Analysis

  • max time kernel
    140s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    03-06-2024 13:18

General

  • Target

    91ec814ffc1be0bf22acc03ad5f77733_JaffaCakes118.html

  • Size

    140KB

  • MD5

    91ec814ffc1be0bf22acc03ad5f77733

  • SHA1

    73543ac86003589898284c84544a254a0cf1081f

  • SHA256

    d2e8b8136b1146cd067d048b9cdb80059b6356690056b714169c35453077609e

  • SHA512

    7d85393f1459cc75b26ced953464bf987bb06c288ed995d1fd8512c9f135b5b3607086356dca3d17049096bf78d64dac76fdc06c055fe74ff0082da5fb4ec2a6

  • SSDEEP

    3072:Eif4KELEmrORPCL1VgRUyJBiH1kM2FXkd4B:TELEmE2VO

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\91ec814ffc1be0bf22acc03ad5f77733_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2076
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2076 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1756

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    13ed5e0369cedc64c8437eb9a493a981

    SHA1

    880053c91809fef7b2a3d688143f554d5a05c0bd

    SHA256

    3560614f2f62c19498d2ad6c3b9fa8f232883167479de05e924a5a3ab19a8454

    SHA512

    18b3c940a3b722b58c476af4141ab987ed9f7557c1e52f3f20548b2c209abd67c943761d22e20ed59c36d69f8cd911285aff7efdf2d20f51c35cad62932aefa0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    a6f43b060d833ac46214fe491ad6cadf

    SHA1

    19cb65ac9272fc60d2b45bb202d7af53ad53511d

    SHA256

    84f04cdcb0112dbae5a879220a50e697657ff3e5518a93a2757ab46d930c81fd

    SHA512

    8929fe426c86278739a2f96c80ee8346f766b95bff80592c4f7e22c10f399e700ffda1852fd4a90e96056a725e46ec9db4cfeedbb488f03df80d99142d9dbfa3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b69f3b5fa512c122cf0dbce4c8bee93a

    SHA1

    a1c1b62ac51708e53c164371e5dd9607c9400574

    SHA256

    4912a7ea053857097e1fefa77afb503f539c663a5751e5a52ec0b061d75a2ed5

    SHA512

    a0cc4ada0b183cda3c3540f0c5628af6565c32cc760dd78c6a6b4627c855be083c3eca92e3a0da32ddc2a0071ab4d9a987b3bf9683c5d755e4b42e64218e1fb4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    674e4ecfc92c2833cb0568b66c425e1d

    SHA1

    f8fbd68161f8e87af8453cac9ed892b8d2714c96

    SHA256

    3d6157e4308a599ea3c6006c3cf3926bc6cd5caa3aacf93f68d4b23367ea0457

    SHA512

    dea148b2ad345efb9c2a5b294c001cba1f5399cb1cbc84e50a8e28e642692ed41936293aac21356f3aed25f6e5f3cb3156449141c163420e4460ef626a91f1d3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b11e8125f2c98c81ddf1e0de5aab92bf

    SHA1

    abd8e966b4e209e1fcc5b90011f0cc17893c5a93

    SHA256

    0428edee96f5d65881f958f62b646a2d47f5c02494aa0ff730cd6aa2788a337a

    SHA512

    23b2a306daeb64d07319d49c9c147a2b7f9439f7cf891cb643ed675227f602f195eafd389d1c5227a4f89dbfabaed477794dde0fb64867e1d4c7df6a46a5bb56

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b2a13d551a5f1e58e4146c2ba478d1e4

    SHA1

    724d3f1e2d4739fd2a350ba6e47cc77fcab4a9c4

    SHA256

    a3a8e2041cf3928bf8d94b1e4a9aa4ecfdaad0c915d1cdb4dce4d614110f0da1

    SHA512

    6053c5cae66ba1fa3539a6a4e3de00c4cf5eaff4370b310b8cd7dc6fd50fc03baf3589f51c0b5d3e14e55d4f65ee0ac0d0497d5fb4aba68a9500a861a477a79d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a640403d11fecc4e2b4d9a7044c432d9

