Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03-06-2024 13:18

General

  • Target

    91ecd593a6e23e6ca4801bbb97fce007_JaffaCakes118.html

  • Size

    18KB

  • MD5

    91ecd593a6e23e6ca4801bbb97fce007

  • SHA1

    8d2bba60102c9a5ace9dc0c5914a2ba192ef15e8

  • SHA256

    185dd08d575f475fd29f2f0895f38763a02fcbca60be3b17ec3663c17b18bb24

  • SHA512

    7bc03b574a0b0320f1225da562150fd21514133ae8aeea81db82e6f7815c7ad52cedcbdf8ec76dbb8768e528ccedede0e3f9480c9ee14d2bf7d5e748f0daa84f

  • SSDEEP

    192:SLOzryrTQtpHsWiYUTBcyYr+OTobVfjb/DLL/yie3ogVj2fRBIDd:SLQyAtSjt/3L/ybodI5

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\91ecd593a6e23e6ca4801bbb97fce007_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2696
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2696 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2224

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f77077be38f0eefc2463da2b316c934e

    SHA1

    51d3422a3499e9ebad1dfb13fc971b964f5a20d8

    SHA256

    cc6d9ccdf221e9c74de172009bd0711df9ba0ab450edae2676fbe7f8c8d08b0c

    SHA512

    1b0c5571e7c76cf5b07ad18fb00eee32e3b362beff04af448d0b3b2721b62f3bac9590ad9c94f49575c16626e7afb73d0d99ab11bef57096b6f9ef4621a2c22b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9d0f5a5286d6b64ec3ca5a3c0a0515bb

    SHA1

    b90308c67275f72cf820cbe1389544ac79b9115d

    SHA256

    f12162264835c52e0894676d795b6461f37cbdf9c593ab87694cd170607812cc

    SHA512

    023c8009af62ce8ae54b2aafcc30ed08545d809b50bbf9b958e3327448ff4f9d3ecb4eb400bb3ecc14097163baa325265c396436a0c4f31b4cb851a72adfb93c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3a62127de4a7faa647da157857a70b93

    SHA1

    3444b165ccf1202aba7046bc8b8f7d1e6f25bb48

    SHA256

    9b39706f9f2920686b9d3efa670021616fece6f4c14e7fbb079fd8c81a4bff6d

    SHA512

    fbf148b9749eea936948804454d01ddde2fb87f1630322e3142cd24f6bb128d2f8e8fd5627747beb8ac756769bde2f6cdc1e78d8da62701cce52915fd2e6a1c5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6da8798b4f19e85f76d7038ac9694a8c

    SHA1

    dd63b3e7aeb59eeedf8818f326d5291d467f3dd9

    SHA256

    e76e04f0a65187b7816787a02fb50bbeee2c98a6ff5936c742e194b02fbed922

    SHA512

    be0dfda2ed1ed5c22b836b901136dfc1ed138894cd34ef7040bb2ad4b522a21997e819bb7f51f9db0419c487c63ccf4111f2adc36b417ef7fe282c5615f7907f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    81548abb3b0c805ed556ef81f829a914

    SHA1

    c1a46507dc11173aee1bb5c49b02107bb7bfaa9d

    SHA256

    aad498e9d4b24892ef6de12ec3842b8bfe980b750219790ad164dec5fae523ed

    SHA512

    54831f15f9b55b1e88a12a93bafd4bad054c4ae61ae237ad98f56f7886174e0b04b40fee274efd1d5d9290f43e7d07c78ab46aebce521af16062247a9b25a2a5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    38d913962fd6913d39c9841cb9e927a5

    SHA1

    5670e7649f0361a4971fe462bfb1a9f1165fface

    SHA256

    9833c517d03e08aaa23e607e8b715f11ec588f2661a931375e8182ce1e78ebf0

    SHA512

    9afc536e1516e7c574259baea33f7103e1f0198ac2463bf5bc42ac7be16636f8713fdff85c0a0c86537c6434d62b9e3132644c51a7b2b58df987647449af6738

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9583d940972a9646ff2954fe765bfb75

    SHA1

    06fd54b317c566b0cd7b3773d70a5b11e07b585a

    SHA256

    03cf9f81b699bb45f19893818a1311c5503cc73238e25f2b083aa44c4c02f883

    SHA512

    c26ecf0ee58d397076fc49c0cb26f057fc0c0d25604fc7e296d9ac8c7f87774c1383f7763c79032975097358715331fab0c61196c919190767250d04ae0a4e8c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a0236a500b3b1b67e395f10295cc6b4e

    SHA1

    c1806fe19c7a411e6be48597e7cfec29ca8a78b1

    SHA256

    5865f7fbd2f5202714e8c1643113899be4f40a70615165cc989939b2727dbc39

    SHA512

    f1a8d13b799643337668597c315a7f7447ba726469a70839e57c84dde4a5488fb6c6943e21b685f0aae979eaad16746c30fa3ed59426944c02b5a23630eb2c59

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    794c7e4d54fffabece0d68c386d2ec0f

    SHA1

    7c0b463d9bb04ecb86d33fe857b3434d8e9d5fae

    SHA256

    7f95b25413dc8ed1d7fff6908c169820916221b14a2c2fe33b8a5d1ed0a623a4

    SHA512

    8a8d0621b78adcac99143fa64fcc6f2013f0a44c6cf7becf29add68a283dbd09c20628f8e577a4d1aa649597ce883e59b0d387b2c6967ff3c81bcc39037102f1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e6bd5e9be415436e69c40556554fe918

