Analysis

  • max time kernel
    140s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 15:13

General

  • Target

    a11cfc4b48595adabc13b99b65e994ae_JaffaCakes118.html

  • Size

    19KB

  • MD5

    a11cfc4b48595adabc13b99b65e994ae

  • SHA1

    aaea1e26121bdea56d509d2ce52077f83e20d85b

  • SHA256

    2242283a1b209fc39da0be50883959527bd115c4f8b0800c695fe3930dfd8f02

  • SHA512

    a9ed42da9937b815f8af08bb61fb6d59fc1c105faff50ab45629832db8462d6137ba08e2139c374cef4233375810fc186936b8bd693f45dd38631169a10ee963

  • SSDEEP

    384:Ik63nF+IqGG7wA+wtBT/s3Iinonnmzw13ut3/D10wsLdgLmPhLch5h4hHaLhMyMa:IvV+IqGhnMmZt/GQ3pz3XTp

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a11cfc4b48595adabc13b99b65e994ae_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2216
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2216 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2908

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    128fa17714eb65a88713d3ce4b122ba1

    SHA1

    bbc47142519a42488de6b6f4bcbc304b7ce9ef89

    SHA256

    1c76a580ebd084fea1a7755405494885307ff3905a90d50edf5432a6b7d194d4

    SHA512

    89eca4679e13fc48c5c13b59f1b721cef9bab0fb468fa5b78f325552192a31ac894621bd43bf98bdce47b0d5a224a206d2cb8f435e8dbc6b57d27af107044ddf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6c8e020204d122817f85a51d8bd8119a

    SHA1

    220477421a07f9102b54b1ed3cb86f051b593053

    SHA256

    a8318da19f9fcf7e3f490ae00228bdeaf741400f9e70caedf3a7c778bd459d03

    SHA512

    972b80d409b8d0d2cc95da3b1957c92e2425a40d6972142bc1c1c2a33b6ca5f48f09fe7b4c33dc7ed05d67a4e1f21f06720281755f367adcbbc101617aaa48d6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    914c5558fd29437f27d84a10be7d31d0

    SHA1

    2de035ad9c9522692fd3a351d469d8c05614645b

    SHA256

    4d4140864252f0acab160eddf91ae9be68801513e88b440a58625af3ce568822

    SHA512

    dae24990cb6fdbbe0f2f39c85410ea1c062eccce2b3a1815362d5071b88819be82697fb227dedbed626abb08622a0fbf9aee00f51fa8be6013e76f4265a1ac1c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    21382395010d1f829d63c43401e35447

    SHA1

    5be5ce2173cc949e696854e473953541f0687a77

    SHA256

    99b9f3b7fe3a1de7a66008bbbe04d6154e8d246b7f5c7b9532c4a8d93b1dae5d

    SHA512

    424033b963f21496b39006fcdf958abcc393d65ab4515c9fd0e7feb717825a21b9347ff4cc6c280ec855c416380ad339628bdf26deaebe613a64a5f8f777842b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    23b62cc6af6c1392ef3bd95204119bd2

    SHA1

    1e13af9948c76c70aae75166d704f7a6349fece5

    SHA256

    b3e90fa5f7026f7c54db2af0cfe1e35b0cd910f487a79faedf671390ea5ac8a6

    SHA512

    e9d9011aa300b2e14f017511f15a791f9af0b64d43d989b607cf7909307756e427ef2878428997f99edb0c35a270df641f1ae8b8d4d61335cb76b03d8c6516df

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9dda147b126fbba550ffe4a1185dec54

    SHA1

    59b6941860c22fbd2fde1814ec14bfdaeeb7dc9e

    SHA256

    27839ee93f870e9009286bafe14fe60a6583cc26fabdcd28761a9a7696f51566

    SHA512

    fd18b6e121383ecbb29868281dc12b00b57eb7d538aa2f1c6509615fbdf4c940bb0b03bec4ea8fcf18c511fdf14df16b4def661d6d40811326cdc64705bbd759

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f9ac5c701112219c1bbe7569f458fd3a

    SHA1

    b8af0f5188223246ed0d1364f1d143819433a09e

    SHA256

    0520a15970a554440d2442c78b1ce0cbaeb64209a8434b46562908459773a89d

    SHA512

    de3503096f986754500fb78ec47dc97183b14ace50c9cb9e4da9dd71cea457774e7fa9172d6dc2d54264cf637d1bc93c2f820848bfe7883401394bd0378edf6e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1b263045895484c77ea8e402f4432472

    SHA1

    95cbe62c8fcdb16bd130005cf20dd5cc1f725865

    SHA256

    60f3ba54599db06ede1c3e6771d5611fad28b62055b3184b33f1dfacd2bacca4

    SHA512

    ef0efaef430057a2254a2c6d06f12d91b55da6c0aabbc3cd17f0fa449a87f61a8685faedee935d2c45ec3f643fed52e188f6ff183999d788a973abf36498c7da

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b57b547db1109f0c62771a453c0ddc2c

    SHA1

    ab65ea612c1300de0bb6df31e1b6191d4e5c6985

    SHA256

    9c904ae5936587d905034c855b3e751e55bc71b441d113b93efdaa70ecfa632a

    SHA512

    44e48320ca0d006520bef139265b0f1112e91002cb46981d3655980e062ae8af2e542790eadb332a1b04c83711f27f3851fc6dc6c47a64b333be1eb2f6e5a4b5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    07d2b96ec011b5877aad3f7efb13102d