    SHA1

    ec1a6ddf1a9d17e9f50c09d99794e11b3bdda6b1

    SHA256

    66c78a8024b79768efa4b0e9520df8cabafa1ad2ecac95c22ed60da8301f889f

    SHA512

    7ec1a6f759559a69d878b2aeede33767473ef2deaa59a78e6118a057f5b3b9056dcd2005d1cfbe3a4e5729b5ed9d4ea46bf7aef755111715450c863ebe30e863

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    151d5b6474db37245d3ec2e64ec3aebb

    SHA1

    017fdf7314577ff647d56e2440ac516bc632c8e2

    SHA256

    a189feb92edcc68a5eb33424f8ef17a5542e4a1267069b7ea3eb87888a6a4ddc

    SHA512

    666d9cd7d53de836710760412cdaf703496c8b93183dc2e91e48c139c0ebda82ad65170cb1163c701a1eef0f7b76979dde79c61a66a1a4a079b6b1c95a6dbbf0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    14aed8acc60a1d29449298067823a4e1

    SHA1

    0db64bdf730138a89547c30ef00eb6567061cc9b

    SHA256

    7a0533ab0dc17aaa21202ad9a5531aba7fe680f80fcdd9c4155a262462c5bad2

    SHA512

    17d7be9535464758a4921fad6bfdd39211f72106da45765e0113a8e34d94fe79f88a4181981324ce1644ed1dce4af5d1ec7eb1821af167bbe2860ba6c79df67c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2343a3ef6e952052a0b9d1d2542948e9

    SHA1

    93942b9afbe30fd9b5999be39adca668255188d7

    SHA256

    987d72e8e523ec2faf2eb5257a2a57f2058b707fc867299b3c47462d96cc5910

    SHA512

    2b5cf41f036cda04acc81a66913068778da2bc460114e65334a6825d929f5d7eb387172589e68c977f9c62f65d2f9b34b2ade8a995e62d71808966f909fee2c6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e7e83f5d027ce97b3153959b66d9b0ea

    SHA1

    86a13f75b52d8761ee66ac9915c1920de9574ab0

    SHA256

    43590593ede0d14c2ff96352e83a0f9dc89eb90822a2b4e8c7e62adb182ebba8

    SHA512

    fff12ea675e000aed672ab2436caa96e4bc0a047528c2a786c923f51cd098039b921eb240af233fa7eb4751a7dfdbc1a309934d5c4b57e135e0ae3aa6e9636a6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a9e63186f8854d8183b2d49dda00a9d0

    SHA1

    0ee787f3eab71d425522822254ac0150c17a6bca

    SHA256

    5638b3140f9723c7b12f00a6ca3ef71b517b211bd078d6659edbf1140987f804

    SHA512

    d621c80fcdbf8c351ed8fa7c73e9bef62c432242862c5fef8ff2749fb5fed55d051b231c9b8d99b6308751e0f4180d6f18f6fb2978d3386d88e5c39e8f844409

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2420c393325785e3d28bb7b9b4edcb21

    SHA1

    ff00fcd16828a6e79208345713b3b825526b1d2c

    SHA256

    fa2dd79d0dc9b98fefd83618e5e0dc2f707cef88e783fa1064c8f09724ad388f

    SHA512

    b67a56020ad9ce06532c53866f2262e40c1606c1199c2c6c12628ab3cd9ffd1718c6dce3234cddf4422031762935be44d4cce7e71afd5264b6f8ae93ae700890

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    de3ff16142f201fcd149599d3886235d

    SHA1

    d4f94e122e694e98ea972b22981758f345bbad31

    SHA256

    51a81a871fbbbfa52df1d3920135eefe6f6e474aba08fe922219cadc1392a782

    SHA512

    d6b3a92946bb6bbb1d6315dc4d32ad3d3520c298ac2eaafadc298e27f3225f68c8b30d387b4e3938bf03d1eceafcbfc982837d11cdd0e8acc6569cf8cbfffcda

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bedb758124f84ed77452984c6ed383f0

    SHA1

    18deb539122896f20a7f89ec46ba86bba106e706

    SHA256

    cce227b7281450c8b42cc958dbfc9c1dd046660275c6e41e7115166945d928ab

    SHA512

    b8321d9f68f3411ebb10f15020b227e6bf55d0adab037a6cf67c236e73fedc167d5a8691e787f70faf6e56b1d2d8ab6edc59b1444dbe7029a614e4cb1e099724

