Analysis

  • max time kernel
    133s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 01:15

General

  • Target

    a351de14a88699494974a9359f3b1214_JaffaCakes118.html

  • Size

    3KB

  • MD5

    a351de14a88699494974a9359f3b1214

  • SHA1

    18c6447813a4dd28691c27657f1c790396926a68

  • SHA256

    d5a3c6704c94568f74917787ca705fefe5eb0db39e41cd3acb12c593f299b217

  • SHA512

    2a8866c192f6e4b4607ce72f6c66fecfce90b70600985ea6cec0360d89aada7371efe06c9b3b732f63c304dd4103e78cf163127fb36b1df3142a6591922bbd96

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a351de14a88699494974a9359f3b1214_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1936
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1936 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2204

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b8ef24d58e77814c03d1b2b3d395778d

    SHA1

    060614e8a270c7fe717867ca50b2bef14c5b155d

    SHA256

    7f73fe6bb90d8c5d439806ecdb1f65e251d01111b36f5fc96630d312c8c27d20

    SHA512

    73b8ebe7b7fadf06d1ca8172b720c5636379f17a089af567a0fc77338641f8840fa2c12c7f4cd89539c2b7334b6d7c7902ef2687feb25e4a7f8a212ceba1cdb6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    eef4a1b7180c49331979185e2259ed3b

    SHA1

    6a758681f871699dc34626cadff8a7041c411217

    SHA256

    fd2e1d658237d0c5dd7b10e577455c971b2023a7eb886052be9f81fc85444518

    SHA512

    75f70e41c6359e280e373952a44ee0354e043b57d3f939fe7fc1a6cd7e0e55bb47669dae8c13850f5d82ce60d7173850f900cb5f70cff44879e80b01a63dfda0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e7d7d78cc005d8035e585cda89b706a8

    SHA1

    ee53a8c10ee2e25cb35ca5826bf772ae8317b291

    SHA256

    63f76c3691de621dd21ba9314604f3c74b589d1dc15fd6baa8e840aa26a8c023

    SHA512

    f6b7a3b89895f4a80693c33ca246833a3babae7c3927dd5d59253d5f05af03024f87707b842c5a82ad239579252cc2a3c5d36e5cd573a06a17e8d85bdb1a3cdd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ec70f9d37703e25895202eac6882015f

    SHA1

    d7e530b396b02b09ef475e6d02ca65e2408de852

    SHA256

    74ada36bf1ff47575d666077c073e13ca566361356bd1e47c9e4a7922f9dea06

    SHA512

    f4dfe0ffce7fb76d92fe92ef3bd272c1c2cf32a238a43fd3a72c19dc6d87781e6939e2775c7113297a860e08f55605b14a7a7352f4ae60503db1e2d60ccc6811

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1d5792939e9fbe089197b000b0f3d172

    SHA1

    80ac00136a4c0ddfa83e41cfe8a6577b7ecc1c03

    SHA256

    61d1611131c7d61e7976b68f4ae4b6305658910bfda9a06c1969777510bd833e

    SHA512

    40a5e57ee96453bc2fc3f429defd8d2a0da4798692f7255848edebe72a44ac85cf4c6a9a44cb73bf8c3ed60ff59af5fb7f035613bbcaa50e28d416be195cf94f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cfb62b9d3da6def4d4ef861926d982ed

    SHA1

    d6175c147cb02ac1c855f622731bc45152f7bd39

    SHA256

    f59adcfa137105374a481288fabe4d3e4c367909d58dd128ca19b5b6cc469185

    SHA512

    3068444e5de404eb9514942454324f4cd25acc7b0a53957d69e715c7b6c58bdb5d470995fa8e69b1d19f707ccf71cee4ec9004e6e1099cbbde7bb7211fd0d770

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e7402a16dc54b3bda1dcfef045e59e2f

    SHA1

    0aab419dea2d3928d38d8c667a49f6c6162fb916

    SHA256

    527974f4d9a56721c5b9e35236dd81f4e8e1e617c495f330dc5ff181799d3e23

    SHA512

    9fbcd7586815e6914ffb7dc26f3e4517f719141e43773a7835a3026723219307b18cdaabfe054739c90c05bb58227f8013978c3f456373b704f4f78f6b5c89d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b39589f178b4f31c53837ea1d1150243

    SHA1

    63ca2d3b1621286b6217fe4d7f612f659e4ef87a

    SHA256

    05a5b70c4c2db7617efa882950f602244eb15b08f088cf57dc5064661d613b4b

    SHA512

    bb07fde9dce6e55c7e1cb4b26bf92e80aaa055b8989374c08bfc9937d47ebc34ca616a6484231d0ef9982b50994f5b37a7f591ef98d24d182fd22aa68c6c0e48

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ad27414b29d9ae293bfdb093e9facbb0

    SHA1

    e734225696b6dfe34dc1d176151129fb201a7042

    SHA256

    20a1edf223396df82fc8879ecc9d28157e83eb512b0b12aeae0792ae9d40f91e

    SHA512

    ee13b8a92577ee670235c137e9b9fddba8ad02cdeeea65930b1052eeb4b6f001a502a6890207101af19ca73b0f2dac83b4eb38538eb29df2e48c817d695acae3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    81c3697f738816ac9c66bbcfd3d321a6

