Analysis

  • max time kernel
    118s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 22:59

General

  • Target

    a2d2874ad4c09e14736a397c63da1424_JaffaCakes118.html

  • Size

    76KB

  • MD5

    a2d2874ad4c09e14736a397c63da1424

  • SHA1

    2407d2aa25e2dec465356907194ac623f39f73b9

  • SHA256

    b7605c10aac3222c41db4f1d1e6ff72f7590475473efeadc0b0c5aa2e8b04ce7

  • SHA512

    2f46411044653a0182689c7a875ae9089e74eab97c94a2189ea1be67692a22718a0e206625f6b71af082f61cfb1a11d4d7110d2d51cee5753436655c43dfd33e

  • SSDEEP

    1536:F+ue9dMqghFDCke8W03GxjSv8VNF9iEv0ix:glYqghFDCWW03SjSGr

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a2d2874ad4c09e14736a397c63da1424_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2216
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2216 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1748

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    81d876a24768fa104282fa0d423f7b47

    SHA1

    cba8e0288b7b361ed9c49b82331d25048a5f1bce

    SHA256

    2d913576194e98618ec289467ffddfa7b1c27ba8f922ce4d0b9124fbd1f6259c

    SHA512

    bdc239f739a2cae86747c999ee82f19ff5934566f03149de6eb674722ff88cc1ce84b275546d9f062563675f49828deeacb83539d269756e9d0dc48f04db1a8a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    949a5bc69dff276753da2a1cac3549f4

    SHA1

    97d4c7f9e9dbc7cbd45d29ac5cb057264fb44a7a

    SHA256

    377cb1d48dbe73443fc759387be1ae8ae38439b1771a5b10f98c06ca85162077

    SHA512

    b24a9d7e58e82ca7b9a84650397aa656db3ab1623a79966c5bf5ef178808d736dd755f442f7df054342060f20295de52b1d59928b1bb8fd1b9a2ffa1938ee990

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e3a46ef632c44d897535e9f1d5a5a24a

    SHA1

    a795273c418347a03690f18201a8682e3770b436

    SHA256

    4ddc86f748036af8a66a50b2859f57955e2a514cef85e9088717d837877cf9d5

    SHA512

    cb6c5897ecb88d31ff069e2f71d8451c06d90fc07d5837a99197bc12af7698187dee3a39efc5cf38c34c7031fab635be16847f1c8ba9e928bcdd7d20fbed8249

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e3e982ac3a5701607f3b1956a7fe6503

    SHA1

    307ebcaf03cd954460cc2406b1aacb464ef53eed

    SHA256

    0428fbf6a7f9ea34173dedfd8b69730e6d9fb1a56a0aa4ed068fb0f01496167f

    SHA512

    578465a70497ab5861fb8d03d9e605aa1ecfb8dcb91aa913d4f975aba28f3459cf78d60e40653d3e3c65d60368487d2f3befcd1004ba7a87ef1b222fbad5439e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d344c08f4eb52c3a9bc51d869e8ee266

    SHA1

    d7d397b9b0520f03652e029dc387f9703febc167

    SHA256

    2eccf4e6843eba80ff90758d794c9d07a5672ee30e95c01e1f9ad311f93caa2c

    SHA512

    5151fb62815b6549de2894449ea9a1450e18bc738add2e43b7ce0df14e8b020a350e5ac340cfa46f9b64f9de1302029a5bc9c9d84584fd49898d0592983f9070

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    06d853636cc88f9c9ff731fee668ff01

    SHA1

    9ae4dea2aa2da224e061abb75c1b81c99b52a4f2

    SHA256

    03fb0bd4f1f230a51930c11e7a1fa6072d6317af1883e3962ac21cade910ea3f

    SHA512

    74f43658e9d34907449ef8f2795614b3251314875ac060a9f9290fb5166edf5c795cab937328063195874483c1a9a3d7e03fdd2149e8635b23e6252679b5b625

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    026a212c438e9d24527a307ae138a292

    SHA1

    4b145702370d489a2f775ed8db98446f6af3fc95

    SHA256

    84158fed4a535d2f85eec8829208773ab37ad290ba5d8a99fe2ce08c066ccb79

    SHA512

    f3a6502e15065728ceae823df966778898a3db7beb4a3c13d6cad8f8de3ff9d25196825a513f7a1da36d4544f41ec789a807174b7e05a59792edb36d137739ce

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5aa1ef1a470f063a396db96a652bcaaa

    SHA1

    7e623364b3d7a1d7b356d1289e3b6acb29b0467f

    SHA256

    92f981b6af122b3c219bcb5c31cfde4eea5983154df0cc81256032978047b53f

    SHA512

    b90d3117734ea16a4680918ceb0b9f1f19720ca7ddb193ffce88a8ebc05e5180c6f396aadbfb69a54a605bf4883f7e5eacd9e0689814ac0b4a0d6c73c0d775eb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fffc13488728e27dc078bdf6666d2a3b

    SHA1

    6f7422d84df2b9e881e5c138af443017bd0d1656

    SHA256

    3f84639299912338e82676d5a52c09c7786743a38d11059b5be59f9a7c41f671

    SHA512

    50bf78c32f64d14bd825fcf9314b1886fdf97c8cbbe23fc3b47ff006d9a06a4d96800abcb8376d102c07a94da430975dde481c495e189030bb4351cfcaecc7c8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7658dd381b480e313e785fb5f2b91bea

    SHA1

    8bfb2acd6810bb5ba458a34d092bc4e398efa27c

    SHA256

    fc32bffa74aaa1105257caeae8e16ecc1b526d1ef7e32f1e92b7a1c109dd0295

    SHA512

    e7d59ee31ee4711d9f015640352c5bec8aea7bbe87396a2d4e514c395e7eff2d3ff84e9f172d227699486414c67f1b755c059f981ee89b9bba0cd34a134339b8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b3d6a68ff9d2d67849e2bbca4945bd33

