Analysis

  • max time kernel
    134s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 15:08

General

  • Target

    a119dde2eff2b2cc5dd67020dbc78f55_JaffaCakes118.html

  • Size

    35KB

  • MD5

    a119dde2eff2b2cc5dd67020dbc78f55

  • SHA1

    b78a0724a7f3d120818ece0f3e1a9b268c5a9aff

  • SHA256

    8e61bb889af40b79e93fc78f0e048df996022cad7156e13a4e6c4793cf7bba22

  • SHA512

    f0c89e1b48402936b4c59c2716dac71eb643d17c5fbf2b939b4c3aa2510b7d2b5404292559a1e4caeae007e717b37cf4bac7910f6237a4cc49549badebd49449

  • SSDEEP

    768:eoPY5kJa0Jw8taj3MOuDpIGB9f0khZr63A4bblukIS4yrDTIeJ4tffX/uX:eoPY5kJa0Jw8taj3MOypIGBPhWlukISd

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a119dde2eff2b2cc5dd67020dbc78f55_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2468
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2468 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1796

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b7336526d20616a929406d57c1f03289

    SHA1

    a668ea419b83056a4c45a88266dcf29239687b1e

    SHA256

    e9b09a0ab3ab442760628450f2cfd6230592d23d5740e166e675c3ffff4f20f0

    SHA512

    4445b57b8803a0a4cd6c84c4016341fd1e071951a6dbfe8083648150d24df61833b914d6c358424fe3837e83bc7df41bee41e37fc430a78c459b0faf521ec52d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    030c7438d93941538509e593d90991de

    SHA1

    ea3d4ef22caefeecd0a3351b40d44562d67b72ad

    SHA256

    0ef87025c44265543fa963bb9159fd289311e2d519b4d03274986d103726eb72

    SHA512

    e9a1bbfb505da158c4954fd80a8135af433c846522021395bb011cba216b26ce97042f457732cf8be3f22e596dde5725b773a706bcb9257b60bb2de5a7b93205

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    67bac9dbbeadcab412a686d05ae4beec

    SHA1

    1ca211db7e1e4caf165d3391917c62b81cd42702

    SHA256

    0c2cb7745046788fb5d10ec0664547a488eb78454a2d3247ec962868b90efd11

    SHA512

    b3ba1c8003705a22569bfed0383ef03b57a5f665c5a547aae4825a28eb9be374c46bc20ed5063d5d32090fe02ad7918b8827187cfcf848ed16ec7579626aa42c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bae36041d5d53428115ff0fd241f4f71

    SHA1

    8573018b89c5b53e274a146fa19479b0a2747506

    SHA256

    2fb8273ebac38e4333cb70e3552c59b346ee3aec2a84aea6936671e7b4d88eb0

    SHA512

    1e9157b0414a1dc15595291356b909b400b08fa490a216ba94dab55127bf4e4e4f8ad937444f83374a9dd25175f670025129a53b4e02bfc3da592ce2c029a41b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    11e19a7a5af5bad5b5b411b4a7bb6697

    SHA1

    e61724a185d2e34bed3c7b788d5d825f124e284f

    SHA256

    bf68dbe73f5d0961ce6d0ad4be3360670f8dcb91e0144ada3b410e4cc9d43855

    SHA512

    aa0e06c3b2247e15115cf71143585a683970fcf9952f554ec2450934150c1d012808dc536cda07fcaa478b9aeba105a3bb76eb2277f3ee98cd14a1f86988d220

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8ed0c5e1423761e15fc3bfcb90b95eb3

    SHA1

    ce21179cfb04b43e209e98f5c1ee80faafdcba91

    SHA256

    91afee8806a3b7ae5c3a8a1ecb920ee9ee53b2ff1c2c2d96bb2c4f6a74bc49b9

    SHA512

    a00e8b9d8d5d613534341992bb6c5193803a9333b300521aca4a8fbc70e81bc19d4e60a1ddccd04b236040ac6bdbca8544362c40e1e9b407edcbf12d21ffd843

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a48a31a7741c6bc70d8d6f878a326d2c

    SHA1

    4f31de1f3035a22d3b74108f69318b5b1191ef50

    SHA256

    7d40c47874e74aa17044409c7822a0547bfa9ab7ab8189ba16d0d775ecc7bc9e

    SHA512

    7ff8c98b67cdac94ceb8a05157eb92547d5a3c3fb712623d5d4432f1bc8c496722716af8174e9581358c7c3d6cbcba8ff50f8c92c633800e0e2b15f8f33de6ca

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b0e4ae7c4c1cd89afcb2e9bbaf6591b5

    SHA1

    388415e261eea98cb43cb141f5d3c49209768ae4

    SHA256

    821f367e440f019eb967cbeba7913f9fabff53359376240982ec9638a69faf95

    SHA512

    2830d2fafb27d4583e56b0387c5f4ec332e0339647c670b614126d029e500adcbfb75d8982d6abec63d0e280b71b9be26be1971ba046d415bec1d056ff966f77

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8f68c3c243de88452f7adaa980d82562

    SHA1

    6724eb900584a08db60af6ae6ecde4fa4d56a5ee

    SHA256

    4ff9cc68c973b3dcd047943b8be63f7ee64fb98f024e7d845ee8e31ccf446743

    SHA512

    71d82394cfa323838b4606a867bcab3757ab846a0bd7dbd0390c40b4294601ee87bb3a76ceb1807b17e9afcda95bd8ef76e4aaa5a5e92db12002ce9a5f4a5396

