Analysis

  • max time kernel
    122s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 23:43

General

  • Target

    a2fbcdb2975a9b4a283c45b508e56596_JaffaCakes118.html

  • Size

    4KB

  • MD5

    a2fbcdb2975a9b4a283c45b508e56596

  • SHA1

    0108a4c6edd1504491741895078eaedd2b87366f

  • SHA256

    b957e2d885c8845279b7b6056c94c1963317c6dbfebf3b9afb725dbfc876cb39

  • SHA512

    201974cae8efc510468ebd0db2debfebe41bf126cd084f3c4c2eb86cf7e0e494e22842c34f5edd817d226d1966cf5e09c32b1e77e8200ad1dfe0fd26169cd9b8

  • SSDEEP

    48:CdlLRlAbAGMPyfghqOWjKs9JuVfXp2Je7GB22S2h3Kh9JFT0D:CHAbBQSu9LssMJufkGFID

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a2fbcdb2975a9b4a283c45b508e56596_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1704
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1704 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2864

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    ae20f079f4cd6493fff43190559eedb5

    SHA1

    aafb589d00c31c46a5c4e581d302856f06773868

    SHA256

    2274ac6fe62fc1824fee3969dcaf05237f16aea20038f18ece5333cecc0cd895

    SHA512

    bb180ea435daf167d1bf16b745480cc5515404a93097e621b6a3ed3edfae27fa21b1cc7d0f5d69affbc19af454f7a1985d9b450a9707fbd23d99e8eddd84d131

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2c23cf81b94b5de538f52a525cc47ac0

    SHA1

    34290d06eaa650568b68cfd692c60c247ca33d62

    SHA256

    7a009bb11e75028ac15634241e3e149b0b793dc36b6a08dd35cc1ddabbdd1637

    SHA512

    4a64895efb572b5dd1726c5b4a74aa0dba2550e2c390ef1d49095618091951b066f84a872b01cd80bd4aeb14b75422e3fe20987d92fa76ba880c70a41a6edaff

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3f402dce3e69de310c9bc3017e36bd30

    SHA1

    c29bf2961ce0742e92f2e93a847d14d6ea530324

    SHA256

    2f1f86ec36df647db978436c00d266e1496285e6069cf4f7e39872d7670cdb14

    SHA512

    8c718e58cd3dfca9ec6d65bba11c8635d2e9d8b5359b4e2c5d27a98de98446ef7c51283bf683c930af398a7cc9287199247364ab181532eb728f623dd748bc2d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fa9268afc1d2aebc784c03dd28931bb7

    SHA1

    557644742ff7bcb521c72db2a519076c9e69648c

    SHA256

    71f29462bfe03e1751374ae94795e7a7d2a77f59434e4dec854fc1d17a7bf4f5

    SHA512

    8a101ff01f82a9a1b90d15a7579df3bce4c5aa299056ee39c63aa9f5dea3ba284b7a65d5fa66f901443c40e4440b6961bd6bcf80452a65e0264344fc76999e01

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bfd314fefab40461f1458c111386e46b

    SHA1

    2712b2dd15c924c2ac34cbe5ce8bedf391dc81b6

    SHA256

    9c83002e1cd21a5355ce7e3713286af491fab47fdbe696dd7ec696d2d09f5dbf

    SHA512

    ce73f9bd9e1da79bfc2eec77cb87ce57911077f77d83d960a5207ca6820bb1bfdf90de39ab0fdf2cee57fec643d5053cd5c4ad5e7b50acd13ce3999a6502d3cb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    baea8269b3a1fb5955230cd0619c101d

    SHA1

    0e5295f5e0d090a286f41b46e1ed8a5851a609c7

    SHA256

    5fa4fba0bbbbf76f822f4e52dfed70e9baa820d10711f0351fc8e9a446daf28f

    SHA512

    9074ec50c8312626b6b60ac2a40572fcfae806bb8549d070f4fcb2e448e5f022cf549bafe009b94da526aa54d16e9aa4b9eee3fd2e9c228e87f8b9aaf4c9815a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    86169719749db2e2d3e015c7ef9434ca

