYod+X3oI+YLsMYod+X3oI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\91e0aa81ea75460583c6a307ef69df57_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1300
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1300 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1760

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8693ae00d9ca9a56b76a290b8cee62c3

    SHA1

    a8f81426ffd83e4fcf0b3831563189f2ef485766

    SHA256

    0e05d1c144d77227be1434741578471103967e4c08e36a16429122d9fbd14295

    SHA512

    1af12595bedc176024642aa3e0cdf8e8fa07d04ad761b789de7ca187b2b312a586c0badeaff93162b4bd4f42f19e4e000545819976855dc5f407c5f50b42af24

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d9f1beb95526259cca5c2b38c00b2d9b

    SHA1

    65d7e877a1fb3379523d548e3196956289035291

    SHA256

    aeaa354b8fff322d310ea2f6e4970d9eff39815bfcd0333bbce440f6d80b1fb5

    SHA512

    bef737f9e33eafe002c1ba760a69b00549afece76bdc87725855fff63fd87f60ae2731782c161588a3f919a606cd6234a083336b521d4c7aa3443a471dd41255

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c24f09407f926ded2237b0d16d6af741

    SHA1

    4f8eac6cf13c64929d6e59ba1da6a72a5cbabf16

    SHA256

    3e55afc82e0d6093b5c543718701171e862afb9076cbd5a8f694e6be304a5cd0

    SHA512

    ef4b2d6df9a8e9e001326f70d3f49c8d64cb0e98a1b1358b9ed3e443e3929476512200d52ca0d212f592b919e8f35385fae22833eea46c48f7280b884edb0192

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    42bee6ab721fd3fdc74ab0df30d9c804

    SHA1

    b92301b97b28a8df64578a1708ea8d2e0698239d

    SHA256

    b322f16a20bf32ea5647ed5b8a8917ed1b1c7a0f121e21389c4e78c74a7d15d0

    SHA512

    86dc34382b8fc21b49b2a65a97b8bd9eb9ad0b964932caac277b3a5700c29d0a0b8d4e6328c56a0fc691f8f2b11df89952e27b95b1ab94c8c0cc2ff13c48935e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9ebc10bdea5bcb7173e1dc8516a61146

    SHA1

    61d0e26563cbd5060af110cda561c42e6d9eef0f

    SHA256

    09bec71acee52c35ae216a076c284e6077d15636263cc37a4823afb516ee04f8

    SHA512

    86a62faef4e3dc8306ed96e21b3710ff42b9681423f7a359812dea2b678110b83a3add84a28a32720f011ffedae365b9f9ecd6de4213326ac8b2df2817becf77

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    775dba91be4f4fd8120459a31453c2ce

    SHA1

    e736d737ff86f169fe2837d1291e5d19cd8ce388

    SHA256

    b9b49e358fdd167988d09d1ccb1d4a29e1dc3077160f81494debd330fb2f7a22

    SHA512

    91b903738893c45f83271e5e1db5b5c1bd625057e5460277f3aae45852bc6934567a9fd13afe8884fb3573178ccf5e448d1a2b2b8c479ee4d9aa84ee34acea97

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cc8d8135bfe2a9771370500ee8d3f788

    SHA1

    0b4da1e351be353add773cf4422a925180ffdef4

    SHA256

    4d564acd165dc727af6bdf6daace0a7186ccb75a5dcb8a6005aebf3e5b75a8cf

    SHA512

    40921bd3096eac3b480a1394143f66508c1924fcbeb54ba4bea704af6d69e9cd9e20bdea129fb22f68625e50b13973a385c7e86aaff1e61f3a0dea9cb816ac16

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    739959c68162a1858ea3eee84aab5a0b

    SHA1

    a12722c11db01b782e1bd6da5e981c7d4fc34548

    SHA256

    1d442e8ff8d879542755f9858e08931ed5b1d55da06ac29f41e3a67b954da7d2

    SHA512

    bc72fdb9081763f347909b398aaf440f221e011b2e4d9c131915410219f17d7a256afe446e853fe655100951437dfe2a868d2208d367363551ce5ed811d12258

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    13d8cdf0a0194db0c6ba153735a80dd4

    SHA1

    b044f97a9e8c7143f8f34f1541a9e3464842510b

    SHA256

    ad649731ee059e90a92a187ef2592db274717542a851936e58e75ab4feba91fe

    SHA512

    acf3adfac695850973f6f7ca564450a6cf16860312912ec26c37bf76a6ec8277087491d8b49d48ac0258fccf6d386d16c264f4605694fe9225d3abed46dab624

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c0614db07002fafc0c9baa126d8915af

