Analysis

  • max time kernel
    117s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 02:59

General

  • Target

    a39bab7f2d056384a8aaaf95401e0603_JaffaCakes118.html

  • Size

    79KB

  • MD5

    a39bab7f2d056384a8aaaf95401e0603

  • SHA1

    569c468630a55456c02b2b76efcef523b9a264d9

  • SHA256

    acea6860d558e5acc1986bca80fcef97af6d747333f87a5ab42a46d1d27ff96a

  • SHA512

    02fa487dd300b85c8507557737f51f2e600606815d0545c37916bbfa7c7996269e14c499cb4d9bddc8835a8b694ee161ceaca5768406fd024c71e91150c92d46

  • SSDEEP

    1536:NNBlNvyQEB05b90qwA4sW8vNxVGaayPQyVxvaTn/VMqGUwXTrWmrn3O5DHirzdBP:nBlNvyQE60qwA4s6EPQyVxvPjymrn3O+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a39bab7f2d056384a8aaaf95401e0603_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1936
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1936 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1948

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    dbbb5a00cc1f0d7ebb7424a9ec030ab9

    SHA1

    a7314a6b668b31e18edc30828b36c8d89fbbdd44

    SHA256

    bf28a4658fc07e78b0004a10bc0f68e35f5c5ab59efb40167ae72f0f530c4f4d

    SHA512

    597452f4947b20fca7063131063a923d82f49fee2c183f1d2a9e5ad5217a7e3e53e200badc254046afd4160d1973b2ce05705a3a749f8cad963da8902b9b1c20

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a177e7fb21e5455591b2345cc9d61f0a

    SHA1

    a413c185fae9db9fde11848eb8a3c08439a8bfe8

    SHA256

    fe7a56c05ba728cb73ca0cc11e8bfb454b025aefe212ebff02814865bf0cf931

    SHA512

    df263243c01666054c9e4ab58f52e840b4438addaff5ea93bef80c9642f3521d40dce1a7377f29575711a659c89d4ee7c2863f15ecd8a438d1c12c5d183f3c64

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    789a5a300864b371b08f6d490332880c

    SHA1

    4933238ef7973addd5bbbe6e8fe0d53479bcb304

    SHA256

    b60e342bcd03d9ea4f18b867eeb5c330f0e3d1f0526e7fec0d543b74eb429688

    SHA512

    da3e34dbdf80a5f37c35675b577ec9b03e2fa555f66f69f9b967ce1159a5b86381500bd54fcb2bff6f46687beaadde0fc438adcbb474748912274533be149091

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ec32536af9e70b92b8338a8d84baf718

    SHA1

    1576fb6fbf06ea9449074385e27198b39b39e39d

    SHA256

    e722e6a0bd5e822b7c255edb43954260724591a3c534cf9554e857251397ab23

    SHA512

    491ab319c341373f78e375808765e82fd13edb07655dbb8f7d5e848c8db03e5a0d2d1b563d4149c8ffd3e20e7a0aa69463315870e64081ac20ee892574b515de

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    48771cd81fcf5280392c154a5743f062

    SHA1

    a66bc423474347bc508e7ca784b56fea8b9910a6

    SHA256

    a5d7927577bd6b6ffb3e4a46ff2faaaf82f4aa1cb6d7e98a23f8e9fd415c6d3b

    SHA512

    adb0533de1d66101bc0dcddd35fc23659aaf960b476bfa00d31f40d9e3fb373d56d2cc88e5206161af53ceb385cc0624cd5d96fa335bedb205a7f7451c6f2e0e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    db681a4c006c81f48c0d54d579e6497b

    SHA1

    f2d992a2932c20c944bc42f88bafcbd8c21d6bae

    SHA256

    eb693fc7431ac58f9a7337e96543d66fb1c535aa5e4562509d7acc140e8664d6

    SHA512

    2f3e8165d0a2216b84ed5206e0656987def574133fbf8b576c356007bc10eb554f051592c5a977851603bdc447feb8f019b190ade03fcee0c7da58ada552dfc7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4b87be76a3da30a019748b379ec56e46

    SHA1

    9f7cdf1ce720549153c449745be60218e896e2dc

    SHA256

    03af6f81f05653ac8ee8ed16d8a6d32df012f128a2b7dcd773fe1c1b5eb90ba6

    SHA512

    19b2ebd9b025bb76a6ae03226893c6e5fea56abea2c40581d74264ec7ca7fc7c8fd59be9f5bc49f867f57291492ef75d9ba01af25f3c39b4c6f50059124e2024

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    19be14736b331f17fc5f99b722cf8e0c

