Analysis

  • max time kernel
    141s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    03-06-2024 13:20

General

  • Target

    91eed0e88ecc3bb24c45452193b99a67_JaffaCakes118.html

  • Size

    19KB

  • MD5

    91eed0e88ecc3bb24c45452193b99a67

  • SHA1

    9a743feba8111512a4abb47b938a509b7086cd1a

  • SHA256

    c461a87a4c3e3b398f6a65f5bd5063a29a6a92e84ad98be95c1c49371b01210c

  • SHA512

    e9303762bde4152372cac9f270fa5cc7972ac39346c95f21603756369d59c37b77279bafc6bb7aaad128b0fcad147f17f6905c923303c5c428ecf3dabdd4040e

  • SSDEEP

    384:zibKhgESEVBD8c7MZQ3REmumdBemLxXucfIk9xhePzVc9c:zi4SEgc7N3+mumqmQOIk9e7qc

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\91eed0e88ecc3bb24c45452193b99a67_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2012
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2012 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2736

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    0db6a9db3a2d382a3dde9c813fa14b37

    SHA1

    eb615a3182e1844f354047c7aa1b9dcd2132884d

    SHA256

    1c773cb82315bd98b701fc9949d80eb10e0186e73fce8e48276dd1dd5767eb60

    SHA512

    a36d092d765956bf77161b002187c665260b9b6618362d434f574f8c862623de30178a58fc4c18e479a65f1d02ec4d418c1e71a6eed93a57f8fd8d73fcad0a9a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5823f1357146daea07df5caa854ee033

    SHA1

    8134a093d8fe83e9b562d8b64d91ca212d1ba46a

    SHA256

    e71790d540095afe894cee7ae0b48fc13b7c136486ba43399782d73085567280

    SHA512

    17fcc1cc6383acc468e56022b57099b9043b2f7460d7e4c579984c1800b3b924b6383bf63ba69848da9834210b02d9abcf18dddb81f42e166cac8394282c19f8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    785c9c6f45642ee82929b34eb197249b

    SHA1

    eab4acd7283cac32a4b0a9f62f5781f42e47a2fb

    SHA256

    7ef0ab51100afafed2e15b917a2c93e1be0623979662bde28f342471b2eeb628

    SHA512

    01f2fb4a5a1c3304c35ed61807028efb82782d91e347e65fa0c1059f017e6336169763dbee8ac8a750b098b3b135f680d86f3a13d9e400b92c51b91f8db3c0dd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6e10c36706d2bf7c16a7e421e9cfb17a

    SHA1

    d30f05fc9ccd35149e35537f22b82bd7a782d672

    SHA256

    45ba031f856252740d6c10385f6cb1431bdea633735d940f53fff885028df4ad

    SHA512

    b557dbdffcc4e864552257428d1580929885bd635c2fbcec880b30d1911518b14d871ab2d7621d4d7bccc0d3c80b9001c132961ef45f8050fee46263679acf20

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    666c683e1fd778a6a0ffea7cd9f4144b

    SHA1

    9d614fc4763e035c517f6ba4aeea3a9597cc08f6

    SHA256

    4b236ce5bf705cb48518fcfda12914813f1f4584a2d217b52cbc4724e8ac2364

    SHA512

    89645d0dd803fdbf6b5b4db11f3bb20e89af35b57848c20b3d11c7573a7dae48ac56e1c60a5f2bc6f85351dd4a3c680bff37c8264c3bdafde5ec68afc775d042

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7f893a18dc818d2087573abbf54ae22d

    SHA1

    6b8365b3d07e47111cac6d6fa283616e6953f3b0

    SHA256

    b27f3e3ec26c5a04f7c0206d44aeb27dc842473945c9dad076c59d90648a3c36

    SHA512

    6ea5a6f14a96731cc4b79fc33bb56842593e56efae7b193648bc3ebb96fa3f4c944d34b112067b823f6b47016fcc79be71e50dcdaf77c5272f69dba0e315c9ed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7c24c179b9568918ae472cb9d4d5d04d

    SHA1

    4882c522b2c2306d3de419ffa5b273dbdebf8739

    SHA256

    bb029f411d46c1601ada789eee942881fe06c9a3f689138d5a4bee6dca0c4c9f

    SHA512

    b19cfdfb2747315cccf17967b460b7c9ad7019400327abda20fa00fc75497a96cb0cbfce5dc525b77525631a37179bd29eb85729dff8afa63cf414f6bb9de3df

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    87414faaf0f54ca27eab96fedfc07ea6

    SHA1

    eb6112d64b5cb88769f7a80ef50c26a684f010f5

    SHA256

    4c581178335f8ae099c3e7ff098d0dddea1c108e8c29927edc6ff4430d83b48d

    SHA512

    0d7375f728561c4176e3f655d60988518e1b7b74bc29308c95888e6d615c46be5f5bf38e6e9d089ba2c6c3b438a0d1534c70ad90f1fa101a7d16e8d029febfba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    80b4e89b5477924dcc06e7c6242835ef

    SHA1

    ba33e4dad25b0a0f9036295be9c7526a6f6f0845

    SHA256

    dd0b687e00b4227bbea5970bbe0db8211dfae6de90656b324268cb2ce4c7d560

    SHA512

    a1eee3a4d5900dc351c7be9ecdb58c7f8cef08ee20aeb0a7a2c25a84a56f7934b7cbebbc1a6e7bff7db704c131c0ba709f12fdcb092cacacb13c89a7b2a7bff6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1c252858ab276056a7d2312c183d667e

    SHA1

    652ccf035286293db9af42438a9e27b92822fc83

    SHA256

    9a51afaa8776f2b1624998567eb2158dfd3305dcb46fa3b493b854e3405666e2

    SHA512

    3fec8ac9d2cd5d83e2d76ce57e83c3b4fbafaea4e9622c3882884c2c3cfc1b70895a7bc2c1a7103e0fd8088e8e471dbc3018e68a6a02b5496c2fe8d28fbc9685

