Analysis

  • max time kernel
    137s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 15:31

General

  • Target

    a12a3efdf51b0c867a05aa83749764a2_JaffaCakes118.html

  • Size

    124KB

  • MD5

    a12a3efdf51b0c867a05aa83749764a2

  • SHA1

    977f3705ed7084d64bd83d7f52ee9d2b0dacaf42

  • SHA256

    9561d55c62f2976756ef04247396fbb172f29be7934aa63cdcc4b095daafcd23

  • SHA512

    d65f61eac537ad7b91e0419932d5c2355caf1c5ddd81f3fefdc89a2e68d8b56d77bfa9744be3d1bbcd4290e0156385587271cbdfb52c0af8c26c38a37f9176b6

  • SSDEEP

    1536:SXRpFUayLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9w:SmayfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a12a3efdf51b0c867a05aa83749764a2_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2536
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2536 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3064

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d6bc6d60f9f2d0938e61cfd9ace7d3ce

    SHA1

    6434ec96d41b03651611addf8f7410f5eab5d491

    SHA256

    d6e194f87889d5a634575fb8ce0af52a7dfc4d3b8b178b8139045acd936fa079

    SHA512

    8ab9eaa53288bce3b3cb88c4f8a96e53eea874414a810383109a3912721a4a24d7c506fd146041195bcca17be0e2a3b9102a9650113567b9c44f828871b63791

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ed925bec413c9b305f7ffdb4f489cf70

    SHA1

    daa8864e1abb27be395f94b1dfa39b09bd537daf

    SHA256

    42024af214025dad9586281920a57bc82d94f1bd5fdd1b9a53328b9cfaeb9cca

    SHA512

    c503607747c0138c190da38f5aabcc9dee7d88f8bcd5a9d9bd663b49dc29edc11020f038f28ea9bdad66bf989e9da56e42cfcc21784120b8a22b65ee3a05bf66

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6b44c13f2692dac8a773c640d11f426d

    SHA1

    a0210cc648190ec49ade5823047731628958f10e

    SHA256

    1ecb30cf8b80790d58e41822ea94d49c63ba7e6dea8ab4e8f306c4eaece38f76

    SHA512

    0dbea7a639463328c36c760fd453d5cc303f62284470a86a9428178f9bede373153b639b6574e55b381834b55dddfee95203077384c9eade2ff9710887e81403

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b5956cf2cb02c07d64865502d455c994

    SHA1

    e0ea7449de0311f8dbeef67f5eef6b53b9f16a59

    SHA256

    21f92594eaee217983df5df31f8ff52a31f49504367853b704f434f5112f5fc5

    SHA512

    b4e56b81773f2a7ac72646fc699a49d491309e6f1f3f84e249002558fd2601fd27a962ec2decaa1284478d3c2f0315a7864319df1c72c9f695ede25d02850c52

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9242c392944864e68093403258fb1620

    SHA1

    15220989dbaef1f71eec618d6d98902aa0f68dcd

    SHA256

    5b823842a4df00bd64d401ececf90de4fb3133258b43127e79e5dc9e23264931

    SHA512

    d59969d8aa0c0c66f85e8b667e64cba11d65114c5e236a463b03d253074272ea4c143d04c44b5b9a17d54cc4825de23204809ceb10b4416e5cbd9d60a944526e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    296f82f959cc0584cf1dd78f45fa24bc

    SHA1

    d03277a8fe5b22d7628f1c7c49eb0d36ae46ec84

    SHA256

    15b364ae087043853c6f0727bfcab6c19f0985f6588f81b64376431208217b7a

    SHA512

    10b2146e6e36c22056b6e869bbcdd41ec114fd0eddef669bc5fda29b364dfa3a390d30321623663322526751959cb4f72119e5fb22f9fee019d0a04963052a73

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cd5a2fcc53a2e879dc303e45cc9ba303

    SHA1

    81b7d6b2c92efd76487ef5fcce83ca28d0e478e3

    SHA256

    62b9f861887f90fd9c5ef255380c57228adb5caaafd4cd554f1010fbafe36f90

    SHA512

    ba04b83e2b0b0ec01a09cd68525f711455c62040b70a531fb2ff53eebd632f156635567fe91ef7d4fdb9eaabc58f3c991139db3cd18ab29b658637ef1d03b30f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1d00cac3c8fe5c3d764cc4ef3b65cb23

    SHA1

    65220a3a6a4bea3e7e4d34305fef44afc3589322

    SHA256

    40c9ddbea920d2a02488e303fe21c59d13efacb089ae67c0e839c360ea38e61b

    SHA512

    231e5d8202350c594909478d994b28710cd436568cb4be01b5a7f7346c67a0938aab0bed9a4905dbe2a208b5ce0810cd49010db2a63be1eb2ff5db7d3fb65d1e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b51b3ece60659738253473105a557409

    SHA1

    411a2f0d30ac6afe319a6e173b999dfbf39d1e03

    SHA256

    27d76e01654a76cd480687d80e9db18408433de4fb48d040b0b801b466cab88c

    SHA512

    52478e599f0053a6477a6ade33bc8a83dd65296f59495a728a5d59941f8c79500accf9a6b70f141408de912dd8988f4dfdb9d4f5aeac894b520d7a61a49ed164

