Analysis

  • max time kernel
    117s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 21:34

General

  • Target

    a6abc58e0f14c68992ec2647f2060683_JaffaCakes118.html

  • Size

    6KB

  • MD5

    a6abc58e0f14c68992ec2647f2060683

  • SHA1

    0890474064a97fe9f86b9b0fd61581b5d7342d15

  • SHA256

    632b20666c1d7432e39d6aa7be0e0c66ff5a2e015b0d8c066c5c642825a56c33

  • SHA512

    b542163ef32347da83274ac90c374a18597299e3be5fabd61ec36119e927952ac7fcb162813688abe262a783bf6ea3d0db650a4302b7baab0118bf53c0f0b61a

  • SSDEEP

    96:7hM3sHfzsLkuAvZYMq3OQv2vufMJvZ8GHCOWhWJ80Jdkr39H:7hM32LsLQ11ukf8GiOWo0

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a6abc58e0f14c68992ec2647f2060683_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2180
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2180 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3036

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b6dcfacef6db873e55263c9774d20dce

    SHA1

    fa56fc33216b4ec5058297c76a21291ad7fe4855

    SHA256

    c500feb31fd9c14bb1b641a673b7d58da156c10e79cc50646f866c50c5ef3e43

    SHA512

    88b5ac071bc954aeba6bffae67c18ed0bba6b8155979d3478304279f4bd5cfddcc8e4590adcc287acfd1505558fedda7625b7c69b4f77eae8be67f0708310bca

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0d9b1e237a107fa9d902f69c62c29e7b

    SHA1

    cbb2bce3fa934462cde4c297bd4fbccc5b7e0cc6

    SHA256

    49d64b5a383c81022e6a9218921c167db629461e29e0f6576b07239e90b89f23

    SHA512

    28a2d1c5cf8ba278db287cc80d435d84c4be4b48ef7d3bbdb2f53e734374dcc491a165cd5a97dd3470bf3b0ac593d8676d594218c1106d5e81170bb9ceeb3757

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bf67bb744c53b6e7dfba007b5e32bbf9

    SHA1

    5a9b74beb38352ff2053510d812640b3e4399130

    SHA256

    0d28219bfdbfd18dd246d8e42a1309f44b6d1fcf712fe49625aec54f8fd00e17

    SHA512

    d9c43d1a44493fa448bd511c44242da7e68e75162491a5eddb0c7d0e32346ef377de599b2c941068ca24eec8b6b5bbd8d1925bf6caf4d1e20da91d6f223d188f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5fe5db14ffe18fdbcf50239cce02e61a

    SHA1

    80d0426ae92881bb7108cb77e9e2e0ec7c71c480

    SHA256

    39f8f82757f8dc7fe5d9c6c5f544f0e60e5a6c5912ddda90fc3892f0124e9250

    SHA512

    8ca7d92b5dc14f44b1b00e9283e2ec542aa5702834c447548862ea6ade32f2e6dc1711808f003a4947d1ef495c22547bb1dec2f06168224068253c3172637f0f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c87b880d796cefbf9a2a5d07d169d921

    SHA1

    f4b878ee4f531834ab3f56afd1379ebf816c6991

    SHA256

    1837ab5581d2da3b940ba08dc6f751f6fc8852e5a5696f3dbbe0d06caa64f962

    SHA512

    d9d8a1093497848d42ecbfa74e9e024075063728f1ef638487c29d1ef18e1a9f5e481cfff5719c50fefabeb4d1021a2a0e945bd70f920adb1852f0517a61166d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1b16bc336f9a168287747a900562303a

    SHA1

    a42d8abda07f221dc63bf2a14bc7f01aadc1a368

    SHA256

    1c6c2bde817f8a23a7bb9c1a746e0affaba30cdfcd3e81b9f569a33d82b91e5d

    SHA512

    e868df4f7a231e81fcab3b3c581cbf4fc488d6ae6682de92b7df1d3d3dbe37e93fd5fd06d5b017c497eb65d9ebc6fcefcd61c4d0a6bb9ae2c6b305d4e87a553b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    91842c4af4d483ad8ff5cf96fc034f29

    SHA1

    15199edda701778f179f2fbcaea5ddd9fa58ec82

    SHA256

    2cba81531058fd47be3512fb74862a8e2a49020ba5c91124a9c2265e3e20a20a

    SHA512

    f6bbd8a14045ede541323363649c5ff7ce509e9a29e3df093e057026b2d3f911abbed52d83991ed26e52f19fe0248c85570c9d7ea5929689d67ea0e3750a5560

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    46f2c99208f7f6639452a5c172a98e84

    SHA1

    905e620cd1df184de20670092a57acc15f7c26a4

    SHA256

    38d1a94e4d651f8311b9a1124927a1021d2876a47f5a43ed3b98653f6a5d1c15

    SHA512

    d6e9f0983f3520635389819905374afc89279ca7862400a50469940c2e64bce7bf3f9bf97ef29ba8c08493bb45fa84b314aef2a9686189a88345b49bf02ab518

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f33ffb0874bb816626069835e0296584

    SHA1

    3258fa7ab659f4dcc6e5149c61091ffd8bf110ba

    SHA256

    2c25bd7b8083b737c5711443274f912346378b2ffd578e973a77fc6589588347

    SHA512

    015e06b896eb384de71d574de3a928f397f5e84c92af30dd1116cd0274514a48fcc7f1b7242005b808db190448b9c78b4c4a0aeedfc9d8951f6fb5897fd97843

