Analysis

  • max time kernel
    117s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 18:42

General

  • Target

    a1cc5968fd719c11b474c088763f061d_JaffaCakes118.html

  • Size

    36KB

  • MD5

    a1cc5968fd719c11b474c088763f061d

  • SHA1

    d4ef643ee0b3211b15e36296a1ae2e16c5ecc301

  • SHA256

    8dd3c6a48f6570242a85d748dc37cc58c2cbb828ae7f9651bcf3064bdf4fd61c

  • SHA512

    27c10d05b3c0c1bac80fd6a342ee851ec9dacd58f9f252757944282905a94c5232be37055058d0b186ef1ccfbfcf38d813b69d7010d8d5eb97ff9335d50d7365

  • SSDEEP

    768:zwx/MDTHqc88hARPZPXGE1XnXrFLxNLlDNoPqkPTHlnkM3Gr6TyZO36u3l56lLRk:Q/7bJxNVFufSI/S8AK

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a1cc5968fd719c11b474c088763f061d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2224
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2224 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2908

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    660b6e28b38ebe7e521064e60113fffc

    SHA1

    f2c25e9f931876bf6834191ec5b409f47f869129

    SHA256

    3e203426c4aa1403e940966905320c612ce4006cc87e03eb64058eaf6d402433

    SHA512

    96868e652d5e0c25b4d0f0ada20d345115f0c6fda26d3cab724c0c1867386d2dcedc408c51f776b7e019ce2e22755017d99bf663cdd9fd0d88b26182c6434bcc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

    Filesize

    724B

    MD5

    8202a1cd02e7d69597995cabbe881a12

    SHA1

    8858d9d934b7aa9330ee73de6c476acf19929ff6

    SHA256

    58f381c3a0a0ace6321da22e40bd44a597bd98b9c9390ab9258426b5cf75a7a5

    SHA512

    97ba9fceab995d4bef706f8deef99e06862999734ebe6a05832c710104479c6337cbf0a76e1c1e0f91566a61334dc100d837dfd049e20da765fe49def684f9c9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    6e43c69a601610e8758061b39a53b462

    SHA1

    886114117599d818818f87a31919384adc82f4dd

    SHA256

    6af461c640dbc05d5ac29d5555f3d6212f2cf9a28040570a3370546b9620d405

    SHA512

    1628d2f99bc0960eba9bd47cb2bd8f971c845493aabd7cfaf25dc8a37478391dfe78b71edca9aa4a449b6c8b2f73fcaf027e90cfbfea7d4aed66d00cead2e6a6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    18877708b73b432c93c422edbc52d847

    SHA1

    11c60b771386b152b5a80a713ece2eb47dd9094b

    SHA256

    a6510158e106f20c0423ff90f7c485c8efa6bb7a05f10086a6ce1a3e8ea0f47c

    SHA512

    194bc1f594fa7339cb6a6e3f1e18aa94d71b149c1db1d4b619d4d8ef368533583f38266f69457db9bbaf484778e5b560bbc191054f14fcdc68425854f8d29f1e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b8fbb81ab1c0993e10447b0157e0ce54

    SHA1

    193e3e55dee2b1c0fcdc7cdc1d32a8d721f1d2d3

    SHA256

    3672e4a85027251c91a49acfe6cf6c01872977f51cbcdb4b3dca25eb3ec2fe14

    SHA512

    d2d85b2e667f4fb7a81876aaa57e47034ff8143af1e3cbb64c138b34b59c0c915ca6b14e5a7dfe3a4c25de6023a44b133bd5c9b71da5ca3ceca6d1b090393a91

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    60d6e375939c200020c47fd67c655200

    SHA1

    7c2393fffc017dfdefef548ded637a5c17b53c6b

    SHA256

    f4293d303fb330bc6be60ca796ab7282614ba63a905a4dede408bedf77b4c76e

    SHA512

    6149ac57874dc2063abe64df30c2f0e50e491484ad046206019bacd8a8d6b7ce6a3ab03710960b628d7599373741eda27eb2f8952e259d1a55fe5751176de12f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4a48716b02b8f5855ab409241259c2b3

    SHA1

    a508d54b9244d0d203499f0768f7d6bfd37153fd

    SHA256

    3e8c7e500145221aca525fce67d699b5cfa5835602608f6018b9800487197107

    SHA512

    b8ab9af300c79ed6815e7a7c83e9f6d347996f0c63a30e727f945c140c260177af46107f537b64c407f6740da08a507fdd177b844f169ba0073d2e027b76d753

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    17bd8c9db414a1de90c78fe1def10905

    SHA1

    4dc367510890c83f4c95eb7dcba310b214bda914

    SHA256

    437d4634db0873419ac327deb884e3aaf089d28452f9de7e1c49c9819e0a4ef4

    SHA512

    410d32b32b53c54c2f6642db4e130d0bdaaad40ad5320b09952555fb988152bba3877b8473889a7980499504f83f5605054199af148f74f4e2119dc9a594f153

