Analysis

  • max time kernel
    143s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 03:38

General

  • Target

    a3b326e8b89bc19511eacb8a35ad032e_JaffaCakes118.html

  • Size

    20KB

  • MD5

    a3b326e8b89bc19511eacb8a35ad032e

  • SHA1

    527940ff6b30ec6ecfe546b7003fc1ce79c114e7

  • SHA256

    2759d4ceecfaf85480acba9fd585d505f8204e7f18ac3fc0d093ddcc346a6293

  • SHA512

    ee2b267e2367e6298512c5b20d0a1afb73a8c7eb7e1c50743a449fd27a1042b3c5f95c6d30ba33e97385a61511191f14aeab1cd8368d8656b3734b8e0396843e

  • SSDEEP

    384:ziaKcRAa5r9DIiCVBD8cEQ3RLpegqbmd5WScfIk9xheMzVc91gh:zi5a5r9D8gcX3pimNOIk9eqq1gh

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a3b326e8b89bc19511eacb8a35ad032e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3040
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3040 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2760

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1febe1159573d2d7887e61dd9cb3d44f

    SHA1

    a75a65864f74abf1cf65d00c31c2f395b6762ccc

    SHA256

    29edfd75eb0e940bc9c8d87f1feb77c9369ff4ba47311ca97d74dea3ce0fb702

    SHA512

    a42a97738eb4b851d7fcd0721256fe0cbfdcbc56b6d759eec069adeb0d624c9252f34b097ca74f77437807b632a01b8376f66faefc26bdbd8c34e39166beddf5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    433ae3823bfe8ec9ea90219326c0528e

    SHA1

    34ea6470303904c0bc29e87b11744d539b53b1d9

    SHA256

    f063181961b48e14a5f98c95c77a252d8fe2b719d54fcf4ca7df4cc45c66750c

    SHA512

    707a1d5b7faaf653c781509bc049aadd839e5135583af261c0b28497234e19acff39c4120256b3649ab9560aecb243d355316bf1e360a172b4dc89a16739e12e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dc2e90a625cb99129ef7b65869db718c

    SHA1

    190b5591aa30c804e81ecbe34217b9fb20a68940

    SHA256

    19ea28f6322444dcd6ceec8db6d908f7e5c0b3edd8ea2ef3fc8ecab1dcbf8852

    SHA512

    3f64c7e412d5345c94902f9c9e27ec4b3733a1a0a2360acd838b3ae10b581da32a093884481b894d79032a28c20665605f9e752dfb72b7f4258de7e30c93746f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0d6c0656c5ee8b33777737d5506b2577

    SHA1

    a4ecf83fd0fcf941639339304dfc112664244803

    SHA256

    a4a65498806eacea1afca8ca9ce123f7b43294965ac12ed831c891b77363b731

    SHA512

    aaf45c264a65cbd86e7c4450efc5ee24cda72293f11cb07312e16c6a70e237e58abe67b54ec3d78fa5f1e5ac9ad017f34b568df54b26ebff419b64b1c354f873

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f0143c3cc8cc54db1850dfc8d9edc10b

    SHA1

    15c7609ec819f91e30c761e29cbd5533dd04f750

    SHA256

    eeaa41d1b8a6340e631dcfd1603bc695f351190910d66be755a28a45d1d3a50a

    SHA512

    e605401e8ad1a4781fe4106e6d5fac38a82260b2d8983aba4007be9c6eb7cc897268c045e52f45d690cda072c44f4074def2539ec3811f3bdfb45341f77fa496

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0820158fb8aea93e18ed04137aa1185c

    SHA1

    8e59b83e2545baa1b673b7a8e75eb0ea2289b175

    SHA256

    c63821d39a0942599fd4f3110540507f107c85a44d2226381352a3a1d4c52880

    SHA512

    832ccb75a918c24183f6bf2b1ee861ae282771337dbbe92b330fab7314dcdbf7714807869c9a4c7e20ee1bd61484b9e04455f260b19ab68be6b0bd7bf5da2971

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    98ba2429d5354bba2490236efe700c20

