Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 22:58

General

  • Target

    a2d20517a5139be7055ff6c06c93f9ac_JaffaCakes118.html

  • Size

    2KB

  • MD5

    a2d20517a5139be7055ff6c06c93f9ac

  • SHA1

    facb6e63b8a12a00e407d32669c47a86547f690c

  • SHA256

    47057111c9a975e7cbc0b37c293ba055f2ce674bbc3d045fbcd13cd901a06736

  • SHA512

    ea9f3f3dafbdb2b30a923b04fe3443ae59956288c44ea17b14522754f87bbe383dc791e90cb9f1b69cef4336b2172758893f6c4e7957e0ed6d4d51f02c141f87

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a2d20517a5139be7055ff6c06c93f9ac_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1640
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1640 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3024

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9b921e42d0def54c70049c2e45318081

    SHA1

    0bb4a429b9c1c710ed901bb182cb20de0c1e4679

    SHA256

    cf42a0bb2d557a7d8ffd611f01cc32bfae57e23ba6afd918d3f2fd640bac75cb

    SHA512

    008995bedf0f5e7855dc73c00102061e6677af6fc743f44d5d3e83594fb2232fce7455dbe20e6d1ae1f81801bb7893167ce60a9bf0faa2276a93015197d30ddf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f98a0d0faca559bad94c605c3bcd3806

    SHA1

    c9e89de4c0dcfa989c42cba2f5c076f4412f8321

    SHA256

    dfc496011eb80f7467600a0e08f0e1c958bd9fc6facc5d7f481e0f8473036819

    SHA512

    4c335406f7fbbefec2e2b5c90f5a54d3fd654cb71730391e74ca487bf07e559fde2e97b74106418e844fa749485764dd9aa0c4c8d7584ae4238ad338e3e21acc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dd985f768e7449561d6c04fb49828be5

    SHA1

    408d6948653171b5e1814005a7b1cb4cc315aec4

    SHA256

    464691c1f02977848ebb56867352fb2565f5ace77466113f90361e3be26566cf

    SHA512

    7dd0e29d8ec3ca7b6674e6ae2f8c654d2f5d0b30e2dae3a282839f5eb4a0d6ce5ad967688d31d27756caef03cefe60c8e2cc05a58da6cfddb32a5a8b66c245bc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5d73f0a376201094770bb6a733cdca04

    SHA1

    d1c7a60604735de09267113ca4ff2c466d3c3d5c

    SHA256

    d96f645cc7bf8a8d54aa15482778f950227ac0330981010aac5db314ce83ad3d

    SHA512

    c6f948ce926c62282d456dd40289c5b8f091ed36ebf7dd4bc37e9e52b984839e578a490aad118bba32bfd5eddd4b0dc3542938ca85afc1004fd8ced5bee6514c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aa6f7a27c2e0b4a738b94ae4f483db3a

    SHA1

    cde3491b872442ca84f35ab89e863f82da57a5b9

    SHA256

    8fcc72c5c4d31d64958e26995c1bdbf1f0da95472518de1b571c177d653b2e0a

    SHA512

    bfe3cebfcbad1877ce2e05b01a3f0445f40b1ad27de716e6460d56070cb64e008f15fa3a9307cf2d94784a7433a9176450f0321fe74730a590b8994a9fbd2cb3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    880ac0013c2ae246e143c440c6a3a554

    SHA1

    e3933d74aba4283ad137b410625979c9286e359f

    SHA256

    bfaeea500d40b0435df438d6c7dd0e9b666b8001b60f1928ca6273f2c72f6f4d

    SHA512

    10972f3cea8ebf89a1ac972b635a300fff8540ca8629b0fc7088a8508d52426d85c6fb0001010c114d3548f64be0271239f3f3c5079df17a7e9df035d4ec67a3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    725f1c0dd181bf09ddb9edfa0669a537

    SHA1

    b19e2bd8d8c88af2aab664b2421f16bb326247ee

    SHA256

    17a617cfd13f641d49e7c56be29bb4a8684d84515021a73802001d0a4d22c3a5

    SHA512

    92121e36023a815c0430673236d97128825b9e335ba0bfee01fb22c618b51fb4bbf064b7156ef31eb0ad3cb168871543b5dcba4227f65f12226b65544cd10ef4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f626acbe2206fa6b0830f258d41e32eb

    SHA1

    aba84ff8804991d97d5e2c946bfbf78317ef1911

    SHA256

    a5c16e39ec032a23365a7ead9321920e233cc0530d2311b9c0fc3f2d101a41c6

    SHA512

    6f6776978399f7ccf73c9283f594b08cada4e195704e6d0ae66090b6b9c86b426c19d361d8714323f97cf1a508da9d5b811bba407a6e83e064d42896dd768c01

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    68ba9711ce340666b89503cea275b280

    SHA1

    72193ef723fe2d0b5023954e83967c4fad7b6bb1

    SHA256

    46b729f45e325c8183c60c931cf647c6da5103fc2fa0c32059d06cd23cbb37f5

    SHA512

    289396572daa385496fcfe811342ecd50ea8055716f8324d95949c728580a8c6369a63b07feb98ca2da2a53222e4103678efeb1238eaa16e20568dc6b9488155

