Analysis

  • max time kernel
    134s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 00:19

General

  • Target

    a31c4fe829081a7343af24fd2277811d_JaffaCakes118.html

  • Size

    26KB

  • MD5

    a31c4fe829081a7343af24fd2277811d

  • SHA1

    efab86daecd9b7762aa98403bf53b2da382d2d3b

  • SHA256

    90937dc8d9e30f6468e4d4eb4c32ecc8ef5cc1bb1c73baa4a559e609a9a5a0c0

  • SHA512

    ef5bbb38759f4fd0db0696950a93a8d8dc741081a9ba28c634678eac74fce49e917818225984a573290bb5ed3b49724701c09a762948678424c01469b923b8b0

  • SSDEEP

    384:tpU6XlAsqDwthyif3s/OL352FUJlj8ruHkUH/5dOdY7kMWnD:tpUCAsqDwDyANkGBbx/5dOsxWD

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a31c4fe829081a7343af24fd2277811d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2328
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2328 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1692

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    1bdd901f3b0274dbfc8c146989a2d7a3

    SHA1

    70957dd9779f80be1a5e5aa013ea18e87b0f8bff

    SHA256

    831a2f4506f52b105cf8cb5ced9bd5613cca460badd3c2b6c928759638facf9f

    SHA512

    65c68509abc94bb641b28bfee9242411b3372fd517cf5758c67c9c86a8fc11c9f77fea8bbc7392f1b374f4c8f5236360ad237202d3f1369103bf0a769f7cec1e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    651f5f2c467f1cc9423e422597d12266

    SHA1

    c9a0e02dc564e8216ec888684227404efcfd1ec0

    SHA256

    50b4766248c49308a7617a082258ecf1682eff66aba375ede71213b99c211396

    SHA512

    f77a7552c8ae51d024158663ad05600464c6d89e21d15ebe2aa705bcb606ac007fb91acdbaf2d4da9ff16ae1b34858f8646eba61a39661de3121aecfd3c747fb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    09095a7fc66b1c7b9d8022e9364b0fee

    SHA1

    6e281a324170d7d2090a8e83ac48d391e296bc1f

    SHA256

    46701500d99d831ce4c06272deb3f19ad3b51181673e8e6919b92b25a502d3fd

    SHA512

    bd99b1fbe47589fe3e67f2a20323398c42aeb684b52c485f88718b2717850d170b1c51116760d078351cb19f21cbecae20c88e9f15c3f42383b7b76e04efdc8e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    697037652184e305fe39e517a7b67f6a

    SHA1

    1a398d65a124ea815fc83e117c2bf3075912e953

    SHA256

    ebffd23680e0bc483db700063b6344a994a3d38ce2e96d51ebb50638dba33fc1

    SHA512

    799a8755a2bf3ad17f9bd6ab4c40212b4d9f1d4b3bfe789c3e77d6b2bd783be6b76c61e3cf5f3b80b925e7dfadfc18621a112a90e96c404a4f8a52c6372df2bf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    eb92a0fec0dd8b667c28d15b8ebd173f

    SHA1

    fa4e07b18f79914e871c2df98f4b4fab3d897a24

    SHA256

    4f870a4184c3b63c2047dd6943b4926615174f0d30f07a58cdea1f977e258a98

    SHA512

    23e1eac372395fbac67f3f41a8f002325d132e80e25a8db3b9bf564e643d61575d2d4472c7bc8f93e91b82bd5125d62ec170724ebeb68fa1ebae3c638a6b7fdd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e5c493b251e1fd7b9d013048f8852576

    SHA1

    68a4e46f956967ecfb027fe82ef20130717d9f49

    SHA256

    09b5bf3876b7c02465dd31535ee4d43001307c85af9db8efd8ebde1473af3cc8

    SHA512

    497b3a5a087b2a597d6adbdcd57bb1497b05d9acee2a1f3a169768a56644abcea5933796cc264d9929151062de92b6dc2c50b3dec498f09cee7c85b4452f6088