    SHA1

    bcdedc6844d25e627a794c86a186af7b8eedf8b8

    SHA256

    6bb3fc3ee3ee8682707671b5fd5283580ef2a56127676c5659cdf8fdba94f85f

    SHA512

    168e8d468664033010c63b9a1684630291382ea321e2c0e0cf1f3a3a0c50ff1d3a5fd97c550bb9fbf1544f77c92b592a4b346f843d93623efa4f3f17d89acd07

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7f32336256a439b785c2ceb033f89142

    SHA1

    920a58e2f9f735ea41a37489454885a1a3f8b36e

    SHA256

    91da0afbdd39e95afbca72a14dc05f7eb431ca020c40004e2308413745b805fa

    SHA512

    90934c8a8aa2bbf61018484bed317552cdb4365420cd9afff8dc5e976cb019ebfad30e00e0dc4944a229b370db16ec0e87962587e29b1c54cc275d63aa32c2aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    70d64ab1c86310fb5b313d78f8a836e6

    SHA1

    a581cfd60b08b109de3af344b2e6281826628d3e

    SHA256

    70987409479c5a5ddb69a37430372637317e4f04e1bc562b76f26796c471d847

    SHA512

    68be7619fb77effab086fe0a0ddc3c91f9236f34e779e6a279b972d7dd65691b405cb568509dee79ee5fd91b54c2a4839438df32049e4ead00a2cbcfc56567dd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    20b27b93e5b0e837607038ff4cbf8e7b

    SHA1

    61e539c18b3ed7a81c7bfb25572bf3f6fa62a8d5

    SHA256

    410701efff5a19a399158dae8b4c957f0c046abe6b90b4e52df8e486d61220bc

    SHA512

    fe74ec91805f58b45fb9169fb92762b7976a3626dfc65f81e4a6f09a0ddf09466d8826cc9383d51c30a61137c583bcb4fe73c7c4f23f9de7401c1e0293f6ca02

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8ffecb22e0a506b817cf05a013d4db73

    SHA1

    6f7f3f15969af348ed20133cb5d95a3b40a8e4c2

    SHA256

    559e889cb83c0e7e2437991721965a66980a27bd43352836ee4b81843cd01c1f

    SHA512

    e229a735da09c0fa59c94cf84736ea91b15e5fa72806541bcbc9672d790705b86f58b960fc274ebbd68cd9223643702c22d12871ea9fabdaf1736a42d3b12dfb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d6c130d72383bc9fb8077f3b914a35e4

    SHA1

    f9b8e3c7c878d2da5ea40517fda7dfccb315d182

    SHA256

    2a344a5b42e6de0acdd909e3158d460b95a57fe3b14a900cd532eda552212280

    SHA512

    c0e9d533db6b7da8d60b02dcbe0d9cc8b0993dd69075eada2b5ad187922ad7520e04f10b3e456a9589fe45ae9743f7acdcb752e2bcef9180252bbaacf2b99a5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    26b5eaa44caa55317b6a94b9245dfdad

    SHA1

    5b95befabd6fd19eae6486113adb282910cc87e9

    SHA256

    4725b72c03c8aa274b953a9d41e6e87a3f3f3403f2abccf0ca45613f5e9f475e

    SHA512

    654dd91bb3fa6268a6efd9767f7ae65073fb43ad6eb053c2c9885d7a5d2d8b01d59473b7f1a1890e59df81a5f5324acc1c703c4223e2a4e4b6f2105a6d6a0b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8bf668680a81dff984d4628e318f9822

    SHA1

    18843cf9f3acd6f33673f2f6cbbfdf54caccc1eb

    SHA256

    4e1a8ffa5eb5831344c16430bee12da95bed4b4e3cf5650dfcef58d80701e901

    SHA512

    3b000553eda315c71751d8e63e656ae39959794f7d9ebf7a822998aabe1eb94180806be342ac934249c6f00920ad66ebd62979607c9203016a65b6894ff26548

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ef228c796afcd616244a43c8983ab8bf

    SHA1

    93208742bdaed99c5fb3760dfa8151c5dea5621c

    SHA256

    dcaf24e66cdc96f9de32dc46f887abf5e1ea942c087190d467136778ac51a5f0

    SHA512

    ef117d0e4ff6920c7150eab97dc90f1088443d0a5e955d606b28f5d1ef3c4595b3c791b61d31365da8223622be20321c953f23d1bb5527539e0347dbc1c0aa1e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0fe1cf294a48ff1aa53b987a6ecd524f

