Analysis

  • max time kernel
    140s
  • max time network
    151s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 02:42

General

  • Target

    a3921650aba672b185b2ef41adc8ac55_JaffaCakes118.html

  • Size

    21KB

  • MD5

    a3921650aba672b185b2ef41adc8ac55

  • SHA1

    9e588e7a4eb525deb5a9e8f5b0bc548718cf2aa6

  • SHA256

    14a93247d476a143fde84783baf5a7379cd9c661bf68f37b45cabb1e052ed9b9

  • SHA512

    0643349229ecc3da3263f3867bc3852caa41c612c312ac45534195042c9b3fb8e240b5a6eb3c432d4a53febe451fce17c6492ded9c55209de9e9b09e67b368db

  • SSDEEP

    384:zifKhgeftVBD8cY3RRO6pMOfImEfP4ycbp58BzVcz7+DJZTO6ut:ziGftgcY3/O6K+ImGP4yJZYIJZTO6Q

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a3921650aba672b185b2ef41adc8ac55_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2084
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2084 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2808

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fb2869cbc68c4232dab2c2161ff74173

    SHA1

    9156251db56d186229ac48351b78c34e4e77b2b8

    SHA256

    d17e8228f481f62a0eac85d9cd623ce956f233830af0cf8f892e4fc95dc35e56

    SHA512

    724beb9146e6bcdaec6f6cb8bf6b6ef158d982294b31d6bf0059f00dbbd762d4a30a0ee000b657ae94bc0f88d6ef5b0fb08e1498a403634af655ea8d3099bd3b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b5267d11a76ddfa66af586557cfd8bb3

    SHA1

    17cd7ab9f5d062b4211cacea503a8c6fc818224f

    SHA256

    3d531d59274061783eb33fd086f381438338803d5e1752d13e579e32dc7386ba

    SHA512

    48e4977513f943c8fd52f77d3f80653e471839372497a2c438967db6d6e54ea91219db219f1dad155a584048ec76e2be7e72c16d8c78412b71f0809b73b99ca5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e6eb2db22d893285045c2540197e5afe

    SHA1

    a10e1f1ea9b6fc5ee83d792aa55334bc47074a8d

    SHA256

    e9f01f2c9a6a6584b8e0c672a117e34213e932d4476bb3bc36f36b06bc0845d9

    SHA512

    42d39df0302d1b604f6cfc99da7ef5417cfc7e3046b73bb75feb12615229d642fabe8ab6851acb8085c0461e5684439f375112834cf4e5d1906b4606ee66bd97

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2eec39ccc8855efcf8841483ad32c350

    SHA1

    39944aebda532361ec8b53af2907fa0dfd023581

    SHA256

    304ac08d4858233475d1ce69db2b4cf2a79d8a733b959edbbddcecc5e4b701a1

    SHA512

    d9470c0beada6eaf6f8dd469b967422b84cfcb111907f212ee1c95d8b6c23eb3c267f0a00aaa2e952c0357a9f9e9f13ba208c956e760b95a4fbe1cbd54e4d112

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    25e5bf2e65922cc3ee10c511335ad042

    SHA1

    e32d998530821168aa8fddc8c467ad10c1be39ca

    SHA256

    2d9cbd20536acf1764276829510db255c905a9ec7de7e41c633f5cfdcc355e3a

    SHA512

    c33b76bec4f5dbdaf7db8efe09c8f83bb0a7ce0fff99d7264d8ad5d10b622b489374ae6e4682d76d0302cc943185faced50e9d5673f1150e2cf7e8592e462f92

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c8160a45b3929c29709fdca07e05eb01

    SHA1

    4012e4470b786332bfb7aa4522114aec0d860639

    SHA256

    c08ca55b4b0699d925a046037835754ea6680d8341bd1f964ec9192617468704

    SHA512

    cb622567326f2e239b4576f38e6253900024bd435706026acd2ea706a431f8b62cba685285bbb822e54ce0d27e5177989184613679675f7a7f2143e1829a4432

