Analysis

  • max time kernel
    141s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 22:55

General

  • Target

    a2cea3092c2922ba018cad0761d41fa1_JaffaCakes118.html

  • Size

    139KB

  • MD5

    a2cea3092c2922ba018cad0761d41fa1

  • SHA1

    1b6b3ef402fde09f3b39728b11a9d27ba674ebd9

  • SHA256

    9db7a2f2a3c02ace50c9f31fa42a6b3329e511e2de4b387b94758d8717d8645a

  • SHA512

    0df657598433caab710ba80afb860553186db95f667fcadb8208beaebe5dca584e87d87f562de22f48a46a413a0be51d051870b031ce6ffd5d5d1174bcc21c90

  • SSDEEP

    1536:SATg+Qll8kDyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBw:SALYDyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a2cea3092c2922ba018cad0761d41fa1_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1740
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1740 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2916

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6c20ca6d3e91565f2c0c35736cb6664c

    SHA1

    bd1953f4b8fcc2b554ccfffbfcfa2e87f75d761a

    SHA256

    6f3038f6468a86cff7a58a47b0a1d63a1a75a88d584ce4d3118a2f24994c005f

    SHA512

    e560a8a24ab94a19b63f1ab6d9cbefff30827c240cbd777b3a5c5aadf6ee9a0d6d2eb366d12d213e19ed64c6619f67896b804bbfe90616d32b90e096d27799ff

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3fe245ab5bc9a34b62bb9a3746941a17

    SHA1

    b03ad628a5263d0e17525339467fa7dda46e1bcf

    SHA256

    a650b060d400b297b5cc3d2ac0c2a1f68c32ef385f6e4666d59c5d28edd1c2bf

    SHA512

    99f5e80096f346b43e257b98e7e04c389310a01642133803426b5bb2f233c2b461c28ca705899f190ab1f744128249f3a6c4d5efaa23af3aab9059612ae55b70

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b84dcf4a4ad763a11810db5a0c610064

    SHA1

    6ef19a587525a3e3b034295ab6a3d3559957f757

    SHA256

    b27ee7bcc912475ef46e81c6f2336885e88d848ea502dd7efb77929072c71d5c

    SHA512

    2d1f34388b79804e7775d940aec6bb0b74365e33b18a72d382ce87e9eb921e89a82014645a58668cda13dd0e70fe99a9e21c4842767851cdcc9c683341b9a0c9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    002e8cc28861c358c21a5603c998c09b

    SHA1

    8a3521f62d5a3e26aa14a2af1fa04538970cecd2

    SHA256

    2661613e5903c6a9002835bb40bd5aee46a038e9872c3af7a4eb955cef0b3060

    SHA512

    08550f2edd9104b93a365107c9a295d1a37091f0d63c1601046d5fc7992821f5102791bf0beb3fbf86ec6bda507cc0d95aa194d4a3dc7a0934dd39b0ba55edb3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    416e0754050fbd14f3ff3cbfd758b88f

    SHA1

    65bd510dc6e47e03e7f7a4ac82f0e9972ec8caaf

    SHA256

    27216e374f1fc7924e588afc071c982b7d71d01e5e24a8326c3d77a3d9e11abb

    SHA512

    f7e911dea766713e7bdb11ff5e12f4d37e2e47b874eacf7a63a17825f3ecce1918843a088df0e83c01264b8843c0ba17e5ddfce5a3b0095f26b90a463909b1e7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9fd431eb285414b1e290da94e9f08fc4

    SHA1

    14f0786f8a0c2abbd2e85b134cdca587251be841

    SHA256

    fba5c4138f5f16cad32951470026e41ff46867352e41ead854727c7893bfc9b2

    SHA512

    3a0579cd9061566e09e10e70470247b149f4d7d256885e2de4a370340d511039e74080cc5c5c9fe95e59a295b0eaeee6ef26f0468be3e7c36e350becec736fae

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d1ded5310d8c47b28f0b56e3569e6048

    SHA1

    15117377e4a389af4cc88dcb6472b72d50b6699f

    SHA256

    78106bfdeceb48715ce0e2a78e688135db51ef6ef3e227885e69a5cd8961dbd1

    SHA512

    945524e26122d00f4b076ca8cc44985a72b1a39786dd72f3fdbb4c1a0eb129265937024550ad414086c67e86f78eae02623e72c572a581ad8994c289ce088f57

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    490fe51c8eed2d471035eae732da4cd0

    SHA1

    8a91fe545d92f0d033147a906121e79245411373

    SHA256

    7a07e5fab84c88052e66d1d9f131048a078c38920129b0085fd501b0455069aa

    SHA512

    047cb6b6b49ad5182a9ce20e790950ccf3546f4c06dffb17c33153bd4cbc105f0e6e4f4c5c63a9082071abad6297d6a2d06d4b76a9aadb71fe05f665993cdb1e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    791d0f8c3084d25df065fb2c09326cad

    SHA1

    7a67db5bf0e59627f6fbbd7be41ae41fab7f2ed7

    SHA256

    d8e12d314d66f19d8c4f916dc04fcd6bc334af603bd694cd4d5bac39563668b4

    SHA512

    9ff315f49dc7f10ff0243f037b2f3fcbf7259d65525d1eafa54f6f5fafb3c750bf20c168499f41d07cc1abe50137ea87ed13a680d65b154bed026e4d5c226318