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d0feb5f61669cfdc703fe4d1b0071f32

    SHA1

    5ce06dc005887b8acb8d83cdda67421fd542397b

    SHA256

    20de69ecb8747ac56066285cbd72ad38234366c03a0ef7933b1a8ab24aa24725

    SHA512

    89afd43876ee6468879b71b5e9ac11a6edd58a720c5ea98e78dd00b32ebc7444897fc022c5b826086d6a52447d794e18075314afe59add91df189f3cca128f87

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e25d123bc3102e05eab72c5a6bfa4088

    SHA1

    212634f006a4abc3754c4f3855cf56fc935b26eb

    SHA256

    11a59c6cc922e8d04794c74624a80a133731dc40851a5064ff2e43733d5b85cb

    SHA512

    d4ce154aad2794153ed4afef485b4c18c0e85d31e858c054b6e47fa4735bd379cba40b9ce8448f8be4e5cd0cd30e8fc91f2a242ecd8616135214e85534663c39

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4511a7b3ceced13d75917b82afb3042e

    SHA1

    2511c12b168f4b937b3d4b4d6055517fc5303195

    SHA256

    43cff84b533856dbba48453d909e2e2e5b90f88ce0388787c5da254640b3033a

    SHA512

    e83f5d041d089de666e14b411db66980cb1bf68cb15dbf46cc0b643d10eb81960283be0e3ce1535b1a5e328b9d9cdc3076365da6dc731c0bfa3b59bb7312f209

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dc721ae0c3cccd142e38c9055b79e335

    SHA1

    105ef4e51db13b0df2623920f8f5f123a0a0efc8

    SHA256

    3a237d3e422ba937d256eb48e54df31f7a8f9fdbac7c775fc236a2979c42918d

    SHA512

    5891973c099adcb6f64a05725d8338ccb8c86825795fb7d08e6f7556ee22afb12d4d27a112cbeedb384dc7379a9617b4ffef3983fdcfe4b9d890133c87d187ad

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2cb802cf34dd6c5dfd708e31fa799014

    SHA1

    b517e6c574d80c496146501a329569bb41aaebd6

    SHA256

    4b619c77b1ffa1018a08245a32e50e437d86af283d42ad9202618d64331cf7b8

    SHA512

    74695ad505bc5353097d9c4f1c0b98702d616c6736d924914f5104fa8fd71ba3cc302a602e32495fb3853106afc0fd98aaeec2910f1e999852c76149a67563ce

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3e938e0239e33d9d71f09b317fac865a

    SHA1

    baa53ec98ec0c4a182afeeb7df1364f8c91a5ec8

    SHA256

    7b7097a316614f37b25b572d2712da5bfc4bd150d7fa9efb8cc3ccdea2ee1254

    SHA512

    5ebfa805b2b9c1e9b9753a0460abd68cc652cfb42847ea29c9be4e08ada8897989d3a7f42aa5b4af14291c296efac84804b793be69d35608ba57d4377cc5a5d7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f24322ed08cf3644ffda3b51dc561b8c

    SHA1

    41d29f8458b7a6c8c2b0eec5bb3497330da43e1a

    SHA256

    08c685a6e74077413b7a930cb174154f6a0ccb04601e5c2592320b8390d0bf7b

    SHA512

    4a9c273104313d8403dd28f9fd4feb7363a1d6c2140831a03657e1a4255c8c1189152482017b6a80e9964794cc7078f297685eed3403aaeac367bf3b5a61cbcb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    251ba7874868430722fa663824da6e70

    SHA1

    319b262b048696e17678a7efd30ef95ef909bf45

    SHA256

    a2c0255cf6e7df2ba201e3234dbc71fb2d057c68014918e61233a1e3b649a750

    SHA512

    642fa62c91091dfd801b50bcd587aebb188ff0741043070da4b264c6993f5f73159a98b3a500cccd38d6c0ed85bea69d07d7eef2ab4309735a3bb48b955f2286

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5ebd253edbf5ae848962c5165bbadda9

    SHA1

    225256379bc569093a1129c975d963bd657b0101

    SHA256

    0a808035c329e123c181c7f515691184d207299a63da0f8e1895d54c52a24b4b

    SHA512

    d7bdabc66f96cc4b09374bda2cbdaab6698e2b1846c92b7f283b450a746cde201dca78471ee8816f1073aefe6e3943ec90227e3c29f1955dd0645c71a00c95e6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    468c9d39e254bb94e22eaf67ef6fd2f0

    SHA1

    a6f688a958b890a6eb9430c1258abafa80755fb1

    SHA256

    0794c1a33f1d86cf35ada4b0b2fb779788fcabc5ec6afb2b799ed7a13968d247

    SHA512

    2f5704b740a24475c892f64ebe39b00c8bcf30a7824071072c40b1b07023e09e99d6c1fd57c66bd85c74aed8d9a654717c9d8b49d28a7c22c5c25abbe2e6b5f1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2d13ebe886b45139ef91f3b28cbb8f21

