Analysis

  • max time kernel
    138s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 18:18

General

  • Target

    a1b3b8d7d64e83dc069a3a6c836f7aef_JaffaCakes118.html

  • Size

    2KB

  • MD5

    a1b3b8d7d64e83dc069a3a6c836f7aef

  • SHA1

    06e2687cae06df55564d2ea974f16b456e5e34b1

  • SHA256

    2e2cacff48b72e9011aca112f747ba4005255448b9a7c8b9167e5ec87556707d

  • SHA512

    507eb232ee6dc71efe1352377159ac6365760e0c7c63933b9de37ea413bab586d0a34d70590ecbbe772a195d488e56616cd51027f0c6c5ee82ed5eeb47896d6d

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a1b3b8d7d64e83dc069a3a6c836f7aef_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2236
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2236 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:844

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    54778c0a4e122288a6abac9ddf4801ba

    SHA1

    334d874e56366ec7d70110e34f8b66e069164c5a

    SHA256

    78ee0d7a850fa3e3fa362494db375a8df7c619dc14f9b1613f959f6f683ac2ab

    SHA512

    f05d42f9f36c665a2773cc3bc1d8e085a3f82fe856bf2589d78864cdcde8c01541ae4d5b35226195674eacb4c624f1a65c296d7d62b712adea2b1261f1b7a049

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6a938549173e63669fc7a3076d6ff541

    SHA1

    ad98ebf777a89a722cb404924d6fd82839ee848b

    SHA256

    e188c3dca817572174a003ac8b2a8b4233bbda5d509eb4e68187b4f5cbc046db

    SHA512

    79912c8b504c52406fc9775313681afa8193f03e21479dcffb8094fa44edacc294d194192e8e9617f8762ebc8e963aa3a30d64464becc9c445daf23c335b57d3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5b714876d1011c8b3e242e1103a485fc

    SHA1

    3bad9a1d839a9a0f0dfba2c47967a39b405935fb

    SHA256

    3256e3d0f3c76e62138f726074d2cd4b8f115b93a0c3f84d713f9e0f0ce00c20

    SHA512

    2c6afe678e900eb2927275cf49241153d63f99b0b8b6947baac36c79ac2adfd7db16e6b2b52e2a5af06bcc49b7f33b51188cca0734a991fb021da94b91c5588f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9b0d0ac6a28dd4ec859096abe44e7648

    SHA1

    76e028bff1182cb0d765d35de37d82bdd380dd11

    SHA256

    ee6658beef4ab32dba1082af2499f82ef357d07ecfa9205d6df7d911dc0cf230

    SHA512

    16015b269069a84132dec237c2f1705754d81398e085b7e4d0338678b7cfe0e7f8ad8717bb57c0cccc46c8daf62d9c134cea65c4d62a2fd7665a6fcc81d31b0b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    85e2574c823ef0e34806ce4beec95234

    SHA1

    885f40502f12c72dd20817cebe9057de5edf7875

    SHA256

    4a2c2a5c42e08e05bdd5125594249dc4e8de364b98ee9ab0b5c5ac82cb77b32e

    SHA512

    cc2874db0e3bb56e2ab759ce08d36cbf4b5e39a0e85383e809e06a743e9221c64e4d206c86d4b05b36413cd208f687b7a58dab2a9f7ca9624b9fb5ccdc7b38d5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    63d9f750b9b91287c89f437b15a7205f

    SHA1

    6e9890964e4b86496595389c11a00282e58fe058

    SHA256

    7ba24d5a6a9220488f9603aaf784e7cfcba476a54eb4eeee2fb332462646b394

    SHA512

    c9431f0190716abccfd7b7e1895c2bba16cd959b1b973d4d66dcf4f70de3b9d293af03281fc373fbb77bd39e4af58547f39296341049c68c891c4b634cbf97f7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    22c6c0495c9767546ad43dd7fb02e9bc

    SHA1

    12519c1226e53407aae8e0a91ae227fadb63311f

    SHA256

    2eb6cb09d0453e74eb2d147d273fe2c6497d68b49b29e76d6f23a06e1689a259

    SHA512

    87bbb4c7045d6da1b4fb49d41b68fdb9bd5f5330a1b9ca6c06377f049b4fadcc42abd053f38849b5513b772c3773adfc6f9c8c5e492cec6082a7e991214eb974

