Analysis

  • max time kernel
    120s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 23:02

General

  • Target

    a2d52318e40d9f08e4af7ed752ffa957_JaffaCakes118.html

  • Size

    673B

  • MD5

    a2d52318e40d9f08e4af7ed752ffa957

  • SHA1

    780bf46a55c7ea3a4759640031a272136e281ef2

  • SHA256

    43cd509c8f9123a2321dd22eee6108939e1e1bd8e46b40e1f8f49a867ded8856

  • SHA512

    2e196d07ce6da8df89a5b7c2168476c8e50204056ba8a61ada99a0c57d0719d49138fd18e6e12e124da7bb39230b9ac559eccd431c7c84323f2dc29f6bf6a0f9

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a2d52318e40d9f08e4af7ed752ffa957_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2820
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2820 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:936

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    15053e256499f3d28cbc10c2673c5647

    SHA1

    76c42afca80644de1478390325661ff491c17731

    SHA256

    8f6377d5825d86d4425c2186d1ef72e60fafa788464febcd64d8ee075a9f159c

    SHA512

    e235251ee0e02db5e67143ddccebf24d4aaeed184cef6da0dcc738ca1d4e7b9cca379c44b6e63b6388a7865e281f3e5debdd332cf9bd439edd35f3923de1f931

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2435fe6af9342f08dbef49eddc621b6c

    SHA1

    a0cc8f516358211f7543af7c91ecfa1529df2976

    SHA256

    9c7ed593bf7263023f978a4fe6a388ac65b1638a6f20393aede4a7e67e7843fd

    SHA512

    bf85cb9b0d16307469f2b4982ed7667178b99a3b09a39ccef64c498aff8b182ab53fd3314143d31fed8023f6b3cc878efa2b3e10e35f102e73ce32386b6a49e8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a1297f3e0d966d37b6b35f90c5babfe2

    SHA1

    07bb743d6c9024c59f269b63c00a884e1b003937

    SHA256

    80ab6c082f307b8882b23d54bcc133cee46afe0fba04ea5b982ddf3223c31dec

    SHA512

    485af8f931577b8cc65694d28d9a1dee3725b529edcc998dc6d74c9818d01df600727a57cad43070bd2588b568382360af31e80ee02715c4578373a79dd7b7f6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b31b23f9f4914c99a8a4b86590a4f44e

    SHA1

    d0e6f12343b7756223cc021b4dd750fac175417c

    SHA256

    31a92885dc2225c3518e9400dee9e1a15430051a322d55af735a797ab550251e

    SHA512

    81918953fabb1862582e26f94724173e661368d344589aba9a45413bca72b51a3b6da67b82f576c3b148b6d6d63b528ed63145148214656e7c78956bcc2b0277

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cd3939661939f73a7fe8f2bb1014323a

    SHA1

    a852ccac3a19e3fb9023ee232773e92bc4b2de4a

    SHA256

    936728c884db2cc58699f72d36f2eb9b6565acee7a8c6299c722631378b9c134

    SHA512

    ffec8db8f58a26dbee5f17a2f3274931616515c3485be6147d6ba0ef9518c73d8547589250cb6ed52a28ebee5e2e0b4762d510f70ca6bb9f002fce252556b5f7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6b2fcb17b1e1078eb5dd3a7ee0b2a613

    SHA1

    7db7d86893674af7e39fde80f4ad231812bc0f50

    SHA256

    b14c6e1827a4848d6baad2ce49619f7254ccf563a22169eec3e3b3894ff9d54b

    SHA512

    278cfd9db5f1d1f2216f489e81b9e6ed1a92d3c252b1b16aa62b3752647128ee869343e19974310eb694998b3b3c9989266d6abd7cc258a1a7ce8aa8c97abe07

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    945c68d6a469da801e49b377659749a6

    SHA1

    218f8f1545f455fe07841bacdcf6ff75a4ec8baa

    SHA256

    3d7fde99f1bf33488816e633be0067e26b0c374aad7cb32a7716cafae969590e

    SHA512

    c3fcb6f5c3676cba02dc35babba5303d303f75e2a2d94c598b9fd081be805933f96c960ff35ef68ae996318969e458a5f10afbdee92a233735677367e5a0c583

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ceeff4927a09cfecf9673c5b14c5a906

    SHA1

    580b3f9d4db46226118fc1a1e9cd1da0eabcd7e7

    SHA256

    742e02f873372c1ca75d1a17c09e042ded25ac2662acbe2623bda4177af08ce4

    SHA512

    dc626a252dec5083510b26fdbc6fe1b397bbcf43034b5d625005ddf6f942abb502364ddebb85a5326fa6d8dc1cbeed4e02425e6b6dd94b56f007d0b3b21cc08e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ec277af480dde698cc9f21adf4dc292d

    SHA1

    dd7bdfbd19751d57a495f5d2768d3cfe10dee1ce

    SHA256

    010b34d744793765f07b1e952159fe88db0f3875eeb2710463effd4c8e70d890

    SHA512

    a2a634fd9a6085a98c5e2e8612b4355112a46296e5b9a3079771cd22ff695536d8e0267501a446fb21b91545068346e39e846d6ce426d44635791315be0fa3ac

