Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 18:48

General

  • Target

    a1d39421496e6bb87b19e17870cf32e5_JaffaCakes118.html

  • Size

    3KB

  • MD5

    a1d39421496e6bb87b19e17870cf32e5

  • SHA1

    f9dfadfc06ef5bdf210d60b22abd4562d72f6f9b

  • SHA256

    3241669ae8f00f9c051e226d786f2fdc14361ad6076095a9b4ab53fad672e487

  • SHA512

    8f6f54b83b3bb31079137302628dbf2fb8f9056e1b919710afcd8bbe2156e76ca231c06693ce0b7d422040c5942980ad0d776f6dfc1dacdbe8b81a94a968cc77

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a1d39421496e6bb87b19e17870cf32e5_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1640
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1640 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2080

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    77e655a9d3b633bbd35282cb57ddfb5c

    SHA1

    f18da36d2cfaa90ecae87e30aad8f798f14c38bb

    SHA256

    7816fde18a7701b6a071c8cbbd326faaff02082392a1ce34749aebe16feb18d1

    SHA512

    a31f3a61769ada66b98e8dd416d31d47004948c84a053281b511d449d18b59a1ec89a36fd940473f2fc6f8cd6b1e43f69c7afe7bd658bf5cb5b0e5f539e759ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    166809f2153a8f821a05f0bc5b8e35f7

    SHA1

    6d7483c676758dc591171178ade1e0c11359cd06

    SHA256

    78044d3266f9d79c1f7caa6f8625adee87637cfbbbc32345adda534047c9fb82

    SHA512

    34a322f100447a3d6635cf971c208c7015bd2dd654d666e110a27b99a36acf7fa0c50abc871f796907e982e35acbb19044f03328f5f7323880c64071eed73c9c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4b87a4934e8e33959c2310fad6c36852

    SHA1

    f44be75ed652f6dc9320b1f32e92863cd26f1f33

    SHA256

    7751511c7cf699f6e51df4f43643aa04946d0e91aa4104c96b69bbfac73c0b89

    SHA512

    f95ca4d417436e8d2d1798eb6ef5714c812b9369ffc7c709da7b373341ef2e3be6ad9990ad6692aef7ec12b7bc80d1b8bc0300137b378f13e6259521f44d7683

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9811e4a9a33f1744680129ef491a3c52

    SHA1

    490d471bbfea6724814300c805d58f26477977f4

    SHA256

    327a8b56170ac84d68ee9b931858f1644acb8534fd57363314ce5fcea5e75580

    SHA512

    b27086cf00d1f0f9136ea77747521e9405c9ce15cc92e66bfbbd4561070754105eb9033efa1839019428311b8ca851938a6bd58d84ed0243899fa9ef2abeacf4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e72b294ab5350de56942aad0e22c092c

    SHA1

    da0754701e0a380c111bba7017ce2981d7496237

    SHA256

    68632aba4cd19b37531142b78b77bbd7a278336f3ab629c04424d256390ce7ee

    SHA512

    3c8505eec9199ca19c7fa25c9dbb557fee29e551613e265101fef9575f9299427bccbe2b4d0cf079cf1492685c5e6ab4b5c0c74392568f4060bbacc812e9e80a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6bba54c022d4debfceb22e4e72fadcb4

    SHA1

    d45dc0c652197c1516230a04dc20d548e0b0b025

    SHA256

    0d7474dc4f5faaaf8422476e688766d8ad9c282ece954ec2bee25761b6f3d92a

    SHA512

    4e0a04ca91300bc9e4225cbd34861044e8b385c87843a8e5f47253bdf5abfd3fb5747ee9f9e155d25a606c3b8bbdaf0e0688a5e00e8e9775daa7306ce6ff161d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ccb1e629fd3ec68214b88a1f80472caf

    SHA1

    fb52e79993d524410f1c46eb959505248ac55f40

    SHA256

    c2966c1ccd8d1cc9b01d64422452e41fcb7ed986f8677afdb7766ebfb3102bb4

    SHA512

    b0263cd71c9138c4be6da4719b0f4d81da284b3fa7840646080e86a861a21b6de28d51894fb053f6f056afbec7b8c167f2196f365e928269eef95be92d5a1153

