Analysis

  • max time kernel
    137s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 02:43

General

  • Target

    a39307ccadc75bc6b9a641d3b59f5001_JaffaCakes118.html

  • Size

    231KB

  • MD5

    a39307ccadc75bc6b9a641d3b59f5001

  • SHA1

    3d1d3937b6f079c4a6f27b436daf34d6b5a13745

  • SHA256

    da76ede12d215c562a61fa83da3d060dfdbb57458d65f95921355d7c6385b3b6

  • SHA512

    8f7da9c5a880ff9449f06cb0250e149d966ab87289ce79e120f3d78aba8258800eac489507e63316c74133115a3d8370702592df2b368d05cc70e904595e4979

  • SSDEEP

    3072:BGUDuyfkMY+BES09JXAnyrZalI+YuyfkMY+BES09JXAnyrZalI+YQ:BGUDLsMYod+X3oI+YLsMYod+X3oI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a39307ccadc75bc6b9a641d3b59f5001_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2208
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2208 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2668

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f1d5f27e45faa6ec435929531e95faa7

    SHA1

    6c350f6ca1a2292dc332bb762897bcceb57f57f0

    SHA256

    cae4acc52ac4e84aa8acefb13a59d833dc2b8e08cc4e0d850a558be56afa558e

    SHA512

    63d3a75513d2041732625637fe4ad6a8bda981565c8f06107619d05160631dffee8451410546d643eb6c174015ff2a369e4edb9aea3f4e351f97df5f231ae2d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    909da710ae730f1c8b4ef151e10a3393

    SHA1

    d1ae19a626f017be6ba1dcdade1d232b1bee8aeb

    SHA256

    52b2780ee49f37a15490b46b9c9ae471a2a2424f81a50c10101bc9641e0b7fdd

    SHA512

    2a12e711c48976044e3927ed7422dfac03056e94d2074e66120aa37deac4648d55f70d3f85097cdbaaea23abfc123bc7baca72ec066fa1285831aa056eed6895

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8a0c0e7b8771c0f6ed937f8e5633e462

    SHA1

    7fa1a7cd6acbf6c94943a5edab94e5271c6f8ef0

    SHA256

    9819599a24b1f55ad61ba44cf67fe677bb24251434e0257566a2041dc8264bb6

    SHA512

    fec3b1dba929b308c2766dd0b6626838499ee35ab93b6b3c0977b720af2593efc7508f42430a9e35c5dac73562e96d843a188ea0e24a86ce385c3eadf4924a04

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8f5b05b3da52f4dd3ec92263505677cb

    SHA1

    678138a15a5b7da0744b0bd3fd3e398e2429244d

    SHA256

    7e8af356856f7b99d5befdb221850b20c88715d7a31b863ddcd9c4ddb19f7272

    SHA512

    a691090d64f93492178d8aa5e32b10280633fa6bf324c1492753f1d69736a653570b135d49060f4e9f7da10d7adbd93b2b0a294109cefb82ec47f58b28001069

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    82c378435390e730ba150b66ba605bba

    SHA1

    98b76b75c10ca863b46f9a98d96b6f9ff062a44a

    SHA256

    6642c9358e3e584e3108144b1c51891eeebf292167aecca16ae5af3d96a713cf

    SHA512

    07b74fb2703e0a1aeb733061f5d960077afc341d66bea9db6777802f9973728e5c3b33b6096f301737c48fd4b5c1337cc0416f3460fe9739dc4893225fe2a56e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    68f3fdd3705df2340ee50f3ad1facd99

    SHA1

    82c30b8b1c3e32a396ea8de5344231328d6a3b0c

    SHA256

    f7d2553ce4391aed79470a0e5bb7c629848641ab7ae799029a45fb51157aebf8

    SHA512

    75e94886c443fef931344bfe1066b54ebf9510210d5c379fdebc941148be082c4b6bd6af606a0de783a4983a4bd98f1933fd9b0afe6989c2fd03d396256b3e2e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    66253f4f10b707c69bfe92580a5515f2

    SHA1

    a5d33c0e228564b0827134e38c4022805a944db8

    SHA256

    bc212454c18c72ca79a7fc09be5ef9ab8836dc58578c8625a13633a9292eaf21

    SHA512

    5aef0e613a54c4c6916d1deed88bf47b40d67067c48e373936e84b42bc7fd8782c9d60a4e061ef55f13d77e4d9f4fb02f662516cd2588d52a9d72be0df357053

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a762e85696baec83ec5dce790df0fb0a

    SHA1

    50337b6147b8342d6bb204d1fee1e81b7d599e2b

    SHA256

    b96485f075b610d7fea09a3228f49ac7661aa3d1321c7147d223a319b7fac353

    SHA512

    a94455ce0e8e15049f2c882bb6ec727115b584d42ac60a73c309dcf6bd87faa47ce57f10774efd35a570a6b338b58416792cf137e1e3c6e904dfc1133ae91c33

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    92b0abba20d641db53854a3ba0fa2f9f

    SHA1

    db7cef93b80a22e9af072225b2d9bce4426f8167

    SHA256

    84e705c949d7effdd18cc77eab9f3f41b51b9b7f86fef02059add212f724a047

    SHA512

    9a352fcd5d72a26b8644d33c201a961e85f591127e9ad4d7378a8052d39fbb74af6ef15bf4cdb070817f5ae16346b59b43fc1d60e6dd81b116a10c8e12d58980

