Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 15:32

General

  • Target

    a12a9a3e23272d1880eff8f02bbb3c1b_JaffaCakes118.html

  • Size

    15KB

  • MD5

    a12a9a3e23272d1880eff8f02bbb3c1b

  • SHA1

    c4238a39a9cd18dbf9e179a7fb01bbf89b53b212

  • SHA256

    38a74e2929e46b442282fa795fcad021401fefe4ea9d054a4c36188a6acc4244

  • SHA512

    dd3befa626c928af436b0cf181df252612b88aa26eb1e62258ba5d20ed67a6d7ed9d495d273fa13fef025b3d2e0348f01aeed0816e257cbdb798d1b321d2a723

  • SSDEEP

    384:fO/Tvi4od+0+rgqoCm2zB2QQJ3zN2gvQqpBLM8n46xhjJ:iW7dLsBD9Rgv1hn4m5J

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a12a9a3e23272d1880eff8f02bbb3c1b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2172
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2172 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2196

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    12bafc7bf7a4d738ae9a349da7024f2a

    SHA1

    f69ed816ed263509d6c9893e2bc622b536770997

    SHA256

    7be4c1d3b3a2dcb4b5de88c291d74b8504428adafc219c68de0a6b0f17b031b6

    SHA512

    7941e74aa44e0eb764a810c414c261079d47117adef56ec4546cdc3cb26d96b158a7853e44c7d4c9418b3e3b61e8f5d85b301d2edc2ff57bdd9a571ad49a2ecc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ad51ce23f59320485d8723c6d0defa54

    SHA1

    0d95dafc91bb291914bb8aabca8dd070a56d7545

    SHA256

    985b5b5069e74fe05d4da7be8631e8582fd30e1665ad1da3c765ac9cb31e172d

    SHA512

    5fc97900362710de5bd540c03356a0e5a755a115c63ac183411e4a2dcd2a1f999efdca1197f538f93bcb502f85c55c452d812a6aaeeacd7fd7eab7265645bf5e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    da909e1c4b192ca045c7f9ea567d8d9b

    SHA1

    f58c6ff7d7ef82863ea7a38b3e725ab5184e91e8

    SHA256

    2a0fe85515134837fcfdaef3e05abe05a2d14688b9e0d5e12b499aa15e8299e7

    SHA512

    583293c226c3850fd0ed5c128ed98872e09abd0879c440925bd2b2eec276bf1dfa724cbaf32783648541512a7bd1e8c2a69c215ecd3199c506443a3510edb5f1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    75d53e4fcb6c3170ac26b72a0bb0e1a8

    SHA1

    a77c827b9a458c4ba755d66aa5d24a2de2e8bcb3

    SHA256

    6f8eacf4aec013c74b378b53542d6483413903cae591c5fc9b575777a22840da

    SHA512

    9e615df572ba9b8420c3f06cc0dc37904510f59df5daa8c4c0c5fde8cc1bdb4e57ddda122f6a8f1e88e7854e4aab1648b7cfa44687b3747af62ee5509daf94e4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    16cb0aa4d09cc0fa258d2a5130144551

    SHA1

    e4769c8ea9deb61f1b26dd1e40eebd7b19bdc29e

    SHA256

    72235bac472dfa7d12a4f6daf635a5baf01ec976f87f032d482e9f2c135fda0c

    SHA512

    ebf8b3561d6e9957231cccd1d55c59fd5d21ba0caba87713c438aaed9df9bb735a7003020814c21313ef136dc2c2300f66b15f533f9fecddf398ac77c9488f7d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    535985758cc4fdb599654f3de77aa3ca

    SHA1

    439bbdf2e1d755056a4454adc44d325025d84b9c

    SHA256

    abcb352dc2ddf013c10b876db219f6386326cb49ff360a763ec0891d6bc6306e

    SHA512

    abd10d52c7b9a9c24e98e8372ee2bb7a277087d9af10485a57aaed238f56943ce5bb8bc80380d0fba3fc72b197ef194930db5a3ccf9fb99954cc3c960cc02694

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fc4e32621674cd10ed9939268905f42c

    SHA1

    b4a3c7273e6768400a4560151fe012d224d969bd

    SHA256

    ac0b42efc28a24065dfa20ca7b84a831cb0d1000e1284c056ec5907d8392f34b

    SHA512

    f607889ac10d16d64a84cebf77a2d485f60eac0605b8d104c6a01766b3750d83b57eb28c06a4bd37c35a8fface7a753f13feaf88031da104f68dc387512bf583

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7aabb52819220a763c2e4c15e5a33de3

    SHA1

    4c8d003f43a91d7738330949fe9db8ccc58ef978

    SHA256

    5276be1f1b8841026eadc2262e482e82c26c57de42c900e5882158a46f0a48e7

    SHA512

    638098c4ded191664cedd6a673da4d4dc868d41a06cff438ebbf7c8471dd129a12ed223d09e5a7c7de013b83d57a3babac365790f76b07ef8c10d2fed6721863

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    92c62afbb54e11eb5e5f0ba1d2c3e31e

    SHA1

    2fb423f6d6fae2fba956377bd7a1fea9e96ecf4b

    SHA256

    c6b6f736bfa73b6580daa45c8b2984bb71416c61bb3093e35b441eb78e8e2575

    SHA512

    061c1d221c4f5a9eafa8d8cc5b5b50963105a7debcb8f3ece1b00750dd3f3cbfeadc458cf629a8aeb20ddc7aad30a79929467abb03c70b385cab88f0c0d0930f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    33d329038884ea4fb3ea24d1cf12a5e0