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c6597e01db6e78f765110c65cf655d21

    SHA1

    77f92f678c91d77dc9d40242a46986147e2322f5

    SHA256

    321b6390abb47035fc2a10f39055d0234566171a94af2a2338e9d365b00451a3

    SHA512

    d151ff0bf7d913d70d7604cf8ca3be102c875c2f37b2b67f5f01bcc2b1e8d389c1afff3edaa5ca42ea063ebc4e0129ae016b3ec913acf3a6f4f3b7094a74e8f4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3abbb57e99cf84883eb244a2dffe15c0

    SHA1

    c2a03cb9a13c7b05290220abc3fade6af3183581

    SHA256

    157d3e552396c9d8593ffea7282bbfee1dfe4701d085d6527bf3c13fa3285ad0

    SHA512

    fc45c64efffa9b80d9362d24a713b1e64d6585d335e9f280575fb6bd6b13d4d42de320a9559f25d1aac2588716fe735ddf33d23461ee3970314c7d018edbd98d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4b2ebc1b189d1d3c6c76425e1d9c6a83

    SHA1

    961583b121b8c8d90b8764757a27f1555259139b

    SHA256

    0e51ea8e7d2163fcfcffff83ec4ecdfc0fa809ab7186c72e0ebf26230bf54ffb

    SHA512

    80989d649fac22d37579fdd1ebc2f6b06c83bae102bb2b976764fee43d05e1021d1e6438725259235880fb3d211c109f6ccf828a25ade29d72df7052653debba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    50d81ab07e83ad29257aca3c2afe5968

    SHA1

    321f76706ce0c394a14d554e979a2e5d02b09912

    SHA256

    7e47d3382bf94b1800644967af6201d8cc563437567dffd8c7df6919100f780a

    SHA512

    a24000e8b011f12722fd21dc34ea5391478b6d4c2a5af26da1cbdec4079a568ace4739db8701bd14abf0be94d01bb12007e8a22c99759b21900b8a055a54e305

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b4492fd9b61f683fd9a3a91fcdff5216

    SHA1

    76e0aa666e33dfc5de1d8ee6f33e176e059951ec

    SHA256

    c019b6e9b52aa5e8a0c8f3d998a765896e740a6249467d2f30778b56d20f6a95

    SHA512

    ce511baaed399ec533f06712599b8ba0a624b28fc6da073373e584621df07f8430a9bf72f2b12b564a809c19537156c953168f83f690702d96e2888f64a741bb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    06bf9201ba36df7c48bd54c14ab6a167

    SHA1

    c0313970ec029831a9394d7f39a97a55a94f0b05

    SHA256

    dd641085e5464e5e43aa11f5ba86047818f96902353d8a066cf98e5ed54ac327

    SHA512

    133daf94e6b4c24df4953aa020847d88699b9ba97954083c2a3cc2985b694be5a7ea1a6f8241e3f2e08c199a8f88067bb323f7910c6edbc7155559c7e3d18494

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ce5dd07af58e48b6b9131cae4bda05d3

    SHA1

    e2b1eb305c9960346c2087d90b054eb66bff44cf

    SHA256

    bb77ce67c15c67feb576ce6b3f712403a2677567565636c633c354f921be8b28

    SHA512

    bcff15da9c389033748efb842f90eadd6cc8ed0c2c8af15a0b3a2e9b19bfd73df230159d66b9e7df2d656bb49d58707b5399e5bd63a90b542df40eff81064d60

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d52ea83c26fc3cfca733c20af5edb1b7

    SHA1

    2eff08472d8c1aa4b7b5b6dc6357b9ce3d596782

    SHA256

    75eaa7ecb28b6fa794ce1bfe4b13a2369edf21ecab1e95a217f6a13a8eafbed7

    SHA512

    9e35d57f849c0c803ba2224020a9b30edc1c350655dcab987d9292b72c1951980d9237c356a9402d278b6cc14cb93cd055ade5158cbf33f26a1195d2c2efd543

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6ac36be4a51b75eb2c12b210c7da81e1

    SHA1

    b802068bff37cf77ca21f90b799891d6636071a3

    SHA256

    b6745e2081a0779614e1fac41a84cd8ab1e16a83969c491ef7727e4b2742fee3

    SHA512

    565cffba21c02d7cb100bcbd10db8e63fa2616a6894a4ed0595af589f4cd31f5b39cbef1e07dd4b2872b0724e568a8a73db1ba096697f9361a9a6d28f07ae5b4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8c9a72d4ce019155ab8c916b31dc55cb

    SHA1

    292661a8f1d0b6a1ad1a83e9b67f700750534d26

    SHA256

    c0af959cdf66796585a5740c1d762fc42b6f31efb81a9bddf15b0163c0db4e5c

    SHA512

    8fb84e55593320146fb2f41be1e29e2df89452935e4f59d0c52ad34029df56fff564753eafbf2a73c5289271e2d3bfd5aab2070028457157027f941ce4561453

  • C:\Users\Admin\AppData\Local\Temp\Cab7800.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar7890.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b