Analysis

  • max time kernel
    118s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 22:06

General

  • Target

    a29e42b1c3bc03de171e7a9f15870e4a_JaffaCakes118.html

  • Size

    150KB

  • MD5

    a29e42b1c3bc03de171e7a9f15870e4a

  • SHA1

    659751eb97386f074a474574e9e7212560e4b856

  • SHA256

    f202064fce514f1ff18c7ed6fd48e849514e2dec0dfe593081b7d0b7f4c821a4

  • SHA512

    deecd7d2d3678176c557cf29e5eb401868c86b523b800fec278f81ebcd59242c74565a48b40621448ac7a3b266e18c2bf80874e97dc4db2c17046839c80cf4ff

  • SSDEEP

    1536:Dvfq1k7N4byLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTs:Dvfq1LbyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a29e42b1c3bc03de171e7a9f15870e4a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2912
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2912 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2848

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3bff0cbcb6cb73f9e989397cece2d88b

    SHA1

    d1c547a4796029e82a529cd32cdb8ed8f4754463

    SHA256

    bbeecc4d57a99b55730283979ce4ca1a492f2fab1bc3ccc18c76efdbcd519fbc

    SHA512

    f2ba85e320982d9c7e01fb9f06782694f9d9a0302d4657399468496526e0bd0b7190cd3ff3b9079d34d638e6e57df23e55bf52937120f800bd8bf6e24905bb88

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1b0bd0cf76d1237619bd4e4d94f79c74

    SHA1

    dfb67e55ed35bf63ed90db7d5b5e1b3bc984848c

    SHA256

    c61cbfde31d890594815c738dd31f2ad8f884414b45093e43054f026b7814491

    SHA512

    c0ec475644792ddc452aeefdf34f9640b8f4c82395ff10f32d3d2c5987129442f1020ccad83b5c9957c16d2728cb341b49d2f0bbe735238087fc721f71938ea6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1ad50d5cd7b70e9ad8bc91e6d8ee37df

    SHA1

    658a77883907353dd4bd4f18bbc39e487dc14d42

    SHA256

    5272f9e2e9a55e894a8940fe7f394765e7ac4c80da32271b3f5b80748dd34c83

    SHA512

    894aba501cbf2b4e87219b5f60db521ad110b26e22e4db8838ce3072f3c111272d5dd160f639085caf24f2522de41646eea5d10c8a2d61e1d56d5f7739a42880

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9bb8cf7e5a6ed5919ad0dd9a01a2750e

    SHA1

    f95613cef3bde0d3c8e3b973722b3edf0657670b

    SHA256

    bdd0be5d75ae825bc080857ec80d2df4f7e6c6b2022f6fd11dc35765b2117d3b

    SHA512

    e55356e21db26a26edcb078b7dd4fa9b192d1913c3efad4bdcdd81196ae4621e1db6cb2c68cb752427f10da0a65f2328a827267bb8b9ac674d67df3d7564069c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a92b60f558b89f9e61567fc07188213c

    SHA1

    31dd194deb2daf8f25732cfde5e448e2418f75cc

    SHA256

    5bd980287cc00c32c09317b0a7ebfd0ee5d24473d026bc80b949b77618be9029

    SHA512

    6655dfe70ea63247897d65999b88a8303e691269697c812ab856cb47adc9e3352646701109eff3483d62e9f17915d7bff0ae0c021e28268f26f0b83e904ccf96

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dcdb0dcfce66f7bc9eb93202dcb8ea9a

    SHA1

    aeef2e9e77b991b99c0c18a63c6cae19ac05b38e

    SHA256

    9801b85ee2745cfc7515472810c4c03c5cc560a898baea3bb434333edfa8239e

    SHA512

    eadec1e4695d29dceccbbd920a5b3cf20c676fa1e6d7a7aec780a7cbd8d9921c7881317df11981fb260330220b5023c4147d508497c48407589c5ba6bf2139fc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4d690b18d4c5f98e966427edd729e903

    SHA1

    7b6a55a02620fdf573470f6a7a8bdb1a47e71928

    SHA256

    6d5dfb664d96faae662002e85be19b1848616bc017ca27e17604d3ccdcec0162

    SHA512

    63da22cca312a503611eb74e67f4143b9fbb4d42597e08e51aaf410df6f95c3f2ec1442c365c733ff35aac273a23d1467a95e3eb8df7802879d22500bf817816

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e40c8764bccae6eb6f47d4003ced8f5d

    SHA1

    5c2adf6b03e76977d9be496618cc56e2b09ac12a

    SHA256

    9fe9776f1b7148995dfbc1ae2b36bf3e0cc7301c3947aeaf4e81d50efeb0d7c8

    SHA512

    cd5533c65b637ddac8b68d525c84c04a692dd7725cd13da2a8e7c3845dccaf3d99f6249cbe2b81ab6d5188e4b90fc45c94a81e8ca5198e8de211243188efe0a8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    70db5b6fcaff9efffd2a5ac9e75d8a08

    SHA1

    db53f21e70b84c254efe0cb90bed9586cbe97318

    SHA256

    a395aff8050481c2e3b494f1b6261233ed6091f8626f6fd79c8a478793380086

    SHA512

    46ba335a847310f4420a8fb934145dd28a689d08facc07a2f0ab322e093324007eb58e57822f94fea13903e4f8b0c028cc5df152d4439986c0d121218a315207

