Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 00:19

General

  • Target

    a31c9287b74cf60cd58b3df3f9341c62_JaffaCakes118.html

  • Size

    35KB

  • MD5

    a31c9287b74cf60cd58b3df3f9341c62

  • SHA1

    459d88b50d142135cbfae0f8ced8f6a3795b57d8

  • SHA256

    367e9fe8a7ff61334608676579c5f9eefb586cc07bb9554ed0eb32558ce439b7

  • SHA512

    f8c67774c7692dd16e9eb518fcabced7c366b2ab6c3d4b9a28d432567975b91019c23d252139e781f215cf417cbdc52fcf7061bd157ae13b8a941402e0fa8fe0

  • SSDEEP

    768:zwx/MDTHtF88hARDZPXqE1XnXrFLxNLlDNoPqkPTHlnkM3Gr6TDaLxC6DJtxo6qF:Q/vbJxNVAuCS+/y8OK

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a31c9287b74cf60cd58b3df3f9341c62_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2236
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2236 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2800

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    d3049f1a4b143f13261e38abab901109

    SHA1

    1810917619ef7b98f40697c12f35a75575665f8f

    SHA256

    69df6863aa24aedecf107a7e2e0353d592c52a5905cc2833d824c2298733e9d6

    SHA512

    6af844057e960d6f4165f297891b676492281fc4abdd7346a220b1972124fabe2a9e0f7b3825c9f67c1ed885262cf6fb994c4dcd607c1981005291a240b6e958

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

    Filesize

    724B

    MD5

    8202a1cd02e7d69597995cabbe881a12

    SHA1

    8858d9d934b7aa9330ee73de6c476acf19929ff6

    SHA256

    58f381c3a0a0ace6321da22e40bd44a597bd98b9c9390ab9258426b5cf75a7a5

    SHA512

    97ba9fceab995d4bef706f8deef99e06862999734ebe6a05832c710104479c6337cbf0a76e1c1e0f91566a61334dc100d837dfd049e20da765fe49def684f9c9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1253bc6b912e2e1af2773575d8af82a7

    SHA1

    b1650075346523c78bb3d2b05041b9fe0f46f58b

    SHA256

    8f913a90ca273cd001cac0f9bd0badceeb6f00d8a8291b0602b6577848b70ddd

    SHA512

    1f4a7a54921b86638fae18b540f7729c83bcf84be2eb6c7d3296856f6a5c77c6e8e7473fc8f22c51dad0d811ba966efcc894ed56d42f6c5ec71faa2dc07c7149

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6d935e32c584024f90757fea207679d5

    SHA1

    0da277d2619de43e2e40df8cc0ec420dbefd21e3

    SHA256

    6e7f5fd8a176bb11056bd97761e147f71670b54042188e95c1bb6c973523e870

    SHA512

    e935c89d9f614a413f25f53d85917b54d11affcee7298b3d1f69a00f190c08e6361f1c2e200f1169f6fae219543d42eb7fd6b58ba688f0adeac15ce47ec900c4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a37c02f35a0e5c86f3bf7ae65fff49d6

    SHA1

    430a3ce871102c38c89207ade41bc587bf8a8fcc

    SHA256

    9fcc9dba6b22eb859e1f1d2b594ddb64fac50fcf4ef91185a6de9fae0898c78a

    SHA512

    3c7c914753b6881f8fde33a20ac66a66de5d23d274fa496b8480117f561cc769c861d757e05c3ec43ac25d588061c3e41c89d0191dcef4995f6501302f659c0c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    36fb2b9a077052ec7f389275ed739a9f

    SHA1

    607c89f5599ef5c313e1ec257e70281e8e0acd15

    SHA256

    f296247c946ad275d5d0f5ba6285eece4689a309e07e50f831e03e4789d8a53b

    SHA512

    8d5aeb0269eb6d8825d84aff68318b2bada78f54a54cedbfbd31cb46c4a62ca619b7436245bf7e9feff82c149559d34996907e6d4a1e8b89d31733f95a35fad9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b7fc4aa240e5ffc64ce071b3d3e087ad

    SHA1

    534ae17476f8f2041a363b0b7b0d9c8bae40ca63

    SHA256

    d19ad645f431ab0d34eae4d0c117811b027664b0a61185593a984f691a72090e

    SHA512

    cfd9721f8f4fd7eff9e26f6e8d6e406a29366f2baf24709b1a005e11a9f228b534788d00ab0b7049cac4aa76b4c89cc46b9d76b2e5f6a5154f15f5e988e5de9a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6b18d54918e7e42ee6b9e435ca727008

