Analysis

  • max time kernel
    118s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 23:42

General

  • Target

    a2face381eee4c35bb11a2e1b5c06fc4_JaffaCakes118.html

  • Size

    2KB

  • MD5

    a2face381eee4c35bb11a2e1b5c06fc4

  • SHA1

    ffcd963cd6c79ce9d8a942fa9ea2aeae3fc17943

  • SHA256

    bdc6fda48fea12fc4bb5e42adde384d840880729b943316c7a96d09e6005f90b

  • SHA512

    644c8d12579207f79af6d65f15a840a33aca25d01da09b53c2ca85b1d5f648e7dc815f08399843e0d717c1fec9a5256bdcec0721d5c992f1c1edb34141e0d4bf

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a2face381eee4c35bb11a2e1b5c06fc4_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2908
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2908 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2952

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4c4999c7931093c0519384e54a4f558d

    SHA1

    1bdc4703f80c7f4a55caf3c5b6dd0f68bf58b44c

    SHA256

    c47cf62c23898c9eb3a41bbba36f389eb8e668d3248362a6bf684d4e6ddb5bf9

    SHA512

    a9b535c98237293b726ce14f7c88981bc543209fa260b00ec4ae7e260941ce396fe3b8d0cb860faa05dbf40217af7e78d1f2fb74c776711d7e4b13e067d4ae5e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a2cc18418b88119b804b707152efd401

    SHA1

    822a657dc03dc5b739525789d7b12910ea7ef2cd

    SHA256

    c9ae4b212e6fec08a034b120f11c9637a51321422953cf5299b6d06932302f19

    SHA512

    a229e7f8ca43af3acc723f6d26ea43d63db9933e950da78800e56d2701ea73b1e30c312f1bae9e1d54f338f686a33625dd8d829c6f72fb92c755a003f7fd985c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fd8f1693dbea1bb395b63128617f2f9c

    SHA1

    ee91b82d2faadc99acf4f9a0d032e5251db2b1f3

    SHA256

    71e45297a7d0ed12db66946f5b4b2d154dbbc558517d86611b53b44b5dd26b83

    SHA512

    5224f72e887384949509f60dbf1a5c3f66d97b31aabbf7c272928ed8c543e58a93ff266d14ca48adddd6df8728a854ebc94adf33d8ff9d26cf3c36cb139c2a82

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1b43a2e326e444abacd97e19b565108a

    SHA1

    71e8bd3b9eb051f4428a83f5b710d825eddd6d85

    SHA256

    da14da305ba49d343e2f232592eb172a2fbcd05b7e3fee97a381e9fff9a7ae47

    SHA512

    614c6bdda7628cd8496f250fa9d204d4ea7d4911b844a766e761d267deec55f91f4d260425161a96dc72c24769877b5f5f6f6c06a172abda0c8784595dd30eda

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    852e7f52491e96e00108e45580a559ce

    SHA1

    dd05afd1a86e022948b8b2b9d56fa7b342a42a34

    SHA256

    25b277973ac03e177b0e894979cd7e918316b061e67bd98e18d495b3582e49ec

    SHA512

    28b663878902e232abc747647e212f0e60276d40abc8fa93a3e1526f6399f241a9cb214ba14f03e0ba4e219ae10059cc9e34632dbf63b240a665e8830eb665a0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c0450fac4f81008e89a5ad14c0209240

    SHA1

    6baa48beaca1ccfa8a603bcd3cb462593a2e6791

    SHA256

    4c529f7f905579d360c175a6fa077e5c7d3b2b593ae0e6e528de590d1408fc8b

    SHA512

    72b5ba639541acea06ee79082cede9c642fcea2d712b4086870eeeede3176b2732c35a0ff5acba544ceaf256a3c770dbd0848e765545d494b4d18681f814904c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3bbeb7ba94869d0210f890c747e647a6

    SHA1

    060dd9e5ddcd19aae395f20469b9b45680634d80

    SHA256

    8620428a8f7e4fc2dd8a7aaf75d4edd96a3404256aebf630e269cbc6d85b396e

    SHA512

    cc71e577c7168630e505e18b8b54bd9af2a780bfc8630114eb001c318a5d009c937d25d355bed5f15f1a68a35a901a804ad06b88041ba9c24da81b5cc030c24a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    edb4c1e38004e46bece4e04abae21ef0

    SHA1

    6437b8ab8cf5a77839f2c495da3f49d913489f97

    SHA256

    3e2320ac28fa05efac66c641c2f2a6c42e8efa0d1deb95e12a9bdd95cd5d3935

    SHA512

    2613b092b5ca0a3e1f43e01feea776a5820d7489d815f655a0171c8b4ea3b62a47ec797ed0fa28b641fa797bde3d4ca24bb652c03d0b29622a22a6c73dffb3c2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a36fdccd8c18e38acf8f15bf7df3470c

    SHA1

    e3861d912aac8005cbd85e09bad8f4edfd75c5f4

    SHA256

    6d5e316e0b02c276cd58edb1e85a0c256423a504a929cc738617563cfcff88bf

    SHA512

    be20d643d2402bcecf78abab413f621284726ed1614594796d6af55cddfd55f7d5c338bb3a41454991d7354bb912fcb847bdc6f4146d7c1b936c35528146b9c4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b8628d0d38e243271a062a80260289e9