    SHA1

    2c4c9405ce7d7c35deecda712789b928eaf3e363

    SHA256

    c7eb27cd580853522072409eb36758d94cc3147472ccd407e4ae3830bbd3d4ce

    SHA512

    15655bb6a2dcf705353c9d9754cc8f6c8311d7e0d6c2ff3698dea138a07ba8c11e048cd69ba141cd5eb6f7fd9b7f93611d94dc7d3bef7353cc6ebf96bf537f9a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    123b172716e05ae0f895ae842b9005ca

    SHA1

    bf5cc584a6d3fd99e33aabb110feade762965b28

    SHA256

    d867e566484c0bf0445c6d60f901462b3d86946f5697d12ce4f0b5895fb4c0a8

    SHA512

    32b69c4086f257139e26076d61412ecbcdc2676b3e4011258a420afe388e9d5bf04fe874f771b8dbf552cba8783594ba8bcef03649c7da8ff08ac66d000c3d54

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    99833ea6c746979ee3ee8c284e279b2b

    SHA1

    132555767d1c329886ffc9e2165d1646b38d73c9

    SHA256

    2ecceffbb9005823c4f7ca509fd2a940b4901c1ec5a36432e77b7b4b3829daf9

    SHA512

    d6964a0258332fe2da0f5317a141e991eef23e7534866ea6eab57a452223fe947c99890c1cb8ffe74b7c7da02a311b2527fd7f4faaa4060ddd568e06363efea5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    616072a006bd86e4b6458fac2d86c17d

    SHA1

    58bb740529d1140b5cf9d22a653b176f66e0de82

    SHA256

    40702850c6d03b91d7e191075246beb649acad075834570fceee50bc08b2d894

    SHA512

    3a5f5798998d798cc308cd8f0e6086898ec2e70137ea0d3341268842a8319da4f005d915eaca9032b2838a644f16773fd54e007b7d6af059ced3136108740040

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    27a6878425d90b269b3528e96e31079f

    SHA1

    bfd0f2618df1f30965fe0777fd55625ba3098c20

    SHA256

    2446d5acea9052cab19b02f246605c1b21f82d89884d4b037b7b99811cf520d4

    SHA512

    b83fbae5135a21044eee08897d008966a2229623f6a00b167766362299c8be998fb85ab77cb09dac155479bcdb4bf8bbbb03fcde2aeb033b247a6898229355bd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7185f3289c0b4587006b2d140c8c177c

    SHA1

    c3d024f392ba23f2addc62027d687351d3c57cf5

    SHA256

    6e7a0c8e8d45adb58726be2fec65afed46957c84cff13414459cf5ce0831d84b

    SHA512

    8bfa67322e1242f3cfd3b45b665bc0c8e1503d378d0add39c8d51e44688af7f63cee7b929dd419e5f647ea5569167a466efe954ed6887f7eb0f97d6f4c02a74c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8ee100228a622521cdddf7caa4482b72

    SHA1

    331f3bcc54822a9c9a338417612f78baae922e3e

    SHA256

    cd354f6937318bc91b0093e0847abf52c0daf5b6b83bfbfa72972c92f4404d22

    SHA512

    41cc81ba134141138e2b7463637451b2a09322f60f843825928eaafdc8315381852eaa5137c3a8c68347465b2ff936fb606c24580af4a68657410c98b49c1a7a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cb38159fec8e6548952f872386ab9545

    SHA1

    45ef262d6c1cc84c3aa68c71816e9101aa1a8ac8

    SHA256

    78ea0866d27fa1bd3f13d5ff78aa8975c21f793731a70b6867581b72186a62e5

    SHA512

    dc64d4f6c826044962d26443ad297742841e7b21e64f4cf71baee0c0f982e3c93c9bcd364e7fe8043a3c6030f53322452eee71a338c3f987232df52eeb431bfc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    815a470fbf6e07f3d2914ed601e1ec1f

    SHA1

    42e53e7bb9468d95b13f82992fc71ce48bd62601

    SHA256

    055453fb00447aea02d8a9668d2d1973566af151e1748c24a3209a8085ecd11c

    SHA512

    2a06117a4c76bb1e98f3c5755678b91d978fd90f3aa33c5bfb0f1ab120c83b84a8c77e3fb520713ec3f14e52614285c3d8c7baa9a4df1457ca093dc9c6c10104

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cacaad7cccc6c40bedda9f547bd3652c

    SHA1

    cb8730169513856d3cefb228e294955ea454d2a6

    SHA256

    0292439c4b36158954fcc4b30d94991099b80af41384ad5594b651df38c0af3f

    SHA512

    63895f117467c94e44c2d40e1c4460e14a1c019a84a6f85bfbaef60b8da19e0f0f4f072339f2750b9c57df4d9cb595e56880e0bc5679c4da9092679262aea1bc

  • C:\Users\Admin\AppData\Local\Temp\CabA7E6.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\TarA935.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b