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fe110e852ea3bb68baa286381089e090

    SHA1

    badcbdf3f93836eedc321a4eb2b8dc3a9a49e2f5

    SHA256

    e9700be90c0bbb6a68ce9d1836df86da5d27ad983df09eb688f0aefd583779dd

    SHA512

    bd1d6ae9d902b2f2dbeca16044f9e63e5e37b161e0c07ce5c7d38581c550e70d65d9e3c1278eb177b62af3c1cc91f5210c4b3a774f91cc9d80c18a3722ae266e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b0fff28e9c4e553620052b252bb4592f

    SHA1

    d860a405527c145a5516acccc14b1ea938845cf1

    SHA256

    22ff134ce9e08ccb9474c6b436115708d7291e5d271fc38bc0a1dab3e7d367e9

    SHA512

    39e8bb6bebe2c89680c54374c1c1ad52640f4abe07aaf5def925aa35dbedfb665eb9e50f0771b9340797639cd75a947445f4629ee8124372db07ae6727cadcae

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7a49978fdd9d4004dffa5a45da1b1ec6

    SHA1

    4c8a403abbc53bc38c1f2d11c705d04ddfadaa69

    SHA256

    86f867b62ffeb4161301ce0c6f5f8e71a9357bbbbba4d8aa7658226e34bd7f23

    SHA512

    7cc980474b6a7370b0c172366217d4e247f09c7f5fd4d66cd8aca08398cd2a325ac468bc2b92011af914e876a92a397bd74b958ae2c6204ea6a46d81c22b1a09

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8e77dbaf4f8cb2654f8eba8653e06c2d

    SHA1

    f956bd385e5f2b06b58e5d19efeee6144b165566

    SHA256

    466f0f0e5a97bccf7b012057851f1c968cbb9fe176c1f56be9ce4c7f1065b6a1

    SHA512

    bf9cfa9f00f82f33e670e0812e739074eda864af662c5f11e60d9a46decb2b1bfc319ae6c892e2628f219adcbf308de38b739503871bb5abef707a51f2f4f507

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7409cd32f498b045cf37502d8128a5e7

    SHA1

    45d54e6d4129f11ab29206132ecf400073f50a13

    SHA256

    3bda08a345f6fa6ec59269b0d1cccf06180fe07e444b034c884f185442f472e8

    SHA512

    a5e92492cda6390380e6b89acc6ecb6a327bbb8e28144297a2c902a029d420dc15052a64d65614f45bc1693cdd29b274cfd5d53696937070d0c10c5d7efbeeba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    96420bea101007de34ba39fabb24e032

    SHA1

    d529e3c0f493aebc542ea7a79bd05204f6e1ffb6

    SHA256

    98ae9e6d3dac94fa7ccef02f2ca46e48cae6e09650709251c4bee55d3864abc0

    SHA512

    ea6726286ebf7903d9af41a7c29b86755ecb7239681f550f023fb01b877f21a51a9c414856e2f76931c31e0a2ee26adbac185d8759d1ec4351b4f123f428d9ee

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    56029312b24d23d884218924322f2fd0

    SHA1

    c0ee8c26275ebe96cda1ce0e127f3d8320cf1aab

    SHA256

    1abd0527f002ff858c0bde659d40d81ea753eea654ec3b4a7ddc3d4debcf4123

    SHA512

    2a6d63e043057befaa1464ab4657469c258f8f3b854345f015425824709b67819555ea96a41d2fa6058f45a769db00df4c5befdaa8c2e0cb1880bbc420c1ccfe

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dc421ebe0d0b13cbf9a400ee6563bfeb

    SHA1

    cb301fe059b84c81733c9861fe22d7dbcc04afac

    SHA256

    12c858f466189f37201c5614ae194c52d5b38e05c74979a5d8d66c6473a6c8cb

    SHA512

    cb97efbf1a7948584a36027fd59455460c2c4d8240c51e8a54e275b435623422c665aee9cf34c6208752cfb3929fe14b2624fd56be14873f98deb18a4c77c955

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c4f671599bc65c13bc2726d9181b8999

    SHA1

    fe5b6a9b280cf81052624a816a995e5fa7dd86e6

    SHA256

    7af57f28ccdcda1589ecf038946cd5bdf6b021a826777ac66efdaf75f34a900f

    SHA512

    04d40dfd89a7a08ee14336178493e309ca42f187eb9987afa7f008f65a94ced48ed96bb2409cf1d63f6fba6cd7ccb098b42849076210fefab7d6a149fbd7b76e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    358970a0c044237792c1dee62bf2dc87

    SHA1

    22d8e25ba8ca1d09593eb1af867e39b89cf2a4eb

    SHA256

    47e51445c95ab69f44b6fe276a2fde45929e07cace850f633604607b24af277e

    SHA512

    5ac642945a94837fe2d8d762ec3433d061b55c9213f18b5fbc06a77d22436099aa31d5143c5a9ccd611840fb98cc8fe91bc33c3a6c4cce80f051ae26dcabaa27

  • C:\Users\Admin\AppData\Local\Temp\Cab41C2.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar42C5.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b