Analysis

  • max time kernel
    118s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 17:12

General

  • Target

    a174050d5cc6c4121968fbd46b7ce168_JaffaCakes118.html

  • Size

    49KB

  • MD5

    a174050d5cc6c4121968fbd46b7ce168

  • SHA1

    b7ef10d51d8051eb34f0d20abbd7950f75103ea0

  • SHA256

    4a98053dbc8b891462d2331a617faec51969e50ac7f3c3bcb91a3fb450e00373

  • SHA512

    dc59ca9984895fb984f63229e6e82f2af135158c026cb6e159a9e8b766c0cdba678f199930e1f957959a372786cfe6483ef77d4a615304597cf111e3db6f22a1

  • SSDEEP

    768:Sy4nYhMSjxYPwL2dVljIKtGhuQdpwe/YF4CCHZ2tw:Sy4nYhMSj+Nd/jIKQuQdpd/c4C82tw

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a174050d5cc6c4121968fbd46b7ce168_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2540
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2540 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1740

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    88bd860fd1572976e742e9609479ab26

    SHA1

    7f1a25a9f66a6a309c462e26888518eb7383c450

    SHA256

    d25354f1cee5ab0329a4e4134ecf5b0139d42737f3ab386e3ed00eb9d497142e

    SHA512

    bad2f587f0480e92d145986554e7fbf0c153eba37d0954c6540a76612abba2a185c4493b91fa558ac3a8f615f1cd9654852703ecd6ffdabb0e33083ae16a3e9e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    eb81dfa6b0581e84d50e83ace0633a6f

    SHA1

    81dc3a359a18b8dfe97702b7677dc21e2e75d12e

    SHA256

    64ad92d72c4d9e7a881bd7fcd28995ccb43116cf4b8b08104cf066d1687e80ef

    SHA512

    9448b1e05942d5040e50ebf03a7e711e1f52b5d4dd81d62389f9a95734d7cda57954787cfeca3263c9948287256cd599ce4fee40becdc5cf645898de7aa9df74

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e005582596d98d4c465cb226a35ea0bd

    SHA1

    b43efc3988f0c11caf7f0be6e191bae854f1095e

    SHA256

    33d9b4aa7572dd8374b8c450375a645e5a1e002c0a7b43df4007791b20bdb2ec

    SHA512

    51bf13fda638dd6298a2f409641ecf47d77fbd45af50cab8d8498fddfeaf61c3f31b5d7b884b0a062650418d0ef195c5251142c48fbd110c957a7c9c9bd0041e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    26469788e2c01cb80e32f42474e1afe8

    SHA1

    939a2c0f082ee7cd21935bc23d4c8cae69a25da4

    SHA256

    9418f40432aebeb877d6be760f2c83a445dc0fe315c46aae9da0787aee93b604

    SHA512

    089ff921a949add8f21559dbf7e12f65f2d46a4f8d6d70399724128acafd7ede1ad9895674c0e87072dbddfd7aa32d709c5c3da89545f657394b61662c68c768

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    be8f09d5ec4fc3b7be7deeb1c87a4cab

    SHA1

    c06d53af2519d51ece9c802bb817afa1ea7afc0a

    SHA256

    89945a8f974dfac1c97e430a67d0cba7b085a351159f429b4361a0eba19633f0

    SHA512

    6cf1c7fc9b15a98996cc1e8d177f0f21019bdb37884039f729bb59b8dccb9b1e5a0c3f040c6a235bc7e835ff317bebc01868663ed2a1bbc836aadf459f8a6f64

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e9cc200c7bb28600ddbad7e6599c6860

    SHA1

    b7f04db5db2d889e8737564542c89cd570ccf415

    SHA256

    021d0188332873b2785df39c3db3deb787ff406eedc7e82eb6e643c28075e5c0

    SHA512

    6c89cad6c06ddd7230ea131d85a42a561cf87863d26a8495b28b77877251ee2052830fe7bb7dcf913fbec2d8892ea60e8f991fca13aa498ff6d3cfaaf0097599

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ec53b4e2e4cab349d4c08532ec45e995

