Analysis

  • max time kernel
    137s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 22:07

General

  • Target

    a29f0328d77efdb80263c240ffb2a8c2_JaffaCakes118.html

  • Size

    179KB

  • MD5

    a29f0328d77efdb80263c240ffb2a8c2

  • SHA1

    716e821df22749e8315e882c5c11e4af07a6243e

  • SHA256

    6a2255c627a0086e9ecb5901e69b4f495d1d1c57722d35e7df08ad0fb29c2fd9

  • SHA512

    b6773ec3920a9be1c6ca2e2c65e1bd21f1534809cd216ea7a3ebb270499ce01180e7a171de24b9aa8f5ccc1b90a9c6b283529291a08ed997ea76d15f1f1478eb

  • SSDEEP

    3072:SykpayfkMY+BES09JXAnyrZalI+Y5N86QwUdedbFilfO5YFis:SykxsMYod+X3oI+Yn86/U9jFis

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a29f0328d77efdb80263c240ffb2a8c2_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2100
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2100 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1752

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    527394b76f82cbf373774afe3b58d4ec

    SHA1

    d0b74aac8a5bbf8a74ab5b275cc1248c897701a8

    SHA256

    13d52010750796a3de294517a201db49378077a37eb653df8a3f0c1cc4520caf

    SHA512

    2e0ea0b1a3e6833787a167c5a8ceab21f6918c58dbf571c5e3bbc1f8b8a2d3c87bcb976061a5c3c1b07f472db097061048f015d232445f6b1e9c85aa57ae0000

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6f1f91df80bce3211be45728bfdb424c

    SHA1

    7df0457e7458227d7ba37ad09096e98ce4598702

    SHA256

    e57bbd13023ee6bf2993dc8591ca21994bd4fdfaeff91cf913bd10c1cabdc5c0

    SHA512

    d65a8a40d40cc31f3f453fd58f3d860e4821f1f07fa1d7d0fa163f9664eb1ba5d127c897cc3726c890395cf9dd0e118b953e5993c910d46dfefdac4b7b98d52f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    424adccbed555c788920ccb0c1b25b05

    SHA1

    9aa0095201a2335f1eda131d02fdc79be33572d9

    SHA256

    16a09b3b175af8b819201e0807a9a19beba9896835543b2234cedbe719c0a11b

    SHA512

    e99adaec26c75c48e2e5d5daf6d2c8d3193a3a64c702dce0797c7b76a471979dc782d2bae0d2bf70005146c707ddf3a79409855d129cd87c36500063b4b4cfc0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3f10dced42e0f6ecee7dfac65a677b0e

    SHA1

    507bdf40a351a813cc936f5b2ac7dc80cc9e2aea

    SHA256

    93a80cd790d5af9970397fc420a52d8e7361247f3296043666c0b6d7052b9907

    SHA512

    733772a9941628747391f70ec1790469fe845facffd87946754e363dd198cffac9ee5a323832b690b0629b147934e842c1a82d85225250e2c6f040555391c0e7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d791c75b9c8c87d2d33928b153076f17

    SHA1

    aa64881545b4eae05037b901ccbf0444d6378923

    SHA256

    c91f676217479562946ba19e619bb8fb944fbc76d5bc5ec5e295e57371ff8d98

    SHA512

    80fa3c4fa3a7cf6c40c1139082116e589eca819ef5a17f12d328130d214d2827994a77f42ad6e37d85fb319598c140af9d8c079a6b356438ea0a470bb4fd9ec6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bd60ff7b1e1b7cb8f59eddf9891f8b9d

    SHA1

    85f289d70d4425acc6c3090c98f1700a3d938827

    SHA256

    1044074a36e9da8c0522452710e5b735ffe5c0f2fd3f51d6066b513a6e8136a5

    SHA512

    85b232fde7ba78bbbe97ecc4b1ee104ddbb0b0ce4cf83a150c0a75a3ce048da295578806397eb43d4f23ed831dd9465e9e348236e519a80210eeaf9eb3420e84

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0338c7c7ae3d1080b7ab8a1437eca4ee

    SHA1

    08345d5ad6b8daee522a046be8f7c9fafd429075

    SHA256

    29d370cd7a5d9f92e767915a17a830bfab41fbcede21f9a32a3357839cfc5a9c

    SHA512

    e84c0557e5b780015997f90975fbca302686c5c884ac9b20f2bd107327101d4221857ee8c551e4d00f34616960121440a94683f5b8e53046aeb0dd3eced8447b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    eb22ee916a7c487a4bacd9c3fb8b10c9

    SHA1

    79bcade1ce5c6b36d0dfc3b6761ef1e734c846b6

    SHA256

    b23e0621b177563f2378f5ba92e00847725abba51f569b588bf4224a9538c517

    SHA512

    16b78e736d790f67226d1acca9a3e971b67e60f4459237f04cd31e394777c97237f56a9125e7e3ff121205085cf8c457861bfa11d0943c9208e6871a7706a814

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b6597a08a75afdd122acc039adf8da4b

