Analysis

  • max time kernel
    142s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 22:59

General

  • Target

    a2d24210d99f1907e2e61e5b330f0bdf_JaffaCakes118.html

  • Size

    251KB

  • MD5

    a2d24210d99f1907e2e61e5b330f0bdf

  • SHA1

    e988f69a7b7e717278888522d576b8000388048d

  • SHA256

    5fd9805939bbb6489efa2644d40d18e5f73904efb12a3dd3a73e64591fe87253

  • SHA512

    295086bb5971f9c49b8718c19148692ce555ec05de081a9270d3c5070589630fa60536124c15186631c9e0565a9290b6ccb6eab838109409e36210f0195ec72b

  • SSDEEP

    6144:L9POhwsNW0/SF9ALaN2biauBJgI+U3xWPPWnL:L9mhwsNWCSLALaN2pucI+UBWg

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a2d24210d99f1907e2e61e5b330f0bdf_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2648
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2648 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3060

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    e56e8a78c63bf428e8186c359188db32

    SHA1

    4b93123e24fd5fb6ae6cc24cd34f10edcad3c366

    SHA256

    923d62615b366a5efb3ecb1eb53d50aa7639815b1d6418fd44f619d810709d59

    SHA512

    d4d2d26ba9ce9fa36de6f0c34ee296a557fe8ca8258a003fd8df3555f3448cb26e64ab01ed89fb7888e9cc0608d6502192052a1d52d6030f192f6096353c274e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\265C0DEB29181DD1891051371C5F863A_DACC52A1882A05AED14688828CFAE295

    Filesize

    472B

    MD5

    a4c3e4b3f212ccf9719236eaa8f728be

    SHA1

    e017a18974a9969ca60ca2499ac54b464d91a2ef

    SHA256

    0641546fbe6a6bf201d918796cf5efa992632208053037f369a6173cc2afd39a

    SHA512

    c4c229eec604f4022ab0d439eb8b95bbdbb554d809d4571745957f0da5dc740e4ecb13757273b9dcf9f431a5b1ca40d53a539e2ccfaadbf7c161dba6b8b2734f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    0f4dac1d8155de06ae46df941cbf9d71

    SHA1

    a43d24fd72d20d624c2848687a2fe95641323c44

    SHA256

    e8703f35063c21c790d6e30dbaf869826ba1158bb430f3e2b9270e402e009282

    SHA512

    b42f7559a8577297ff3ad839a0234f875269046041c5b9ec65c181eb5c0491f23d18225f624ab8cf1e1c64c03611c7a9b048fffb4ed88f0a079a7aadb7d35fc4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\265C0DEB29181DD1891051371C5F863A_DACC52A1882A05AED14688828CFAE295

    Filesize

    402B

    MD5

    dc3978b9ceca089598ec41f78e9228e3

    SHA1

    33dc36b076f46f45b30d7c89c54d5424d718d613

    SHA256

    50c9827b34cf62fb33c27c65f62024f97056ea5f40a44a8d47b849f67894cb15

    SHA512

    6f0c85edf742e58711fc4a5f12f8690105ca7dc05bc79eb2ac6d45a33ce8f4d0c44c40d05ad4af981012b10533cdc8769aa066b99c18038c8e8a380b187ca6ef

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d2135119869d3f6557ee1c347fefc005

    SHA1

    0cb0def7bfd409394c37096ef107476b8d7532d6

    SHA256

    019f05cc4ece6dbbd388b574dc3c53a2dddc77f0df2eb2f0480666c3d8bc938a

    SHA512

    b63884b1a05ecc30480faafcff5b68af8fafb0fadb7023a0bef11e2685978a6df14b3b574085f7c61afb44997328f9b1445225c95cf4f37e184bab5143038a8b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a8d1cf13de05ab931b82ce9b36c4160d

    SHA1

    7c9da012f40c218cf660ecc936ed45a403526b97

    SHA256

    fc68c5aa2643e94f7542653252e1822187785106d215b13a87dd7541e35cfe07

    SHA512

    427842687b7d8eb56a15ad339a669de8cacd477e20ba0efd0e83ced31f5876a91dbe1c48b9f6069072f9fad9a175b9a4387e711f4b957ec14659d65bd0a9a73d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    748d40cf456604924f27b564ba8fdf26

