Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 18:27

General

  • Target

    a1bcfb317e4a7921e129006c758f56ff_JaffaCakes118.html

  • Size

    2KB

  • MD5

    a1bcfb317e4a7921e129006c758f56ff

  • SHA1

    cb76b065f2075f3e27435fd3399492e802fada40

  • SHA256

    12127f15740194b86560981756b147c8abec845d6017eafbdee5c846b2e7ee2a

  • SHA512

    4d411f42b99aff3614512f666181678edf59423dd14a9a786d995a37d795eec975b590f8e8389b1fc2a1d70f8bd756ade6189f648936e35355644dcfc7049928

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a1bcfb317e4a7921e129006c758f56ff_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1904
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1904 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2508

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c2fc1999aa73dba28ba92369caba83ba

    SHA1

    59f4ea6af67eaa8a081e62441f27f1928676ecc4

    SHA256

    603c7245731c4b84821dff7aa43968ff2ba6b3c948b716485ab4915df17c34f5

    SHA512

    4d36ece5f81c0137291d5b20a7575d8d8d304b31b85c4dd5be43d513d55763b7433ddf17c11c998c5d9f621b8d7eec5f9cb53671615d49278447dbfe882ce2c7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d1faf8a22defbb1c272fa6f2402f13cd

    SHA1

    d1c97425ad894676dcdaa8daad9b5106f8fc6382

    SHA256

    bd507fcd3668f151a1af681530652ad844c699252585ec0086be93cdae9dbea2

    SHA512

    410363d7811417a3317ddad515b99d039b1adf08ef8cfc9dfa94a3ddd0dac1419bfcda4b1c6543ecb6d24475063c7e01227b49ffac771d3639fa5041e1127348

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0aad1ea7e4b44ee52d7a37937015b73a

    SHA1

    ff1073962bef5f2ec88ae6ebf353cd4683665890

    SHA256

    0cd29cfc74d7ffc975c3a1603a396933b0be5726e59074771adeacf2a6696388

    SHA512

    7755bdbd869c173c2464bf826ed7237ef71afd00c9e02645cae8e276c7d385bde7995f403c4e5b5a62666d198984d77a78ff94eec23a206a20eb42dca07359d7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    67bf25aea3c25acd99d21afdde05bdf1

    SHA1

    f9284dc8fb1f0181257a2a994b0326a40677f1f1

    SHA256

    40e71d86ae33b27ce0193904b3fbf1d4f6e17afa485f48178eab1ebb4deb8103

    SHA512

    d86e5e290fb6b99e2c7cef49079e0b18bb9ccdf7a076e022c7f615833406f7ee44c341c33f2b170ac69a956b3be4512777ccf563cf24eec650820533592b2519

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5fb4fda1753c1a608ed5a96fc0c5fa79

    SHA1

    27a923dd78a48ad1dcea2f4ad842f6173e179d79

    SHA256

    4b6f325440fd4b9474ac575b488f5a21899946f206a3ee57ef0007df5af74121

    SHA512

    99eda161bca2b508cbb6131ea78648b9569455e8837be01cadc098f0878155ad9c4c8d8761a58ba870810fea690c39b8cf6df06371d2bc116c3d897a9ef264e5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    981308a2434c95d2cdf54843337c54b4

    SHA1

    594c1814238f1a6edcb5a0da4f052748e50a25ad

    SHA256

    4fa356d59798dfbd8bf3c53854857d2ada65b12f3a78974b0177b42d8ab76387

    SHA512

    65dfe088b9f7068ce3799ef0ac99a5f63ed1a57928c8a4dfd3c91f70ee91c272262138254fbeeaafa716bd276c33af12fea13b11f25a8767c3bc594752f604d4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2b4307515add520b4772ef47aa20caea

    SHA1

    e73c2b63a288fc4c6ba380a1432dcb12ec437547

    SHA256

    262529a1aab43f47031f59cfc8e38c491eec2da328a7eacf428ad22bc730720a

    SHA512

    4c212daf4a50aac7278880640a1c69566114bbe776efc4410e2489000d5869e085c2f62798e8a9a244f65b3e1ac197f2dcdd4826ecd4a5c7a2422a7c4fb88aaf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0308538fb2d8244fb744facb069b3bc3

    SHA1

    dca211f1bb154d98613b1ad2bff65906fd961ee6

    SHA256

    e83bae6956e7a92dfb850167d967cd40d0ada246dfa0a129907a801638906d52

    SHA512

    d584142bd573e5bc53f194423acfe89d929b613cdd3b8363255cfb18515232da01984182889ea13c604da89c42491cd6be4d152da9e2df22800ab79f42003e74

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a960148d23ff31f6d0556bd6f02d59e2

    SHA1

    b1ec6d31ebb0e219f194461274cae7910c22e828

    SHA256

    cf8fda31a9cfd1769c25443b7ab8592e23eb1d81780b24870e65ed097b7099a0

    SHA512

    94726afec57593af027abd856e97cb8b0fdaa589d95c72ae67df691182747be08d5a35f79ed02c37d593abd9385148abf95f3c12ac0c4772764f90fcbc5a96f6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f8d3f366a447bf72ffbae5b4048b5483

