Analysis

  • max time kernel
    141s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 23:42

General

  • Target

    a2fa62d8bf7bea8a03fdbe5923ffe494_JaffaCakes118.html

  • Size

    54KB

  • MD5

    a2fa62d8bf7bea8a03fdbe5923ffe494

  • SHA1

    23ea7169436e1c449a2c6023f473315b9655ad8e

  • SHA256

    91ec8fcea4f1b932ad45b616703f6f3b6cdec461e95c8a0929bdfed32750d8d9

  • SHA512

    b3ceab29358bafffcebcceb2ab3910e031136bda0d9b0f4f445b8d41284795c23ab0fbd96883c2669feb9b937dbdab1fe3b4b3b30d00033b62f5b36b968bb75e

  • SSDEEP

    1536:zVQpq99nm2nwKAv3KhtH6rVIZT1Rdkl2ksEqg3:zmpq9LnwKA6u6B1Rdkl2kh93

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a2fa62d8bf7bea8a03fdbe5923ffe494_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3000
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3000 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2776

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8c76e4a74488d7a70b754b06dae3317d

    SHA1

    a987ab2247012c0a089125a2ceb9035fe6224b53

    SHA256

    bddb4ac4a190073f4d9953f4a1c155c84fa394a4e80cf016c07fcf8dfd601d59

    SHA512

    2ed4b0c329e9baab4c0f26f432509cdfebaf39b1333a2c902f120eeab39d74b05e107f54a59714ddae28145f9575982c3a4e6aa9944ca591f7333cca754de4f8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    01902be43eb3cd628b82a4440261c81f

    SHA1

    6dd038f3faad7db3cc64079416f5b4ce601fb9e9

    SHA256

    52cc41e2cdfad61a5818c7db358a304a81eee885ce68737d26d72439959de23f

    SHA512

    b161c20231931117d8c75044fd614af82114f30c6d8e40f5b0f6db9d6ff4442ec77d770f2531ca18f609ce266613af23221dd5d70bb3689d4826b501e29d916e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3bc5b66b32e63d61525efd02f881318f

    SHA1

    f50b8f48792e6c901818324a9b87eee3b839b34d

    SHA256

    4c734df15a3abc4e7a3b0053c542de66f082b468189f2a5794146dede1c746a9

    SHA512

    0cc8aebedaca53997a9fa36af83a4f0a2434012f9a9f20f8987e69a5e956c5182cc440783d739d663c714da584f1c45b1d20d2eff76db7439e55a7807bbc8401

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    084ad408be1bd29119f19a922117dc61

    SHA1

    7a965cd68db75d2427424dc4026860b0233160ee

    SHA256

    808f1a81ff363fe0d94e871f6cd9b141ddff4b98697ee9120e1da5fbcdc72329

    SHA512

    a5b02e8bc63952389f7ced860ede8cad82c270968d529b38870d5da1d67cbd79c09855141ec2453a9e4cc10bb6dffbd07cf204aaebfbef03ac9396fa4b012c35

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    37dd585f58321b2bf5d7d22620a886a0

    SHA1

    789193e94d30f509202d03a08b1dc2fc739df1b4

    SHA256

    bebf7090a88c7bc36f2d9b54b972a48f6c56ef2cd0d45e223506ac5c2e9c56d0

    SHA512

    7e270cb678888d0b3ce9908820faba4c203110d0b417ce3ca742c220449fe09d9eb147330a2ac52eb6249a6a8c134558d5d5e7f83808498d4751a66f1a32c9ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8cd21fd3310fb6e2845247e8386de966

    SHA1

    96d5abb87782201c8c088196f8463db51acce954

    SHA256

    dd22772a8c6331e34c50ed93d8a2f2413a607765bf22f706a7fb3bc9a26d2c23

    SHA512

    e4ea8cc4bb7a39e1eaef89a0ac4145bb746efc9cb459bf77f6c4cc0a6d7d438329c06266600947ac0fc4783a0b709ab64e24978380503f1bab6fab7c5f2288a9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    872885319dbc5543531d6cd1870f7a65

    SHA1

    736c858d49af9d6f153a6b4de2dcf6fd4a1bb682

    SHA256

    572f7994a4383dc16d8bcb100e8320f2e7b33af5c6ed7d4b43adbcc679cf8b19

    SHA512

    01c3d81a262c1ec2945a1c24d0e824480b360b2d06e69c2bd85bfac9b0ee4fbe67ebab60480badb4b7c3de640822752b89d10cc83bba679d48b27494b7bd8a54

