Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 18:29

General

  • Target

    a1be5742a7a6687001167d3d37d9c09d_JaffaCakes118.html

  • Size

    40KB

  • MD5

    a1be5742a7a6687001167d3d37d9c09d

  • SHA1

    782f74f7c8fc3b7ef53c9d398f49c15ef59dd65c

  • SHA256

    031e7c90ab786a4ebe41ca8daf2a8ab8c30101da7d53f9f4c24d59f39b1cabbf

  • SHA512

    324ae93ef91514cb9f61d8d40c09d0d7bc2fb48abb2ed97755526f335150b5ac1b0c88c6287a57bf956897002b380dcf51f04de6f7192258bd7e9c8d32817040

  • SSDEEP

    768:Mc5LSLyLTfL/ZRHczoRHhHL3HLfkb/ac7sS9SqALNmg02ZEI+oTGIkvPBTJh24ZP:Mc5LSLyLTfL/jHczoRHhHL3HLfkb/acx

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a1be5742a7a6687001167d3d37d9c09d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2156
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2156 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2608

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    3764ace9f57570463d0f8a9c476ac94c

    SHA1

    9008b333c00b38d315cbd45ec02915fa38d4ac5b

    SHA256

    e8d8e812cee55ab8b02929bd0174e3e77c3404e199e03f8eea967f0adfbf76c0

    SHA512

    94472722bba3e8097c793b7d5105f027f19b24e0d76d12b5e2a40ceb2b0a43bc584165041acd103a419aa6c09d36d42aa1a2c747efca1e32d0a88900c8c925bc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0b598c539858f954aaf5a3b49dc21438

    SHA1

    a72204d52c08b8c18dfed018a809b6b11c9dfd89

    SHA256

    3167c5329bd63afc295ced244030a9630d08a58df4f5a797b64d3dcd7b2e25e8

    SHA512

    dbd4461f170df863a545655c396c3637fe28db05ef14faaaffa7393f1222551adc946ec6052d3d894a331360c03ba13bc24ff5629201b4cabd3fcb44502231b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    312d82a25b6d3c702d39930e32de1584

    SHA1

    2b2036812629f32169d5de54a00f44bfa633534b

    SHA256

    ce3f730058b1d62f260c31d39ea6290d2ff33b9d5273845e2a0305dd52be2736

    SHA512

    29528450f016af8fc81f43c6af4323aedb43dbf315c0784a71c9174d2c7dc145e342fe041b310274453411e1e7339bbd82b47e25aa0603a76a937029bf727844

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    80528e7bd203507bb29a1b8b34e90394

    SHA1

    031d7cc7cf3de28ed2b5f719db2d88f486ecccd4

    SHA256

    40d25c3ae30e1e753a60986af189abf5e7f5d13e941fc26564cdef7c6d9f2371

    SHA512

    d2bfb171bd18ef4b2519bc40cfcded2ed87823fc414a14f0b1e3f33d37818b3bdc8a860a04224ba4f7b34ce8169d847dc959b9d939f7d19cea1b0241a13224ec

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    da73a821d01a8557d41d0a979edec7aa

    SHA1

    56420700e943861fc3d3083e33c9b9ba5e1989ca

    SHA256

    70338fb36673fab475c9969c53bd8fbbd9257d7ce87ddce849359da5c23ba117

    SHA512

    e57d86838489b62d3d54ee7234d564362ee6ce27e7b4444b41d931c2dd5f6f0de4dac2ebc671d08519645d5a2d5be69dc9f086d0b7fc040c718963919fc40496

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    24b43a7d811be205aff52376a8abc1a5

    SHA1

    904fced2c4f3e0da75e0c600dd4f4f42bf84b9f0

    SHA256

    ae34431a068dbe66dfa1e146a0623346c7a6ad2893e3462f263ad8d6ad367833

    SHA512

    6b4086e5726137b29b9a26c14f315d5f3baccab64acab1748690d8641792ce2b2f505059b698f8c2b686b3faa626a02b57d0d585b38ecb55aa7de34ff873a2b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d2fbc2b071cc8cbcd7948a32ef869d4b

