Analysis

  • max time kernel
    140s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    04-06-2024 19:48

General

  • Target

    960d02cdc30a8b1eb5b1320045d3b718_JaffaCakes118.html

  • Size

    69KB

  • MD5

    960d02cdc30a8b1eb5b1320045d3b718

  • SHA1

    6a57151064f4953c579f4c6aa1eb8b4d3acb4f1c

  • SHA256

    22a88613977bbf4c5edbfb7edf4f13fe702309c4dc3b388885eb34bd95ca0d5b

  • SHA512

    468ddb4d2cbc0577000d8f60ee8caf19219d287446b5b49ee626d28c1b998baf47802436b948a518b1ac6d4d0c977794776151de1b71572ee9bf74f71e049481

  • SSDEEP

    768:Ji7gcMiR3sI2PDDnX0g6sy6eZ/Z0oTyS1wCZkoTyMdtbBnfBgN8/lboi2hcpQFVh:J3EJTzNen0tbrga94hcuNnQC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\960d02cdc30a8b1eb5b1320045d3b718_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2988
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2988 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2484

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4c9aa349bef0473563cb1a04c648c0e7

    SHA1

    c5e094beea38a99fd2f4140be5b7ff08f8873ff0

    SHA256

    48ad76c27fa8f05c1fd89622e189c70160bad281571c3f150155b236e6a7ccb7

    SHA512

    6a5135f107eff91c2fa1b5c3dc77011b99f4fc3811245986a7ac536bb56f7e2bd531fb572aa55c74a4b863849b3c5e0d80c04d4792f60444618c46ec1ba07ba1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7671fa993b2ee665ac819f440b42ae28

    SHA1

    3ab72bd923505781f550a657db00f552db20bd25

    SHA256

    359f6c6758a47281cf5d397a491b6b1d192e9d59773321056ddfbac87fef7012

    SHA512

    9e3a32a2c009e1898cb0e9322acdd471aa30e9dd21922380949787afa18c312a37c65ed9b1075f0fcc8f76ffb1f85e8f6d45139962f92677af4550ed2927e954

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    39ec01ffe06693c763b06070705f1211

    SHA1

    939a09a0366a19ca5ebbd0012ad5ac0740f999f5

    SHA256

    321e76f0c0b51dfde69396c80d2d8142ca9984b74207fd50d9eefb88c4ebd723

    SHA512

    5ce2497e48c4845910ef61d6c30f40bcad9ba67392b4d78102b33f88aaf3ae6f88287f6439b91712e61ed928ab60755bb3f1853cf4f8b7cb0e85383546b5595d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    38f425df713a74f5dcfcde69ff081593

    SHA1

    3c2640d8204091a5591c086ea679de28c4d3f28c

    SHA256

    e0f5465b8f0669d5b00b1da72ac7eccf1d40c0fd67403e5a23457bb0439f3003

    SHA512

    109143eb11a9812bcefeb00c704c56928d71ce848709d174a94eca993fe4d6d7a50a3bbc3fcfb4f1b2f909a710f2bbf7220558470f7ec57e67a847a320a5586b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    914a029a5a3ab4f008a3b9cd2699a07f

    SHA1

    fbbcec114bcc38f5bb37e8183b21c9189fdf0379

    SHA256

    ae2f721b4faee635471aefe166bd182c217f575678dd11a224ec92e7d1410774

    SHA512

    e2ad3be7ac2b75513d8e6aa9be4a4bb6ca49c9221ce428dd64330ec58e0f512dc994f1136a4aca17a6492be763e3fe70a72bb2fc11d22911cba9126604b85d2a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    09f377b2767fe3131441c9a578f27155

    SHA1

    e5f3ff2d2c2edc4cb357a6bde169439034f22623

    SHA256

    53547d7da7377ef776159a1757cb5ed4c5dbe4174853f61e864d84519271331c

    SHA512

    960d0a3bb26a6ac0464c0d1b403d25e29d5ea1cbdd6da6ab8a4eb7939de7d977e19e11571a4b54e5c428e4ec44e4922836ac174974506e536ae07bb7ebd6d043

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c7e1e91e3f7c93dee4c272be277e7b76

    SHA1

    22989461a60b208d87cfa20a106da1b52a69f902

    SHA256

    de302fa81449cff339985a3b7a1dddd64c907f18af4b66c83a6b47062196b06f

    SHA512

    2b91f6d56990772238a919368b1f2f92d3d65a127746d21a9d746bc1db9653037d4dfe372177aa7a030be13ff115ba5b13356938efb5ec019fca5235dd124e01

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4f0c0cb2978761d88f163ddf331eea29

    SHA1

    fcf35954b9e1c9beb53f5869960e78a95cffa215

    SHA256

    63586b6f929763459f5fa285d2379d47d6f20438325a0c20d9cb942e1f2cefae

    SHA512

    074f50cefead14762542fc3d0ee8e3f82aa70168c397a218d30cbb9a4be54e39a2240b8975a8d19d645f069fe9944add6da1ad1403d8139b2e44c71985b0ab33

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e5d787a9bf43fede4e0a4f35055d28e5

    SHA1

    84f834f5fa0b4b881a682930f243ecd2c3ee9f07

    SHA256

    353dcc03d5df624833490a8ae71956c8e22f056427f81d6040349a3c5c7e09b0

    SHA512

    ea8f08470e6b50d914a3247e0fbf1a3c0bdd96c6787364c09621dfbf54a7685f5b8bc0f0eefb1fd8a30b20fe9593df9da67f759cb2e0410925063f41b0f4ee30

