Analysis

  • max time kernel
    137s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 15:37

General

  • Target

    a12d9cbc111475b4b9a497a4a7e9a337_JaffaCakes118.html

  • Size

    55KB

  • MD5

    a12d9cbc111475b4b9a497a4a7e9a337

  • SHA1

    56df529b45d6798b557029c46168de1610945a60

  • SHA256

    f55ecbf2ad4660558c979a93d00453c2c159530b5fe79f1add41bd0a1cdc4c39

  • SHA512

    6c525e0ea2c580427b02c1a2ebe3046c15e7348f6b17a9ce97cc1bf2ebeb8dca62c562da4394c0982fd50eda9d2dcf1346e0175e6f20d472753bbd0e456a7152

  • SSDEEP

    1536:FisIgSyEZdqN7reguFuWdh9EKwFritXgaHNkoRU:FcgSySPRU

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a12d9cbc111475b4b9a497a4a7e9a337_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2440
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2440 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2776

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3532976f769982e2c27167ea698f94a7

    SHA1

    b30995531ee22104493aab02b37ec30b8797b761

    SHA256

    59cd64b53704cfdc84d6718b5fcad29605250247d3c386bcb792f461d5e78ba7

    SHA512

    2082d5440f0498f2ef6f49b4de668908eb773d8eb3fb6b8c2676ac2b3d905021c1c9a8c62b0d7d83631d599e084e7f7eae362897fc2c19167f767c94929f4fba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ce9e484f276a527abdeac20300265fba

    SHA1

    df6063afe72de776a978ef563ca8f322fd100344

    SHA256

    68e8a46f927dc0d3547ac1fb8a2dbfdd4635bacdae62dee0eb3f7ad1ef5f735f

    SHA512

    1bdfb672c59ebdc6775367ad4ea9bcb7fd66bb99dc54db89ac8b9482e5d555354dcf010f4b5e08752714bba3c891df94af3d56ff6106e8765d741806234efdec

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aea98bd4538312ceaea1a22682f69bca

    SHA1

    b172b400a89c6ec0ec1283e3a9b4f4f00a5d4cc9

    SHA256

    194db71cbdcb0e56f2a25481455b302098b2e22c9bfb148e316c8b0ee07cf99c

    SHA512

    e29a33b4780ab6a5d39936977ec8b5149ae9224e6658451ff048a70811c1f17af38a89046621636897b25e8db551b192b3a9fe81d1b2f03815a04100a842287a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fea2f44161811606c817ed63e1fc0c2c

    SHA1

    21146cc0010c9a79f6db11c731f6b88d31e5e2a8

    SHA256

    407e9f725474b9631dd860b26378fab9d22ce03c2c414f079ce2288df73f339a

    SHA512

    86dd041e0721fb5243a3d3aa167017ed9e0779aa1791fe754350943855b858bb6def6037a10533d1ae117f97b2cdb916fc62eb064706ec2bebbbc6c602a8c480

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3ac506cf785b1dd2452b5f9528e7bdb3

    SHA1

    17861b3d29d7e423f3a87167cfadd9c5f8fb7dd6

    SHA256

    9d8e49aadeddc0a7d1c3520ec53215fce9d35f6b2d105af7dbd9341934298448

    SHA512

    59e006b4ed3dbe417e7fb31ef0e458b5529cd3474c45c3aba4da6aaeeb861b0f0ce14c16f39e14169e9d46064f058fbe34a46b6e60c2a3251bc99346120bf4c7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7a2cba91d7df29f03b1461f6a71fbffa

    SHA1

    dba070f0aaa9d3537849b650be8a2b92a4b23029

    SHA256

    ed3fbb9f6a7e615626acc7021bd6a050637568a0a1e5f714821fa84896867d6c

    SHA512

    b8950a16d6cb041738d343498d17634210356bdcf93c3d082ee57b8231c3bdc6130ea76ac193bae43f6d4426c5a1b3ee82aac2bce7678e2bf89375afd6e973d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8f5153fdd186e55d13c974c338728b59