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0e1d04caa564d886bf783bd720ad51ca

    SHA1

    a8084d053e784926c103c1c8d01497803c560031

    SHA256

    18d73c22cf1a57b8e14a92d4434b467caed0ca87929670139eca654fbd660353

    SHA512

    5c0df99595469586305e9b1246acfce728a8cbfccfcfe42ce9c2b21e173da51eb0e737e000ceaa777c2432cd3d9f1e6a8d96c9418383b61d6284e7e626591d35

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e814c8adf436bf92f484f176d8f7dc67

    SHA1

    e78b20d0e114f1f6cac976bf61430170e7159263

    SHA256

    3bd7d6063cb50464db15a2e25d5b8aec6185311792d01233c36e830f33e49c0d

    SHA512

    9f5e2cfce2593d90e93cbb502561ea2dc3e818d42a07eaaad6f9da31f18e1dd11f07f878f078576e31524b41c08e2321013db61dcc9d4cb77bdd36c67a63e6ff

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    da93a81ac3774bd9f5cce5706e1a182c

    SHA1

    bacef6bb3e7bcd94e881cebf9ffb5a8093543fdf

    SHA256

    f38adcd9c19470ff714718d9120c5b3d1cdd7e02c5b4f7b6b06551323ebf1745

    SHA512

    0c0f39f7ff6ce5918f16998747f46a6b316ab6d6ca306e63734edcca1753a40230e7e50fc8cb91a061133767efe3c92d1cf01cfa2c25d6f653189157f5165761

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    092b354e501c72633f73fec139768b84

    SHA1

    a9a4ba3c819a9dbbb05f12b240d9ae2f3e3a4e5f

    SHA256

    872333e264ea0d63cb8d095b3ca3357e9ec3d65561e3faa3adb45422bf7d3c24

    SHA512

    eedbbc80875925254586b178ed2885e8d808e05fa97165fdb65247b806d85cd63cb55d434d81f4a4075e470cea3812c2b2f976e8a228df3806fad80cf1d34874

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cec6724124593fb265cbe766bfea2984

    SHA1

    33f02141f8e6fbe4c9ba7be3204a012fafedbc16

    SHA256

    b0f63e044de9163c84ebefce180ab259994589930a0769a2f5173f9284a76fd9

    SHA512

    e3110030051f4e4f816804937ba5f699adcca86371c6b01717ad0a7650056cb2b8dbbc189cdfe88cf47f5c0e6d656624c57aeb1065e993613cc488e21f9458a6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c9934a301dcec1fdca0390f44d30e2a9

    SHA1

    dc018269a150a398c2264ba111a70b9f6fbafdc8

    SHA256

    accb9f70f8d74c602d63755ba80130874c83e7b7108f64790ed8947cedc55056

    SHA512

    a05710edb67a44f45e7ff0bbb3875d3cefa4fbd90621f34abdae35190c6d7dc38bdaae11ede9b65d6ca0279b8dfce64ba98fcc948fa32801e3319f31c3a541a5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    701d4bc6e63a44236d1b17652fa84109

    SHA1

    668cca05272935a0551d3cc91ab69a820ed6767a

    SHA256

    700f3f72aa435667dfd368d236ac37dbf07373a699634c1541fe22ff7a9e7fa5

    SHA512

    bf59cb32d4222ff161286939e97e0970c924901e4ccd55129d3070b550e5e1355cd21c57775c7d04b8259973f175a4e916e90c7cff18392a0e40afd11fb29542

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2c50b6641fa02bf6b91d227a11edfe6a

    SHA1

    397a286d6634aa574fbf7941c785950a447906f6

    SHA256

    47e55c3cc67309d0dda4099045160bf5a775d29ba1909d152a43c5f20f4e3c12

    SHA512

    d3f020d54ae8c000fb8caeac3ccdd90d1a1418524370eae3b23334610ced22ae5153a5f3be3dfa18b5501e0954c5326073756a8adf39955a0aeee47c810ab1d7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    691557578dae91f9583d5a1d811107fe