    SHA1

    78e5a567b80d577d52a2110894e2af475c85b198

    SHA256

    84f7ebae5bf4823106228c306af1775900954b9d7c48384d3d3d98ccd5dd04c7

    SHA512

    9c0e23068f48842f0a702bb505b5e00472391744c9f29553899a21133b980145ca011fcd87ffa93174b7b40ca4fbdd1d283b57929bc0aa57531169f0e7c83356

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2c8ee7179183a74995d9d71fc312cf1f

    SHA1

    24dc261e1328f11f4cd4a54c808b3cc098929946

    SHA256

    9e7d7080216323d001a3ffb7adc7a5592e8636947531ed604cb23ae9bc10d6e9

    SHA512

    691e5429fd2ca113a55712b60fe62957a75ed1471aa51379ca957c2edae23bd98fcad24fb6fb9602dca14851ce6c33e0ec96e4e49e341ce26aa1d3c2a703a7ef

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3fa5a12a0875f32fb0d1d1dbf232294f

    SHA1

    629e14f7c885099143b396b3d9239ab854528665

    SHA256

    329827960394ec0fa22941847696be02e4d3d234fdc0738023ecd9531a085aab

    SHA512

    0bf391e1d13ec7ceca669eb931016f0ea80d27eddb817ee8b099ad6e8509c7edf737576db32d4815f5cd034734ae3939e035e908bfd3701d063bb66c90184514

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    69a93d3f7fa9871e32286279103285f9

    SHA1

    a237315c19f57a798026fddab845f174824da444

    SHA256

    04df397852522225df31c87f8fc1fac960a76e5658fc57714c505ddf0e2bdd25

    SHA512

    e2ac33e8eacea463762a42814f57ebf5bdb0940c3086d37f3263ca77ec417992e91acfb8a03e49c07a99102c068fad094de4c2a4db7f4fe8aefb137b43394e93

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1b474659efc1199d1c62ae69d072736a

    SHA1

    50fef947e0e1f5af3dfc5962bf612f6706b3e2aa

    SHA256

    a0594feaf7fc55c77b0378ce578c1ac429cabbe18bf79c278f95b7927ec8fbec

    SHA512

    cec53d1ccf35257eb52a17cbb6a64526a7593073be958348755138de66c80a8f0ac9d29980316f411c893c7eb164073062a06b8ecbd2a1893b53b51615005673

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e66de6c68caa56092f7b1befa739be8b

    SHA1

    21d283a3505a2353971a9e11316d5a7a25749dd5

    SHA256

    eac77b6d7e8f3ade68aa5002956d1100ad6ca69b90ca1bf3b2e2503c85104263

    SHA512

    cf8a5a74618310f8159ed32fdee2e1ed380d11468408f66f19bba167c791fad11b9cfba42a31c54938927a85295cd0727b78499e080e595c9876d0ab5a05bf39

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a53b2d1532cf680498d4611f9f2a0e0b

    SHA1

    e77cc7ec217683acad6472fad8dfc83fbea67676

    SHA256

    e57f9267451cddb542b13b4de6679e9523b425d5a2d637e3aa2f9bd8e18c31e6

    SHA512

    09778e9c303d529964a4b766ab28044247b41976a24e3f737c48e38a6c87f5dcd934326aaba205b16a19ec7d2fd4110416e5c338e6c93e99f2ff821dc0dd0cc2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4dccd21fe004674d6e120adeb3e50c95

    SHA1

    85087e3b5115d5d6620a81801517021df0c098fd

    SHA256

    7bac0c6d0492da2468d362b7b1a6f0547afb167bf17726b4191927f26759a4f7

    SHA512

    e37a8ad5f6ceca535b19f7e02df136780ff0a705d8cf4180328de9c0ba68d7f50204b6957c7ecba1bfdf2f7a2ce2a1c454e10df0b7117690e301d9d7c9fd759f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a219c727d85ad7a45fa3e10d48b3efcb

    SHA1

    f35703c988be13a8080da01a925d5af788d74432

    SHA256

    b950901039269f03a5883f844896058fcb07ef5ad65e0c719223cb8a66a82821

    SHA512

    9267b9081328113b7be20bbd3368e200aa4ee53642fa70e3d769c10fd26200683d04142f1804d100df0cdb572cecbd34fe5715a18341ed13edf0890a4eb96f15

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    efc24cb65c8187702546451ee72f7db7

    SHA1

    ba5d1a0620abd23c90d2bae0e10650732823c628

    SHA256

    cd01e34dae57e1fce421b0e0e2f171e24a309595636186ba2978ebc9156b37e7

    SHA512

    e37fad8852f0704e937dde00fdfc43ac02d5285e89c4e57379f695439dfd5bc7c7c31ee2649ced6343eaed8212169248d90f90ef7c0916941267826a5984cd62

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c120e95dd1b342cb859542ed97f5f41a

    SHA1

    7ba84ce5fb643d032e60aecb2ec630c87766e082

    SHA256

    1ffabfc88936904fe2befafcb5567654f1a6528dc88fc62b33ec790defc44aef

    SHA512

    a28f0b07c4cf95328e1fd6e318ee8b391ce0a63e96d8f13a71779c42bc1949c07fcf1c731d62d26628e5dd1d74f804dfab786faac532e1f1356a6f2fd4aab3ac

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b6d8a1d929013f7e97bbceda05038a78

    SHA1

    cf88abb71eaf0779356fb56cf6ded9114fc95f42

    SHA256

    a38b35f501577c44bd67b2908cc74e510617024c561c2064b3863e53b45a276d

    SHA512

    b9810dad8bdaa0f5077932f65418be74215de0b512105e0d3fa220255a71b913a407b5c6155faf1659d3b79a69834dbff2834696dd54b3fcf048fbcd47cb7ef0

  • C:\Users\Admin\AppData\Local\Temp\Cab7FFA.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar800D.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b