Analysis

  • max time kernel
    137s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 04:36

General

  • Target

    a3d6f1f32952185785d9d3a56bc34c9e_JaffaCakes118.html

  • Size

    9KB

  • MD5

    a3d6f1f32952185785d9d3a56bc34c9e

  • SHA1

    1628cb002bb8127579619778e210ddd35665ed9e

  • SHA256

    3f6e213cd3517a9e81226595b89cb37425847b4578a629dd967b866fa1e09216

  • SHA512

    1281e1d88eb946868e1ad3fa4108d94e75e64a7b0140c591bf589193c3b4fc9ff68776e4e3117102ce01eddc1c6b52b3c086a9ddd9bab52a845d75b929858028

  • SSDEEP

    192:CpTZSEosErSIA0/eqbGQuRvVBWYPUGheJeBImE3mtMMqVrXSmGjLDZL8PfqBq/Si:4J0/eJQYMNBMIRVawLF

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a3d6f1f32952185785d9d3a56bc34c9e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:236
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:236 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1740

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c7d721e306466a3b03f1d3798c6cda8f

    SHA1

    f6f13972b477fee93a1c09f5cff50d1957370227

    SHA256

    739033797f4ac4395c86b1767f6a91937decda10a5180d7bac82862bddb2b2d0

    SHA512

    016f90063d304a75c29c14bac23832cd5e724c6c9ef6333f548269ed556e5a7eb9bec93bd570146ddacb96ffa6ed2932823e403c0c17c859f22586d81e2ff3ea

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7d54bb95993495d5b886cbf91be91134

    SHA1

    7dcc9f025a2e83d062d44c73dcadb8ea468b4339

    SHA256

    f315684e205d9908c5540e4d163b714875cb3efa8eab1a09083bb8159019ecca

    SHA512

    b50b5e8caefef6ab678401205fe83816c51d8d82cb6b07076d985894207e8ce4a6d7cfb1a78a524abf314fc015657d031db56a22cf007b2253527f32e3052163

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    16e32002efa7257030ac5db22d4bd601

    SHA1

    4fdf7a5a2230e68bdaa51ce5549fdbb19c497c4e

    SHA256

    b02715e500f431739b504d37ea9c6eb5a59d9df62ca9493c1ddc1b112126bb0d

    SHA512

    e80fd68d5dd37f7f168e315b0b3df690486bf2f912a95a2dbb9ad652e71cb55020b5bf66f95d378fa5668fb643d4b64230891115e0c2f49032b5879ccb10b651

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6d4b1c439d59614e9ce016d665de2485

    SHA1

    b49109ce22743582010ebed3347c09d0a3061a75

    SHA256

    f531c1845ddc0517a03861846403bbf71d5c2c337888984fbf2262077dfa4535

    SHA512

    209bb6e7c1ad3650268879c1d91e6797e1bea2b6a7152a3704dff6a4024c5aa15f99f2f53f5050fb46ef09b6cebfc492aaca6ada9e1a3c0bca4d103fc3f2e6fc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b829a7911012e33077af370e13a72cc8

    SHA1

    5c31a063a8c606693df91ca08b4eb7146690d689

    SHA256

    7922af46e8acb551026661975465bc0e4deda51d528cc29aac2d39876b4604dc

    SHA512

    f2348613c8ac81ab08f4e39437f342f4e7af1c5522be9a4146f9a98ff507d7a53ef5b496622476bde86bf32f69f4b14861e10551f3070e3022ddf991ddbeedef

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    789cbcc24d03b1b944b2cfaefde00190

    SHA1

    099386955e7db149b27a33927a0147c623d3d62a

    SHA256

    f8eddbff7cd1b318366ff52977b9528959c99bc6f0d145e0da63799b59ff65d2

    SHA512

    3020327cfac6b6667f00094ad9fcd6eb86c1989c700509073a61db724353569b599582f6e77e4cc3188c315d210fd589e1c26350e5b5ad4899aff1badfa6dd39

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    336e1bb8ba546790eba0237079d96d60

    SHA1

    d4fe8815f3d74243d74fe1d143450b32d65ca952

    SHA256

    dd8e2a37027e87c0b6359e25c4aa52218fc19ec8bb3e2e87207e0edaf51a4221

    SHA512

    42587d70f6ce4427b109f6a78e60e466d2d9024aa2379e4b247c83601ad1d8f477ee7a9cb5771c0cc305464e2137f614da60afcbb1e727331c299c5cf43d0b70

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    457b0f50af9333ba16629d846d3e58a5

    SHA1

    44ec85b321f359c0b9a9ddc6563e9d1c10aa24bc

    SHA256

    8913541f85dadfd89da77a77849dd7ebf66a9abc3fa4c9dcdd0bea8a2721fc70

    SHA512

    eb88e3ae40db945cddce613c90c44abb471188189f1a29d1c7f445c5ea6778bd05afa4c8c55ee577c5645ef840ce49ecc3d5abadca7d7a0d6ac9102148ae4c68

