Analysis

  • max time kernel
    141s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 17:11

General

  • Target

    a17366b4a8cc54a4e7e9f68d71020e4b_JaffaCakes118.html

  • Size

    48KB

  • MD5

    a17366b4a8cc54a4e7e9f68d71020e4b

  • SHA1

    d52cb512eb691ebe8d1e52e5d9293c8d22e3d933

  • SHA256

    f3dbef18d2dfaf082b5f3290451a029b39ba5ba782d14bd4fd7e1e1cd18bbcd8

  • SHA512

    d6ce87a612f3408359d9cd18a1398ff6a357896e2e424d4afc18a6ee02e2e4f82265abbdc214705478dc6bf90117fa6c3360e6ee2c5658c668006d946484fc7a

  • SSDEEP

    1536:8AKKKhkKx6Jp7iRWw/k4/CGC9/jUa2F404KLdpk/8QtKIMlsxF5+cRBGPqbPqYQR:NgkJp7iRWYraX5Qvabgvk8QtKhlsz5+v

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a17366b4a8cc54a4e7e9f68d71020e4b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1044
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1044 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2064

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    d3483458ba2b2be3f80feb841a35476b

    SHA1

    a523bc7fa633e07b65e826184297b3343d8dae3e

    SHA256

    075de7c7b09e977e64e2cef47b06daffcc43a59ed4fe9b5764fae8fe69e2b0bd

    SHA512

    adc99a9457b39717d6242b7d57e58716c94636828656a332237f1e2613289a21e7f7c60fc15d45a40f755bcfc7b17beac92aa726122672a51a6eebb70a85f721

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1b955854e65472716957a61dbf0bd08c

    SHA1

    58fa99948a49d06596450360bebe53cf7419023a

    SHA256

    78f8dfb0d03e50855024887aed26f996d90d7d025aa970f1168f5448da71d039

    SHA512

    ea28f66bcd32a8f33f20440f7313ab5a27a6f595dafce738077ca1e45a651ceafbdc2fcbe5fa07adfba81affb06a843f0f07f883e5c4ba125953f22954bc8c6d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9c407b68ce0417d3de2a1e4b4d652c60

    SHA1

    074c624c956af749891c1c5617120c5b34feba52

    SHA256

    3d04961e2784beec2de0889b184b88f34face914c40d6c8b9d7a518dcf5813d3

    SHA512

    4dcf63a351abbc1b11252a674a410a9fffdcfdb4986c37a452e33022876d58f789635282c7235c2703e6f92f3189d0dba217eca234ea73cd52b8236d2bd2c075

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    584d3ab2ec660193236405396966e38c

    SHA1

    2a35d4070487313889e18f398e967fbc9f6de811

    SHA256

    9f21532f5b97f0b486c0bc5f4561481154696e2d5d02943628f9dbfb328c5b01

    SHA512

    c9681f0f85b17485f02a537a01e5e178f31d9ccdcae7582639901cc6c39b1fdb4ebbee827dcf49efc7012be01a2b1c3bdebec3f42271b5a2be6b267965eb3cab

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d86214f8cc2c35febae0b81272fc2652

    SHA1

    26bd192f00aaf4f6c1e845eedf69c33e3035679d

    SHA256

    7a18367c7cbc9ada414c993d904ea1f9978b882ae0c5d66c98ea94cc001c5f15

    SHA512

    4622d914492d519b7423ea73b154220e909e94798233e7e601b2c161666ff678ce95e69a9be651a22e284154b9f2ba60db6e74e33b536b156aabba7ba9e6daf0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a0b10c7d4dac76ee3759ed679a1e209d

    SHA1

    020879162f26229681d39a2d350783a936b47f12

    SHA256

    7d9d968b2526c4aff051371b24c6c93f6c6a2ecaa19a03c5fc91d422dad35223

    SHA512

    7a00f18d0f60f04a3203deb162f454c465518c2825dd56c77533fc8524ec54a7b58666a10fd42f34928b24797fe45c4ece6ff60d8856f2fdc3ed19f57cc0c06e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a8f7f1559508e8fc1f49d7a54c361c92

