Analysis

  • max time kernel
    142s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 21:33

General

  • Target

    a6ab31a9ccdd1c9f1ea265a0129fb2bb_JaffaCakes118.html

  • Size

    35KB

  • MD5

    a6ab31a9ccdd1c9f1ea265a0129fb2bb

  • SHA1

    73034fd1da627afc5e8f9c4c31bf1564f6a1bb75

  • SHA256

    658ba23e2c2de2a99e7447f9ce1b4203a5ea7bfa4224c17874a89526e2d4fa8b

  • SHA512

    af7e7af383ba9a8b747c101929db88557c69f305fdc1d39c9f6ea4601b480cbd3e42cc2acb8df12189fe89feaf219ec849f853b05f1080fed627da0b9889f205

  • SSDEEP

    768:ESFQW81D4RA+vEOjz6rdG2Gil54RZfPGnf3Gu34azi6781DdRA4vEOjq6h8aRlRV:VFQW81D4RA+vEOjz6raAhIaGC81DdRAY

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a6ab31a9ccdd1c9f1ea265a0129fb2bb_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3044
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3044 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2984

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    fe1962ab41db500c543ebde467967728

    SHA1

    dad28e8eca3a1ed6d3763e954560ac220aebc7cb

    SHA256

    fd9fd4102d9703d49689d327daac7613eab81241aeab55d825517b29ed4948c2

    SHA512

    16e4e1e952765e2f3084696763420ded61cec3af8307dadfcf28d01062ec29f33cd467fd0b801408d1386b04336070dfaba804b89c4fed16494cec06bee52bb3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6581e76ef3eca385df3adb6ad02fe7ef

    SHA1

    6793e38f0db916feb754beb106be4dcd9bd62e37

    SHA256

    1afb95a421c7aff5d75a57d119635040287a66bf261b91696d447cc9453e50b3

    SHA512

    40c8af92a17f2c84bd03fc483e64cccbf3b662126ac44326acfc25a5cbf20fb2c33dadc391f22c57922f84fc98ef175dfbad10b12126c21d6cc36295ba31756d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    930fa002f23624940c5cb3e45fe4cd1b

    SHA1

    67003fb0027d35a832d09753a101b176c4f8e702

    SHA256

    ac6725509f69f820acafe85f2aa77cf4157d99a40a725faf1cba626d51248ae1

    SHA512

    3a31247e220570fd1995ec5cf36627b3a19100ce8cd71586efbf010a80f8cc6829e2ad5c90a8aff78c3d5d0f900abd57e4896b343c08c6793eff9058cd3f68e1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c690b6b6eee971400508746c5ef64990

    SHA1

    ab662c65c233f3b9c5b62fc1b629e29ec1390039

    SHA256

    aeea3e4be578702462a12acad925fcb13d42dd6976b4ee01bdc5acafae492af4

    SHA512

    323cf49e5c262e45c433eb3cdba050ac69240e83f6bed5ff93c8b7679e1e39bd4261cba97b118ffc99726be5cb196b96e752c71cc7e0bb03b296dd5eebc444f8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    31f773409ac740eb034c551ad85f0f69

    SHA1

    d55054b78b81afea9fdb855e9ce2bb689a84f964

    SHA256

    34852a518d94175db735635ed3e9cf4edaa535ad09d9f926f0297336572fb722

    SHA512

    462200bd569379314e81cf446d4a839bb59cee0a85bcfec4a18dd994fd22519616709a955af482d5ddb6c74d4be3abaaefc4cd79117b308c65242ee35569a25a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a31c16fdc33f854de5fad6967831ab0f

    SHA1

    ecb8d8fe1034932d03f1eed5992675cb170d9d3a

    SHA256

    c97e41144c53ce41fb609ac0fb94efb1fdac977fecc3ac245f45c83c44b08f3d

    SHA512

    fc8f619eb5a4460f523683d6e23aed56ba0887c4016f1b0131d8634fb6593ea3f77665da16c7bf487a76d9cfe7ad1ec824911c10bdf3fb362f2e9257fc6d69a8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9b84879bc9c80ceec8e31b1c1c11c156

    SHA1

    4b1b9e1966d600f10f67a027e02ad42ab5b0d8e5

    SHA256

    da5ebf749ba868fe0661b041e9efa362cc1745c06098379f39c9d7c7a909924a

    SHA512

    48dccfc166cffb035f7c26484c4d32f7a02e1cc5c3657a246671db5b58895572e4e661682206ad14ec90256723d53e3b72d86d5ed16962ca8512c6c5bd73d052

