Analysis

  • max time kernel
    137s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 17:10

General

  • Target

    a172e33e410dc38634ef8afda6df5c97_JaffaCakes118.html

  • Size

    151KB

  • MD5

    a172e33e410dc38634ef8afda6df5c97

  • SHA1

    8f0bf382549b6f03da8454a8627b0972c657740e

  • SHA256

    9d99d7b6c0254bf65b89215ecdde03ae47e1e64c618102429916bcbde9fcb2fd

  • SHA512

    13a48c7e195fa122433713a3176de0e57776eb676a87f08b8b2aac70764afd9d75c37d7a6bcb40b6787c2dc3b35cb1dce186fef7d0105a158e42a00ba7acae4e

  • SSDEEP

    1536:lgAMryDEaiwP9yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJruH:lg6d9yfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a172e33e410dc38634ef8afda6df5c97_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1440
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1440 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2928

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8cd891ec84c1ca859d50f45b1f43288e

    SHA1

    198005ce546a77a2f99c70096ad0bcb5130d8295

    SHA256

    8823c10fef0452c43a4ca111c2e2ee7725950237b9be81f3b14ab0e5d8f19581

    SHA512

    1a67d0fb61e015d437e80cf993f37c5b8b428aff64ffc467b4c0088513d6affcdf574606bc1bd604eaed881465ce4c78fb83640937804825c341f509c39b17a0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7291277d75e02291a5dcdcd33590922a

    SHA1

    4f053851d0fe4ee3ddcacc6404da66da95be9523

    SHA256

    9187730f8c7f40f34413dd9b4069709b00372c74480d115e5b7db87cf86f3ffc

    SHA512

    119ecf77cfc3b96f040d8a68ccf8ace8005051d593efb35943954e84ab4bac8186b17c7dae25325db0e40a3973877081ef2e970d6b737969af4d52d8b536b3a0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ecb6e1a539d0571a08d7c93d864bbcba

    SHA1

    6332fed9b03030fadf633db55684f66b705e4076

    SHA256

    981f6d8a7058a7b08dbfb25e83d73d5b75937be645c4eb2ce20bed8636ff4b99

    SHA512

    890c7ac31e5d32f716202474443120b505c684b5b7a60120c6e88a7fe90ffc5ae789bc877c4c527d8f3de6c766ca761f830d4241c8b79182cec4c5508a637512

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cdbea69d49630d3de0c7d0779b88816b

    SHA1

    43e0a50b9fa1f780163d10100be111da40bf216d

    SHA256

    fee59ddc21e6341b7d4b284396ed69a4cb5e61ee46857e04e445c667b6c41c75

    SHA512

    eb20634b1a34b367e907719bb977b6c885266eba8a28dc672bc78564270cfd9927c6fc503c14bc074d81a177fec6a10b0a37638b7507857a3407a9dd50a1acfd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5e70a2205c439dba1e33330702c52482

    SHA1

    96912ce018e54a2486a976deee46bdc9a763095b

    SHA256

    227d480fac143a8ebf71d1bd163cfc5990c1d967fc1aa1579495996a6f04e78d

    SHA512

    04e26fca577e1eada69e06140d5818ed252fdc8f52e3e46a0320d90c904811feb31184e805a792662c3cb3220e1e281500f223187151b8c1df800bf60579879a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    137fa3c5f957d26b4e12f4d0668e2c2d

    SHA1

    0dcbc520bd0c971736b6b3edf36e99273a9f2110

    SHA256

    02ecc4d7cded7186bd54fdde68965905940692cffb0f9baf4f3064233adb52c4

    SHA512

    063e8d0af3e605a9bd686a902259a707309ae4459af0749c4d7bb3a20da3d04572f5fcf4a41195411dbc4e9ce30e17abe8d760e6609b741f33a9d39144b72242

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9e2c4715267492a22b09f7d42adf5cb5

    SHA1

    4f4f8148b394b7677d74c8621638b453968752e2

    SHA256

    78a4c9ca90ff0d2cecaa46ebd9d9d29be3164fe59b794b064d511bded8a9caf8

    SHA512

    c487aaa36fc5f59aaf3ee7a89a5a90de78d8c27ed26ba2a48365ee1a50b18039bea696900e0a6895a542f03c0197e9cc6f5e25eddfac6427de067fa2b11aeb0f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    18ffa73d17f2f4d7b85d6f2539133875

