Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 21:33

General

  • Target

    a6aafa63b48e1ed9ef0f269436ef263b_JaffaCakes118.html

  • Size

    67KB

  • MD5

    a6aafa63b48e1ed9ef0f269436ef263b

  • SHA1

    40591f1d1cf5f0aabefbc79737a06500cd3d8755

  • SHA256

    fca96dbd247fd9188d53e8f3cf50768389c87d430003c3103dfb5b7f8378b6ee

  • SHA512

    8733572b09ea0001e3e40127dbb6df8512dae947e355bda4ec9222a8af599d19a00c9b3f9652a06da326634d4399159c25761f06182aba7c1119ad63a9618769

  • SSDEEP

    768:JizgcMsSZ8tN99OIsi6jhPPDqoTyfQCZkoTnMdtbBnfBgN8/oygcR/QFVG8c//IK:JrWuPPDTTePec0tbrga6cuNnzIjv

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a6aafa63b48e1ed9ef0f269436ef263b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2184
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2184 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2200

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    a08991b3b3149042115bebb75a76ccc0

    SHA1

    4f1a11c57b43422713fcb9c7af450a3a547ad11d

    SHA256

    827224a17beecdd911e49e0f09ab9665246f781744d1241545d6aefe2e67c788

    SHA512

    dc3f8319b0a7ab3e3a37447cdd60b3772bbb5e73cd44e9e58c2ad979dcd68f48f675c8a0a2626e9d3af5d4c664a9dcc52b786b69946236d8f89d12371d987fac

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    319fcc6806c43ba338e3361e7632d0ad

    SHA1

    5bb505ab2089a076712b6a1f603ed2055dd6dd1d

    SHA256

    29381e45e7b2555904b5d9f4fbfa0ba3f849330d43b4494a1ea872a4a265e210

    SHA512

    5e4b98dfa41570b1f419f18746a5e4b25d7553322d4ee22cbc678fedf7e7afa0b5a139272ebc32c47c03dced76c9bfea43124794e864fa7c1d3d11d954864a80

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aa1f86fce0f0e873dbbd560d19f8d43b

    SHA1

    d9e49be0c68110a354766bd9612e7e534fac7e7e

    SHA256

    1998dd65458eb8582b8e654d036a0534d05697f9143fef8973088d6bb79e66c7

    SHA512

    8a4103d82ae3049d8d53d739f13f94daa15bf5ec4d6a5bd80efb6f649e0cda439da57099838110340fb596facdc629c16cebbb84421eb51ca456fe658bcf33de

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0f363a5bda09e5ddcb8a9abe82b494b4

    SHA1

    864642bd8e6b1a6cd30d6c2c1c43e3408e074c7b

    SHA256

    6b93833473202b76bd52fa8c8ba33ea3870838fe6589bbb8051a68d9f21ff0a9

    SHA512

    b175468e4b8f8acdf95660bf9a406d588005704c8264abacc27b209f68f278697bca3fa19c371f445f1979090241393d1c9f9db55d8a5e05e5e5c0e97e911325

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9021d506c7e67002b171c68fae9ed81e

    SHA1

    fe126dda34ae8a5bf4e70685f35a98c4b558d7b7

    SHA256

    ca7fb7e4715f363fc2da4a2b68843e643a4c32714d5d2e2b5c9296ec09846397

    SHA512

    d0d21990d3a07df451fb046225c6b27b112d24231b231779db1e78cdcb1ea71653efcc3d8b369342075a74a6e09fd0afb61c025fc711be8c6c56e6cc5b8ebd77

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5bf21ccd001a1c8708b78fe1c7b7ea0c

    SHA1

    abf3ff2ffc946b2d945a202ea2494ae2fe13a92f

    SHA256

    648c5be602a40f83b03ddb0b38b4f34af5202b2ad96a7c8a31c28b14bad66dbb

    SHA512

    3372e4b16723128fe41f5b20a19eb98a88e023ea7cc0f4d415b5d15dec7544dd6f0f420f6bfc8ed1a386029f6ef223664ba9f90eadef3c3c14129b855361d676

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    919f5997d5608720d318ef830c7347a9