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ae514305094262ab79f6868c9859926c

    SHA1

    ff309c7005a0b671d70af8d6e6041a4c6f5cf902

    SHA256

    bb2cce65c6071421b6d95674579003f66dd77ba3694a44ad3c25749905053ceb

    SHA512

    267275e70274c6d1b0187f6163d424ad7821a876be489300b474c2060d713d530adb75aee22696417dc6904966c455ca21831f55d4ee29d98239609d52219d7d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aad26525631dacc07a9de9b62231047f

    SHA1

    6d80ce88ad4c9550062cd17061adb0a058c91d01

    SHA256

    7619a25046dad59376a2972d09d29f5328f7a4f1a99f87569ac7c42c6cfed581

    SHA512

    48eea2b0aa5a0da8c5b7c45e6f875e76972af888b8ce7b6469834799c0d00b61be0fd4c81341c23afbfb1f0a7cff3e2162f1bef3f021a010829390f2cfac10e2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5586f182242e75e8db5cefd0f002a67b

    SHA1

    c6f260ab1b7b90da10a4229cc2b82bd54e1ca566

    SHA256

    1069a07a812273b7be4229c74db7b87d4434607287c4c7c34857ee618dd7bdea

    SHA512

    cb7b22f162c43b972026b5f7413f8f6bc0b46e0f454ca27f5ea7b289a82bce360617d5dee5b65204ec8542b924119b2068acdee12a22f70b0eb76eb47bf11a52

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c327bd69fbe0d1daeda487b5daa4529f

    SHA1

    2765c1a1ebbcb3d688ca98ea988ff8df91e8476c

    SHA256

    0cf589d7d10a90e9096200190e193c602c41253ab60c07aa6a4e9949a3099f91

    SHA512

    69ffedcda289b72714910652409ca2a7c5f40dfd200790d7cf0fe5318370f9770323b94d4c0e40713c2b8831ae0bde9c437b6bbd00e618fa0fcb224ccee26bb0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1ca4327abcf700532f3fe1a66b6a5612

    SHA1

    e0ef9667b905f7b003750a3d588ee77bb064b8b5

    SHA256

    9d7223514bc6fc1498a96ba3f45a956eaeb031f6b9e8804adcc82780252bd348

    SHA512

    19704c09283ab5ab2c6c083a9bfa547f2fbe2cefa4131efa29d9e08deae41d6405fca55dc78fe45366954e8a4ef8e0fc162ef17c5c6aeb1b8bade80aeeed1923

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    949a282b39dbf0466cace6a642792474

    SHA1

    f5a7ee30a9231858bb4be7c6d7a8af616ccdaf3a

    SHA256

    262a47c4dbda292fc7ab5c290e4493f08a68fbdae5f6ce8e89232096ac697999

    SHA512

    ca7ca64193677e7b548f9ec247e7b6cf46f32ba7231c703f700253a3e8b0bf7e834fc67bfe7875bfd674ab198b818198d6f962629496ed163cf4001a8a431f96

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    119d971f95b0f927fca1241600805d24

    SHA1

    3cd23240dcadc10c845e5033cfcf8544dabd1930

    SHA256

    a765db90f0743c57bb3fb2aa00c585aea26511d8fde5e9a1c52f4965090401e2

    SHA512

    73fe0c09b1ca949a188b92f59b45374a9fd515e328c8986422ec85389d1b90bd9e305de0916ef4c9ce88f4fe033c34cb77b94a6c57141de4c542c636ec14ba23

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    de8b206c0ddb58246f1af1733c5fc061

    SHA1

    cb4b1ad900824e0e7871cc427d5db2de5c272bdd

    SHA256

    da1b3533614f39af29474b81e30d12c7fd48b7b05b7bbce2371710b31167893f

    SHA512

    cae4ac0efd3c4ab488968f1947a85774a088a38a81bf040b0b27bce147b4ad9600e78960d7de249d8036d2896ff84275b36bb5fe8c0c3df67c6bddc3572db51c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f1473697bef1613d4fcbc9fbcf827090