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f97293597c01f0c7abad53da7e8102f7

    SHA1

    85bc8f7f882c39a3116fe589610e9eb83a526e69

    SHA256

    ce2ac9a13467bf45b4e5e1dd4f006e004ec78c6e2e25b11af085fe47b330f9f0

    SHA512

    bdbd8be31bfbe5e20376b076ebd5e6b100d58fcf594e775c250d26b80bfe02c8a5b64bfb67d61fd121905cbe351f7fa40de6a138089f4d33e74737102f30c782

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7eeaddbe2f628273a6ea90308c806811

    SHA1

    142c3ec9906098afa768abe85232090a909ec8ce

    SHA256

    52ca4a390e41f0f2e7713e8bb78ffd8ebdb45591cc3f2152faf181b2dffbae6d

    SHA512

    5dec2698faddaf5455b679f3759710e589dff94b9808bb97a15b6996c5a65137e393d04e1c6412a7674676f8f2995e89c5e15001d9c0ddb45271c507bf09ed7c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5a97fd5e6a64c43d31bb6ee4f7d34fdd

    SHA1

    ce49ad23bf9db2506f413cb0fc96b719df837e58

    SHA256

    1dd73a765aa7dadd98ee13b4d02d9ec2cbc7bbd4d0104cab34615bb0d3a75018

    SHA512

    c75e8f7a743daa28f68cc8768e341c5e9ff3583a12fd1cd71774ea6a5fe66890d1238746980e5405476cd74c08cbae5b0ebb568cc3129850b188c461cb1cd79a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    588ac63e764b28fa5a9eebb21c14db3b

    SHA1

    4e9e33f41d93f83cbfdbcb433fc1943d19ef58cd

    SHA256

    ce9013e06f6682b7019075a2df40468f8d660d94b74299b58f46c01d9dd3f50c

    SHA512

    c1439b09da66005c05c388e39855653240745f4bec1520dd81f7410294ee2f4075e015410729c6d7bf882581ab70749224c07e7a7f2eaed413e04f8b31c42e46

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    77a17aadcca24d8d8325d3b7a23c1265

    SHA1

    2594fcdb9a28720ce90f5701505d3c4d887b7fbc

    SHA256

    3992162b94d545ff5e968ab13cb873ebd9ab2edfed6ba6cd92434314e9c8b820

    SHA512

    e6876fc2d6c6c68946530e8dffceb5e611581c29ebebb431cf34b9a4d6c9579e6f756f189f9ddd79fe189c4d8109d637fdb99bfd73677f5e825c3699d2b9407e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9d2f10bcf13ffb2eca4fd321d268ab39

    SHA1

    ac59016a1cecca37d2c20427f18cfd08ba316f8f

    SHA256

    50c6f5c89e40af1f2d392f72b61dfa5dcef30252967555c9266a848f20aa2da0

    SHA512

    062a13965e5fda599edfb51cad893c91bbaf60b55c9bc87d65466bd12cd800c20672b5a680fbd72b558b5afdde9431e8ccd0e213439c9c908af51af6daf1aa14

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c0dd52168c49d0cf276e187a5663c39a

    SHA1

    b93d499b47f580829b311908d2efe1a4c58cd298

    SHA256

    daf18070c6da9fd1d74e599da705e11c415d604cf223735a10be3cdb4d745215

    SHA512

    fe81726cd0a4e4d337c7e63835799910be0b27ff8b6e1227764c8e1d91d2b35c34f6583956a78387da0c8162066c8e3709da74510c7a4a14d869c75ae799eeb2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4ed150e606361dd9b039f2732421549d

    SHA1

    6e4db660aba6071c03820ead26a3079c786031e0

    SHA256

    5c25075e46710d178a807def7afa8c56daf0997d1779ce46f1cf36f808e6b076

    SHA512

    ebc0c08d89063446e886729d3cdd8988042b8ff3f1adaed46f18cbbb270915042b37be4841788e427e62bc3248946c5b7a67afa7dfd905e2bd4969785f36129f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    28357912d6fefe6bf1a996370b65d316

    SHA1

    c70f17e77c8791041ed5e8bce893524a06aed59e

    SHA256

    9038ef198b31ffb673e5cc0b2d389dcd3c5b5acf4d9de3250b9a45daa343e231

    SHA512

    6ece38db6baaf084f6c631822f976555748400dacfce401d5baf74adb65ab08ef8b8f2ae0c0aed8d387f08fbdacc97fce33ed407e9b292e5448dd113d1d985ae

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a25fce15725c1677027df21a691db0ae

    SHA1

    955349cb622821dca3291799401d2b61c8bf4a53

    SHA256

    49628be94c09be045edc30b94c571738eda897f44a09ad035a1496704b4795ad

    SHA512

    4f0e21268172f23bd67cb707de3d27aa77d3b2efeb8d82f94d3bb4e8452d2f66a062350a0a50d4b9f3d990666ea0c405c5d7a47483f4d3250e51fcd8ba6bbcfc

  • C:\Users\Admin\AppData\Local\Temp\Cab28B9.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar29AA.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b