    SHA1

    c8b27609c8d98d6c30c25736c8a6f4e0b0ae8b1f

    SHA256

    c144e7fbecfe7521f7ad82cf66d4acad3dd0a1784a5a43f458868d301a60544c

    SHA512

    d500d5acbaefad398fba4f4cd9b1cf434dead6bcc981899449855aa625a46cc661ce47b33703dbeb53a389bbb528d2e2aa8fddca87f13bb5e1a07c36b45d485a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e2efe3db67a7622f9d307908de3399fd

    SHA1

    3015a47eed0cc945d405b89dd1b32dc503014244

    SHA256

    3a60bf9d731d14e7e41189b73fc89481463e948193bdc06e329a4e82eff66c10

    SHA512

    bb56062abf18762864408365c3a6ae3bf104a8b4d13d1212f813bacf5911b5cf440b0eb1cb8c73d3b6958e639502bc16c9c4a50ddcfe426fdb860e1d43c547dc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b864a117e0e9de9a7a208fcd05429050

    SHA1

    e8ca9a4aa0a24b276d41986a08268736dcd4da03

    SHA256

    99eca91eea69ba3ee03551b1bd65312c23baa30810a33fb99d7debf811baa5ec

    SHA512

    637539c4c3393c44cf8c74c0c2911b0aedb6efafc60b7c4b1e79173072f5ff3fb70944c0eaff01dd66af49f685e8dd39ee7c208496b60b9b9a8f7c01bc3340f1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f79ecec3f9c338186b70ce4a5d084e8e

    SHA1

    22b6272dfdaa396c6785a9b9b4c66ad862f298f6

    SHA256

    b54a5a83dfba182acfdadf727c618cc21ef24f75391a9889eef75d43555b9437

    SHA512

    8bdc4063792256c933709e9a70287328bb7ba49ee40123438baa014240fdd336dc98dd4a97809b1028a022e2f953d970811661dbe4d3853928c5256b648d8dc9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3a89b5207f82b44bc4414646ca72a0bc

    SHA1

    7f1bf4be90d0439b861e82ca5db2036de3bc141e

    SHA256

    bd0bd51f3b5fdf5dcd4b2e747d52c576955b78631bd38cfa6a6aef3880684be0

    SHA512

    60e63d05c045f77d1c726e64e4be1118e9b9befe40b844915b3b05f12854592d0121da9d3224ed7a553a9d170fdcaee6f83b17d3e5be39f6181c76b05a282df7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dd0d41653d80433834bfcda0c7d20ddf

    SHA1

    a28b51ee42ed21efe7fd6ab82fa5491179c2e9d4

    SHA256

    e2d74cab39544f1099c9b5a38ac34ceeb0064838606e4a0816ff388a51901609

    SHA512

    f5048495e40472cb092dd247382330793f655683eccef0f32b2f62f2f46f0dc0cabf2ed0152a29b03d2109ff44e8b9df12739fc5ad19596951a602a958b544ce

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ed58f3c0621d0420adc2addee089a205

    SHA1

    44c6c0fc6eb406ce3812a84616be951d81cb1a0c

    SHA256

    3c4b33da76e52a71d929c05b5a104c470bdc5d85afcadc388387ff4dd318ca49

    SHA512

    11308c84ef22ea7398a661d31c13c8d4a5734eebce8eca2956ad28edfe551608f6dcd2d7f830b64c14f4b7db46c8dedad8edb1df0aea20b65a70448d6627d47c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    32c750c5c92616c1869dea118b91cec1

    SHA1

    1dd14465abb9673c1e90b8d439affd06740da4cb

    SHA256

    a06cafc63be2964a993c8a8ddb4eb09b7ecb1d2093883e00b782e653f9ba4041

    SHA512

    be05bdc9c73db7083909dd093117d3b09a5e637185c3e066e41ae32ab076c5aff265ac37272f1c6766cd71e8dec6746359189f44b8429689fae835ee4ce21864

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    284d904b22e3d76f57e1ec890fda74c6

    SHA1

    0319bc6829d173969e24f23756146b12c5f7ec0e

    SHA256

    39bb17322529875eefb5342c1469e6246c187f245688d40132020a2d9da08f47

    SHA512

    cd5fd42d72285e0ab3ba72484adce6701eff702725fe166125f170d71251fd51bbbf5c07d512614638e99047cdcb611036d6c889b0f0f7c6c51da80930dec11a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    092f8577eee645b3031cd3cd4be99dbb

    SHA1

    736699a3f210b6833b2d2f585e1ef716136b69dc

    SHA256

    61b534225b448b3442d3773a5f0b5868ebbf53f912d0e0386edd53d3b9766dee

    SHA512

    72a2bbe6c55ee5466287cf3cacd111f97545c98228e4eab54d7f72dba9f197918fe288cc88d7635a4ed65bf13eac4157544a013d6a9faabde0883deff584e5f0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1f8ab5abaf21d4ad6bb3302f0e11f590

    SHA1

    a57abc300e43bc9042bd1cbd0a18b0498c84ac5c

    SHA256

    5e39bf44267b385ca4c719139e2901f33a45fcd61833d2db6533b1066953fc11

    SHA512

    1064344b2ea0431eb8cc8e72e18768d3f840dcea61fc51330dc3bc27429595a01fd9c1127941f0b0b8d0bceda5327dc71ed2260550b6e0c0a397c08ca212e25a

  • C:\Users\Admin\AppData\Local\Temp\Cab5E37.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar5F74.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b