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    49fe44a12d028f161504c0e1d0cd0891

    SHA1

    26f4e70736301b6a4f0ea2d9670f7ce80628db09

    SHA256

    65fc125b6eb4b7213565108d535b90a6667b281f1ba79dc69f5aa653a41aa7b1

    SHA512

    79848b6af7ba2afdce0a13087064825b510f5aad8c16e34f654b36071994a4cf810744fac88fc827100d310d823b32bbd55e5f1bbf827dacf0657768075d6070

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fbc17c1dd43fea523430ff15d39f4508

    SHA1

    abdd5ec2e7d79f90b6da09b67d2c989332f85445

    SHA256

    1064007790176813ea62089a07548b18e7b6839e12dce2bb7acb50bf6e7a075c

    SHA512

    bd0658180487fc995eab9bcc86cd120ed650727c14ff09d02e3b51c913c4c0c35219c355b6cb0ed7db350685dba9bf8ca19a1abccc33a6902b975ca50f5c37b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    70ca42da4dcd494763c9397689da4ec1

    SHA1

    59f7fb7fbfb1b5b928ee6a6515ff9076dcae30a0

    SHA256

    04ccd5a0d4e32e8570daad7326093789ff6c303af2d02abc95c134f9d37d5835

    SHA512

    def2bf0cdf6d76608758d15d0da7ee6fd6593d5953450b927ea0b4154e21028bc02eee844059e20dbe55d302544ed5f144e82a61982dee8f1b65e03503ebba1c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    40ebbaa8375f53a0b8556977a4dbc9f2

    SHA1

    0fbe6a18b9b07831bfa575af7d111c3f10c6a9d5

    SHA256

    39c82076e96d2c9f7da0c11159c6b41d7e23d961f77e25986b74c361f03b804d

    SHA512

    2062f2b39e608b2b9501bad767103b8b9e1bd9fbd92e47febba9ceabddd27a66e7f85b2417254496174a6fa172da92c4ea5e13e78aee112f26d1b3de29cdf4ab

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    84656e0385c3b09579b26faf52dffa16

    SHA1

    25591956a37b212d52aa5ca737e4586a24b69f86

    SHA256

    50cea7359c88c65ed2efac67029d507cf06d6429c3dbc9c208c967c901521950

    SHA512

    82e126a77be942a8b1fd94fe2e9cc145f9b6ce306cf7782ba65b9c5ec934bf3a97a45ad1796099f374c1fefd4cfda1ec3a7857bf8a8c8e1f9b7e86bbca2e4379

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a24c367bce6ab65d44a97c9eff8d753e

    SHA1

    f3a0a41aaffbab31b7a828e1ca29ca72877a3aea

    SHA256

    37c6745be4bb0fee6194fe49153a101b4c59142acc2688146421fb85d0bf8f3e

    SHA512

    978685221fdffcbc6b3b50795c29aded6ceaa5f266a47f8b6bce897dbabf7e3db3dbb8f1d0ecdb8d1b8a8e957ec2a4ce88792f0cafddc54e47bc20e247405393

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    63e54e1e1cd3067c0da14cf0c92680c8

    SHA1

    62fc0f568b435b7c195540dc01dbb844712d91d5

    SHA256

    471877d1bbe6645388f1161357063b00dde41f83d19b3f9cfdb4910c6eae99b6

    SHA512

    475f608cd3e84dd46f2a0508f6c8a393876dff4f1f0abc3e8f27f91ebb1cfc9b1562ab9b18942b97c319e5c84bbd242da497786c166cc239ddac3ae0f9cf359f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    964ff3ae23d47c690e1a3f204408d383

    SHA1

    44245f387c771637f2bd83169b249ac0cb58134e

    SHA256

    10d3351013633466664fb10c8ce78c7eb4a1546d9ca9641ccf81666be497e945

    SHA512

    6ff2981e9724841bcdb149fe2944c4c600dda1598e112719be1ac05896ac9171dad308170c0a5730be12c52a62125f60f63c7003a95781d6eff3f0016d06891b

  • C:\Users\Admin\AppData\Local\Temp\Cab2C9E.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar2CB1.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\Tar2D91.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b