Analysis

  • max time kernel
    136s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 22:56

General

  • Target

    a2cece7715174097d941ea8009ad0cf3_JaffaCakes118.html

  • Size

    158KB

  • MD5

    a2cece7715174097d941ea8009ad0cf3

  • SHA1

    0f8599ef9646d4776395a699735d2ce6b1534f0d

  • SHA256

    9526f6c132297cb983ea2d201d6df008b95fd8381553695e2916b55ddbde3453

  • SHA512

    c41f15869bfef9b3b52ba8006ef4d6b6bd122393facd5d30775e532bc10f125976d8dcd64727ae4073f0086634904608d0fac9e037a674d5e5e40766fd739293

  • SSDEEP

    3072:STl7LwSA8UyfkMY+BES09JXAnyrZalI+YQ:STl7c8ZsMYod+X3oI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a2cece7715174097d941ea8009ad0cf3_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2300
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2300 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2448

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cc5aa2c98e2cb80eecbfb337747bfb52

    SHA1

    65082b8c46bd6b17b65e05e05e3073fbf2846318

    SHA256

    62074f57843eeede260163b6a20449eb1c0d7f80a46b57be05d66994ecf3a41c

    SHA512

    23e6f0d8b0310803cb821d2aa1444d5762d59cdd70d45a929bec360f1da3ca932090975c6db28ee0a9eee832b28ffb48073e09ca2d38f3ed5bfdd134334e67c5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bf20bddfd5a5e863073c2c82fa3f73f7

    SHA1

    c452dea7d4b0ce0dd344ff5b5b1bc5912ae7b4c3

    SHA256

    41b971d56ae5202e4198fd178e8eecb6e514ad1f9817aff998bbf243ff94b8cc

    SHA512

    e7a4c25bc9b3432da5f60efc5dc3af4da8d5bb83c0e1ee72101803db7217f329e3223cf8954f61f527d6e1ef7b82188aeb7a94c486ab447488541aae26be95db

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    de5ad55fd19d0090a50de8588e16bc34

    SHA1

    3c76917fba65e518b2e1a352b9d57117afe5872d

    SHA256

    285b5d6a86ecf6fabe3260c81446cc4ef4bbe874673b5d685b838f26855ce86f

    SHA512

    9a9ca5f969c98ea1060e780fc0cff089b822eb1fb4679709da1dea007d5ce5243ea1b420f3374612fe18a5150b0e45eb90ec3a7b38c16e8cb41ed96faa091d2c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0f665da2fd8aca10545247723c4a6784

    SHA1

    da984cf3e13e0c3b2732defb73703d61e5788412

    SHA256

    2ae02ae97587b9b489c37a8387af7d78614aedc63bbc04507b7b814569180536

    SHA512

    d5dd8f5c6bd48f1388fef59781e1081b3007052de334a45fab85092de283c75d0084671657f299ff277fd0ad918e3762811136b67757f37813ad6ca0891b709a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0e63a1fdd6a42eabfe7c12961e8f8bc2

    SHA1

    d4aa443ef840b4f8ccad6c8c574f78a66e2645b5

    SHA256

    66783ff091c307263c4753ed8d054c0ec98c7228e33e6f07044d51e3503ef9d2

    SHA512

    db05b4b306312e127453f4d10c3dee443f1c4abb7ed0ae38ff07ccdb644465c733c9a951b144397552108a8f45866cde68cced13530435275278953a753d6645

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    23db55eeab16425ec62e0d6ea2ed55a6

    SHA1

    d222b3d0d77e3853babf3fb22adc6909b42b2e4d

    SHA256

    c2be8a567ff4570b75e417a04636200c8c63916a0cdadebf61ea3d83bb91a152

    SHA512

    6f09f0be2e494c439c2320e082230c7fb01b60127ed0bddb0a9adce2365b5370f282eb5bd2d93c5982032c5e54314738a3ef25f331cf534fa56cab1869aa9ea0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    893cf5d43ceeaadb7b8388a2ee7a2c15

    SHA1

    2c82bf418e53973e88918ca0a6cf32af443dc122

    SHA256

    6c4e14847a5f7a505f0eb2ffb29b584d04e54fb526218bf7f44ae6a2815b7359

    SHA512

    3c8e6f1d3e129cbd6737ca98d500758986f9111d977eb9af4125753ebe937117eeac239a14c9cd489cab3f9c117070522d31eafee055d8400b81c7bd1dd668e8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a1dd4271c1205bb9109c28640971a0b6

    SHA1

    115dd661a7069cc45ef10caabc8eac72465d9232

    SHA256

    d884dbe902b537f3e5135c859a8111df554885d6a8fe47b2a9dde532e50c2181

    SHA512

    fd49855ec17e0c9f3d6a9c44f2e43f9bb1aa22050fd6a79371374ebc533579784dc2947201ee972ffacb015c6fd038defd26f5fac63717fdb46245b00fca4007

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    516d605e6b2f98b1b95859112ddad04b

    SHA1

    1e6b7cf3de0fcdd264b365087d9d040cde47dca6

    SHA256

    1e070b249ddccebb1739d632282596fdbb220300b0e8fc81bb7416fad6958d6c

    SHA512

    437fcb91873de34d2f1c5a47cc3d32a2ab2e32ba45c153f5fb71daf2fbf370bf2f96a83fa67da1981b51d5f52af0d9fe3a581a450146bb16bfc5aac85acfba5a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8f711716b362a194e0e1dc1766b748cd

