Analysis

  • max time kernel
    134s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 18:28

General

  • Target

    a1bdf399f7f4b76ac4368bf48ff7da4c_JaffaCakes118.html

  • Size

    67KB

  • MD5

    a1bdf399f7f4b76ac4368bf48ff7da4c

  • SHA1

    c6c4d24d267b7656a3667d2f85c25c2e46e56c7d

  • SHA256

    b16c7ca1705e18e155f1424f1c9280f6afb8c91f22602232222ff1ec0c185d2a

  • SHA512

    8e9693b862d27a707a531f57ac1dbc75069c8bf2d8b65926ca147061732f4a65e5d29fa86b5eab391bc77904b52f9f7a5ac6409b352136a2a576ebe77cf365e2

  • SSDEEP

    768:JiHgcMsSZ8tN99OIsUvsr5MoTySqQCZkoTnMdtbBnfBgN8/oygcR/QFVG8c//IjW:JnWhUTYPec0tbrga6cuNnzIjv

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a1bdf399f7f4b76ac4368bf48ff7da4c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2924
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2924 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1712

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    660b6e28b38ebe7e521064e60113fffc

    SHA1

    f2c25e9f931876bf6834191ec5b409f47f869129

    SHA256

    3e203426c4aa1403e940966905320c612ce4006cc87e03eb64058eaf6d402433

    SHA512

    96868e652d5e0c25b4d0f0ada20d345115f0c6fda26d3cab724c0c1867386d2dcedc408c51f776b7e019ce2e22755017d99bf663cdd9fd0d88b26182c6434bcc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\4A9377E7E528F7E56B69A81C500ABC24

    Filesize

    889B

    MD5

    3e455215095192e1b75d379fb187298a

    SHA1

    b1bc968bd4f49d622aa89a81f2150152a41d829c

    SHA256

    ebd41040e4bb3ec742c9e381d31ef2a41a48b6685c96e7cef3c1df6cd4331c99

    SHA512

    54ba004d5435e8b10531431c392ed99776120d363808137de7eb59030463f863cadd02bdf918f596b6d20964b31725c2363cd7601799caa9360a1c36fe819fbd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    ea4be6b95039154ce35842d0d110fd77

    SHA1

    28012158e80fbc91299cbbe05c9f59ba231f6427

    SHA256

    6e3de71f82ea0d3d6c8c54a1454c56e3fd2ae193e148f9f9987aece62f0777fa

    SHA512

    5bb3ebb749105c846e10956fd0b02eddbff90a88bf71bc4427c8a443efc9b5c33b2789a5d4ad324639e95d9e6d28f6084be4f40d17ab2ef8cf614755436463d0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    48f70659f232b631f1cb4c2b4c5aa8c9

    SHA1

    63baf58266c90b1e6e58a6699c8f80e8f365835b

    SHA256

    c397c51427b5c25e60aba61e2047cc38f493fdf4523ce1e2b437c9e314849bc9

    SHA512

    328d3db0eeaf415ebbbd505d57b396ef33010a4cfb8f7abd274c6d902bf70db877e212d47a52bfa5fef4fbf8209e2df2af9254ebddf70ada1d76361d297cef77

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0db8ad59f8201b0a585820eae6ddf405

    SHA1

    7d74ec3295b601d66d45dc902b511c7ec5ddf3bc

    SHA256

    93137886670a571157b0edca4f10c863379c82a9ce6dea33ec219eee5376c8d8

    SHA512

    2b1f77a7f9dcb9e49515712cf9b55be9f354820adab946fde1663b237219c95a980c7d390a41ac6e9a4a70568ad3b96892c2228b2c8cf60a04743dbbc1de05f7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b676cd674a24dfb0d4192943ad2422d9

    SHA1

    61fc92948a82041adbb97a401624209f17a589bf

    SHA256

    0388e2d00a6efd9dc4ffb16a351521c06aa4700c4e60300e7c2a116cac5ef2fe

    SHA512

    541d765e2f89286c59920ab1852da4a7c7771fe11fef675b5bab1194a375b2fd4f154a5d7b31f1498f98cde1a9a1157c2e831ef7ca78d74d404b8672ea61187c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2acb504c139ced3fde9d06f6ffa48fe9

    SHA1

    52baf15aab80c33add5a6e9cb494e3cb6ec781d0

    SHA256

    d72182464e011ea084d011591b5ff5a9fc6c059b870c9414897562203acae755

    SHA512

    dd6acd53b63036de61b451f0f81313960ab7a22b34ab9b43a5c8cfa2f9113c78b7f1da011014c75cbd3692a95c195097f85a188bc2df54ea953760a09405e11c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3a6152ede4ef8a68edf9a21157fb0e6e

