Analysis

  • max time kernel
    138s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 15:11

General

  • Target

    a11b462f10743df5e2e73c980cf49466_JaffaCakes118.html

  • Size

    139KB

  • MD5

    a11b462f10743df5e2e73c980cf49466

  • SHA1

    b51146a1d742a7fd6735696882b1b47b5874c814

  • SHA256

    53a199e8c209eb4574c76fe8013d548c13c3fee3b5e8411aeb5c0a33ba36035e

  • SHA512

    c6e63b2fc4af7d92cf14d6a18a407b0c7271d86f1df882cada9ab8232666c4c2708106b7676db805ea349c600f33b4873717bb912355f46e7412fb326d3453e8

  • SSDEEP

    1536:SJlMwhOPwl+r1yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJruH:SJ6Z5yfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a11b462f10743df5e2e73c980cf49466_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2124
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2124 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2684

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a2a423460b91ec8a952a5fe3cbe7b3c9

    SHA1

    5b680beaf547b7a98336173ad41f4d07d2dbae71

    SHA256

    63253b1e4b021cd782fc69a69f51df731690ca8c7e37e31743fcb2bb9f0709ad

    SHA512

    754000c9b28fce0ca9f53ac37125bb4b9b9146701aa7e192fdc79c2aab82606fa0eec1434e4f1e0ff472b7814072a83f1b72fcd0dbfe61db7bf07e4ea734483b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    094a94264b2636ed1939ec915cd9cd3f

    SHA1

    7bf22147fa73f7d1abe346d2a49bb4d58dd74398

    SHA256

    0ed682a30ce25cfadcd7ed97e066e7662ce4eeb5724da6eb7d44ee289e5e0ed7

    SHA512

    fc5f54d8bbf32c1ee4c395002a5e58b4253aa37d201ac7a76646fc6fe7a46e8beb8d8805c58ba16bd69ddfe663b114852848c00ae56668bbca275ba85b8304fa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    582e03264830aea4eb28894c49ee8870

    SHA1

    b62f76b607317bb06038e9d68a95a5afeff1ee2c

    SHA256

    15a345f4336f8fa8a4564af14ac6369fcd524cc8d0b24e8e8eb6ba957f9d432f

    SHA512

    90bb6e2a3b0473960b0e7b5b133100f90a7f0a4dcb53594b1cb80bfd7a83d3cfb9fc3b5b23aff90ead5f6fcd3e88f1595afaa92f6eb4ec9fbe861b7c8b8721d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    adb58a8640fcd34b193fa7ff22564e4b

    SHA1

    5ab505bafc8e6e035eb54c9f22c35c5c51709815

    SHA256

    3fa06000b0407f4d04f3aa936bdc812947539703fe9ec7820a8aedaf4ee61f9b

    SHA512

    71bf47a6cb907367c5fb05228ae677ea707d3a1073b80c98af044f830caa1f6c98053824df3d0b0ef8106c6e9c5b6b422203a9c77951c401f8a550cf7231d2e9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f2a34bc950e563ebde2137aeccd42099

    SHA1

    37a6233b7fb7a47255d5989815c36823a5029631

    SHA256

    c656abf251d820ad4f0266121ef8beee6f5158d7ae41a0d3e88294b75dad6822

    SHA512

    712ba6475fd44b7f9a739e745ff2b22398d719095bc0f88ff579818ff9a63c4542ce003d3118634fed302f988114b6c10cd8cd6f95048c69414baf9477ff71de

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    604d99ff9ef2bfa75f8ad50bd2119fce

    SHA1

    7b5663d6e2e1bb7af1eedea416c3f34c535ba2ae

    SHA256

    99a7793ac6df16a03d7741c6b17d3eebe3615d7edf579e5fa83fd9be578b2732

    SHA512

    40a00f02e925b265b44e94c854e0f6b82a5c320e4231f9e4372c3013f11d2ffb6def9cfc4227c84e90a5d690e62b15bf870731b868a4022a0b9acb6f7009a220

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6a97ea22c69a3c63d48fa8427202222a

    SHA1

    d592b36931c049c04b4f84033d1fcadb610af0c8

    SHA256

    bd495d5c51b2488d937e053cb402778616aa8125a9bd0835d432e9b2f6b9c6c5

    SHA512

    c37e8631ad716a943e708bfd54a699f1001d6b288380adbb76e83a5fa61de97b7fad924a486af4e4067e3ada4e8024e51af218078b915d941fc7c324f152311f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f7b2cee708d4644151b06bdd0157d0f0

    SHA1

    1ece43026db347a8b81bb5dd6bb67da3ec0a82f5

    SHA256

    7b9eb92ebe25d88b69962059ba8c5b2f8ddc777927c305edb7f4ce29e5f45f62

    SHA512

    73f7801bbdd8efe4a4a522feb2a0458b67095122220e309f2128368fc91aaa00123b10120f660f50169906a81eee259425037f28681276632b3e4b6f905f1c7c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    da28ab8ae199e98cb1180d871dc28079

    SHA1

    75c14a772420989963544cb01eb2c5404bab704e

    SHA256

    434ee29d2f071b9beb949c0323e89b7756a9eecf395a46dd5fce54cede86bcc6

    SHA512

    4f6109b1512af35d62904a4e09ad81aeb523a6345fc51eb4012c51c89e857a72cf79c32a4ca8f9e840983f6bfd11e6dc5df68749d2d439a520aa72df6189697d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d0f87c80a9ca74668703293206b4f99f

