Analysis

  • max time kernel
    119s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 00:20

General

  • Target

    a31d6a50c88f74fbafd54b5cccd98b8d_JaffaCakes118.html

  • Size

    36KB

  • MD5

    a31d6a50c88f74fbafd54b5cccd98b8d

  • SHA1

    fd44590f222be084dfd1457e2254404f732ae2ae

  • SHA256

    72f7c689e9efc1dd18249c86f61a471ba03e23bad7fcb89ddca1e28f0fa0aae2

  • SHA512

    f30fd02f7482d6d4eb3301f4981543edb70a92682ae0fd275febb5aa9790e7556398b3d02d6d7e990101107f0b1a4324f80459f993ccc1a185b40d6ecdd0c75d

  • SSDEEP

    768:zwx/MDTHK888hARUZPX3E1XnXrFLxNLlDNoPqkPTHlnkM3Gr6ThZOg6f9U56lLRU:Q/vbJxNVNufSM/P81K

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a31d6a50c88f74fbafd54b5cccd98b8d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1444
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1444 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3040

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    d3049f1a4b143f13261e38abab901109

    SHA1

    1810917619ef7b98f40697c12f35a75575665f8f

    SHA256

    69df6863aa24aedecf107a7e2e0353d592c52a5905cc2833d824c2298733e9d6

    SHA512

    6af844057e960d6f4165f297891b676492281fc4abdd7346a220b1972124fabe2a9e0f7b3825c9f67c1ed885262cf6fb994c4dcd607c1981005291a240b6e958

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

    Filesize

    724B

    MD5

    8202a1cd02e7d69597995cabbe881a12

    SHA1

    8858d9d934b7aa9330ee73de6c476acf19929ff6

    SHA256

    58f381c3a0a0ace6321da22e40bd44a597bd98b9c9390ab9258426b5cf75a7a5

    SHA512

    97ba9fceab995d4bef706f8deef99e06862999734ebe6a05832c710104479c6337cbf0a76e1c1e0f91566a61334dc100d837dfd049e20da765fe49def684f9c9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    27e47b0d975b85093d9f215c9d2ec2df

    SHA1

    e3ef1f6241965e0d3e8dce40fa658d3f8c04b50f

    SHA256

    aef0c257d73846e599d8bbc43e9eec334d8f323b7515ae9ab6f88b6788e03a83

    SHA512

    f2158f08bea23e51f31caab3044db6042d9caafb4464036f52c29d92e184966a1b3da010e978e1c2591ef04951f674aa11bf078701205580ad2b48ecb1f4b529

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    db3039b767546df2b1727ba5fb37dfb6

    SHA1

    14124f5f4b95588cb66160a735638d1e19fcaca7

    SHA256

    79dfc0c1c1a182895363df342129bb1d26d8609f085f2b7d15d302ecb999e0b4

    SHA512

    2a5a31b692e8cacca4c9ddcddf6905d1bf490a40e481831b9d9b25704c93e6bbc003340e90d83be66cbd169eae70f7a81933fbafe44358361b0bc548f8d8e74c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fc68b635c8894062e5e90f0b198293ee

    SHA1

    fdddf0ef42832757d4ef1d70abfd1292b4fbf617

    SHA256

    9fea7e3b9ce2d55b41b1edb7ffea4956da8106dd9ffd48326b685a007475efb7

    SHA512

    c00bf1b563688fb406fd7555f0bd749c26032e65bf2464f404fac47b8ccd39cc4d60ccb78e315715c1fd011eb2c55e9c2bc3ffc6e2f8b743ce0e21d8f2612f65

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8e70ea1d499fb732c4aaabecdc0d3583

    SHA1

    6864e291ac9c4a441950ee3f20e89f5f5bedb75d

    SHA256

    ea72ed1cb63586beea301133f1860da48f1fb5946b0b2b3c58aac71cbae808d5

    SHA512

    43d54ea310133d1cfb20df211ace3c1dcff609a5dae1c723388c706801fd1b698112ed3661292e41da89b8b55e7b583cf6c65181dceca9672cf1ab35546bd01d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1bd77fa42dad12e52115d52a937dcf4f

    SHA1

    f225bbd47ec31d11d360306951e258b2ec9cbc8c

    SHA256

    70472f5d944727deaafb85c5fbb5108e8448ff40630817e6ca64591ad0568aec

    SHA512

    0554f4b40b861fbd4bca7bc648500aaddb85b5bfe0ef7079a73285960545b411a70d46530e9094a3e67e1fbc5a3ffcea7b969c723a98279a95df9b65d93866e4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    94748b380aa9a43cab43e9207b026bc0

