Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 15:32

General

  • Target

    a12af99b372b9c08c12689534c9b2e4c_JaffaCakes118.html

  • Size

    122KB

  • MD5

    a12af99b372b9c08c12689534c9b2e4c

  • SHA1

    0243395f29f02cfd883572e7a9d34e7856694559

  • SHA256

    e9cff5ae1c2d7488d5bdeb2117909b25863ccf5d1b16dfa786b5809711d4b684

  • SHA512

    928d1fe0f08f0840cc506ed24113365a37b6a26cfccdb9b7df849f9bbd63dd7cf4dcc642fefbcb676971607c2ad7e6feb7613111066c49ac23c24ee791fa374d

  • SSDEEP

    1536:6KcMqJyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dK:4FJyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a12af99b372b9c08c12689534c9b2e4c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1916
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1916 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1800

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9a7025e915836a748cdd285cae4dff7a

    SHA1

    a512338f68699cc6444308f9f36dd36273616e0a

    SHA256

    08f3309792e479abcb2fe4efa3577686a882cf8f42bf161edbade37fc06fa5e9

    SHA512

    79d8dd680c0428e5f746e35a264d814914cda72079a2b593777d57ea302df48152dd8225e71318e1f68ee932017f65f861e517348ce296c40d3a45dac07657d0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3f2358449e55059af7e49ce708a91b25

    SHA1

    61a2c6abdefeb5df4191ef514de5e6afdd3bd3ca

    SHA256

    bb837da11a3ebbb472e5f8337eacbaa30264a603b1c304502513f80812698347

    SHA512

    e035f7117f1cc2973b3ec9b54b989d8f4427ec06d2541fb024c9852ad7ba5c33b301445e3e75329ee870e06a66e0d08142a46a7762d3986b32fb5dbb28a7e89f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f404b6d2fa7a58a06b1c1b014eaa2366

    SHA1

    b65e5e3f64661f660b1bcb3e32afa717de4cf58e

    SHA256

    d562224c0008b04aff0f74abbfb45eeefbb5ff1141c757e295ef932b65e7e537

    SHA512

    f784a98864b75b93bd8e0a09468c6c4dbbfd70077c9ef0205872b61171e4160ca6d58c63884561c9071ba0ad0b0ae9dc2534c03d1b876e42af510392ba0d1e76

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5514319bc0329258952d6f3b187cf8dd

    SHA1

    179b43fb2c7b3adcc10167bd268ae6223beb6725

    SHA256

    442077c7ff32d9d3cf7a2e1fea2f6ded5857d53d6d38eb8c94a2736e52edda32

    SHA512

    8bfb80437ec198c741dd51ad2e189599f293f53d65b5ac561e9f80669a10e8dcbcc3edeb3e4575fa42a3021442d8095599ec9a99ec5900e85f647ce7c8605043

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    464e2a4a684656da47c3b134edaad724

    SHA1

    9c50c5bf624b74e7131e9bbf018309a7f367af86

    SHA256

    5fdb9282817d7ddcad763b914975784193134046358abc000ae028e4a1d15846

    SHA512

    b178f4bfa72564f3a7fec5d1478c0a56822081b3e3e90e1157fae72bb839567e877282e5d07eff1e55f0ecabb9d78c2fa3877767f15a8a046a10ff54e73bf882

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    60a69021acec25fa7dc747037cabac00

    SHA1

    edb3fbbe095bca62459e1cab74fef2f348654d42

    SHA256

    464c6e503e2615372e708d946ee4560d245ba747d70730dc3088608c492e660c

    SHA512

    e3c6d6007aeaa42ffb5b52bfed56258869602291d23b6f26f08896e14d8cbec93158a28c866fb42711249c1156ac294a9672a32673609020c343b173cb80125e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8a8fba5487ed9cfd68294a72e1effeb0

    SHA1

    3d9496e5f22587b00a888f73402d9683a5255336

    SHA256

    579d695fad86d0a96f811d77c7095fd8b61af2c5af503975f3c7254bf49ba04c

    SHA512

    ff71eef521c09c080cc2f3ae615abfe1c9875519668f2a873ba92860cb83f592cc68331d2ecc50809986be8c7916444c4874f357c99b04bc2f95205303b18f80

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    95d163b2e6c755ac76f1cf3fe3834b24

    SHA1

    e6c3d42e3cd1758b60a5602cd59246f58894859d

    SHA256

    66f176575b79dcb46408445175be66a23a4269e4e094a7419de9fdea24b87d55

    SHA512

    25190a17584651c831e820606f3213b7ae887a70fb573559e0f664d2726a7fd365b86a0017a592913d788f764d8381d702a84bf4f44f7aeed72463bbb9fe1b20

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    162cc7dbb728dfa50a5fc8f076a6644d

    SHA1

    9d11ab8781f71cea8ab8e2c68d2aa0ceccba4c90

    SHA256

    28c2a1b864c0dc88877076615a419db012c44583acc653b4c932234165a69d04

    SHA512

    3ed8bfafd2db2c647f00ec09907337b0ca798180d94b06c489463411d0ca254d1b56d13fe265eb03e3c83110d4f33827f22cf605185ca09a22300924c895e2fb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4ee669bcf0fcdfde37fe80dcceeb77f8

