Analysis

  • max time kernel
    145s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 02:59

General

  • Target

    a39bba5c6791287cf043f8eb55a60dd6_JaffaCakes118.html

  • Size

    12KB

  • MD5

    a39bba5c6791287cf043f8eb55a60dd6

  • SHA1

    ff3059cedd2182abb9815e80543682af0f5cf3a8

  • SHA256

    e68ecb2daece75068e0380c25454b7bc3854a9590dcb35adcba002ed3b19433a

  • SHA512

    4546c313146f936ec3f413b66b7e39900600472972623b20f8e6a39cf11280795ccdf8e6a674ef38619eb11e0f25cf880a4bff11c6e6c8d49a400855a6deb150

  • SSDEEP

    192:dRrDyE2RJPoPjDDKdzpTbQtANfJqqxr2Y:dRrDyEBPj6d1fxMq51

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a39bba5c6791287cf043f8eb55a60dd6_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2732
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2732 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2776

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d5047ba1aba9308172661b72a96dd357

    SHA1

    3fe07348d9e1dbda7f8df072edd569b72b6afaf3

    SHA256

    908ca9e097611ed6cedd71fe48ad18492407a1ceac4ad629d53b1eeccb13a179

    SHA512

    42a3ed7e49c817d952ac261578d6f65485ea015cc7944b52107ddeb2dd63909e7cf2b757a0b0aeba8af5ac90871dafa10e61499845f6e17b2bc38ac646ed63ad

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a27e22f3ff6ea71f19240df5e2566536

    SHA1

    8c1a92921bd2721336984770df9dc3a8f6d292a0

    SHA256

    63931fdcc7faaf7cb2080e945b202a5e78dfa49efdf96aecb3f623827a923177

    SHA512

    3abe5ec4560355dfdb23be00d027d2eed9f39f8b2515a42e4f8750ddbbb6908553de064ffd675d70050c7d7a7cf7c35411233a3e90cfa65397960515e6cf3514

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6029afa4f39e40c71e243ee3287a3ca9

    SHA1

    199f0aa1c30eb4ed3c21b8f611a28b1d5241811a

    SHA256

    cfea4df7ba26b7039504ed97cec47508c6b0fc8f43d915900d4f23f08c6dc0ac

    SHA512

    bed0f15e6210e0802952fda0f18d87d14784079493fd99154dd19404b963d524d69e830024e5f94e23b9ae594ad1b025d427d0efccaa970824eb5a9d5bc10441

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e9e1f40b01f32130e926b9984c43cd35

    SHA1

    decdbbb60d8b67c215d103c30cc8f58f7b76708b

    SHA256

    1c46906e10e408dce707595c7c5e897c1826c1b9c6bb697e96338d28ce1dc178

    SHA512

    5900beee4ff52f91925ec1f11a38a24b4411929fbfabd66f7b90958844634d1e1e84b29bef9a132931b0479515603f14146014aaccf5743adfe7cea58378d39f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    28af43e9191dcea08b78eec6551f2b63

    SHA1

    3791febf5975e6df29d1b48eb90de7b052a87f03

    SHA256

    ff31048668b141e4044d174f211482eba16fbd12f6409e3cf86b87ecfeab01fc

    SHA512

    cb6c7a33c02ab77a04be4f234f39bfd307a4aac7c1056922896dd8260180adc0dc33578fadd5b3f5ddeaeb0fc7a9c074d2b05b0abe596ecb81e5b3b33f768844

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    563d5f4ab5fefdb3c0a0be40453befa2

    SHA1

    99f7bb982ec7dcc6bce7590b4834474882cf9af0

    SHA256

    64dacba7bf156a4d31e8b9a5d8663896299ea55c651aab7b44a7bdcf715ceb63

    SHA512

    7e4bf28daf81686b124bd573190f67d8e93dbf771d8cdafe1485ab635eafb2a1843b05dfcf0abc942c76314b8b52a67b0ea90048c0e75f12a60a3b9911c9d3f0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8ab65d98c6da4161927035d38c2486f9

    SHA1

    de62fbfd4770f13a3a94e0b47a22ea57279b8813

    SHA256

    535c80d0721f94aa3dd15ef814b11abf8e813e5d5e82967e238102a316279def

    SHA512

    b7ceedd576b4ad118244996e7c393bdd5e58af9a89e23c9d6bdefe0ba78c8a21217c0ec4c693a92f6923dfd042f85ffed77516a066db629e2060951049b374ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e9fd998c3506858adab08fd7d226666c

    SHA1

    b06a46e7adec3e4ff5a9c68969ac0a6c16b468a9

    SHA256

    d0d23aaa9e20db32c21a89bfcc46c7df14ddd3095358de43dd78514180fd1bfc

    SHA512

    f9e59fb7c3b520bf57cc50f2355a76ef281af0297952bb09f122a10b6480cc31648a1d3dda177533d57b315400bfb9acb215d8d1712587cec1033cba6b8accd4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    205e928bae34c8053a78d47eee3a0962