    SHA1

    0645535578dd96d3f7a16823ded048e1a722b9c9

    SHA256

    ffe3530e27fbe7c1bdc4ce5213ee61f4a0fc918c0c34de76ef75bee43183e5f9

    SHA512

    d9a50b552871a678570217a73e055ba5dcb6ba156fa040e0c6beeaf9ae9e48d429b02c42250527b7f3bec6853335444072811e444268b8d0fe0bb9df3ef480b1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b55bf3344a5cad14ff95d8eca5b0ad04

    SHA1

    311b8b4341e7f8ce622a8180988ea0343b5d5e0d

    SHA256

    0999bb29856e5c4847012e01558bd97d3b44cd5d2d990a22afc1b19f9ece98ce

    SHA512

    61f7226d5fa0d2d820940493b5c839a69774e6df6726883056f96143dedc4bad4ba3c792d8dad6e815393ca7fd83d87547e60a8ff24f320c7b4f539a721df0b2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e9f816ea460b6137878c3a8384447cac

    SHA1

    9ad3baedd0555304c4962bb607482a99857b3ce3

    SHA256

    f246b99b57ea8ed1f3b039922ac87531480321218c84851de9ecdd6e5b307015

    SHA512

    bfc96e92e17d32e71bede7767ac681cf17e9ed633f0a1f5ea7700276cd09ce9da9dc58946e78e72a633dc3bf7147df1fd159eb280452d9bda98b95e03cb0dcb1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    02ee283f50de12a028b974ce23306280

    SHA1

    bc945acf718dcf9d7a1ce32b7b16273b88e5c2c0

    SHA256

    93c8f0a644423d12acc510708f24c2a3237c6ea6fb25c1ba8acd906a0dc9a102

    SHA512

    75d69aa060b70090125fccf04aa39f358096b915f8d5a004a5615b1c27e03d29897603fcd171eb5ac8382f65c22a8e4aa2d58f03828fec54075f9720d6f51d8a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3f319040c844c4b60b6af41f0a5d4233

    SHA1

    4a8ccaddbc80788314773d48eeb758c505233b1e

    SHA256

    caf70b3a37d4ca2597a2b131a004e7df964e77682e686e510c507efcec4c9939

    SHA512

    87d616b56e4e07ed46a8a16ac7616018770d7f25e06e043e09f9e1412b26e740d8a86b5209d7e72a83343545b192c71508c485d121fc9235fed2ec11d7323c1c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2fdc0f7a8cfbf36b77ba5162750400ad

    SHA1

    ec98f28110a2baa6d8e6de51fab8c0ee3a59b95c

    SHA256

    84658407455b13a663b106c8defca36f09be9284a50eae100cc43325bec5a8f6

    SHA512

    c6a8a3484139e7c6d0a24f6bdaa04064ce745e5967321816f95fff9bfc4f94d31e3a3e39325f0daa66e753e3d25a4f3d340cd4a5705397cb5362cbf58e364fb4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c70c7c4b916a3cee613e6ba4622a5289

    SHA1

    1b9a435fcc67914aae533a50164deff7a4333fa8

    SHA256

    bcde86be5931feda05ad11acb3379a139999eaf5a79de41c613e46c999da6677

    SHA512

    57aec378b2e05a93e6b21bf7330174c13426f86297f5da2ab68541c18fa1b5aa8e2f7a97f1db53a6353d03c636f821a19edf6fe1d1188faa995e51a68321bf3d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    36be1bfd91a1ae6610266da3f21729bc

    SHA1

    2db83f4853a52d736f660b39f22bb923f8e27092

    SHA256

    a2d5ca57354c2172fbde884ac48d51a57e95519420f32b66967f1ff642723fc6

    SHA512

    9c001cc886e0f865ff86a7cab8c0562cb61802cb4bf345bc66cac89763e109f6f9b14bc45c74416c0e255719bc1e83e081939894efec00ef989c55299aaf2d26

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2f79f85cf444b9c2a386e60980941a33

    SHA1

    31097bff2fdbfbdbd9514a11fcd36d0f88171a06

    SHA256

    d01d0cf62a3e0e83964614ac1509d37e789e10ecd999357ef09f7dce42ce4874

    SHA512

    102ff3b9b22dfc797cd201cd6494edb7d4f3c03e90117c1dcd06997a084ab02af322a1113ad2e3b8e48dd1a551c69e84459afebd6809c79eca65c892cc5d37f1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

    Filesize

    392B

    MD5

    6b4f2d52ecb0129afedb97d10460729b

    SHA1

    f8dea74fd85599605bf2178f9d7909d2b1993cd6

    SHA256

    cadf76a0fed8a3f11fab567feaf0866cec636a66071cc159348bd47331a9ebbb

    SHA512

    035ff638adaf90536467f984c4707b6f54becf4346fbbd902598f5ba6c201f788735dfb23682c970f8dc99a638de19adc7b142068667ba533aa1007b73b205ed

  • C:\Users\Admin\AppData\Local\Temp\Cab5BD9.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar5BDB.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b