    SHA1

    be9ec2e12ddd2ce9419cc72a00dadaf92ae570f8

    SHA256

    53f64d39841f00ca76fdf1249f11a4b1461a4a45df414f1fbcfa671c9d4882dd

    SHA512

    f0605626fb1274831808658c554483968365b495b001ab9c4512d0f2f5f963fb5c65c84d10301128e57340aa5a056130a6bf6a4ddec4eba0d9f7fb3745d8ad14

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    12fc2237e6b9b24037f8a368cc4c5e0e

    SHA1

    dd8bdda066bb1cb8ba2c7e4b142ea6c5f6912c39

    SHA256

    90aa3a38938958e900a9eef1b0962f096e5d1556ac009333900ca0535b50e515

    SHA512

    861cfc1caf056c72bac9a0764a2fb0e7df9ca3981eb41545f1bfe115a6d143ffa21b2d5601b887922d0d32849ba6dee2830b46afdeda72441ffb63e309740a3f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b315d17b8ac927d61a520ad855cbfb99

    SHA1

    0a2282cbdacbee7f9f02262739452c78ebe8e035

    SHA256

    87246757c4b29a7924f2eeaacae41c776d7ddd9c48ecbf0c2ba08c973c1e9a98

    SHA512

    cfb2a6e9f4c35800e87aa551bd264ceb3ec73a98a4c2b199b91da957a77b948abda5e406ae40aebd66a5729ceb2fdb01d03b77abcbb01d2d11874f70a8778a9a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    44e2a3348b661ffb396632f4b469cd19

    SHA1

    76c9a9149dedfa9743ec2464e03714251806a6dd

    SHA256

    b49571422f74e7aa6f00934665f598feae5a956ff18c21f4d484272e18bed147

    SHA512

    f7dbd14b06ae06cf2c22df11947a714e0989e12af691c243f579f368c633dd4db2f74c116a04da684eddd5826035765c336aca8b7a28c7a5b68e28d4acf2b97a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8fd808b3d9a2aa39ce3b88cbd0ba1f18

    SHA1

    de7f41da1174af7c9ae28636e0d725c586330f74

    SHA256

    c91282d0a20ee256cb6498e01bc255b17c6419bf5ee2b9657cbee915ff8cfe6d

    SHA512

    0123d194d29f1259b18dfc7f454482973f5ffcad5bf166a39b00eee574d64af9a55a87c6167864becade07740f4fbf10ce5800c38c066d6bacd1ac1e5c15d7d8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a6a5d19bde172dee77e161ce9902aaac

    SHA1

    7553c10d7a8df2e1b3fdaf18f62a4156adb0d7ef

    SHA256

    39fa32bf25b5e16f9d516b808ea8f658ee2a0452c9f76689dca42579fa8ea220

    SHA512

    1765169fa33679cb5711e7a284787bcbb89d6f4c90d4d0f520a4f24a032db386834489e41abadd2a0fce953eb81a925c5b7b4876a99cbfc22b56b499d0683ee7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    01a02bcd9e954eb1900ff3f3e3e10e4a

    SHA1

    baaffea0049619b267c7179a270e20f313e193f8

    SHA256

    f5d26c316c2b0616ff6d0f7033ebc9b05e9935436032245b84ab19e78307d1d5

    SHA512

    9a5e2befaab86b394bfcc7bffd3ef6a31ffbd8469a6f8985e3747caf2407c1001e5789fd7bab031806dee4a89628c45e996973576189f39def1bfc27db56d18e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    99154a66285c3e517dad6623325a2fc5