    SHA1

    e1b71058dfd97007d073d10c5cd716d7dd50e3f6

    SHA256

    c3be10900e10614968c9cecf251987529ea94cf4245ae1cd408e4003e16942cd

    SHA512

    e45b437f0f39966f04773864d16ccbab3029e7751110adb29a2edc382544374f0b1dc31555bbc3fb38b0bb53dd882e5d1e136b5f2eebc6a91cad1c82443ca3ae

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1e252ad82ff1f6f30ef7a27695a0ea6a

    SHA1

    b4410906693171cfffc494d32f514c40144cbb6a

    SHA256

    9002d753f7b1fa2fdfd63ccdb4a7c03d7101796f309aa9312a04cd204c6a8afa

    SHA512

    c6003fff2500fbd6d36b364704209d9f8cd33dec1dfa1347f2b524cc221fc89416e43bf41166b246c57f8982de957782028068b6e5ba75a42c342d49e0d97384

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    29bfd402a8360d13a409baa13578cab5

    SHA1

    d66286357badea912d36cccdc80e763de8fb6836

    SHA256

    3c9495e4a8411c634a19256502753e16df0bb570d4e17383b0873bb3fe890447

    SHA512

    ab857e84a67d8dfd3e1d27bf1e4d8e8a5ab23a501088b94f3d194d699dd94b4b144b1f486d5fade8d3ea99a703458e9542adeee2e365eb75712ffeb0b5403177

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a9d5c9df87403deac73a204c322d10e5

    SHA1

    cef9998f637687b8cce33d5dde6fa308eaf36c34

    SHA256

    eaa7cb6a88c4d5ee384f8f6c4d2a8910939d75d2bdb2570017346c366d6422e1

    SHA512

    c61843fae039be05b3e003b2468c78c9a68382854036d76e61c46350e480d5cca053f02d149c505a2d161ff42cbdbd78ae0cbfb2c813a02d698b33b4ee01936c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    681fbc9ac640cf1804ea14f42935445d

    SHA1

    a1a87cd55d0a349ba5437addf79238f9c3bba9f5

    SHA256

    9fb39ff3b718f74e615dcacfaecd3df69251aa5e0ef437b647d6fc105e6d94aa

    SHA512

    419635994b77ac2e5e0c63f1410f6b08efd567f84160116bd201224d997db72e809aee59bb1cd03ea9996d948dddc62c9e3fa72a26568ac8145bd8fb625a2b60

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a903ee21ff35331a80744bdaea20660e

    SHA1

    a2665da2cc4251b82af42ef33dd37e6a2a8200d0

    SHA256

    841e0ca5d27b9502ca4100f961e3930d6ab26483d1e6a45b460e05e98b32f594

    SHA512

    a8a9ba2bc283dc586e5a400aff3f1382b31e9750fa3160ba0edd3193b06d96189987bcca34702b5792959bf31cbd425a7889bf42dd40742ce2af77aa3cb604ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0ec92c555ebf62b32435e22575662c3c

    SHA1

    ef82b9ab889533c1d3b18466c4dca9a7ba65f3bc

    SHA256

    b905de2569c0ea67fc8b7a7a3641f3b5bb19c36afb166c9b095e80745099b3b5

    SHA512

    899a87a6878fda0cb35d02d87a036dd116a880f7731f75dbbc40d6b7518762772a8d861a6b4e24391980697690c638073a3bf5171cc6724f6bc0485b4c4acf9d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    982a499f02cd224dc2762aced95980e2

