Analysis

  • max time kernel
    148s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 22:00

General

  • Target

    a6c6d0e99fadb550aab543e457c1f1ef_JaffaCakes118.html

  • Size

    56KB

  • MD5

    a6c6d0e99fadb550aab543e457c1f1ef

  • SHA1

    ba436fe31d449e43c393854886ba189b96b2ddef

  • SHA256

    1682faa67b2351f9b5a9da9307762ad30fa2da54530bb4b81c3a48c788960e0b

  • SHA512

    ed30c716627fd4120a5cab934cca9cbab01d2bd7764ba828035aa3942a9d828a999ceadc69b0128452ddc163811c7f28ee344b3be68d4174970b803d1036bac5

  • SSDEEP

    384:SI/O3qUl/Ug+N6wOLpqVpGHjV6u1bifBrotXifDcQb07g3J4xH1JgWkQA61BbMBh:SoO3NF7wIwVpGHilJqH1JtZbEJhh

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a6c6d0e99fadb550aab543e457c1f1ef_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2968
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2968 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2192

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    179b16b4cffeadedc9e327f56010d561

    SHA1

    d3eda7ca5f78c47b1265e59de592b1294a24d519

    SHA256

    d23219602732c0704bc01630ef6c99c2581e9a2367fd4791f07180759372b0e5

    SHA512

    903c2ef14ef03071a46154da838499844008a7ca0ab624cc4eb0affe22f90f7f03cc6c9ce459771b168ae8524a4054a4e42be57ea2e1d0d43564ecaa33223ece

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3854f4f20a9580ef0ed254fe604809e8

    SHA1

    8611a071c3e6977305a0eb6da7d541549af96b19

    SHA256

    98d9dec2793b79738afe47b81a0621d0b1c2c667a68d3552f32872ab117e7423

    SHA512

    dd094794c2a303338f77c1d19c991d6d4ab0a9889ab669bb142d1d35aba3ff8d3ade4f4580748e445103c6ba2e9e0bbf43ab74b8479c1d91c3e58ca13afc687e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    15043608da08698f89369bb7c8b2ac10

    SHA1

    6f31d020022ba3865ccc7ee3f86e2dcb1aca870f

    SHA256

    7f72077b6cdd03277300da87e21e1536b3041b06206d19b052689179ae164718

    SHA512

    1542824d00f63540e6e5b3cd2442abb2d20d870a8135d78bfeae490a1315c502001b02c81b8c681172cc02a93bb6e2173c999e63cc8dd373db8ff0ec521b4c46

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    52eb52c80fc1492da2d08cd092ddc4ac

    SHA1

    4da327a71288128656d487e0abaa720027dd1ff6

    SHA256

    c04300a4521dff6497ab1176be866d7a498bcc5d3fe18168208d8616b31b88d4

    SHA512

    8c634bed29e1984a86e727ca61a59ea8cf6869f2ab4b8dcfbdffeaef0cd168fbca7ee52b98b01e513cd7809227ffa69a27af1dc8f3898aad162fc5219c527ba7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    35d2757a1436fefd9d13750caffb8c7c

    SHA1

    50dfebaa95cdb249fbb73a359ed5c8d03869c596

    SHA256

    dcfd7e5799948e54888c9776208b576d3d1f77c9224e3ba8a874ab42eace4e85

    SHA512

    ea64db19cf61ebd27cadfd03e9a7bac4112c4b5fdc0e3a9a6661fb58b626c12362b3d8cbd1b6fd99b0e37a407eaf6ee05453e77e685900e6de8849ea0cfe18e7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    32d92f1c5e62490bfc6d80495abdfe6f

    SHA1

    a78aca15dc45f1337793c53a0a7a0380ccf7be8d

    SHA256

    5f7e87a37bbed5aaa3eaa9a384dd5a8b0c56961d45e3c192cdbdc22fc958c3c7

    SHA512

    25b93fa9014aa5681725ac8884dc75aa3f36691ed95c1ae1385927301625ae8ba1c8cd5d02c654430cab95682fba8af7d15f8ba10855fb70c7687be13fac3472

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    baefa72deddfad50e47b9c705264146d

    SHA1

    ce6fae9c9dec64f43706babf11df7778f0e06128

    SHA256

    a1c8d08600818eb8496621e576ebae504423d1a97858cf92fbd4a8346c25b7d5

    SHA512

    be3ba1693f70fb61a1375d99dc8fbcda7920c3b3ca18e893b91a49ff7fa669bd25e14b98768467e2632aac9544c2e63cfad85a37d74ba95ed2894e354547d433

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1dbd70bbf4ea1da2f4af504256b04b21

    SHA1

    e7a38a1aaa7459afdd11fb765425fa9e3cab9f8e

    SHA256

    c865dac83a48e78968a92e2f4753651ecd298d1527268192025b1af229f4e554

    SHA512

    363d7ed2d28b699c7c70629691ffcfadebaff67065ef9ed531ad5e216d824bdba031f2b55e13d9aa44f1d21beea84c00902e7f94a05bf4dc75a1fa7959117f5e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ac8f1bccba8f16260562efaebc73a3d0

