Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 03:42

General

  • Target

    a3b4fc5f62a20ee50ca43617c3385300_JaffaCakes118.html

  • Size

    19KB

  • MD5

    a3b4fc5f62a20ee50ca43617c3385300

  • SHA1

    5da093e4d7c3aa5742ed6071c750d47b98c46337

  • SHA256

    1e3577018e8cc7ed01a69d94cbc1e8ff3d28f8a23d5acde836af55defe7b5fe7

  • SHA512

    737ce40fb6b50d86c96fbf316e8f8cbbc45d6d7c29947f19ec1c58a860baf3be053765fcb1c2421ee0de5bda1a9d5f2f93f4edc50e43b849e28de2b2cc110444

  • SSDEEP

    384:zi/lKhJESQVBD8ceQ3RbGUkfpXemLTXucfIk99het8zVc9u:zixSQgcx3tGUYOmWOIk9St6qu

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a3b4fc5f62a20ee50ca43617c3385300_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1936
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1936 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2100

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d5f6b19b2e5d15d185009205fe1421e2

    SHA1

    fa4a0e6fe0163ed2392e2dfcd673d11bdff6fb0e

    SHA256

    500eb5f28f0daf863b2670e78c539a68072d35dea80430663750ee3cbc6da7be

    SHA512

    1ee5a541472f8490411f5b50b0e205e7c8a3e025adf888ad5f4abefa16e9a40e9bd4246ca72510bbba82b6f4aa5101fd8004dc95dc1693cf927122929d327036

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    794f10864dc85977c8c54c5b4b0df5db

    SHA1

    05c7795ef29a30f25e7b26f77ac4da85162efae0

    SHA256

    1741a6deb8a604245a4a07ac83a962785b06fb72bfe819e26f9a1d6572b8c4c7

    SHA512

    9a1fd1734ddbc0c936c52ebd9377dc18e2ebcafc763cf6c4b77c30562613057cb2c3638a3bd26d0256a32aabc949b79a3e33e60f5319c4bb8692ba63a8e376e4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9cf22a7f331a14219651a393c9ed6522

    SHA1

    90ebbfea013b27bdb7b28b9a39ea41aff2907762

    SHA256

    e18d4d941d29e0e05d4aabf76d10607461a67c9bb3807d523b3414b3185a1861

    SHA512

    3e4323323082d71b26934f54dd84e6b19a12370c89b93ff332a5c8bbf2b2d826918393e74371e2d17d12867e9883648a83797ec3581c31a54680a4e0d696a74e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    da7ffadbe06a3aedbae029c60f5ca4e3

    SHA1

    e41caea9f93427b61706eeec5c57b596516eba3f

    SHA256

    32abd4c2701af589b85a25f6520c15959eb4b4494a001a89c150f3086d99ab38

    SHA512

    f5c55b0f7dcfb033d007783bba06aa0e8bc4649ddd9a7a36146226a878bf6e456b1e7d5ccef9dc1323a824bc94593645f25afdc00748e552181bdf283592b364

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    075b00aa61191d980123080f6cabc82f

    SHA1

    6069fdf1d6326332042ef4f2c7e12671dc0e18f8

    SHA256

    8a05b011b3d3ac66c0bd0d2a65735763122a6002f4980cb0cb42249f486daedd

    SHA512

    ea250c8fd7ba13fcf4e737c96a9de3edbec167a817d3d612ba4df7d5ca4a4702bf401006ce59d37aa229edcde865561334d9fa627646237cb53d9be7760cbda3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    039c87d6e7fcc4bb6dca273c6a636b6a

    SHA1

    463cf57c5adc02dfc6726de8f6b07d078a6d5a0a

    SHA256

    c79b03ff8238006b17d25c2bab1692fced9ec896f4a0d6c5eb563d7cf08bee10

    SHA512

    0a25d5951d6d8715ecd7897aa7a0bd1bd21066396045a0f0116b3158369b3e589a42df14b10e20df6bf24e32c7f04515833169fe5d7fffd23e336f230ab7996f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3a5723996c9fdffe39064441b4a8e3b2