    SHA1

    38021141219f9d5a28ade92d22a62f51a2fddd55

    SHA256

    283fb3d1cd74eaff1c4395a8f473ca851bb44bfc824996bf7be04f5f8129128a

    SHA512

    b4e744539a23973c9f02ad6a5e9470a430b5738f77dc4034b0991558e0054b805c104551e2e2e685caa1ddd434bd0836ac31e03d91d94f551530811058a14376

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aebd1ed46dcb427050396c52dd837d92

    SHA1

    ab1044f03a5141c9113c6e24173e9fc5283f90f5

    SHA256

    42bb0573909ff83c94510f2d7625caaa0da5429e30f9c6c1ab5cb042da9be61b

    SHA512

    c00db3034ec5033d8ea623f56a928f0a61da58e45f40c37723fb4b331606999a994ac0dc6a801d5e08dbbe9a42e92eeede3f914a7d6c39bba2546b64b47a9954

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e5bb8c984ae1296d20b2f1436e032021

    SHA1

    fbaf8849956c679cdf13a15561ab3b0520743d6b

    SHA256

    90c48c616ace47f364ebdeb910af58453d4f96c7df436c6bb3549c3a109f2581

    SHA512

    5972e94bee6fb02a127e9f6414254fddd61a8cd22e41eb6b45b282df028c17046d6c92ccd2aa42370af1a49fdcd6538b4e5e4d2b4bc8c5172ce3ddcaf36d2974

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6210e59e33dbd3ded64a3f047c8d5723

    SHA1

    8b53a3ad471f8406f57e3986918f237227cfcbbb

    SHA256

    4e8f3bb77e50c4711afaae09e9756099ad5a97cff64b4d793cc44cbf0f850306

    SHA512

    d393ab409ffbaf24000154cb7e11b61da6ccf7bebd0660140f9bc4503e75f38a0e1434647f78ce88b450d6adfeb2a823cbb071c91906866fa57a472119fd8694

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b8a6374448296614f98f9ab1e2773f06

    SHA1

    4c187f6e5f8835dcdd5b7cf72b0836386c15607c

    SHA256

    059c794609504a4720ff043bffa9fd87d8e5434642ff70ba8d30ceddf5810650

    SHA512

    40bdb49e24e416b43b8b927de354aea4574294c5169930b414b7c3d3456f7e3fdcc1390890570181dbc219fbc11ef3894b7f40275f701773aa193f3ec18da01e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e6f64648f893a4d204eb52cc692dc160

    SHA1

    3151f0aa6b38cf932ee3ab07be213076dd069cd6

    SHA256

    192fa35781173b2d34e8db9d6d72c27cb9912c7c6c82903168791691ce797249

    SHA512

    2ccbb0f7d8089433d1fae6639253fcbddfac6f3c1448996bc357ed86e0d246e4355ed62e6270eb06a2143dc9e94667f69baed284cc8627bbc9b824dfc9b74f72

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c07888ce03e9ac19bf24132b6685b205

    SHA1

    3233813b4e16f09719a7660c97c94034d8520f2b

    SHA256

    25dbbde400683f64cf95abdcef1074fdc4f3ed78b5be9b485e9cbc1da4ebee6d

    SHA512

    2ee18c2f09129b3162c918fee1579c92228d8ebf2c4912769a379890025fab1c0f4bf75f82a7b6720ab27d41cf854ea13e10e8ba0c6a8aae449721cc24990ce3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dc5922a33f40612f2c0773d2c6ac09ab

    SHA1

    66f911b77cff660ef9067c4bcfa0f65059ea715d

    SHA256

    d43a54433872a3c63fd40400de295a1548c6f95547b1ea737089c41b67e6b98c

    SHA512

    d0a12a35a67fb153dc4fffe5de8887f48b9cedc2148b1c6c536ddb99dd590ee11eebc89ca0105033271eb955ce293f7c40cf116ad9717d99c84f07467e0f97cd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a8c957c7964adea440de79e5d3bc10a6

    SHA1

    36eb86ce6c08d9302a4187e5a09e50a9e545e036

    SHA256

    f7e028ee2b73e30bbf6d7788c6a05e842d127dfcc968c10bcf94f8f5bac61832

    SHA512

    2da6c896e4bcad2920e3f6f4ee4fde7ce2f203380768bb85f1545526748b861c61f7ec64af6ca95782a4ab9e2cff16713e8d6c3fd86cc589a1018d209d435ba9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e3d5e2723542f851b0bcad2a5fc9924a