    SHA1

    c10a98f2f4104a5decc16468a2b6785423a2edba

    SHA256

    0149dd0f8f9e0ca6b4fcde2bca68754e98cc26d8ff3c579cd03554cd302c5d7a

    SHA512

    fd4015e15599ea777d22dab7d7a3a81b300382226a438387c1c89b3525e76a754cd193d8d7deeaa39cc628f48493b60612b5267a3246a4209ca8d5c9150a7697

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f2b033e9ce5eca1ad137716ba13ee178

    SHA1

    2f12e1b120d140dccd375243c7c838173160bc0f

    SHA256

    9b95268742d40e04ce10c916936c4f5af39c7a149d713fe1f2a8e39922b9c641

    SHA512

    7c7d5ccbd44f66ff46356ffcecc993ab853e174422f14ba461198b0749e8640701b51b8d05a18cde0b98284674fd725aee5cbc6faa70c96145817f557ff0746d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d46acef5a85d5bfe92a2fa5e23ec6de0

    SHA1

    6d1ea3f7840cdaa20409fdc74d96c414e9433b00

    SHA256

    220a416f1b0bca33c423794cbd3398d9dfa51d129985c4d0fbaa71148272ab6c

    SHA512

    ab257780d05eb88a2b32adced3ee1590ad0e8d8a921bb08a22572e54b5ec937b58351b33d5e4d699fcea365646963d6d937c3f6738b6489333960c6dec0d64ca

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e2adc157ddaa3382e662d9422aba7aea

    SHA1

    0a81c6597dc8e34f522998f7864c94ff0a05310a

    SHA256

    748d8b8744863a1e3f1de5d5b19913889da9f171f5476baed85e5840087774a0

    SHA512

    a23599ffaf0cf3d8622f8a31de1116d6e1bbf6c9f881ef8f94328e10785044c89c43c437d729d9b2337981f31982222b7283138b98897614f89ccd7db38173f3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f737208d457d7d622bb5aacdac1f6bba

    SHA1

    bc7b03cfeea6a5343b31353765d53d280dd6ab2e

    SHA256

    1cc39a2b5ef935b28d8e3f93990c1e4d636af4e0d5c42e44e43c645b3d206690

    SHA512

    65b451b7cef69357b366e30d5692b284376bd8757c8cc20e7ceb21449ad6e83c2dd88703d3c71ad94f341d8443f747e15dd4f2231a16d92e305afc55ad4aa8fe

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c58f73bff30f52535a76fee3f6374b65

    SHA1

    9fe1d56c4224046b84a2d7c3d05b05b4a3820c53

    SHA256

    abf28b09562bf485d8b68a349c6ef11222e5dc451f25f8620357b8f091ca4fff

    SHA512

    385625b942f1d219fac1948b8c65344d7686a0ba23c9760600a0b292c2c2eb4726e8824db1b3ed97718f4282fc9edc058c3578419f08c8ef22d2c82cebd4b419

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    adcb39bfe2e8844648989ae39d4eddef

    SHA1

    26d7c44c8761d600bceef8fe89c91898d8b905f5

    SHA256

    17db1b99809a3025498edc94aa47d1abb5edaa2f9cc4be0cb59bd339edcbf7ca

    SHA512

    42fa0904f1df6eb6d2b0141cedcce6221741923f71c0e5280a3ce38f3b02063debb089bec2bb4a98a1731453534ae318661de620c20a8f05a3daba12830c4260

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1dd3b0315cf0d78d4775a4e6dbf358a8

    SHA1

    53b2dbcfbdfd26eca687a457f10d2cbe5407ef90

    SHA256

    f3733d766a27c0bccbe657e5818f1a1db4b7d61e81ea7754aa9b9dc3a7720637

    SHA512

    3370ff21de2aea6ddf33b672f24a0c98cf5bf40f6b09b45d9153d1d85d0a5916255556478ec99f31f98646c3f5276e8e1f2e57ec2f3e4addb6c86a5ea77755f0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a8c0b91ea75ca2bc9c505044da95ed02

    SHA1

    ff17a4ff64c93915c8f2303981bb0b9330f35988

    SHA256

    ecc4f2f9d216f99f206cec17552ae3b0dc4f76f034cd7ea62565479c1354c036

    SHA512

    307bed7e61eb6777413f966ed8ef577f571d6508fac0c574469ab66a64533833f19b6384ad97fa4ca28d566c7b5cb92f1b7d0e3d08616e49e5127df3793fd3da

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    19aa34805a121f1b4cf941af378ea0fa

    SHA1

    1edb1ce5c125ff8e3f92747a64a7815c2bc74e07

    SHA256

    af957710938085a48887973a2ebd2d5acfeb83321305ffbfc2c858b5a7ead644

    SHA512

    203effe128f06ab5c41599b021532ffa934782fa4fe536d7b8225fc0b5fbb40471f14a18c99f31e89a8144506788215a7bdb3ded5d862035a46d4717ee18c25b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0f593a281963f74b3a943c3a8ed6dc52

    SHA1

    d818e8bdef13802ec6dbe1a2933e11f9290713b5

    SHA256

    0c277e11afe2839c0dc720156c226a8f1652b3fbbdf3e8275d7dc78bb330e33e

    SHA512

    9e149644a0464db7b7d78fe7db2a60d1484dac14014da312968e8a1e0704d14f26aca171694c640f6dc89580fda7c39ff156a9cc91a0d527884d36ed13ec1cf8

  • C:\Users\Admin\AppData\Local\Temp\Cab3A26.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar3AD5.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b