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    281b384a0a4a57a69fdc58913bc4636e

    SHA1

    94a6c69ee2124a7e9e862e06e0a72e381a5e4607

    SHA256

    9b75da3ffd197c8942a7164066f7998f4a51dbd035ce20d61c544bf68603572d

    SHA512

    4c67f1e4a1b0b3d29a7666d6318d9f454da1dc2cfa1c1d6ff69e63fbdecad42709a834656432de05c53f10c25ff4803a8a0b6dd7ca77bdae85528c4038a7e565

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9c2b4b91df1d45313a7931c47d278c32

    SHA1

    eaa58a9c37d698b1e0874fd6f43469d9cb5c4cd5

    SHA256

    60c2c584a91a331f4c2dfa062d3c51b0b2e59006f8c08178b30c22b352831b5e

    SHA512

    3e0f22708efa28d070808300d2680c9df1cf01a0dd5b11d4a0ee54992e18eed20c40bb44bc365754c0bb3df8d073fd05593430c3d82622cbabff3e7f9ed4d1d7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    658ccf5da1ceb74c92054239a809e1d6

    SHA1

    701f0f5bb733e2fd6005093d4f62e641f4e51edd

    SHA256

    bc40fb7ce394c00146560c347ea84c584ed8a0492b2ed207a33fa472a70a2403

    SHA512

    16d5eea3b426d81532c7864022fce1cbee2dc5fe87d6fd3c299bd8701e605f897ee200ea1ad07ec6cb0368684eaf911d42b1b9552df0c154f768aee7dcb1802e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    21c96590bc6bb605a4fbfdbe8a6f1fef

    SHA1

    d21eff6ea9f6d4c1216f5630480ff7205c450e41

    SHA256

    c915e7eb3156c4dec237d5197bfadd91e1310e28333c588b1373a5050afbd14e

    SHA512

    2089afb498b0e10785be5f373e9e42f68a89d846a6eaab6f60eac756c07302b705dd9011b3049cfb544ba42e7eb493f559f59dfbe1b7e67ca77f99ddb17c0e1a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    39cfe60252e7f547d7518d227c0c7a96

    SHA1

    6043506b11b58f3a7af675782d6d1a8b13cf2bc7

    SHA256

    92de49f1796f44efabbc6af3348e5756e0c9fab5aec339161ce8b9a2f2cbdaab

    SHA512

    e76f00bd512ce685444a84aaabe4d80e5d49f0001248310c985a0a61285db10f282a23734aeff0401f9ad0bdd6e03cc7432edb9161dc57e0c74c0f758a6725cd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3e2043b67b19f0e6cc5ebe6869b2adb3

    SHA1

    c21e048e606bcf6a83113a90ee2ee0e0dbb7ba2d

    SHA256

    960a8310fb7cf7ab7af47bc977325455072edb7eb33a4c50d58cd8e6f41eadfb

    SHA512

    af6ed10958612b813eff40a3a6fa40446dcb631498994f8fa46034928c35193c7e196ef550d4145bd0593a111d4474313fc7831d5025cf8583e8c769f4c8c112

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fef0026f670d23bfc3ffb86f3c714bc5

    SHA1

    a8a8f759118e0eec2af987e2ecd29ed809baac33

    SHA256

    564e6a82d894c53caa0ad1229d86f0fbd11cda69a276fd42171e8364a163e497

    SHA512

    dc6c2dfe78c71ec9edb9ffdb5e66ad9567bd5b1e329732cf475db0cf117b8fa202cbef5225ec2dcbf77bb033b19c54bb158198e99d506de787065ed01d6cde40

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1a06168240f6748f527aa2bdd0d1bfc2

    SHA1

    9a64e3bc52a9f7650ea2fa0716d6af191f6010d1

    SHA256

    c6a261bb01a0a861eaaecfa20c11c5fff7223c21a283586fc7e16d0d14bd2179

    SHA512

    bfe31d2390ba8c39ef32589a8303a0795ec76ee287f3af0aa76040ff5240db13bce277df77b0d98d1edce2fb60d268c9aa4586b46be7bcc039c5264ef08965ac

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    54374c1d4902190beb359f372385570f

    SHA1

    3c46ecdb781b5ef4a7999d21490c65d26170d8a9

    SHA256

    acd278a39151719bba869340581471a8100e7f3b65f7972ba92235df11102c37

    SHA512

    22a509df1e0cc420d8c372128706989db4739343c9f65edc9c1a78a2b2035714a2f317cff7507c425bc4f57e92ad7c8b8817594dbfc4696686ca27700c96e878

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2fae97a6c53f3b3378750284be7fa307

    SHA1

    dc7cf69cbeada4e5a4e0170d65fb7036944071d6

    SHA256

    76c1d7b90608b71aba37a046916d4ad23fe0cfc2249f5ae0017157262178cae3

    SHA512

    0d3e446152597163af916f73696d59c96a6dd5dd11a77c211db76681f3997a72555819c2785ec78a1343307e54ab088b4fb06cdeaa7a6e1bdf2f2ef356d5327e

  • C:\Users\Admin\AppData\Local\Temp\Cab9A4F.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar9B2D.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b