    SHA1

    e03a1fc2da3da95c0396b662f9bf9b2ca43eb346

    SHA256

    3a47ae20d703430ab7fcfbfdc051be95ea5ae741d3a69bb72b8ded0c15dcf3c8

    SHA512

    7068f6caedb8295f26c53e696d24b7b57db293a72c3f6a0af08ec25af6db63700ab8e1ea36501877804e25bc03f2b50f81a1a438a3052a948e200de01e7e145e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    04b9452d7e9228cfd7e3d3212e6f84cf

    SHA1

    4c47df85d2a20f0399fd3d74fb9268e6d44354de

    SHA256

    656820d18f42d13e9a20f3ff5da1f489f5c12ea72acd2eb4011a099618e8cdfe

    SHA512

    e499021903491cd51eef5c696dfbd45c4ab02c649017a15d4712bec34cb96894937ed2ee4accf71f2c4a3d2843255112098085becff3b72be8344b2be86c706d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cd5d793b029f6e21a2b4cada4ec03187

    SHA1

    a4acf6c7414a0b0ebf57b1c6099d875bb9e25459

    SHA256

    ff2cf17a01197d48b13553b2c6067d80325bb2633062a5e23b4acd2d2cde470d

    SHA512

    92364602da4bf4c53ea9b73e09ab056bd24c48fb8177112c632d4a2dd7d2769d3f0204e9123abc47c40f6de273c2fbec1d72121a01cb1a154aee43b81e10b5f6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    df0e654c9ecee3216f9638986f29d4ff

    SHA1

    75f450d6e996ae5ff765c4afdd0530aaab439ab6

    SHA256

    ab2cd766dddbb008e3efddf114272d1ab044c46464317213275e9b8b29c468ad

    SHA512

    67d6fc2082f4c89abb65064c18873ad8b3016e70d7932246fd12ab6d2116782639b2c9c7c165e3aaba50f693273896d1d59e63f7ddda32923fccc9a2bd004aba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b2af940fe3b84f8674f99ce54eaba2c3

    SHA1

    a263ed5758219944a86111394ed62ffe995764c5

    SHA256

    cea83d39bf6426304c3fae48e128cb993b4a6be28de5895866d71954b215f8e0

    SHA512

    57eb4dc3d9cc4663d502c3f0224e631bfacd01d9beac821f484fbc9d8a64e565a86066bf78bc5faa0e89857d3e32f96cc733fb9e9452e8c9fe07ff132315aad2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2cfc62d487b0001b62761c67a1234b4d

    SHA1

    c78fe3ba8eb776a1984a84e22cb856d2ea72ad9d

    SHA256

    820e07b14a89e6a1c8bbdcbb18d6cbaf2251258dd7e9aad9d7b334675c885614

    SHA512

    e72e56b3289c051f307ad72ca16cafcc9ea0401372c9dc2b574d7f460d85aebec22b7e3af8afa72ff5b340e30af0d1e29c68b96ad81294596b7b59b5cc0b343c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    09326ec4243a1fc915988666fa6835d4

    SHA1

    dec1ac22ebce4e7225636485d64a3b209f9d7373

    SHA256

    c0f2f568b583cdd80813acca08a0a842db662b31ceb84bed974372bde9077a1a

    SHA512

    0f05ca2a990c852676c8c4f0cef7fbfb5e3ec4e86ed6d11d82a0597f62988c7e4fd5535b22e5c94e8c873fd2e66d1c1f58a2712568f086909f0610553eac0d53

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7199103aaec50fa8a67e9d1bc4d1a207

    SHA1

    f3df1edaad8a52e3b8f7dd9817d316a290053876

    SHA256

    fca00e3b184ec21bc8068d7b18558b5cea9ea0b6123a29940f5314c47329fbb0

    SHA512

    9f11778d566360431f66114dffe162044f9249273c5f737dada3cdbc80052f25c2fc41320168dc61a235e092f0f15386a8e55a866ade4db81e7771a3ed8cb809

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3e1646f1bf08a24cd8300c05421f6052

