Analysis

  • max time kernel
    141s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    03-06-2024 13:21

General

  • Target

    91ef0bc303e441562a7a66da6f0f76bf_JaffaCakes118.html

  • Size

    70KB

  • MD5

    91ef0bc303e441562a7a66da6f0f76bf

  • SHA1

    f1de40c5c3a5f49fbdccaaf9c25ac1d6b71bd29e

  • SHA256

    4571508d35b27212cf7973d08b81e411847fc8ce5d787055f214787a968fae20

  • SHA512

    ac726ef7083ed1067dc61a485b9f637eded9fcd239459d0c77d1ec71ccdccad37805594542c23339b295b0d2f0544399443b133996a732c03fe240506e342fc3

  • SSDEEP

    768:JiQIgcMiR3sI2PDDnX0g6sk6M+oTyS1wCZkoTyMdtbBnfBgN8/lboi2hcpQFVG8X:JBsTzNen0tbrga94hcuNnQC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\91ef0bc303e441562a7a66da6f0f76bf_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2116
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2116 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2392

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2a6d37c771f6c8fe727be3ba2890524f

    SHA1

    2b6665ed85e3cd7699d021d4ccc050841c01d7c9

    SHA256

    dfd841d62c13af88c1001cb9df9182c160afedb2efa6278995fe1ad4f09d8625

    SHA512

    11065f17b524ac7b445197f59475e93d20e4bc880b54266a6d3ff72dc0ce7efad81e5897f3c261289afd25abee9b735720cb5a8526d884449221b5228dc126ff

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    93c0261a5c375ddb7b4820843776f518

    SHA1

    327aa170672e71cdc0e106a6189e627575b288a4

    SHA256

    892df406f97dc05428da1276eccc5e7acdfa2c9fcaec284a63fe7639ae7e9630

    SHA512

    aef68ce208878c19109c41b0930ba1a2813acddcd4f47dfa532d5cd88de4f775e851a8546a43f603ee46be156754e667a4e38d0ebb60df456d4a31884fa6688c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9ef9ba1d906533f5dd7fe7043ad06d19

    SHA1

    5c6243e2bcca27092c9d7704d0e0a868b63b6e81

    SHA256

    0ad6fc6d0055ff9e42fa0fc0c992884200ec679dd641dd5a651f4dac26d8d4e2

    SHA512

    d1aa1a9eacfd08e316c892c296370656a66c76f7959b639a3a7f13450cad1920ace0fd407f4d2f3fde4ea780030f217264a6556502526dc4a1264b09c3d2ffbd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    364d62dfdb5bb3bb74ad45fe2babf032

    SHA1

    913912bae1b0f1c5dcf8539800381e246a1d99cd

    SHA256

    b2dd86111a024577a994f2d4b1a63cc315d26a5d2c16967d853a4ae876661998

    SHA512

    37708779348ed50f3f4f79f7b2c1c3281676eda5b9db160f801aadd8680575de207d2b1cf955d74e9eeb6804bcdceb4d05eee36561495775fd6ccbac98dd93c6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fb6ff2d58636f05932f3fa7781580728

    SHA1

    f4f6f17ecb1289604f0cf4fcf763b5ff61af4d71

    SHA256

    5616619fdac4d398a41d580c6dee363a665fa5aa7c47114a8127d8d0963df84a

    SHA512

    c5d5b8e740361726dd6429c82a5d2a9f4975b534c2d97fef4a7f74016e7fe20cbd5a2c1306a3690b4c734ea5e7b0fcc33515fa0671d708f7c96b2d7b3f597381

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8d10bd3b7c3945c4112e733efdb7cff9

    SHA1

    39a9015db06fab39c01d2bf3255d04bac125b359

    SHA256

    5c098c167cef70f5413b4b94b417d472a50360eeffa58bcb2f43520259aa7d29

    SHA512

    e3b410e035f31e1bd7d3fe30ab3eaa6e7a4e44becbf1a60b0472c5561b5d841706cc1fa4af07d312f3084633f0059af9703f986df1a4c68e50aa55e46cf54c2b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    863d43984b5453ea1314ee1d1096e815

    SHA1

    5f037d70ece71ecd8ac5f6e16fefc773332f63cb

    SHA256

    97b499ee26a9a3fc692ed9f86c3a28d611c579870102f71c0f1cf28a30a34b19

    SHA512

    59e7929baac90dc70cf09177af4bcca84238da5b9a43d648bb4873159a72d8bba9bb41ac46a8f0a901d0247c4583ea9806a9da330535be082fd02bac539fd4e2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8218356d506af67e7cfbd7c2cd5f8d3e

    SHA1

    417701528f2501dc51337f33d76f768874fcdf08

    SHA256

    3d2a2d654c91dc7bff209dd61c4e10989689e5626e7e4cdde12f91fe4400533c

    SHA512

    87dfb46bc21d2c4976322ca92e46a4e50b98f76365da1ad9de7f61f1f1a784ba9c60da8ade3489f2525e153db32d640d86962be115efaa0271300b6925b1b42c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    accd041f74bc13e413335f5a7806fd8b

    SHA1

    c151348aca30973057a4f623a97c121998ff52fa

    SHA256

    c3e750b73e68cb85cbd0bca4604d00291d537440ab83d81202cefe9634b0c5f5

    SHA512

    98e33d7c900059d309d4186a185968eb36bf206d7d514a9abb51bb16d573f63d414e9e9e6bebcd36e1179338fd8c7acab92d922b3a87bec6684d9a53f627c7c2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    00189d84fd8cb9e186e475d99d6d4c34

