Analysis

  • max time kernel
    141s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 23:02

General

  • Target

    a2d51e5795d1bcd7ff19387dd0ba9724_JaffaCakes118.html

  • Size

    138KB

  • MD5

    a2d51e5795d1bcd7ff19387dd0ba9724

  • SHA1

    7598429bce2faf25ed234608b812867306474a4d

  • SHA256

    e7707668db483c69b7dc81d2677e9d4806dc83a64733d85b68970ecdd380fe7a

  • SHA512

    067efdab67f14ad0b1a070f83e9d0a8933a8b0c7bf2f2a6cea6bcb4851c5031c2742a858c5ad00164cf524182bfa7b4838b15b103ec97a169ac9c35b1bdaf546

  • SSDEEP

    1536:SFdSm68ylD0GyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusG:SFPGyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 43 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a2d51e5795d1bcd7ff19387dd0ba9724_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2028
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2028 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2092

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    f4e896e57eb5695f73cd8a6452b39917

    SHA1

    07fbfac1a3b5310bb8b9677e18414acd3a873991

    SHA256

    a4ca49aa41366b095df3dcffed7b5d961bb58cb493095374e851e0d6e3c7a3a1

    SHA512

    5d4750cc486f6d2340ce44122047e41ce033dadb10606d5efe7ca62f25644b771ae5e1187505175b44b846992aaa865211cd8b82f539be4e1e6b768b9f8268eb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    deb57f00251bd0408e982048719eefea

    SHA1

    7e8f10821fd42b8ae095afa57c9236182193dbd4

    SHA256

    f17ea301d3be068a860c1f7310dd71cef3c396382a88890348ef6110eb051bd3

    SHA512

    f9390d57eb1d6a9da7c9fd8d50e4c95ab292e8400a1ad95a4993f836f1e2d348906cb3a7c877e17dfc3bcac2a6b558334497383e0a5e75fe23dd65ae03e4f731

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    33009b34dad77aa53a85b4e2e5ccb46b

    SHA1

    daddd5269c9d3b40dacabd6bbd910372472fbef2

    SHA256

    86224454f86a33477412049ff8e9cbc2093a3d7b41b4975372209cf23ec2b396

    SHA512

    c5bf2731beefd6dc5362c727b8ef1ccdf818c9813c659cc54d081ba9bedd81bb8be63b7907159eb447015a409c6dc84ae06c56a49a27a1d8b5b793d99a41bf91

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8eb35089f3c79a2b44c807b11f92dcee

    SHA1

    b1f0cc38553b0a3212033acc7ba81ed4add14757

    SHA256

    bb06b2f559d8725058f082be99041ec4cd3d01f7035796d99b3f0d194aef2a27

    SHA512

    7e463e9d283c831c7fbc044c80cfc38ccb5668ea02e734f2cca63d66a33ab17341ee30e4045b3dbdc7affa37ce982956d81ebed9fa55f535d029b1372e16bb9f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d2cc74228ad56a94fd6b90dbedffb560

    SHA1

    200f1602c64be4c03ebc1247314cc3d66a3bd0c5

    SHA256

    7bd0b1dfd489f7d1218b72dc4c92aaf3058f5fad3c420cae453d172fe2b9789a

    SHA512

    b1bdb46990ec67d060d87e63633b6f07ff7a8e4a1a5f1acf31325c450311dd4fb11f108984252032329223ba6489db6b64e9366fd41007bf63332e43f97791f1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9a7a3e4a34df8836288e598e991bb844

    SHA1

    260029749780389db0f0cf822032129d4d7cd35c

    SHA256

    24ac1e4743b3c7a3321338c6365bed5befd930bdf685f44f5b17c5ec0d770274

    SHA512

    e636582700c3680f6e46d43bf00a314538622033461a2cb918ec9ffbc7be7fdb9dc07e43928c6d9edd29f25b50ff9d542f9e78530a7a1c0a36cdb5df7c662a90

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    544ed9f45446b775445cc9042f5c1f34

    SHA1

    efdf8feb24f73149149526c47dbe140f1a159c94

    SHA256

    1ada51b0581b4ee7ad028cd4abfab8007983860b5a054e4997b431d6c63d48d7

    SHA512

    590dbe00b10676952bd20200aefc6e2b706880a9c94def6172e890d3987722e5c937ad510c83bc4933d997bd99193a253cbb77ba6cf405efb5e98b112a5a865a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    41ca755758357bcba918c7f888f1e061

    SHA1

    f3d8b0761401a828a3ed1ae718404015c92b169b

    SHA256

    a0a0721272d1e6eed5ec01eb7259758acad69522f82e19cf465a0925403cb5d9

    SHA512

    6630b56ea8d73f462425f4cc850509b66c58ca4a1aa7726f1bb00a94b4359fe73dab99391d00a84638a45932bf8b112562719b813475ad684894e3b049550ac2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    745b37e6989690d6106e9f2fb380a49e

    SHA1

    2a91a7800b08e9ef6707434f2281e29c49a274cf

    SHA256

    2d30b7c4b8cac0fc45b51b45db022f03addbcfb891ac2ed5a8d01d1c24e4369e

    SHA512

    d92415840c162a7a1c539c8136092d9b36687861b5bd3b2b060760e55bbcecd1d740a6ceb77b015c74a378bd0ef43a353dd89935cfc3b67611ef18335b1e462b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    70ab2afa386e4dadfb1098121a7e33b0

    SHA1

    58c79270be6f68169b271457bbd3f64c39776258

    SHA256

    7f14787421e477625d3c45a00bc85702ede60d611a75fd238d9f586edc47d5ab

    SHA512

    31e2941abb246f27ca1718c445ff60e1f1fc0aec6db77bd9eaee86b728b782203d0374eefb5a3e7c3e56d7cb15544f3efb5f8e827e6ae29e57223e5b8993a019