    SHA1

    99dcc0f0df045f229bafd4232b6c1c14afb14c80

    SHA256

    f2260f53b5198bcfd10466346ddba5be6474debdb5db13041dcee7776d83f895

    SHA512

    9156e37473ebcbaa4a4a489128d7605d1d9ed01af5d776ff414ec75be8fe419e1494c0aef5e385d47ba8272f8cf3a8b329cba0a9f170b85a742f80e35e5a061a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e9e4eeb20f9f0eaf4d5ab1ae444f08f8

    SHA1

    343e8fa4877db34a9d40ccbc55361c77ec1d9d36

    SHA256

    6ef69ea8ed49b6f056c345ecf3755a49489d60b5e3798578f628c89d594b02c5

    SHA512

    e9fce0ad3b675d6997b7998db9694cbe1d202d4aa0cef33c2b0526cf02b913b9d707047a141737c2b49838b357d923afc8b49ef3c1b9c9e5eb5e593b4a70f5be

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    55b73fd659f32500762950c9af20bc79

    SHA1

    803bcd422410c35a864146ccc433ff98cb60fc63

    SHA256

    ba8ae7d0eef477861c486817dc677dc17a15b9b09bb159925c129638d2159231

    SHA512

    4a114965c272b8962ad071b5c1ed4a13ccd2216012916dc05dafef6e0556283365d43a95488153be0ce42b44613645c1c64aec877ff63b935dcb8b06d95e9744

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9bcd1e860a4cdc008592344d59bc2385

    SHA1

    170bfad3c188f9507ad16d337348ebb77cec3240

    SHA256

    0280631bacb25ad6b5fe2ea37ab2941d8fcbe5062d7717ba70a69b117d9cf3ed

    SHA512

    11af40eac9ab5e7a373298263f8f313bff655a5e8893608b48edf915f27bad10c6873b41bfc3a888d91145eea2865658c28273f14cf2f1747bfbf9fc7ada73ee

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0fd3187bfeb0dfa45813c354688ad8f0

    SHA1

    68e4f3971a5bd60b08157fb3b8ab7c605aa896ee

    SHA256

    02a88c48a44050fc51fc314cf90faabba924f00a4b02f8db97659fcc0f4fe41c

    SHA512

    8f91c8efbcbe566ced8123e0fa5c4ee5531cd6b03ef0c49080078c20a032de8c5f94a9cf505d17bb228fbd3f98cf132c38d3d5434613a7e3cb27cef4ca8f4d23

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e3c258dd6bd907db1b6a26465b63180e

    SHA1

    8a716bcf4bd9d94148dcd791fb594912ea28915a

    SHA256

    ff924dc418afed7fcfd6e0cf512bbb1cdd935eed97b85caaf760bbce82a30fac

    SHA512

    42a8447d9889ff1b74991f90dca06e20ee6cfacec3847ad24b8106c6c1d33b04cbc22467f63c9489a3b9947342212e1923bac9943bca60c23d11ce82f61e896d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7d0cac8393786ac0d17d135e3702e1a8

    SHA1

    8e6087128c7cc8dd4b6ffccca58ad905cb205c13

    SHA256

    5a64c8c11fedc24aa0a46ffb2465e6f1e35f1ddef4f3b2ac48084ccf273ebe1e

    SHA512

    4b9b70d5433b482bfa2ec744e025ea30e11c3ab5631f44d48633c2d321593a28a5d31e9a7447bb6ef977109da90ad02044e8d86242cc03b3079ba0cfff6f02de

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9d8c5f5b5d3b620899947994766d11c5

    SHA1

    7454831bc6cc76a83440018796bf41f6f7f91f91

    SHA256

    0c501b647d80154f73460e8b4b3d5aa4afccac28c46cdf1924d2d9d46d14d456

    SHA512

    55626892e34738b4978f3683441ed551ae33ea4ee0a7d9d8757f1561a502e337236b56733a584631e07de2f4930dedaebdb55b3098250db74eb9ef955fe73392

  • C:\Users\Admin\AppData\Local\Temp\Cab2EEF.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar2F11.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b