    SHA1

    e3339ab6908d603996d9c5a501222d450e1e2e6e

    SHA256

    5a713251f4fa962c7cc64e253cd428ff793ee69f26c7098dc4cf49d5a7978bd0

    SHA512

    bc92c93123be449dabe51ef1976459fd8ad77f430586916acfdb13bfaf9eb1f77f8f2a282ab1e72d9c351d34a757cc2747f069c578582441eb479f88b39cf6ef

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    df309aab7338df302b695c2fa92a4fb6

    SHA1

    043dd41a17a69f2eb58573930b770c9bf5a55b4a

    SHA256

    f0a197b0984b91b5014e4fe4c52a887c00cb1515fdd3e490f8c1183600ee1fd7

    SHA512

    600150df8ac5de1c2e57934375a25853819081f2297e3463fbf43769e15384abdebc94264d90b72ca939fd21737caf3ae0bc3afae14f392bbe141bf681374ff5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    18fe35fa145f92201b99a1f8ea8a4079

    SHA1

    e7728997da939e8159f81cd5db27bfb1181a09c9

    SHA256

    9c16ffe34b01b6e985ffdb782f39e4582708f9eb97c05f927c1a7d213dfeea9d

    SHA512

    e9a748f648ee548a99783cd964982fc10f95cb07bf598585b7dc85cf498d3bcfa21d6c35a4fb8b2e29033cd074dffa28e9a55a5599fd230e6e4532187dc4f219

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2c6085e3ed1aee4004f76c03f2b77c21

    SHA1

    3aa2a2936059389b7ecfda50b54a849cefbf422b

    SHA256

    2996814014e673f83ce433a4a4b09ced4414e0272d3f216544d788049b003feb

    SHA512

    fd7a679a8271ab8fe711c5a355809927bd0829cd36b0a683276cf8c9aac556eb49094a21ff22485b6ce85cdc668520d27bf7cbb9ee68ef32521cfe2452231c78

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c3ff10f1949acc14c948d0bfa33a4d8c

    SHA1

    f8561caf3a5858ac38d48a8754c835e74a1df6ac

    SHA256

    9865cb5fa9116740a94a5aa7b858b57f5b32e688a36f7d22002ad94aaf3ee459

    SHA512

    1ab821b63dc208e45572c7f5282a5e53e3d0420197aa9b0de12ed458a646120021973342973781656bd88edbaa02b01a7a3945ee4417c2384c730c916456617c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    af07255128b6df0ea44153dcffcefd39

    SHA1

    4bce4e880b674f9dcdfcb1c8c66b375963575bf5

    SHA256

    9ced53a190542d38a12edcdfb39164237e14bdb81a6d8446db8ef28482a3baaf

    SHA512

    3d9d8c55f892c18117252dc7f0375efee29ebfeac2a60c7a26515954c103bebdd66817285261eda337d1eadad02cb81143cdfeaf54e82258614e9a1beee879e0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f872abc81f1f7089f19ae798a1158fad

    SHA1

    2df64679681ea9d476e18490568c7b9d54f15eeb

    SHA256

    6069bdbbd764cd8b28f4d5a7f18fd2c9bba5ba4e1a4b148000ae04ae3d6083c5

    SHA512

    710c5658967faf9b189edb5194fb685e2a49c414e08426fa43975a5a638bf75abd8df93e59400b986b51e3e8a7a4e51187eb34d1a128ed38503bd1deffac854f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e3d698ce6669402f68a642b041edab1f

    SHA1

    c248f361aa71755accdcad91a10ffaedd429f30e

    SHA256

    44bb9cff61ec0489e2a3c7f830f20c8a66771d385133ef3be9580d5432f83315

    SHA512

    10a6d0902fd7cf78ab4f1a3a5f261c6f4327b9d886aa11a376b3cbdbcaf0e5591ee5f2d8128ac6eb9f47c30a57c92840cfef2e1d81a40bda2decfb9908f771ff

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5e6ffbd2d3fb1e4f26e52b86a869fe9f

    SHA1

    1add8e0318e5dc588147b28bee9c16e7b6cb3b6a

    SHA256

    e9e12593e242f950858a18ba1e22e101414b1ca6d98e5da7cc7f5539b8297900

    SHA512

    c13585391e8d842368c7db1b0c218c810e33c2d8049a57453b845f3c771fae60c274e6eec95a86b7878ef5c73b69be3c54baca775634e619493406b456e4bfc6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8c2c0107650d658ac4e2265c59e18a07

