Analysis

  • max time kernel
    141s
  • max time network
    153s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 01:18

General

  • Target

    a35501652bd9b9e6968f0704728fde55_JaffaCakes118.html

  • Size

    19KB

  • MD5

    a35501652bd9b9e6968f0704728fde55

  • SHA1

    ca5e73d15253771430eabe5328f688db71640300

  • SHA256

    ba091caaea71598c2f074ac7c0cdf265992bf81c6527c011a63bb5cf86d098c4

  • SHA512

    ecaf8ee50b73648f253a97c5f33d425f68e6f3541a7d529b55d677b74715265864f42ded992e4597778a3f2bd7d13c945910f69f5c67db6c5fa916722b892589

  • SSDEEP

    384:ziLRKhgESMVBD8cSQ3Ro2CYJemLxXucfIk9xheXBzVc9/qPN:ziLCSMgc13a2wmQOIk9epq/6N

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a35501652bd9b9e6968f0704728fde55_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2868
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2868 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1092

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    74fc5e9b5d08e6e6136106cc3b4df041

    SHA1

    45b892c2edf57b8aa46deebf2b643a64bccc8f8d

    SHA256

    17869c1f24a0f57cf14631416701ffb7ca4cb56c279ec25bc37da3b39a572a75

    SHA512

    de1a900e4576b9bbb7ec6588e2698876b0b53293dfe923013016ea1c9fb1a634bba3d43febe7d74dd7cced46991c61195942d4216cec821aa2f6b3753f0d5d3a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cdb02443b31e94a72c71c46a53bfa533

    SHA1

    1e3a3f1202a372839c3e56d588e84c9ea0ad4df3

    SHA256

    3f71814634c8db26aa94fb6eecbe7fde3884166c226677e40511cfc9f31d8a85

    SHA512

    0e474b940829afe71999d3e39d32ce304d80f256939ed24da8396de065eb91611597825e012b7f65d5183787d4dfe116cc0cb48964bf881fc61c8a87f85feb68

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    60cda00bd1143337251d235b31b50820

    SHA1

    a59b84dae0f3ca62efd2a3f5ce0bc6f16f32ca70

    SHA256

    bec0e3fe9a811e9135fb636d466da49327e877dab674a3131751862cb564ec05

    SHA512

    7bf9be0b1771317fe74f0cb4e5bec477fea0abbf5f2b4a35fa4c5f8969cfb6b6f02a826ff34facbd4b4d8117d54a2be00df9334cce1a791ccdaf8dd46c8b51b8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b32b38370542244ff2c0a38687ed5cd0

    SHA1

    571f482ec95c9985ef4623ef41e7180be7747bb9

    SHA256

    60ff2a862b2a0f8a13f7e592f25caf3807643bf1036db5cc2ab2363fc48cacec

    SHA512

    daf540973dc59f1ba3db55fc55b627504db7e104c743c735c1a4bbf179158a5c74736e2ad13988636f4bb7691987c200eeb4ef9568371558bfe87094311d0ad4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c01765ea5bfb2db5f2004036b5c28e98

    SHA1

    30c3c249f2254c8cde746734036798e6b930d4f2

    SHA256

    53b3546dec33cff317522f65374c285ae28b8c9463aca104256a90a3b0de1922

    SHA512

    dcc35db5d6d6a308d476035426cd0f2dfa1a023d2754b8735c5f73d45a38a578100edfd43790d7414e083c0f456ac758dcdbb04a10628f348eaacd6275c72ae0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    95396ac1d9aaf96b55bd0bc1e39d5e9a

    SHA1

    2756097f92a7074cea54e8761c54f3c788230567

    SHA256

    9f65340c37e2d26cb662f479673fca94ec8798531c3dbfa612badb77e7fae745

    SHA512

    26df717130bd2f813bfe6acbd3791b20b5dac909d6b1f0ad52efeaaf9e8e406be4f880896363a30308f2ef852cce81d55ca15c6345a78f3a051943b58ed6c4bf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dfae176d36b0d4721b026a5b82b90bf1