    SHA1

    7e7a0ac2258127a043e1e890838e55a37e5d2abb

    SHA256

    f6aa18c136d507472180fb36a38792859a657a64b9feda4b3bffe62c5166e5f0

    SHA512

    609780233336eb77413ab3ad004f6f2467a76a85585d34ef77b826cb291208c05f5c9b0f00be590bdfecfd1de6072bb803b2b294f3a634877858274ef5f7163c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ca34506bbb662526534c9e1b2b8b941a

    SHA1

    f9fcf7097741b8df1a11136a5f8db678df3bfa44

    SHA256

    157d81e1416d428ab40521bd3da8ad51e4399a9fb38ef6316a62b5e4ec92a2e1

    SHA512

    bfe6f2ea1b860367b37f6c85d3f797f98ebe9142f6fba9c467f8013ef687c9c2c5af9adc9797148d6f89c99b4da568ff2a816c78935a8bdb489064dedd719891

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2701b569fca1320047a6f1a47256c6e7

    SHA1

    d4f07183bd51624ba26afea52effed8940de7fd0

    SHA256

    5901edac2c7327b6a9ee922723fad07c8ef47687e08c0b8c457f968372a490df

    SHA512

    8b617bed016cd8ebe2ebecc0f4bff29ad5230ec95ead8b6b8f7cbe002a8041b1b691f9810d654948fe7ec9c00b22e4a622c786ec1bc1e2ca91b7bcd578ea5bf1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c90f50fa4aa0592012d8058b97694c9e

    SHA1

    326390bbadf3cdad56b5bafa594b607ff867ba5f

    SHA256

    41a78c06965420639b57cea8b6986535e3be63b0fc2ef6ea2b42526185ea7b2c

    SHA512

    a3c3a0a85114e3da784c2bccbcabc88a4be6a7f08e54607f5e9b78e8bd8a70df8970a05783b9b9a45e15a7d87c1783de934bf408066f0c1742568c8b8a86529c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    97bcd609062d942dabdafba6242c9959

    SHA1

    fb605030cd4de5e3db1fe48891901cf3ecac42d2

    SHA256

    6d955eedb29bffc6179eaa9ea6b5680d03ece950a4167b75be1bacf2a6266a11

    SHA512

    e847e5d36615a6b7b862e73e9f7412421293475e0153d3861eb130f6aaa4abf9ad8f93a2e654eb07203471984fe9859b5e1454989efc0cc34f58a5149947c099

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    599aef58661416821f4d9c847f8836c6

    SHA1

    40971d2f2eeb542f3ccf516ad28fd832234a59ab

    SHA256

    a65cb85e17eef8d53210f3c9dd65cec562f9aeb19b3a0cf3b191e18055c6b0b4

    SHA512

    04f8972933e89b7db80eacd9245d1232aac58309b08ba7b39acca42eb3b3c83a52c604da7aedcbbfd6fe4cc40d125b638f7f1417c6f8523d0acb890217b2dbe9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4c81d91abbd88e5f817c5f5497c8238b

    SHA1

    743aea14f063f657548150d80bbe987044c5b8cc

    SHA256

    e9716cbcefa66c77f28d062155b4243c98e0cbdce21a3d43d80a766ffc6fa032

    SHA512

    8d3db7a66aaee26bd4576d7ef8cf2c31c1175553b7d0e7228b4dbc089d6752dd88d6b2f1cfa465c61393579dc20941cffcac6bbb9cd7ff44974964ba26eb096a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2c738722c45a03b434e849f53795a40c

    SHA1

    2afd9f164caf652b2458d236b20336fc8ca7c0b6

    SHA256

    2441f56dfda0add0db79709681e55def27af25741d5ddbddbd1ecacf6ffe9dfd

    SHA512

    649f54b03305b17f910ad0ec8e5f0a867c799a388e252417d86ff5b0b312ad40e09a9a30ae46c82931627620ebfadff15f2f19a1e7bc0585765236121de36590

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    08d5b3c8287dc313174308e370d60de3

    SHA1

    b24b1c8de42a789c705b679c7a55fc331276daf0

    SHA256

    f21cd0252894e92065b181a1b41e35d26c74e6769b685bfef68e0105be2392a7

    SHA512

    45096e927cdc7701df93ca87beae5cf93a3688c12daaa795116b2612d75809b54b18c9d64ddfef9e87a9d712e84693fbbbfbb52fe0bb43dc2a96cb90be193ace

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    29f12b40f4e81134ca49e99a1ec7e440

    SHA1

    a25e44a23fb946edabc8895d564cf4e5564fdde1

    SHA256

    dc859b6f718909c9633ca32cf0f06c9fb5f738de0bcc927afd34fac41d80de68

    SHA512

    3c5e07085e255a761d81b97eb9933e8296b9d03caa8d5afbca1f393443f6f034cbf399d775d43477066681bb3229f536256d9e8cce26b812ee7b7720b42acc94

