Analysis

  • max time kernel
    139s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 23:06

General

  • Target

    a2d8db437d6efac2376ba98436b50f25_JaffaCakes118.html

  • Size

    99KB

  • MD5

    a2d8db437d6efac2376ba98436b50f25

  • SHA1

    14f05c433a44ab48531eecb810b963f3e83d179d

  • SHA256

    86940990edc33cfcdce74a821f2c0eab5f9c0f33ffead6db92b7a8134632b77b

  • SHA512

    b5ec9f42ef54f2dbcfbe784942da571454690457e58074d294b1c31eecd5be4f084d8c29920524248d7492dbe5c7a33db46ea5eb5b34b8916d83ff4867e1774a

  • SSDEEP

    1536:gCqHv7oaPLdFXYUa+eFFHfrYxr5Wr4KJuWekOmRYCpOYLQu1:gCqHTlMK7luRYCpOYLQu1

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a2d8db437d6efac2376ba98436b50f25_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2224
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2224 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2024

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    e56e8a78c63bf428e8186c359188db32

    SHA1

    4b93123e24fd5fb6ae6cc24cd34f10edcad3c366

    SHA256

    923d62615b366a5efb3ecb1eb53d50aa7639815b1d6418fd44f619d810709d59

    SHA512

    d4d2d26ba9ce9fa36de6f0c34ee296a557fe8ca8258a003fd8df3555f3448cb26e64ab01ed89fb7888e9cc0608d6502192052a1d52d6030f192f6096353c274e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\265C0DEB29181DD1891051371C5F863A_DACC52A1882A05AED14688828CFAE295

    Filesize

    472B

    MD5

    a4c3e4b3f212ccf9719236eaa8f728be

    SHA1

    e017a18974a9969ca60ca2499ac54b464d91a2ef

    SHA256

    0641546fbe6a6bf201d918796cf5efa992632208053037f369a6173cc2afd39a

    SHA512

    c4c229eec604f4022ab0d439eb8b95bbdbb554d809d4571745957f0da5dc740e4ecb13757273b9dcf9f431a5b1ca40d53a539e2ccfaadbf7c161dba6b8b2734f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    b9a5eed38542693cb96e77f2f55d0775

    SHA1

    5f3300fb3f8dbd2baaf64278a8ebbef263991d76

    SHA256

    b1053d1bc284f551a3d526ac533cd6f78d853b50c2a7abb4f5bd50985aa9113c

    SHA512

    9a78dad2000dc3bd3bf199fe14f235097ef0e2950d9856a7ff907aa7c5f3dcb8dfe1bc8b6e1ee9c89b1281783e44af9a71fe1fa1aa4f12ce1c15d28378a2ec9e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\265C0DEB29181DD1891051371C5F863A_DACC52A1882A05AED14688828CFAE295

    Filesize

    402B

    MD5

    28a43dd1b4eb5511463f120f58b4aefd

    SHA1

    e9623632697d48e8bf55e8bb7a16aa8282bfe741

    SHA256

    f78128b6bf6572e2ae2746c85e44a3c7e53232d8daa9b729f9e9d81f8989eb0e

    SHA512

    94b3e7c9f4446d8be30741ecabb73211ab62027eeb71f19c66eb72a9e37f930af9e7a1ad40afebb52f3251432a8d9322f807a6836bee81ba1dac80bd34b55708

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2ab3082a43fb404af107aeaaf972eef6

    SHA1

    5ec0136c6ad52f3a72b6a67981522ef2bd13ae52

    SHA256

    43f144b277d13d2e64b735acfd7e8e4ba3b0d24476891f1c7dda177392f6c462

    SHA512

    f40e7f7586ca610635bbc81dfdf384d2e1ec6c9fb3f4558c53042bcfbf51ea1e3bfaf9e481db21de8e4b3465fea287ce4e7fe1083e49e9529bb6b0bc322685f8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d7b191a54ba78a6a6482c751c45a4505

