Analysis

  • max time kernel
    118s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 16:32

General

  • Target

    a1579d8489f2b2def0581b5d53b837e7_JaffaCakes118.html

  • Size

    3KB

  • MD5

    a1579d8489f2b2def0581b5d53b837e7

  • SHA1

    e512f195e233b0f6aa610d575814b33a8218afc2

  • SHA256

    d5aa180cb9b1347680495f1bd64019878314463ac98a2e5139a2d4c2d9d4674a

  • SHA512

    f733683c41e34f98a7b0c9c9747e892d50109039f94cb73956add24e8d875144b3e5a1aa42e268d13345b91809ce0bbc9280824528d61e150af79eca32627c3e

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a1579d8489f2b2def0581b5d53b837e7_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2884
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2884 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2820

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    d44bfe731c5d47e71bbb5975fa6a3d38

    SHA1

    4814b1161637d6450ad100fbc52b0938349dcc64

    SHA256

    461c83c22e034780b6ac871c8360a48b2755a2f16e975753201e17b2444ce8aa

    SHA512

    39f13aca6e52a686f2eecd159b2f8d86a878f54ba7a62a7fa6820e8723a9f31142be50c62dd6fd2c183da6b4efbb20551eb58a905927e8073567b0882b96a38f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8d8fcdf6296709568ecf733d6c73f1bf

    SHA1

    f1a8b53e7cf9ac3b164f8487f0a843acf023979f

    SHA256

    ea65def1448f8bbfcfa8e80de93622ee2f9908deb6ffc35ce2497f5f33acb608

    SHA512

    3d6e6cb4f6f9b302b708eb048aff282a543fd09ec056e784e4129d3e455252be260aa8f87be64d35a5964e4bac02a095a44a0e2733553cd898458d2310fe4172

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b6bcdecee0ce005c9f5e49d2e3c959f0

    SHA1

    60d6c9af36efe49c48e881414b81849a4e5b6c41

    SHA256

    00b79a6b12821bb6696f42320979b2d534ed44a0a996129a973542d251c2352c

    SHA512

    208085c8975f3dccaa3307ca67be16037352591f2f5f78ab074d08ba13de0b5bc4abdcefb06a006193d8cb88a7e8e758cca707bd15ef8b823e85caa5a1efbc53

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ae22a38c8e104cf8c41c966024c568a3

    SHA1

    9f33ef6a213ad47911169549a1c6177bc7286d64

    SHA256

    deb4205749954a9319e4d1938e57a7c992e7d763c17d830244a8243dd1473e6b

    SHA512

    afdd0f0803c21ab90ef9b8cf4c53b1f581bda97fd155fc492d50745475d85d8a2c8a023b175466c6056cecf11c0e3c9448e9fdca8390abe799f61af052d948b9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    19495de5b56f9e05a74b9a856e4085fa

    SHA1

    5623e5dcdeb683fdc271941d4e9bf7c5492cbf8c

    SHA256

    4503b0283e7ba2b1773288889a2c002769c3932632b9b0051a8d7d48775cc3a5

    SHA512

    9f4155f313648c124c43470a9037fcddbd83501abb6d34241166187f78b4a4a840d6c496405980f770f7ec1787de0bb1d2d972167f52503a42254e1e4b49e0f8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c5b4296a3ac4382d711acf4e4e4f90ce

    SHA1

    a408a67ad6641ee8e655e2f2b9d7ccbb13934b85

    SHA256

    5d2567da6fa609eb512bcadb2c6d4291bcfe0df06ff2c538a297351008a7df7b

    SHA512

    bddafdf68375dba54b64f13818c9978c3012d4017fd754debd068b298c46f851885602505e3878471b1190048cf077d4dd647b7b7afbd91675632c604e562e41

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    358f1b18c4f657131c084b2245970c37

    SHA1

    e7a105b75b6b86e29d025f06913872e245b0e102

    SHA256

    b606b2ab6bf2c779f01f009329d14bdf70169fa2d4058c6d6318dd19dbb091d4

    SHA512

    a58e10ee46c2b048f93434166dde5229de37858550fe1e36c703fd224178a72916e64647437dcae39a860b023b51028add1f0dae407f14611cb71db0d31a8c0a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d47ea7627ede8b0ba30f29bfd05bdc0a

    SHA1

    a89334816eb7610612341a955f0f026f3c09c2eb

    SHA256

    4d60c7d43712c76e547c38f4e74690eca70d3a8858885fd11aa87c45725995c1

    SHA512

    e57363d7abf9a2ec0d9c69ab57d5eb4487bdc83fad8e5f2e3c2bc17a4e8c50cdc63bf8f412fe091b45dab8bbc38c13ceb6052e983c5f5da1f871fee74cc97f85

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c4e35ef6b0c61faa2dc2714ae68e123a

    SHA1

    5c0bae3ca2f383865dae9763cea374bc04909737

    SHA256

    66eda2f639fa4b862ae9572aa0d50683e25ee5dbe84d7f61ff1415103139c581

    SHA512

    b1b72166889acd9f45067b8e5606c58ab80e45f5ece056586a96d1421a7058f9f0c669fd77a395276ef4aa84069f8976f639c1ea2196ac223aeccd03a27f900b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    947948b469ecf2a1872bbfd6bac36bc8