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    225445e27767d201d619e9be622c32f7

    SHA1

    1e9d9a0cc22fa3f13bca30f98c795631ba0f0e17

    SHA256

    3ff2dd094b99b779f67337090670565014d9a15ca0f5d172f33174af7ce94ccc

    SHA512

    321b491c014ea3e74d6cc20f84eaa29d332d5f043ec1452227653cdfe026fe73769010b8fda52c3ba7f60d58693aa9ebe970d857d674750db8d29d612c1a3122

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    191e96c4620e9bee084b90fa96c567ee

    SHA1

    0f3d1c7e4b25eeeb2fc18189ecb09119fee7a7de

    SHA256

    4e9ddf8b95df384b5a90ae993eed6dbccfc770579b79e30b4d07a133274a19cf

    SHA512

    b6edd41671024e7238f6029b44ea375a6997ad8b6e44dca9acac4acf4a8a1941c18cf9f8d90f7e3c13ed7527646692e0a4dac86f3d7801a778712d52aa894f2c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c2ef3dd87799d917e60425cb39104020

    SHA1

    f1b6bddbe7b60ad95eebf998f650f625a3ee613d

    SHA256

    a7731f9ae00da90afb3b4b19d7b6ce6b715a74a7a98c2a88c12158e036526d32

    SHA512

    1bd1b87dcf936f3808c3b25a48a7c8d7db3bfb1a949e9cac7a36807e8308bf0c45fa693c2e57fd188a813678a39cca8ff4032eb7895922c7eaa1b5606e1df913

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e47a4f5420d1cbfe0960825035de9ce1

    SHA1

    9504d13761a4781b25d37a982c355681fbc017c4

    SHA256

    deade66114a86e1eeabe451fbe6ac1d4710ff6c363d55d1f27c10a7b783db116

    SHA512

    59feb8282e5fcb92a5f5f880eb26bb67d4a7ae01f18655bb5a2dd7aec4c66fb584e60bc5c342f688460d544f88feaf215074e08a64112a851f9f2be92251efb0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7e674f7f882d94a15c6aaf21f2ec351b

    SHA1

    38f9ffbb721e8c4da1d3d20a4a70b76bc638c675

    SHA256

    df78e3bfd446781e9537f88d43b8c0d4b9c4760140c152b5cdc3099c576c7d79

    SHA512

    4d7d0b396c8e614d3cd6545d65c3aac2973d51f75c4241a71da1f295933c847f329faa290af523d6a7f2354dbe1db54869a3d5930f8c92b9708df937722c7fad

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    78062fa46298707b332115d6535e3281

    SHA1

    91ad9088e2ca579c156032993a1d8b91ff1959e9

    SHA256

    1adc9f48f9476190f54549cddc6d7c9e6f412e3d83746c997ff7d6485cb18037

    SHA512

    3d3b839eccfd6a3bcfc00d334b00fe3d25c4587f7c2a30273ff1c4cce183887bf900236e86df2e1c66171708aab12c4bbb3f102f70dc997254b05ed09acd17f3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a93b46e85e1f17a8f4be6417370aca6d

    SHA1

    3486c7a32cb18e67ab9db7d2e5649057679e88a8

    SHA256

    423a6b61004c217381e52bf71a9571bf6286095043fb96d1aa208e79f69b2739

    SHA512

    4b1697c5eed3854cf21dc1ecffbf4bdc0da5a453489474b51c8554022aba6bf830868d218cdc52fce7481a2c1ac2b4a6f56dfbd3f5af791dfb617a0917dffd3f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7158bd7c6af9ce307e0596e69bc92d03