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1bc542dc45f8159ba03b92627387d710

    SHA1

    a150d93a56705bc9d00062c63e02742298478fd6

    SHA256

    7eb1838dac6feeaa8a866bbfb1b7021d4ee793141bdbe95673de674e0f3018ff

    SHA512

    efd51eb2f19868f30b33358779e962918b368d904e586ad6fa8994721cb26048d251750cf2cd3099c8182fce70ef6a9659378ce66e847f6aa2ccbe5e13959f37

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b51e21988fc2cfe674ae8bd2d274ac12

    SHA1

    3b4f6d9653ede819401538b630e4a4b4cec07243

    SHA256

    481af1e085d2d29f1b6d73bdda613fd03a57ca3e077549e4314cb4c6044dbe68

    SHA512

    bf8deef29c3cf1b682b11066f2548bdcde4e29a82e538c2f746e05f483d6c74ea34f7c11ce9cec404372806812a4053891a87ac126466eb1a3cb96063166db31

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d945ad4a73b200a13ee583b0c4c34bd8

    SHA1

    616ff1d351832fca557baf980910ba743630d94d

    SHA256

    7fc8523fda0f4b4e67cfa34f8c27d73a9a1a545dd50556bc126907b19e17b9e5

    SHA512

    3d7c331353a7646499dc42153ca67018120597c3d79dadaf88422091ec33754bcea2a6574dbdb2a6a3009edf9c848f329542434aeef57553bf657e3765e4bbb4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    86b19a56931227233bed16453fc29850

    SHA1

    8958e89cc43d139af8e44ffe365070da07981eb7

    SHA256

    d0fbd00fcbbb21c846b61144e825c70de6ab0e4d69315b15d74ce387dec8827a

    SHA512

    be1b73b49809f49d9407cac6fd845e586a40f939e48500cc66b5007169aa9271d7cd630e890635af832fa642500e4e2fb330f69aefe4458db68ce079d8aa45c3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f5866fd62e989150d3bc2c3db5ee3639

    SHA1

    18e257eab8c2001752f0d5f5fda0e6502fed2789

    SHA256

    36219bec33ffbe1033b5e60f8f2aab0aac83515d9d0f19f6046b739313333c88

    SHA512

    a4e5f6280d449631130409850f02b2721ceffda1653bbf6730fbeb671fc813d0d73ae810edd5879ae698214883c30f7a3b017c13164da8ed57568959ab956aac

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c85c45fe3cd87ad4eb8bc8acca68e7e4

    SHA1

    e825efe532241e0d84479983d3ab1864c76eb2cd

    SHA256

    cdda5c464a3a73f076b45ba6701262cd586fc5ba94eae34be8aaba6f9dbcf4cc

    SHA512

    10d67f1734d13c91fdf0b8c883cf901567ac77570e5db1fa25773427108f1e2ecf3da554d5d4cfdeace9b7dcdec8c9483d58ab1de3540eb481e9297bf14ae9a2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8eb033f5af058904cb8df074794180be

    SHA1

    76bd928929e5fc2294c5cba9f6fa7a56e793d707

    SHA256

    9aca295b8e10c025ee475d71805fb9bb700f4148291fd8177e548985c63021ad

    SHA512

    c6f72b4c6fea485b01eb7e35fa15876b8febea51c4eedbc0e55bf0a82a88e60a91e0ea91a3043dadfb9527b243c1dcabdef6fd4e8d4609403429c38e029eae13

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    02e42e0eb1b39644d064d8350d3f5039

    SHA1

    883825010962e0cc4587eca99d94b61648f76ddf

    SHA256

    425b501089e10863493cdfa507006bffa7b180c7a4c231fb3947f0f42ce24657

    SHA512

    cf37a033af583dcdcdbb97bc5f4c1e9fdbe883eaef85a18af4035a1f5b1b6e22a77b21d6b25176a89d2d53357fb3919ba06259ab8364d67de5383b7274e591de

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    73224cbae4dc4a23d4cc08265642e4b3

    SHA1

    b8f050bbbf23374d8f9813d4be05224121c726c3

    SHA256

    651dccfdba657c3bab77a5f5f329cbac4b1d95a248fa38c317ae899ac969ae6a

    SHA512

    229d5159dcbc032c90b35be41037553435c2ae67b78cf9a8b6c620bd0caff54c0134ecd84a45f0531b2d525faac88d18d95f1f7f63fb80acb1083e91a724df36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4d1b914b90e5fce02e6e9eb9ff3eadc3

    SHA1

    5667bf6a0002f0b1f624f96dbb0c439c91704931

    SHA256

    7721f101617c7e25efbfefca028add0521e2ec1150df79dad18a5dfc6241132d

    SHA512

    c5deb07714086fd4c2ea8c7115c17ac55068661a31a9da895f793487b4215839175546c8f23647a94460fe014a3e10ca87956d83a07fe79220e7d3fc1b8e6d8a

  • C:\Users\Admin\AppData\Local\Temp\Cab2723.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar2814.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b