    SHA1

    2564e81afbd5a4b82119c17bde974097b4affcb4

    SHA256

    eb1e14fa72ba74621507f354855accad2ab2ea193732ce41e8c6682899d6ffdd

    SHA512

    5ba3fe7deea8b7cc425ea759c03ac7855b34bbe7c56b2d0af2e283044229c6a0afa0f4dad5145252a247adda58ba63d9666917b54c9ae91036d8439e68b56096

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    efeae574ee4d16a448658c90e272b8bf

    SHA1

    8b600a192b97a1e2b774d16299f57788a45fc4bf

    SHA256

    e05df938ac2f77294c9ff6a3d2e36a9f45efab5eb586180d767bd2f5b8345773

    SHA512

    132b721515eaf2385a3614e983c032a271122110c23871d91af8dc08b6aefe3e7423d6fcbef36ec99865cb685c6edaad89f5d28af2c9151abfaa8e9aacaa60ec

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e00ac65c480b0adada13b6a262f8dfcf

    SHA1

    b2a78912fe0a8287af5ebc68c68b79feda8edf00

    SHA256

    f140b28fbedef2b4e402dad9a7eb1e4f2da7526cc0f1deecd9b324865e402429

    SHA512

    4ed651a4a02c101ca2a43ddfac5786f0e9b0f75a5927c3f2f08d1d46f839bb723f3b1d55dc3616f76bead81add4ee0948bddd9119eb18c18f1016ea5e8256ef9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    07b0a5df8be77e2035c423096c77c4fc

    SHA1

    8826ede89f67b60dc2a7ae0bce658f679e2e53c1

    SHA256

    6a0b7f2b0407b00811b98841e3cec4dcd8dea66510ff288e4baa3d6b04533704

    SHA512

    60829584d681573c05d7da467a140faf8c47ef114586c04b71c16526fde6b44dbdfd9e094e895559c0213dfbdb92208909760a989e115a89a478df1c769d53f1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    299dd648fcf16f966b2e3d3b20d55dcb

    SHA1

    316b04bca4593af7ab6a470a3c58314760cbaf5c

    SHA256

    948d89dd68b5ec0514aa67565d6af3b3e91078a180933edd320b85a94e151bd2

    SHA512

    4fe648683788de1a7bc64c0811df1935bec312a444da2a6a2509e6c4f12cb58af2f67ff7a48d88766673a3520a5fc20a892c8128352eedf51f9773d77bb5c275

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    02e52e14e3cd6eebcc75c5bd60d473cb

    SHA1

    09baa1554c9eb3d8376f8824faa596a3599a7ade

    SHA256

    73498ca2f43a693b8cf3b4d84e34455c0b30d3ef4682da787e881d4d982bd05d

    SHA512

    2fcce86b8c9bdf085ec1a3774bbcae051b97be2f1a3412eaf302cd4a099aca0140841c27c733b8c854469de86447007cf9ac5301b200b844d4c6566d1afb2ae6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2d7a57c5562766aaa04e932bae604b04

    SHA1

    248f116c45315d0565252e147fa376e9fd722b98

    SHA256

    9beff0f0a2f009c5afd73f331b6f8f358dab0f2d138e80ad3b75042f8e7bef30

    SHA512

    3b62d760dec0e8fdf8431b714a2bbf2a84b77bef5cd03a4b56a0555ca6a092be26ae400d0090dd9e6fafa0234f87cf5e5fe89619b43ac67622e7c37060e2aee4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    392B

    MD5

    dd985d245c42bdeb0a464b96f5b73817

    SHA1

    f5f75216fc4e5e922a1019911e5065542dd02a94

    SHA256

    d365c92cfe664dac675e6bf40db44bdea377e736cc6b80f930dbf79fd4391a5d

    SHA512

    f1c75413bcab3c42e190ef392753c3694d909c045807cb7dce14f259e4a765e1c1ecab3fb90277c9b417356649a2667244559f462edce2d1f0902669cf4f473d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    cfbc8f134eb994b3467d24ede66a1e53

    SHA1

    8e52446a4807e5dc6b61c3fac5d01aba3bbf3195

    SHA256

    4990b0f6825fbcffd0bc1d4a8f901a6d88e49bf9c61aa33f24465a8738503d20

    SHA512

    c6f24bea325de205fafdb47c21e4dd0c46495a324c16a2665704826b5f74dd72d9060f2b58d591ea4acb9ca0af96f6d004e1011811479fb448a0269563174086

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

  • C:\Users\Admin\AppData\Local\Temp\Cab1F15.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar1F3A.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b