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e663b36da5fc945be0b9e25fac833073

    SHA1

    7fa461685e49ae5eb8b2db6b3b6b2e5fbee31761

    SHA256

    c721cf716ccbebae7bf93270315dd4ca410c0e91e66bfbd14ed2ef34070b3a09

    SHA512

    28bf7dc12a5181620bc37e6a0e5bbf6ecdcb5ecf0648fd0ab7d7a9b38ab8c4b136c512eb9450c197632b5df69b20e52f4e0e90582af86dd182906dbdd10964d9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    58775e5a328292352e48e43958cf026c

    SHA1

    1b4adde675cb880828158ac397ebdc7eb48b7731

    SHA256

    40c3dd40236929e1b48e30db8b38cf8485c6bbd6ac1e3201486b19d7c9de9b3c

    SHA512

    f144d7f6c788c52a5400461155a4c789ceec906d32b40eb7cdf83f3334aa3340fcdebb9a533527cbea86f40683bf3e9b24b6e71d7ac2e3b8962c0be7532fa75b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    eefca8fc71512884290e03803c1b3fdb

    SHA1

    ad05c60099e817488b184a39dcabb7a9d242b3e8

    SHA256

    e9cc824a10f9c4b3e394fe7b1aeeec61a0ae4c28fad7ebc8bced053bd595dfc4

    SHA512

    990150cda36ec5ae2df754785a99be12be1df08b80dd48700dd5b38bab4f8ea0343a7641d111aa02b38f9ca7ddb51dba87469068088ade59aa999ff846f22c96

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1c7202cdc235deee720286000b744663

    SHA1

    e9ddfc2bc87b27ba55c5ffc330feeb3f13cba826

    SHA256

    3ba987d2bee9820c50904c3a3d8a4bfed0185a83bb126c7014e15ca9e0df15b2

    SHA512

    085cbea476a47211001b040fdb5d304cab17f7d56a8d61843e26138417f2be044d6b551562da1b6e9d310fb10f5a42ed635a579ab28ffe4c85ae18779868c23c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7115cdb4de6c7259dc512180d8710c61

    SHA1

    01eabeee03738b35bd6f29083f04050d506f3063

    SHA256

    f587d4c9121317cdaff7bf51c1a32a3787381cbd56f06b3d45502f5969513630

    SHA512

    1117a48e644ca633db55d9e9b7b06630ddda9ebf3f666e81b3b40a3731692da250f60274627f785087452af12423400aefd5bb4f276db8d599180f68d111db22

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bbff75380ec310d6d193c19c155e2b66

    SHA1

    560ffd0193ea2c9d66ec631bc10a914cf6fc94ea

    SHA256

    1eeacd01850f2aa46057b70af85e051a3c582dac8a1e4b2085049c67210bce4f

    SHA512

    30e8083c45f88c77ad9c9ad7e0d41cbc03cd254ac3e2a3b0d1ab53da5db3e05e0989f931e4f9f143527989a61e1908dd0c86d17abc6938309ca1de90e7ec8b77

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    94d2879d9f6c2d9ced57d31536dc7e93

    SHA1

    aeb6df16e04d38b52486159c661a8f90841ccf01

    SHA256

    0e6906157c16bfe3a81bcf857aa0b93a1c2c76812dca06adcfdbc2a89c9f2487

    SHA512

    94232aabb382b36317160dd145eaed303b12b530323859de6f737c51eec00ccf878c95e80b5ad902d6d1cf8b0701d7dbe608e4af6241dd32cbfae99c1237c31d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2c176dae63d6e25035183b06db57a8d5

    SHA1

    8f3ee17589b716b7c9768ec8eec7a99bd25d53b8

    SHA256

    fec07e35c42fb14918d38c86c262a6e23963cffd826f86a4b9a0eff610a1f21e

    SHA512

    3b93a261ad36ddb6c32207f42f8aca0eb2c7c7837307fef9f5672102654818c041f2894eabbc05e123f4f9b6749ec36b2f349fd61ec5735908d5cc26e1dd308c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    df7c149c22a3f176437093a4cd61dcef

    SHA1

    4d79d89b51725ebcec286280ad9d125c5e568c1c

    SHA256

    100fea54b800794593456df6024ce77315db82b49b2dc6cb96ae06d416015204

    SHA512

    53f27b745b29376facbc303b4a7bc1a1e043ad194de09c9b5e537d4c4e6813ece99e28dff3b505110b3dce2ff68d86e4024cfd0b8a968a9594d3f395c843aa77

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0e357dcf418a85eae41b64cdde76a79e

    SHA1

    fe9e8f768f9e3bc433d2c987fb9c58c8012bb36e

    SHA256

    f2115dda2cd0c24c86e1c4d430a2dbb9e21da0a58fec9acb12310f0bbfd13d0c

    SHA512

    c2d939948beaea29a0f69d367ac920295c0d2a39bdda1b36d18dc6fa4ad4e92e411028082488d1f883fc8266fcf429d694bc94ada108ad4db3568e510ad186f8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    571ceb0aaeb35bc065e46cf7021e175d

    SHA1

    db837377b97893b8be4f7d1806dbd6e40c943172

    SHA256

    5147b5682d2b91fe9c2cdb812f7c8e15d066010889fb72324bf2277ec2ac5522

    SHA512

    18863087700de510d00515e63192263cef1b29ad9e7ae27b80f37c0527e025f2e1a9ddf0283e1ac2920faa07093e489d7a7834349bbadecd2695088d08e571ed

  • C:\Users\Admin\AppData\Local\Temp\CabAD81.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\TarAEA1.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b