Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    03-06-2024 13:06

General

  • Target

    91e427dda315d008ef82281a5cf9396c_JaffaCakes118.html

  • Size

    68KB

  • MD5

    91e427dda315d008ef82281a5cf9396c

  • SHA1

    b04ff5223d60753a629951ccb135e8812f82f755

  • SHA256

    eb30bb298ee7920a1229441f171ab1668fd236eb5e4393db3336be5eff21f9ed

  • SHA512

    3e85345f98ef154fc4bcdc4d6879a890c5d6ae57a6640d7407ab1f84385bc534a7638579edafe655ab463bf206d3319ea4f1053414060d20f37dd8d6e5cf6028

  • SSDEEP

    768:JiUgcMiR3sI2PDDnX0g6jYHf5oTyv1wCZkoTyMdtbBnfBgN8/lboi2hcpQFVG8sM:JSZfOTcNen0tbrga94hcuNnQC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\91e427dda315d008ef82281a5cf9396c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1996
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1996 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1728

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    13ed5e0369cedc64c8437eb9a493a981

    SHA1

    880053c91809fef7b2a3d688143f554d5a05c0bd

    SHA256

    3560614f2f62c19498d2ad6c3b9fa8f232883167479de05e924a5a3ab19a8454

    SHA512

    18b3c940a3b722b58c476af4141ab987ed9f7557c1e52f3f20548b2c209abd67c943761d22e20ed59c36d69f8cd911285aff7efdf2d20f51c35cad62932aefa0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    c202f2a39429372b15f9b8ec5b741dc7

    SHA1

    a8dd1df23626006b2dcf273f0e1c95acf2c7df14

    SHA256

    695cd7a6ae45ed7afe1cb0d6e6516d850511d117a835a96fea2666c808539cdd

    SHA512

    f6709cb3fbcc228182e18b54974f693ed2924007ee894d449a3e9f269198a93eef5b15e8c2284dc6071204c8f113232472b235118d48abfbb6295b1e5cde0789

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5cc302bc935e609049e296aaf020a8cf

    SHA1

    b4aafda71a0176f17f365f5da02eb2bfc6bdc316

    SHA256

    798a1ad7519089e6738a9b65aa9bf51bf2e139254244037c64e5470736fc2411

    SHA512

    984b189fc66cca9262c2e09c24246e0f0a3967ffe29575a8f3552d550407ced74951a81401874599e964107433db1c610aa37af3f5972c69832027e9617842d4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    756866d4a6946751f315e2ea3a0c38e9

    SHA1

    eaf0671932c2352a238c9991d33bc2cd68973dab

    SHA256

    1130b45e9f20052f1409bb0e9f259390200984da8fa7626a05162472e6b54368

    SHA512

    21025850ef34068ea265c71294fb98dc33fb383ce06930bf86886331c96e54fb04ecd31827fc1cb55f0baebd93b3247f7214023be1e7cef27d864e4b7d3d20f2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9ceb39d0f4b6b682e398b452e74309e7

    SHA1

    fca34e5322c9e5ea49a7d4a92b42266ff9e3db29

    SHA256

    1b44e26680047432544627b15730d9351be65c31dc554b5a11f90c60a02759be

    SHA512

    451e4919126b4d065afb3b266e0e25b710e54445d0bc120ffc850c796b753315251a4ef88f98b7953a3bf5bc5ab5aff361fceab84c5845595729461ed9f35c13

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    77adea085deee60e9fbe8675c177c21a

    SHA1

    ec2cccf3626065548679d99bf51c3813528291bc

    SHA256

    59393dff2559d1f4c7654f70bacf08cbc3c2b86a1d54f9cbaa7371808dceea85

    SHA512

    79a77124612ce071f6fe88732b159ff6214f3271d82a846e3613c4270ba604a0b2f65173fcaa7c94fd41392107acf6fefb7e5e0f048420d59038b5b6d41190ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6e6690a55f4f4bc2308eef9980129b64

    SHA1

    37972d3966fc45bddc4a746b067d88244bfb0d48

    SHA256

    fce61b0397eb5c08e48afe6011c689171954a0ce24eef08dfaf1df26cc274115

    SHA512

    e089cec9c50a01c0b40dc3b3279eedfed09369d300a3572e4810aee526c2fdddcf1e30f25c6b0babd4d7743041173e3b74083e81f75655254ad9700dc0a9f79a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    034725f7cbb4bbe784a7839b9eda3ea6

    SHA1

    48293efc2d1bf6dfc02524d3d78019841c16f236

    SHA256

    6226422523771ffeeedc5f85bcfe47bedfa2b2b98f4fc22dda0355ecebc14645

    SHA512

    1ca3135ffb038279aaf7df6830623c13ff62efa33829d14d73b65b5cbc232be71f24d2fd3c6b3cb8265e1f89b7181fd30c39d7bf66481df3d91008aa783b56db

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    97be87756bd41400d2851e92dc45a9ba

    SHA1

    7650178e4e1858581c8ef4490f9089761cd0f7fe

    SHA256

    acc14e24afb17adbc644cc48c982019b4344c9d9ab566edf1e2757c64c07b3df

    SHA512

    6b264d8fad4b7f8dd6b7bcd959b7524ac2141f681f1da422276da3754ea55fd8eea049cf216dc5f208721058715e65fa6a065e593044c251848853d78a8c0d36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    698ef9b885da5c46effdd85dc11ae2ea

    SHA1

    93b81b9c8921dc036fe3227807a3b91b6c00354d

    SHA256

    1e93182437b5516dfcddf2299022a08e07605b51bb9762ae236a8b43a560578a

    SHA512

    9c3f3640033395b8cba9377ea0009c9e5c30bf1f5c9cd66522019b5e15151e347e996b69410373c2a24eaca9bd8754681a3ae452ab297d4abe2e9b60dcbf6009