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    87c4a99014618f2f9b219f7330134f72

    SHA1

    0cdd1c4eb1cefaab66db6cf692e5a5d1f14fe3c0

    SHA256

    000f63fbbcd4632d6ed3de76b6e5a08ff13b844a6e2b94c0b279cc55c29bde19

    SHA512

    821fd44b180098e92f1c366e068edc4b7afa4f1db7cf16bdb2deae98a9f394349550a6705b912a9ff0b8ffe9be4a19c7b4747c692d7360e96143dfc52a70f114

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2fc7097f9f7469f4c1be2d2f91566627

    SHA1

    740b1a7d29634b1b70db2b8b39704c3a31f201cb

    SHA256

    e921d46fab55b82b757de2c11bdd714276068a294aa483c6de89cb1866c08b03

    SHA512

    7fa84f2c917a5e526e84952fe3a2499a2b2f56264085174a02a7beb76931b1fc2fdd6835ada6e823110abdbcfeb41b9947ea2d06f13b34659505ab27456bf8c9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6ee958ad65a6c3f4a1872d92c1c0ff07

    SHA1

    b81a45732f24b344d88948a37c2987544fa2ac1c

    SHA256

    74132037cf32a8cef29759ae2d3c51fa3fa58f9986c49fbd4c25a3ccceda05ce

    SHA512

    53ec40e16c6c374c067c5f735633cdcab792ffa920d3e3bdb15f6f7b6c7d108bedec39dbb2d2b148667788b22c22a846731af9b8fec1d87377b84cd72187a030

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bba61018b7bbc5630e3cbc7d36215f09

    SHA1

    96b3eb787e1045628193858e688b5f68b2be411e

    SHA256

    189bb527511f4f46bd957a0accf5f25e67edf6dace0aaf9536f7ebd9752d65ac

    SHA512

    569ecb844eb737a80de0e10a688411f2491cd50ad6693464d5044616762527112089621492727d44cb16ab136088e4c5e6089f40496108d6d5f82331dbb91d21

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c26f36e00f2b48b9c6917f308b36fc1d

    SHA1

    60bed60bb65eb6993c5a1bf63d6bd0282121c45a

    SHA256

    d5f0d798b3bd15588b3e5c3a49461f200ffcdc17445f75391670b39e99cdc74a

    SHA512

    d8be6738a895770b8831499a58b0005cdc1b658bf8380037794be2e5382a41b75c31fe0c978d88b0f8b09e3235c8afc57ed9b15fa784f4ee20f0c169bdaff68a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    74e884bad61b898f28c0b0fbc807e327

    SHA1

    66fd9f03208f4a21b71058b2f28e59f8b001de75

    SHA256

    0dadece24748ca25807d49d7bfa11c6eab055d0fe70a1028790317b6f05b058c

    SHA512

    06bad56e94d13d1ef269e7516f8e136e289d2ab05ea9bee1741ed8c3b1cafe54f3e98de54987c074d51c7518ca30fe285a1db8952f5253123f79acf841cb766a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a90bb0f91fc0df20783731a7c3642d70

    SHA1

    ad8c4e3876b19e33902f8d9f14ba346948d2a190

    SHA256

    5dbd89645eb353e88715af524d2c7e3b39a9c5572f5e4a7f8a83be7cefe196e2

    SHA512

    2d2b1270abb8fc9952d8c5780ba714bb87a801f574a6877cd84b82fe99f234a1bfdc5f423aa38927de355293da81368917c3e684f9fa50857ed107e863daf92b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fad609ed4c1830eecab9009bb947a3c7

    SHA1

    419e991a07bde495345756127a7e43d8a99a5eea

    SHA256

    e4180ccb425e3b2d39f7628626ce3f289a68968184373da60997739ca24fbfbb

    SHA512

    387339a30cf419ef032a424fd734677b2ef0eed503a83588c7dfeaf3111f9c1d52861a40a75e3bca6ec6c3df5c5752504dfdc9a1111e34c43606f5027d34658b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e7a49e82e4443c4096dc64851d52be45

    SHA1

    059e4487eb8a7bdb3d7286ad94efcdc0259520d7

    SHA256

    85e68643cd90744af33b190487187b085b370b4236dc60911d91c53c591c14e0

    SHA512

    0c67703596a4048d46d6b8f51b600e7e56be0ecd9de93f5b5041834f03cb4635cfe4f016680bdc0fb084807a6bade5218951239d6732fb72bb981057160484b5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aacf9c30fd0e5802f078d5137d8d36af

    SHA1

    a89a5c7864ab620c8dfc1f8edf651bc95c3f9519

    SHA256

    265319231074d0828ef100689b419610f1390d67c48e92c49721ff165861617c

    SHA512

    968eb2faa9d4d89e3155e507d6e912d1d26679efbd7ee761f08c0934ec34a6e1d5b5364289be704798ebaecda65512a30c171064eeed19cbc8896a51cf45c2e1

  • C:\Users\Admin\AppData\Local\Temp\Cab3719.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar37FC.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b