Analysis

  • max time kernel
    134s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 03:39

General

  • Target

    a3b3a44c5733f691f406b793bb7e8a8e_JaffaCakes118.html

  • Size

    10KB

  • MD5

    a3b3a44c5733f691f406b793bb7e8a8e

  • SHA1

    e7aa5f8d3e113d4e0348481a4e08f214ebbce731

  • SHA256

    0aa989f98d289cfc940f3bbd231ea1885b96f37bd23fd05c2a6ea2dee082f364

  • SHA512

    f67ee5d59f5645ec789b7f1c9b60eedff7485c2b59c8f4e503dd39607acee3fbd4f9728a844d39c9484b1b3379c0808dcb025b3ff866ccf9715688ae224e8521

  • SSDEEP

    192:SIp8utQAYEnSA3G24yxl96LZLhGpow8C82tlMUlKKHmD7qIj7X1Mipkos:SImuiAj3G24IMLhGpow8C82teUsKHmDA

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a3b3a44c5733f691f406b793bb7e8a8e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2868
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2868 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2704

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d6f261cd66be533e3cf615953fabea1d

    SHA1

    b2f41e94afa82825d988ba9b0e2a01a044e79675

    SHA256

    7c9e68b433cb13e765d7f3649358f1928a145072e8ca87dfd41247cd5536a000

    SHA512

    24d3b36862c4a996cfcd72baef95b49588d47e160d3048059826a242d8ac561d7a2392dfc176774ddf0f95c708d0e3e732d1559b5ce048cf24e42cceb8ae2a53

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d59c28c309c1d817bdf03d0f7bb0bdc3

    SHA1

    61248c6b4d296de3c93ecedf154121c9f0844343

    SHA256

    6a90643b52d84bdeb27e7512f39b49c6ac6d39bf277a9a36d4f68b4463e939cf

    SHA512

    e595f2ded049e40c710e55f42b480ebf46fee98d8f16c96dfc1e8aae45d8799fe071f324b470e78758e32c05d1ec57eeb88244c766fcebaa1d85c80cc740c155

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4d26a960963c20d588ec4a8dcaf5a352

    SHA1

    79d311e77a4f14a636221b4585599c65f38defae

    SHA256

    79f4aaf2e5cc7961da0257cd4f2c3d267778006cf4aba76dd6ebb70e7d7ce395

    SHA512

    2597d863a21825de36236f8b02ce04e0761f436e923b650455b34900e97fc90d61d810a0d56db94b23a5e3ce35dbf6da950f3a3ae1fce4cf3bbc9dbd3a668152

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    501af3758df995206125005c793e3874

    SHA1

    4abd6e67c6c1cf6f8683521c502d7d26e7c909c4

    SHA256

    df952ba70f089a6eb60442ad90202cad5e9a1a904a5a002089d44d8cbae2a4e6

    SHA512

    b54c16d514b981b82107eb2e08fb5ac226c07c54accfc39c9f193e870dfe270f8a671fcb80574a110e7c00896efaa663759c42de4cfb6469d70e78e657c5986f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3ccb00eb7c9f904316c0e14a1afff1e9

    SHA1

    76dbc6f86434c62b2add3787d041dd64da08f451

    SHA256

    086a13e51398819c7bdbaca0fc193f9712a4d5f7e438e76d697fcd40f49961dc

    SHA512

    942c845e16173b99ff7c0d152235dce42eaf9aec81537be2fd3482b56d56e70adf04779b877ac8f5ade512dcb480ffdf8805f39ea538e3fc8c1a40c1f3562389

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5c501882d3b2152305524146912e3c97

    SHA1

    67df1f0767b5726b14aace119727216b43306de8

    SHA256

    7b3c7aef9adcb7504702f3da908649c1e7f0c4fe843b86098f7f0a7811f3d162

    SHA512

    b35f8d55e9fafe6a35ca6c9ecc4f5298a46a49aa27d2d58afd3c761cea5f1a3490ed4e566f2159749942a9c1882109960221448ea48ddce17af6a429f4917f7d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c109e7f38e13fe27c0d39a114427e928

    SHA1

    a0bf20918978b8b821224d92ed625b18f21f2fc5

    SHA256

    6a7a5d91ef1bf3ff8407682d52b92cb61166b480ef5cd7381e2baae534e8498f

    SHA512

    c33be38051abb5b5698f91ecaecc06c4a310b43427b7a8553580d60a121c16ca933a40a8df26d724abdf448779cb825fcac7482a41a76817f5f11115d026bc61

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d958c6efa6b6bb27fffc33acb7e00fb1

    SHA1

    0aa01f297ae1c41ca3e69cf5c95252b9f6a7f7f6

    SHA256

    9c5556c7f5c89c6be0faba5c17a5dc88c80fd60ad728e05494950889277cbe6f

    SHA512

    748aa338af986675790e0932188496e96567170adc3a5ded4110bb913e4a703ed76a1f9496313a7a2cbee4c85fcaf045ef15b42a4f13588ddf852281d412904c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5a112a888971d28d2073f69ae754568e

