Analysis

  • max time kernel
    142s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 23:03

General

  • Target

    a2d5eaeb16adbd2835b7d6f46dbbf652_JaffaCakes118.html

  • Size

    89KB

  • MD5

    a2d5eaeb16adbd2835b7d6f46dbbf652

  • SHA1

    350ce0f311cc5ab600417276ff9858dcf8c7b508

  • SHA256

    0bc55cad164426227dab3045049ddf91467d65c4a0bda79f1467e779e0217854

  • SHA512

    6cc7798966f1b48b14843627518acdba05e571c42da9e5258c0fb2d8870a6ad49d90d9dc5f0ec112e84d7f729a6f88a56fa96219921f189111f781ff148685b9

  • SSDEEP

    768:ShC/gDCBgtYTSxxgMP1AL8qOvH+Z0zjugkrz5ylWRi7TgNz4if44dXDEyNd0zvIK:ShCYDLgKw8qOvHTf4ogNEEPFOfKbDGr

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a2d5eaeb16adbd2835b7d6f46dbbf652_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2948
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2948 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2924

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f6124a1acc93a9be55a687b7ad428b7e

    SHA1

    312512081abe73c9bb165119825efcc4f0588d56

    SHA256

    d2990853f0e66f8b0df068883ba919a6cfa1745f5aa113c3bde49a262b68bc5d

    SHA512

    06e371573e379ad5e497953825a144c96bf074fae2c737223c81346639f017575bc5a88a7db164995db500c903c6f235359ae470d27f270aa9d7bd6dc7bb10a1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8edcd3a7cb0fddf7ad8f0020e0f6abf5

    SHA1

    031752362c6b4bcc510acb376dfbcd80c063f28f

    SHA256

    b1f7931c046526ed9b6e2024f31adf49d7c94c1ae8c6c184df488e77c50cd0aa

    SHA512

    7cd6ce9e92b4294d2ec33ea1338a3b799d6a47c597c38b43ec75473ad1647d8921eae4419d777265de83df79c2d20413ebb0bffb4118cf82efa88ca5c3ee6eff

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    69af35929ff4fcc55693953433cc4a88

    SHA1

    ba5d9cf31a218d6be4d3a14ff23dcfba5192c5d6

    SHA256

    b08c47f8719ea18abc020ef453d19f6e90b7cb52b6c3bc6ca437cc2e7794fa6a

    SHA512

    8aa71567de9ab49393b6335682171c9ce2da2886a790d5e0621b33c60f832587d52906ef9fd39912cc264bfd374560ca0d0a35d57f2871f71a1ac7271f9761f0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6266d480ab315c6a9450fc5022c14597

    SHA1

    1435d92d98f41337d60625b031011c8334095ee0

    SHA256

    b8c55c0beaf3d694b8d2517d0064ec1df59290152972d20f58c6e078eebac1d2

    SHA512

    76e1612881205ba49f7c9cfda369ec340746d75ef80b8396c4e4f6c5e7d519d81f21b990223efb648159295b591ff27b671fb15e18ba893a724e411bdcd5b5d7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d703bf133211f69a4037649d8347bc91

    SHA1

    6362b97f4ba343fcf0d4bb549618d93464136436

    SHA256

    52f063d4fd851f0e483e1eb1f6765d1a53d545bb34f6fbfca5122e7a5509930f

    SHA512

    4e7823fc00e724d3613b55e034a73a91da0a5778ded02b999f20e70c31865296ac8cff84e79529729ce9909ea3ad2ccebb96d0a8f4af7c7ce2a921d7ab964d11

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    552cbc821204837f39ba04072be898a3

    SHA1

    ce27e1d3975cea17eb77281e0df938b1b362bb66

    SHA256

    49357d450c18f6f231494e74bbf19189d3650e0653fd71aec0e74dcb58c2c26e

    SHA512

    f5ce07e8271da7cbcf05316707e97c9b017ba662cfc82ca2b4cea48a9be6b6e2eef2d982c55fdfa2e7a0b0a8cc26d9a2e3b9ba8df66d9b2f18922afaae9633f4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    86262d2a2d8074efb1ffeb0bd922af6b

