Analysis

  • max time kernel
    140s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 04:34

General

  • Target

    a3d5c248984ae45b4a0aa3484da82536_JaffaCakes118.html

  • Size

    139KB

  • MD5

    a3d5c248984ae45b4a0aa3484da82536

  • SHA1

    7cc8aa62c6944403382bbe86f58475ab229604f6

  • SHA256

    3f9944251194b45b809a670606ee32c9fbe6cf9c35e26b6429b2cb0a57abe211

  • SHA512

    7d8bed62962e3293cd3298c6bc92e9497a8ad583996b5354de3bd7a22448a867969cfa307a1effa162981ca2493c5e5bd44c8656161031d58162b1a05ef1217d

  • SSDEEP

    1536:S3PDNmhlEwlVyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusG:S3785yfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a3d5c248984ae45b4a0aa3484da82536_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2928
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2928 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2148

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e012daf369c5fd84b2c17cc133e8da3d

    SHA1

    3d6a3978dac9d04e05d12c537d03e1122fc63857

    SHA256

    d9676d03bd5c23ee1f93de8b10094f6424e2f7330b52db252259ba5cf2c00730

    SHA512

    5d1525840eccac7b94a3d59e71a51754201369f121242b0a61c743cd8bf691eaf1c0732f3bf926a28ecfb6da115a55a65d9b4c792c0b42d41400df7d4d4364f2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f913d16b8c117f05537ca19af3fd5503

    SHA1

    4d7cdc7f0cba7d2257faa967b84dce06b7b227a6

    SHA256

    1f93096310dc7389dfe9b0bc6e499e3ce7767453e4e013ea6c18acf22f93aa12

    SHA512

    769c1835e1509b9f25c03d5973e070632d0a510280c83b470a20cbefe54f448930f3f0b1b26a855c93959cf91fb908f97ca5274efc2115e7346b93dea95f2fb9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    acec992ee6d3b7a6ee27c2a3bac2658b

    SHA1

    724258622e06eaed8f63a31333de84c7fe06e19c

    SHA256

    fda789a7c58d888f1c9fa8203dcbff016f877a994e0e8d2218e98160153948f5

    SHA512

    3ae4162b492fdee4a035923382ff727656795b77ad80336638f9722608b6db2f54a7920ba7ab4d058820da49cc341207eca22607679204bbdd1fa3f33c46f57d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6e8581fd8b836c20780adbc942879ce0

    SHA1

    3e91467535e7b27d70afdd25f0e0b7702dd48b04

    SHA256

    3c3cc747461dce32aa2b67f5762f20e86b3976c091b6dc6e734d9879521bdff2

    SHA512

    ddfd267c1f8e96380a6173cca490462bea1bdda6e8aeb00b886713564f023287d27c25ce1ed5362d1b11fc207a4b6e18261433b4213385704fcb9faa3b8b5dab

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e5bc87d93d2af511c3450d94ffee9f0e

    SHA1

    0b8daa1db5c732429deb9c822d80f3fcd3003b64

    SHA256

    0a3f02581f4475916176642eec208da487c9982511c82d40ac3039de54d6be1e

    SHA512

    9ff92bba4c07db8fc3090cf7ad332d2c468b25b7911ff8e85e1c062f4a8ec7f3dc5ff0ae72ee1816108a42e29dfb94a99d25c54f42563aaf38bbddbc62923814

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ba121f6362d32c50c3c72d2877d36aa2

    SHA1

    1589aca4b3222ee14f274378e0cb0fbdf557c03b

    SHA256

    6f243ad6904d3896cebe0b6c65446950047d04298b2d8c9ee8ff6eb697702165

    SHA512

    4d3af24b33fc8c5285d2119b7bead87cbc69fdb3fb35f1959f4b55292393babd98d33ee5dd4fe65eca85131d7465b29e0a73fdd76ec30a3674502e9bd102605f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0854e45755c5a364a6d9f209ee9edfd9

    SHA1

    cf373eed207d09cebe210deb23bd075af66f6bfc

    SHA256

    f8d7c05d49321ec1d289b50c67e48fbbc03f772ee75769c6602977677b648ad2

    SHA512

    31347fb0598eca45461ada4e12eec2cf0217044ec6327cd5a896dbb972fabfe739fe903789393284a3caa9cbc20007bf92a785f7e3d9334e59596a4d4fc23a1c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c960eee9fd355544d96e6b6661be9d7b

    SHA1

    bb34bb8206435eb7293bc43c5dfe6ebc2c4be55a

    SHA256

    41d34a5e0049b7ed096dda268844720dbf1ca50fb02cd4c940d326a824cdbd5f

    SHA512

    c476bcd50f2f4123146637a5a0251b7e727378b6b92ed9ceef0e0ad381721ddedc16af3ffc565f049ab1a032c4003a8b87da798426973c673741dad3b0454787

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8d5fc8e6e413ea240b2d82dca43c55ad

    SHA1

    3f2582a8b1cdbc3e3eb655eeb0d755fb1dce1fd8

    SHA256

    ab4bec9b73d03f3e2d872f9ab5de66097885173eff1b47f7fde01810958cbbba

    SHA512

    f3b3e3714beccf3ead54ff2c8f846361a49dc25da8170985da18daf124276babab2a03407bc43c99a8ac0046cf4badd9f83051953630db8ed73ed1a635525fa6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    43f141f4b6ad72ba0c384502429f7474