    SHA1

    56df0a447c1ee14e72a1393c142015d4ecbdd8e1

    SHA256

    c4d929a53c6b92d5038ff0fb00af3fef0b6493477d8a73909e2df6f03b562029

    SHA512

    167ebaddb08e2371421f2ba6944e37e0c45547ee338247a4310bbb23ad0d9bcbeabed0d19cd752f908d14a679f39abdf5e5af793692912009366461303894e69

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    21d5eda9ad0463275d5655aef457e266

    SHA1

    80a5109744a62ae4429c8c84734f2f830dcb8c86

    SHA256

    45632a5b9b14ef96d5854c1afdf73d97dd32369b31ffb2d3e85a096dfa1e620a

    SHA512

    ba7d1e637c94454d675a36a742b51ff362580374c722cdff8a3703a9a0b215a41c676755789d87d39e8cfc0e64f6abfafbd826679cf599e4edcd409ae73f155f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    802fbdf9df6bba05f51fa724ece5d360

    SHA1

    0a9f0d26279cc675f921928516b757169d506874

    SHA256

    5371542c05ed80fdd8e185c6061b0d98ff43de906f200a66071e56efb8d6d8de

    SHA512

    0726c52d05fe99631b5d73490953d416d7ed3a943e4f791376048c267ea791fabd6ee0c3405c4e7627215587ba0725aeb0b599b496d65ca00bf4ed30ed05d98c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    029cbcb205c09224dba48596e2e3cab8

    SHA1

    05fbe2dd35fa3664c7ce7a15da4163eef4f6eead

    SHA256

    4079a31a844ab15cc92e3510703aaf7c30a8e1b65a4d82ecc9e5832d77bff091

    SHA512

    ab21139ff29ad2a86930768e723c2f643dea2253ade8a0560f36bf81a5e78e3f2644a137023e4dfda7ba98589b81fe1baf5f1780ba3a820b7bad3c11bc93e31f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a5fe59ef9c9ce0a3b33628443ca98aca

    SHA1

    d117ca8b91f8d7f3e2934dd14dcbbd63967cfdda

    SHA256

    142b7e18c7c45a5099d94f8df2a2db2608f050a8e539d6281b2eee666fd170ba

    SHA512

    10def6429226d28be678cbca722fbe33f7eeba213e6c8c52f2bdfe478df2d8924d8e4e23579035626fcf9f63eeb4341b235d0960939d88126026b258a22726a1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b96a559baa342300fc527bce45e210d6

    SHA1

    5e22760fab241593df60388346b11c397d1b3803

    SHA256

    e58c82dbfebe83e0024454b5f575cd7ae5eb06c99b443eab93fc683fcc46fafc

    SHA512

    0c447035626ff359704b6f396c01fccf893e4e41a02a5b1688af70f981fc650bbaee10d2778f7da5e6fae733123351628ec02fccf2b777d75eebd3509104442c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a10d5bfa51b6026eb2d517c6509f8409

    SHA1

    e2afd35c6ed689dc51bb8c999b64d1d900e411fe

    SHA256

    100e4d68130813725c5b1b6a3ce61d1635ce3311f23605362b51c7e9bef43518

    SHA512

    ec93084c75a4b79321f7855d302ca21916f4d2f018d67909bf8509b2a9d035910d7805ecd7a370fcb06315d7bae3d7abe975ab8a72387ac195b046b526df0da7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8b21514288e298376990511a5470805d

    SHA1

    4d191df82dd7eb9b5aed5019a40f60c26f700198

    SHA256

    aa39f6be297e2ba2412551e8b1187bf14aa3567c7aef477a219f9628970367f1

    SHA512

    8fcf192d4b769e149abfffa8c087006323db6ccb2a9541a910d30f66bdffaf2d1ce6a0eb7e47a5a0ae633291e2568b5119ece6db9ac767b30c418135869df1c8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7cb42cda3c5cf16667f20364f5bf026f

    SHA1

    662732f3027d0fe4663c07632450db0e41d10f47

    SHA256

    552f2954147b3782d3be7f867021c82d5c72d7fd7596bf13e0f2597196634024

    SHA512

    7b6ba26b2dadda0a53b46307559bbc79b0d739e9a471f973627b5591a482ffad69c773bd9f9a92ce46116bdcfaca8e543a7e01871fb2582b6cf9e60ea32bb6b8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    57035824e13e684b72970aeb18f6ebe2

    SHA1

    583ef38481291b2d5f5af68cab11691cee12dba5

    SHA256

    f9013d2b8e753bea45aaf189e6288bf19f2694d772d9f03e71498f296d51fc89

    SHA512

    e8a2e74d610f5ab6958e4e1d72c817bfe270c1ede0f55308a05aa8defa34ca3e30221a61b42332ccf1dd04211612665d32400ad5b212854ebc916ec76dd6f07a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    885763a2e4cacd15fea02097ff816fba

    SHA1

    aeb3d36806e57d856d56497e96837c95d34a2269

    SHA256

    ebffc8e81443eba9f978fcda659ad2c4f245418f85b635e2d3e9110ce588a214

    SHA512

    dea968127ffa2275838513aa6b44177e436112f2c819260e548b13540cf93950017fd8d21a6c33f43dfcb4143b6f6d519cf7f3d4ad60aeeef1254f41285f94af

  • C:\Users\Admin\AppData\Local\Temp\Cab2A6C.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar2B4F.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b