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    86e58e3186ce7ba9cd8439b3636ba7c1

    SHA1

    c1140754053d282d2e2236f7b426e25b393812c9

    SHA256

    88abd3af5865ed3d7260381271661050abb71340112680055570aa88e99d68f6

    SHA512

    f5eace13876bbef3ae097464146296f370122dcdba54a407b16ca5b207a2db29a784b9c33389be57ab70fb87cc60f3a665603952df787b99f343627f9d3b6406

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    008927f489195cd89df3672d2b93de27

    SHA1

    a05d2f45c4f7e20aadfcf9e82fe8040e20f4d3e5

    SHA256

    5147f4082d096be52df8fd66e65912421404e566d51ebb01f30a3091e551fd95

    SHA512

    6945c418135d2607f98f2e21e5bd36dc849f997b8c0352d61159174bdc35bae22b9946735d1ad21b1ccaf21ac83bac014a9f9b13ec02cc826332a89b64bb237d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ad77389f8ae6f7795333c56d2e73e920

    SHA1

    dfb3f2991f2e777b841e22e5387c7cbbb976e327

    SHA256

    c94f5eefea3eec145a65135b4dedb69f193ec4e7ab306afd46f5fa06853278d0

    SHA512

    825fac4310bd40282f7d8b8f6ba40ee2032a9b324dda12d1c1c3bafe40b7b4cacb0538818b03e16bfcdc600d366ba7ab03f2074b165d0d47e5d27f1af8202557

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3c1f8152179ef0cf4509e0a26e2ec9ba

    SHA1

    3b8954c8528f50958500dc173984e4b4334a00b0

    SHA256

    72b2a61f065eef203582ee83dedb9fc600c883b06d5a64dc9fee4692f6df209f

    SHA512

    40b48597e8c6702365dbb70bc9d7655ac63ca89b2eb387a286f015d1f2c7bf7ba333e25372f9c59a8fd64447c433d0f3918faea6f852050783a635142223c4f6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d310ed0b3f0d759f3184a667eef8cc0d

    SHA1

    7c1718e920c4f9e9d7f8f338527b5b7b2cfb7ce2

    SHA256

    b2cca7819420f1a3113aa24a953c5fe65a47d961c261ca64ce7120358fdcc2a4

    SHA512

    e9d902ec91ace9f81662bfa6fbe7d26c7421b76b61762b0b44ffd0796547d96595b9e06bfa00a8d04ecddbb49379b75edd61048091d7dcb6e29cc559690f1d5c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0d73d9cba1b251b385d09bd458868745

    SHA1

    510052c1bc4333b15a3639ed9c89277b12bdc740

    SHA256

    689d8c7dde6c63ccd622c3f242b6efdc7a414e800359b0fd47c43c9aced00bb9

    SHA512

    3a071ffd767059a49efefd3451635706b4b216b2014267cd8315e6b3437e6cf7bc265ec291cca0d7a7fcb2896097a2c6fbe2c87fcadaddcda434368416802e45

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    179e1bd63d54ac34b77062b7314a3f88

    SHA1

    050584122a3051c3559e3c716988d166cfc92686

    SHA256

    213d20479dbb7c6c0c100e854ebe0d5ba04c2647eb6bbbbac02a5286ab979ede

    SHA512

    f0bd562021d063c5c46fbaff87188214cb623dd02e8ae0e39d588b33bb1db7480abfd5ac6492956f445cfa99a3e4bbcd9b5a1c6d30cbbd0d519cce367173184a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fcc823b0514400467821ddd9a44bfb59

    SHA1

    6e71923971207473e5b96ceeb81222f0a35053e8

    SHA256

    fe6050fdd4585bec39ec6d81fa6e81183428e365fc906393af1de2904342d8c2

    SHA512

    95b9a30382a91742b5093a333d964e64eb636053fbaab2e10c853f345aa8660b534b8adc5fa6a827d300a045be7596ef8c6dd1f2e175d0dbfe9cce75ad368750