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    86581f34a0738d0d4c716de2e4860c82

    SHA1

    d603ef7abf7a57d17d8aa195449a1f8cb7a6c964

    SHA256

    764d5bcedfd6807fe53780349c7ffd708b3d39ac54ab78263eff7d7216482c35

    SHA512

    7b4e7b411ce19f00ab05fa6550854ba71bef811e68d18bb470f82f3c0843ff34c0a5543999d35282999fb0ad05ac23f588b46181d0120d198f3644433fa2f2c0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6762340d73e8d1ffabda22cdbe0ea78a

    SHA1

    feb99cd49d16855fdc1b0036d66d3b6a5da9657f

    SHA256

    0c6c80119d2a34771a37887bfb15bd38a91d56fa5bd68171de9d5c21d2841db4

    SHA512

    9c6fe994880652f601e57901bacd969b70dc8f9c01bbbeda7a6610e57c26e9a91528797678cc0611220bd2951c3268509dcab8747297190402f598ff797be1d7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    92cd7138b26af19fe81a48261083dba9

    SHA1

    53541730398db097c96af5801f794c7a1567439f

    SHA256

    248c0b9fe3b3ff0965ef9c9323f429a4972dc30c4aeba2d8f21aadaa40a7e36e

    SHA512

    2514b7fc044be995c91d858ddf0275416a2c065788be6adb131b5574eb041e3e4925bac669577bd0b0cd81acdb136ce10f05a2ca233f6cd1ec40d63e31bb2c49

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d28a060e2bb364d1ad6a07fcf0aeff32

    SHA1

    05a5bc4c44d1ac84692851dd9fa8a7ef59e46655

    SHA256

    ad765f5440dda2086a7f4473b499cb7beb9e1d83561f7d71e87d55f1b8d087ae

    SHA512

    4dfb222d0f2505ba2a87a3a7d57a626e76e30be252c02016aa94078ef67532a346b5a085f01304e22e45259877c32523b42f4755befb1d561de5d0d02097b947

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7fffe293a94b2f8953ce2b41b7a79861

    SHA1

    6ea0c2895eb3e146b980d965a4ff48907aa80e34

    SHA256

    787cd94053774ad112fa434a312fee08bfec5d8458749c7b041897d74db51659

    SHA512

    2e2f16b05195c47b9b3705dfab02ab65e13c8d0b6ebfd8741a5c1014628b53d377713e25f1b0f024bf5d43b941832d5b9e4ca19cd065d39de7bcd4e5be6ba706

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bdc5f91ddc70bcdfe210b6df38940f14

    SHA1

    3b9d6202c0618afe932d644b644f064f5422a66e

    SHA256

    6dab66c2fd9ec937b0a01e294a505c8576753b638fe888cb2bd0e0dd1f138d0c

    SHA512

    c897fd44b8e66260e1bb7a6953b04b51e3fb40c2812a179445a26e18f4cadaf7260fea3baf1e20ee2aa3d0da4b2ac632250a9c2b5dc6e90cfa9a9881050e04b8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    869b14be3f352cf60343b8d096b2e8ec

    SHA1

    36641f01945160c5750a60f89efd1c37a72b1c6c

    SHA256

    60a27af9369fd1638acacaefa9d5704739c93cc794c6dc47270582fcda111087

    SHA512

    02e6af2d7f94ea2994a583d801c5c9b981fd828ac6b692e8b7741a11586ff52a527a45968187486fcfff581199288ab2720c451d47c818f872af4beaf31c4495

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d1e17736d37c8e7d01503601a38df2e9

    SHA1

    7be399a077b87e0009d319d0df1552451a10b58c

    SHA256

    20346586a1e274d9aef2383cfb103d0cdea8229fdd03e0c21618e4707ab990c0

    SHA512

    2888f6cf028f4a5c035a24dc4339051ca382b49f3fc09d18542839e19d52cad37e33a2e8443553b6b998e038ce61f613d27fecc59d625caec426a1093303b8b8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    470574c49ed13f101b56c6faa84619fd

    SHA1

    d3f62ca219b9dd6671ce159650a5d0ba773b1e90

    SHA256

    7f2e4aaf8c8d5da4f7f6cf817e40acf6a83354d9e8e7b497f51335bbf58539df

    SHA512

    b442fdda5378610300a72d82f5700224327d525a0c644b6082ad00d8cd3621862c4d56fbba3198a031ea6b599b34640b92e6d3dec1e84d1eb963892937de51bd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c763d9f278b5f94e283b36e5fce017e5

    SHA1

    fc2bb81a7a5f7d37cc8fd068c9868995f773f51d

    SHA256

    1c9ce4cc3460eaeef3c9bedffa21af2108fad7c167920067e679ad4e7cb70315

    SHA512

    eefc7637e5e6ffd4c735f1c3460a0254b4e27f39c43e5e3a67988f8984eec90010b2b88616f3ed0a07df4dc8a95104e7870d30914e351404b4105ee6dd6eaa96

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    6ef60315285195aeed4904e616b986ee

    SHA1

    40c476470979adea10602e3296560a65daa18b7f

    SHA256

    03a2ba5fde031869c77850fff3a46b7abb9c97de46f00b06bc2e8a1b10bf4d0c

    SHA512

    61574f860364b23ce32c3119c7e32ad75fcbafe4a1384f7ca21900c04d9e3f2aa0701b05b97214040e1f93b6c33bb636094612eaacbf95a9d99dc92031d1d847

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

  • C:\Users\Admin\AppData\Local\Temp\TarA52.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b