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f601dc400f2b6c30856e521396bb362b

    SHA1

    7cce6796cd813f383cdc29b2bb0f743b3d0ab7c6

    SHA256

    1880eeb28a3bd3e19304598e4cc27a7b124ae483b7eb50b745529ef21742ecfa

    SHA512

    0d598ee5bb31f3d7782d2279de475a95561e5e2d4433f4d879ff918c30215f98d7b986e67a1cae710c6ecb3d037589363caa0d7190f3600cf8c130d35d4a36f9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    39fe64a34047d9b962aeb3ac75b8c3ae

    SHA1

    8ccbc45c7837b7a95a20e5f693af81e67bd16e03

    SHA256

    f5bdb8cb2f1e0185e1553b9968a5b53a032a8623d308885efe388402d157823e

    SHA512

    62e33e5d25ec2e151ce5b8b70eb7e7731349fd2db1ca2a0d902c60fef9187f86fc6e0c0a5664b02ecceb8572ce3b98ea8f8db98df8b055f18cab7c8a02fbd0a1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    baba86fbe3dd6446ed2a0ca5ecbc1f83

    SHA1

    3d5c67462a560b92e2844762ae09121ff89ec123

    SHA256

    dbcf987e18afc481cbd220216163fa4b706b90cf3d1686de86ae6a5ac1df13b6

    SHA512

    e1fe055357055a10f70a36e177eba3517f54e6cb3dbf6e1c259c035ccd30a771c1798c2833100c0e71d3007b972e2961c8d2c0cac8eb3695a29c1cb5bdf2dfea

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4340e6424a10409ccaab4fb218e9ed7f

    SHA1

    074225ba0cd5ca6da7bc5c086689069968e0ad9b

    SHA256

    7de9741f5f838a37618313eaf90104f5b227a267416895213b79df0fa9e219cb

    SHA512

    8d9d39456a5b1917b9d7c110e1d120c2f24f485dc4c9fddb3c92dd74e7c3870beee00a387908c205685cb0be93ada2a9b920dca825a9341badb0e3d59ed28b95

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f72733b9e27aa0117b9eaa2f5488aca7

    SHA1

    35e8015dd26df574f68112177a94364275a135c1

    SHA256

    a675475ddc52d8780cd2f3ff1dfe96f1238b4c38f515c4f8398904e7df6829e0

    SHA512

    32bb9a4f9dd563dac28ae56a569ef171214b582a3c3fba3b8b6251ea5e343f0c77b26b10fa064c1105250f2179b6893bb33824d7a8b0278cf5b12a9e85ad04d0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c442770fa82862a15f89a44bca0c0a1e

    SHA1

    90a33e5e3af49cc1f19376358c0e423155b792a8

    SHA256

    f5afa929bffbc98e652a61ea4fdd5ef9d275858c69ef6558c721ae052d6704c9

    SHA512

    23c59508d9f13afda98615fc6a1d994cc1cd89e0db6a5a4aa03738dbaf58b979f98f843a460f7a3c267c2907acb227ee549c3fc43fa51e0d177579e9e8758441

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c3a19babaa6e25f99e51b10c5d34b7e1

    SHA1

    e6b6b23b9c04961b4e41d1108afe40b9ea9eab9a

    SHA256

    07433b1b2ac3db6f586a06ded4e24ce3b9ab609b7190a88fc035b5622bbf6efe

    SHA512

    e235a1b2cc94fe488569f1d8d16c443e773502a40b6a8f0d70c2c5008ee207ae01c4972c92eae12eff755d05558d076e51f27917ba18f9cd5ffcbf22fa7a6973

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0e2cede80e0bd1e0af2989a5a1139c6a

    SHA1

    61272691700280d975ff2b86cb4f4e5207f008e9

    SHA256

    a17145991e1fbfa0ee1f00ed490df644f0cf29004c2de86423636a3265a77446

    SHA512

    168b627f805aaff492a069116513bec97d5664eaea3994f76ffc65c3883e12985a3862431a9afe34adcb739bdb3dd0cbff753e8121952cefde345633319d84d0

  • C:\Users\Admin\AppData\Local\Temp\Cab3A36.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar3B75.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b