Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    03-06-2024 13:25

General

  • Target

    91f16a6b6550ce587cd9a21f78f05ef6_JaffaCakes118.html

  • Size

    144KB

  • MD5

    91f16a6b6550ce587cd9a21f78f05ef6

  • SHA1

    a72e3a8d7f9a93e6bbff909ec1f6e7e0f527302b

  • SHA256

    8704aef478a2b1fb7de01a9100976026d844b008f8c1cfb30056b68ad0291c6f

  • SHA512

    ef8d996a254d4eb03b6f921e0e674ab7475d62fc2652d9357d515e37a215fd0b73798182c85856ee20f6914a1f21dd66f3642478473bbb5988cc1c60288f461d

  • SSDEEP

    1536:Fw55x6nrzByXOCKsdi4fXQeyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP06:2zyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\91f16a6b6550ce587cd9a21f78f05ef6_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3000
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3000 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:768

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a19a0c1414641fb608be318103c531f4

    SHA1

    0efa52ed948a3778de4fa70c9db7038ea88ee9ce

    SHA256

    aec4903364e49375de50b34a1d6adf685738f5aad26a369687a1a00845c7f6ad

    SHA512

    da52d5d47b2abe7ddc4dedb8314308c70a6ca38afc52d35953bdcb1da1bafb833210e989fc648cd1efd1b383ec4345305846a9585b31237a528184e3c27fa6a3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3a61eb0c0f4302646b70432fcf92558b

    SHA1

    98f2f310ca2587d4cd10fba52ea08725713b924f

    SHA256

    5c2b05f12fa46548c85614368413e610e6c3a53571fa49cd147e68e4e4f306f0

    SHA512

    7f9c2671be0bd506aa878ac8d1249b84c3e54323b9949d0d6f75f9b6a702f1aeadf52b4d8198b47a13c33fd208aea42a163a1e4eef1e111d7f5834c3e0e8fce3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    71ef4748b1d0d6bf402272b5efdd2c23

    SHA1

    a0ff611d41a7064152109852278c255f8e962f2d

    SHA256

    f37d4c29ae6a3d0aa415134782b5cd7f181ae3530c01ce0288a504370eb57adf

    SHA512

    83a21688633b79b5b9fcf05d163043cb45553f3a1593e047784d7cd4f4f0474d59219312fd871bc4714539b43ef56beeafa80f7ea68f5a702d3939020a054f92

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fd89578339c6509d8cf8f34a5c37808b

    SHA1

    a4c1851d6717264381980a05521868faed9d5fdb

    SHA256

    9bf595209bdc6e98fa22776af2371d94bdd6f49a9e30050c7e612a0f0fbb3432

    SHA512

    fdcb947f3d26253252381012379bf1aef1a16c1e0761ea07d0095864045bf5f1f4c4ef26de47ccab7529c73bafea014d9f1571ab82a6323f65a3e64f8fbb4f95

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    47be805fad9eb1c2a6665db99356254e

    SHA1

    3ec19930742b6df1f4cfa4b0cf37137f726fa22d

    SHA256

    fe3b34d4003485255ba43a998875ef1c659c688fab41e708a2f7ea97fb247f01

    SHA512

    92a82ccd2638979663e068facf03ae8c48a91bd08ae624f188773675a096142ae33501249e616d2c543b06956ab369dfd9f01ef6fdc22bc688782267e2462d49

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7104be2cbba77a703795648cd206e7fd

    SHA1

    f6214ffbb78b15661b2685167be675603bb86dcf

    SHA256

    f644f73c8f89b319f53891893c2f80b4f61f3e89dc8c153b7f15d084b9c91ec0

    SHA512

    cc111688a6aacf8612e05222990775a65f3e7eff295bc1cdc975aee48a3caeaa39bb1efdd66b99d390bd2ab4efad215eb1025fbaf65500d116c12eddec2b6074

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8e451dd05095ea05d27330d8e4b66468

    SHA1

    f8a0d43cbbd59d0be5ec774376c00086687235cb

    SHA256

    778b130f75fbc3313f6776e606c71e2174a47a71cfe79bbf0170a65fa34623e3

    SHA512

    d175c65b8c623f6ebbdd855013b965b3d1655d9c3651e306005adb1a88a1d077f9031dd39e2e4d27d51a8691788c0410c35cc0fb3a94be25038eeeb6e156a054

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8915326af3256c872e2c01689ecf2096

    SHA1

    2b8140e3b74420b71aa1cce749662b373048323e

    SHA256

    56a7034e47c2766e8a8faa8955642a553bd549725439d94c47213d3e82f4a059

    SHA512

    e9aaf65bedbcdcd0df9459b20a14726293079bdc4ea3526d1f8fc2cd5383bc623f439fa727bc9bd268b8f756ce9aebd1ff65228cef0244261243506b0ebaf242

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5f792d2e5143dfc8ba80b82d0765b06d

    SHA1

    5b5005de028db7896d614868d66893434685da24

    SHA256

    85f327090a6c7404772f921abe4b68e626985b193bbf55142f8db3a4fce3576f

    SHA512

    4f7c82a466983ae43295e9afc86d8ac0d857b68fe4659a7634697e41af678a5ffe3dd63349c9655298882bc18629f0b8dccb7b9dfbcc93cda964ea4f1faf2142

