Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 03:42

General

  • Target

    a3b55acb2275190bfa67dcf0ba91a51a_JaffaCakes118.html

  • Size

    102KB

  • MD5

    a3b55acb2275190bfa67dcf0ba91a51a

  • SHA1

    d5952e2c91664b9a34f29a7521afa3014a0b286c

  • SHA256

    b4908cddd2675f8302433be4e6cb0bc9460ff7a20d2efc6e6813a7607a9dcb1d

  • SHA512

    01dee8991059098083dc1aad919eab7adb5bbe9d178ab74e3094f9da77717255b4a6787f1f99a77a30cd8db68bf82c4393d47f06889c80a355b92fa6e4863b06

  • SSDEEP

    1536:/ggMqpp0jBVdUVVVVVVzzSSOOyyy66IIKKGG8B8BxxxxxxxGGddttGaa22hhjjZU:/ggVpD6Vxv

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a3b55acb2275190bfa67dcf0ba91a51a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1976
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1976 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2972

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    65b463591cce45e2e807f786c4833aac

    SHA1

    a9c17f044a73e9ee397264e0a63b609ace374d69

    SHA256

    40bc47b7b95867415d44b2a0082721ac41615ac968881ca7fca4f26516e17267

    SHA512

    74eb9804f4f75a3b618d5ff92502f71ceaf60b7294d2a87b400ffb2779545dc64c1284b6c310350ca75907c6baf175a585388b1ba6251c27f49f5df30d376f8d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    780e8bb81db702cccc446dc94b9a3d41

    SHA1

    b5121efd0b4094e6b8f46c8bf61c39252aee12c7

    SHA256

    11dca1b879bfa1639c630d8378707ea18bdd007d43e9305d53ad9fc9f30f0320

    SHA512

    cbcef89836154c76e884e8ec42aa982e569e06ecdb50492c837fd4d2f1862bfecd86b2a76cf17cffc3343ee6d460445dc9b17baa0954272a994c79f501d0c5b1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f993f289465d13430e24d2a678ed312d

    SHA1

    c486d66fe7aa44c42d0acca011933ae6c62d0a22

    SHA256

    a80c8b871195bd3a99e1bd748275e4ea5ffc0de1a47327ddce6dce4f6181eb35

    SHA512

    79b98d8fbb5549580e49162a74bceb179f79c3723926103b91d738af320f3a1b2a1cbf5a6cae23e6dbadaa24f3836b3ab8ed7c7c4da49f66b01a1385a872e020

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7c47dc15e890e644c289dbf08006ece3

    SHA1

    1a2785c59eb05cf6a628e4c4bb9dc2b75532031a

    SHA256

    67e0fb4cda1e354a52377e71489d3c9a53a2d492c04c6428c0596e5328e304ab

    SHA512

    53711ed2262203f21f71eab4c0cb0e250484d15234dfeb8d57da6be0f3b753f050103fb9c8cabd38e04c324852a11c91bb417222e92675be798ff621488bc6a5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4b48ce430b21200d52149198aa843f64

    SHA1

    f7aacf10392d77c59f64866187bd24ff500f4d0a

    SHA256

    058c20b810b740970cfc28a612150703be8c7ff46b4216eab71948ece3b5e399

    SHA512

    891f169b46e49076286a84c92b45c0ffe7a22ae7f634e769d78bbe0892c562f6bc5a8a3bf90baa46dda8be9aea80f75325bfda8943c83153f1209402daf92fd0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    48671ea4363f5fb4940c886ffa5e4d06

    SHA1

    096f0682dde34dd349c046879fc709f5f2476eca

    SHA256

    99330d68e854c16576e39fa48e5892d903a449dbbbc7272fd9c60036fe7b1195

    SHA512

    dac24ea5c0c2538c3f62d1aa0e9e387561f5cf1a7aa6f663bcd933c205493d4ffeeb22cb81f446f2caffdd36c916e9505e3e0e53a0168922637913119c9ca728

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9f42c3ebb0332f548885769f40432da1

    SHA1

    addef4f82d6262672d4ab59ed1cf047479f5c3a5

    SHA256

    b4d54621b297b5b76dde45e680d56aa09d0dbe126eb950446a6b546fb0403ccd

    SHA512

    404c601d23096693a73b6de1c46d72a39adfbb7c6cc4e3a24026673410a3ca6c6109d1e13aecb36a126ef2a8619b130def694fbb653a75453ab22f2c66343aa7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    551ae931971ea90a472af3abd466105e

    SHA1

    6e887850f58d6df218a28be3680df00b22d2d296

    SHA256

    c0be1e072114278dd49840a46cc79f36591d486412fd7c21c31ca3515ad3ecfc

    SHA512

    c6da3169bfd72dd70e34abef8ac2e88c1268b686da2c5b6444b8fe64abf7772ef4b90b8bf4448489bcec47c99003841782401f2b79c2464b6c9df2d339cd5685

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ba593c33bc4eed6c04180763aa0e07e5

    SHA1

    e02e97293bc6ec1b44661be3e52c8215fdbdb43d

    SHA256

    10828b35de508208072d49e09d86f438ce92f8cb5d588daa7dfa1d0d470f9c42

    SHA512

    b4a8b17e840e9d0c95b1e3aa618dda580ceb23069edea06f3e97fdd8bd0fcf3de3e7fc6dc0102bd74958f02b28c5d3fb7dbdc415657fd150a14f844a0de840c6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    814cbb40a7601f4e2e67a9908732703d