    SHA1

    daed1083de3b0a52a2ef0b12f8e08499f9eb2501

    SHA256

    432aa2356c0380931c4a6688a16fa2d0c520cdb0879ca02eaf6b6dce908f1ac4

    SHA512

    246847150fc9e161b6593c3469ee6ec51c610396a1131229952cbda527ed4de48e626521b8b428b5a10ae8537dac397836b8ef1bd0329f4df15b2fe041447353

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2ec0534598e16b127ca7bb102d5bc430

    SHA1

    b40585aed07f0f144e844e5d9472677fe1d257a1

    SHA256

    0e514836e2f0fadeb0d6b56dba3a225573d8a384aa9869c512066f64dd36e437

    SHA512

    bb45191324b82dc7573e7fbea4aad5427228fd63ca390891e4ad658f08533600b94144e55ac31288dc6fe8d38906d64a9eb1b423e231b69b2c112cbf4bce4782

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    df77523ae64216f56205597d3f47e48e

    SHA1

    ec56317212038df270a15f6399f268d7ea9937c8

    SHA256

    c0c92fdd96c2b6ebc00f230efece7265b3481ef3025c60205ab13039f1cca5fa

    SHA512

    db70e792b9b6bc5fe69012c0803a5061b640c01f271ef1019bcf04103b84dd41df1e1554040dd22e8b0a74824069842bc8674b85d239a4007ef4c377bd31c79e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    719ec1048b6cc75325303adb7395e5e7

    SHA1

    2970110a218564b4d547afa6a7e99b5cb327ff34

    SHA256

    c20394ac3d6a80caa5ae51c75501ef4b42272980f382dd6ba9fecbd8cc03d358

    SHA512

    1386c1b875e48dc92be9d0b2a7dca90f2d235a29ed1d488418067b54ac504454eb7ee1ae734ab321d3e1439de530ad5fb386df8f771a1d8a3df81aa45c21dc97

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    018ed6c40971f14e76eea88718f50f27

    SHA1

    0b9f452fe6bdc47a1684bda0b99aabb7f4bca1d7

    SHA256

    c1890d8aa2eb8b3a2979b7df8f25dc920f539e641fce3121ea15d8e1dc95fe38

    SHA512

    35999a6dc0cad9a073777007146f6142defa71ccf81519228b588eb3ace2d9fee7e3746b62edfbeb26cf8c15ef77688f25a3cc0477c60c2096292c7ba0e5b01a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7a72f62815a5be14ea9eaff096673ab8

    SHA1

    19ad3c2c9b0ca9e9661248303059f978d50f3620

    SHA256

    90a9394233050d4439b19c629a860be2f48d2ce83cc0bad196a9a59d8044e51e

    SHA512

    a35d723a4bd0b135b3517c7cf48e27de410af3aee501664ad855c89c1981c9b340ff5c5a68ba185a72d5c0323eec98cc5b91f08f4ce55f8b581783be92727228

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    29a87bd6f23ae12ca3423ef77b0634b1

    SHA1

    9422334b377730178320dc0e415e2d9a68e271f0

    SHA256

    e19c72e9aab036da675235fe73d9d646c4f0d9bccdc5bfef938dad001995c106

    SHA512

    c50c24589834fffca8efa42b29cb6ebfdf74365c9225a59d9bd9353c82d7d77fb1743ad0e84efadcb88835249bba58696ed372092f838b0fc7a1347f8a033271

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cf4116f59d90a18b7368df9ff94ef074

    SHA1

    8aa3f5627b6a0ab0d067ca57576842f509f4ca3a

    SHA256

    b7d6d5be11926f1079be0072fa07a7e9c508d6810770f00655adfdd69e13e8a9

    SHA512

    4f065ad6adc4096001d0589e2e577f7967a5a5c5fc1fa3ea3948e5c1e426d4c864974fa69bbcc2c0b1a5bb650230f367840473ccdad24ca5db934c987e687d0f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2dd253650f721ac2d2d8bc74ce11ab98