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b14015bd7976171d3218834a54f575ad

    SHA1

    251e530bd3a8998108ee59b2a55105ec81ed01ac

    SHA256

    be8dda1aca94580aa131c9ea2850a32d7b1947688fe8c3c5924e29c614043ada

    SHA512

    750dc2c4a113692eaa61720ad6e9f7253afaee60ede06d4c926e04e7851e488ceeb7a245f03c67249a0a55189d2cb349ef9b74cde555cb4b65f450becdb24396

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    64e4df5fc3f3145ae6e6ff909f8b2e71

    SHA1

    938e7c6169253e0d7826dbab89a38d394c1011a3

    SHA256

    583ef2ab2af90ffcb2d9f365b9edd02fa113590eb4de48eb972a8682b353cb3a

    SHA512

    0be99dfa3398690a4a92cf4bc42a287a4b308eb0bd36f639ea065313629aa03edd42b61a41d1209154bdc9c2bdd1860174c1137718a17c45d098f801666ab210

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    802399f4e0251a17905f53797b16ad6f

    SHA1

    23818bce78dc68675af2390d52b7bd2903970e08

    SHA256

    43627ef7d47585b64ccb0c4db82ebb928446c2f055130d0fabcbd9045e77f0d2

    SHA512

    92108d92214c6d553636356fb9ad1ac66779ebb332ed2682215178bd1706b4845a36d6e379971aaeea33bc46864c6b2da2f7ebef29fcb62976394636c75d7ea1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    78585b824f8eae8ee5ed596d48091cf3

    SHA1

    4a926a45b4f9a934398fca4c61b03f76fd7f59dc

    SHA256

    fb805bfdfab8d82156e7b2a8022eff82c3641cfd7144ca9278e426ac62338a77

    SHA512

    b6bf8670b20426310253dfe8a25dff2532b190de34afe64761b861a05a5864e895a31c1074c0e1c667f9a4159d2d7fbac4da10330448ef105436c28002f6eebc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8f40898029bef589f0529f6624340054

    SHA1

    836a13ad3f6eae8f0d60aeeb9ebe42c9e3a1987d

    SHA256

    6627d211d3930d9ec71d48e56cb79d71f16e29164f02d0b5383204527a82c41e

    SHA512

    111c9b6a5a3d25d290b92e45895e0bebc74be08bb17f86f7d5139cd998076efc74d66f31d3eab0d75fdcf131a86162239b051263549de9f6fc8d0468aad26ca6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    11def749bc2a3b70eb7e831ffcbe571d

    SHA1

    e248f8e42811cfee3b6f29a54cf797c4174d04b1

    SHA256

    bcd160bb1cfb539b00c96ec5689110b8d0759b0ff514e0b34d503356331f7922

    SHA512

    0052fa39832b37c6487fc7ac539c4f3691f88eed8fa9a5b7c61efd996c6cf3126a5a8743a793357c8feb00f8b84c0baaef709874a855cd73dc9baa79a3e0483c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5ace4ce31aec711c71384d792f895304

    SHA1

    c0343e64f13133845e266429c2a6d2340099db1e

    SHA256

    795f829511901d19c18cad1bdc596388c01827ed659747e216180650a8dabd30

    SHA512

    7a7cb0b47010ae08c4d04cdea1262863aa06f9f76abdd2460f556e047f5839fc879a8b45773af7eaae5992cf91522d46b9a31ab8ebd953036fb12e8b7b678a91

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    af243f0487c314d40d943d2075c492b4

    SHA1

    c24554b9094146a48f12c3c1599855dcdc12963c

    SHA256

    ef3da44191d897f28da7b77a2073540703b9404f0e0f6bea135da44989f7194a

    SHA512

    374770aac19cb132446659d9a57f7c42198e25b1a9e2efc5a86dc80ef18a84ded76c9ab48c1fc959f3edc8a2d4779c6e12c11b333f4637a48e0e7cfca5bd99ea

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e2af7657de6294cd695c2b5fd35698d9

    SHA1

    b1cf668be7156d66283d1f9cf531ec77d5f19049

    SHA256

    3c9601df845ac8cba5f05da0f7e927c3eff9f857d95af7fa138549558d4913f5

    SHA512

    6543f15fcf7fbda87c04d7ac91e8dff37bc46db668c1f25deab677c3c8ac5928839f028f34203d1c700b0c5e1124a5d9c4f72b280b41f7007e8494f64872d021

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b43d4bee6b34366d98fac8e784b0802e

    SHA1

    b5f835b9e760d478a4f34eaef92d9eb02551a6ca

    SHA256

    fd0cd7ee1959e703761c9942bd46747976e0599202f0b3a6142c6fca76b3f086

    SHA512

    40173bd71c7bf4de44949d248b386fabb47a5fd8d28b84be1399f6bfb9f2d5662897b9e9668530a52daaa38b9f6aae7566643023b80ec76879ecdd1d89459f53

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    392B

    MD5

    fa6845525533318909e4fafcc644798e

    SHA1

    b858b3b89199f0768d71f4193c39b2d2303fd016

    SHA256

    c3418ec1942a978f8221f2cd84dc816c3a91592c9daf4a01d0989779028f1a6f

    SHA512

    df7c664124222c2e105576e8e90d2e54d40c2d2fb07f3a744233580631387ed3c6747fe02bf001abfde6e70e40a0513459d375af0557aeb9173300c817af36c7

  • C:\Users\Admin\AppData\Local\Temp\Cab2888.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Cab2909.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar288B.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

  • C:\Users\Admin\AppData\Local\Temp\Tar291D.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b