Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 20:20

General

  • Target

    a22d4f4d4d1af1003641194ef6a77c46_JaffaCakes118.html

  • Size

    125KB

  • MD5

    a22d4f4d4d1af1003641194ef6a77c46

  • SHA1

    a5893fb16914af4873f20c1ca6b6eabd156b5a91

  • SHA256

    1452bc37dac5fb7d481dda90c0de2a6bdb0190908e83633b0286d8c06f57e47d

  • SHA512

    1cb8453cbe38c945b37af02b7b2448cdf44bcfc7fd850c189be841627d921eff8b6aed3463c5f64c8d41ec9ef7d277dd32c97117008456215197fc4d5686b774

  • SSDEEP

    1536:SfFtAyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGL:SfFiyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a22d4f4d4d1af1003641194ef6a77c46_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2164
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2164 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2128

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8ab2e8c7237bfe2289c2a9990ba87ed4

    SHA1

    e70882e0c689fe3cad81f77f500d2d2c5dce927c

    SHA256

    3ab83c6fa1986e54f7bd35d1553b54a7a494aa1f7ba46a6de34f3def06443e7e

    SHA512

    539af5985e915c17cbc3ff8e64eea9dba1b06033ad52268d2f3055a18609f3fa5c146d0cf74bd09267572e06596da6c9672d773458b507593c0c928f1b12e79d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b631114ab53736bd60ec428945e53550

    SHA1

    0cac08c81aabc9239f0c2cbccd59ca615da62cdc

    SHA256

    053e8f52da556f350938f81442b3f26e4275500bfea958a3d350399d4709e028

    SHA512

    d7dedceb4a84e8f3bedb94adf26ac0ae88e9eed951ca08ac83c14055f79fa91a940763954753d58efb3286d301414651ede8572706a43904758adaa46da03c54

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3e9c6a2edfbae028d9926a5d29ce1890

    SHA1

    c2e05f47f40d7e2998e4fd4cf6e5777792fc50e8

    SHA256

    5463e3b00165bda5862f0c2922d31c9a6bfd82ff896ae533b09123766c1c3f31

    SHA512

    446a85fe02df6525da5b113afa8308c424e3ed22f841bd81d25a8a2ef4c709860034a914318ac77df44ce461cd3d3358247f80ad7dd9e4093cc2642d63a9f3de

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f05801f82ed417adefa2150608be3d93

    SHA1

    db4b87b524b6155f625a8ba8487ea94d7ce3182b

    SHA256

    d19cee6ea22b65cfffd777ac896176b6cecbcf10bf9a9f14fb57a5226ea2e35c

    SHA512

    b511d5b74ccbbde1d66e9d49a4efdff4c03843b7efe6c3640b246934e649ad3e0f69b2444ed21b74ca9ce157763736ee93d301881cbfc2d7044703348b5bb2a6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    17aa29df0d88d5edff147ac369db3269

    SHA1

    923b9dfb007cee388911773a136e7c751a2bfb2b

    SHA256

    9aab490cca288287a69e856c5b7c16b3127f04d5203a94fb9ec0f111092403a5

    SHA512

    3dce4b0fedb92cef2e98a50f28e822d4eca7ad6179efeb612fbb4fceae0a59e041a59c6f2687873ee45fbebb9c496df8636e490d85d7d56d500e5a6a0349080c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2a636356cdb65bf2036d2aa1cf5a37cf

    SHA1

    04c8ca79f0535366104621cd73bbf9f329e482a6

    SHA256

    ab5bf4b8bdf70c5f3207585397e23c4fbefc2eebae1c7e4bb8afe19fd45d9e1c

    SHA512

    03a6be70017edb9910ed6ed38c07c51550eeda1e1e7087421582c8282e021822186c815218741d4c072d7c4a346bea68e24105f7b7491ec0e53e6bbbb82cc7a8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bb8f79d7fd82002f8eee03ab668047c9

    SHA1

    d72d6e369355b711d35fbea495b0b16f4aefc00e

    SHA256

    e02058756883bc52176e7752e2505af47438c285827001089f776eb6503beb21

    SHA512

    49e11d68898db78f5e23cda9d4279208e5d9428c9b43edc0d41eec22ac417edbb047eca64bd9b67403cd65d465fbe377c6a6d061cf6b62d88d9c9a6a2ba3993e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fbe05c4fe14e219be6bdaa4dd81af683

    SHA1

    098ae6783e646ec798f973dd7c4fb9b855bdfd30

    SHA256

    919a79fcb1357a4b6bcfb0e0eafd260c62eceeabba3ff709ad54f45d2b1e0e48

    SHA512

    0541543172210df31560fb0cc845171635aadce128d3b64897636d32b74c5fc8e33f316af4c17edf49d9f9b93298837982502df4862e57a510d4adb3f61d5587

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    78343fd0bc4ad12c07837ebfccb2b495

    SHA1

    07a056702e84b2998b70fa157a713d8b4bdebfa0

    SHA256

    97c34cb3c2f6cdfeeddcbae5dff384feda05d952a5a955ab3bce618c392e6a76

    SHA512

    93d756394ea0911839d0a6127e8ff8aed470b4645c0af677af20268bed39eb7a6b4fc3774ed61bfb6afbfce14bcd00b3f65d937628fdd144397bfbf35918f32c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3c2510746acb6a8ad67fca4c055de075

