Analysis

  • max time kernel
    141s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 02:42

General

  • Target

    a3920c0effc010c15a0c443cbb160614_JaffaCakes118.html

  • Size

    79KB

  • MD5

    a3920c0effc010c15a0c443cbb160614

  • SHA1

    44de2b94ebf8c7d842a69bf2cab8f90805f993a7

  • SHA256

    978116de1f90778e39e0c2bc1a21e58cc7a07bafe341f59a93cf46693cff85f4

  • SHA512

    02406e8d1dd3ea8186023a23d78b40da7f8c0f5376f028064c528518747b7993464e5a13821fdd243bbe6b185ff15e4569f8e0c1473dd94886f46d810c019736

  • SSDEEP

    1536:TBpV0aCTbIs1OOjwi44S+Q18+ftdA7VpW:lTCT50OjwiM+G8+ftdgW

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a3920c0effc010c15a0c443cbb160614_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2960
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2960 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1188

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0bcea06c8a4b0d6ca3ffe2dbf4eca4a1

    SHA1

    76fe599d873ea7d3e5c053cfad36c48bea91568d

    SHA256

    3339468f1ad65abaed85bebaacce7a6141c59f136a89081455f386bb25595f90

    SHA512

    13e85ea11755d3d7152c81ed6abe8df104ab193f8e0b8153ccb53a4dd3396065720eba027824d5417a75347b24ceda32a2d46ad7946abc3435f612dc506799fb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7dc006df5223d42c9da62ba755d789e6

    SHA1

    77b1ff41687dbd10353ec26536d33a40509aa034

    SHA256

    5ae8b3c5574f5d9428675231d8ea23aba41bcefce9d010797e4dcd1cee532214

    SHA512

    233df935f37b3f63449cf23509e731991fc0547c59b7baa56a53da79db7dc640a46499469413e030d0254f7aab1d454c5d68fd3c4752ca8f0088e13f1127f0bb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bfa2f60d5677514f8f8d1efc61f6d1f9

    SHA1

    5b5fa397f2164022399c495d70fff2afe93902aa

    SHA256

    0c440c014227a7f6913deb9b3047a0da99540633ed39f23e549b466d068be942

    SHA512

    6af71b8b79109c77306e49f223449b6112ec5878a8796362cf9285d1c1d2d151dfee460eea264918e11ba11d75beb15324fdb0ee665554c49d58b63dbe194e37

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bc1b8c547f4a7748095412416ccb084a

    SHA1

    d5c9eadb3dfc5c4bf1846a1fbac1435e5f648806

    SHA256

    3ebc5569850b30eb1d91ddbfd5e6349e9f4e2e2ebf96983b56c4653ebe82e027

    SHA512

    48da192cf50a946db181b87b3840354a70334f0b1834ef6ebcd7c4465a6e8cdfde957b42f7e7ffe5c1c3a0a6aeb4830d78a95d5417e83e8d144b8bb2663aea03

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    28255d889b99fcb8d94ae584737e7254

    SHA1

    6b071af39c5d89c08c864c9db560dff48909651c

    SHA256

    2c4959ad8745214d39d82022b508a70ec09a1c8bccaaa076cf1b00632bc06c13

    SHA512

    a30547e6c2bbb5044e49dd25649fc9a2dc4ac0f2fe3425d2b8dfbe22f8cff013e0202a9ffba6464dd6a5bb5000c624b3c973407633b9ba47b8b294580b45e512

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3aad8f9e416e6a0741e228c7b965417f

    SHA1

    a612116ae5af8242e42585cb01b5d1e84798d1d6

    SHA256

    13428612a83fb64da416be46d01569a86b9666e88ea4e2602eb822859a4f1744

    SHA512

    38ccb13b1576a4e8eb1e59db75c9cf495ec241684332c0865a24bfac0cf44e5127438c2557c04ed1e15fbe08f8b049600255c188c07606de4eb001552304fbdc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    794818816ee346dd1f2004cae78961a5

    SHA1

    de1232f2cd6836d2fbf2dd7fc17f6aa315b81b1c

    SHA256

    0a8722c9388dac767db99a046dd94d2a6d8b5b97bba281eb5ffa0292253117e8

    SHA512

    96a61f541aba938858118faa2ab6c6805fe6e81568c5744654a510694fb9cedb0ac654b63f46e3f4bfc1eceb79fae9f8a9d342a130404cb6c95547b41f5d727e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    52bd68ececd9d9d86099e68e76392527

    SHA1

    2337aa2ce12a983358819773f1514b33672385c7

    SHA256

    54fde8e86fcf7dbba90351c8051ab0a8cd05697f0c97eb2c44ff6242640e7b88

    SHA512

    5a360bc8de57178ef0f4f7043aeaf58eba060fe212e0c4fe5f84cbab6ed0b5d3ec72997e6c0370f0ccd6cbd50e3ea31d2a13238e97199ceb96b45d285ed92e33

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1446a7ad7c766c65735b8b1e31cbb9bc

    SHA1

    79386f41130056580e8aabafbc0d52198d36fe2e

    SHA256

    1385ae7d83ab42cbeddd8e8d79398cf7af9c014d03b5c219bfcb09bd2fd884ad

    SHA512

    bad8d80d1798488f63e7bf411c86fd83883f55c3d8a1114cdd9808f2088afc621cda40ed1d39dd98e8df1f7791d18d412fac5e944bb55b14eb9caeae6505a5e9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9384d6dbbe87ce4d8c341a6d70a1ae43