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    270cbfdf59bc5a52cfe51ad76569e286

    SHA1

    37fd56384fb39e840572d4348263193ec7031e22

    SHA256

    6df0dc40ccf4e64a05d5b3be7c88ae02c35ccc8581f452388f75a4d4b2053d80

    SHA512

    53af3a33ba8ac115495a4cfe40248734ff2e1caa9ff39d738619e78b71a03a960f8b1878c4e9387ecb660f13f104b8a93d5d039fd950ee3da7a0cf6f80e644b9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fc7de18a813ec606a780bed506d1f61a

    SHA1

    f5cdcc3ab7bbd831ef7553d45996e3c77bf10171

    SHA256

    b978fa5a6ad1a2deae5e6ae8b4bba55890c0734a55fdefd76602333447462e21

    SHA512

    856c6b731a809a3dc343178f9110c849229a87bc724205527feb57731bd30f2d9489d0c14146a5d89bc167e2d000123d9beac1a24c654721cd6f96eabd5f257b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    69ec8d8606cb9b7a339518d97a73f935

    SHA1

    6f8f1292155e313f25f4a411f269f67d5f7e99f0

    SHA256

    5cdc2e09b25a8ee54797a252f54c329922e0d1fa3c507bfd6a56baad99e9509a

    SHA512

    bc718658f8636b24d97aed1fe423518d7bad628217f0817942f80e70a4f5ce273f5e05b288539a6fab207fd91a67f8cf84ff669177b004d3e4007e33d60ddbd4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2e3aadc047cf3aa02efad646ce91442c

    SHA1

    d5973f2834b66fee19e71c1d6d16962f53cefb1b

    SHA256

    f112a788f5a6150a8c9ef8765023d40dc86c98bb45b468c76e396ff6367590df

    SHA512

    f5eb13e753256454413818a1be63825f49cd633acc20134c5754dc8c5c51e969412a97a89bcc78d1e70173c2b0f51aa7b4c3f43732728f2104a37bc809ee839a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    12d11666f32fb5adfbfcf50ad33b2c7e

    SHA1

    8bdc9cda9804dbb33e0c3c669d7d84a161fce338

    SHA256

    ff066f54b465880f4735aee867dcc304892e6a54abc380141088c00ab44cbfac

    SHA512

    bc89fe72d65fdcfc5c7a8083bfecf518297e1fab0895a183020d8f9e212b9d390395a694ffad0101fc05286c116f2ca3d7f35e26e66c064d358992f47c621c28

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e86b08389e5550bc3d1f06f32b9fa175

    SHA1

    6404906920bb5b1e3d6a1244d19a8582046c9a5f

    SHA256

    d4fd131b97bca058e72dbe4ef342bd92627bc5d7cdf4b1fae491d13e400e3d52

    SHA512

    fdebd064613f68b95440466e9499881e6e10863dd73eed1a9785f772fde853b8109885d7b68a34d57cddf0f99c95a6b87c90fc3b91cd6642419bcd3f4af88643

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4d5018fa45bdc128c4b4433ff7271152

    SHA1

    883cdf5c32b31fe6dd8a176803d496ca56375573

    SHA256

    34867ec3a9be908c5f3e9f274b502d781949caf13e1e3d6583eca050e8cfce42

    SHA512

    1e418baa617e44248690987e12d62ebc3883717ef1bb8a6dc7ea4b16192dbff20a8111e42986da001a4fbb0c0cb33ea6d738a09060df7f25b9383d837a6efd62

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6a8bf1c54816820c87a32c352b156c4f

    SHA1

    39ca1ad0434bf6e18470fa68e0efb49136a72373

    SHA256

    06c6a36654ae398ba355d6b8661cf07059b8d5d916bfa9349385369241f8a973

    SHA512

    bc347ee0db32e697e6b14d94f1e6c1d78868aa4d79826bd7c0363c943ec84bd6d1ee93d675f625c3e19977ae3d8bf9508a23d485459e64d0658fbceab1a581f2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    be448109ffb8bc6588259871cbad5236

    SHA1

    7d0d649d63fda9d49864b899944378c43ef507e1

    SHA256

    2107653840f839cd9e2cf538953eb15d0f06d7a1b0832f5cd62bd6e9421c2051

    SHA512

    0aa7811f349c59d4335678491321bb9d37d2da586272768e67b0c9cefd3b2c2b30ffc43ecee54a5165975dccef5c267eb88e54f21f6a0ea529d6cd73e0a0fb31