    SHA1

    144cde9ced1e09811edb95c4ca8ca6834a05e0fb

    SHA256

    585e431df4f7be549e713c7957f07452157fd01c1262fc3b202e9fe683d1516a

    SHA512

    e80ab353f65f0e5d034491e60b0e11a9393d740ddcaf700de87bec88ca7f1514feb99ed495bb8ef006c3fdd91a8e9ba9a60e76bc5445111df636c658ef608292

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0d126e3019fcc6bb957594caafaffc76

    SHA1

    5fb4b9703f38c29c40074af85512c48398e0c95d

    SHA256

    8915110b76f34efc4ebd9f6f4857fcd6c058721c8cb695c81750ab88dbc36fd4

    SHA512

    6b15fabe754cf844b5de23287e983ee993cf89630903fd54dd887f38bca445290fa9692e2382dc754fb12ddeb08dfff184c094691ea7c572b5882c517066292e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e2588ec18cd20c3ce44223ac0ea9178e

    SHA1

    d6f635bf9475f1e9f3261ca06ad426cc12429716

    SHA256

    b8d31009a49f9964a19a7939595a4f1aaef9dbbc89fc6a015b1cece215a9b090

    SHA512

    ed0f86717eb5d39a945dda6578ffb618533a507dc9b7ad0c4f58436bcd04f9696d09934787b5fca8f75f00ca4a62b864b6b56f53dc7130170ca8c4d6885bfb25

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6ff93d23aecf6e441c18b629156dd131

    SHA1

    f3ec28ce2a0adfcb3895c3e191f598d3842a7ad4

    SHA256

    c904dc9f1a290000db546210888635d29b32166f84c1ebe6bffa084b6fe06506

    SHA512

    34c89f8375001f8a50ae2a5297779132078a89891aa5c2658a199b1476c3acdc7129919517b7908d95d1d5319149b7b493f9cb1c8dbe3c36bd7c8c49c85c39ab

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0ca38c31d474708524f158af0a3b909f

    SHA1

    6c4db3aa1f086b770b081e9a179651896de3278d

    SHA256

    172599b0a73e2bcc8b917b937be93c5b7461e78d361c932ecc8075fb0b35da54

    SHA512

    cc74c2f63585c942fc14b0c1b85de94a61b7bde36e524c20c63869d2de90fe128951b0ba44017b6262366f6c13fec3c7df522ece22e94f45f443a53ab77bf2b4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8c6019d86b437aac48ad4b843820ddab

    SHA1

    ac206e9cecee889865b6adf16b232fc709ab7bb8

    SHA256

    67f19472fa1c4ece814d602760afac8c246ff6ef2694a2eb69f13c654d942075

    SHA512

    eec7bc645467270b12920b236299efe6dd8bf83666a83a056025b092a1db211933aa5cc01ac5bc8c8e83253152ac1716eea08d8608ca14fcbbe2a98dd927fdba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cec9d1a8d07f10be38981fe8ba2c9714

    SHA1

    b8147e1fe406aa83ccad26b3d75c1ff9c2d3e086

    SHA256

    b89d34503664dd0d9e3568520d0acef4285360f43fac8f857b7e1a3fb818bb9f

    SHA512

    935100330ca9353f99ae9bd580a28455d92ed831247e32b9d6bf7307b6352e992b54dde0bcd370f4e9d7ca8c78a55493754c7ae9d1fd3db3a179a0d77dbc9d8c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3190bbb4340d17dd024fe3af51047da1

    SHA1

    48a34b330fbb6655784ef7879761fb887066117a

    SHA256

    0bd1a120e1055cce333405f6e62c1a93d38774f383e0c29654ce85048ebe2f3a

    SHA512

    4a09357333e8ab04ca8ff11cd9e635488b6e5dcb428f9746cb4017618d2e0f3c2510455aaaabd9d59f93474e79f0cdfd6c996a7a823132e21e7226fc78520a95

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    18bbc38b3164da6336068e96ad45fd1c

