Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    03-06-2024 13:08

General

  • Target

    91e4ec046a64fb1495e1664bee6c336c_JaffaCakes118.html

  • Size

    990B

  • MD5

    91e4ec046a64fb1495e1664bee6c336c

  • SHA1

    332d759749849ce2862d0fe7f06db1f8dc723bf4

  • SHA256

    5ca95075d23039b007a261c402a09f82fee35cc346f79c48778ff922305c29a4

  • SHA512

    6583ca556f85c102f52414e001af1a4131b908766b8daf7c3b990c9b3b4d5a8b60e20ce417b43b557995777ba8e3c3dd5323d2235fa92860f4dc145cbfa6ce5b

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\91e4ec046a64fb1495e1664bee6c336c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2212
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2212 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2184

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    546087b56bccadbba5f39e7896419e50

    SHA1

    9f5b38cd5843ee036ca70efcade43e27b4b581d9

    SHA256

    1e2d0acde02492490e58ac71d04d6718284bb689a39b8927f4d29b48c84dfb5b

    SHA512

    0524a2a551c390d9f367debfde85cbba8d7d4fb38f9d9dc984122830b3cfd42d8f53d5269986f8c263484b530008c7dcd1ba51ed5154ce0e0938478c30662a00

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    333cb2b6887cf3354450ecb4c020cf54

    SHA1

    f7125dae9b3e99f0529dfba473cb6ee280f84513

    SHA256

    94ebf433ce7b5380b91e45b79d78a97fdd1d986c16f7e5a7b5574395b5aaa2df

    SHA512

    ba26094b43183a128476a407e27506c24f6968f8818f7c017b5edf273e0d5eac816335ea74eebc867697b8f97e707960de3d11cd9af38266ce0563fdc3d75f59

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    96ec2684b55a222f410fb00252452752

    SHA1

    31aebcf4fe804e58952532d5b7e035d361a46773

    SHA256

    8764632ab94fbc0514501627c92468218252111aea781c89b828996dc23dfdcf

    SHA512

    6d07f866fbc3fad130678e8133fbedfdf83e2eb3819614b4cab1c52039d74a293eb38fc5ec78f36a9e3e36794299b76f8b1638c8156a1e8658d6648bad268273

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    003c66b25e3f54fbbc45f584470169d4

    SHA1

    0704cf348b9dca6b6e01c1f7156a05a447479300

    SHA256

    24d5e733de6742748a2e6617c33c58c804c0d3825a19b548e344507ec4078df9

    SHA512

    d5b428d2ae4978784dcf8da5ec969a42c1c1d56aab2609ecf8795ee2507a55c1ef4936190f974aed1806984cbaaac71555a28f9b58e5a6ee5ac0c59cd93b74e2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    85b2a8a666bbfed1330707bfefa19764

    SHA1

    2bce9d76e02cf85a7733536d4e108f920bdf403f

    SHA256

    d824518d49aaf7402ee16939c9a04cf288f5d8492b6ee9e235e81103f83570b2

    SHA512

    b79f676d00cb6a3b203acb08f6a2b72b2a65f571d19cd301f3d6f5f7b2c3deb2863d87731700a3307b0ce2fe09e87581862388d7539c9281785f72af7ca38e16

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b3b0a0ddd55b237e2b75b77775e7e959

    SHA1

    8bd102a598e8d6592ae4702f97b47c9cf6186ae1

    SHA256

    bc97309ecd8e263be444219a354592456441fd33d40f118485505786c8c2d25d

    SHA512

    51b6c5df33aae51f62ab5254c688d622dd092b5f7043ced77ba484bbb29ef11707257856b1cad63f9d976d769c15ac021efe552efd1af60f8332311b38e067d6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    37539795d8594ce1f4560a409ee0dbf1

    SHA1

    de2bffa40ca845645305de17859523f5d2851bf3

    SHA256

    8e9a68e0eb2ce936ee63c630305efb0fbef5c0a8591a0ee466dfbc0d1035cf58

    SHA512

    ce908bbccfd3ee5c18731c949a37b5c311ce63858d556f8778f51992d4e61424e798bc5731df27dce881245f9b60b50c85b9b3417e69f43840887a06e02314bd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dba7dab49e5f7c5f3568331674d68102

    SHA1

    a503cf3e38b9428485ba0dd89942c8dfbe764a2e

    SHA256

    767b6bc6b76073e497f2a3ed5c87c5f70d9258b5ae405acbd0fba98a4ba26dfa

    SHA512

    de8d66fd160940c253ba988645834a3a4c0811ba125bf160cdefca8a8b0d4c3ffad6598687a9a7be9bc57638169f417ef76ec1bf44d14ab3b1718ef6a83f3c85

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5cf5cdebad04ae9b26dd503a71a9c039

    SHA1

    afdce9803e2ca8039e5faee50a56c7ef704b6f3e

    SHA256

    214092d3f8a010cd0362b3a83caaeeb1204edd0c7f020c524d559492584416d9

    SHA512

    ad135dd3ccb730a623ee21c236f7939829b0cc8c1ef15ba96ff774b4858bf86821f1979eed9bec5f748016dfe3a61e6ee520e1de2549a9e005fb4465bfdb0571

