Analysis

  • max time kernel
    137s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 18:49

General

  • Target

    a1d40cb91bfac8051f7517de98f086b7_JaffaCakes118.html

  • Size

    17KB

  • MD5

    a1d40cb91bfac8051f7517de98f086b7

  • SHA1

    24a16fb816f3a617dd0c7d6299a0c2748c0acec8

  • SHA256

    3967a858288383757e570a2f7bf6bb143afffcb3cf38281353846d07d734d996

  • SHA512

    1662e7b19fd76620387b42f2c68bfe0106582b520b7a7a89168d6df62543d70174615178e4edbdc6b96e772afdd9c9162fc0e36bd03c9b93aea46d085a371be0

  • SSDEEP

    384:jENTbmnpIs7/xiVSSO5h8bBzpGr7rqrY/xttwfhu8uQkBzFBzlSBzvBziBz8Bzcc:qTbmnpIs7/xQSgesfhu8uQk37SFouqF+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a1d40cb91bfac8051f7517de98f086b7_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2212
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2212 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2108

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9e24370d9a79b5adec06d08f417e6334

    SHA1

    d75f8c567fe02df205826d3b7a7554435f80b9a8

    SHA256

    792aa14312a8e4d25d90398a2484ddd71ff0e3e2d2f84ee47758dd49dd13082c

    SHA512

    6f1d1b5ebe6f1a07d1158cd65d0665a2a81596aceaaa03147d63d5ce07f9c20a213ceef42bc740dc1a5b4c50f3cee3ad65f80fabf1aef252c45079c138c2d369

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1184c7c615894c535ed9c8bb82b74c58

    SHA1

    38123f32668e6fe6b8e5b18f1eac181da9ed433d

    SHA256

    5b7973781cd23ba9a17785771308f49edd072270a661426fc275d8e635b53104

    SHA512

    a2c8134d5abfd33670f5c7a7e9668d09fc11dd62a7818c808d32be017a8a133a7bcd8689e437a33ae2f17e0ccdbf2aeb797213c8855d46b2b2e5eddeeeb64183

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    508b5b05e9ef07a9231054c856fba0f9

    SHA1

    985aba614af507cb69835c78481d072f7a09e255

    SHA256

    bb4a3baf4096e3124acda9579b04931c057c2e5e8a9b644c55aebb7b9245c4b0

    SHA512

    b9e96a3332605ac687a8cb2b22070d3a753e53bd9a5649a4ea1420397801a37e27ac92281f84487437b445e1ac36b7dc48449459b78a8b5a37096197b3c71841

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    53b612f028f71e1055b30b208c3fb5dc

    SHA1

    4752361ca107aafd9ef2d713b04da1087183118a

    SHA256

    204c5543c763dc1c7a9e8b8b987ec543ff998adc81eb55dd25515615b8a89f32

    SHA512

    a758688246a18e23a7ddf144f3ba4066382ab561cc938717333ddccdee31c857a38a7266b2b8cbc51a3d29aa9a4085b7f20d8be57690519f63082ea52b455c22

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b305d63f3dfd1b4e15c2646c9027cc8e

    SHA1

    f4ab21c7ec4c12b40409d477ed641472e75030e6

    SHA256

    15af781a2b724b7f1d485a1efb0c80834f9eda5b0a52ac50d75812b8c080c7aa

    SHA512

    6ab30a49545e88387ca77918ccf8bbb1e82dd2f2a7ae4217a8f5826322b180c495c11d6cbf1097d666c3d4d3f2c07ba50593217174248f658c023c3c5820a9da

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0e2b3ece834037f3c9b6742f5bbbcb40

    SHA1

    f628efc47437da0ea55447ce25e91ab1785a3ffc

    SHA256

    68117c04dd99041ba78b3a89ac01e28008c03e6bba6a4560e2f80f80826e7b87

    SHA512

    2bf2ae13270d251f03904147c4c0b6a6b55761894019b48123b5413c885b2840f7c0e4c3c305b139ef1ea1ac9dbe818af512b7ee00d84a029c1e64af365f0edd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c7c95260bbd1af9ae92afd4e3a1ec851

