Analysis

  • max time kernel
    118s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 20:19

General

  • Target

    a22d438d9dbb2e242f3e5274492881d8_JaffaCakes118.html

  • Size

    2KB

  • MD5

    a22d438d9dbb2e242f3e5274492881d8

  • SHA1

    32c94f3374790a98172f4bda27509025018f53c1

  • SHA256

    982fb20a3705316cb6091fbf802d0a82c6592d0cbda1253e928666af3257552c

  • SHA512

    3a9f5228e80d7cc65a50df8763c7ec57287a89822eaf5e72fbc952ef5b224075aac3a6065fce15bdf63a2998ec24c64b21129ab83eb98c5d7f1fadc6e5e618a2

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a22d438d9dbb2e242f3e5274492881d8_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1540
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1540 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2624

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cce79a26421722d7d4ac74a0ce6b46b9

    SHA1

    2b88f31ae7d42ee1fda32750525d7b5bbf3c84c6

    SHA256

    b37c9ef390534c394aba358272bbe4295c1cb77b34a02a22b350566d9a1aeac5

    SHA512

    52cb0ad11020f1cef4592f3793fd21f455b9200cde05538011ee46b6814adeaba22f04835da47be15fb7bb2e9a0814e46de2ea343282f2b36e85309d742f7a39

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    81fd253d6cfcccdcaf4dcf8c56238cdd

    SHA1

    a7d792fdf05e146c8616c8a88af31a220674acd9

    SHA256

    85287bc19e187bd80ce86e671399c05c265bfdbf56f49563d269cb23a9f70aae

    SHA512

    1c23a83ee88098e067f93166d3ab52638b783dff24901fdb75347f590b8c8e4dd0dbede8a23e1b609a4eb9acb3b91ee74745cf80af64d3be41d46b9b78bade37

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2eaf4c29c67a7e479efd8dde1ec986e7

    SHA1

    55632d3d9568e2f3718e6fdb2b0c09e800113776

    SHA256

    8831ffc64cdcf08de8c69bd942a01d62b45d4485a6952c69e3c5e9b4886351aa

    SHA512

    6212d43cb7c2417a2f3fb27a5a5d373110d338a66b3a7992026b4eac5919b767268adeba0adf965232be2b919c4f9d5d03abdffcc3a1d4d458a78d721a413a8c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b264dfde9cb0a84b1791b58ea6b01197

    SHA1

    f2324e743bf811f8a7faf8b10bc9bfd05e632c87

    SHA256

    01993c488c8eb9504add1cf84c18ec98eef23b7319ed2f8609a1cffc6868b1ed

    SHA512

    48869029554f4f3526b80dc4ed3e055bed567815b4b899387175fb8a640938f1ccedb0ba47dd97b4bff3a56ded73207e8368910851d7e6916725ea7504822b32

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0329b102755ed28912493690a175a12a

    SHA1

    711225dbcd97a4682841cdb1cabf0f95c1de691a

    SHA256

    ef1b9019e4db213ce48a9b69c6bdaaa053e2746ca3ef0ff0e6bb968377cb9762

    SHA512

    6217f7c874c60b352dd04b7e5c0197896ab920429e72fc0fe4781dfa9003b5ca9fa59e74be626dc8cdf67fad6710081b8cbaaab99e280f3247ecfed6bece4259

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9b6e083f7810b9c325c605b3615ffce0

    SHA1

    cca9d01ea640abe62c8344e370bfb5c9ab24b548

    SHA256

    cd2b55ca52a9087724f0db770a5b92dc5189dc26dd18f9eca3dcee4283c207d2

    SHA512

    a3d83b076194e75339923ca8626ec71551529740f21354f824741f10eca4b7bd12cc321c3fb9b3584a4ebaf39de4fe84de821539a84688ffdcd13af55acf1900

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    de913b1d3a52d5742a92a2f03d3fcbde

    SHA1

    bf97b6e3168d2ce860679cf2fc02cb46ce2d0ca2

    SHA256

    fe08113a795c54d2d468219a3ccbf5bbb5290e1bbfacf04b69c12c5b45886be9

    SHA512

    b3792fd53c07fcc80d634266dd7aae09ae89e882af6fcbf4abd7073943eac42f5f7220981382b98e2bdc6a3b111acf05d256245f676a1610850c3562c91ec989

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b7d97477fc6571bfc4c61515ed0df7a0

    SHA1

    9b453127ce1e363dcffd2067155002533d503864

    SHA256

    fc309da023176565986d7f7d1d8869a441522b3000660a0d6969dbe82e4c4d32

    SHA512

    e13dc156a0a2e289d545ff140a359da7d1e7a554aff178c4c18a560f12045a0a79fac2de8d974248f66b9e699c3ada115e372a0efa6c6a206fed86bb0b29a87e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0d93e0d5bf6f8a0c25be7ee527cdee30

    SHA1

    b00b0f5ba6ad838f54489683b721d1c639ca77d9

    SHA256

    6eccfc33794b71e2bd197e146bb752eead4df181cddc29026a0f414cb57f31ad

    SHA512

    0dcf1cd17d769b8dacf5e70c097d7c9c31d7803eee8dd6ff15f09734742e5d88559223ef3e427a4f7d03966003ba920e9a2cdf14afb9a1fc3b5ed9cdaf37794c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a927c249f76469710cf95c94158f0a07

