Analysis

  • max time kernel
    119s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 02:59

General

  • Target

    a39c6044b026d0eca799fa93e47cd313_JaffaCakes118.html

  • Size

    22KB

  • MD5

    a39c6044b026d0eca799fa93e47cd313

  • SHA1

    dbfd958f16a722e72ddccaef43cc49bf7f8b9b7b

  • SHA256

    7c8d8cca6f4f0f707b34ccc4be86c7c23e0a0378d882faa5dcf58f0de5a1d7e2

  • SHA512

    4971d7fef5e3946effed208706a9d1e7ca4cca90278f806a676d515ca06ac64c8e673d7165ab88b6891085b3563f45e08fb799abd76309d2bda4acde27dd6058

  • SSDEEP

    384:IGpU2MlAN+Z5FdXc1kGBfud6TRaJM9JBUlp7kbTWR6M:NpUXAY5WJA6dagIxKWF

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a39c6044b026d0eca799fa93e47cd313_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2988
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2988 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2692

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7a1d48e1b615df7a2385aece2ac75884

    SHA1

    48cd67aac2f1ddab48f48f13fa27aed1e1d6854a

    SHA256

    dcab47a213ea7d51543a0544babedf9040b72e542dd5ba359ce1d73a8db70794

    SHA512

    411e318397066ae84491fc1251c27fce43a04d647d1a2b06fc1c4a3cc97991a5b8987fe433f535b966b9af82a92c6ba70afd9cdd52676124623d4d601ce7965e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b0b37d77246edf081e12613c229fe609

    SHA1

    47cfb8dec48febe210edbaaf72714089f1c9c71c

    SHA256

    e339cf8a44b3bc8cb8c8d069070cc588e3075dfa07e449d4917aac649e4f4f41

    SHA512

    56bef8b90ca42e0b0146d4dc938441f300c9143ddf67e5106378c10393db4bd541d20278a1c4faa21946d089f7e3cb164538e149102d389b4192e7d78263c4a5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0709b46a0e7b6dea77f7a3589cb2b76e

    SHA1

    8e926a14183eeca32a78e23adcbb57ec841a74c6

    SHA256

    70029297708d919a7fa0c8fa440d06db97ad7bf3496e74c9f2d8c8b705feb389

    SHA512

    a64a9c70fd8a72bad5489faf8df581226f0e5a1faa86a29d1396bc315dd4f7b7b692069bac676010b7bed8a04d688d48d1659b6b5f71dafb1e04fa7160baeb3d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    075691c5e598794f58b3b8e4c17566dd

    SHA1

    194ae10d6fa60ec406d44584527519ae9b3620be

    SHA256

    7a2e50246696d2ef33ccee1dc11e24e819fcddf70748a4cad0b735a4381a7096

    SHA512

    d0359519e1ee830c6e20d2225ab9abd6a11c2bc5a562e07e33fd09db324191db5f4f15e1df49a031a2690959af06e3720f573b3496a177840269cd176a3aeed8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    db1e7dca4a8da6fa3ea86f2877603fc6

    SHA1

    4f73aface31a7ae5f14915e041f3b694cf32ef4b

    SHA256

    b5816862a0718637ba56b2d0b8453bb42dd5e4550bb9ece5fd89292c6d5c1d33

    SHA512

    1768db0473a8bd360402f55e1cb81aa953614aba6687309ba6f19871452fe0a7ba7ce63039f4c732e11dc8279de9b13701051d15b9298511e00cbfcea1841e72

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    881b06e49af86778901ffbb5a4554c4c

    SHA1

    46e885e4407a4e1a71be28c6ca5ea31bf8396151

    SHA256

    da3ffe488b1b7b258482414b8e51137261506cec72beebe76837c65fe46eb825

    SHA512

    cc694dab6b373cff9b90e6647c8a37dbc2e2c1a88cd61acde13daf87e58640a18a1d8602bd14e7c45462eba8cf2e0356c9cde9463e7eba6be285af922692f208

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1646bbce9fdb64add34a17d4474cfcd4

    SHA1

    80aa5ff6af1fdca8b12d4666b88cec8ad639f3a6

    SHA256

    4504e0124b849c426fb706f39568548b1a4e4b71494d31c7aeea96f24f112e72

    SHA512

    c0cc444f00eb6d4e6c00e1c0f9fd0f1a5611d8b6ee3b059d647e8f3b19e0cd4e5a3d7870a53bb03bae707666290ef6ffa5b198ef420166db1238cc87eb9f2870

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1c2feb3510db1a516927ea16e13b212b

    SHA1

    ed98dbc6a2e68b51436e7a0e1f37a3742cfcdc8e

    SHA256

    f86f929b57d6fa267d607c2f7520689e4c049973f1b293062c5335df7dbae256

    SHA512

    0b85b8177f7b870d7eb364e50ed085b4670b68d241334c6a7f36529059974b71b091f110d74d22a6f5a236f33319e9b13aa166467d249e8da7b136f45d273cd5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0a9d77c457c3529fbd35452ea4b9be6f

