Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 18:18

General

  • Target

    a1b454dc86cae5a6e90f5277f6b94c78_JaffaCakes118.html

  • Size

    16KB

  • MD5

    a1b454dc86cae5a6e90f5277f6b94c78

  • SHA1

    4fc98f09c13a2778789f7a84e66cf26d401e9188

  • SHA256

    79c13905c19fcad9e3df2924fa9f217b5c92b1760ced2bc68e95843c761222be

  • SHA512

    ddcc01a7c1554e3e8203e82f049b35ad7de589a946f94e11de1fb16219f3f0ec306397252374344676707c25177c2a48f866715b7acc383bdb0613767eb78265

  • SSDEEP

    384:Skd3Uy2ZfzG6MnaeyjyWXh4+rb+lO+rU+JG+y+V4E5:Sfy2hOaeyGWXyZ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a1b454dc86cae5a6e90f5277f6b94c78_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3056
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3056 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2924

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    17fc4c8a27dec789c4e46cf4ad5d3181

    SHA1

    0ae1770ebdf180839dbe7e01c656eebf1d041c9e

    SHA256

    aff4dddc916eba0c3a4f965636350a8abce28c7fc5cda0bc2da606eb5628f86b

    SHA512

    9a08278747c52f15024e11eaa12f12dabef7058b0ac4d21761886db684c0d926b0df7c9e1aec2ec6482bad9eb7a52e9accbcaf71f89f30dc0bae0cb4782843aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c4962a148e45b0c47f786bf53d790c0d

    SHA1

    38406ddc0222e1aae8d0b76b0ef39fc0cb60193e

    SHA256

    e23c8e9f3edf91a58f1d5f2b0e58075ddcea619dba7aa207e967fda946788cf6

    SHA512

    fe8055736864969488e169c8a64d44dddea6505630969ec6f72c21003a196e36e5142afd47f7380127350a4a4c640bdfb85448e5601640f345fc4f15d7376796

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c5dea10fba95e63430c2ec88fced2c9c

    SHA1

    934bdf7ce9d00ac4d9eb3ac9a7fec8af5d37b716

    SHA256

    32025bebe5ab6aee883a6ece0f7d651103a73024911b542a0c857947f4c58fb4

    SHA512

    24ca2dbac150400450a17219522899104fba34cece98bd3097426956fbfc6f16d3b450d59f41c59c6156f36b3314e43309df00298a02a818d505c4c646de94ec

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    99aecf528ed3f4f04125344861fe3ae9

    SHA1

    72f83950d2fe7b8a1c50a7588686c5f677e7cfb2

    SHA256

    32f79c64edf19924956f64682a4a1287243093debf5adb371008e007f167f1f5

    SHA512

    7ea780b0c0045ef18e262081ae520b392e5c7d8f20546acaac330cc15afd6f22f881e31c6b894f217d9726abfd0c1c58f042774ad729f335d080156f92956bec

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a4bd753f5859a44ef70ba1288572616a

    SHA1

    04d9ba348d8f47be55f2ff563064abce798eaa58

    SHA256

    f5e3ae2de5d2d97673a2baf3af2169532d12875b75dca3cb2edcaca63130d94e

    SHA512

    7a681f285465464961ad1637ddbdc21ef1ac4d7eef73e99effd4c4a641186140a30154b9bef116247a32a593c52623633365016a96b07aa46e9a73096fbe2dda

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3b90b712fe7ec98a5a084d006930bdd0

    SHA1

    1f03626183d75565ed47bb00089036376d54c3be

    SHA256

    84efe7a16af6e98cf5dc186b68aa226459af5e626485761c6a66f3414a2f7e99

    SHA512

    c75f2b378d338bc46279d935aff7c1c70b02a1a4b6bf6b96d78c9cb53d3c3034a470630953ad2334cad89ac489fe7d66b75fa6080b194581b4c50cc034948f1c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    50baefa95892ee7a49c6a2545b135e3d

    SHA1

    0f07bf3b3449bb18ef0ddeb17bac2064842f90ca

    SHA256

    60e7e0b4646db76fb62fee1194b8bee9069b0dac235231ac35bc3dca73216d92

    SHA512

    1f2c54be28b6ed099c90901f536c3ea8b562f8411483ea24a37a1679289172af3f7aa9f51ebb1b51a4874782ef2dbea539499eabcf0d348873b251c3bc870a44

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    00495d7a23504b8296f073fefbb987ed

    SHA1

    cd192392f696850d0f0b4225181628bf5a69a697

    SHA256

    cc4f54032de744f49723cdd71afe2f81351e451da873036647f7069cea691758

    SHA512

    783b42ee204960de0423ea7c7b1c562e1d1ece32d9d119676dd1a56015629cc4545bca53b322216bf5265a36e2a5fafe3c449e5ab937f1b4a2ae056a262b1c98

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    acba15927e9f8e571cbfe5d587a5f6f4

    SHA1

    c6d1dd3ae4f0f780e8bb4178c8f6d583a6dcd918

    SHA256

    1f04398620a8ac73d94af97945efcf1d46215c1f4b1d72adcf3d96855e064d60

    SHA512

    66fd61c96ac132dcedb141954a572387ec04ff77e45d4e2b1674791d6f35adb8d3b1dae68387d3ce5ceebe6a3fc8adfcf66785302c8328da54fab753fac4ff2e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    833c7cb164b027ff05b284fe3534999e

    SHA1

    d0979d2393d50b4174ba9e149a2e5934c0cc2e18

    SHA256

    18463c9af004e2e156b22e10ee742ec2c6ad9974ea71da8c118adc65a9ab0317

    SHA512

    b895fe0c3b5a627f1ead4106a8e1478b78362588cc4291fc7987c0339f6834a5110c09b7a8681abe0888140ca9fcf6797fc0688cf0ff2caeba782f7815f8f2a5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    630d937ccba35eb7002ebe80e7e3bf51