    SHA1

    250103a4e9239464016c89540131f0cc10533b36

    SHA256

    7cc0d2ee79539416906f54692ac45460e30372957f36d4eb0720cb90eb7c0c8f

    SHA512

    4dd9b98b0494b87d7aeb2bf75253f005da1cceaf4ab21213ff90936cb7aae62cabd64ef9d1663d5e9fccc972a5e2dc9e9e92daf65e41acfcfaef1bd9f4e5ef6e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a634cb95e2ed4efafefc04d912d9b587

    SHA1

    a91789e76b7db73d8070e4e6587916c7e8cf3987

    SHA256

    ccdbdb5d3c4fb455443598d24ea889ac6b8749348ebec88488871b768d734fab

    SHA512

    39b87f358d98529f823a57ad44fd8a9814c8c3a500c2257cf000e0e3c24ba90c193da2581d70e643e041b9fa1cdb3d04d9f29ebde6dbf0c93848a8654111fa7d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    44fede153f75630624622f798872970d

    SHA1

    360bcf668bfacfc918dfc7e1f117f734f4dd50d4

    SHA256

    86615f8d618d65bbe716327a338d6acbca717f39c6911bf5206ef7e8145a48ba

    SHA512

    6cf5ff307328aeb1e1ac25460507ea52b93cb6ca738f9ec16aeef71ea908e3f83d5a77689973748d011b4796ef920edbe09db5ae4d5eb29197f374eb0ee654b6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f35905bb135599226b8ce5bc281dbf46

    SHA1

    99be4626ea1bcc79377b46b853e105ff456d725f

    SHA256

    e7f9b0d799d39b2abf93df75bf89cf12f69118ba435ca732ed43c3785cb2e82a

    SHA512

    a0c8ef858d3773cce1abaefc6abb19bca05205770a30fcf17e0d418096a790dbdb7a8113062f4ce68c414181168c390e81164dd0ad57ad4fc0c0b778e7a2ab24

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d04e813313d8d75b6e475d69427d3ed4

    SHA1

    04abfb1ecfde486502e4d3169a51acfb7200e22e

    SHA256

    665eecab81bb7a8fd135e9531d09517714c2d0004d63f5ff83515d77a87c31f8

    SHA512

    3770a8cc29b00c0c8417be2624fe6091c5e28654dcfdaf7b2cfd2fd620f1255bf03358548fbd21597fe06b09a65528d6ab19675fb904adfb1f6e8fb0276d0020

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    510ba2b911dc342b4dcaad6ce48724e4

    SHA1

    25bee714633e531800450f0421d5f02c87aa824a

    SHA256

    70f40b777d56aeada14d513f13718d259737cac2c33766047c6f11660f243151

    SHA512

    94523baa645d3bc5d2b42cd17e89a2040d77c5aa847efb38fc4e236e727e671ffddce3a982ea3833f194842e3afd5e121b13c4758537030e450b7eef0cffe023

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1cfaca2fa9172e21f1d2c5f50ac9ef9b

    SHA1

    74950cea3281fba47cec5782b6c16d986e3b718a

    SHA256

    823c081479f58e6a69c46e50f0dd8c1fe564e67cb8aeafcfc4d64babbfbeaf75

    SHA512

    14bb76e1bb6fba993c2601437c2772e2fbbad6d8cb9d9ce05726381da1ab4b6f564c1478907449a34310e0ec849fe7d674b31dca531333342ab0971c1c0dc8b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5867274f5fdf50226c24c09bb671e1b6

    SHA1

    e346be5f4ef109260aa53b773e9500cfc6e096c1

    SHA256

    bfcee94e880e8c316a7e052cd386f7256a54427b99c8e2e0e6aafd8f44f301db

    SHA512

    da9818a4fb89887303fe40eac6296a4c00bc2ad761c9b0bfd13ff17c3825c2e01f11b9656f96275af754173599a96755dbee8c9b1c4c05454b8c10f05828ccb1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    326babbba80cbe82eaf076c37b6ba94c

    SHA1

    5abf34c8000a678965561bf48cb747bdb35a8dd4

    SHA256

    70563f59f9e4e319fb40a5e9b05342af5e9e5b88a241833044c152deb0cf5a58

    SHA512

    246b21928fa51d8ac7a0f2f75a0a1b829a04b0098d85104208bb6b6bc274b9ee15be73c4ea9929d1064284df4ea2d7d3ee06b5027b1c00e007f71c451ec89778

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    56a359aeec868e20c5dd7da7fa84cec1