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3bc7021ffbb5242520981550bdf1a73c

    SHA1

    bd60a5c5e20715ff7f718624873893f811b07328

    SHA256

    04cd418eeb41981820e412adf14b516fe104602289d106ffecf4e2ef76a5394b

    SHA512

    59c53fa768a6db40c7b550bf150dd0e11e3d9740d69e0c62d262e4aac81b4f035ab8304df735e7555bebfac8637ad9631a291f06b1278edd96a1e9cf54c36ce1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    94a334bdc6b95033027b0e5fd592633f

    SHA1

    9073192a7c4e6f2c2e6f7587314094fde184a6bd

    SHA256

    8ccc7a54ed110c3b637b8e83817f547102b17ad82ad8e3bd755e3bd037b4edd6

    SHA512

    386d23423c9d256fd16419df542265f91e13a000f62355b395e6585891dc620280c31d485c5faa7a9cf09bc6da3dd11cc26644ff6811474fda94dad1ba74f66c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2262c02b2e423cf335548e993de358a2

    SHA1

    b5f8d0d6d98ae48b6e24d5a8032e3fd49476f868

    SHA256

    7176bdd9976abb0d3b8daec71d3ad755985a7106abc41aa87bd126ad4d1d8d17

    SHA512

    057cae985a8f7b3e26002cf06845338c0bf3bf33a75f92162350b25bc6c4d57c35ea0fa070b44e916e552d92731b74bee64e50177b9a4a6c5245b5e1eec63094

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    389aa7ed2f01cd23b2b1f1a41ee12074

    SHA1

    bf65e174d09132b4f61b7476253e62820aa2b758

    SHA256

    8a7ed152033402b1dadae1f53318d97ef16bea12acd78e7a7fd08a2ef739d682

    SHA512

    d156597de114518870fbdd151829765c56da4bda98aa98fe567b5eb79aa5f0b79e4f672df77a326b655074becc426375dbb82ceb8e219e47c41f3cbf1980a638

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a8ee93ba2a9070582dbece832ca00bee

    SHA1

    9b45a76e77ed60b939495f2d95673d9018091a05

    SHA256

    2c604cfa99c5ec3642755227c929205f318e8c24b8ac99e0cad2729649152983

    SHA512

    9b3e764394c0453ae73a97a140c9cce2f4b85aef369287f110fc65e57b07c3a0ec04a30f305ad46b0112c4f3ddfe24556cb7a22b9d17ad90432b4c25d6c0ce7e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aa24df7d266c41f49da6bfb2d8168a17

    SHA1

    2c958f185f99236969b65f858259ee18256abc00

    SHA256

    0f034c32677bef91a8360b85a0f29ad0113091e1a34f2e2aef949ed2172c11d4

    SHA512

    213160e1286a33f04368f46591c65fa63e3960fb79fb968f74dcf7811f74185e97cee44b8ac2a207129f5cf23ea6015d5dc20688d802665ae1800716351af025

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    443428f4aa1a1949ba72fbda4242b31d

    SHA1

    abe59e7ed468a53ceafd366a43fc1347fa2b746f

    SHA256

    699d28376f4efa15b073657742567650b957560615049341de721ea3216c043f

    SHA512

    3cd236e7d270f543c704661b652df46cc0f4d859cdd76fa65c5176445b793541a688938e25c1660506616f2fbec7aac5f962e2d66c6925f55d302aa509764ed1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b1a91547aed9f35f5947efbd106e473f

    SHA1

    bd4c0f235976cd37070431343ab5bb2e5f69c983

    SHA256

    d922c736efa8e2e04f12ac70648c46019f016b3304b357578f193a9c30cf25a2

    SHA512

    d2d9a891f9cab3ae8a88822f9ba359c9cc10999daa41e6058a08f3839725f408bb3013e395cab855ac2ec464813b3b5ca0670e6ec2519b8a46da9645556eaca9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

    Filesize

    392B

    MD5

    ff7bececdf3f68a619055e7554910289

    SHA1

    0463ce6818f2378104d6deb7d9a2656ba4ecd9ae

    SHA256

    fde6620789f0c96e9241818df5304cdc5f19be344e7f5ea30d934115877c4954

    SHA512

    d3fa500f66dab64645fec04ee2dff918a04e7b5b6bf8f5aa2d94f32765148ebcb26bf3aed551a18f9b951eb2db385d15085b8f417bbceb7493bae5b3d381f5c7

  • C:\Users\Admin\AppData\Local\Temp\Cab7455.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar7468.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b