    SHA1

    68fc2785d7f93e8b4144f09aee5dcf1fc9ec40a8

    SHA256

    44672f6eccab6afe9ea5ab4832404a647dccdc83ae7d213e0bea62d6ef107e0f

    SHA512

    bd5fab1a4383890b53b379d52f674a4051ddd86900cfd87729b16ce9f83aeb527d1c554f2a1a1bdaa392d65a8505efc1cdfd59c01dcb55098e9b8f0023ca9988

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a26cc1b3a72e1d88e09c34fa1ceb7fcd

    SHA1

    ab39efc16a0d1b7c2d0f0a69f5a7f38cf5a69bc5

    SHA256

    cbd9dda064bc69051d5ad2df967e48c812521fef48942613c24c64cb8c3386cd

    SHA512

    70ca2489f7d30ce84fb0031a6cf8c631b99ae9c6696e476db4f2f994351ec8400bc725910ec0924a2b7b68e772f5225a03fd5c80e12bcd7d8253588ea951abac

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5db897d826d6244f658f98624ee4c016

    SHA1

    d21f136b1aaedba95f57f05a2312ec9117372591

    SHA256

    c1f2e1789729de2fd095b8b092c3f151450b9827803a5df553be91c3657e8d62

    SHA512

    e87f78ce44c022b02d3b0178514b498cde5cd4a74e633721d486164ecb52ee97f60b6c4e3d6db75be869919aa093c0dae7b7604bae69950a996d213ecf10ac7e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ba6a4f15304142cfbd6507027b2c4df7

    SHA1

    5e98e3e97ce31fe7ae2bd94e2b7a0bee649bfc2b

    SHA256

    a7e42e104ee7605c6453eddf9ec5582b475d04939b2cb85dabb7196a5b61febd

    SHA512

    e7acf555065fc4e10b88a6a6d0df4387aeaf8daee86529386240020140e437dc07ffdd34b871a6de4fb22f0c652fd689733f67c3d408c691e965af688028949f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4816b25f4e1720db7d9fc499e65fe4e7

    SHA1

    c8434433e6d00d306455ed5bed8287963c165a76

    SHA256

    a36b28c758b38b4ee50eedbea03f8a5b860f88440d0c574df122048978a15047

    SHA512

    6a062b86c9e483fc4497c9281483b3ee334730684d0afea69399a727cee6a662703622c2f12655dd543d5778b69baba7668984ec6472d8732be18df38764dd48

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c0d54f118b8f4ba530e6f7519520a7bc

    SHA1

    c21f18ce3a5869499a82888dc0692c0b8d11fa7f

    SHA256

    b42bda6f8554c7c6ebebe33baaa3b70454887edb89c072dfa1211225028f6862

    SHA512

    530cb02a67cd00e887cdf62d41e37ea196186d271225dd623ed87f47255bd3152a6261e8fc4f3ca0aee0062b92f36b96a6622972c19b28eaca8c856cc6e60a13

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    902c905d0d56d0c6343102606ccab6df

    SHA1

    fbf3f8ed16de744aa3b1587d93dc8d5482e61c97

    SHA256

    9dcebb0829e042fa717cd7b8f0059d77aea5fb5088f4852430051691fce35a38

    SHA512

    d448ee2a082c80befc27a4169c99d4c891b17f502757b3ddaa8e9c1fa41d81c4e63be32d9361cf84ef4ca1ad0cb1ec7cd21d17c6db038e9bff1fc2a6e0b946c6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b4b0c239a88cbd1922fc7cf46d9cf633

    SHA1

    aea3e41dd7e213b821061b193895b288590033a4

    SHA256

    180293b12cf6a414c3c967456fbbfaa40292db62b21d941d015d905b233fb191

    SHA512

    f221c3f5895c543527444e7630a4bb80aa569fa1a63aa191692afbd6db38b5a762d2d76e70786e12c3c4f07a9ad70a4e15d6a37f3886390986a9e191c014e0d3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    14fc6b80f8b5b64f3ec767f2f2216d4e

    SHA1

    4886366b812b721b3fa67a6ed8ad2b685ccd1eab

    SHA256

    cc1a71f4021a5e2bf57ccf0c3f9243cdc4e59107bce71e41cf51fcbbe7d20fe5

    SHA512

    480c0b147bce5f2c1a8abd7fe12892614601f2352dcc85e9736a33ae800211c3ed59544a8ca85bd6aa435a8e0d084e84bad5dfa2c55cbc2b6d92596e32ad894c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3c40ca3e67e90e27c2fe93607605057e

    SHA1

    e0aa5e1095ce4a168a2f7bd5362bb21bcacce59f

    SHA256

    15d15a30d7d8735876c2929c4246f3e95088fc16b5144c1a72d97ef2773cab85

    SHA512

    4c86dcffb3a3a5e5a16430bc515c1f683e2baab9e5bfa67f37865eb9a5bb61b9f281c98452ce1be261ee583d1fe954649bdba14c42d31555f57736a81539be94

  • C:\Users\Admin\AppData\Local\Temp\Cab2BF3.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar2CC5.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b