    SHA1

    4088f9dfa393f60944f04258f03009f115941706

    SHA256

    2081387aa545541f4ce88d87bb39e9086a71529b6c6edc498c25d52f7925e581

    SHA512

    22b1eff9c233bf8ea21560dd42e3bb152a2fd3ab3f569e00d817d80e59bd5df0bb0720658f222a68435739beb13701da5c08602cb3098a5dd96b9dadc2a234ae

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    65cc3d288590dc5d5e0563f0d1b09d61

    SHA1

    320df43f89a04f94bb72d7f90cbc2f541392d9e5

    SHA256

    f6f306399b2edff196ff915cbb7e51f56f7aa1982cd67d63a4d114781386b633

    SHA512

    83118cb26b653cde2e998f6b359d29bab440ed7e199f604804f9d9a888c7e868945b8ce8312b5b48db843370f5cc5ae7a5e436e43fb0b9381ae0cefa40c36864

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0bbd39147ead0b8e31a645945c10f5ce

    SHA1

    138d05a0970f332bd1d66e773a33dc9f9fadce6e

    SHA256

    9edbdb924bf49777a3acaec2c9c0a7c3bdc261febe2093fe388b035b143f9c7d

    SHA512

    20e4ec0f41a0a382843b37c531f825df222bcdef4fbd51d37c70dc81adf4a5f1fa82a9929bf0df08529afb428ccd80aea4e69bf985994c4ecbc5e8369dd3f595

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aee345b1cf612eaf35f0c3da9400986d

    SHA1

    9bea10804ce357c26f0feae8c83c91b8dea02872

    SHA256

    71c719aeb66b3ba8f7ba9dc501e53498d0e4df8cc21cabd972b79dbd8b664976

    SHA512

    78013809a92d681e1f7167f1584e693f36f693eeb41e7fa1dd7c44e8ed30c6c09292b12beb1b0c3cbb135f0cf1501a95973aea98bb691d1caf195454d8aa7c6b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    67f10755b08c2030f2966d545be92462

    SHA1

    d0a61e4f532382e6d25903d36bf7793e0a5b3325

    SHA256

    fbef607e62130679bd95e02dc0ca49b260cabd5c1e0403a8268213c9854fea3d

    SHA512

    54a75c1c5404695b13d6eedfab71d22e091294a2e029a2d28ca0e79681bd3cd2760dc69faae8ee2cc3b39009d0bf0965a6e3d0245cd969ca88aecb11ab604c7e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    36700bb9b8d0058590cc200e2e72c12b

    SHA1

    e48ef70e24272323397ec0ef78bc5c69d8f2fbaa

    SHA256

    0ba6773b82ce40f1d5738693b0869c8d1523a079c49972674410e517f6e9427a

    SHA512

    ca7b3961d4b4414404675beae19f762c90b21a4ccf64274b3f0c038dd1bbff7361f6d2f6bd345474dca58f27437f768333bfb504fec3a0b731c18fcaab2e1b95

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    104b7bf7a79afce148274c49e0236a0e

    SHA1

    6ecbb62e94164be87e45b75ed936185bde352c7a

    SHA256

    f2f7d6d4597a3bde8053eb30f157e59a6b046f41011839ba74373eb60becc0e9

    SHA512

    121499dd9e1cbdc884f4a0b4662326e0c32f8bf72d879293bc8715bdf023278f9de5d872deedb7e5787fb02b0965c3e2c2923f2e38c1c4b9599cf45aeeb5ae9f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8fd25665617272d477b061fbf5aada1a

    SHA1

    18be3705ad21679cfcca8b12227dbc15b3781264

    SHA256

    f7af52df31f801c82eaa9c7503c957a3c11923b6ea7a7812c51a66210b317e10

    SHA512

    f3d567a00f5b203f6452b42562ba4f38ee016e134a23613748784607f524c27df2361b5b543d3332b78da5a9be7cc2e101d976832ff9c33e6c762c89a156e976