    SHA1

    a9ced890bb5f20c964eaea3ec1de5c1102cbefd5

    SHA256

    59af69eeaf6b4492131d5f86a310b8929743c629473337c265fe5982a8f521c0

    SHA512

    6282086d4dc71d81537f3d01cc97013ebc8f719c6befc183655eb94bb4e443f3c8a2e4b9e00a03676b1f9bdba28377ea4a2b66ad8f8b5b203625a9be4bc8c286

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    350b288aa6d0fb00e7bd6c404e35ad4f

    SHA1

    b6a3572e224da8312c33fc2344e9cb0e0b2e8ece

    SHA256

    11629408545513b458cc87ac523d15665e7cbf04fe4fc035528a8dd925fb3a9f

    SHA512

    c69c9dd7bf2f3b761b43b7a0ad18081c7f2e0b53fb81167dc32f0d41eb87b522a029bfc9f8a1fdc93140d4200de6f101f36fdb90bacd3c5388a03f356dee7f87

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8557641e6eb7973a56535b3fc2aabe46

    SHA1

    2f70da7d59350cab6f0fa355690587cbb4f989a0

    SHA256

    5c2a1575d904fce4bc6b10d540e210f3c750cfd952e79b311c950eee76a9005f

    SHA512

    89debf60103fed43618560a98947fd0fcf1de5894c7b542d7f4e1dc1fcfb2af34b67bd53521ef76fde852d2190cc7563a8c85622024aec6767910670fb93f64f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    47fb3274e28d82d30d351da1d7468567

    SHA1

    be42bc4721e213b109e485433dd93b3c5a956345

    SHA256

    aec12c77d0ecb85aae2ae7460b84a0f3ed0cb618424da91394d98e3c3e2535aa

    SHA512

    beb23090b48b307e54201f251490eb0e23701799eb14c91790767b6010a615a7b361f0117d3666b63bb5685523ad81bdd058d7b8f8dfa846689f0425ecc23413

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cc16fa18447d0ecd52ceebe61a705c42

    SHA1

    c62575926a419c7ad9ae60381694e1d4e088abaf

    SHA256

    7c21eb5e6f1547adc33af38a84a4000818fb14c8a1308af03c52dec12d1ed582

    SHA512

    064b9dca48daaa8f8a24479130d0fdb2cbcdede271e1d1de9feb6c770f1d59a6bc86aa68c66a1f2a4f2682e65c772a82afeb9e8944a83cb22cdc25ad67760521

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    da5aa22b19bb1699c832ad06f5e6e177

    SHA1

    082cb8438cba118a5de9a9dc3ca4954784f9e001

    SHA256

    c870d5e97ec8f4bd53a0cf0191a5ae45fd58865fc4321afddd2b67e0b7ab9594

    SHA512

    9b935cad04d99a89b886bb636cd52698d4eacdcb038ab5afd48b72d9826c076041cbf228cc35027d5d4a8d66840977a8fb7b4374fab0f9f6b9d98d61d23cd6af

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a1bd81abb746a66a445b97498795253c

    SHA1

    0d92406428f8b7fd3dddf5d229faea31abf20057

    SHA256

    77f1bdf44f0dc9b3c62b9085e5eed3433cc10a25385e5f29817ea581fd2556ee

    SHA512

    4ffa15fafbfa5d7379746eed2afcc9ce537b4754e7ba96fc534f4315a8e1475861731478a0aae0224c3b03a59ba8de047679e5f740769d5ed20c3cf8df91dd17

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    16e99df539d85d6a5213157d76231c81

    SHA1

    c4f37058e9244e4b8672cf68af6488ffe290c830

    SHA256

    ac0139bdfb60460b4ea49a377c0faf78358ca10f43390957a62ab13e38e0f75a

    SHA512

    396cacde7de43e0c80c80e328abdc530d13cf7ae28cf3256e4d310006b21c6d0d358b480811bffcb31ca070e4b49010df8907c20cdaed1b08b468be2e828fe68

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

  • C:\Users\Admin\AppData\Local\Temp\Cab257C.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar2707.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b