    SHA1

    1d0c1d1101c3f64f96927d6f773e67f8c9a40626

    SHA256

    2d66c51518b8c0b2a22460e313530740d78168cee1690fec2e2a1ba9ee0d84cc

    SHA512

    6ed68c83f090e1d74a40482f8bcdf88cc75bb3eee031eb307e0007bf27d507db93221d7bfcbf24d752703bdaaf35a504a4811a1f7a4321fe1bf1753a4f0edc88

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    68f8d754e6dba155431ab239bde8dd3e

    SHA1

    07ff511e5b7db3b2b5ddd17cca8f84faef8dce84

    SHA256

    4ad23c1e4adc9486a0c9cd344564d55bc1b95bf095efb76d51abb077029831d8

    SHA512

    fc95d354dae61bf7bd71252f809ec54234dcd0cdd2704f1821aa09757260db621f8614d05fe16da4b3e78d8e59bd1e7cf712871e19c2ad60d8b403a19fe073b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    13353684a5399b52cf2b9627ae193e4f

    SHA1

    8a8fcb64ffaeca569174b0982a5b3d309f05fb36

    SHA256

    515857f6e2d62eb5df74400e77bc9052162d233d617ba1983ab8a2300b560e60

    SHA512

    23b2090ab0819079c862a74706dac08e56e65d2cd11500107ddaf051b3cb04f71b8c0de6b2a28dc81cbc725dd8b6b990b23e783eac438bcf9c4c76f46ea2b528

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5fb349ee1026544234c654c62e4b9308

    SHA1

    92f73ae3e8f8edd4ae6425da91ba0c53d7cc3469

    SHA256

    bdab4895ac8eab71da068541862e1f26dd378936d11dc9681c85e7eb1b2bdf94

    SHA512

    3534cc7b055b66ec4d0452246971b50cca0eabe5fa792894d545f1b37922058d4d3bf7576904d23a5693ff6b148a9292d332284b3432e09c5c42b6195b666201

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c4f1f2623a5ae86eb2e3bc8eca204e6c

    SHA1

    947284f7fa11c12a58fdaed736ff555417978c2c

    SHA256

    d4eb3d34537099193da14b842c984749e690c2ead99e27fed0ab760b93dc7c73

    SHA512

    4ed629b6afc882b5124279c1d0da67969a452fc844003023436eb9ef8e26b6de28961d3e20e7b2c60c17b7a40afc977229d30dd3e175c21a9f3a69fe8ea03a27

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a5da5811db139d9fa2f58ceda7ae604e

    SHA1

    8e0c5015e776e5d78a9235ab20bb5a20d1ec9bd5

    SHA256

    1dce6fc926bf44b2e83a3a666024d5d6e873e0e20dd3123c7595679503e6c23f

    SHA512

    11225867b96c83a1f617d90120108a4aa65cd8452ed536af028040e61442b4b533f708cb83ac2f4f97c6a310f01464573d223b1de1bf3370060bb516bc36e7d6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7466c6ede6fc618fbb5194dcc1f6678b

    SHA1

    dfae306059fc7d057f148afbd13964812487c30c

    SHA256

    76f7005eb56e0bea6c6f666f0517204075626c4ef00765bb06eaac02c8ec111b

    SHA512

    b193847151c1c85ab8c2f15acd3acffd1be900472d564285c3e32b8fe33a884e7de80bfac7b43cb77250cd97f2cd7a266d7161c53dc069ef649369726f5ccf6b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    104f493e7b8bfeec6abb512c0ece033b

    SHA1

    9ed57f384f28657390c13b0e54062cf1ba5c3ce8

    SHA256

    3e191f782df37368cc47ebb6abc885792afec3df2b01ed3353544bddeaea5ed3

    SHA512

    7b03613c56a9eaca41557ca87643485cdf24fc1f57387272e3183b314acde320ac6db45edce67fc2cad44d991124babf20bb817e4ab30cdc6e64c06e000e67e4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fe0601e01cbf9564570e5bd46a4058d2

    SHA1

    bc921a750a0b089104dbd5337cbc7d6ca54697fa

    SHA256

    470b8f3eee14b7aa6ccdb9930a828de3f833e87406d88593e590b9716bdcda15

    SHA512

    6cec4805a16ff60d568366440f0868e394de949a9240ca505d4be9b7ce09e391ea33d7333eacdeffd9e9f4220582eb1b3367a4998bd00c7ee8ebd1e6326db399

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    800e77c580c9ab79d9b5a4a97e6ac9a6

    SHA1

    e696d84084d07e6d3c6ed12a843c2ac56c3c4af0

    SHA256

    c5897fd84d81f11945dcfef873258d9f54045556d3884d2e5249ce149cb5820e

    SHA512

    82324733028677ae025ba74475441b08ae15dfc7afd6bb831ecf029c533354addb826dfac985ed147c9798a902e5cea28693ce89b69d206590302047d1d8b51b

  • C:\Users\Admin\AppData\Local\Temp\Cab5978.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar5A55.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b