    SHA1

    d384e3ef8a59e228acc43e4243a990b959fae8b3

    SHA256

    4ff5f21da001fd394c469974d600404fe4b03da8fffa8aba4940d78a990463ce

    SHA512

    d779442932b7f58d44d6e997dcfb02a32c31a57eabaa79a174d408d673f875694dff8f33ec143b6ce61048dc1ffdb61284d861742f6c4b8a246e3328dfd833a6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    17f58b7e5e65365baaac19d9a0cfdef1

    SHA1

    24f497669b4935991ae9c1b6b21d13f46beab4e9

    SHA256

    47c3d79e46f3f9f2119d8cbe7c964b366f2f29d1e775908bcc46ade3afcaae44

    SHA512

    e58cff57d3bc465312a4a3f5788e9f6f42e6c5729c5a71054def128de07d7e7518020254b699437912b2092c1584ef9b7f81a9ec8872771f9be4bc9e2ac3db13

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3ce9d2dd038b5ae29b9aef2b7ebc03bd

    SHA1

    045606fe8e73cbb98e818b3e9791f7349e019ba7

    SHA256

    10663b3846757196cb78c5cd42039b72452ac5f5f9e43055e532bd07eb9dc4b8

    SHA512

    d2804c34981851e3b253fb347a270eb92842603a85295134ca5cc198afb8b0ad01c8fb3e7fd1ab0ee09d02d7bedce1cfc60b63d8e6ef14188dfb82f83d5d6b06

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8c7c02eb3f9aa6dc746041f495c85b28

    SHA1

    0918353e2193b15f030f34dd6c7d96d0ca845493

    SHA256

    28e723d0e79097c7c6ea5eb0d62dff1f19e2038b551523eeac1a0a8583f31ebb

    SHA512

    541021cfbc6a05391e1ec11bac5cb73431a5f8f104c4343ad6091aeee80009d5695db99d28b68c1a0d082b770f6b5b6f1e43a27d4627fc548a614bbe645a3a89

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    11b6a73de2a8429fdda7b7512fad3fb7

    SHA1

    5b6bf872c6086f9ded9c3abfb96a8729b8eee88c

    SHA256

    dea941f38c7822c4b0a50827fef86982806c35d3ff79305a61fcabd3c74927ba

    SHA512

    4e1c3b923a82afb062f7173cc54eb8151b984779d04cf43f85f2d2d460f1629c5ed4016fe0905f14985fb3d244ed294e1a0713d5f76f40a68911b70723706105

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b3a92d727f1d1ed9221d84187bda7bb0

    SHA1

    dc98769a63289d3cd6c6a42dbb836c738171fe87

    SHA256

    d2d106679c89baee4b936a0fdcb38fe8f88a1db78414668ff82fa61d16627f8d

    SHA512

    74ba85b2799ad7a0a2d097f92c49a856305d2afc615f43631efb09b593bec42513b94656a9333933e9005e4584a104319d6d30b9271922895def86bbf8f1b6ea

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    347b278f23c6470240811317a541134c

    SHA1

    8208fc087a3e9d64353ac5d051c2a2acc095bfb9

    SHA256

    7ca33d7aafe3f6e0da37c1490769612373e83f0503c12645b3d8fb6dda31a298

    SHA512

    3f2ae585772b654afeb6999279701ea5a75e87892a1a30e73c14f78916198a2725cbd8c5e1c5b3351bdaf3289a7e336fc290c521e095998a0d9a301c0f0dc778

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5c9699583dc52a2520e6d799111039d1

    SHA1

    9d4193a2536497eae4c173d9f4e63fe4975cc630

    SHA256

    190d79c4fba6020eadab84356bff171ef868a63a3a828bbf6cff90927a50b5be

    SHA512

    927c77139b6cc05519ecc228a059e6c3d60ac8db4d1fc03b1d043f0941fb3d5e4c0262e09fe4a07fa125f4a0f532019763fe974e8f75ccde05119351c3ab5e2c

  • C:\Users\Admin\AppData\Local\Temp\CabA92E.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\TarA9DC.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b