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    253504193bdaac2c9f555815f144d447

    SHA1

    0600d0276454e07e2ae9233d2c7df2f7f72cbf0a

    SHA256

    62e7c4a9a7060f186108368681b06674ecbbd2c507bb44e5576dd360e283b7c7

    SHA512

    19949042809cb7a06f1415753e31f6f64b03eaa9ab6421fbba71bce6fc86b9dd2f733061b15c65499f46e73c1eec31a7e66fc09c94621265bb88bc0935c6a6c7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c1c3666070044f3b435db36c604c5d39

    SHA1

    531787efe00877a8679efbf685d6073f1dbbd6c7

    SHA256

    a67765a6add1debf11a5eaec4d9ebcb2d4da8894f2bdfc0ff58b44cbca6cb750

    SHA512

    6317fe70574674319a2b2e19929246bf6981a3d776688a1501ed34f906520427b094b280af6065fd0966c808cc30dd4d378b3ef6f49c581000a5f942f2a9e20b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    693788abd69e385d90d134615ce186a9

    SHA1

    d032773348d5cd75932b84e7b1a869bcc678093d

    SHA256

    f823544904753ad9a430efcb14ccac5fa0ac2b6234175306f671f3e8de2c9900

    SHA512

    e178519bff1ad5d42a60258b8de801c09f673d1d7d5d9dabd5ac5ac7131067ebabfa1f306519f38b5f67ad95a660762775d263e16e6844d6bf931e008ed84040

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e9d5bfea9f36066ff54fe8c722152eb6

    SHA1

    56ffbc868b59df3025fa69ddd1e17cb5d6bc79b5

    SHA256

    4cda2b7c0525bc0f5951e81afd0fcaa7b6bd1968ab7f7fe28942235f0811f64a

    SHA512

    eb053da76d37818ac258c005d56c21679f25718aed6e35bd79935e3fdc951df4b40fb546c903a03091e0e1df914dce2fe8a1dd2761dad291b1b7bd4fa7b39cd0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    78d78939c41f944e76ef6dfd5f43b5b2

    SHA1

    92d3649bc000b628dc2229ae4475674194067fe8

    SHA256

    5759636400193b7ef2a96de1d9f9f2f5fea43f15606b33747cb4fe22d6af9398

    SHA512

    67a922c75d3e10bcabb446536b56742fbb560cafaafb0dbfb7dccd57ccf9513ba3b6a6192bc618319a4630af7511a41ee5bd7bcd5d39602807df2d37b17c2faf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2393f41d02a93a02e5f03c28c86d7fd4

    SHA1

    7b91797081478768e437ef5a6e0b7b18b708129f

    SHA256

    701f8bc2089c9241a3e5a4121379fc53804bf29fe77882e06a81b61994c7095d

    SHA512

    0dca92c395c485653b86a98a58be9cbde338f6489cad76a84bf5ee8bf73326e85c6eb363fce20816609d7484a1deaf75d02f5c502f9b9e690fab12cf9285e468

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    635464cf10b39431cacc3088b1535c6f

    SHA1

    3f7d31eef91ab621645ea55ef1550fce99ef221d

    SHA256

    6c264aac96fcd7adc6bd528e08caa9122f3f47bb82f80a4d223270148d056510

    SHA512

    7733ab56c7f7ce08fd2527e44a8dcb731abc0c8ea78f8a9cdfb5d6a830c8facce314ef054861f9f0565e5cdda423a3366e3855a011fcfc35ec8cff35535c6514

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9ce4462f41dd833819b4b8d3fc5e11a1

    SHA1

    87dd4f45aa311758e8673c480b079d930a0d6ea5

    SHA256

    f393f6a4bba4bc09b9eb1efe5edd42b22c612518cd3ab08bff3bfe9851fd6ed7

    SHA512

    e2854fc0d1851215fe29c8a10e6e8f5f9f34b8390090dee6fa7e39b383c8503d65b19dafb2be4cfb829f0ac273771cbd8d1569bad7da67a17a5f83e2032d8210

  • C:\Users\Admin\AppData\Local\Temp\CabB7EB.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\TarB7EE.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b