    SHA1

    b3dae6f79b5a2e97c0de81ab19aca26497ef03fc

    SHA256

    00a563c461dc61ec2db8161354002c468d401b3dbc346333eb1462d1cdbc921e

    SHA512

    15752fe6549697020135c3a9fd6c5747542093acf9d471f08d57653508ff483e138f5b144aff5fbf9795897d1deeb394a0eb4f747478cce6d0326e8e37ccdab2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fb4c7928142b00cb461abd97d1e00c98

    SHA1

    1c4ab5d1060d6482b55a6b4be25a6c08b3173a3b

    SHA256

    1359d30c74e647f523350cb69e809e11e302f55d7ed8596f56eedd62e818c7ca

    SHA512

    f545ff107d31328b03c1570230f4e5fb2df9419ee5c315cb17267c8dab843fbf135697c44004d7ba8d837dcf6d00641b171f2d96d0c670f5a4af1323d1bed632

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    98e7a3006b55794d5fd1e41d664761e7

    SHA1

    c1daedce8a39a0e280f6ec22764ded504b732709

    SHA256

    4fbbcd9d11209635268a819e6e122208167e0e8a4872fe6a7b568a04ed2cf236

    SHA512

    ae8e8915434acb798fd6589f8a56e628be8c4fe85fc3fdf29844e2f27e37a727e0d1aa26cdcf80b1f5c1987dbd71fc4290d20e69b3df8516d3015f21f645f44f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    affa9288529cf862140681e299a64300

    SHA1

    41c7a93e23ca41fe69e58f6b84bd83db21009571

    SHA256

    da81ddd612b860d4d70c3374cfb9e4d2e2cab4e068fdfdf0d7ccd27855b279d8

    SHA512

    1cdb7656bfd4213854a51663f0ea0521a83b8118068d4461de6d398422899ee3c66737c0252db9654cbcc376ec2afcf7147885827861d76b88b1fa9f116e368e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2f12e7aa0a91ea79625ab97ec61ca443

    SHA1

    36ab44b013520add9f35748168dfca7643546c08

    SHA256

    0ebb81ed51e2f61e01aac56a79762851ca7894e0c709813d550eef69576fe609

    SHA512

    afb1cba5175cceb9d700a0ddb4606a3591513e48a3d87e2e5fc76ad63609db4328a5f686977a601d8e7174a5df5a54ba1f704431b01ff937effabc1d04f6b5b9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3a0c7e30cc49851d4153b08f97b64838

    SHA1

    34e6fcad63810f99ef3b1b07cb0995bf89eac917

    SHA256

    bc715f0e1b406bb953209dead45e3659ed639ac71a32c60decfc32b037e90fb1

    SHA512

    c5bc08dbb8c63e35de6820818c513d72f988f8e1d82c664b69802be1a58c2db52fa965ecb81c0c19320bfd3d4413ec73424b1419d0ead44f58c8bfa65a4bacf4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dce52abdd711573307a9e6a2a83c4019

    SHA1

    0d9051ac7a09d827de4cf97a6799d3e43c7cb9a9

    SHA256

    d5bf2e939c390f61062c6764e1fba50698f7b47547d5bf87675723a376fc30a2

    SHA512

    49a8d2e913ec483e8a61c5474f3af8374e8fd5a58a1967cf3691210f994b4d11b851c71e235a5a5469294a8288f50ce062ead66179f5f2630144f66c996849d3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ada7db974d491da31eaea3cf249b8533

    SHA1

    ce3e441be9eedb4cae88035c1f12701a8d178c56

    SHA256

    8ad81b59b8fb168cb11f2b12b566bfabe7dc1087eeaf4d90446e930b6a355199

    SHA512

    49cd6fc889e253cfe42631cb8111c64497a865600f4b05257849783890a8b03df68ca3608e8a6bdacc0899a8b95b8a0acc7d2917b9c1135e0e960a6202792901

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    347d9987f8e4f650960f8b8ae0403ec3

    SHA1

    9b6dd4a55e307ceb5cb807a6013b2e8de8dd69fc

    SHA256

    4f14255e33bf357b7ac3c8f0f14682ef8a2d105f222621b5587ddc453bd03830

    SHA512

    c9660a2c3db135d055e069ff5179aeb9f2023fb0d854e042f3dbe526fbed218ef3a478adeaaec24a216ca7130ac251c9bb6d281790b68842c2302d9f50345a19

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2fa7aebb6b1a2ba29a8426ea66bffb20

    SHA1

    a240333175ec7e2f7e19ccbf656f4280d57c9b96

    SHA256

    d8b79e667f069134b79ce78663801ee1c359af93751f0555d74a4c53242e33ae

    SHA512

    6c39742d4935108a0f8acc727dd1ded33afd8b55593c6dcc0259c846938a4d0712786eff165316ce1948c8736d8fea3252bbd84cbeb766da3b5d596663207757

  • C:\Users\Admin\AppData\Local\Temp\Cab2CCC.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar2DBF.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b