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    69190dc61235b90fc670a6e1608aa010

    SHA1

    dbbc531608eb4c8dec3fd832a5e11610a29af8f4

    SHA256

    173cb4ed04dcba928067033e89949fd0c23ae523ebd458ec27c0958001c95fad

    SHA512

    ae4d8b18e7417fa9fe51868b3028e68a6997b0717d235fdaa3c901761c1a3d0f2b417ee0ced60ab439648746ed278b8dab1424841861528e8748c75a0b5217df

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a2fe3ee81af2b725857e9d8f23ec1da9

    SHA1

    ff99ac3c5a8491ab2fdb4d1f181d8d643b64bea5

    SHA256

    f3155fbc3f37de666e0b33afdb73c9ebd9e6912a68f474866fdc22193d9f9703

    SHA512

    4058f5510ae50465ec0b4a760d75cd84ff3ab82e77ba99f401c9a03a7845a74a2b415f16f3b32b5d7690a76ddb8e196e261ce197e0fbb5578d233794d263f923

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5aff245798c27edfec6f2de937a4e0bd

    SHA1

    7135fc24d0ee9b0feb7e0484691ca85294ee0ab8

    SHA256

    1c09054eb022c83a84d52a68171e2da8721b2480cbea5d8969f22c841a1bd3df

    SHA512

    ab7d1d3d237fbf7a22fd042664264bde5455f10bf0af0bad96be4c48c2f422602c9e9efce83bfbe310b10d7f6e97c94223eef3fa909f332bd5c0e2b2360c6ff6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8a12d1c84a684412d22de748f8d16102

    SHA1

    db951e59a95112b4e9b78ac51950ebf89d0ea1d1

    SHA256

    892bf2fb57ac3321606ba5d9b21c15eabb527a218f467e1d81443488640b18ad

    SHA512

    339a4e595ca4c5a9a6e9c5125963f31d29491a4a435730b4477af5f782347ae0d79149bc9c3a4387dc4a7c8d498a2469c2faf5a1639e54941c8cd6c29509d59b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    25f8758f3c52298422619297287cc881

    SHA1

    c45745c1922f53e8f68cd62fe41dd356935b4662

    SHA256

    9d49e018fc477d79ea86c0fc1f96abb067aa37eea62fa5efa910672df9e48902

    SHA512

    f95740096ab58051961b3468499f5d53d296ef2e75b62205340b907db0ee29b601312417df7ee9594a3e22415a1b0fd165fc41fe365f0f948afee7a6be1fbb40

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1fc860b83efc05f9b4d1a76557231359

    SHA1

    d9d3f0896b4b985c77afcb4cbd2f176ea248518b

    SHA256

    edfba8dc9b01c43268544478cd540d19bc549440e3b5494e38e685d2dba62f45

    SHA512

    68222727ef1344655bee4f05d249b5d2f9b732f8ece6e2248fb9f0d8c1d2570dfbf18d289f2bf33755bb6a5cda74cb5729bce123604823baf726e955896dcdf1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ed7ac56678df559f954cbdb88c82714f

    SHA1

    1b1046111e647862f454f8efa570e9f032a99e58

    SHA256

    da4ec408c8732fd6ee89f8752d5adb07fd12e3dde497f27ce5627f25c30a349c

    SHA512

    4909af9e96bad826fae3bd4ee3b5f32b9f87856247913373d401de732c8b0262dbcdf5f8b810a2dbd25b524c20c73273d746d2a08db50082f80035c9903b1e6f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6cda3e8741728e4e931ca2629754a12d

    SHA1

    3b4553db96f5c32cca94cc9ec7b7b301fbd0e944

    SHA256

    c2702b95f664e6ef18ba44f0ed770ffb8c484bfaf92a4733492b57e4798cbf79

    SHA512

    9dfa992013b5998624e5b810f45b1d2b0c8ce7f44572481bbc386bd1fc9c580c94f7945c3dcb5fc18c083be4a8be1f59872681f029f04a10d080035942fd796a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ac33fcc624e351b2ec472a1619aa138e

    SHA1

    a2595858bc5291c6ebab61e8fdc352737df4faf6

    SHA256

    7c7ba45033b493d9b8013ecfd218446e63222e9c4cd9b571a3c1fa40081564fe

    SHA512

    71db51ff248ac226d38e754a205c7d5ec041274330d60a9a9799e1329fda8d080f5c986d70fe993716352e3ab5d4c3afd6460a91814e0cc8d0b594874a3e0393

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d789f543dc29c5066b8da90318ef1bb7

    SHA1

    45ac5bff409fffc330681d707db6afdcecf9eec0

    SHA256

    f7207ba10cd9f9fb51a5c5bcfb7a66ded29ce32f15a829d99cea735d30cb0580

    SHA512

    de4789593d21488cac5f5a008024984ed2ba8c9f3fcda6c8a684ffc73e4f5136ddf522b46b2f7c0cc12cb6e4c515bfc59ef1f59c83f77b1cedac9ea20e59178b

  • C:\Users\Admin\AppData\Local\Temp\Cab72F0.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar73BF.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b