    SHA1

    4814f7125390db94813436b5022e72544aab88b5

    SHA256

    da505a2821f307c81facded124d901f034da3274b5cb2386e94883f4560c4818

    SHA512

    1a97329ca790b79e9bbaa4c8d96aea97316c32e0a757b180880ca1ae1b236e153ac5f223dda7eb5a1487a3370c11dc19e9ed3a39e3d38414d50f35a0e615c622

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    555bfa96e354f1e4318e591bae9789e4

    SHA1

    7669d77c8772ae183604db0d59fe1067e9276406

    SHA256

    812daa0cd0dee8a502752eb73c0a0a78e2551e1acb091a4fd4308e82d25f1cba

    SHA512

    00fb52935edffcd2f781a0d0f8a4bda71252ceda0fb9d20945b869bfb25ee2ec2f93a7077ee788c36443e83323e1fa0cc28f33110776eb4c7fecce4aca62e970

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4b2c696fa7e7cc2f952b0b8f8b909abb

    SHA1

    4fd032602dd7e2af0982dbeb1350610c0fcda4be

    SHA256

    b8f78e01b1efbef0dd10e9e382b156c29eb50973c5c736cb5768ff2d739dc4b3

    SHA512

    44ead0a5203bc89deb466e4e2cf82ed9e44d4a117b714a25fac184b6d2c3435519772807e1b9d166d43bd7986005f74414c8d738ae3da1d9cbd2bd62bf40ed10

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2936672b4aae9c8503b5a1103579c093

    SHA1

    8af3dc77a70f57d91b8cd82e92cbea68c4c4ad12

    SHA256

    d8119254da76c25301997e589f0e48cd5c57171bd5d03a6dc11c5a50c8aee8be

    SHA512

    9d1ab107522890d29c42d16154655b7da1abdf3a2c5fc643df9480f06a065d016680485e7559fbebfb7acbded8aafcc7d8ff2ac8cdd222062ebf13b75c51f844

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b3cd16656683d5d2cfd4c07b8b1e4997

    SHA1

    fc045f3b675c0c9fdaf6e10a9010cb0a1612a61c

    SHA256

    be1ad02c76590407931935146b21e725b4b87fca821e3842e904106acff48796

    SHA512

    5449ba497b6f69242baa09c8484115557557b3e8186aa3d33eaa8f4ae1291185b91b4cf5dd92a92f84074b840d468553504e8aed7093f0d585f108148713a45b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2906dfe107367be6882c505a1a704597

    SHA1

    a9783417c57dbfa2838173005bcf35f82b970e58

    SHA256

    1d3a32a60e02eba268f00ebd2db9e712c2fc97f2677afbd8de7e2b296c5d3ed8

    SHA512

    55e638f84f0770ac2997492dc3ee652f8ea943e799adde126400700ddfc3cb1f4ed7df4742f4fec3039932ebab1270d3481a602608f6067e496c75d11b373b99

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9de4dea62feee22acab36afdb7b37352

    SHA1

    e90300ba58c210c20d879addbd65132291a25932

    SHA256

    a2467e281db681ffdc858bb0d4ef14b4b9bbaa722ff59b031d906dd9f2e8b63a

    SHA512

    e649f0c13828c9aa281a62130c05f8fe755a9037224db90a11d1ee2b077a8eb54f82da6f01ca67f9818da360d48668bee3e39577aa1a3ed74a697e95e7c738b9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d75892a0630650fa622087225f08705d

    SHA1

    6d12aaa1f57cf8ce67fa921f3897cfbbee2e2a36

    SHA256

    88a9fa3e0255d42312c7d03059eaaf66d857f90ac968681554c65fcc80540c60

    SHA512

    04f48ff49f2dbb81b8e6f02287a255d231759d953716e1d551bcf7f824c33213e4e3428c152fd82932ae9584e9d6c915d1215df32e5f5113ca0a95c32ba09f98

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    96e5e58dcc9bed5f765465499065b8e6