    SHA1

    4fe5b774c5c217dde51ca2af0aafa3c3941e4b2d

    SHA256

    cc85b85cd4b39a5de9fe673824457444b9d3ae8a072f83b41673629fc330551b

    SHA512

    5a45b342a78d87c69cbec5358964a6d233e37e5a96195aa5b24b9e84fe6cab2548a211db3ee37213dcccc4cce4e79a36f06b98f65d80c0bb96c2a28e694b7d68

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c3d0b17cbef398ca3fd84102c6d68c8f

    SHA1

    db8d0c299757a1f82e28996b44cf8f51fd4dd77b

    SHA256

    98da52a73fece92d82ab72482ec89fd8a0719567a987e63e78c3c076af3addc4

    SHA512

    42a5558830038be49e541bafc58fa1a545b0a84c45fef09ee7217af6f8abb2c5e9cfc3b1148295720d2d6e344a02f4bdfc02724a1b3b8d70973eb3e09db237ee

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    201c7d305621599743e04a5396fc95cf

    SHA1

    614dac1f834658cd177f0ad07262bfee91eaae34

    SHA256

    0d47fd45b0d1c5cd4f673d7697729a51751a1ba891743557e9ce917e04db9a63

    SHA512

    61906c1a1e91ad7a16b72af0eec8a5d776cde895275695187bc9ea308ebd78d9fb56d1ac0d07c25cf29abe5d4391bd358f945a4f4053969d34724005d0dd5b47

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    347b19dad6ec15fffc01147b66b8ae52

    SHA1

    56cab0c083c0deb5f2b6a4a901269b99c6c9c828

    SHA256

    b5cf8e5de8c565c6765a6914424f301a8cbaee9cd5c9cb8d218afb22f2ff88be

    SHA512

    120f0af8c353d0823431494e257d55fda923f79ad7cf4ff31266e235ee8b0750932515a2f0d9adf512d615df4d10bbc05cabbdb44ac217255ea55e93bd17e8dc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bffe83025b6d8ca3492502f9a65ec2c9

    SHA1

    6defd14018231f4f3c5dd63fa9ade2588cb775c7

    SHA256

    84d09bcd8e2b5607250b01aaece8f1eab550197a8167c3f08c43eff92233769a

    SHA512

    656a1e53f489d256405e132d1736c7e85ad35ee683690e604f17b4b823f99f32943a03a77dca9728e363ce742bc343c8c3fa04b22a9209edcaa99c49ef420ba2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    eb20954199806ce3596879841186efd6

    SHA1

    835a4801b1e98a68b0def272039eb25c8cc59258

    SHA256

    e5afdb73632d992b0639638fec4efbc311abd9fbba3b7d3585f8d2811d785e59

    SHA512

    103cbd9bbb6121be9210b60e2d1bc9f609119686c78cf19aa17fddcfc4243e1dda597c0680c2a6db3cf3038e8e3c46e8491427ba0cd243bdab55f3c796b4ac9f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    89ed2570e9ade90e8964fd000f44dfb4

    SHA1

    4b63c508512641553c2acf392a90e28dcfca3aa8

    SHA256

    ba37d9b1341c7c8027ed10b01d9b96c7c052bd87c1ff773ae302378508d2e8d0

    SHA512

    b62d2edb8de106ea582421fd349bbc0f2105062f472b14cbe40558ca664af517991d687d784a7b0db56b2e6d3f3fcc620a06979dd81ea6c1074d16751944fe52

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    44ed881a63a0f8e5324adff85d2d41fc

    SHA1

    16c0f74fea2e9f438d058d18e57149d0708b9d96

    SHA256

    92942b9a2bd34b6cf9e8878059359685ca432879c485ea525c742d2c25a0e565

    SHA512

    c7184c5ce0c67fb1d511b1aebd358fa51783ccd34e9a1ed59bff61e6500e0fb5227643c49e79d6f3c8f516a5544cce5eec399dc34a3228e4056ded86226c86c9

  • C:\Users\Admin\AppData\Local\Temp\Cab75AD.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar763E.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b