Analysis

  • max time kernel
    133s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    03-06-2024 13:07

General

  • Target

    91e47d380c8c3d8456b1a0e36f739fc9_JaffaCakes118.html

  • Size

    2KB

  • MD5

    91e47d380c8c3d8456b1a0e36f739fc9

  • SHA1

    27f784e711a90e44ab123c7ca358554843282d31

  • SHA256

    e7a1da37f9b4b1bcbda64ca52b33d3f113e23903363ab985ca6ed3913fe6e514

  • SHA512

    6a1488455bdce4a8b96ef379cf1fded891f8d15f5c62bc3d7c362e9e0f68fd93b1970bf9228abaa49a389b1bf52102f575ecdba21b305461df83cd66da5b7a34

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\91e47d380c8c3d8456b1a0e36f739fc9_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1712
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1712 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1144

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3dcd25f4552c1ec6c5bea9e8af76ed0e

    SHA1

    b098f704635da1a61f663eca98388843bdc4f8b4

    SHA256

    e93777b33a05e465b6bb285c2e44da78d45dfd80a9de3e8cad801e076509f54e

    SHA512

    39551e777f91a579ad6674cbe19033d0c7aa0005ce8c3bf8a1adb3b08d9d12b4d2f7f7a855f9286fc34b6f9c1225bf539ee7388770a42c18ad6a146e3dd014c7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    67d0f2fdde92e0ad2d6366ad0aeccda8

    SHA1

    15d43cd3c5c25ebda3029b3d10102ee07f968c99

    SHA256

    cfe7c82bc2f22c1ab56a0ff86c2f78ad070ce5a10e37acb2c5ec731fa30c53eb

    SHA512

    f97f494d02963bb8f79d356e22cbe3ff2e66d32eb886f44c9e153fe1cde399a9f211f3c24da8c57a416d1753545a36d25de6c94664df529b066b950cb6acc07b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2546f0c20a7730440a9d511f574cdc32

    SHA1

    6409909cf8ac6441b2ab95f4c716e1780023c855

    SHA256

    bad195e9ab774560e88e2bf6257b8b36512b2c8062f0bcf10be296bfb5029fbd

    SHA512

    e91120f8396c4cb46cb719367ee2dbddbeb7bab028bc0aaa8c3a981c9cc7c9afe98ba7bb5261519af30efdbfff6afb8b1d83fb8f5246f838484edffa152ad154

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b35708200b75e36b42e25d4c0f1ebd95

    SHA1

    04c8b58457bcbb0d1d94c654e4951ca3ff701c60

    SHA256

    e91fca60c5fc8ccd2573d9684eb07fd3c39155c7ccfa36d522531935a030908c

    SHA512

    d966e221d9dccce6d34905dec2af82e2b1bcfe1f5cb0e56a027db46a51daa391af067f30dd88f17b3d1abd578f92e82005a07f7fb6e6cdb816ba4e718299aabd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0185359c55fff35597bcf44d398ff755

    SHA1

    2a3984d81208cdf4ebb3b932a1c5c9e59674b68c

    SHA256

    0415fdde00bb3c0bb45ddab18831c944fafbe05c536cc9b2915670ba76f0c158

    SHA512

    64896ce7500b9763882476de4360ac5855fba62e8fbb9dcbedd00ca120dd14f9f796597aca1b15b50641f92f041eafe2cfe3ea0ce31482257a6e697828b45219

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9fd94f6fdc879c613dd5913efaf31a1f

    SHA1

    986c4e31c6654c8a4f88da88adc926a9f94fffea

    SHA256

    af2e3898d56ef23f6a1174eb9c8627ada478e1ea3c6ee9f1c179455c15d4911d

    SHA512

    eb814a653f17a07b834ec2057c63d2cee5fdb78ed40c0e534032acb53802ec7809703730824401f5516329447ac5e1ff4450b1e50d12f9e54d1ddce001d8519a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    580358e42e746ea3f65e782519dd3794

    SHA1

    27b7c666704d53ffcf7394d1aa9c2fe6f3c31e16

    SHA256

    98ab5447711888f72c83a03e1e29810a0579476709be70a958fb189ca03f29f8

    SHA512

    e8b4004fca6660e7a8ae00566c2999e250c9f3ae94245c341afccd1da0383a74b02fcdca150681ba24220e4fced9f31052959b3bc8e5ef1f4452e84fe53bae25

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    610689ff9ba508bd769f18b7cc00a90d

    SHA1

    542b67cc1841aa520761a0f4f93d2bef38639cf5

    SHA256

    b88669550a89f83b9de5e69612e50db59194cfdff9b3ac087d54bf628bc127c4

    SHA512

    36d561ced7aac0906a7a192b55a53e5711c8697e359c26dd5376dee4608f662c55d27bb29caa5b2a0c4795c3f2d24e7348ca0dac3cdd9df7c168cda0893171de

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    727bbaca2bc7c3a86b057aefc397106c

    SHA1

    5b4f563a4c4cc915b18461f8f33fe0f88bc21711

    SHA256

    4c8ba74d86aced31e71533f8106f7c22f266cb14798f061479529941133b7ebd

    SHA512

    f5f79748e3f885cb0535a792d474946c5134970dd13c656d438f4e4a428a7d734f02bf579486c480c661879a95834b1d0ead90d899651a5d2724344055223a8e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5f1e0f9cccbccf4eb188412520e53d72

    SHA1

    b6f9829a655a7e021c074b30031915635e189bf0

    SHA256

    ee96134871dec754ce2adc9b2533e48a8f173c28246380629959a1e1c3a31071

    SHA512

    b199026ea7640a8f18859b882ec5cb1f9660f5f1364042f7e55fb812d9d46209f3e30ea543b1878db2d8417d914ed6140c0f25fff5750680e4b910d4d85ea7e7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d9e6effc571611467f1f5eaf980337a0

    SHA1

    ef5018e8ccdd4980211ed6f16104c09d95cf0c18

    SHA256

    02105da282190de09d3a44b548a04ce4ed5e7f2428e3226f450ba91cc99bd180

    SHA512

    470b95e03e533d7a447cb47d0ff0ee836b5759707c479be0cd211aa92d976d674735c986064a77c89e217c606cd294670a74f13647e993a983c062c1e8db8ed2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    58248ab26966b9721f6a20b1390719c5

    SHA1

    1e31fb5e301ba717733bc6669982ea40ae00f83e

    SHA256

    803a96d1daddb73add2ad1f303d574f92acbfd45e7500acaa87ef2ccdb8708e5

    SHA512

    6034119619af0110307018888e733f9f12de6ccb971f1034eaace3dc1362521c0f8202ab3626b2fa03217232db185d0cf4df2a35a66621feea0203356483e20c

  • C:\Users\Admin\AppData\Local\Temp\Cab3DAE.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar3E40.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b