    SHA1

    d7a99b7bba4411bd30286fadffd0f961f910031d

    SHA256

    6cffd10d88f03a9403cd4d0282de3b0dfa7feb1be761db210444e7849afca8fc

    SHA512

    7dfcc578289dcd58678fdf34f26e41b160836b1fe4224c319640994896a8afe70df1baa87f62e2722743d7f88acf741b1f5f0f864b0b632ae2bb7b26705de703

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    32f459873a8aaaa31341892bca617c28

    SHA1

    51488ad0e19a43b52efeeb5718dfb9f81191735c

    SHA256

    5f83b8dfda78721618938e71e8dbb5848984757f6715706cf997f143e0d050e3

    SHA512

    c14a65f184bbfc180e608a1cde2ba59af794bf19844efe51aff97d230a29f64061821e044565834c2e12140623a8826d09d17778da9da74285076885a136816c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    14e9fc8a11b03148bb2712c1cde39faa

    SHA1

    032cb82186caa1f18d69bd87772c16e1657b4a54

    SHA256

    c38dc71f2958fe3684edb1a0a0fa98c33a5aea989c8e1e2975f79170e2a3babf

    SHA512

    971f884f7d9e893ad52aa0ec0be9e21fb8b355bc8a2ef55aa04b7c06fc67fe9f2c5a98d852eb15f39c6487f41e4076465de6f335f440631f86070d6b7322b55f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f3ff884343f12c11a1cf214bf010503e

    SHA1

    8601aa3510bb70455140b82af50dfaae949f7daf

    SHA256

    21c59e7711429a0f654781c88b0a2492b0b88f8f09163de21a6077ee3dc5a930

    SHA512

    175e6cc1afe3d44935f6047ec8cf1ce3e18ec3be5eaed6a3b865c6ddf976bd270584a14944940ddb53f13862607892b1529664dda63b337689cc02c7b13800ea

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d411da53cbd1a8b729120edf9e3b61ad

    SHA1

    8497051802faf3aa07404e2fabcf15c0c34cb826

    SHA256

    6dfbf9246e15ab68bc3e324afbd3d520fc7e6749785dcf0829d155dfbf0837da

    SHA512

    66ab947b9a94e753777af2518f6bb2aff9e5d0098995a6504900fc9426896f400c8498ce3be102c44c439b6441f496f2a72c3ec3cf998ae38b30501c17cbd410

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b8733bbbe10141a5959e146a17f2c890

    SHA1

    9256f7c902102c49feb717c779bbfb99d1301db0

    SHA256

    cd8a01ce47a11b21ed6f044572eaebe8530b5ae3bf79c4b258fc830706967cbf

    SHA512

    909acb0729c527bb8fd5adc9dfb0e6471e41c95081a473dce69ca1e1d22f255cb387dcd8455dbe47f2d4ed03332538903708c59d95f3b61c0ce9afc060d5f4fc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    39371a23b8f67a3a089268302ec29557

    SHA1

    105d3cbb10652f2543b57ed98cbbeabbe3536116

    SHA256

    4fcbb7775c4e0a2ce1895af83a4137dc5381b1bf9b527e95e992f1a480127f2b

    SHA512

    deb31eca96adf5d790d0015a6f6fd3caefb3af7ceaa73327095e4b42d9f12a5c964ca820bea47215db5a1d202a70e66f1057b6e2385a067bae2d442f6b186000

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    34de8d64050e878dba34a921bd429f2c

    SHA1

    1c4cfdad23f735644193de6bdc66d3a585d74422

    SHA256

    86f87ad04354340ba75716e186a327202002c57ad43961f65881afc8e52d082e

    SHA512

    cfac976f236ba287405c919faf91d3dead9181c981a71a97ad6e1d3a72713414bcf4c21eb3e174296f21285564d797c7a2403c58343151a1f48b13513e82c7cb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    696332b021ed5d523157a847eda3ee69