    SHA1

    651a0ea98799ac10a9b03972be690d98e3866ac0

    SHA256

    c706d1187e99f85f3615d554a7fa722d0c2ec5a693558b2dd53f747563703cef

    SHA512

    b94a37e49d1842f408b1e4f6410b10faa76379003a2e9f4b6e45644e00559c8ffc14f99bb4feb7484f335254968b320da2102abca7409e6f0e26a8f8c626b824

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    22b385e022bfbe99ece8719c7597d575

    SHA1

    5706fa54ec1cfbadf94ae7ec336969aa7b02d048

    SHA256

    a1cfd7df400895dcb838552a2e628da0548a4a6bc276dd2bd19749ca6e4daa41

    SHA512

    a75c483e45d3050a60ec72746163febd099c443cecd7a5a08b3d30b3894ee45d984aed00ec4eb064ac1765a7b18906ab5267454edb9188ad0d8a4221ebbe1ce7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f347d2dee60575eaead84a7f6f18751a

    SHA1

    931c1a553aa399ae298e3f88f6f328bf4ba5fb28

    SHA256

    8fc3691a43015613f4e2f678bb59692ace15bc75ce67f9ab3bd6d5eb0876e047

    SHA512

    ea8098e645475981d97eb52ff2eba0f1b9a298404784cc62d4f15d399cc7cdad271f93399c0b26e726b180f6eb68fcd54d3d70879a80b5965c92fde559343fcb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ee79b91bb1d99134c2c91ec351b8cba5

    SHA1

    78e529cf32b1f9fab36416f4d97202e95af9e87f

    SHA256

    b1956c2580af778457acc299c7c193db61e1ffb05aeaf538de289d6b78c13a56

    SHA512

    f35f10912e2026f32d29e0bfaa7cc9489fa8c898a99b3ee8f0296c3e1ccb19954d90477d0c8ebc3ae2623b154e72b160f5c631702a8124463e1b382b6a882c14

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    771930fe59a4312d82ae83d0769a0ca4

    SHA1

    464bc1c21c329149384f5b491152819fece2406d

    SHA256

    06bbe2f7a204b5bd6d2ba2e39828f4e309e89d1f98bbbe907cfb1aa7564186c5

    SHA512

    21aebe70e6ca63c0e496c02bf16d8cc0f40363d6ff9e27bf598c8d8b3cb81e7c71ae12aa0f5e2fbbd2bc1d13e46af73b760113a3e8d7d3f5e93ade87d2d9a730

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    af214fb1deae26caaacdd6afd079be5d

    SHA1

    e14f4597011d6e60487f945546d105dce3668128

    SHA256

    dc7c7ff1ae36811d78184e3e399dcdf6657b0ededbc84ee86bbde1a45b48fb79

    SHA512

    466d040bd6ce760393d616cb86f7f94bdcf34199782b84651d3ff0827265145d5f596d68ca90aef155f33fb0297d07c106c97a40e04d2281a7c50fa9171e1556

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    acb22b7960d26c015d6a2a60ba287015

    SHA1

    478f1a6fa27cd868ab071c39a1bdfd0dd256e57a

    SHA256

    c47eb5b5fb4d60bf66bf15885dd2f96fb2754535e054c15187eae53d1f7a4cab

    SHA512

    dbb6e15fd3186f254efb2f1c8539bd6eecf574afe919c7272d2b493e0f3e6b2cd87fd162e98cfbb1d5c2e0e8ad98bcaeb9435c02d932a8484bea5598628fe283

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    227109c29f3655e7e085ed688a8dad6d

    SHA1

    9b1a07084290bd9dd94b02f9053aea0ef6118019

    SHA256

    b6149b907d660a404c2733a0355dc28246d21607a26a26caa4b65d5f5b8d8887

    SHA512

    249aa25164d709931044d36e4016e093bed2bb029268b8087dc4dfc40b67548b366967942e0608c7e04d631e6ddfe97dcbb83945951e3443e2dd3515413297f5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9051332f60804ccbba9ceb3aa18a4831

    SHA1

    e39e854b6e1e95ec804abaf8b49f6cbd8d328303

    SHA256

    d19eb7ba89abbd3a54e12a24a16c38a55c4d2c666db7288397c9b9563c01a994

    SHA512

    5a42e22958b2fe1d62b60cec602e6e6460eabd8b22df52e818efa65aaa0ada7b34cf9c3535f08584f221b38b7d197526f013f144a339aebec0b849573afe9266

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2ae59d56a348107eea5d3f31845a9f9e

    SHA1

    6b2c496a8209495ac917ccbbba436b5779861514

    SHA256

    a871ddb28423a5ec33b39000dec795996217771d2527d911f75c435634fb4d0b

    SHA512

    2a5caa1deedd1878b4440e4ff482b121854802df5bd0e99d86a838dfba0733c4b2ac97644dea05650ddbd0f86b84e9933573c8c37780ad1985f204ed2da64763

  • C:\Users\Admin\AppData\Local\Temp\Cab910A.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar91E9.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b