    SHA1

    afb1e66a2ae68079625a83a3b3fe3856426937a4

    SHA256

    44174fbb1369381d2246ebcb927481b001bdb57a7c540eebf9fd5c943208338c

    SHA512

    f1a7480e8bdee342b95ef660e265b7a1f2d6307ec657e315b2bb5c58bcd2ef5b9b18ae4786f0897f1027a3a55058075293077f163de9d82a158fd88d39aeb554

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a2b0222739dca9ac9efb33797a1670cc

    SHA1

    dd3366654b23284a5dca0c1b5d1909af6c74a62e

    SHA256

    22d4256be9f8e2272cc78d302b7acccfee5765d2611cc1c85a373eb985a48a7b

    SHA512

    8159d19e693899c071ba413c019712beeb0ce07366a27e9f761d87ccc81b5fc9b05e7a7ab1063c620c8929e2a657d6d128c371bc539d67f8faad24c175e86829

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f5bb20d104e100db54d3de0576a58efc

    SHA1

    42445ea763120ee294e09f5b0856127f4030dd10

    SHA256

    e3934aec1afa569f5178817fb9a0aef7caec4ee9878352a148aa65df8ef4409a

    SHA512

    5a2adec47b09fa225092cf6ae5a780e57e7c3a6faf64d731fcb50dfc0892fd8f06a45e7f95e62ed28fc993716bdf3f22553f3c847f4363de7df9f63881c9693a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    52208710071462372a4bdafab0f004aa

    SHA1

    0968d2bfd4c25f57e92cd401b8dfd549a95d9c6e

    SHA256

    4e65b3b974f11a5e00bccc5060ab7e177d4ac7a3402fb2a567344ed18b4f9513

    SHA512

    0697fface696770bc43a4b3682b906ec159851644b86ec7b319bf6d33906fd68f25e113e435ee0686098228010efe8bbd9ebe704a3dc6a98256e76b7dc66a956

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0a19928ba7dbc9e6c5c90c93799d3ed4

    SHA1

    e82925bfbd6600c4aaa49f4071b9fa360fb2c3e9

    SHA256

    896ed97063c88011b2bb5a00f503f9db889c4777fffce989f65b5fff1c63b565

    SHA512

    633985b9ee07000611f6546ae54c1ce26fd2f838f425a2be17bd76a4d617135cf63cb124b09bb3e3df6fbc19492176be5fef4aefcf8092229d35153b19127dca

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    392B

    MD5

    dae400c20964c5f7aa97f4beec1806fd

    SHA1

    c39e96663dc2899c7e1b33001c4c548e0c4d8ce7

    SHA256

    9ac8dbe6e4fcaa06ed26dbbefa1d59c5a16c6556948bd04c780b0fe25ec38d50

    SHA512

    583474f2f47610ad7d3f7878224b2e0e4efefaa19b09b74b37d935c5c4faaac01243115162d9d22c19a258e5bb539590c9ffc0c33e028a78ebfe69ca95b7964b

  • C:\Users\Admin\AppData\Local\Temp\Cab3055.tmp

    Filesize

    67KB

    MD5

    2d3dcf90f6c99f47e7593ea250c9e749

    SHA1

    51be82be4a272669983313565b4940d4b1385237

    SHA256

    8714e7be9f9b6de26673d9d09bd4c9f41b1b27ae10b1d56a7ad83abd7430ebd4

    SHA512

    9c11dd7d448ffebe2167acde37be77d42175edacf5aaf6fb31d3bdfe6bb1f63f5fdbc9a0a2125ed9d5ce0529b6b548818c8021532e1ea6b324717cc9bec0aaa5

  • C:\Users\Admin\AppData\Local\Temp\Tar30F8.tmp

    Filesize

    160KB

    MD5

    7186ad693b8ad9444401bd9bcd2217c2

    SHA1

    5c28ca10a650f6026b0df4737078fa4197f3bac1

    SHA256

    9a71fa0cb44aa51412b16a0bf83a275977ba4e807d022f78364338b99b3a3eed

    SHA512

    135be0e6370fd057762c56149526f46bf6a62fb65ef5b3b26ae01fa07b4c4e37188e203bd3812f31e260ec5cccff5924633dd55ab17e9fa106479783c2fb212b