    SHA1

    a260088b7fe231ebec50979e9cb32bf5afed0822

    SHA256

    8258b87dd8d5bc746e8affa99d75d066587666cef89e115b890a9b35f2dbc270

    SHA512

    b6abf74fec6d3aee972685958c12744c6e6024038b0cff4872959acf8e7b0e45a5b0f8a662f03c75b64c9f465cc27fbbd49f735101872fed7c56f3be8a1381f5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    87116087b04fb35ddc0f5f8983bc8ee1

    SHA1

    988558b239ddccb45c055b945094975ddc39b77c

    SHA256

    8796b41e01a26ca3a5b730f8fc9a99580f28cf8cdb85fd2862d9c9c6293f711d

    SHA512

    d33476b5232469ecb4bafb7731f87ec710f3f75ea2dc41631150bbc524fbf03360443e66e8400d7cc11b1fa2b1f7bebb014319814c1a4cd3873f35cfec218eed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    abc7a772cf4c78c8a836d37b7dda5bc0

    SHA1

    b031311cab7f0234ca3f328adaadc4f02f5c5d92

    SHA256

    b7665d206da88924ea22545f39c64e96507fe8fd2b4a54b2386f48a0b692e5d2

    SHA512

    b1d8fe39b7801ac89aef06ae80fbed8e0feedd367981e98b586e6e79c789632e0e873c536e8c3faed407d62c6deab12287f073efdda73fbf420793517e76a46f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a7fec1ba5c90f0158f86d9e0e802482c

    SHA1

    a970d83e15f977c473d795ba2a3366a0cec538e5

    SHA256

    2714d23350c365f9ae53253f894324c918a34c88b3c0b6fbf110c7360b8a3059

    SHA512

    5e50cef5b47bea7091132a4a62c4368b9e22ce9202cddb141d40d129874e2f769403e8b61d19dade144a076d25dbd333d32e9199bbfe4e5395410472ea3bd691

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    20db2481fb612b7cfcfde78fdc173a05

    SHA1

    572e775605d613c976095af3235f5a4bb2e57a7e

    SHA256

    51dab5726706cff5dd92b4a5ae21a9e4fe77c338d8054434a851b2bdd18f2a59

    SHA512

    c514a59f393346bb5325e8123cf75cb81e2344a6573adb4b387bdee6f829d49097602da8b481087d13a6e75532285a9d3339fc4af74d3073f51fa51d05996529

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c019459bcb0d386d32dad9f01167f7e6

    SHA1

    57ec52cfea92f0384bcf7230e1cdd25c7f17f230

    SHA256

    a35de3f567e442018a432d12cc692ee2363bb998bec828e10acdd157473b4987

    SHA512

    7d31318bff622b3cac1a0f0a113473b82d50fa293bc1e9b46d4282a89a47656a6afd00b00abbf0c863d67db641ffd815200b54e0ca6b160f56c30fd229850229

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bab2105522f57de8f9d0526208af3c41

    SHA1

    6e77cd71190b199a4d000774f135c9712c10c629

    SHA256

    b1e97b627cf949d5612a16a2f689a504fd56cc6a96e6681d1bfc91dbeefa46e4

    SHA512

    790d62f889459ca97583ec8ad08f0e0a0284253d870cc4db0f22f48dcc30351d4eee396804d9a84555f72a596bdd140f192d1e71ab18579fb583824387b4fa3a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a5ecfb965618f21b1ac24cf4f4aa12f9

    SHA1

    548431a6c1d09699764b0ac813e7a7a516c2ed60

    SHA256

    13a88122991c8af59f5d2ff75966a0b8efa34377e0bc2a6ab08a3ccd2e3ff92e

    SHA512

    dd1889035ce2089a2708314cc892f9a24ceac6394690da13eac830f79f0a71769c0ed7b8cc425654b56789ece1077795cbb9ec0fc1dea24050ff3c31e7068d6b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e57dea80e428692e367e8cdae3791018

    SHA1

    17b9fc48c95f57c637c58c399bab8deac54a2643

    SHA256

    21abe1e4975f11610d1cf387d763faa23315588a661d1bcb0d733a5944776112

    SHA512

    18d9650b8b364e0713d5253b8b779e737274699aaaa4604abeb9dfb43ed8a273cad36f85b7037c4c5e2327658b1a159aa252d1087b3223a9237baedd8f93b98d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5bf4cb090cbabf2fcbdf91ca340cac1d

    SHA1

    c923fdc392a822ca7209666fb4896ea26996c89c

    SHA256

    2767b9228343008050695495221f6aef33ffdad53542067782392d9fc684f0ed

    SHA512

    65f7a2073c125be2118000c293b7ad5d7834d93534fdd7e51f7fde0baddb2de1e853a0bce09c56926cae12cf31e59d32d0d39b6a799f1a9d93bd3723c206b35d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0f9fdadc12633062695524b15b369725

    SHA1

    7a749197d901262e798f2bd89b176bfb3a2ec97d

    SHA256

    20d81bc5c78114460c6e2ae46c24eb3d66040f104c540eb2a9d4ddbb201379c1

    SHA512

    bcee18ffa9be545694aeda2050feafeb6db9e56dad57ade21c5cb14173d810d8fb419e21b6565aa8f1c2f8079dee6aee7dade9cf08d4ebcea93eb43f9f0e69a7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    b3b7a6830444624ff14b14c1bcce93c3

    SHA1

    a2045da9ec55565b3a971e6687c77f9dd7d412fc

    SHA256

    4edb96a0de38b749aca2584016bfa2b8370fea6a2a3c552b33f505551e089bc4

    SHA512

    5ca322630a7883d9efd2fd5f112d3845757aedf21f70b63f1ced2dbdf41cf5bbd028629a287ac8bf3b9ce2101f253569c336f0822080c4e59ac92bdf234dec91

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

  • C:\Users\Admin\AppData\Local\Temp\Tar2D6D.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b