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9ae5cef0f7e6f64736108a4404cd2448

    SHA1

    b5166b0b23f904aa7596e7a77513ab6fed7dedba

    SHA256

    a6f4455acbc7f95e78a64400b41e96ec123aa621acdf7b383bdf67e99dc715d1

    SHA512

    6845ac9b32d5638d1f873703b8c58aceb87fcaf9adeaeb630e42a36f70845ec279a37801bdfd54f0f257e60e626836933dbdab0b5418e60eb6282495b4965cf2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    95aa6be49e43a797189eceaaee3fa91d

    SHA1

    f56b985f3aa6830f096402a642cd351846ee4bee

    SHA256

    3a0a717fc95bb04f988b2a81b5436f255e5fbd14c17899f7d4f09ba84b5fc0d3

    SHA512

    9004b6a8693701a1023f9532993f054ff382301de9c3815474ed268f859dfda4ebcfd67f0933a5b203ddafb7ae02e238cc602762a80ac5018ae04fd8a2d492e2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    97ebe65310d4cfb977d4f6a6bb80f874

    SHA1

    e88073d3d29d8a1cf1eb1be11d99bf242adbaf19

    SHA256

    b53557b7484fc745d5b275ed2a477fcdb0c249b1858d9ff7baa944f4fd90aeb8

    SHA512

    123dae2900eb123204dbbf0bff7c03993025a8f33f87193bf8a21bf1a6c4e489d45ddd9dcd40516fb64faca65b5da71c9d9955c62daaece59dff1d38bdda3725

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    46012ef5ea6981a3e06d3208073bfa59

    SHA1

    919869b5e3a423f7cfe2c226937949f2590c7d7c

    SHA256

    11e5f4bd76af105a1d65a0ad815aba30ccd5991292bf3681afa818a6bb0b758d

    SHA512

    f9204072f31a9c316cfffe190fb35e64a50acf301f278691b2caa0c948ade2a977b383bcf86d0c5e5d964d524bc244bcd923f0de3f72b34ae370a656956eb5a9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aa532823a7476918ccb93e17449545b9

    SHA1

    5004ae37b6aa49e22de72986edde9ac9be097d1f

    SHA256

    9bfa866cd4d4f7522df04c59c49a404ad8057c0d8c7f9ba58c18535f0a7460bd

    SHA512

    aebba99293ac75d34669eff404cd593a46bc51302f16f5871c85ef79a0f24ac54b7c1d9c772b5f4ee3c9afb7d879294624e3863671adad64ac529e846867c57b

  • C:\Users\Admin\AppData\Local\Temp\Cab1DB0.tmp

    Filesize

    67KB

    MD5

    2d3dcf90f6c99f47e7593ea250c9e749

    SHA1

    51be82be4a272669983313565b4940d4b1385237

    SHA256

    8714e7be9f9b6de26673d9d09bd4c9f41b1b27ae10b1d56a7ad83abd7430ebd4

    SHA512

    9c11dd7d448ffebe2167acde37be77d42175edacf5aaf6fb31d3bdfe6bb1f63f5fdbc9a0a2125ed9d5ce0529b6b548818c8021532e1ea6b324717cc9bec0aaa5

  • C:\Users\Admin\AppData\Local\Temp\Tar1F0E.tmp

    Filesize

    160KB

    MD5

    7186ad693b8ad9444401bd9bcd2217c2

    SHA1

    5c28ca10a650f6026b0df4737078fa4197f3bac1

    SHA256

    9a71fa0cb44aa51412b16a0bf83a275977ba4e807d022f78364338b99b3a3eed

    SHA512

    135be0e6370fd057762c56149526f46bf6a62fb65ef5b3b26ae01fa07b4c4e37188e203bd3812f31e260ec5cccff5924633dd55ab17e9fa106479783c2fb212b