    SHA1

    a7cf02245f0a3d5f86773faeffe2e9311284d345

    SHA256

    432a30e356e0451d57f827a879090eca4f4d4df99e3568d5a07eb86acebbc9ce

    SHA512

    2ba6f001fa22fb8fdc9fa63c13555027131e210e513015f0d9e859f037b88acb786fe700ed62fe92bfd7376eab92c1c66876cb6a3f083f5a92f42bd1e1e26dcf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6a87b5569924260293e0ffc3ca40fb09

    SHA1

    48349d9ff040ce09170aba7dd08535e8ab822bf9

    SHA256

    4f316946ab767ec7d1fb46747b58d6160942c4a1646d47991f0f308285c0eb6e

    SHA512

    b3e770a6d1eb72418756f57b6258c983d0b5f27342686165b137902b80db4cd6d75dbe163fdcb4f8d6f737ee561c32350452cd2fdf492038132372014a438e6f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    873e4702f3e173d364d0aebb012efbe1

    SHA1

    d430db45670fb67cc6733c70ab2710750a462b1c

    SHA256

    cc0dc34f81a134ce935ecd934620a1d3b79e27cc88751889614919180b8c051f

    SHA512

    6d1144bd396a93c2d68dabc7faf64def682f483c9147fa1e8bd77aaf6f5f7d5a659ff6e3fefecb4bcf0f74c2e9b609f998bc3a24094a2bf44bcc18b9af342be8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e7b09fc027de226e258bf5804422606b

    SHA1

    d911812e589155c96e34d6e067c3bed2380558a7

    SHA256

    6a4144cff57f1523a9e369ff87f4bed7057d7cfd6b86d404179e170bc393d051

    SHA512

    2713e9aa82bd8463f058897b1375f44faead75b280816d6814514608b64427349dce4ea4c938d26eb02ea6d61420d643ace004e210ce982b45e6175651be895e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    faf3a74ad234e1d89a7eb8a265bebdaf

    SHA1

    2bd7940134870eac2203b70f5d00b2106d69a010

    SHA256

    18cce97be39a9ae726dca11e807c2fdcfede4e46c803c903e70d92f674f1f59f

    SHA512

    3fed647e1717479a20128cbbffabdffe763684395e63cf321256374c62d8f21283039d6df6c7fd5b8e57b5a3d510574b9d822539ca6c54be3d39c96d0f1f654d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3e9337c1b1a57c0bb8fbaaf3af3607fc

    SHA1

    c9aef7dc6b2efc0d508cf9f19df1a8a03d9844b7

    SHA256

    c6d320c399081009e647bce5ea11dc063e55552fd41d5b761cb7366ae5b81765

    SHA512

    0bb054a728f91dc2b8b0c6ecb02886063c796f0b15d722f2e757367ce179cc817f9840863535f14d506e1dc25195f603467fde7076c1d6b15023e52778bafaad

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    72f58a662c87f79d2760dfdd50275027

    SHA1

    1c86da9f59ccd0cd73b8be8a9f6288980ebd362f

    SHA256

    ea8022367ee2e7fd36a274b85cedcb69dc5e151dd51e33efc905f9cddb367b19

    SHA512

    14d4a65d16bbadb2f62d3addd60af2954dd9efee970604456e94b64c3cee39a9012ead500bb360a30a3d32db879054792733ec01e66539ec55c912ad6db0ba3d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f7c35e94d73f923fb644e491e1f67626

    SHA1

    6aa23a5d277c114fe2a3289eb6727bbb74477cf4

    SHA256

    a9092c9d75650ba24730c664f95276fbcf7ac5ca2ba99c28ca9ccdd801fe3ac7

    SHA512

    45af1d183a29d80d675bb759d53fe1277f4dc8789afd299ea44061b21144f1a981bce5b4be2c005edf08986cf1371bb74976f7f64efd3c787a8279177f943a0c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b7471096a89b8a0a9c3c52ab3dff6c7a

    SHA1

    af709bbceb12323180f07b806562c2cc3d75c56a

    SHA256

    9cd0addd3dfda1957b92bfd41e331be6a08d33c9d4789832fdc90c457c9c8456

    SHA512

    7eb3c5ac5d2cb93e279e94c7c562217c8d5e32902ca36f10953dd4a7955c21b7f899bca85bbfe6d024a5aca575242d722770479b0564f523a4bc5428a0e216c1

  • C:\Users\Admin\AppData\Local\Temp\Cab8C0B.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar8D09.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b