    SHA1

    d37b067027865197500ed5f9389ce048ef975365

    SHA256

    0d0be28302528e5441ecc46eac22daf7efeaeec49198d58447e32561d99d2d03

    SHA512

    04608afec16222bbdb4d3e2f6183e6cc40a862e3d0d474041aa22c4b7878f73c33a5e6ac17072627046d6c4a57b4cabc787ab0685cf47bcc7922f88cc7fe9100

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e067e0a995d4393028ecd0c8d58ede3c

    SHA1

    8f6e65394d4fcd18a73b5ca8d5e579e73db6d71e

    SHA256

    a6dc8950300a364e44801458fc152a25c60ed1cdcbaaecf47577bae6176f2686

    SHA512

    677a33cf4e7736dc8f3d23748fa733d04cc9ab5e18427a1883eb56a1bd0910dd50332336af125821734ee056262cbaf73377fc4f26952d9ccb7cd1780f111275

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    83f9e8df41901acd11e20949fc2ed586

    SHA1

    4289b203c0932c97816f543e38412ce3ead8ffdb

    SHA256

    045bfeaeed1e1aa3fb97cecfa18b43ec07a04beb5ebb25f5a527da54206190b0

    SHA512

    77f1640b9f33e77b711c40ac65af01fdc125657e80cca559ff01fbe173dcb18dcc4b72a21f502410637c6de91789d28399a08bdfa8ae4c027247dce8c5fb6b5f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7e6a5360b957b51aebb3f571e172db6b

    SHA1

    abc716dae1d185a345e46da8f37cc03c3bb130c4

    SHA256

    7a85d873d54c4ccbce7caf69f96d825c844496d8fdc10004bcb81ac47eac67a0

    SHA512

    3fc43ab9646b49add769327d1e92df11e475b59fad2d146cc53cd488bb9429c8b2906e5d1e7739a170589455229da2f9f6549d609a64b309c4707b2ae7293dd2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b0660bc56aef0485d6fc0624188d1e34

    SHA1

    c1d0b7f2c483ca270812e9892451504f486f9a25

    SHA256

    854d5c87bf72678cb9f269e50c8fad9819da0a043ee359d30530301b96694e3d

    SHA512

    34c5d82c568b8be26d7d3f9230bfa7e7880aad4ddb88f700f71f89475f7baaf774ddc0fa9e99a2fecb4730fe290b3fbdae0053cd0c76e5f61aa9da54ab057c16

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    511e0d5e4ac6f22b9a42bcd322ef3547

    SHA1

    349ed5a6f1dc6f27dd68428f92f187e68985df44

    SHA256

    9472b0d38db875bfb345cbade0b8fe8fae62076142958fa164ad827f66122ef4

    SHA512

    ba36313d4a3a496acdc75c258ff36cf3d964180abcaa56784e9cb44db2d7d28ca4910405264b022d9cf648acb2373f0e32da6c6d5aa9802dbaee8d194fd06659

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a3df7200348246fb182093233d342816

    SHA1

    cb0545226b1c78ca4ee4fb89dc725a92f8e9a023

    SHA256

    fe2232038c0930bd433207e2df9c7efb49a4ff8d86ffe88f4407921fde7f74dd

    SHA512

    d76e72a429ebcf13aed4672cdf6e06a471887d056a5caa54fcf56a046eba9ca89274d5d79afad10f1ab8205966cbf83bd2c58e9492f7454ee7de05a34081df61

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    446975464d6232d99f24b44d35412b92

    SHA1

    64f8426a45c7eaa983e926459085b69661e1e629

    SHA256

    bf65fe4937eafe1df2a57e688a1475ca891669917e796850ec257eee384eee48

    SHA512

    3a8c47cb86c9c61249464ce5aea35a37d727e8db4e954cb8257149e6e7162e6c357b37f3941445ae4c53de97bdb7a9167a4da3eeb653ad911a726bad9e73d674

  • C:\Users\Admin\AppData\Local\Temp\TarFB1.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b