    SHA1

    3012f17947d74a6fd286a791142c53dc3072fcb7

    SHA256

    533728f5ca325d233dd6a0849867339a4ec0169fd4d1fddb83a5e8e8c9986eba

    SHA512

    2897893642acc1410b1c3591524b4e79271da253e564c1694ae02b0fe2583bfacd27d5c5ef5b6171575d63df67aed343437436f7a765c714b29e5a36d9d84266

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d1e33e5860589634924df9525b281463

    SHA1

    62eda40337f8e5ac53a563873db0f151eba8e1b2

    SHA256

    ebdf2934718f7597c548c656bef45f03cbf0e5e45ee1dcbceccf83b1758c6edd

    SHA512

    853aaf00ed5b9c620d152d5aa0a4eac305564dc6c640f9f553caa00f9500ed5623f3eadfd1147205a4c185eed6126b8f954a04317c8ff829e06fe4f189a192d8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0df514747db68fc44feafbfb490cfe02

    SHA1

    1cddd582da0fc8a5ffd7557ac676329a36a09e6d

    SHA256

    599154b2f6de7387d26c7eddcdac4247e6aac084ba5727e885f7cc4f82ab740b

    SHA512

    1b5c0625790288335878f881ff28086e4588441c460e4da151cba2d2bec3b2e746d8bfa96ed1390738ac1aefe47439d91f092d80bfd377ba7e4b7a0ab0c928c8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    73d249e853f18442160a92df4abda962

    SHA1

    28462ab7a1a14316bf53e6c120449c21cc250a13

    SHA256

    2d0616b6e50994bf0741538d7f928b9aa12812572c87ad52be01b05fa75cbdb7

    SHA512

    b0c88206eef4fa5ca6fe5e65174c9ee2f2923223313d902f496bdec9680cd7fbc5356b6dce1089771a55260d707a037855106f133505e19c73dd8ee35b235603

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    939248ad34ef5eaa2e6a89f9e9356db7

    SHA1

    345dc68ab8ebe468ed505e69adfdf291adf90104

    SHA256

    1fe6f571518d5f2527bf90b67c24a6e9aa66cde422988bee1602f3a26e2abebf

    SHA512

    0c29310b610bc71abe765a605b19866b2d7f161b4d4076fc97213d8fdd217637027a66c9f23c5cb1432a4727a135f581c398a51a44ce15a5b7d9308399d1e7b3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    392B

    MD5

    7f93d9e63ac4389541384cf80e6764ab

    SHA1

    8c4296e6bec26100376f018978e55236c511f7bb

    SHA256

    08d33e52830c35e938e0ba6535e1afcfe2c32c9fb2f1cc2b576516bc6f7e1bc4

    SHA512

    247cf75d69b6a34999f30b666c9b523d69dfbabffcdf977d7b5849ea41bae95918703340e6a0b1e5ccd1bd82bea6f544693597e1c6c5c3e3b2dd7dba4db0863b

  • C:\Users\Admin\AppData\Local\Temp\Cab3238.tmp

    Filesize

    67KB

    MD5

    2d3dcf90f6c99f47e7593ea250c9e749

    SHA1

    51be82be4a272669983313565b4940d4b1385237

    SHA256

    8714e7be9f9b6de26673d9d09bd4c9f41b1b27ae10b1d56a7ad83abd7430ebd4

    SHA512

    9c11dd7d448ffebe2167acde37be77d42175edacf5aaf6fb31d3bdfe6bb1f63f5fdbc9a0a2125ed9d5ce0529b6b548818c8021532e1ea6b324717cc9bec0aaa5

  • C:\Users\Admin\AppData\Local\Temp\Tar32FA.tmp

    Filesize

    160KB

    MD5

    7186ad693b8ad9444401bd9bcd2217c2

    SHA1

    5c28ca10a650f6026b0df4737078fa4197f3bac1

    SHA256

    9a71fa0cb44aa51412b16a0bf83a275977ba4e807d022f78364338b99b3a3eed

    SHA512

    135be0e6370fd057762c56149526f46bf6a62fb65ef5b3b26ae01fa07b4c4e37188e203bd3812f31e260ec5cccff5924633dd55ab17e9fa106479783c2fb212b