    SHA1

    d55a72bdbb9e33da51e304cf960d26903ea8140a

    SHA256

    30b0a718e60b58dc64c73a502d9387c8b69ef22ce35899b2db78cdd8aa3dc997

    SHA512

    dfd5172b6154c214ffcab8fa5d454c67558ce007714d98ce289d689a85e13b6f3b78342459a1bd14f2abf6d870797e1cf9d41dea91c65022dcbae9e44f7df1b1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a52958f4e4009cf781a9c2aa42aa26b8

    SHA1

    a6261103326044a7cfcdcdd8f6381a9f95d08adb

    SHA256

    f3e6259f354e02c9ab3128465d30e33a3388dbcb735edd90f831ef331a63a167

    SHA512

    cd066dc0fbf88a96a20a6e72d3f5279f8a4b2b705bc7299a7d450881af158e55e95ea2368aeb87a2475de9c35dd23ad415436a7271ae4bf3172221802dde3dd7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fb84612bacc99253c73a30a4e9b8fc3c

    SHA1

    f237fdce62b2c6581febfbf42056521619da3132

    SHA256

    c98d48656e17564708bd4f2da0131df4e9ed20fd387ac6b35a8e0f4f8415399f

    SHA512

    ff2ae1c1f3e2e5a6645cafd79476456e6ee52a3682d892bf608ef138fc9688059c7f3243a572d52eaa19921e3d7bd2544396ba0e613754109d07709f8a99c76b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e56d1081230be56b22fa2af1b2fab6f1

    SHA1

    bacb0fd7723cf4cdd8a8933c69b0bc4ca0a74931

    SHA256

    ac76c3f4fe351ae5c3d34202797fe98ba838cb94663a8b51bd6b8f74bd846f5c

    SHA512

    9b3447ebb169924d918083f0595d49c9cf3ac92786899db2c14e5365f623d6e020a4c86eeac8a2ec12541a7e809a8c1b6e5d0e36eb47ecdb3c3470bb6cbf750e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    54f26bda2379a51c1dfe17dacfa89996

    SHA1

    cd36951d4605840a76790a704c47dceafe2d23fd

    SHA256

    1ca684cb4e619041f4e0b651b1acf85496ac07de4bed50aaaa7030062fe0aaf0

    SHA512

    23927d12d48087a9ddbf8506f9d276e307f55edd76ff7089787c663f4edd7a0c4162788519ca59a2fc65ed34b65642a664ce9d1d4abb97b27d2985421ab6e6ce

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aec9587e4bb87df3102ba7cbd761822e

    SHA1

    0235759583fa75ade576362db88d56d72651c60e

    SHA256

    215987ec7ab11ae04f1460dbf6fb950b4f87d13ce2f6a704f97e8fc6050acd10

    SHA512

    cab1a1c6ddea14dbb191efb154312dafbd67590874de8d3cab570425bf995524943f4d890db53bca1e12886379c13e1a67f692a913955c27bf0d680f135c9613

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a1b613d39d2504e90e99090dc40ea41b

    SHA1

    08f1309bd77ebcf459ada145fd649dbe72540f5b

    SHA256

    d82de44811f8bedd063363d3513f97167af09f0ce5d0b93338b045de1896e043

    SHA512

    863621197f50ffec78c4245e85c61bda176168d63b48ddd14b4ae975fa8330e7f29b08f13d0a3e58ad23c2f194b42f71b1a45f46509c6682c21a89283db3d0d4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3d5bf7b26055d39d608c0ff7cb3d9609

    SHA1

    b278daba0e892039ec682ed7b85c435feb354597

    SHA256

    7da96fa44ff55e05972c5939cc4ad0cf8a7e746b904a3d5bfb3aebe161f44c5c

    SHA512

    82720e841c09a7169804a6ffc9e1fb32d98ab0c29911b0a8d4be913f810d56a5b12849fb760969472388ef9a30bc5f1a58548b0287849954ebcca77df41f0f60

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7346d2bc3ab3d52300626b4dca741c52

    SHA1

    76aea15cf424466b1d76874ee5647ab030697761

    SHA256

    80450b39ddd2350a341d7bd9451fbd142de15a4874debf5d2c5b84c13ec4935d

    SHA512

    4ce63f230701479c5cb52655f73f7fe7116580290a8796a6a8b9ba302a5b44ab5525b6b2ba375e7cd5249071f167fc2666686b21aa974739edf4af41dd029b29