    SHA1

    d973421c6b7b6be23187951fd4b1502797888938

    SHA256

    ed7ae2816a99eb87ae648a633c12c9f4f2d49fb75c26789cd764c3bd34a47876

    SHA512

    96e68919824105bc5b676e27351ebb91b932eb7d75d2d12330719f1f8dbdd3bb47e9897939ad087f9b5afc581f2adbde5e042a0ef39e0b9b16e907d7f9e1802f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    356dbfe7afca327c678b2a6afbc2c21c

    SHA1

    6e867563d1f31ca34cbf2d65fb1b8acd09e61018

    SHA256

    69694658f299445d5c05ccaf27e919ac04b853ed7c1ceafe53397cd81bfaa986

    SHA512

    6fb9ee874b93934456d9eee8764e22a32f7fd6c97a62e0e4328212089c66b9c3d99ee7e3d95b2765573995f998398615f62234b7beac5dc31d1852787c0f24f6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6bfe3e856233cd282a99224edf86c56c

    SHA1

    aec13536a6935339d38a586fe2c9ac0f71cdf434

    SHA256

    eced39b1e98f1ac439baf7a16ab79925c9172ee6df22d7009941dd7f2f46a4da

    SHA512

    21c158ccf329499d9d8f13ad7206a40454687180c8553fecdcf1342366f5df9080dac74fd8494176c3a2d6879ada6d7599eb52ad428741d3db71fd573d591155

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f6daa36d8fbc6ecf250d2e448c16ac14

    SHA1

    451eea92e6aa95d061bb28a490c70aa9d162b7df

    SHA256

    ab19c523cc46a07ded4d3fe3296b62bd86ac105c2a53fc5481b5b64e2067e393

    SHA512

    41695c1bfa6ec5416f9cbe0fe5854adf053a18f75c7c5d49d92e30ee9d02f215faa3de9e120226c8e2ae4a21178b1bd1f43a8d9673812763c9939f82dcd490cc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ec93e81d1aa399c3854f4e710b1d1f61

    SHA1

    19127c1acf852c605ae9d0f014407047ac809319

    SHA256

    e7e5c57fa54b9ac30d3cbbac6ca3c6188067c8b3bd0938deb34fc5ab11b298e1

    SHA512

    74061d191cceb486f5b3d4d59c85735a3bfa9eda26198b174157ae8cc510a59fbf10c35754bc8f8ae589fc8a71c40b2056ff62adc001a53d6c350975415b204f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9ebf281c60ff44483a1babe32691dbd5

    SHA1

    900367f7bf67231324690af4cb9342df71bb99d6

    SHA256

    29a1efae37fe14561c7aaad710b34907a4737029a45d7f9a405c814dac865796

    SHA512

    ad59cffa4f2483ce3bfc3916e63c3813f820cd208a1a32e283f8ad42f99fdc89d69fa79e7dae2c4f0a89593b3919c77b6423042bc54afe874781274f1c9c56a3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    05f3fbe965b866dfe854633c9b634cc1

    SHA1

    9b1d58e0544122995dcb5a22b9a1557ef3f2b115

    SHA256

    12c68536bc93c54ff8ecea3e24fec8c55a5985700ea82a86556c24e83093c3df

    SHA512

    2b7fa8d8f7a99bdfb6c0499201ef83c79cf9c8c9a2c40e50a5dd40f616f006ff8e87e253c0e770d0b1aca6fe4b26181181b0ee7f83eecde64482cfb7fe283516

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1f0459d5a8859ece505f056db8d8ddfe

    SHA1

    9981caf36ff8e72a1aa57751985c735895a24ff0

    SHA256

    721244ec98352a3154e4be638ac7590122dd80ce732c496b5865c17f508e24fc

    SHA512

    af3aecf643e9886c858e168dcd4d1f3b17837812e6fd8a818264f5e050b434d7e67c1a2dce49befd1f1c8f69a040a0939fd780df1535713402fc43f02e654de1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    55058463780be71f1722af630683bb66

    SHA1

    974c5ee529a256bddc2d0130678fd14e26dd1bb9

    SHA256

    6bee04d96199ca59cf3145faffe127eabe83b1d49efd105c2ad68e459e00b682

    SHA512

    596b0486e5f7364d5bcd54d0d46da654570b2eaa9c0ca01b46089a6921a90d47641207ed7ff17389b0af8629d891addfffd8ba5eed7f29eb400256bb16d038b1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

  • C:\Users\Admin\AppData\Local\Temp\TarC26.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b