Analysis

  • max time kernel
    134s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 18:43

General

  • Target

    a1cd96fa442e4eeabb2ab293e5dbf073_JaffaCakes118.html

  • Size

    2KB

  • MD5

    a1cd96fa442e4eeabb2ab293e5dbf073

  • SHA1

    83a62de5af901518c649dc241b9b4a37e9925edc

  • SHA256

    3759a1322f78d0b769167e1a075a649b279a4fbfc9dccea4b84574693a34aedb

  • SHA512

    260eb0755f5948688a31579575febafd81cfb6ee826e947dc16611447f1ae91e31cd6ab46566c609729c2fdc8f4e10b9a75f70df09854508036601e26c8eb66b

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a1cd96fa442e4eeabb2ab293e5dbf073_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2208
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2208 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1956

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2197100ab80b17114876d43ad6fd40fa

    SHA1

    34757274b66d3d235f6baa6f9e6a72abb5bfc515

    SHA256

    275b59bd0b113f1cac4e078c03ed38a88c97d749364b91419b295f411412c6c2

    SHA512

    75e6c8ce4a82eb1111f768d2ba879e21d15f3ed8c4dc59a054bab9757ebb92b23c441e54e2e4e00adb35fbdf70b62f78137391f1daf3361dd91ecb193329856a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    221ec0cec01281b0cbc7b40b1a78d789

    SHA1

    ac6a4df9e8b5bb807187f0aa0e09578832a9f1c2

    SHA256

    d1f26bedda4c399eda805b490cd660d7d68d9db827abb6849dbb61dd2c948e59

    SHA512

    797a84f1db5b479d51645dcf96ba9575887ee6d933d1dfb6d289fdef37d665e3d414d4a56f9d598dc6af71963f8a588895641dc0075458331f492ce51cbba395

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9be01bec0ebece8d947e4fd653c5c836

    SHA1

    b298bd06a933fed5c187324a1fa1913bb88b6a19

    SHA256

    29bc6d7d7bafae72aed695db8a4a908de1e6b0dffc9ac8eec56945e56b9d4734

    SHA512

    0d34ed3c3731d7ddbaa4baeac91b24446a1e174ebdcc6b56b4a21c3ce49011fc32387d64ab367d0a419985af2bc55bf4a5f5f68992d1a3482262574f3babbc30

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    77ba1ccbbdb23b5a1cb9112a0700f26c

    SHA1

    68ff90c7a50b14a8c94f59eb4dc0ce3ccd4578e9

    SHA256

    bc2398c9afb556a5fc3e566cbfbdeb3688b99898118adfb0742e50b72e9a2e08

    SHA512

    42833015f1bf9ce3bb53da491feddcd49be0eb094ed9228d938ff01e676964d494b06985ee60bbe22e8ea70ec53975f5ef9e6635ebd07345ca2f51dc34daac77

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    478e76cc52826a4357c0e5c5cee7b24c

    SHA1

    afe3ebe505ae590f6c244cf20b3668aa03b44bad

    SHA256

    211341c91fbd2b2b95e3e8a7bba86690e4e4bfd889c410a8131010bc6c5e64c6

    SHA512

    e154e4f81a5751fb1d982958b7ca117c4163633473054a8976e12bda2fab6005f0d376d98fac24a7dac73b77397296a74f497a55a0319d8c587b8513f56686b1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b904eb85700643cb04e252a547eb98bf

    SHA1

    f4bcec5191b9d397083c333672616a9257586ed0

    SHA256

    7d8af3ec9687ca54bb05bbf6f1afff16d0ae76d31d6a351ed9a78cad24eacc22

    SHA512

    36fcd191aa3feb416fb4592190dda1e65956575110fd52b7f1cf24c7804281fe63510c3ff320a1d7483fb3c922676f1ca65f60e2df216085e1fb973404f9a362

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    96ac29f4487b350a3fe795b8a42998eb

    SHA1

    e7ea7982349324597f4786f29fbcef24cad1f4d2

    SHA256

    6d1fe3e0cd709d8012a6232cc7b7327608693410aca2eb31ce91cf38d314105c

    SHA512

    c905990dbd99c9931c4abd5c0fa13dabf9e4590b693f09d9c7e6173a0d5648a7012ab910da76869faea6481d2a91d8c2a498b22395db24496d9957affd42e940

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6cbb748da085f9bfd01878ec5485e791

    SHA1

    6bdfb4cdb0916b382d24d2ab2fea020d4fe46469

    SHA256

    e47d2e02c8beb64cd8f6edc58f2732ebd094530cc3e42f424eaa4995a647676e

    SHA512

    b3156164bb42393d7748b513d5b4f24b6f679c4a78079d895d2e810fa7a2bf5cd16c498e49a63bd1beab2dca82518752d1bd402053c9f3d16e2d8edae14969fd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f9d42dcc6157bc74934022e432a2d856

    SHA1

    7dd34511ef52f5d9139370d458eb245264ee2e17

    SHA256

    4e626c5a194d663288bb4f3c887507972d6587630269bc8e8b9c0459318556bb

    SHA512

    e0ac6ac13a01a4df2c034d4a801a600d2dfc0d223456eb0b53f1e55f95e7d8d26e863641a4f41bbef5952ea9fd1461bb144d9fb1acc1012a68eff98d142ae2cd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c1dff4f3c6b6f4b3b55bf62fba54ec4e