    SHA1

    9ef9007419b8587606fa990fa48c116830636a1b

    SHA256

    4ffd4a2d217d2efcf58d0cfcba45de76dc35422f2e1d9a596292403dd1d4823f

    SHA512

    587aa1e2ac832624e155e2108669e50bd569f68faf34f3a27c7631c3c40a79d0f78d37a09fe58e65b902536bc4b6baa723ec1c3faef060d2a2f1c8d73cab9b28

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fa885f555a230cc62d62dee1e66f835b

    SHA1

    29b33e6930083c275c3f2b586e1dfda69764d931

    SHA256

    42f3f9a44956d63548fad653e98342062bd36b3d7f6932bf60eddecce9f82b35

    SHA512

    c00341e9ab1ce1f814fd3d83fc650aa38eca04b25c9d3fcbdeca2f8f515fff6d94bccfeea28e9bcfb4dced3b70436a35559a7b2563e509841b49303af45f4ff4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bfd88addb1686e0d234ea1b53b4fc1e0

    SHA1

    a72feec9dd472c89f52e2528fad6fbf2e38fe9e8

    SHA256

    5719004814a2bc0a6c7cc8b4ff3878f3972901af2431257572ebc821a98ccbd8

    SHA512

    332a8b2b830a5bd26e47eeb41ea7ff86ee4386b38c781c1a169a2c7b670e3689f1979b03ea9a28fc3ff614aa15f2786cb6d9fbb4cd0cfd291b89a934c07c3c4b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c44557906e232703d1caa6f3d50f6a64

    SHA1

    4eb90a0983c2934d1f4f8957145ddade3bf904d3

    SHA256

    676d31af0917d3e2208f879b6834caf859bf21657d0e446d8623270059e5d7f0

    SHA512

    95dadc2e3d588876fbb4acfb81fdc574732e05a6dcb81d77e5145e349b0ba2655d40d9b430446e7958b2b0997eb8b4113e599568287d75c450407f10c1aa4681

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    296988f94c5d12a61915582cd3ae77f7

    SHA1

    493ce42b7ee38ddf295d73288ba0b25d04f099ea

    SHA256

    ccfb21a70eed3d83eb2658c3e9b7dd5320829b48d3d5d8f6c1b47045a20d742d

    SHA512

    3d003b0788a1f9ffeb2fc2280c0373c03408e66222485bb6f12f146847a574ec39727c1a0c4e5469fabb7438a5c2fe66bc84fab51f1078f0f20b625ef734b08c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    37147cdecf68d47ea03ff454a30d16db

    SHA1

    9cc7b6a79b848443a6360caca7fd8dcb34ab311f

    SHA256

    599bd49e0d92d387fbaa939077ff8bf6f005d68de6e1289c447044d003fe0773

    SHA512

    a8fdaa2a07f04dc458738f48d76988dcc6717b67fc066b67849aa497fa6a6f443c8da11de95fb88f4cf447b977682c174a29c703371ffe77562ad05daf318a4c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5b660b521a47969bee383cc68ebfd028

    SHA1

    bde4cf4fcc62828b2dd4925be7fd1de79d04c0ca

    SHA256

    2ad9bf137a3a21cd20e294c6d5cb856abbf87f341d5af687c761ddd2986f9242

    SHA512

    b26b2b88706ac11a478dc2be64e978e1638b21ad86f6552cb04978a796fa9567aa93354244e80db31841bbc3dd50b209f67ac8faf1f512918bb3224ac5fe7e9b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8612e3b47e6119e6363881a2a7376cfe

    SHA1

    73fc5c407102c223888f43571d523b2133c2d7c5

    SHA256

    76f1509a0c969d9e1f1798f808094e9d9c7e62d27dd276c33a6dac8c7e0760d2

    SHA512

    04f33821693139804a6bd3bd4b878a5654dcd1680dc0660a6c18bab29a0a99c2e593bb36bb29202f89493184b0da4a39c525bec8590f26ed1a3f68e386da7de6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    28b627a965fb6f351997f131cf03c5ed