    SHA1

    ed62063425cd74c7bb163d0c2dc50e1eead67ff0

    SHA256

    d833dab5acc2d29e9942d9762fbd4168abb61161b873caa78a74d69d802a2758

    SHA512

    a0794d7dc2b5fb1cb6d8794c970b11616a51720ba2716a5f3337f2c6e9466cdea20538a1984ea33d73a9ed7f86032f571b615c80c2d43fa1210f51c06aba96e9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0ed33f4c2125452d14d7a415777a015b

    SHA1

    af917c252ed0317d211dd41bd31344ddcb8ae5fa

    SHA256

    4ee839f2cdc496ec9ff126b4211cdf08758a2b2e33267eccbe3c1205ea1d5a46

    SHA512

    f10f02a0d50d266968b37e33aad1153f686399bad458d3c27c638f3cf57c7cee79bccb43a9e28416b994e354f1ac4aa3011601c619970d230565c94609db6cb2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    07cf7faafa1c1a0c46a45bb33f677ce8

    SHA1

    995bedb8a7f7119be0247c55d546132a40443d99

    SHA256

    b40d5b859edac300a24188b9082d26d1d6a25ef30be577de3ce0ef446b95145c

    SHA512

    c09c5b0c3d8a5054fd97ba0eb1fd73bcf1e4217056825866437c3ae1ea1a0d25a3000731051404e769894889d911bc8823b9b255c4aa8e1c89396f821224d88f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0730d9a461195b0c0c7a773822270b66

    SHA1

    d147df298e23952f6c41bf7919fee95512c93ab6

    SHA256

    24d80500af2dd554da8e2390907657951c54d8602521ad82d8ceebd4d295fb5a

    SHA512

    4561b5c1849c1728e4d3d8622ed161917ba424f8760a65b4669d234f5c51c0940859627417a0b6a8aa91d23ce1ac2530a80f55deba0105b8cfe1b4fdb9f200ed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bb75e172cd3e4a89c6f795cd8bbbcb9e

    SHA1

    be12ea9bf4e91db63ae964997a0de57c7bd4ecce

    SHA256

    4ad04fa4abd2e16fc1f1dca250dfe32a237bfe056b6231c26414eeb7e2576175

    SHA512

    f38a2439f4adfa0234344769abc14643a416c2416ec65b9765d909dd2df83455ebce8b57179644b405d9f39b6fd0ef9a3391be672a92fced6a7eb27478dcffff

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0eaf8cdd9643f53e8ac0a0015163c905

    SHA1

    d34cadac5d9c16a729d6eea33ac1b0ae9e3d9cdd

    SHA256

    b27414c38da955673cbb71e7d768d9189da43fbb659874fc3168e7047164e2e3

    SHA512

    d67b613f964e357de01be27c1770c29648b299c3252362f466641e36a24041c2c7f622f42c7807a69878f935784ac4b60d3292a4ff0340e4264449b7becac834

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9d4380cafaceedb334949d9a926a2687

    SHA1

    104bd08951fbd6eda3deb4e8d096970e43727ac4

    SHA256

    41dffc4c2795cc46e1db50e1d7e9896abeee367a5d65c8745f641d19e7d6078c

    SHA512

    0983f306c14dbe8d3b721c04ad7f77f3c40e389a26afa87800f616feec7e95905cf865d4e0a3716fa397276c4961801f98dcbab8db4d91ac6a9237f6cf606856

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6fab3c0442b66e89c10901fe5d60289f

    SHA1

    1850d60f42b3e96552503371e20f8d5ca1584fae

    SHA256

    7727bf2bd6cf36c96ae2a5f67913cc4f1b7a3a7ce1d8889a872516eea4a029e7

    SHA512

    acef940fea4d0aff62ec6710c3f0e0cbb118b9d8af9891e02a9ba02bee00a7356de2d09e9a1368422317c3ba74511361dd264c5b73b4c6e000b7e78afd181bba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9e832027ba8872b5f6e460d27114ad8d

    SHA1

    a2621640f570ca83a071e62b68012e80e6b05fb8

    SHA256

    94b41e810c29061df470c959bda540a622dd3eb683d24557f437e15a94d29ba4

    SHA512

    c62928c06d389ccf1f4ba3b100825687a6387c1b7dd731ff85d718ca002e018e8503bfd23f5601074016dea9ef76cdcb81adcffe58caf7b1ac3fd59410ab3793

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7daa67f3ba7d20ea6f4be73591efeece

    SHA1

    507cde6a58b889274b75dd95a11ab88d09c01e17

    SHA256

    af06d84b37a1f48fcbfc8e04626a98a970a426111f3506087578100808f3d722

    SHA512

    ac268b381b3a352c6372e926b156b53a32d1cb251c35f5eaf3d2c20e029e3de4d8eefec9fc204aa5568846c2c4eded96d8a4ee35a35f78c0150cd8c0cb8adfb6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    952dd9095d270d5a09cf5b468f996f83

    SHA1

    ab0636c70eaa210fe487772c5405ef138c92cddd

    SHA256

    d0943b6dcf7f094181069406dca978f4175bb32429e5b647a6381d7ab26454c4

    SHA512

    38ca1a402efa884809d0c2fc5b8d511a270d646316a965d093c5d341d01e0c7788d5d44d1d37eaf8fadda266213f957027998e674659223310c411840f3cd2a3

  • C:\Users\Admin\AppData\Local\Temp\Cab2BA5.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Cab2C63.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar2C77.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b