    SHA1

    8775529ce16ce4fab5a816fe0fb4a3ac1edd8f01

    SHA256

    27bea7739788b020d2894a15dad320124538ae7a4a6e8ff3a96087f4cf147d93

    SHA512

    7ed45b1f432d820ecd8c7ae03b7ac39703ee53719a767ccc9e38bcd3059fa0911e2c210fb2a06ea1edc765c2647e3c8bf11e125fa4507793aaa78daccfb3a9ab

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e96166a0a0278d1d23f4bc0950c491d3

    SHA1

    94e24d19978c76a6691c82555e5e099e223f6bbf

    SHA256

    1b327f112314e36a0d14b7700d92d1d897d3ca4939f42dc55158da204a83ba38

    SHA512

    dc024e8a25d6dc7e44c892c102d599b2ffe3e0801868336f6c2b904263a147c3b64ab27fd7491c882f46bf28ad12fa28562dc11138d2f50ae65a2ae4e95b89c8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a99ab95b1e62c4fce7095016ecf2a8d4

    SHA1

    2d10e3e519e2386bfa7fff423fdd77b7928d8bc2

    SHA256

    99fa3a948264f8a11ea071b14d2caf55e23108e13833de0e63192f411b75df20

    SHA512

    1ab394d97cb1faae294852f310006fc30ba4030b3bb325d2e19de6ec5eb717b207dba70d85d5b92f9649c6c2d9af5d8a7b6de296e9cb7ddbb744f958f1217944

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dc1131984ff1ec0db3326716e47c3541

    SHA1

    715c115358ed00e5462bd40b2827e3e7d07eb0d4

    SHA256

    40b34efae545ca441b1d7a3862be43a2771c5cc8fab7b08dab69d0265a090174

    SHA512

    a8cc64f7b44ee9207232e4e1a93c3231568aac1ccd28f95eaca9d704fe1875006f843e4034cd50113480053f5eb7030e9e11c61a6876ecd425bb4c7c22eca5d0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    84c26aec546d396e2f3631c98f35a6fb

    SHA1

    333e89906fca91d5ce0eb435e616487dffec1582

    SHA256

    c2665d6f5a36ced4b6d75936ab283f76fb2d86bdd4f7f573929b0b091b20cb05

    SHA512

    07bde4c2e80262f2b43ae65498e53643fddc9a580cbbcd028e6805cb84d309a5b8c52697292c49e25138397823d3d9c20474fecdfaa1c626a5811365942ddac1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    345f37f03a59ce452c37c2d6801dccd3

    SHA1

    896f342d9758a6da883bceb1774980b89e7dc512

    SHA256

    c6b0329865d2d9e734d53db68423e7e456868ea9a695475458d41c14dd7a4b77

    SHA512

    fd71ef6dd3e8136890e4206f148a6588a43795d2efd3af1fa4164646c3b80d9796ab8c7fc08a45a997d7e55a9b97b3c2b85e7985b2b379e3829ce745c71d2bcc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7087942205fef92333935ab607b896a4

    SHA1

    9615cc234ba54f6f748be03d5853a90dcad0bbd7

    SHA256

    43ac5a9550fc87251afd3d690439b50d2f5d2efeb155c8555e7e4ac88a014319

    SHA512

    54137990f942394b4c80aaf19fa97ca372c55d206e03555d08b7b94c031c32d03926e1f87ab7432d6fd98766c8bbe51712bf34659af97e9cc63a14557121b9e9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    392B

    MD5

    6c60b1bdaece3971199cdf591d8e070f

    SHA1

    2c1f989b8d6709b9ca601e9ecd458b3cda7da0c3

    SHA256

    aea5b34424d22408362d567ef45f78f82558c1850dfb03eb40003bf4c13efbfb

    SHA512

    689cee638d0dbbf73fc13463cdeb9f4f77f25f3856fd173e3b6bf99a2f373d02459d1b439e0856a0cc58e3a35875f4cafb90f1c1316a41333a3d9727c345618a

  • C:\Users\Admin\AppData\Local\Temp\Cab5997.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar713C.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b