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2fc29b7d8522b99a7d098aad8a13b2ad

    SHA1

    8086f08e0a2bf28cea64df921d1e418fa00982a3

    SHA256

    7c89ea6632dfea784f85e403e1b982dff31a094104aea4eeacba214e2b86b825

    SHA512

    5eec9730ed4e72538ab32624a024abfc1924af3cf96079bf8580900226e8d1d2996c049ff55692967cd7026519b73138b6688ccaecb3558ea285a1f7f1641b0e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    590ec7707e0cd347bab3188a432bc75f

    SHA1

    808cc4746493751869ab2a4da8bf4e65b95a66db

    SHA256

    614a320b14872078d47c1760a4fc0115302be63c6badbd75d74568ef165244d2

    SHA512

    e30fb977b24cc41b06de3fcb3f49ecbb5a63b438a24fb6eefc7bca0cba368ad8cf9c73730fcd1a95a05477a84684645031af5fc3c211c66757da43932b167b1a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b6b3e33edf268cdcb873fd46fe24eda9

    SHA1

    5499a7efda6abde46714501492126e0e8625f381

    SHA256

    b680220910023164816c009ef053b0bbf7aa5cd0361e8e021276652e19e8f9d2

    SHA512

    57f2063bb06182026ec556ce4d3cab3f64709a6677497086e7f6017d12d513a340d3dea12fda264297ca538ad2d4f2e6e5de841ec56402201c9cf38d0d2f6a13

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8ff56cc88452b5a70917ddd749e5feed

    SHA1

    badb333e8ebc44cf860ecb2918cf414b533361be

    SHA256

    0cc5c0763aa7efe43469927969808665ba8ad0690c13bc38f0583595d5f6d0ea

    SHA512

    e4e38ddb251d93a623ecd747eaeb6c4bee63ea781c6f6738dad736f06358da82c6f544f51b96b29ca6e9f4d1b21ab16fe71c54302a80f5aa4d1ef2539a5ba7f4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    127bcef7dddbd14d634e09f4afd3e0e3

    SHA1

    0877b30ae161a1f15433897a4771e51d11bb95aa

    SHA256

    4882da8c9d2123285fd157b9014606f801e9214e78a4fd5821c76f8fd5d0fc0d

    SHA512

    60d25b310f435fea5b04f59f237c05969c1e0bc14434665ad3790df38e41a3cba7b83c096e9051408565093ba09a13ba3761b2f85dbba53c95ab0590a667c22b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c68de7ee5c17a7fc4279e36e076c07a2

    SHA1

    81f37d212b193af42107f26911c932a5e887fae3

    SHA256

    703094519b0c977a603788419eb6074504e0c10b787d7de478a6af85d64d386a

    SHA512

    6bef034baebc4815bc4eaa4dd0b2b1023eb4931b315bc093183f5a4e5410a88a37971eb9b07a00ed285513ac8dd1357df2991e3e4ca602cb1c425e019984c670

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    80f49b4fb603a3940de4bb6fcdada7b0

    SHA1

    311483634934600529f859dea43e284011444b67

    SHA256

    7ca3b40684156f46237cfa5b9bff3c785405f29480ed04f20a3c2bd19b6c9da8

    SHA512

    68cc32c5eae5c7532fb1ee773aa51cffab7a9daa181224d543b78946c029d158f4f6957475ed7bfea7ffde8b9cb3610bccf92de76b869c06fb6b661323a472a5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0ba2d8ee40dd6aaff2c4063f01f67a17

    SHA1

    4c8069e03e5a5c98a2aeab2dea8a1bf44f61f56a

    SHA256

    483737917d8679c19f164b3e2b2ab0ac26d82dcb04428054861e61093f6110b2

    SHA512

    d9575bf4f95adfc71ac255612087523b83f375bfd243d072558307f526e4ab7ac3474d421ab1d964de3e25945f30f58badcff54fc352a8003fd34b523025e4b8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7f4d8e658313f89843234b4324fde306

    SHA1

    ed279ad4b8365ec340de80900601797844f02a7d

    SHA256

    0bf00df8d3459072822122008e501b9bbd77a1a4582ad7bd4ca6922bf2935224

    SHA512

    a21a7099fb6a36277fbb235d56efad85fd879197a63f0e3a88accda0f17e72d68544b3aeaf62599a8c10e20e08c0b7040ad998a78e30599b1de54ee84dbff955

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4083b8a0a359c816d39e2573e7a4f0ac

    SHA1

    4be115023e05dea27ab80e1fd77eed709594addc

    SHA256

    51f50fcb15cd5adcec3a9154fb5603b7eab065f17e643224a3ccbf39d21fb1a1

    SHA512

    27bfcc547c37ab232469aaecde2eaa74e641b475616a3402fb59fb2ca665ebdfbfd517a5b93d8a7648a5f64f05bddca94c1beb064058d524e88b7db40f1bafc8

  • C:\Users\Admin\AppData\Local\Temp\Cab25FA.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar26DC.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b