    SHA1

    694e53bcb23c1526dee033707569eebc49f1e95f

    SHA256

    8aeca9240573f91d5e165d05287d827cdf0dd391a5cdadbf4a89d7ba663c4bed

    SHA512

    269faf6c399e5e9367a5add6e5fd3546a101b77baa3889c11261f4c3866a01ff95a01710cb8845f6ba41fe9134c22777609e13388c917206250a3e6c4554115c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0dc5097f08dfe67c7ae4ecd660fbc21b

    SHA1

    20f1f1f2482e235ee04d91b9fc965b1767cae74b

    SHA256

    901877dfa6142b4425c845a6d9c5b4d1047b97b6eb012a8f7ab3de9ff1c8e103

    SHA512

    5326e27d626f319027853a2081f07a079ec47f49edca8309a4a707f0fe08c784438228c7c30a410b0feb05a27a2bf596039727ce6215cbd5604e02d1bcb52df8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6334726ada5bdb736851b53aca4a1323

    SHA1

    877ca5f3c12feb60b4d4d1677f822ce09f374ace

    SHA256

    981376cb18a3c8cbf1f1340dea6ce0d38fab8468787759d14324222da2369166

    SHA512

    dc7a8cb98d2b9d901386a31f644ab982416f8ae0a158ee90a30a20f3f50065ac7faa69bfa69f88c35d07931dcaf8cd244632a79ef77cff9177c5e18db1de932e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fc0a9f1fe8bd8e0951762c5577ead197

    SHA1

    ddcd964d52927df8b686fcb479255d6202a18528

    SHA256

    2d08844c2c4789bef52e348a5112c8e4bccc9589c7ca639760288a5fe45e60e6

    SHA512

    2c3fbbf431d020a506099a55833e9d847a8c0f3eeff950f1c93fb625fa46b644c35be9f1d379887200f4dad0d1770b6a97ff9f4b3e956327ecdca46751023f96

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3d3cddeaa817fb8a5c353e6fd307de67

    SHA1

    e5d836f657c6e9218ad36013f47f9adfa31007c0

    SHA256

    5e2b660686e6ead96a82e1ea3b425938e58a7d95fca7fee1627a284f347e5e7c

    SHA512

    8e5f9444c08c7d385a80862c65576b58ed55a37080c5c6380ca394e8d38fd43aed81a7244d06d1f1955fe5411bc558ff0bcd51a2dff9797157b2d29f2738fb45

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    85f3a2de2c60905f407eb24eaef7eed1

    SHA1

    cef185350c9d62b99ee752957cd533e5a0bbe75b

    SHA256

    19b0b38daf561e29eb52a69758ab61bba1c3d09d912896771f7788482f78cb9d

    SHA512

    b64eca8cd797f033036a087de78439121dadc227881e9a0c8c9cd36f4c86d789bd034a28dfb8532d495f42faf4a8867cf861db83a52c191f5ac4d41a8cf89940

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    09815b628c0836bde83edfe607aecde8

    SHA1

    c509e9552b1971d9d63679cb6ed7be316c0744c0

    SHA256

    57efa45762db1a94bece44c21ddc7b8c5aef6f0bd545f25d2752fb6fbfddea98

    SHA512

    846e55573c71db6b7b286a6a1abb8e9caf71e7c5f234d0f1b912b6fd3132d5c4c6bea9325b007d13226b7747ee77622a6eb9e928d4d127fcc2127fe34cc6c79d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8f86ba7d889937056817159ad91c9f79

    SHA1

    c15ad18435dd539907b6c80a0c6eb6bfb48c00b6

    SHA256

    8db0b76f3ff93787254b955a7c623837c9d319e4f8b92e7baac6d9d9e7c9b502

    SHA512

    02a8211c6081faa7a67033cec462999e1b567f454a516b9df0a7b32b8e04260b52784cb1608b3529bb2ed277db21c2bd19c3e6ea397cd1ee1b2052d34c89e69c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    045edfe31b27a5c1704e3e20a2f4f5c1

    SHA1

    476d656eba674198fbf21ad4841e5218bb1094e5

    SHA256

    f6a8ae94b67150c55656bf779035efa0bde04894ab1eef83687a9757028e9475

    SHA512

    bc05b7dbecaa67d889243c68fafecd4f5adae3d85953c446acbea839e470052395c34d5bf945a4984119bf8399edc5f6da78f0c01213975b9eab732df42291eb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    961f745fe0b75b582b384afde6f811f0

    SHA1

    05d448f242978b7faac3349d6e577ae1787c61c7

    SHA256

    ef5359b9cbc1a986ec98e4223010309d2c2fda9eb46f2310e2a32fae7bb2deb7

    SHA512

    74ed0fa8cc4e023a0dadb7965dbc96d544b5f0f787f02690d4812b2e2c03c7344f699429b1bacda34fadc050234173047b84a9507a45af6ffeb2fc6b2a2b62fd

  • C:\Users\Admin\AppData\Local\Temp\Cab39F6.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar3A96.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b