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    43c151646f6da7fed2e7866d6f06d816

    SHA1

    5772cc5610c52da5d5b32632b31aa5a94ab35e9c

    SHA256

    820b520c60868ab50f7167a613aa2834c33f8dcded22a9a86f41f0ffdc82da2c

    SHA512

    ed3ad3b102602964e791e8550133d0945722bdf69547f0be35a90755d0f9cecf2810c67c517202bf307d19677664562370203f7619f98a583e5b09fd629bafc8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    49b7659a2fb5198386127180150d6355

    SHA1

    5929ada61024bba19355a086c751fc5e718c14e3

    SHA256

    550f38e1fcba2762406c1fa599e9058f837376732fceb0e09b7aee0c10c2c705

    SHA512

    91aa7448ab8379781f78f82c829f1af4acf67f4a97bcaf27b904f11724e074b34e40e21c133621536e4a67d2aecb892ef0f1b34449179d1c2c398c91384ddd0a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c6966600fc89438b691d1800007cf251

    SHA1

    6c9c26c350c28cd69f8b53d283dec71091befb79

    SHA256

    8885dbc620358da3b21d842c26e0ff98b1e73ff48de743ccad5ab37743fb7fbe

    SHA512

    31fe7c8aa484dcbeaac155e84c1a04c6644d549acb7f72c20e27a6299c2b20940b1184037ff4eebd9bb64246fffff1d455693d44784ac1c5f15addee2f296a38

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    370b39829ebf1205afd5a936bb08ae30

    SHA1

    10f5feb2c30eac30e6b3084f94799544a8a7f389

    SHA256

    6985dc69dd97f5f87d1455f3bffc858ec69c58f74ede8d37184e0a5095692bfb

    SHA512

    6b0cb19c3a2e5be546443a32adf59ab51e53939d05b081cbcc9ff1c880e96b440dcfeb0e7e96ab3db0a8f4709e332fa5b28a3f1099cf5b8a5556aa266952bfec

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    eb8d92f71db674abc588f06f2e8b3f79

    SHA1

    048d32a5e6233bb7b4a72595fa04f975480861c6

    SHA256

    17ea466b17343b5b3f1e6dc80b9c0f698713aa7582a0325e1f0e43ec5c91d2c7

    SHA512

    ff76c72e7c87b52716b8a5a84e2d25e9ce4d6a7b30a127e149394aff0ad1b3fca4b1b68ee69430b24fbf1f588711b3acc36efed7eb490143a576c4b0cd66772f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    96f9fadc2b0ee4166118bc16a9a2b79d

    SHA1

    50c3eafcb2b55fcf8ac512319dacfe9b769a7d1f

    SHA256

    b0ef3cbba0c488e012e987d926760f5c3f298848d1485216e1c487cd05c3c067

    SHA512

    1cadfcc6dfdbe95b3deab2993d043603057ef02bca9ac61f63a2da4fb5a235c7280cd552565cf3a0d22130bc78ba9629fe69451520f62841ae964838ab5aaa50

  • C:\Users\Admin\AppData\Local\Temp\Cab234B.tmp

    Filesize

    67KB

    MD5

    2d3dcf90f6c99f47e7593ea250c9e749

    SHA1

    51be82be4a272669983313565b4940d4b1385237

    SHA256

    8714e7be9f9b6de26673d9d09bd4c9f41b1b27ae10b1d56a7ad83abd7430ebd4

    SHA512

    9c11dd7d448ffebe2167acde37be77d42175edacf5aaf6fb31d3bdfe6bb1f63f5fdbc9a0a2125ed9d5ce0529b6b548818c8021532e1ea6b324717cc9bec0aaa5

  • C:\Users\Admin\AppData\Local\Temp\Tar23FE.tmp

    Filesize

    160KB

    MD5

    7186ad693b8ad9444401bd9bcd2217c2

    SHA1

    5c28ca10a650f6026b0df4737078fa4197f3bac1

    SHA256

    9a71fa0cb44aa51412b16a0bf83a275977ba4e807d022f78364338b99b3a3eed

    SHA512

    135be0e6370fd057762c56149526f46bf6a62fb65ef5b3b26ae01fa07b4c4e37188e203bd3812f31e260ec5cccff5924633dd55ab17e9fa106479783c2fb212b