Analysis

  • max time kernel
    119s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 22:56

General

  • Target

    a2cf494be654633ae2da432f79b2ae82_JaffaCakes118.html

  • Size

    460KB

  • MD5

    a2cf494be654633ae2da432f79b2ae82

  • SHA1

    5306f6ddea3a5cc5759c596348053f184380204e

  • SHA256

    49ccaa9d4e11a929571dc1bda48ed05e3a8cfd021b6ccf5b7b2bca696119e6da

  • SHA512

    e678bd7efebfbfc4a614d6229a8c32537aba2f4007e8d7a0c90eba553b8e7f72b8e319ed11665d5bfbf884eeafbe0c9a210414693ca9ec556a495441a4f83351

  • SSDEEP

    6144:SbsMYod+X3oI+YBsMYod+X3oI+YgsMYod+X3oI+YLsMYod+X3oI+YQ:65d+X375d+X3Q5d+X315d+X3+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a2cf494be654633ae2da432f79b2ae82_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2932
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2932 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2640

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5cdf95dc7752ad1362df3d26bebd6f7a

    SHA1

    4ad3c4ac2198d1fcc6f7a5430e864ede2b3b3c21

    SHA256

    bbcbc577d3a958efd8a6eb9eee044cb7ec2da68b209861c046900d6564f58443

    SHA512

    49d3117eeb2c8e884a2ad0e25972e192502ff6839d7f87fa31f891c2665e0361ee01be8b514356e69e7a548a557c62856a70b5107b22bcd1ef154e14d5be6d85

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    12683918ba31f2ce8629215655ba04fc

    SHA1

    d93080a3cdc00c1c0b133be15e92c0e6602aaf1a

    SHA256

    99e49e3bb1c457a5ce8e03852720dcd310392b8481e751474dace7b817bb5ee4

    SHA512

    e061f1c70896178e5236f054eaebe16bf3f5fdc31f1607d2f52b1710c8f63507ca2d181bd1cdcbbdc789695700062d1ece3b22f8da8f551a7f37d03905bd5210

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4abadd7e864d88d77bf35e3acb202c9e

    SHA1

    fa8c43a2c63f9bb9876791a9fdea8938cd46b667

    SHA256

    092542b498cea116a650c6298be6a3af7b2f6525c72ead5850a5b70d3fdce84d

    SHA512

    c45e6dd2330457b4b6a86b87bf97f3db0e1e76a533152281c881cae68584e4db2ad67582b9467dc6a798e45f432314fef84d108a46dbb8e5fbf728879b93d9f4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    231bbed6f3ae7ddd2b4ab7de935184ce

    SHA1

    acabf508478784998c67c36f2d7d57a812ac2ccb

    SHA256

    07cb8fdfd83cd0111562cca68176cdd217fae85bf3599d1a91798b90f8ab9166

    SHA512

    8208d74458b2e3e446245e0fa3335ecac5eb7ac3f0509309e15ff62598adbae82d07896d6c0685e41ac1f5b1a299c76a34561eced2e628d9b8e4249c2a2b15e5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    add13b3baca388d0b967c985c46161a2

    SHA1

    f82f1791f725d221d878b412bd7485e2da6d957f

    SHA256

    d81eba9b658914e9b6c7d0ae78b6dea1bf66ccd94098363254445134b3fbc4dd

    SHA512

    fafc38e18eaf6084813bbd635c9b48de5fa89d839a41c44846bd5ebae9ebe66a1722db9b549d559fdeb7c9b7ae1cd828a452b59b07c788e5ab39c030757c7eac

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0bd4a4d854b45711891389dfee21b001

    SHA1

    da641be17440a4c9beb3e2f9e2849aec4677a43b

    SHA256

    808fa9218c4085353c18167a0f83d2d8b6f8348220cc071e3ab3f7c0c5642cec

    SHA512

    fc0c425095ad18430af66986afb284868a766c6aa6f7843db889046a7727b1d3c499d3f39d74057f45f2fd68d7c46c8221d518f04819c472797cc6249587c7b2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f66bdab8116efbc948e2a3ef2a14cf3b

    SHA1

    f1c2fbb046772b9ce3b3a373dfbafa44cf8dac61

    SHA256

    fa7a99d9693021660689b41e204c5335dc5334abeef5c37eec8dcacdc9efd5d8

    SHA512

    6dc3c0434d9f819287c1a2867705a1ec39527cd3bc11349b2274811cc0e52dade0d88163b63b2d3079f4adf46a56be547fe112d8cd1faa30230a4f12bcab92c0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    11f172d5e5eae65f0981acf55d69410d

    SHA1

    bcff627d51667885bcbd84147d4424f6cf5a6a2a

    SHA256

    f72e9fef6d76ece305f50229c65ea5160f6ff828a6584cf397e31166f780d97c

    SHA512

    3acdb53da7129065cb0a558574e9295b863fabdd5fa629129a16d6ae9d27f4880bfb65a2e3497004e242645b21deb0291b240c29f5a2bc4eecf009b8311b38b6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ee2e349df51e343dae8bcaf62000874d

    SHA1

    15a8ec8452da43c55f6947b1cc3cb019915739c3

    SHA256

    99a23262449395c8e2ae767e1d0c989f423129c80d9255507a01dba26d3935f3

    SHA512

    30a00afa214162ac00ba6ed16c49429fbafb7205d57a64794a5c0c83cd53c0b4aa7c202896b212b5eb519e632858ef60d3a3509358ca67f7e1a028d761d821b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    07c12fe25a6955e30d9e4fa0831854f2