    SHA1

    039b6bf7cbffc42b6de95708566ccf3e6063a3c9

    SHA256

    6f1bb89785935de1ba0650dc3678e772ffce26969de5fec0bedfdf47cae45782

    SHA512

    5accb83c40837ee0b5b23a471965a01cd6234835578045a8b7f5908cf7102f9e6f2c8cffdd7356f296582686d54a11af78f31df35caeffb97e4c41a5185e770d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9ce25448bde996c8f0e75ce66dbdd96b

    SHA1

    8734450b90f9f31f20f17929adbea45df898d0d6

    SHA256

    00d326a8491c38874b4a51e3d98cae9fd2951c99e4a7fbb2d49cf025f6b363eb

    SHA512

    15b67b2655e9073b3147433f62bcaafd8528d4a7f575428421f41cc3619be3484fb6345e1cd053e0c1f0d8c817752fd490b37bb99df56466fe8973c688360dc0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d10744ba93237d4a4368c0c5846c82aa

    SHA1

    143decd7ae709d2a49d8530abbb75a6af048495d

    SHA256

    5076d2989646290a0748529c69a4cc6ab8729387ed7befad17c165e67120cc25

    SHA512

    09836860f569a303231a93618ee206cd296f0db36a5e18c214f1bace843c73ffeaba0ef3bd424621bd54b87257f2065b1d60372bd000061ce7a6b3a89bbf9a84

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    23d301e68965614f9f8ee7e4e668feed

    SHA1

    a42c0b23dd144cc589a1f11536233335d98620a1

    SHA256

    739d485a4efe5659e7a583edd95baf232f3b34fbf3da3003aec157be2f0cb73d

    SHA512

    55e2669c1fce06a052574a331519c19eca67644a21dc86eee73816c9941af51c028a65e2cd781c4c663ab5deed1d7941a8ddd1a8f914bac4eae3b795a8750213

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    78e39e3999a00b2d51a73f8abeeb9d54

    SHA1

    36ed7d1bb1527c7719b781e325e43cf8f361b514

    SHA256

    7670f2148bde5910f06a6b6fbff3be5a9bce594adce358b049eb7c175e1f0fda

    SHA512

    9b5762a9f0b70e7c196184361f7549d8f47cc9e2ec7f3d803e8d31c3ff909a4edc22b8856b3fb0fbce0e93db30bedd4b7c33354f21fcaad651dc93efaeb2e32f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0524e37d1e2f5fa871f0c2710366d153

    SHA1

    ddc356827ff89fc488edb39c69a43c70e0b6c6ff

    SHA256

    2ed1f33a51a8f37def702389294ae5ab4352b8309e3d6157cb3ce74dbfe26f4b

    SHA512

    824e82956ab32c2fd1b5078af81d16d34052b32db7cebd9da5dd3032f1dbd5cbba59c7c660727bd86328f330db1505cc8d84f94d048ce8a0f1ef457ada31be1a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dc4df22d18811555f4385e1ca418d485

    SHA1

    01b56dad4f3675c752e977101140f4161fdbda2a

    SHA256

    3a2fc22c146b287faf4114bdff3f4440089909cda7cf1be8b238116bd408f5ac

    SHA512

    fe4920b31ed7a185755f99e18cd94e4a95c43241d789385830c5a1e96776afe316d31e4fca3d3a28507b02260c7ea3d3680c9da5bb3ba20a86dc2c7b08777fa1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    6ad4f3f5ca8e398c8cfa9edc9762573f

    SHA1

    0811bd4d3990c02e31c919bca090e5b19d6d6861

    SHA256

    856510d42cf3cb1a40de04bfee50cd9c29d61039f87eb4f812f48337c466b4b6

    SHA512

    a3541fecdee8fe35a200ba095625b8973d32b57d0ac3290a7ea142c0cb2dba5f8ea43da1d16dda23fc771667da9726be7af368273f497411ff86b0af3e8948c3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

  • C:\Users\Admin\AppData\Local\Temp\Tar1F98.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b