    SHA1

    2e534410ce49bb485fea5b37abcc95bc62a9aa00

    SHA256

    513908296b9f2413838efb2cebab539fb3b631bebb77e04781839a9c3d47c8b8

    SHA512

    719c6b4eb64f2cc187986c42fd2a834f71521a205a2a6e0ce6ebc6f4d1c0fe0a7de459240e392e8494fb4e3198a5d8db3e72108e397f925f9c204748735b6878

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    735718288d80cc57a45f0804fdf551f5

    SHA1

    dda5d15b2ceeca7a5902ddfc8a46863253b16af2

    SHA256

    5d0f9df0abfa0433c33620fbf658351c2b4906b39b2f865c8fa8c5c9ce62fd1d

    SHA512

    cdb7743f100aec9e65e697e67a1604af522a5f76691cf6b2aaf88aaaf4c0a9d7d285f8616ef6959e7f2c69c53a5c52033c4196d938556d45958b325b679a228d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    984f06a3c67b4f26a49e372484a9a517

    SHA1

    bde60f11eecf23cf3dabaae5f627deb2f38c9e06

    SHA256

    0a4965ae3e7c013cfbf50a501020690fd1e348bf5fb6b435571d6cadabbbd78f

    SHA512

    49ed92cab1bcc4689c2fb7cbe59218ff3c30fb15a101d0da6668bd043f7659a671b8834dd0349566ef33c476ec20e751ed84447fefd2b5035e3fa0746a6dc7a4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fc16d0173a35fbcf6466c189e474f317

    SHA1

    4b9f114554f31fc274f8f0fc5b97da6b7cb10fe0

    SHA256

    cf7cafce1fc1212ec5540af7ca052efb7540afa38c8a3a4426ff92b7dfc73889

    SHA512

    f45e1f8f1dd8968c122470fd3a2331a2c7a1b172f61158f40fb0c7f89a2c2c864c2d93b9252811032c48d559144d12a33db5f1794fd0c53f82253397c20980a6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    23b82a6ae5fc4f2560b91714790a51fb

    SHA1

    4f0177a3349fd4774cb8a3be918fcab1d8ef6f62

    SHA256

    64ebc4160f43f905d3239d57c2cca59a28bd2cac1072b0cd79b0491e4beca055

    SHA512

    6868939f033f008fcf48e944d11a51e40bc74866f441bc81cd374585904ebbdc96865201e981aa21348bef989212255b39996b98b314e1ea745b8f540fb4866e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    042cd6cfb1dfbf9c1deace0cf5130ade

    SHA1

    28ca1bff323ce270c6c44f1559894666b98a7a5b

    SHA256

    93c723a6ea7151313d1c50c84dadd59515b22ab677c46430456867176d667f6a

    SHA512

    f53e1ff315bba4b45d9d2eb09bbe47f29e8d7db130b90c18f61f5d7dcb4030998a1096155dc2b8e777951ae220fb764a1a1cfc636890c64ffd4568f86ab014a5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c948ff9d53e90ca394f2ba9cfb429691

    SHA1

    1273a1913c54ebdc1e7bcacd914fd30552a13171

    SHA256

    61cb68e2df53e20b3329bd43541e7d18e0ac417c04a8fff8cdbd99e2ca3373e3

    SHA512

    6cf381bf6f345ee07552c74c86047200045781fee4d82d71628fb3f21336ce06a80ad19a827d995060b3b132e881fbae6ff75865e836f597c85602665670f39f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a1c8bf55c20fb8d48017e14a880d8935

    SHA1

    0af445eff1a6d571cd61a359451c9b24d5354735

    SHA256

    12c39e502ecfba27e881bf4905871f60a3b646e53436ba02efc3b7c5b4926a80

    SHA512

    8812b500cd67f632d7a0d364627b72550ac1bc2de93cb61d4c261ab0a0f2d44583e6f86670d6bef93249f06644181603898805e60b78feb3e9e413abc539c10e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    408293d578c0819709ad0a4a28f73617

    SHA1

    85cf5070d7442df39ed302c5f430991f5814c85c

    SHA256

    1f8ae66f84a70f68fe4417c40f48e0becf9355efce973bd34a58705b3fbaac84

    SHA512

    68e88243cfaa6e22b53e66ea8a0856762367e8cdf109ffccb4a1c17365556c35e6e391c484467a1e1d330d6b155d155473578f292c84059e4828bb43e15c2c8b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1239a31c5655f33571838d37c5c897ca

    SHA1

    ee10e0ccbcf082ea2d2278f4d325e9950eb2426f

    SHA256

    8348b9be927f406b1061837928c318cdf8b579ef53acd2d2a796f0483eb124d5

    SHA512

    d0463fd81da2cc31e349f48f39037129ea02153a3774da0e41350eb6a0c2cb237eeca116824224e6e2b92e60280d43ec56dab57de892ad5e73fb3d78e70e6484

  • C:\Users\Admin\AppData\Local\Temp\Cab953E.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar960E.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b