    SHA1

    adc9664fcee2873a45163f308beb7a841231738b

    SHA256

    339629d3d42df078b5a9c51f04a84b6a48c280df630d695f4dfd34b2703d7ff1

    SHA512

    d0e36899719f02b16f43a87ed4d3f1dcaab907cd0d89ce6deb7bb910873b7df83d109df3ed27136e83d6a840b6d56dba088a09d431b298bf3e0bd48e06a46ee4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    99eb87a221b838e29d6dafddfaae3c9d

    SHA1

    a7f7ab04829aa3ee3f4cb0d3b7fd475b98bd990f

    SHA256

    831f5d0f61eccdeaa3452e62db3cd8b209047e472013bf6326b8c067365d23bb

    SHA512

    6b3cdc9faf025a3a5279c651946efa89083603584456089218fc3b4eb8daff03fff28ba1a4ba5a8e239e93cb771345c125b3be2f45ed41046cec4a091ee38ec4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0b6b064d4ea7385a00b77604e24dce5e

    SHA1

    70c1b9f307fb85b839ec26f153588e22f2f23010

    SHA256

    62c300b94ab4ec86703df4498ffd533a739ca31ced156356738fb38b73aa22fc

    SHA512

    fb8faed7f13115884361fc5283e60e89c0c72d54da027c7505db6b89d594c2be55677229ee95cc4df32780c039a5c4219cd885bf9ce4a296fd271ab572dcce92

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0658f02dabc6f795f95924048ed7a368

    SHA1

    632e9c18df8da744e8a531a931a8cb0148bfa824

    SHA256

    a089f4b884de24e27d620f7a3219f54aa2b43c7e3b00640fe0b8832c01e327d4

    SHA512

    b2e9467dc01da724e4ef858d763c53af80865d3969f79c8cbbcfc40e101213f9c771a5ecd0b282bc8e1c5b1efc3ee9621bee102e53abfa17cef6bd97c4154839

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e9d959a8c474bfe5e78cb0733b8daea7

    SHA1

    b35f5d3aa2748a1f10f51aa59c58f8c913e0370b

    SHA256

    6c08356ddd182e5cf4e4da9465b7e30845ca3ce7d89a8890c0a6faff1908a981

    SHA512

    6f7bedf136a166d6fe35740e8742089ffad7728c7b519dca9c4f9eb7965ccce8d8336ececc133d775c7fa0d2dfc52d1dc0aba990114bf6ba984220f9438066c9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6d450bf762f870c883e285fb0ee74ec1

    SHA1

    3a78f37bcee0e9089901bc7c195820389b0aba33

    SHA256

    10f2ee46c6a5cc12dfcac23f853364e04ded7956846059875459b3992f632b0c

    SHA512

    01f176b208cf929be17ced7fa589e7fd366c0a1a5f10558f03053bb348237cd2c46059af7a76a9bb9c09cccde6bf50389ea02d4b2fb96797ebbc102ae9da6965

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1ddaef13ec0a780a14eea83dd9a020dc

    SHA1

    21b8ae4f588aec3d144f66a3fca794a7aac9c3bd

    SHA256

    68378c42f810db6b101610b88c61b19761815bae77302f6e2388079bee237fad

    SHA512

    71cb522cd578260ada1af7bb69af390322a5d91c65baafc4170c2cc547e8a5a429848cd6d1166b659b47b0161c47e1eb6f1473ca5df30b701d830d6ad47154a5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    985c90fd3fe4f119f3134d45cf429737

    SHA1

    2561c8ab054fad2e5e9050a5802037f665bfc566

    SHA256

    bd065a3e26bbf6e4507aa30c48a78a682c8965edbb6f71dc761bcd292b619c94

    SHA512

    686789d4bc284c41093b237f0d97ac33df2da882afecc687e53f577235c9c0d675478f53d6dc664e3c04b1b4871d70335cec59c00602f91790f165a608d26404

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    db10b7019633b8550cd3b8fe6ce659a8

    SHA1

    21a30cc406bada92e22aa5cb284608d176cab722

    SHA256

    8bf2aa8bfa29d2ae751921804ea66cd4fcbd8afd1b16fd19f96ce086eb5d16f9

    SHA512

    462ffb19440afb1597df4249de3c1bb06f58a6c6401bd3ff5c219582ae29325403a340b2f8e642cffb1469f8a0c3a1980d25b45c169eea552d48d6d734cebe3c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aa507027a320b07a6ab0ba0e8ea274f1

    SHA1

    e51da2b4843f277321b554b91bfff4cb007ed85d

    SHA256

    80366cc2ee853cb306be1c9113772b1a32f9e273294a960fe201be33f542c493

    SHA512

    1cfb42c830e568a10392a7c2b15cd1d2b2a7081371e99d426f54a5de9b03dff195b85ae02984ea1dc5b00c0849f6e5a065fc0eeed892df2ae539061eb04df8b1

  • C:\Users\Admin\AppData\Local\Temp\Cab34B9.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar3760.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b