    SHA1

    15f288a00a40c58d36fde4079006e22a3175d0af

    SHA256

    78e2cbed41000efc3f952d57df87c21edbdd6af8470fdcf7f28acfdc4d033dc9

    SHA512

    ae7b76e937becd009f3bcb22343ef1bd24846d5ebc322c991e5fc89fc357a1fa8a14050348454fc7295843944835fb7eea7dd13d6dc6daac16578a26366dd47d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e8c899c944b961508ab8cc06f271123d

    SHA1

    4f71264af7cd6c64e761e0bbfa70f80ba4666ddd

    SHA256

    73ee2a7b949adc0041ec0f002f139059a035a1e736f41b0a9e8cf9831c5c02fb

    SHA512

    e8be7dff98d58cf0915ba509a8af50550ae651945df1d0700e2dd608633cb6707d4b622a74f7056b08d4c9cfe51c4f13a380b0d0bba5d5073a1ff076e3a85f82

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    206617116a4568dd374a57def92ed641

    SHA1

    c152945eecf93f956214f269f66953c5de222dcb

    SHA256

    8190f909c9379672aa9e503a8e98174ad6c4c0b4d594b6844199cd5159a453d9

    SHA512

    675b54a2498462dea17495fd3ee58f6082ee2ffecf8dba7f7ffd096dc4ec03895678fc9d867c8bcf1094cc02ceda65b557fffb57b6e12c31312d38d282c41ef3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    543fae991c59838caf385867fc725cd2

    SHA1

    5023140ac45540e68d7ccc688673750f00e7bb0f

    SHA256

    60155f947f8235c9444356bc4cbe71f6a1ca158b08c87f8b1bc881b789ab20b7

    SHA512

    7484c3f9e258af4a949dade5b2082add4c5b51c60723ea85ff04df4a4a8399e2d45c57701a43035cc77b9cb7b6ee4bb820922a7d729463bf51f2e2b767f69f43

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6a03dfc0e7bfc8f887287825ed6e80e2

    SHA1

    09403c846b016bd13fdd6e262eeb516fae870997

    SHA256

    ce06d4f7e8e2130b58dc34b5521438682053d82563e394d197161cb88840bd5e

    SHA512

    6f501d114bda1464ce9c3bbd26f894b9b5133b211f600bdde825e2ac1784bebfc2d46a1d86615f7a388a5ad8e3bab2f18e8026fc2adac9edc63fcf4c093e35bc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4688019fd4eebb12ea9b595e1d4ec531

    SHA1

    93c52a1b7b550c67163cf5b7e3f6f07c635a71d4

    SHA256

    c111ece113e7dee3a9667360192c16d422358478170684c1d1d38ef3afdadf3a

    SHA512

    1aa3580ade0536ab486146bf290cb531043adf6486df56f4ecc9beaafc0e40d17b5bbb6bfc80b870d8ad34baa5a7ca8221e0a695a20cf19b22cec0f5b1d4d096

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    160b1a774cd67732698f96692d049d40

    SHA1

    40cb26a47da627c4e3e34843ce920d4156db8d93

    SHA256

    1855fa2ad3f1ce1780ac729c33afe2742fa2d3dabde37384c1af28094d33db99

    SHA512

    883f6834172b2d5821314387f12322ac773abc3d64118b1a5a85259712538d39d59f52ad4f74915ce6562f874548feac3920a172d4c76c1b7df99535a7fefa7b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e5e8677b042a806465245c7ef84ab80e

    SHA1

    51e13abe6850e1ccd351a58afed39ad15577fa43

    SHA256

    a28c9c8dcccf634cbab36093e987e5c606229304dad2401309b9df29e8228c2a

    SHA512

    30b0cbfa7541b37090c71b5a70d95a7cf877c7029982b55c1b665bf4625fa2623c3be4dbd779cc8a703480c52cdfb3b286011cfa070161ae2ed4adabd954a3be