    SHA1

    e3c790c313d0ca57310a87da0bdfa51631bc08b4

    SHA256

    496949dd1dbc36471ba50f85d1d88f6782e1a4208fefe3d2ca44cd768636dd62

    SHA512

    bdc836737ecd48675a12baf15ebe61f6824debc2d0fcd841eacf13d8223c3d3abc8a308689608a6553f019160765719133b5d6c289922554907eaf0576c90a9d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f694234e5ef2350d73e2421f7500afc5

    SHA1

    a0f47e28c7a49e620029c7f73abd813d0b7b8927

    SHA256

    c6854594d28c3a16bb27bece1a56a04518888dc839cb6ea41d1fa229c42697f2

    SHA512

    17e8b0dfb7bc2216ac3f7db724e3646bf53b9e92d1d5895fe6b3bcda743617fccf68dc5510046c1a8e5094f9374a256bb409d284c73c245c9090215f10aead47

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6d8419ba631c61d557300df589504a77

    SHA1

    e0405be32c6966b5f527e38957baae32bee8275e

    SHA256

    3cf4e411e6daa55b7ab65f6ff1c66dde332572c184b7313bd28e02ff8074e46d

    SHA512

    bec8ffe33d6de2104b25a5490cca5ba1aeed20c872ef53f5058d32b60f78819c7ed4fa6e6e5fc21d5003e39b971989d14fcbb749f5179f4d6dd48ca77603a87a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d160c97e97d7f9a2c8ef550747e642ca

    SHA1

    1cad826d6a6ef980602260c7e6b9fa74e2878506

    SHA256

    730600fba1eca06bd603a0bc7e59e2aa411ce1c8f3625c69d9212f5b58c0a460

    SHA512

    6638f60f9ec9e3fb03afe3b8850dd40d068146f5d7ddd8b7037f2386c5128c4feb9d311f32916b1eda1c328f5abcce504953ac3f0d5433b3e07f0e902ac25931

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4e6447fbcb37f89957d7dfa980dc487f

    SHA1

    1778ce6d95d314c4a0155a66e500ae55ede993dc

    SHA256

    fb43f9589bb5b1e5562cdd0880617c52fa4180322fd8e4dbceac66f2bd9dd828

    SHA512

    32430a1a99712b5d686684f98a39b1e550dc85d084a38de0927f1624e679f976011318bc537b3889b8e829a7e98565568d2b8f1ae194bfc653f39c9a0154b6b2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9db49c1cd2c04891aa2a2421698ba34d

    SHA1

    b759fb86e12a0f86ff28539bde2589bce74f845e

    SHA256

    d8e79b590cb7ac469124a0908390b9b2977fa54aa40ba74986d7d788e9d47a82

    SHA512

    ff3c64c5607fa34067c4170dfc04def013662aea1f4a827bb1edadd835792b00d32501a51e324690c0e2db25f05cbc32b4e3de614fa95817b9f26006fe2e1c37

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    89296af043329c902c99e36f97f0b3a0

    SHA1

    5906285d9b2b4e026280038003ad10772f8b4a1b

    SHA256

    80d6d2a4ba58779cd69e1ff408d050f80acdcf46973837405f4af6b308b48d03

    SHA512

    56b764998d2ff6b3dc3da4aebefd45af5d921521a54988ab1ea8ed95de2be7a92c14c96575348ef1321a41485597009571f6fe33b1661f5e19189be67ce1f5ca

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ce3b2b6aacaf03b037d2de88a62e6fb7

    SHA1

    6132a444e7ccbb72342d120074b2077a49f619ce

    SHA256

    9ea1f8cdb0dc0f967ca2f08af13320ae1327498e445d87ba2e2fc5904cad0a52

    SHA512

    a887ad73e006e5560e135928af3166668a7415dbf9023a4360bd668dc267cb11fe886c624f5d1d423dd7c78289c3ae04228d9927b13e9042cb7872782ba65637

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c206dddf8d0b0f823c329ad0ba65cb13

    SHA1

    8d9720bde4237b375ec3a159381904053f195538

    SHA256

    27e27f3a3dcecf692284afa562a4cf2c5f418a657d5dde7b9763afcd11cf7a21

    SHA512

    4fa57feaadab9a43834936c513d94578fead163949a8ac54348d6eae1b6c3a03ed7521dfa5c1be01f6fde082206f56cb41e37182694fd0f230e971f6493ed219