    SHA1

    42e2a8e280365998249fe79832307179244489ab

    SHA256

    89d9928368e93a65cf3acd9a39c59c6d5ca42eb5b0ad6d4c4d2a6554c184aa7c

    SHA512

    f56d87bc011d9a43ad9aaadf5fb2582dc1812426e195c90834fb1d4ef5ca5988fcc7707bad83e70d21ca3e2f90ce07a77e6f3103d64eb40f62614c2d8c529182

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c0f079c42fec3888b355811d2fe4d8e7

    SHA1

    c4aae044ff3cd9fe73138baf5fd5fadb4fc3e41a

    SHA256

    b81c3bee132f7875a6b13faef2c3ad225e2689d0b4455cb9610b537f80f5a763

    SHA512

    b0962026a2b2920a90d83ae6528efdfa0f1af4a594fbc59ad671071abe950643efa30d035368d4b17cab9c6371b22f872cfc8f9d9afbaa27d5590d77f1cda5cc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2508a1a84451b886dfd2e84448fc71b7

    SHA1

    f1038584213787705a8e3fd8008babaa77062c05

    SHA256

    1431d4f3b7305f1aa879122baf6bddaa1f8a9120a14d7de0f6234859ff2cbfec

    SHA512

    141c18a6708c7a83b140a674fba53ef97348509f4226dfea48d15d0516ed561f31e7d946fdc81606278047cb9954983c66b3b142402899d8a583482093790f4f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    786dad50de91845c4a56204a330e8bb4

    SHA1

    397a8f17ae315062ab9f3634180926e7176c8a89

    SHA256

    e59d626b558c7251b39ce89ee384a7cfa8c2d7cb3c296d3e409f5c7fa9fda13e

    SHA512

    a29fc026d1969dbfd0989c1cdbfecc9b42991596cf01f521d09d865049a87bf0de4cdd7d99d1f1c60ba4c1424672b45fc15827c3728026df300d6d2b58183ff9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bdccc2357e9519009400ac67eff77b0a

    SHA1

    6f9fede45c1d53a3a35059f41703ebe4686c8edb

    SHA256

    88e97d869c0c7b729837162ffa0ece6ad68066e0f9c5bc85164b264f607c6330

    SHA512

    b64235cf0b5a0c3351a93ba02ff5be3d96d41d32fdb4c3de3e97a93311f096e5d42288625e9c59e6360dfa0a22e8e1970d03cd33e372359e9900515dc21c5399

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3614e9c8bc18dd5df634a6dd455751b2

    SHA1

    174f7d9b867895acfd90ec09c2346bde1b7fe363

    SHA256

    1f7a26c4d132a06d11778fd0ba179732d531084fd47739596204fb8426bf31ba

    SHA512

    73ab668c62af49bba6b2d5a6a38c9e3db47ed289cd36c643e030dcd725d963db0d0e55e205825d3657328227e22743e7347f377974e8cb122dfc03c5eb832949

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f32cca8ba39b68b257dc53022dc2620c

    SHA1

    629dff0e456a20d95e3df64bed14b95dca65aac0

    SHA256

    8a4c8d15e79e99626714bcc4398d4aba607cddc7153f8e8c1e2b77fef4b949da

    SHA512

    29587e8a31b83ca765643cafdf4b1d3961ac30adcef94b784904f89a796a06e41d1a967406dea12eac65dfdc5950a78a7e8e14bc6ef3630d7e5c1bc50741971f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c7edcdacb6d1eb644f4f8fe8d4f4615e

    SHA1

    e4c208dd97e69df2c183216ea8cf84c8bfc69af9

    SHA256

    af12bc98a6782934dbe31633f01062a775c2c07d4c3966dde84eb01d74ed18ad

    SHA512

    704b94005b4f20b7d4ab2ca5d6e92e7823b1de717f0c50604d9318ebb29262384321fe0f1880139c42375799013474baa14295f173668f54be3f30a9ad8345a9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c8734e751a7f10b582116516f6006eba

    SHA1

    8470ea6493781e07770040f960d3fa36416451dc

    SHA256

    e732548c36922480d8b27f3cf49ff201456cf697dd83149c1a7eae3016e09527

    SHA512

    5588322ca38d2364ab5426c88c6e03af18bd474f767554d2900d3dadf48017c9ad88b0b5db33bf894934f5e9f3407ecd9cfa807fdde81e6988bce50b43fdf887

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    45bc6ce7f35ad174e18433de33087de1

    SHA1

    f40c9179d67bb201259e454e7aaaca104d55dba8

    SHA256

    a7b551eaa3198c45b8e20e496bc56853a86bb5fabcd2c98344b820e105c13bc8

    SHA512

    02bf6cabb7dcb8bb574000b1f75ef7c880510046e83db91af30f5812498cfcdcf0c9ffacace82360a54ec2215decf00687c250d513254289b056222d9e6ad590

  • C:\Users\Admin\AppData\Local\Temp\CabDA9.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\TarE7B.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b