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a8447a943c2aafe3303dfa32b27811df

    SHA1

    f1e3e8ee12a64e708eadd16bc6d59819f34ed2d3

    SHA256

    6c791d29497de8f3b4bdba973700897d91c3562db67a98e1301ebcd902ef01f2

    SHA512

    aad4c5288ab84c3ed7eca26a8ee9dbf131ef6413d1e656bc6a845c8a059592a832eb4407a9c8c919741e1f7245451a6717e302605288532fe914e66f6a973854

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    be67e875b8956a21101f89a7c50e2722

    SHA1

    a5a5b7bc86021e5bbe12aa4678cf6392ccc81039

    SHA256

    ef008fc351f0f1b9667f37d265b0690491ab1ffc2449bff9f1baaf85cbe1556b

    SHA512

    ea4dade07909a8b352c087ed935b3eff71caf4e7660714f9ec7757fb509da3cc7c98310d79a89a5d0740b0b6a3d99cf64bef0290597f635ea0f383a178c773c9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3b4349656709ab093f011b232d91a9b5

    SHA1

    d057b612c545e245548bc878e38d4abe8882ef98

    SHA256

    4184375366355655ff7ff4484318a8f3870726be367c5490babe31ed0a714984

    SHA512

    7369ec225666a3727065a881bd26f27639f618c126ba3baaf15114ca206e0859fad3a3bbbbbe220a311e5e9b35bc19d8752d7bec09b2f38d25448582e0baac15

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a6ea209358905185a97291df6be87d67

    SHA1

    d405ffb5c653c25012ab118d8255b716127789d9

    SHA256

    6cbc56e21c793c43f3f1441791756095107d7ccf10f42e8d0aa7aec9cada0565

    SHA512

    98217110cb840df45e56e6f3429d120d0b22a020f41683dfeff38c517c834ec058cf43dfa1de09f2945af41cabdb7298e1193e33c3f473e0e151efd447fb6fcb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    54f45971e97308106ba659f10f43bca6

    SHA1

    1d71065764ada746813f6fde16cc09d654f6f535

    SHA256

    6ed9dbc139429fd6f35cc51870104ac3398b4ece0eed9a77b64bf671a07e64a9

    SHA512

    0bde6cc035a0db269c1781dc432a02efdec884a91ce4483d24b9eb1c001ff99a7a34d1552a669fe2c5df4445907cd732e0cf1ef484012687a95f7c8a8a3adcfb

  • C:\Users\Admin\AppData\Local\Temp\Cab2A9C.tmp

    Filesize

    67KB

    MD5

    2d3dcf90f6c99f47e7593ea250c9e749

    SHA1

    51be82be4a272669983313565b4940d4b1385237

    SHA256

    8714e7be9f9b6de26673d9d09bd4c9f41b1b27ae10b1d56a7ad83abd7430ebd4

    SHA512

    9c11dd7d448ffebe2167acde37be77d42175edacf5aaf6fb31d3bdfe6bb1f63f5fdbc9a0a2125ed9d5ce0529b6b548818c8021532e1ea6b324717cc9bec0aaa5

  • C:\Users\Admin\AppData\Local\Temp\Tar2B4F.tmp

    Filesize

    160KB

    MD5

    7186ad693b8ad9444401bd9bcd2217c2

    SHA1

    5c28ca10a650f6026b0df4737078fa4197f3bac1

    SHA256

    9a71fa0cb44aa51412b16a0bf83a275977ba4e807d022f78364338b99b3a3eed

    SHA512

    135be0e6370fd057762c56149526f46bf6a62fb65ef5b3b26ae01fa07b4c4e37188e203bd3812f31e260ec5cccff5924633dd55ab17e9fa106479783c2fb212b