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c2be7ef598881661dd1bd552a9bd43fe

    SHA1

    8b42cac8ee77c15ae46598c38dd8d762590ab639

    SHA256

    7b0549cce728f631656244932f688f7186e53e5c9fbdf681a2705df655d79a6c

    SHA512

    40a5efd2ac4550d98eb0ba7089c69623aa65bef2ae860517f7095772fcf3e4af06b7f37264dda50f2f3bbfc67fe717bc989135a3904eec2725cc82580e33b1b5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    01cf5a13c76a34fca3f0a3f2211f7fa1

    SHA1

    8a3e3805cd99f26abff3e46c0100d6bd69ea332c

    SHA256

    661f1d43ee21ea8185e88b4edd9be14bff3df5b8d537b313058ad599c9e3aaa4

    SHA512

    c3b45e794eea8d0917e11b53350cc83e1610096959b43a72b79e25c12b79cd83b5de001cda7484fb26051a82269ad122cfa64e4b5acfe5df81611a10bc39bdeb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5ee2998f719386e81de469b190f4f419

    SHA1

    cc97eb8a42993cfddaa26c5a942f4f3f31d85067

    SHA256

    9ed902f37a46e376669232c7fa052b4fadb8fb422339f222ae1d31b42c365468

    SHA512

    974d2d062dba291f3dfe70e69b4704e78eddc3eed712555353958a25084814ebfbfb7c9e9c374ffe77de0f48f848a1b9a848c9637543edf4f2c8c9277b0172a2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    03ed0ac63e875e40f586372dea9b0d34

    SHA1

    b2c71c6b76be7c0ffe29b3c058096e74d2d34a0b

    SHA256

    285141e3528d58e2deb4383b7b48a6b586ae2b04ab3874f79e11ebfaae1cfe91

    SHA512

    8662f929e2058f470bb1dcfd453b46ec516cb69dfffa14f12416cda3e00092b0239e45dd6ba7cae8a6e3d4c6e8da65dd316c3f1318275bf31378056e5f4ac724

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    418e11738f5ae0f2933ce371d6a6a2bf

    SHA1

    7d483f3a600f7742dddd9b9a837981acbc8de182

    SHA256

    3f5f585fe23d3c3784f0ddcec121cac40b20f86e2d8f9506732fc0f5ab2e1e2e

    SHA512

    fa710d3df1dfe937e2fbbca1091268189f8f75623c3c321ecb53e1a18904430ac19d0184a333b78220904b0465d21c77f25eedec943e2b8e28b1ada37ec937b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bb1fa0474bbf234166136e3b24f3a9a4

    SHA1

    455aeaf54ebbbaf7706764c4a0266cc3a536fb95

    SHA256

    d5e265b39f8599a4ca6d5d05877c828f28c6a9063572aa7a17f539b71478c4c2

    SHA512

    050060e3f42f849de9e6cf481a23fdd46c55e5519b6573f645b8f9f5bc64c42926ff1e9a4271f8255c32f24d131a930732cdd0ec786e01d05b2b8f8cc4594ce7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    455a26a8a8d53be34a433c98d19f63ec

    SHA1

    9fe35f1f9d702d1cff48e722c9152da20d7f5c4f

    SHA256

    a96a97f5c66731c41c796fc7d038f7677aefb9da7200c9db686afb5e4ce4dc60

    SHA512

    83abf1cd599e14a42beb49c381e52d80b547c3d7e94e6369052646cecf17bf23a6ebce9e04861b5b7cd2861355133f5d8509b5a07196d9004e640c2f055fedc0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7cb9643107a8b8c508da450f0c0a8f52

    SHA1

    0cdede1ce559cacb955fe12b8989de65b5b490d9

    SHA256

    259b3df35e7d4341e3a919f101d59fa9d97bf9adb2941890f264ed6fc192dcd0

    SHA512

    32405af3edd25c994f3940d27846dd49b23c6a37134c6b227312a268cbc56e3ee7790989256f800a8b5c8ca31509f1c96316d1244fde4dc45191d00987626664

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9d962c3fd135712b91677d1b27a228a5

    SHA1

    501dc7beb9fa8294d5c5c04f051e938f85c28e6e

    SHA256

    b6da879f59f9ebe94ac14a1b996f13ae0329edca5ab8219a654f29b7ea727c8d

    SHA512

    ebdd9477bce8b0bd41167783c0da64f3dec7dadc93f88e6a0f94f1fc816e48598a4364dd1a4e1b3eb9316ebf1e5d599247a0dbf3e1f5be01193d8b4ebdd8e8b2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    562034537e34e6649edffea284e2715d

    SHA1

    ac0cdd5b0732b2f6470295f7f8ade872001c12ca

    SHA256

    496977af68ce04839bdc41e3611cef42d95bc10336ea956ee9484c95fb9bf644

    SHA512

    4077d780b4a316e6836091f5017a55ead670ba168d9776b6aefc7b0d46ed3fd8cfaedb52018145e17e348eb3d387b315e6e6b1e2f32f1cddc4ee0727c6ecd21a

  • C:\Users\Admin\AppData\Local\Temp\Cab400E.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar40C2.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b