    SHA1

    95ed466ca168a4a42a253810eea9e19449f709a0

    SHA256

    98c278a2ddfd3d441b9099cf13242cf83756a0220e5a6f51f7d0c58dd85417a4

    SHA512

    d19899ee65efe73a3eea58400dcf3ead68ff917fa086c0dc016aeeec42d3d61e0370ab3484a8c1d8559c242c60503915061b22b23bcb1af71d738994cd1b10a1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e2c6df4d802e98b6ced0bfa1f3daf847

    SHA1

    68fb6c62019322f4d27f10cc7e5f82fcf410f34a

    SHA256

    344769aaeca0aae790f507a7186df9894f56c3484715ab2b6339f41929d11b42

    SHA512

    e8c89eb39f06ea7487d849a2ea7522fb2cb07eac6dbfef70c9bb745b77984ff9ffe5b3b99d5c3cbf89e2e6ba6e85f1ae0559634bcd852fe2d370da425e3207d5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    17f429911c72da2f3ba9c465468e502d

    SHA1

    7d259ff1c1ac8dd7373e403c44a3e3b21e2db835

    SHA256

    6a501ddef598d5dda5c0dbae8a1183814dab66f82bbde6a864a23be4f9b395d1

    SHA512

    381dc7d38576d37606ea841a76f8733f25e5e34731b8fe27b50919ee4860b8cd455282dde6f9075902b6eb5ca40416dfbdeacab67180e604418590e793f365bd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fd55e3a80518ec134765510b99fb60f3

    SHA1

    0578dfcf13241686d0ccd1b5445d85199380d65b

    SHA256

    6dd39813023ed4cd8f0a761c86ceb1edbcf5e3df185d7538e1568d730da14c6e

    SHA512

    4c23a8f5e50041ffd899f8013282f5d8fedd0ca507ee529cf09ea3cb0affd9e6438fb3e092957ce0f7977ae0830cf11647613dbe7e70f8c07350fa3280ea0f94

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f1b2314a1bfaee388b147b22d796ec63

    SHA1

    144b88c520569fc73e47d94a3b49e52d5b037330

    SHA256

    862787cf1707cb76e785f17325efeac032799959c83f4b00973c11a3a88b77e1

    SHA512

    28cd9cbf1e29b9cbf71399519809a6abf951e21ad86d8b1de5e25f8d4598c044de9b6e4a39c4d932425f37d466ffe88b8696ab39ad5bda2eb590043f0754200e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    453ea22033d78a03031c1fe81a0bfcc3

    SHA1

    6a2027e3072dafd970aa9da4ffb892e3bd447ce7

    SHA256

    fef3e92b6e5e29dc5acda615707490fb65e5d648daf7c5a0e2e6da59f4fb4d60

    SHA512

    71f1ce1e94d644e8dfcf73ecc34cb340b46190ed4d95d15cf9378b503684bd18c0c6280747496343b388d754d89e50de095b50372e9a0484f903cd5a1a18ce5a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    78d6b4703811ac15b017afc321dd5d83

    SHA1

    337871e5ddb698a4ab7aca281e7a70518d8e553e

    SHA256

    5a8819436cadbd8db40b30f2f92252bcaf7a36eb9a90171c5fa3a70f8c8f9139

    SHA512

    9721db258b64bd7286f505adca4acd9aadebdb5eedb716325726105399d43260c7df9dd364a5c584b90bd506f1afc0498167c1a592ef03cdebff07392c83c699

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9782490311fecff6b37130196c51cb97

    SHA1

    4b7b29fee82479799bd932502f63cd928bd8f50d

    SHA256

    fb9492c75e56339690d9e50aaafcb03c951780d74c52e254e64ef4bef9e82baa

    SHA512

    fbebd86242447c55b2994c5317a442b74b1aadfbe551976238b5bf007d65150a5116835736d762e610065bdaf30e9b21c00506eb4f6958eee9ce541f3a2752d1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    eee7863fabeb724b51a8d1e1b322cb02

    SHA1

    d97e093fb47845384a59ce41917f92d5d015bfaa

    SHA256

    09a76a9dce602b8e2048126dc5c69ed5f29bafe60e25792d9fae158acd192769

    SHA512

    5f750e504539f71f72aef9d283e8a69e8f6c7d4fcb279978f1a48175c3cdbeeaef2864a0869da7654c8b5e33ec13c86532d9236e47693dc19bc754d0f439b82d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    29808a194b697a5d9d2fa8fed358dab6

    SHA1

    f3748052ed72d687f57aa1591ad57f32c049d638

    SHA256

    771536e71466716913bff6a84e30b6b8117037888efe3608deba621d27ea28fa

    SHA512

    34423cb245d0980a362bd6a2a7c27b87401286d48320d012b5fb973a05e4e4903f61dfc7fcaf76ce009c7828c7b0a8514abee550435197d5157fc9212364f98d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    36fbbc69776b4d019fb94dc33dacf750

    SHA1

    3b782f65915c6b76c073585f75685cbfa690e47b

    SHA256

    7c58ccf3b9340c276ef40f9c5990428ce19405af3cf74ba643db5f33be22639e

    SHA512

    c75fb4e0a293fd61672058deb76f716452abf4d3e705eefac520a9b2f10eea0ebf3e84a89af13714082277bdbc75765187e8549b2fcb44946386a9789237af57

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    89c725690f6e3ccbcf43b8c0d3207baa

    SHA1

    8a490cbc985874d97f2a66424c89383c7138f492

    SHA256

    99a51de99e2693281ce79b26ec21474283888a085239d38238c01787f8c014ef

    SHA512

    65c39c73fc264135355e31a5d589211a80352332988ef3c124880add641b63dda7251bc446ed77f8ee43b0bd3813b96d769bd50cdc7eeccbc1a196de5491f458

  • C:\Users\Admin\AppData\Local\Temp\Cab909D.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar90AF.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b