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5dfbfea8ca1fe47621b0c3bfce8cfe1b

    SHA1

    b6ee41444b9a23aabf296af99408d0cad69e1eb4

    SHA256

    b176008dcd498ac316649489a95f807326dc8c4ffab298c31f14a16e4834254b

    SHA512

    9ec14ce7f7ee76bcb0ad0b539de6823fb0d372e0017c5d07645ee10d0047a2ccd5e9da40d612b195f92ad06dde609479f6b349d931c6576b44e00172d2b1a254

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8e7eda46977d3fdd7364a47cf90749a5

    SHA1

    ae0e6f811bc3df7a13df79a82859c0779dfd6193

    SHA256

    159f5c01d12361810da99d5a46e0d030077aa3e83fb404844831d67f6d8934e9

    SHA512

    d4e421e7c1cf084e7cc4661d097b50dfa725e2059070ddb25c1086fca3797463f6233f7f95daecf18567d2e2dba05b3005e5b808d8441a3e8aeabba4364ad5e9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dfa22386986529b9aba477b4a554aed5

    SHA1

    027e757471bb2da78318bc62f30a37bff0cec4d9

    SHA256

    4b76ac400d30fa33a80f6d5e5ec8c59e952350accddc3e0f69165f400018b79b

    SHA512

    1d3acdc9d4ece95bda09e323962fd64b843f8a4d9fe3f37745fc9cd042ec4b2bcece7eb9a7b9dc691b97a153fa84d100f7f376ccc6c33977a02428a34567a02c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0d572f1f1089328fc7c09b436f5f7d7b

    SHA1

    71c3c5d65a0aa32cba9181cda2f8c69653b2f5e5

    SHA256

    cc8957ca119c40e1790f95f87774877c0ae79ddae1bebf48a06a0052848a129b

    SHA512

    2a56ad0d1f258ab8d4880eba528c91c9af6c377c594057dbc47a89424257f19fa5db440ae86f572b961b5b97656dde9ba98500dae157ecca65f056950fd81a7d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c546812bffe4eed99aed6f961d0cdff6

    SHA1

    a709861c7d3723d67d801fc87ac812e665ec2de0

    SHA256

    defa5e5be784a50851279a1661c670ad18b3750c1c7762905fde0639d9c1767a

    SHA512

    53dd5b49df5b0b5c6012e012a4e57af0bf533a8e713b1437f888396596418724743522bb0770facc8de49645123c5361c4c9313bd1ac3e1da46c48b4db748b33

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2e9457d1091f4d0133218d7c83c68e07

    SHA1

    1feee200908207d72117b679f610e91f157df933

    SHA256

    93150562920e2daa1f5a06fd9b95366cde15f3a98aee3368ecadaed118150216

    SHA512

    b5e4235eca9ec84678537d20cd24bd1f953cab9dbe83c7a719233efadab251a4544867bc4908f531d2963c3a09163e9717d773795f88cbdfd665422f2b3ca011

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    56d924c1914175ae65c5d2748eea6ce6

    SHA1

    1b572e233dd2a4e7a4e7c7d2052f103e250cdfe7

    SHA256

    24c54f287b77361db9b395a4e74b0084cab6e1752132c4f284d4b542f2eb2d6c

    SHA512

    3165f2bf7a554af38734282b4099b003ef4b57e1ce13bc337de7ab4f079a06aa948f07090d99540e8d043b5dc351e3c348d6a86990323fda9b6cb01109ff3861

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ee56655b1bec7dec854f9a6a3114185f

    SHA1

    f1246be7f808ec29ebfafca9173e64fff5d678dc

    SHA256

    cc1f5ab51650d22fc41c8a8ff45914c5309fef58875ac66b41df300cfe1f660a

    SHA512

    c9030d4107169b7b514db3e0dc0dac077bd64385c6d9c505eb8366130a30d56ec3d215d9d7f2d6ba9ceb56f5c06c9b1009721ed090369b44d9627b00e06adc00

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5b8ed9fe6c90bec0699630da38b83393

    SHA1

    7207d2666cf5180fe7d17a29d5acd33601d54c64

    SHA256

    cd318535d1238a1f16d29d3a85f99cc9b8e7e393ae146d313d2b3db11e7111f5

    SHA512

    517061c6cd1c38da99a8ecde0901bea9447c1ba8628c0d7bb684077ade2999d8e10a0b66fbf35a0db25d6a6326e7a6e2bcca9d0ef6e1eb4397d4d896e56a06ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2b4448661dea1645223146d97edf71d4

    SHA1

    0beddd35c12d15d81a1e627d03fd3777c64bacb5

    SHA256

    2687a130a52e63f5d54ff4b5db06eff441132ba7db23c52c8eacc80bbf2d3a3f

    SHA512

    faaeaced8e764085cc9158528ee162865b8df5762e542e36124adf64423c74f2586e5dc5a113935773b69af64ac14aa9c9122f3a9cc9dac4628b5255c5498fef

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    208843c6355a5c152795c64eec035d66

    SHA1

    62bcf5ad1a0a9cfe4ae888aac30470860b690e95

    SHA256

    8dc1372b0ba1eaf02118a5e9469c4c9212a4ca815eb61d78db771bc4596067b3

    SHA512

    5011c3c8b8e0a8efee69c214f33f46709055cf60707f4c7e4e03e2aeac33246aa750c78d0b8b7634b329fd227c4bf68822eae990254d94b97f7298af989fd8af

  • C:\Users\Admin\AppData\Local\Temp\Cab2742.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar2753.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\Tar2824.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b