    SHA1

    2c8a1d9fb239b62c04a2788849d4a087c2408891

    SHA256

    7babcbbba1110d1ed0709a899656b8967c6339a9259de4c98037a4729df87d6c

    SHA512

    e291f57f3f4c9b129f7d6b697336b9871ef0831859312cef41237e9039f3b9a5817bfdf604be9c5055df87a4772a793b8ad54df05b5ae89b7ccbe4f0e0f01d96

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    306e4184c69078d9036696f3c20e6fba

    SHA1

    8a12ea7fc4e6d007c8eb33cedb35e2f427e8b13f

    SHA256

    8cec26ef2b838c5f945e0ce32083b96c039b64d58f1b9d1c508831bb687eb73c

    SHA512

    88608707ec810e28ea77f273c2d9bca7e80f915473821fc40ec029eec7456ea2387ffe60e99a81554ad6534079e08cdcf27deb2755817e6c4135018cd6d6a4bc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f9b0eddfd6cfe8afe8d114f8022b27f6

    SHA1

    81324c527ffb9b6088051a8db43de8cb8fe85eb7

    SHA256

    c97b5a7d7b2eac0982559855c1e32f2240d335e793e4c153c4b23100188fc33d

    SHA512

    0fdac690edd6e120725275504a20b95a1a86c3358e34dd251a33a63a2258e23fe6afcaa35bc8b812c58b6212d4bdc109c5146d295138ca46adddc3cc156329c5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    36146b349253536a88f4076f77b25649

    SHA1

    88aa72fd6265b58c440ac4e9298f881be36a271a

    SHA256

    9d61ece5e57165cac53c66c2db7f17361fb0a98c577b6ccb301295664cdb7d61

    SHA512

    f34739da318ef1a391cf0cbb53045ddf2a24d8fd795c70bb4a6bbcd6ac67517e3fc2e37bbd1441de2c685f808701cdd745d9519751d4f0f7986908898ec42d4c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0191957fb51d773f0f914b7acb748854

    SHA1

    ff1e1a8571b1e9ce4d3f023639f1776cb40bbc03

    SHA256

    353bf0ff3ad13cdd94f51981943e7a53acf24fa1bf362343b2ae0d5e35a4fddf

    SHA512

    d5d54c7746dd848cea4f2e96b14f2fc45cc9eb23861cc5dea20e60246bac894bf180b073de00c9ee6930c2814d8d61f33b88a3159c5104959f9c8759be27548d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    71cd27295e453032bdaec3278723ddec

    SHA1

    a16016157f2a63decd030e584274c23710530829

    SHA256

    625a4ad706a6958c6a68488ceacf259f632e5330d47d62634074d7fcc7a0429f

    SHA512

    25f16fa7aa37900f9af03b940e2faf4d2398bebc8219f413e4123584e10a5fe4cf73565db2dc7a86b020eb8567d78c990999eea430590d103bdebebdd9926301

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    84c0dcb169ac9737296be30e26545878

    SHA1

    6a1280e4b4b20222776bd09925fc69b34f32f7d8

    SHA256

    12fa3db18bfb3e49987de124c8d6972986a365efa4726d421ca7cf3940cc7b9a

    SHA512

    12f5beec3d8e80ba173fbc8227103929685573a2caac29c0513cb148f6da38438b224be6a6c0e92f4f3b53cf20b7aea5c3715eb2c43d5a9a06bae04b9c9255f3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9465c09f3efaec451d78d220d1497975

    SHA1

    9e838446abd1a7a76dd696c2fa803c13a62739b5

    SHA256

    50241dfaad36966e406bc5b88fd2e4ec69c8932387616c1f9230d3386d20d9f8

    SHA512

    46b29eae5b5e42c22ddc90f8fe6e0f83f6f84584afea3ff4e6c3d62bca80a2959ae2dbcc306a110bf5418526e0bc1dffb8785ba89e6be9fcffeeed81e3f5a598

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8f6c2a224d13be660b1d7192833f10c4