    SHA1

    4cc82bc19deac5507e651f9e9b97b3111039ca56

    SHA256

    782ba3d343f107bd0fc1303a132ae44273916b8f97c19aa1a904df4a803e22ed

    SHA512

    deeff5fd02904659606c44d43e0b37601943718ecd160193cf08bc64fb980d84aa6802a18e16f9bde0122d3a8d1719eee2699e5b0c8fcb8827fbb19a3888ca7d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7d084c753351cddf5665c5efd84efd43

    SHA1

    98f2fbf788f02cec8fb042be5f83e4edcb145b28

    SHA256

    621ef6b041d9fe6caf16ba1e0b63afccc77e55c1a6f028ea9dd67b2ceccffa99

    SHA512

    b90c212287583109e3596120aa30319278f4873e927b2ab9bd1c75a4dbf36876120152322052c879c70f44fd6474d2fd7a40ea0ecccb634c56150b2977308294

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bfff82543d2c6c3f938d71b86651644e

    SHA1

    95671ba73ddfb174c1095aa1dc296fd335aacd2c

    SHA256

    5891a59d80ec51fb1d2ea6f88b79bc8a648f95a6caa9f0bf320e92b128991b53

    SHA512

    3f0ff80e40a7db5b7ead6f7129050d0b16c27bebeff85f2c99a2b8d0238eba62df0ccee2777dfe4ed128e1496faad671317817f0b5d23533760f663585b14a82

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1999d94fa1979f48fa191b3844b62b96

    SHA1

    5716a1148787b0df09d238c933029e3a38b95ea1

    SHA256

    98eb6c1e239093649448e0fd605c6ce16f18226874b1966f1ee9d331de47fe8e

    SHA512

    832ff6864528cb1f1f7eb07d900929eca0658b2dbd68970ef49f3720d6d49b42c200b0b3e7f8f33c3ba3ea9eece1d5e0b5bba455b4b0c90e6a02df6b387500d1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7bfa30862daa7b72cda3efcaacc63aa3

    SHA1

    ee79a6ef85909a385e3adc4cf4ad0758203a0143

    SHA256

    9583f08a80366168708882d5ed770daee2f1e7480a5b51de20a695782f1144f8

    SHA512

    4c7150c8d9aaa7d4603c158949f3b387e34bc523d4169e290ad3cfcd90ce7ddd29afa92c79320d6cbe77f93ec2e3a2dababda3543698cd001eb742dc23e5fac8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    86b0893548bc1ab7b9cafe81ac04274e

    SHA1

    75c1cb4b0a3bfe082c67b9729a6b1965a0ce0f0b

    SHA256

    f9285df96ffc0335a50fabfbfc573b02fb95f1f00d0992c8a3c74d6e978c069a

    SHA512

    1285f41f5f77666d5c61c54a28a357c6c9cf30932252647499603704b050ecfba0eee42f3cf74d03f71a95d0652982fa0d5e4b4f0ddf87d42365141b10167f26

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    eec829ef861e1efae17154f4ab13505d

    SHA1

    b41d783fa96d8799add6b47752b7eebb46f3256f

    SHA256

    06df12b3ac6a124e3c0ddd1fd9c8e4247cc3839acf118e6a6c3b3fdc5ab637a4

    SHA512

    208c9987e24601d3ed608c42ca6c9d75eac6df35ce06bdbd18e1121114996fe76444592ae3e1439670a32d24675aa0c7fe0ccf7347aa0a43843b72b22c0e4d43

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8ec05166cfa95358b0f39b2e617c472d

    SHA1

    a2f3c812fef8f7c29931615f677d4a6ba3683a54

    SHA256

    d04524d1d434aa06d8a164b13aa7f3b389f525688652a83f4c226cb05f82b5e5

    SHA512

    95465e5082f152e06256efd6706df5b5e4cb5d20be5168683bf4261fe77b2fcb4e9703f6466a20d2924f8d23a6882f243933bcfb3ef6fcfed7b18e684efeae16

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7c8c0a6a13d0b178ce3aa0141b4b3a1f

    SHA1

    01468e1d06aac65692358c7483d26ba1f4536f74

    SHA256

    78feec9ac852e4c49a6f0c8793df858349f9ec0dcda420e6ed259a35fe286f89

    SHA512

    fbcad5142bd5c68d398e02d3dec96439c1dabae88695d504f42a5b8017e3dc687a1aaf2e778d3b6c50921d705bbdddfc752c48d3e2a4674e1feb4fcb9850a04d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b453b48047123c7ca78401d4ed44695e

    SHA1

    cc9d9b9ac4e0446004281416ab46234a952221ef

    SHA256

    5f4be46badbcf3e96dabb11e8c28cc816ac6759e72e901bb3692ec9c59babfa9

    SHA512

    7246386363ca61adff0b2f301544b8b5592e02fa63296fd52474ff60dbc933a324b962f26b7a2f30e406d0f52aff05a9b3885f32ba999fdab8cfefa939cf8de5

  • C:\Users\Admin\AppData\Local\Temp\Cab2907.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Cab29E3.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar29F8.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b