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4dcc8997d5dd991605969f1c0059a918

    SHA1

    32cc9b500604c167cce19e505d3df4ee727b062e

    SHA256

    d658eee77c133715efaf7fa8bd96aa5b52a9517ea2b6fc442e9c7c5cb9d5efe6

    SHA512

    6724c70309d848b5b74e2f67702f53fefd1604b15ddc472a3fe7ecb6b7dfe6702cdd86148578e7cd39ab95ff1f507d6f666046330eeb365d675010578687138b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    53e88b6440735fdbe40aa76092cd5a18

    SHA1

    1772333b2d0ff7c94a40db25ae937d641cf92c56

    SHA256

    6631d1893d1811e16736189b4d579deea5ef3e379d79eeda0e4420f4b346087d

    SHA512

    5c8d5ec1c097f56a85d72bc390b903ab2654c05f1f1ed9497de5cb012394d3d29e5ebca74fbbb8e73b17298b3f20982443c3dbc159cc62f79dcef4bcdc53ec1f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    392B

    MD5

    478765bdcb6567486c653c58d9c9c44b

    SHA1

    a6e54237118ae685b38d16f711ab1866722a7274

    SHA256

    5f950be291cf5fd5c77f5c4e74cb514a90ac5ff28ea9cb1e213a02b61a6f5016

    SHA512

    c54917e1cfea1d392d07545afc2353944aadde56ffba21a73ee64a1b9ecff647ceca265c7b8e85a5f63b3b18cd9f7a73617c01aeb2211ea8995a4b02e6b166a5

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FY3LN490\cb=gapi[1].js

    Filesize

    134KB

    MD5

    f9255a0dec7524a9a3e867a9f878a68b

    SHA1

    813943e6af4a8592f48aeb0d2ab88ead8d3b8c8b

    SHA256

    d9acfd91940f52506ac7caeffea927d5d1ce0b483471fa771a3d4d78d59fda0d

    SHA512

    d013be6bfc6bcf6da8e08ed6ff4963f6c60389baa3a33d15db97d081d3239635f48111db65e580937eb1ea9dc3b7fc6b4aecb012daeee3bf99cfebf84748177e

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R54TGSS0\platform_gapi.iframes.style.common[1].js

    Filesize

    54KB

    MD5

    682c26af19b240f98d2cb951721fa54d

    SHA1

    18e58b652c7f82a55ab4b1910693686049e25d62

    SHA256

    96428f0f585a874c185d560538ad83ebfad0365d760fcf9fcefe80add9e3c980

    SHA512

    078aeef086271b7f9cf0f6e3a1e7908d7e38465a1a7a4de6f2a785147e9130551a2995e80600824da9341d58e5425d4505518e90eea9ffe1c64f4f41825a9660

  • C:\Users\Admin\AppData\Local\Temp\CabA2E.tmp

    Filesize

    67KB

    MD5

    2d3dcf90f6c99f47e7593ea250c9e749

    SHA1

    51be82be4a272669983313565b4940d4b1385237

    SHA256

    8714e7be9f9b6de26673d9d09bd4c9f41b1b27ae10b1d56a7ad83abd7430ebd4

    SHA512

    9c11dd7d448ffebe2167acde37be77d42175edacf5aaf6fb31d3bdfe6bb1f63f5fdbc9a0a2125ed9d5ce0529b6b548818c8021532e1ea6b324717cc9bec0aaa5

  • C:\Users\Admin\AppData\Local\Temp\TarB13.tmp

    Filesize

    160KB

    MD5

    7186ad693b8ad9444401bd9bcd2217c2

    SHA1

    5c28ca10a650f6026b0df4737078fa4197f3bac1

    SHA256

    9a71fa0cb44aa51412b16a0bf83a275977ba4e807d022f78364338b99b3a3eed

    SHA512

    135be0e6370fd057762c56149526f46bf6a62fb65ef5b3b26ae01fa07b4c4e37188e203bd3812f31e260ec5cccff5924633dd55ab17e9fa106479783c2fb212b