    SHA1

    5aa21481324956e6ff43aaad5e24d8830e567234

    SHA256

    918f5c4d28625e99105cd99beefb67f1652d3c73676ec98625b16b12b105dea7

    SHA512

    914484c9977c3fb981f0c1328c8bff206f0adce2ffc94d856856c02170fb5f977c464956a2120e3ea5552893f9cccb93acca6abec57f8ebecec64f73df359a59

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1776eb559dbb086915d75b1e7eadb64f

    SHA1

    0c77e5042d0102a5d597311ab99bdd476243e3a3

    SHA256

    3845a68237075e364b8945f0068559714c2d6650a76946ae0eb9c33696dd2352

    SHA512

    eff3d32cd8f712baf57c1967f60e09ed3ba60b18a08851e22f58717e17f25634cceff6211801a83cb8ff96999c51d7db1ec377f28a0e44af869829b70abf15a4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    945b7a094a5fab22b903c6516a8cbd72

    SHA1

    3ec0ad0774dbd532ee88d1650465aca0d9ab4001

    SHA256

    b4548b30d5b8836305b986659e63af8e4aaac57df59e3aa5ba560934b44b0373

    SHA512

    e171f326add9019a1d48ffffbf22b009b7aeba8bdb8965f52235bcfa6c334effe7ba245cf9e34e49d4833df63f1e9c4c7bde4a0211c6963f2574c0388360624a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    15bb98cfd656f97ae2d67568133dc82a

    SHA1

    e25a09ddfc8cebf6368c744e4c4cd184e1b2e43a

    SHA256

    6583cec32df0e94d89e468bf3dee7a476ebe568058cef1ee58b13dff5c200ed5

    SHA512

    9c9dd0b2321ae377828f6ee703d077e4a2199e44bbcfd1126415322c2bd261f4c28b3eb1edf6c840de5a5e588d2fd7d33535a08d16db492ff15d168ff89455b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4412673ddd8e3874b0b0a464638570df

    SHA1

    573f17fa51e445455ea493f625ede2201a29643b

    SHA256

    0305112701bb7b827cf97a39243f800f7fab3bb355e29b1bfa5218743b7d56f4

    SHA512

    7bba4a131fdb0fc7c252509778527b3ea5d5dd55b3f682cb507eb4bd5039f12d4c7b4c6535b456f05a1a40715ffaa7f6e946a2fb8704cb4e0b9b0eb4ff3c408d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c8dfb7d017485b46029cc7d79a13471d

    SHA1

    9bffa30f89baadd18f49e89edd9579bba56cce1c

    SHA256

    d1589fff6cbf33d07c3196765ede7a122b0fd7fdf43f9d8ea6f98978b4c62661

    SHA512

    f7b19ce020791496757251239ce11c7e232e55d629a7478e5f44a020f63b8c5209b577a77b932b637b4e5bc108944cb7feeb74e6125acd710f6134755dd66667

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0d20b28c044d05bafb456cc785c8f01c

    SHA1

    a71ede03c6035d8cd97c16adcb8ee8745ddb7055

    SHA256

    f9fe2546695042e2db76a28e8d189ddc9ad5288a534b389e9e41d40994fd4d02

    SHA512

    d46a60d0fc389b5f658ed5d191d43cec1178d6802531f5eef035f2351735779d0fa3994cdba405b9530f6626a26022b29b2a234153bed2e41e58c77064a32ef5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7fbc4823d10064654ceff951a7eb663d

    SHA1

    9a4ee772d747d3b61cd2903b94eeff4946d21314

    SHA256

    958be080a7e1aa9fa6bd2f81bc4767916977280e249585e1600eabcc98f2c9bc

    SHA512

    1a99f81a756ab128e8c8fac5589250d503aa2523004588f0fead17b7da6feb8aff0dac2cd626697e2f56611f81d5254361ee1bc534817e1545c6cdff45fb483e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2b28c33414f3115b902edfb1e48c9ac1

    SHA1

    bfa7d2a14501312b7f57d83ce0af08d903b1bdb2

    SHA256

    f81271eec5a4ae14cfcf7837d4430db39966d685f87180350b65f7c8f02845a9

    SHA512

    0df11f8f94d430a41cdd930f34d2cdaa466f6fa3a47a030d8645c1879afbee7009de8d7b04f2351acb332b95018122fd17fa88d47bc5ff54fda3aa8f7ecd1700

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e821732202642531dd1cbd185941c1fb

    SHA1

    eb80caa0bb3f5327a0d4d43800bc9758eb30864d

    SHA256

    6111da4a5609038409fb2331843093e364503409180b48988330d997b86f758f

    SHA512

    62b1bf0c9b8ce960bc5cdc3add538038cf5bdda61d4506709b0b29806673e2c1bbbf52876e422c5704b0cec90b63cb9faffc78436f075d9747579349963412a8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1c3c6c80b75e368da2c9dbca1afaa814

    SHA1

    162e1990166b4988c98891e4007b16d8bb0378d2

    SHA256

    31f05efc52ba5432a9c078fb5c86ff8e185b85ef488c496c970d644639e05f6d

    SHA512

    67db655af4197db81187d17aa548d683bccab9280d656c4c7042ec40d8f87183db7b7b56bcabcffcf8cb184f27edf4bb4b3589b37b2573332de249ddb9bdc6fb

  • C:\Users\Admin\AppData\Local\Temp\Cab3E0C.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar3EB0.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b