    SHA1

    b63d632febb28c1144111a77f3e3b9d7f257ed39

    SHA256

    9f7a90180a3e8c5e220ee6025e73ed50edb1c57761b73e1deea7c00e271e0bd8

    SHA512

    d6c2875b4ec9b6b7c9894ca212031e10144515667061bfc1c663d065c633823cd750265fddd52e497e0d04a8b00a81d864d5c5173ff5549a5ebdfb6dbe05b702

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    42484825cf917bff98eccb3dc1fbf001

    SHA1

    a4e623cd3325ca394854c9147f8b0194aa51f276

    SHA256

    105e093863af688aa19d7f1b0dc2542d43ac1c356aa1fbed772c6dfb3a38fb7c

    SHA512

    491c0903903f0a3258c46a0c48a7a99bb864116cdf6e6239c9e8c785f37d75c4b9aa8198e3b42ba20a1235ebf3a5f4802bbaca12b089343b26f8f6c5ef49191e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ea7dcb212429dd338d7e79e797e6ef08

    SHA1

    ba726ae77b399d634314091ee63e4e178fd3bcb6

    SHA256

    8de3eb520d0d8faefd1d7f4f518aa3a3353a9643ec63e9f7899701d8857e04c1

    SHA512

    aac84a6c8114bdb70753870caa64bc19b7b4a7ae9ff2ee9989722e9575ba440da1177772750458332cdab8fba2469dd00bec69c19b509a562df8cc413ab26adf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b8b51359b986dc2f5a0b1cd14b5f7c83

    SHA1

    84404705786ddb5cff98c94cea19c0f6922f2d3c

    SHA256

    e70ed345a38a6d45201d2ff99e1ff35d5120e0ae071b0809c92f000eec626a27

    SHA512

    7db6bf7dcdc39b938679365fe3504d6bde9e82482cf6b323c768595778afab260a05dd3b09bf8a5e89ee438c9caaabd53b96c5dcd7245f81d3a42edcc1de41f7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f5a4bb661e0977fe488928f771f897de

    SHA1

    5dde7f6bf146684ef732136674ba48def6b9fa58

    SHA256

    6bd40b06adc5a50820d62dfa4c106d516396a301fbf4a2449dab4986c7d2b0bc

    SHA512

    1dec42e874fec3539ba6e94ae9cef044a90f2fa9d2d02906c4d7376e54b8997ff7d4c0d893ac8dda8e7c94c9e45b7471d31e3d0fc96b4288bf65108a96fa4f96

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3991a4e51409d54ccc7d62ca6d4bc8a2

    SHA1

    560e32913f16338be15f1cb55922b90bff14af50

    SHA256

    e4c23fa93d30f2a23a22a32ab4a7ae4fdd5ba048ada0319d69fb663a6ab42b5b

    SHA512

    92cf56453b82146485a95cfa6717b42204f8148bf845b4961b22d0a84348235909553e47191dd235e2e62adadc1f4ee10c5a68cb653ace219e0a9e2636ad5022

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5e10b0955f5f7042997b3aff9683ec3e

    SHA1

    9fcba1ba2971267145edc229424e9d06c1b87bab

    SHA256

    ee50fcf058cfb2f1d7a2cea64f01cef6a4a7071a2b2561a2dba63cbe57781b35

    SHA512

    6430a2331b47f5add4c3ae3797f49eb2d3b6ec2a16a57084cd4bacba1f502e83ff7c496820ea19cf7aa226280e72f2f03e7755c1aae861caaaa9f04308203d4a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4c3f8b09cd5c100fd36143c7b19432a0

    SHA1

    fdb200c49726fbac3367b0c4b99eeb633b0b0b5e

    SHA256

    67d107b620d7ea0489ba480de867f18f8a16ca53767856428e9818acb7255021

    SHA512

    cf68e144556e28b5f6bfb6806bdfa1d8a0aa8c25b745e4087d04fa54309a820fcb9927d0fa535efa076de538d5dc6523497c8959fc892843c0fa2a064a36cbac

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c5ecfe0663ec9ec6500f1bf7faf97aa6

    SHA1

    21d600382d8e1eeff9fd1e4f9f6e35e76a64e477

    SHA256

    c91d0a6a5f6fa0a8b5edc0ea7f27a062d736bdd54a78a845ab4c3fc4a621529f

    SHA512

    dff2d48fb92933a684a5109f2a54a6bdffb008df9f9d1cc3c3740aae8ce339abd3dbf85bb199dda7f79603135175107fce909772fae4d093a646c1b4098e69a9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    05b2ac9255eca0301b9ce9b9069fbba7

    SHA1

    a1b9d89d15fd20cc6ecb32fcceb760aacd9c7a8d

    SHA256

    1577bc3ed909c362a3895cba59552342339be685efb8e95a89f30170cd45ab24

    SHA512

    7328b194b3a9c0745cd3c63bd53a7d667dd31991af8903e7f564ec2eff7e256e1af99f14adad4613ec24eb67fb602dfc2e3fede895d675ceacae1b016a5396b3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    63e0007858711f2fb362d43385dafdcd

    SHA1

    163b4b37e3d7f9d892377e7371f44a70ae323a5b

    SHA256

    084d15314714a1c541ccb92aecfc28305d0263f703f3730f48241c7a005637a8

    SHA512

    a0d5a9618237a80f11d9b92addd5936af9b294b17a76d5cd74dcc29f7c0f7dc0692dcd0872b2841e975b3c30f235f935b856078fb3b86ad839bdb699307af556

  • C:\Users\Admin\AppData\Local\Temp\Cab3FCF.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar40B2.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b