    SHA1

    e9baa925016199d0c2798bd56cb82f77ee03f5e7

    SHA256

    1e51b425acf95304c11f84f4ae0213dd16bc8bf87836008f9349821dfeb70782

    SHA512

    ffdf6da2878f91b57b733ab5dd0375704bbf81f9b05e4adedeb90e5a87873054e6648868b816c23a9d80bb321650485e2982ae51d1fe0d37035125a57ef73440

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ac2561a8f1f727440fb252c3a6d9cfbd

    SHA1

    19bd6de5e3cd26e18fb1880adaabec69976b68c6

    SHA256

    68c559c76cd0802312d04b532337c4839509e5fda4ef8748d234cf9852255ec3

    SHA512

    b8242597bf7ea65e9f4012a2ac0f5f81d0b26447855ce84068579054201a92ead3019d6ef56ccaf673aa639bcb491b9623f7f5d0737363a192c0981f5a67408f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6640c996320f53282dd97ce8e1b8aecc

    SHA1

    9597310078b0662224fab8a33868a916b740249b

    SHA256

    4febdaa5fdcd39864241b57b06e15bf469bf4014f0043d0ab17ea5c9c17e6996

    SHA512

    a9e064d37ddf8392c8d98ba33b94f3bde1f26210488782da394f72af39c670f9d326f251d0320984daffda40e1ab55e717e3d33ef45a9657fef9f1f2aa2c3b85

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9c7bf057764176f2afd844fc1c2f31d5

    SHA1

    3073fc872dc7f972fe487c0e8b42f80dc8bc2fa8

    SHA256

    9812d887ef7b30630ba72bfbcf08fa0ea29d22911fe35369c911e468c96bbd5b

    SHA512

    0cae0a708569f9f9f2d5a873cb8885f8b16ada06daf9a399f846ac91e0681c94c3ea1344b729f4ee2ef163dd5a8ea2d81d82f139334f0671ae30245236dfd3b7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    07fdd69b90c2745c00d31255212fad57

    SHA1

    0d382c38ba619b800fd76d39dc44b0fc9260ff12

    SHA256

    ead8632ac6fd4cf2f1aa7de06b47c62f455d1cc87916c1cd797fe1252e068006

    SHA512

    9a66b54130b394eed0505525431c56f12e459f46b862f4b277443d84a2f0d4802470e36b3448557eb7ba46a0f723f33bc71d22f35eaaaad74169e24e007a4e56

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ee75995fabf81b8ff1fb3cb66ab24b86

    SHA1

    9422b7aa1e11d055e0880d74ccaf4f2b296f4bc5

    SHA256

    681427d62244ac592247b634b5760ed8387248e3c08ada087efc2aed02046fc6

    SHA512

    7c4bbcfd498c2b2a8853819180ea0b99ac7dec990e47e3f36706573a9b7aaeea0665f6fd7372556e2c5ab20f378832668dea590fa4f8f1780c75f67ac811dd56

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a266c6d4d3da6ab41023b6c74b972b13

    SHA1

    23b7350412a8741292848bf8376399345b70c2bb

    SHA256

    11994f94c68e26fccc4e93de1c5b1936182042fe7d9fbfdfed3133de93e0ef04

    SHA512

    e92984f3f6e34d98888bf7b022d8358d1a755c15187b67299ac2416247e0fca2cef29ca957f46c1fd89007d1347a41fe4a7f54ab2e47a85f8b7f730690943bfc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7c08ff52a0b530843f14a208d6c2488e

    SHA1

    e0978f2ff98a87c1a8686f23ced2eee6ef5f7295

    SHA256

    9ddaa2851c8af613bb719d4a4056eecef4faf25bd51e0c83b97ff62e7af835be

    SHA512

    b5697562cc2711f8cf814b422ce0b2608be565d20da3e80b0801566ce6db8c56c97e72455b1b7b154dcde6cf50a17ac9752041ec4a2c4325461f80754bb929be

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c864d6ce2a27cbb525697d1c5ccc0543

    SHA1

    d497bc50fa0e32382e4dc309b335452a292c976a

    SHA256

    fe2bc6c296d2dee44b1482c8050b444223535a384bdbfce17b6f3757ab7031fd

    SHA512

    42f981a77cbab67567a07324c217e1a583dabd3996636c5d259d7be614df7c5e63f8e2866e3a1cf6dd75d26447fc939a80675c861bc45bb3c023bc4c7fa56c4c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a1a5f448d67b5b81dd5a9e31bff18c6f

    SHA1

    bf23a356d10d5f9995329c8ab6f87bac4b68d61f

    SHA256

    e8f850e0ca394612b80beff4b7c60bf5064bb5ea20aabb89c3b79ef1e779fc51

    SHA512

    3780c0bf08477e0880e0c8b2a87b2ac9a0ee8f8a3258d9f867df6c6eafc05e17b6993b43542d90e1f34b8229014c2cf4a4704befbb42533b1df73474ea215909

  • C:\Users\Admin\AppData\Local\Temp\Cab141F.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar14AE.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b