    SHA1

    787877a46cf1a82e7d190bcd0dada3ccdbde0d77

    SHA256

    5d3b572c5d29f234f275faef72634bbf95dc2ef2c9fc66d06b902b1abe31d647

    SHA512

    330a40a2a6c39285099d8ca855857872df973082dc11e6c4052a383caa0cde6d128ed127869132457b0e687b96e56f7cd10117ed6b4ee863de17c3c0d4a8404a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1ad065bfb8ab9d2dfec51a30e7c3a744

    SHA1

    22a6ba0c5bd9e1b6913f361f43017d7f170fbfde

    SHA256

    440edc116cca513de6a1a32ade331ca94992f3ad2e61ac66d80ed42d8d938e0d

    SHA512

    459f96b47308c5b7e3747a79d235471544853979e7ffeec18cc515b9060d775babc436f249cf0a4f806f018b9fa1fad6d1eed547fdeb47aa2c82196909a64851

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aee3c265fcd288d5f72feaad0d77eb43

    SHA1

    c12f8eeab8ffbbc9f4728f336f5c43d8fdf81b9b

    SHA256

    ca3da958c6933bf7985d860532b43bf0dc6d5acb2dd1f969a6b2c6966e203859

    SHA512

    a009807a352ee187a14be8ecc05981c609932c58c9c012ae20d9ccf1eee7ab0aa4f8731a796ba40b275aa79c848140101ba58dae80f482f9070cc0c85110435b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f81084011dac1b47f11e2312463b8350

    SHA1

    14757933416a1e64197349133dad352bf78a08f3

    SHA256

    7f6e10458853c6fa064d6e881a941053f6981514af58a38999e87d1bf50b296e

    SHA512

    fd8360a608a50abdc86fcc7173ac8e32f1acfc8cbd6a6e0efb80e0a3819654599d83dba8ec0f81553d7f6b99c2040239bbfbf0128c426fe6f34b865dcbd54aec

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7d87f30b78a6e478feb349563fb93213

    SHA1

    e431f09e428ff8b620c6edd44ac59d10f7f35e09

    SHA256

    7876f913a2cd7aa08826ce084e41a2dc7c0fe528ba481ac1e810c1f82722a320

    SHA512

    86d230fb822df281e82af7040877d6b76bc9fab2be95ffc50942a7037312ffbf9d5ad242a78f639bfab7d24d105a91377f38a6e06498837f619a61c269ad6932

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    223849c4895012c8acbdcca873c5f133

    SHA1

    e603bda669785e88fcd886f05990c5bcd2d5c29f

    SHA256

    d6d901cb322965963727b3aa5ca357a89944a83f6c8f85668c079cea658ea65a

    SHA512

    2a685fd188372d8d97bfb96e38326321cbdc61c17de786fc281a246088729a39c998dd16b96e560db2c0a1a9a24caaf140e28fdb84c54efe644dae462eff1339

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1HXQ0HXX\WHHOX7F7.htm

    Filesize

    3KB

    MD5

    72715eabb74aac00a0c5883ab10554e8

    SHA1

    afdd6efaa5b2b464d52bfcd42aecbcd579e8de08

    SHA256

    285e2b659b388330b8b7fadbb57772022dfa925fcccc996d552464a1b1ca28c7

    SHA512

    150dbe1772bd126c936d0a15a584e4d2a35c3070b4aba5ec1be60bf5dc84d11812bf9d16c873ad7636ab7567bcdbcbceb863761f5a6e43949b3e77faa8ae309d

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\REZ0RZN6\ULQ3A9TY.htm

    Filesize

    67KB

    MD5

    61ba88f653d9ee4e8276024324a3cb25

    SHA1

    c603ce90482e4db3f008a667c4b5b08c19420ea4

    SHA256

    94f306f9741c0c997b0126adb79d4ab432d54ae9100ac56a8cd934a954dcc15c

    SHA512

    7296a67481a2a3c8092fff6cec8c7be5491ea8c404f9bcdd7c773c6c2af7f87ac7fdfd22bf8a00237b912ef4a42d1829e49e1639b495085d38846f80a8a012ef

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ULR3Z9KL\carrera_logo[1].htm

    Filesize

    178B

    MD5

    cd2e0e43980a00fb6a2742d3afd803b8

    SHA1

    81ffbd1712afe8cdf138b570c0fc9934742c33c1

    SHA256

    bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

    SHA512

    0344c6b2757d4d787ed4a31ec7043c9dc9bf57017e451f60cecb9ad8f5febf64acf2a6c996346ae4b23297623ebf747954410aee27ee3c2f3c6ccd15a15d0f2d

  • C:\Users\Admin\AppData\Local\Temp\Tar18B4.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b