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    361cb274b81171f16dba78a2cd210606

    SHA1

    d5698d39f31c7a27621f41d8c7be81f6fc59a90b

    SHA256

    97722d3062482564abf3e52fb99b0bcec84038f81ae8a895f526a31d3281d70d

    SHA512

    100dd45b1367d433a1cfefba43070341b7b570cf6bdb8b2d098923e642e3794281f516b40113c9016dbef83f2cf05685cf32a34f7bc462cdecbe9c45fe608856

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6d077e2e0972c8e4f61e4b68eaa6a8d0

    SHA1

    38b6a731649f85e1431dfa3d8c3d4107a1b98b08

    SHA256

    e10ad92064be1c005d36ebb7857ac54ccb0af496a4cbe59a3b60b8828bba88cc

    SHA512

    1353105c61df4930d23cffb2aa155d2b3b911dcb8094d26897c18f7189b0d64f1522c64a0fbb798a893c8e2bb0254dc8558e10856e802b8ba501b899b7f37eb4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5cf2bd6d8dd38aa1612c6b7ef581aee0

    SHA1

    0103f223509f5107208345d2766fa00ddf48995d

    SHA256

    39bb77106fb766f5ebabc5b9cb72e28ae59b0f59e147c271c28287abd0df2f38

    SHA512

    98ce117fcc1a16778ef62f4d08cf224fc7ec5edeed81652aaa1bb2d48b872ca1261c3d74747ccd7e4d43a56ff5d17669f7422dfb9a9d93f08b05f379a7b492e8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d89cd45be1d40d11b1cedd79f007a845

    SHA1

    be66299b136fbbd157229783721ac084cbf2404f

    SHA256

    120402ff1b607f6f24a70a66edfa9ec3d772ba69edde12041b67dcdcf8697e7a

    SHA512

    c2de5a94a58bea99dcd8cc2d86a5f648746c993e2fe1258d76fdd4a406f477e9b8c1ad7233573dd2d8508f46075db0bb4083d5571e13372aa6fdd4b129a7740c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8691d0927f49c4d9ce1cd030dd4067d8

    SHA1

    bc2becf0332da1ff9d896d6ed7c9f325fcc7e648

    SHA256

    4121be38a6dfa8b3c94393b78340f2c8f88c892f54408592a1eb690e0c7210fc

    SHA512

    cfe07cee2badaa9e7cc2b8f335a364e33dbc1daf29fa70cefc28355438031780506d0e313b50977f1e47b3f13731d39737edcef42e73a07f152214aa3a02358c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2e4a8a34de8d42d457ceadbfd724aa0e

    SHA1

    178e2f8d114d8419f3752f7131aacea413fad0a7

    SHA256

    5cf3a34ed0e25460430218416e91496d18bc5807326dcf28a2fec9992b818776

    SHA512

    c6fb09a88cc33ec77a90b80c3bcdf6af7e40daada6dac9b9cbd89b2dc27a8106b07835379a9a6e8f237197ddf5ae49d661775b21cf50b04741c679d7a7f5ac86

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    18284b89c06914af8505dcb5ea2e3021

    SHA1

    fa50800f23fcf4c24e0fd93082fe8e1f54c97fac

    SHA256

    17397128fb8ebd5fc8a42ee2f08137b42b6ee0a1334dce747b956b25bddc07b0

    SHA512

    7c1589cd0542cf810e77f6c2f9969da1a729eb4eb387243a197b547a61d44ce9a080a9975daeda6e0f9f2c5900b36ba7c355b73a688ea3f386db503243d9fb7c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    df02101e42f12fe14c8b83c90563dc93

    SHA1

    565860fb0fb0d4e266bda1e2aca35ac62ed2d258

    SHA256

    709ecf080e8fb42553a104330a7e69f5e91a7df086fe0f469bc8e552740fb405

    SHA512

    dc4fd45d8cdbe5a7035370e1eced9284442e6e9c0b438ad38247ef50ed42ecd247941d0bc342e0c77ada2bf175d9e902271bdeb20eb0b8ba659800ab78fb4b2d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b074345c812cb06652aa0d1818a2d7cc

    SHA1

    84cb4061d085c64d6a56c23d8624c6657ed301ac

    SHA256

    95f2fae7a1d7884daeefc3d04b378435ca7474a1ea110fb2293e8be21c7c8aec

    SHA512

    070b3c1fe139da2ea70274fccac734844b5950fb4ac32e28a8718e37ff54b9644160017cb268026db68a058e4e857ae09a72ea55ad65d074393bdac02882e6e7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6bf16f33000684fb8b97878fbf60b527

    SHA1

    c9468e71c43287877a0efb85d84b2a1ba50548b1

    SHA256

    9b1f2a7f5efb0c42b28e31f0cc6361c49d20a4149573848d838327679b349d77

    SHA512

    89054d61e3f2c67bf61892cf7a83084541c6ff42e0aa2f2b371c2474ad4a1f0fe00b10a8d0d55279759deef97b7e587879dec18d932ed6f0ee9e84b1b265e02b

  • C:\Users\Admin\AppData\Local\Temp\Cab121A.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar12FD.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b