    SHA1

    25e0790e35f00b3dca34aacab297e268b93d7bae

    SHA256

    06930fa68e45af16bbf4c4189f93e24b4a9190f6c8ae03cdc24acef17bf2fb8c

    SHA512

    154efe48430e4e4a783606edf775d770450675addfd7587eafb6624b43cce05c1c8737d720e9d223dab319f670d0a8880f01367ce1af11fa15094247cf9170cc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a96478e456b760f41122da1d8fdfa663

    SHA1

    fc09443623ffb8014b2d66a0768e777733c33c4a

    SHA256

    5b429479fda146330f31d05f24d64e8fbee3344c87a7a534fe4385c4d60c6d96

    SHA512

    976033828b27edb070edbe4d3662e5a87b74891361d8dc37b5552eede2bafa9365a7521e7bc9a4ea997b4925dda8124b009e369808a027da2aaf9e2e02442324

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aa590ee10e8997b7264a3984e53646ba

    SHA1

    4a18a2ab6114247a270d5fbb411f5941dc1e9480

    SHA256

    55321fdc59fa048dace1f43ff96fa825431fadbf120319fa3da08bc76af8ac96

    SHA512

    edc7cb9d74d2d68c07565eeb21aca505e30c45ae6bdb2fd87f5283497758a6633a176aa01aff3f57fa77c64ff8054b18aaff98dd05a2d04737fb6ffd7b088a2e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    44080b2134e7c3f13bc161de7fe2bb0a

    SHA1

    19b98d98b6a598a545ca666a9f6fed2dba11788c

    SHA256

    57327cf2ff65a8f7227b7b1073080896f60f258f00faf5b8fbeaacc3fc8b247f

    SHA512

    3c01be1d83b6fbdd53dc1a9141210401f2d24afc231323ff175c03a0dedd7cfbacfec6fc3d0c903e28f9b0d3cb8158a502c05d6c39126ef87d696569877fec28

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5bbaf258c7127ddb7ce441cca9571bc5

    SHA1

    64ac725c946d96003dad77109565dfcdf66b0e43

    SHA256

    c25be93282ad4fdb6bd6d11520206719eebfed888d95724387c324423aeff9b9

    SHA512

    3a2edf96417cacd7a87be321f7b48d2ef6118297a006ae9b228714891e0db8ea1948e8f9778fa62c23349f4aede51a10fc6cd7d0a13dfcfecc3403e31a542a2b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d6259b611413101d6810cad6a15678be

    SHA1

    d07487dd9231a8e2039985ed017348caea6f86d6

    SHA256

    eba6ff9b3729cb060647a57fc4a462dcc66e28efbcaa36e2f3ccaa1bf0c2f6c0

    SHA512

    0cd904f35fa36c427f5500b43ceceb0d96111a3d320b7aa9465fcbdf57ae28c892791784f1bc2c1bf53417d260cb1f9af149b051aeea0e2e52acf30bad0c6aca

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a81ea6b4f784240a9386167504f9cf36

    SHA1

    606d9958a719207922bde50daf1e505e91e27ec5

    SHA256

    6b70f1a79b139d3ca534639ac91b7e25b404347216c6624f679a9e6563c99478

    SHA512

    c4d7f98b07b8df121494be107ba47957918f766e50977d2c4a996990456928057b44e9e6e8a804d106d27987464a4916411b370f1da8d28b23ff27164333de6c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    65bcb60b6a3f5ca4215d6ab65a43aaa3

    SHA1

    a23ba2a9b5058c6f51c572215243dc3af9df0476

    SHA256

    e2dd604622beb6ca7a601110ba632e2c037a00d534bdf5cd96954183203fb04a

    SHA512

    cf153edf9e9bc23a91325f88e4b7cdd33fe5b5aab8f68d842437987b2ab80b0dbbb1b61c1607c73a387947878bcce699a0f182ac72c03b702efc2a342c9c6a12

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    44ad87c3080fad6a84871caf3fad24da

    SHA1

    8e2045e12816ced5135dc77c7a842349c5ae6142

    SHA256

    d1765f6c8156a5b284fc0a8acd2c954b78b9609352f52be33db13695cf584ec1

    SHA512

    4ec3a609f63d0369581a5e49698a9555f4ee28a5c9179d8880f5277b89c0dd866fa6fb114ef50794d0c9d94f33c075a2cec443ac8fe9867e5653d5251b80cf3f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8ff5865e77d7a41453e9be02ca7884dc

    SHA1

    d3ea970b627e5a7436f9262f4d2bde4b1f2d53d6

    SHA256

    dfc619bf07d3eda0ba92414d19d9e162e387cbb524747bf6ab2ba376526e0d30

    SHA512

    d9023b636b69d448225d75ff7d587578b273d69c872561b3004d97d7a950deb3af910d802d72131f2088e8c4faabd8ab9fe892788b0e649cd6b41427d18b8f7e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    dcefc9c352f9e6ca1497b37899842a26

    SHA1

    8012201577cab041c44f82d2d987ab72dffbf5c2

    SHA256

    ffb9bfdf50c2f6e6784bc4fc32282867e7acd752a39d721b3c26c8e188847154

    SHA512

    d766effdf7bfc0a236ad7234a2a8f3d8ecf73c431606fb6c6faddd8d888abc9fc386188664472d06cc63ede797238cbffc4bad87346cc553e032f006d0f29ebc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

  • C:\Users\Admin\AppData\Local\Temp\Tar2C74.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b