    SHA1

    0842a53a709691d73178870f7f7f0c141df44f1e

    SHA256

    7a4cc531a614f6f51ff9c60ffcfa5a4e43bdea29e8ad6b006e227aee506be01e

    SHA512

    7dcc3ed3f74c2d245c4e3b9f13ffb63d3ea895a1cdb4fb91b2fe972bda22e7c9b5b370c317d5bcc84292596a353d0f5141a25ddaf6d8fdffa71683c85db5929d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6e2dbb2783115a0d6f4e1770e43c5bcc

    SHA1

    4e031c9c56919c74884d2ad4385ec1b5949b6ad1

    SHA256

    fe07b80a379703c456eeff84f54036cd920de1d8c89e47948fe81cef0acd6800

    SHA512

    345f2273a44d4a5f22421f3a0ef096db9ef5276fbbb460d5826a477250ad26dd6ef9944679c10a85d426b832aae405e2d3059e9026faf94d2702d7dd9d4236ee

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e78a21195ce3d6b0e44e889a53de59a4

    SHA1

    47a09194a0c67e5e50665e9db4f74a4b7db7ce8d

    SHA256

    06ff6237c67d52a9e3c2911b62becb5d2a3d94db6cbb5f73fe653d3aeb146afd

    SHA512

    46180309004bbf94402e768d6531546dffcceaf25f7e48f4d68ee35651b0c8c66b6dec567be6ddb525063aab63ba1da109972718220c019f15bf9ead04976d9c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1db3b699992dd46c51595bb77d5c3e0f

    SHA1

    36ac89457f2c14d4ff8111be5726ca47a5926400

    SHA256

    46f9d34296117f6bc311cc3d2f410837176ad1a218945fa0214c2ea2a73b7f34

    SHA512

    498770c39b24555c476f4b9233ab33a1ee66c00602a738694b8285fb09a9231c7e82e14aec89c27529b5289bf3191216668009177ca18b216f6dbc9d88cda33b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e3dab02a629ecb2a6e03467becb0e2e4

    SHA1

    aa084e2f0b708f7563196d1a0f232f4441e1f965

    SHA256

    10da022cc5f251337ded9aa53017609befe78db24e2ef6fec2d51f0808a0ca49

    SHA512

    5e0f21434e4bba6ba4154ba88bc97f7512b20a82af5750de37abdf68cccbb26f8e69d32d924a4dc3822073543fab06e2af5a04de4c2bfb2b74a898ff9392c3a2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0b9c568d5c80abe0ae2ebe6c33a5565e

    SHA1

    48f18d8930838fb76abd01ad499bb2c3796d7a53

    SHA256

    d7037d40573ea486d9eb3912a2ed8a023635e6db030482cf355a305c97846d82

    SHA512

    41de1460c89ea62e47d76aa8150f5ce112bccdda31e020783fa3283bae3b42be8c70eca3bf8bbd490be73dd260c18ad8c90a6c022024624d3efbb739f30cc97a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    14c5f362e212d147b42c645eb9fe32c4

    SHA1

    d623494869f3c54cf489c8b40631ae36e9531124

    SHA256

    a29a4a2ee3113b6572f7b8b230e4248a2ddc5fa1a0f76b5e3caaace2bcc7b5df

    SHA512

    757b6429098c8ee3401eb2848e57659819bdc6f66dcdca3bf8f8ca0391012381fcd23d6f0c90c00e173272e5b23eb3b6c60a72efd78f1ea7968f7b6a2d409a9c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    655499011b0ded3e55de283022426a26

    SHA1

    1c508fa236a676f4f4c82bd9d8335b1a23e3595c

    SHA256

    740a0b1ea1af953ea2611d80376a5b801dfd13646d0be8fc7791775c641f1d45

    SHA512

    b2f20c425fcc462adf03398357fd136d7d712956b2af331e0054f0fed090be678ef1744f026676bc81b87adcf72858d2e02a44f5fbed46709449c627643b8fd4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    67fdd502e69e702d25bc021fb2798d69

    SHA1

    bbd39c7f8b5cbcef2d458b9583e128233d31c2e8

    SHA256

    ad97318a0abcbb726ec67bb5da683157e8ee2aae34b7fa3d5b42477e42b13540

    SHA512

    b11da3cec18a725d60107b2d70cf3ff6f6f931218ee7b813e2508603f09701980d8c675f44412039d98dd49de8f8d489f23c8c6b3dd7a393a8007d88388e59c8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e6623aa062f286e16b230ba833fa9a9c