    SHA1

    927c9b62eb4a7b2bb22cb9277c58412fe923057f

    SHA256

    dfa9866e8ca246dffb9ea9110e995c092320db1e884f1b39d1b0c94f2a843fd7

    SHA512

    de632fabef03bd7a8f7d6a075d74bd594050b11db322a012bcf0015fbfec90f7da5df2d9a70c032e9e4580f46f36d227fa1d30b28a24bba8a84740dbcdb3627d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    eb01472a8dbf7c1a11691959cc551911

    SHA1

    bfa0d577d9422d7b2736acf1fbe5a7d7efcac5e7

    SHA256

    f06ba7511087d82cdb69a388ee8a039a3d3465ccec1dc49895eb8cc69885e374

    SHA512

    60be194fe4c18a73a20ca6305f86dab9ff029213ba6a52c7440a18ba91c3c435c4da92322f68deefbeb5812bc9c518ebffe66565340f0b7c9b0870d87b6556c4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    460d97366399221fddc31ac76b56c31a

    SHA1

    ac2736eee6913e4b1e45dd78bfc1631d88f1acc4

    SHA256

    30309d6105a27c9c74966b611f2412279363102a0edc93337c4e072edce9497d

    SHA512

    309a3362caf842972c08f2d32718d93d458171fded87a8058a726931e84c4bcaca41461c8a0b732fe6d31a7d7fdd88d4f0518de590a4083a75b779ed2298b8e5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bb12247d46dace839817b27104e87c45

    SHA1

    b76f843ede31de4840d6998219bf470c1909114c

    SHA256

    232bc21baa5d0f9991723b9b14498a784b7f7cc96668f9f62e05e724f09a2764

    SHA512

    da283b2e873bfec1f539e36ed776711b41f3891c7ffe0ad4a91941d08de046d52ca382b097d11549782150df8461dab7fd5a3985dd41844f615ca661c5194c27

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4aaca3de51f18cde35311c7e916e4f3d

    SHA1

    85792c96df0291103668223985d307ff4474195a

    SHA256

    71c6a233f281ba3571188aca49d8ebc36c9ce8501e46700c4debcc97b793504d

    SHA512

    e00db8dca242029b0488be013b16ff00374f60d843431a6ee45bba2214414aa05ad32facbc3a0efd07c92524d282ec960aae9682fc03efe11bfe2d3249a6f3ed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    392B

    MD5

    ae4d59bcb6ab6e48c84123b94565d892

    SHA1

    82b77902e071d909f469078e1eefa349078b2587

    SHA256

    845789ff6ffff708f6582159bba71f0ab3ca710a48914c2d83c56d002a4995f9

    SHA512

    d483b95deb00931def6436c4ac7f716fbc65fa24ef275482030418d926d67e23185fa10e7e195f9f552691e7e5d4d5d027d90e4f0b285e590ea828ee5f8aedad

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R3JK00ZJ\cb=gapi[3].js

    Filesize

    134KB

    MD5

    f9255a0dec7524a9a3e867a9f878a68b

    SHA1

    813943e6af4a8592f48aeb0d2ab88ead8d3b8c8b

    SHA256

    d9acfd91940f52506ac7caeffea927d5d1ce0b483471fa771a3d4d78d59fda0d

    SHA512

    d013be6bfc6bcf6da8e08ed6ff4963f6c60389baa3a33d15db97d081d3239635f48111db65e580937eb1ea9dc3b7fc6b4aecb012daeee3bf99cfebf84748177e

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z5LT06Y3\platform_gapi.iframes.style.common[1].js

    Filesize

    54KB

    MD5

    682c26af19b240f98d2cb951721fa54d

    SHA1

    18e58b652c7f82a55ab4b1910693686049e25d62

    SHA256

    96428f0f585a874c185d560538ad83ebfad0365d760fcf9fcefe80add9e3c980

    SHA512

    078aeef086271b7f9cf0f6e3a1e7908d7e38465a1a7a4de6f2a785147e9130551a2995e80600824da9341d58e5425d4505518e90eea9ffe1c64f4f41825a9660

  • C:\Users\Admin\AppData\Local\Temp\Cab730F.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar7312.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b