    SHA1

    e01c05c31ddf6b7f1666a92c268c2b4cd78d3dc8

    SHA256

    146481a5558f6ef9d678aea75ae596d88d692a248cd45295fbf0dfa5637d2c5e

    SHA512

    dbbf0d8cad0f0d591dbb5492a310821a6e12cc627b3898dd5df0bcef33f0ca12748cc57c76ee3bd20415ef7a77a32b0f34d6179c750893e714fbec2070248842

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    075e51d563dbfe9ed7e061c249801642

    SHA1

    5b734cceec108f879d944ec48c4e46f088fa9b12

    SHA256

    e35e98bfa391a5435a479189f9004aa4ca1e2eda9d3a94c77f7cd1c241bdd347

    SHA512

    92bf038f7df6392f44d864d413205c1b84afe2bf5c4db2c26886cfffe6913816fa7e62a9caa29f518888ad5b1be837dcc457a63f4ce52f6ab26400e6afd8f7e0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    57cde30f2b3037eb06852ba19c962d93

    SHA1

    921e537947b512aac1ef055ef25f3f796f8ec754

    SHA256

    1dcc269b8d1a5793f954c7335ae6a186f51a4dda7fdaaf66d12e2d8e68963a92

    SHA512

    0f89286a36ef8bb449c31b0a1a77cff7343e8786a712de7b309c74a65dd9f4c8f5fc839854f5fb34e023ea1cd29fa595e2a25e8c6e1a5c1d0e12fb795c6e78aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    76bfdacc09d7c6f1e1ea4d8a5653a08b

    SHA1

    e2847a357e2ab3ea9e1457553c2072180b456f8d

    SHA256

    fb78fef82ba9cd542edc5f123c363592f1f452acbf6f71492599a806a144d3b9

    SHA512

    414a9de01d720d89d06aff502a4bd176dacaec9ee2e2380306596f9011ee81988ceab774d9a5046cef51bc35b2e939260dee76e6ca72f911e9bcab87266e34d0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fe9d44c7943d04383cf6f4d25d7c3ac4

    SHA1

    6fdd6db7f5c1c9d0c654cfa3be502e59dcd3618d

    SHA256

    14e005f387b2de43fc32fe5ae667cf52dda07c71cc236e475a205912d11f565f

    SHA512

    01583899cfe1061bd71d0951a616e4bea2d9b3ca89ab38e6677718c0cce06266e718726213ce2ffb08d278f5c8359855155ec2cf78fc4fe772f81b7ab2241e0b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bddd48d03dc7e62447068b453b7ce79b

    SHA1

    33967894febfe2679b8894bc41ebc17499fa6781

    SHA256

    61b8a948e38c0c4fa93d73eff291c6dc3e3fbf7d1f5a00619c37a6a870016c36

    SHA512

    95413317cc69d8391da3e95b6985d5d6c2eebd54bf5cf0cb0480e82797521852584c2c95c58f66b83231331cc3739f7eeec18f8c4996721aa8eb32138c3a410f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    967f64c6c8f7d6255a268ecfe6071130

    SHA1

    8701232f1cba73819850d28f4b252322e2f7e613

    SHA256

    62c2652f20b3d6c051a129b543fb10b75b8a7d3e17aec2fb0bc5225b80936e98

    SHA512

    efd871d9e225d99485b877a02a6539dd764a6a4770653a536cf4f51bda15102137decdb22ba277282c4ddd19d026f62d025c751adf292e96b99c80e78918bfdb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8634889dd3453296200db47f0a5428d4

    SHA1

    a3b8091e84ade487265ba101150067dce4d19f3f

    SHA256

    9d8758579505fa179b6f7ffb76c63cc7383cf707605f7b202adcaee75cddf536

    SHA512

    d90afbf0639603ae40fefaf0f8a5cc883e03e0f47465acf30a671346e56e925d053647de84575b8a23db8aa3dac2616cc6572ca6532dc1fd3ae222a444a8093e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1ee9a0031f4934a05a1c0269d61bf6ab

    SHA1

    11b471675d9abc2747e00a723ce6c420eac5616f

    SHA256

    55dc4070ff03360e91743ab62c00eb675faafe1686110f3f2ce6cc1cc9fe0efc

    SHA512

    f157abf20a23663b124542dd58440980440c035c5ba69db5b431ccaff2f1cb2796e8e2f79371021b2258178226e2b5fee09c5a0f43d03c04509d2b92062f0651

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    26bd98307f0d4e6e761e4880ec037585

    SHA1

    bd323fbf03c2a5e6b5c6deb83811237e113bb407

    SHA256

    9ec8534ca935ba9253023a93887ed5f8bad33e347aec3d628a62e8847fe8d420

    SHA512

    00cdf7690c36d2571ff4bf16a80060c3b8ced2b62f7df75d79b60ecbf669fbd9526382237a241d498fbd38cff163da4432a47d2be11ddb3cdb1cf20e097514d9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    a39de399d88c5e52d2fc2812c990d416

    SHA1

    bb030d5ecc6a7e3d93aca0312cf1ba8333e4013a

    SHA256

    01e3df287a71ea2a224f74ba3f261c988b75ed651221169074bc15c232c1ec1f

    SHA512

    4d3c7c05e759695bfbe94816ed83862860b72210ee0d65befae93455158c2f3b685bedc0570667bedc0f431bc0f347072756a0d6d9168ec3eb542d3ab32ff781

  • C:\Users\Admin\AppData\Local\Temp\Cab21F3.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar21F5.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\Tar22D6.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b