    SHA1

    2b0d8f0873057e36b6fcb199378f426962c69513

    SHA256

    306f703d283de38db866f86857a01e0cdc2880094af574276b733acc00b1b4a2

    SHA512

    59ab30b6528161426c455f46c803983cf9262c45da7418798f66147caf4b66a5e57d887fce0a43f52213f7eef426b55bfd2afc0caa23e3e86130b4dd77e78ee2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c0a520653d4a3c64b222d835220c1d12

    SHA1

    d082e999bbfe3fad5a81b810583589e63bfbd6ea

    SHA256

    6807ec8d323c760247f0362ba153c214edf55a59cf78bbd7a9e84ce8197a9798

    SHA512

    b50fc5beffd254e67768b9b61f405379cc110a278d485e82bfb498fccf8958718bfd84c064de67382039e35ee217eee99dca60a5a4aa67ec3312c52950fd5803

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    657e883de8729476a448e9024303c774

    SHA1

    8798bdf31794ceaba179fef9d275ead8865960bd

    SHA256

    363952e5d06596c4b519ab9c5c713a8e84748f23da6014eed16879f48d0ba957

    SHA512

    2c4f2815eff39535dc45950bd1f1b5527c4a8ea1d381ff615c3b1f4758b918853afc4696810636c9315dcc2ab747e6759ceec9b4898db8a431efa5f321b3fde4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0f676600c97ee3ebee3ff09b2b4a70ab

    SHA1

    e9c28299c5ad008d7b7a163626439b56dbf11d24

    SHA256

    27e36715788e61c69964600e5ccd46a5a5e5edc8d4c9f60e2742b5fc5322da3d

    SHA512

    8e3a9ae9e77e6647277d0ad261d288006309120d4560c98ee515e6c8747f0e01b4fe8c6cecb5244eb0d8f25f2b4b72eca213cb8f8304b6bc63c178baa6655c62

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    71c79b31d70e89a9ff87eed92e68cd5d

    SHA1

    ca4dbeefadd4d149887da75ad0ddbbea5ff9d5b5

    SHA256

    05db6e689f10b8bfcdfd4eb4d3d96faf14333214adb6be093685309091de3521

    SHA512

    4646486d3ceb501f5527100810c5fee8c31071eff4355bd32370a65653fc65f143dfaa242ac59bd13b6478d20924baa5260a425958cc63852e76fc851dcee59b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e1cfb3339ef1374494d4ebd68b9aa1c5

    SHA1

    8b16c3b0a627ced70717affd7fc514a3b41beea6

    SHA256

    287f4f5b55fde711150e92ec966ace5921a344077bea2aff5396966ce6569b79

    SHA512

    2341c26fa176e691aad8147b4c970d9e7147823a5e507bece4f2d04dd98b7285f4d0e558aa3eadc766c31a3ccbfaa748948aaef32a2d4a43fd8bc10e30a09cd9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c9a1864fd2817dcf965776ed1094cc69

    SHA1

    563c9c374e09c707ee86c5539ded9f710381748f

    SHA256

    d01ab0ac372ee81423a8c3bcd330e2136e3e41405046c93159a658637f7f142a

    SHA512

    3f95cab57ed05521aae66b0fdc4f889ef54780ead543116252ced083cb8ae16c88fd3b391d5500598eacb9cb917336b610ffb67b54fa7b8ef234770524a67b0f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5001a163d3480977f7daf626c575ff32

    SHA1

    d1d564341571af44df392148cb4e3226dcf54a32

    SHA256

    f7968db8ee211e1b5f0c628272e9602186bc38f86ca7a8c80c7384ea31297445

    SHA512

    6682fe8d6878bf8b2164c5a5918e4d38a17297c755d2e64fe633a0fceb368dad75dfa557152216823552e20513699a11aa00a9f2c4150aec6bbd174e14f87f8d

  • C:\Users\Admin\AppData\Local\Temp\Cab67DA.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar6889.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b