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e5523a036198845d8f93482e5d15b7ba

    SHA1

    8e62d7daa08d73bc2ed28208973c7ca7789f997d

    SHA256

    f0ca1e7fa7b8bdcc2a349b5476ce9514994aa63b5753191e056f2e526053ece5

    SHA512

    67b6faf45373293384bf1981eef7976a9363c9dc4fc4608fd1428aa404c2784855eb38bed9af866b16ebe2b3154db17717cea146052d21df440ae344dae76710

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a56fa6c260605474263cd937887237ff

    SHA1

    a2f620b4cd65f31db9ad93b3e39531e110011c7b

    SHA256

    90e67a00b87fec9b67fe92bf2ed10b41b3c747d8c9d4c783bd15e54dda499c57

    SHA512

    b1224b5be228bc0324ffadb38d0664e556cc5d5869cb2ac309af573ed94b8d0054f809709f00c64518c3bcab37f53ca1f74be8bff606e4d512b9f14e0b76d5eb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2d6dfa90c7cad7d776c8cc48f437d181

    SHA1

    ec7e49ac911f76034a036c60e0503e60f4cb9cfa

    SHA256

    4e6f10596e75c6ddb001fd09ae13f522989103a86cbcf210a5a1ef156506050c

    SHA512

    877552ae062562239e30f79c08e11c5ef121bd4b31f9db81a9acbb373522be8751f1b9abcac464fb9594c44d21094b418d8a5cf12bb35d8b0869423b53429af6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a8ad0ff9c2df167584935ffb4bfe7dab

    SHA1

    820ccc1c8209a5dfe15d962000a1a2e3a09225cd

    SHA256

    92b55ae19991751d680d362bf339216321fa7931e705d6d5753c9835c87cc291

    SHA512

    855d395127cdb2000e3daebebd4a165cb96b2d8cbcff85bd7570b92de85f7975cd16c66c9a4006d5e5f08e85fcc592ab00ee126d0e75603eef21ae4621aff739

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ac589754bc9f63799e38d7697c9198da

    SHA1

    c522130b875ae7b8e17d68fa7314ce6d0f7c51e1

    SHA256

    6b8467d56eb806e73994ad874f9eb5dc29bf4e2548e566e0c9ee97f5e2ecd33b

    SHA512

    dd06fafd238e500a40d86e5b866678c7622f23ce80a31860dc5b4cb3b151759cb992ec7614f14baef417494451bb236c7a0db4d520bc6db039e33e423fbe3b09

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    678eee1f8f6e4944d4bb689f77cd411f

    SHA1

    9ae2aaee1f103c021322fb1f64ec513ebe09917a

    SHA256

    de6be65c497fc9b346d9ff3ccba1a2ad426802f7cc54386aa4d54a9cba1a425b

    SHA512

    99be09e8c6b35de52bd312d13e0b941d6133f68646507512e1deb3c49a7334fcb72b3652acec390d6239d531badef48daa17fe934131b41dce9002b2f7040dce

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e096e467b1dd0d1ef04ae675d94f190f

    SHA1

    41609e132ad20668d54eae6fd14329bdd26d11fe

    SHA256

    c7fd991db5c849165dc4db83c31a14fdbfb037b77d93b02883f6372c0bace150

    SHA512

    3b5661341cd9a85c6d238a34677092f2f0ea6073a12e7b9e7f4d7a8a3564207d56564557d846dd95660538553a1a79a49ed9c828bd3329776af138775825adcc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B2FAF7692FD9FFBD64EDE317E42334BA_89854CA6A0F0936A4D2ECA78845CEA25

    Filesize

    482B

    MD5

    b9e9a9e36dc00c97dec747b4f9921f8f

    SHA1

    8a4c7a33e4578e0330407aacc71923cbfdd94fec

    SHA256

    277e684dbde99d928833a513bc93c0e5ca798159085444daa0f1adc2158cfdd7

    SHA512

    3e8011959700648ba3f2d91e7f78bd053ef1a9037ae1f49571852e516410492ccc6e50f89e32eb4b5db0efc657bc24a92ea7fdcdf7f57ebcb83f121ee3feb56f

  • C:\Users\Admin\AppData\Local\Temp\Cab10E4.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar10E7.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b