    SHA1

    e3ec0d8fba75eeda8bcccacfd66e1c5149256592

    SHA256

    e5920ff5a1eb9e5cb0136122867a1f22456997db16b528515141320ececa31db

    SHA512

    6a20c5476074b2cad3a7cd730acef8e69139b3733157ea2244cca9918dc3d66bed178644bf59c84884c67c54f844d74600fb8cf53de7a7493456cb19e8724e1b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7e5f2759c5ce2bbb7f0d2ac4e291bee0

    SHA1

    3cebd5c81845a5d0e144f3a306e1ecebde5cd662

    SHA256

    dcbbdfcc3376f8eba6dbdc46148868f110c5b0b1e028dd35ae745473e7ceafa8

    SHA512

    989cded31f1d1ff4a8231223baac566c8f0c227b66f1baeeac2edfaca046c0f51588f1acf2f90132308584f48745457649dd099e3adbbbc9795d789a751759a8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1f34b832484bf9824ffa4ae77d624bba

    SHA1

    94a355cf3f5d25b145969490d330141ced0a7094

    SHA256

    87d8e577196f48a2a4f124f0a62bda5ff21d5325c9562398cea7a0b2a8f661e3

    SHA512

    357f8663192de7d575c91b7d66df10981a05e4131daab61344809de4a01e36bff06dade729484b1b5d62242a40243a27b7cf945e14dedd6418c2777ad6efea0b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e8276de88c59b7c181eab78a7fd40c68

    SHA1

    0a02c378851b39214a77cd30fb1b03c945ffe278

    SHA256

    cac17881f36803abf68dcf9fe4f94c3935e293ba2a44a56f2dfd93e2de6618f3

    SHA512

    e22cf11d5d459f4ef24dc87068dfe3b834c08e5ab644365851eaa367ffda0062285a522772318187f1f1a4a03c19176b69c04bc2258e595931d587a3d70fe8cd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ae54e34aada764fdb366729c7e52d16a

    SHA1

    b24fa5c6c02e10fa58201936ebcb63ea0e549d2d

    SHA256

    8f93e3542db6f52569a84ed0b49c67c3209f5f886c2002ce17956f9aa9af92f7

    SHA512

    3f181cc97967d50f9535d2f71f827c36872046db3b8ab3fdedcf861c38fa53ae29c02cd43e8006f7b66cc19193ee4888b89ac67a03e6ab63f99307e9c8500193

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f0a00ab1fc35a2a92e54bf23493a2cc5

    SHA1

    53799e17d2e400f6577b5fb66102513418f08ee9

    SHA256

    9163ae55906e1dc5c71946119631b51df118afac583861b33944f8fbfa6dd2cc

    SHA512

    54b686b2a65fa526572e1e38dfaba63f6be1f9d4e6be9463202824b67c183bbc8825c4bac86ff5a7666f48c3ccc2bde77752e2dcccc29023846093ace116d11b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0381ef6ca8df0e4a6f76523f6501ad32

    SHA1

    2087f2c84edcccb269305781cb98087b53ab0ab3

    SHA256

    007486a57258aab8544911619fd71d304998dd0ed85cc1a9f4dc79a8debca577

    SHA512

    5b5b48fd33b912449e36730dd3168719b53d186ba749bbc2ddf180bd1d507b0bbbe9f532c259ddadc3434d7fe1195c0718dad77d60af1fc48588856344285a4e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e311d0fdd7c29b92bb0ede3db7976271

    SHA1

    92ebbb6d19b3f0a3c3d5bdaac47358fe22b43980

    SHA256

    c6c48fd76335ed4954be85ec78785ea14d4ee76fe30f8743853f98b02a75508c

    SHA512

    4b99d9113a9aa8d43aa862f2ed8ea71b28b937a18cbdf16b146dbd145594efdcc059f0beda5b7eeb7ff88a79a20b0b76a81d1405b5aeb77b09d7fd9cb6c9c8e4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    25e72de76b0de58b08fdd4a6d2c478fa

    SHA1

    f29ceaf875a4cbdcee4eae712473f128e9db9878

    SHA256

    06a8faaa1928efa810bacd54452780d968a379f23c363cb7c09ad666ded40b9a

    SHA512

    48ea2147285d42b62b412e18936838a27029d95b47b899aea41f6e5ed65479813b9fb26360aa0af8de38a8be2304f268fe9e0c2ba993d45b3b964695c0b735b2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    65a085b3721d3634292660aa06f20bb4

    SHA1

    552103b5b1ba5ecee68a6e4b840fa4e0428c4b15

    SHA256

    eaa2c8f9b03322d000a79b1acb052ed42552313baa0616552969fd1b3c830048

    SHA512

    6cd82e4ee0a2c1bab23afc6e172e02fcec7b2bfbba4f510ef31262ed67b3b9c403d420534bc45e80c44d4fc6a0458713fdef206610949a2704b13dcce5977680

  • C:\Users\Admin\AppData\Local\Temp\Cab2475.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar2566.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b