    SHA1

    decb6ad90c788190c918ff99fb516ae42897e685

    SHA256

    5b83c5921c82ed5786f3eb4c2bb76990796fccad1ac5ebbae17c0b9de4752d82

    SHA512

    803ad4f1cf3a6ec76839177e4b32c74b0ff34a1bdb1d06be9f54688decb294dd17b356b6561dd1db50cb7a9d0e220a5d8991904138b1a4c10fdc183211a2f97d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cfe40ad67cb797f25e589e90ba547c65

    SHA1

    e65d795c845ffcc4f324b4becfdd2656472b7182

    SHA256

    a01187525806c66a66ce1122e768e85f0c9c8e3853acfcd3797e90b7ee9673fd

    SHA512

    737bbb5e04910acaf296db5bf1a111b31ec32d7255962a4db71097e918278fb860727afde36050873fae7361db8d016528ec3b3aea3e0c00770a4649d8b4f98f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5d32ac7561d88b90e17cf04cb5ff5e87

    SHA1

    8ffdb579458e674e7c93e14749a8da62c6b29d6e

    SHA256

    d9182a6c9f45ef8971bb35a9dec1f7583a15a2b4fbefe445745058c6e85a6696

    SHA512

    1883814e73fd53345d313835a5f9dd72e12b80429d262246f530fb5c40bb097409090eab0ff83d71cda2c54268e1b9856bfc36869a5b786bc823a37e27d69301

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b41f04ad45fff9dea532e65e63a72eba

    SHA1

    38ee77d1cd0d22963fbe2e656dbb96960f4f69ca

    SHA256

    23d26e2cc50e871594b0784229ae1ee455a2f5430cf5699501d4e0160d7a6a6a

    SHA512

    71ac99bea62ea27002d5c0413cc39f98bc8bda1b5431ed974f94081d45280d9c3283d40b280f634f5cee41b4c2c38d93f62b81ae26d38db4a8187281feb4a140

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a77a805fd7438428e8fe0a4d1a3e53a7

    SHA1

    cf60760398a9fa13f8849f20462a9f03701494b3

    SHA256

    99348475bcda869e8003404a928e52121224a872490a271dc98fc0655df0ab9b

    SHA512

    60e0057fb03ad6c6059cf2175e14e3efc35eaf7cbc8df8f88679ebb0b84e9f4321d29ef61b31413c1f3822731591a6a7576e8621a3582c9e53be6a1beb6f0122

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    392B

    MD5

    b397100de8b6af224e47dc756fe0d8aa

    SHA1

    85d1532b0862877a098c51128afff8512b57aee4

    SHA256

    be53ce5916a7f9a62b5014c9689966134ba7ab32ff80432cc2129f3749f832ba

    SHA512

    f46e2b09b8a103303426f80ffb8a33d7133f846477554b94c25e0819ad0ed8fc700dea24347a45854042145c4089deffec2e3fffc13715a8a70ed73c888fa0d1

  • C:\Users\Admin\AppData\Local\Temp\Cab2760.tmp

    Filesize

    67KB

    MD5

    2d3dcf90f6c99f47e7593ea250c9e749

    SHA1

    51be82be4a272669983313565b4940d4b1385237

    SHA256

    8714e7be9f9b6de26673d9d09bd4c9f41b1b27ae10b1d56a7ad83abd7430ebd4

    SHA512

    9c11dd7d448ffebe2167acde37be77d42175edacf5aaf6fb31d3bdfe6bb1f63f5fdbc9a0a2125ed9d5ce0529b6b548818c8021532e1ea6b324717cc9bec0aaa5

  • C:\Users\Admin\AppData\Local\Temp\Tar2800.tmp

    Filesize

    160KB

    MD5

    7186ad693b8ad9444401bd9bcd2217c2

    SHA1

    5c28ca10a650f6026b0df4737078fa4197f3bac1

    SHA256

    9a71fa0cb44aa51412b16a0bf83a275977ba4e807d022f78364338b99b3a3eed

    SHA512

    135be0e6370fd057762c56149526f46bf6a62fb65ef5b3b26ae01fa07b4c4e37188e203bd3812f31e260ec5cccff5924633dd55ab17e9fa106479783c2fb212b