    SHA1

    f30aad43256aa5a7fbc318d7359a32310a6048bd

    SHA256

    8fccbc35c6e65e7b0f33b9344afdbdc1b9771c6b822ddbc5147c5c77e06cb917

    SHA512

    24c68436b72c03a6e211f5038326de7ae5dd918e8a73630ccce4ddda3773dd08feed06f7c769e1fc0b63626786dd1222b1ccfc3f8b54e73fad4d73a3bf6486c6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e9c0e4e34fd5765e9bb75d12282c3ccd

    SHA1

    6e9cbee7393723dd4c8ff11c421df984407853e1

    SHA256

    b42bc5c6e16ab17405af902a57d7444dda54232307bb7dfd928d34806026e965

    SHA512

    4e64d3c4e98b55026d70e44bd3c47eb0c878fdc7bc93c8a44b0bb8b2a7e6d5bf016151f6b729e0f2d908eb6530563be0b85fbe2adc86e9aadecf61c213a6bcb4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6e1184e6144aa6d41b98504adfe82509

    SHA1

    61820f77338735af3e4563e50b16eb5c21c11a7d

    SHA256

    b2a178387cddacf4fa3ce8d01f5d2ee55c83c6e02141f4ad1b747fdf3d8f7399

    SHA512

    92924f053b2cd920a18109afda280e3f3fb7f2d44b30705fe3ec4a10a8564b6323752e60b8b49d2558a1fac4c5be891ebe1bf9c9d3b89a99131db39084e928f4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1dd919c42b0452abd8d36521773903cf

    SHA1

    79dbc47d533c545ca0a57837ad02b0fab7564b77

    SHA256

    9df72ae882f77079ab5942df92b1cd59418d4e0446fa4c37bc56e910c09bffbd

    SHA512

    b5c23dffd19dadbfdfac400fdb0c261a4f8128d0365fa9b5c0c18e0c20c44220135e8225b7f10053efda37e19c95b47c1c7b81bbfd8569b5d0f3bc3b7c6e6d5c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9c3ad4093d8a243f79bf3db6a9c2129d

    SHA1

    9388eb6b0673824cfd102ccd204953690c4d83d3

    SHA256

    788146dc4d92ad06410c0835ec4b815fb9918b03df258189ee8132d6ee7feed9

    SHA512

    a66a306f6948315e6b6f3f559ab4cf5f3903fae2ab1472596a563ee223614aa0c9ea7731aedcf2fd352792aeb22de64c7deb6aa79c34647f82ab55aa0fba8b74

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    10b73e78e7ddb638c91fb30be7d29bc9

    SHA1

    782d1c269fc4da48bb6ff77e69a8f9c8dece65bb

    SHA256

    30fc74a114440a6200a41f9da372f8fa36af883b00220b3ee0bd2b7741a9013d

    SHA512

    7990a49b565ea06b5be228b7e0cc744cb09fa1cf25965551c088e6d578e229fd5d4a5ae280fcfb711fbca9c4d61e064ffeda4408b8319685da9f0671eb6f4e69

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    33bc185835a5b6930912de882aad91a2

    SHA1

    b94bad384b3c2ab9720c0b64ead63dea04ae7fde

    SHA256

    1f448c9b656721e28826f73aed6d85559a1b87395091bd815df582089848f8c6

    SHA512

    eabb3fae4b5661fd33b1a15764861eafed68641b30ddc088d34ee64752e2d8a88555ce25b2c13028b984cf441164a0166072fa701ae959a3ee09f831e7a59b4b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    82c6a8a8e4abdb17ef86ea2c2d958a90

    SHA1

    2bf09e8a62ab9b1b1fe353b9d9a34f94e8348891

    SHA256

    d2f1704dffc449dd9eb9bace467048bd9857195a5d8c52f71f44b2c20f06aff9

    SHA512

    08d83382e7dedbe0689e2b824c8c0aef8d08df7fcce24f49b054aa0ad018e507738866376df92cd5445ac8410974357482a50864aa77046c20b57606b7374fe0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4e732d4a45d54256ba1f19101a10937d

    SHA1

    df807e5dab7d7521e990b9be3986387c8b5a8bac

    SHA256

    1d51c766a0c964f90fb3e39ab4d817d4b17fd240c5aac4ea8fe8d7a4c6aec053

    SHA512

    e6776887d344cab63284bc312ec87f537ac0f195f0ece8debdde6c67f73caabcd06c2eab472510215de8f604a175df5424f0c2a8c2a4b6ed9f549a84e335acf5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9f4b8bbaf03a76b1d4d1279527ecc8c2

    SHA1

    32ea3a2fb16f2553c4091250b10e51f35a99cf69

    SHA256

    52d00ec0ce5ed929029ce125e4ac4f9f8d6420bebd55b5994d205744c6e5ed62

    SHA512

    a9658ce9048800c2eed83574e71b08c4877822b843145dfc9953e87347002eae6f953ce60a0751010765229e5065288587a491bdc404ea66c1c1727b899937e4

  • C:\Users\Admin\AppData\Local\Temp\Cab4B65.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Cab4C41.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar4C56.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b