    SHA1

    40858dbe0f3b940615510ff7e90d9ff7f996c41e

    SHA256

    3f314f6bde24b996e1d9895c8f382893f82096aeba0c82fe6d4277ff6d96573e

    SHA512

    2aa74a11ba8979fbb1a71fb2afce9d0bd380e4eaf51a3064f3f40eecea03132111bd33a0d1f431f4ec562b19bfae5fb50be76358eed4ff661a1df80da666ef72

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    69b8f0a4cd1b258c802ac9696a79330b

    SHA1

    7effa7757ff87e49baf29c76096659812c4aa050

    SHA256

    cf20615fab73437edd9e0106cb161cf15230f95cb1165c6e37045eaa204a9cce

    SHA512

    62de2c09d7242b7bbf67c9553333f467617c542ab1164d281f3c4dd1cbb6dacbfdfe56da4570f35a752b1f0459437226156f026244b81f3e35fe7bb9e04b2deb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5f8fa317b505dbe4d0e0cc5c608a458b

    SHA1

    8ba1a4703294aa2345c7a681f457f2ddbff1a4c4

    SHA256

    e14df3b66067a7d55c1448d52741e6c1dcfe9fbceb79b31f34f10fff47d8b23c

    SHA512

    51fb742bfb7671f82d7ed0295c3f4a8ee7f2fce1e29bc70d91f759ec404b03690f31a984ed4f5ef2c508aa1b3ee4573cb9afcc5c09babcd4ed9b68a23ceed40d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    82e0a7f63c65060d5275d3ec191303a8

    SHA1

    1ed59c75ffcf5443d5086ab00bc4e31d2ce49117

    SHA256

    f43169b5aea2337bf6e6354b377547e075fd2ae12d88d828a08e880eb473a47a

    SHA512

    91d2c072851f46a82fa975191baef36651ecc7df6ed11fe9c45a49394784a64a7f9581980ab0dc5285cbbed894d99b7d5794b749830a0b95b81958e488cef427

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2582bbf240d1f4ba9c5cc03f6f770468

    SHA1

    afd7253c3f24ef4c7bdc06be968e5d17adadd3e2

    SHA256

    81b94b26e533e0ce939cb4e16d2bbf60c83d2809cb2c7e02d437bdf425549201

    SHA512

    9f6da6201a5f1b96330299f1146d222adb12b0f4534d643723f713bf4a5fc72b9dc8623156dbac0bc14edf40924a3fe5e948e38e99c2b643c254307d995a7e29

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3f98e0b771c4e21cf1201232fb62e7fa

    SHA1

    d03d01446c145509b32e6a9aa4732c41bdb9593e

    SHA256

    0c9888e545737b66d525759f23ccef9a27931d8d31d361d5befb39329e1472ba

    SHA512

    7f0f70c78b3b83e9e75c68d933bd303ef1b902e39a5642c1d2e1bb97ea30213eec336e1ea2e594f747fb6aa2ecf26247ab26fc10b86f02a5da3455409f5aa903

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8f94ce5153dbd73a89ac13764383cb12

    SHA1

    b2f633476207b77e3df9e1acb5f69da736e92c71

    SHA256

    85836fbca444deafc62cd9bbbdf28a8de0c1a859b06905109891a120bcd06bc1

    SHA512

    4676ee3a6da3a660a564f478584a8da3b44d4428be491eb8f2e26abe3c9fcb0d1adbd8e986454cb9efbb6dad4ed8fc04a7512c6054855a0eab0261bd3712045e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0a1b250e8b2086ac03a7895f08907cb2

    SHA1

    e41e9a7635418dbccab1b46e9dc178d42065e345

    SHA256

    366e727ff5cfb04f3d814f4556ff536924070d3f91dc672950de5e9282d7c09a

    SHA512

    0d1b3b2389300be9a14002a41d407cdcca9f1ff4aa7a1ecafb60b2a8bc8310d642a0fb67d805054ac1d9455646904cdd745883f0274d85ff2828681a6f9c0cc0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aa3123ba212b1f64b16d6465a8dedab7

    SHA1

    5e2fc3f212921c9203d417a8765dd35b9e7e4f1c

    SHA256

    33fb26054ec3fbcca69290591693c15c320d3e6af75cebdf9a6ac8d9a74c3362

    SHA512

    5b51cac0af2e37876b19f8039b93fad4cb0490b061ae814e8a1c69cea9c6aca571d84ad78262a75a54bfbe82a13bcfac1eecec6b97f8d6f327abe4ae13c920ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    102fe0b2014b1e3bff2486b38011a773

    SHA1

    c3bf2274b2a1f5dbceb2c6430ccc4fb6482e3278

    SHA256

    eb01524e7f5ff838aceda0866b1b2e9a311d0369e4ee2d2158f6b6f145e1db8b

    SHA512

    c541814b3dab6bf8640950de21796a679ac0bd45332654a2a0c6a45c9994d41dd34bb03b37171103c34072416ca98769eb56f9d11f6f6afd3113092babc93feb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    b26a7e35638ec267ed64c8561ee5e91f

    SHA1

    31ff89266d52b75fd25d23cf2a1dd34e906115d7

    SHA256

    147ccb53cf089ee85c3d1886e9018b841f15e967d059af500de54f2a33483272

    SHA512

    f8db8874dde5d59965d88cce319d2d79b61f7c62aeb2196b6e3f5217070f6cb4a594a364048acd57fe57cd277b31907ab9c241ba7f8a32e9cde96c2701380b91

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

  • C:\Users\Admin\AppData\Local\Temp\Tar2AFD.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b