    SHA1

    e06144f85487dc813c3a89a0e8b4ee6ca61bcd5c

    SHA256

    c0b455912fa64bf9c291c916c99e70e68408c367b8c430dd776800dc7949a7f6

    SHA512

    1872338c91f34253b8607928e648aef73eda64b365ce9a87a4b686841c672d10dfa871ffc262b6352ef224b0191a723c7f21ccac313c49e50875eab22705cb19

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c7bce23a72a4786684e150277fe1bf12

    SHA1

    c914db329661713f8c4ff16a850d5a10e0044d54

    SHA256

    166a06937801becf369dbd661e14695f37e143ce5b10f6c5d05b2d48a17fe42b

    SHA512

    3f304f2343ecb91b73c9800034915fcf5deb214eeeb1c6711eff38d44efe836bce14dfd0fab12b509e80acf8854cba8e9e67bb369471feacbed3fc592d931c56

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f69a7b66836ac9bf041a7269a11b5184

    SHA1

    be7480989585b2f1770b76fed75721f03a2b22b1

    SHA256

    b03e92ecfd799a2a3d7306a1dd49b677565d3037bcf5eff305e6a803818184ad

    SHA512

    0b5009a0b0e305c752c15a761d6a2608be4c58c86822c386cb47e0875b1f426e200f6f5d36982b4fdeec3ba5d2069e09d739c88dba6af1ded86916433949738d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7f16665eeed1b259417f27f70e0db4cf

    SHA1

    28bfeb93c0d9950bdaed1ff7819ab12ea4539496

    SHA256

    b6eb1b3b6de335c36047ab0179653dde373e0b069fe6f686258d3387bbe089e9

    SHA512

    df18f4f5e2f609735c750827a8b8fcafe77c93b254e5098b89279db36ce7aae9cc8f702cb7038ddb0dcfbad7655227a06c151de0377ab48d039a922f938f1ad3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    820481cc0dd92aaee6c7a38ef91b65e5

    SHA1

    f08b6a8cd2618cd0a00ce7e211c0112eeb8dd2f8

    SHA256

    bfcb242355341dc65a5a7a4c0f6ccf3b9f2092b057b89d2801a14ce356e3ceae

    SHA512

    dfb0656a7ec39cdb7c6f709e340be39957a7ada7ebc0de0aa905311585313a25eabcb07e0fd2dd0edc2dfff7188960ec3a172a8148bdbd2be53b14e88b655459

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    978b6adb1a2a89c64489f8e86ccc323f

    SHA1

    225e3069bc5616209b379a1fe0eca12fe062cd9a

    SHA256

    df700eb725703e2148dea20ca2ee8b67910d6d50814b40a6e21fd177f07396d4

    SHA512

    111e5feb7de5319ae605bdd25fec46b5b296c4533815e9e94eb4f619c2bb81fee24d1e401802d1a7408ddcf70af19aab6eecb7eac811ea540e1580e19c5d523c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e39151c321f8c189d60b3171fa2422f4

    SHA1

    3dba2492119df080ee4c6ffe6aed4edd06b4de5d

    SHA256

    e727903e48a5e4a2b66af831641f77455dd0a4d99a95506137d99dab20e50fe8

    SHA512

    77e87a7a7580ea13a96c103ea15ef5c39bcd02eff967ce75e9483a2ffeb0ff987fe3fab3b1f0561637b3f2b655979b9aff33365158b534bf35b1ca2125189aab

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2267d6e26954352597f914b349df83c7

    SHA1

    ec206c86a0086dae6568fd415b7aa3fcf8b67193

    SHA256

    533d9a1acb2b34534acb24bffc575fd29ba7ff98f2fbe67c0f31a3d816d9b958

    SHA512

    7aed50758dbd91540402dfea8e78682ea7cce2d3fa7da342cb81b64624d9fe739674aeeb5460a445d0df7e7c006fdeb63d4c70337fe709416370ceeca1371611

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b7ff3133b386c14fb15976a2a9839ef1

    SHA1

    781bb9a792e202edd036086564d2aa74922d2173

    SHA256

    426bc953b467fc0ca2f360a0465c911413eba44e4660d36da4530fe5eac91469

    SHA512

    0a61f75fdcc887a3bc7b5a6e798b8443d1d183fd6c693db8b421a823320ec0020c581ee476b2f3882faf2dfe49b87019f5a4a7f0d86fe4a8651818b180e5f4d3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bfe0d36d9aac521ec69be2bf8e5e8106

    SHA1

    7d7732d6893411cd6aec4742afec4d5d456c7cde

    SHA256

    f98cf95177a04b2a762fcff1499734e824e1af62b9cfbaed75d759a76c3fa29d

    SHA512

    0a8cb0b55c05c9168915ba12f46bc58a717cfb26ac3649808b054eeb8c71a721f81fe88499be6e22f05bd8c0e831d630e95a08b6110c481e79f4a9b665535878

  • C:\Users\Admin\AppData\Local\Temp\Cab3314.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar33B4.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b