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e18ab880ca7c6badcf871ae92556c741

    SHA1

    de14ff49a3b62ae9cc7dd59867c4b1beb47a6155

    SHA256

    3a61b8866513c347d6de75b5142de6bbdf5f2c391c62481493231e83352fc820

    SHA512

    16b01a888e150268040b25978c044fadd6bca9bf6bfbcd5cd92641f532ae3fad40cf4d17df24ed080a5fbd23eb809051cd7deca3b465050c4920aaf04d421afe

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b56d9626d93948026cc7f485968fac3b

    SHA1

    011e04307db896c7846bdd427db1b1b816f593c1

    SHA256

    f8c8160a8683dab4357a819a37068bb006a5622000d239ccd50c545312f7232b

    SHA512

    c01889b1a8495520629bec084523eac48ae50bdd5603646d4dd3835ed42cdf287287a311b843b5c57108fdb6eea2990b373f4869e24a33015f2f9deee7b0237f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6e96ed46ef5ae0e89bf9514c94d558e1

    SHA1

    21cd266c3bcc054570529d60b5a3eb5975e2827e

    SHA256

    75d06f39a04e7f2d960234fae08aefd4358c5adae1771046548fa1a30c18cbfe

    SHA512

    5e3fba56877ff7e4ddaedfb95a89076efcdd1989c8e67b3ae3f22998daf371a4392e98647ed4917261f2378948b1575b7bfdccfbd567507fc00e90485bc1cdc4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1f286fd2e9ef3f57164743dbec956a6f

    SHA1

    83c325faf8b143bd6aa3c03caee6a50e4c18a0dd

    SHA256

    7e93f0c37d4e9c339341051757e380c8711ed458d266c309977827729deba54c

    SHA512

    4be587dff50713f1a5b8a48b83c55cded7bf29248e5777134c45d29d8895d21d30c6191da9445f705115f13a9fd839e1aececb62688feea97e9a3eebf6aec863

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    73796906db4cc9b5a2c0ab0520daf612

    SHA1

    6fa7fbce3f719bcaec015dc983bbab4ec8a78ecd

    SHA256

    a2b52a07330a6377835f75a8f9f21711ddceb161eae0b23c16e4aa5c61ee5d26

    SHA512

    a4fa20d723fe3f4b32c80c3b052e65834225e25f4f581f4e7678538d59b56b3930d0f5cd46a98f25fe1fcee4eabb860f6452a9e562252a412e878f7f42522e25

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d9993b09406ac0da3db28358141d63f9

    SHA1

    694d35ca6fc8f3280e06a710512b1538e5ea14c9

    SHA256

    c9f1ee41ec22b1145d7e6d064e4d74ec4377c65dbc6ddefa6644117fdad73e41

    SHA512

    d7364843212fbeedd528f4d07e832d6a426a7085b252c64d0e46fe40f2e87ad40a47d54ebe9c4c45e3581cf415e366f8a856d872c356b801fcbb911169c6c36e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5f963a74a152b3522e5d8b8f92ee6091

    SHA1

    182bb72024673343df4834952cea48a241a06df7

    SHA256

    97ebc12d5fbf45a7d07885fd692f4e40bfa6a501c02e55923ffe191f1054deda

    SHA512

    4e0526480b0074157cfdf44fddd18e6d5e99af17beea22b30f78028ffe1c07ac4bc18cba141d2e5c334e52b581b7eb8dc1cf67355aa6b2c24405cef98087a6bf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1c2f05f313e4ba27ade1ca5a04373c56

    SHA1

    2074a663b8d08d016a0ef16a920bbc540ddbfebc

    SHA256

    213993762f779a51764a06f225c46082c2f624e53423a360b7580cdd4956325d

    SHA512

    f9a617435177e62ff2a8a0951068734d73e650971b0600cdd455874f2a7f86a4be35e6a166a5cae6215fa5ae512f0f4d5460cfbc858f9a6989c64ed239d6764d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3524bba1bef2a7d6c8013940b16eab62

    SHA1

    fbd14f05bc8842dffb26b44557233f2192bd7ade

    SHA256

    647a30dfad57bf8d286d187d95130589a7c809e69f71e8db2cbe152d166fec69

    SHA512

    cee1887ebb9dff7c9bfb9e1068557bb227c1d3a46c3dcddb1ebe0a038b41b83da6649d7d586727830ad86e0cc0d0fcb565e75d049a3d9ba8d8c9fe2a1175731b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8e8b7a53342686eca17db00d0f958222

    SHA1

    2840f11a2d598dadc273d22d4e389a0e4a2700a9

    SHA256

    b8a0f83e52d8dcc39503a8238cdfb10cf2856b681a4df0ff369d72fb3cd740b0

    SHA512

    424929ac53fa2a321b00d703962a71529a8aa9069b34cb2304a53ab42a6f315cf88ae9e132be25bc3062710d49c2e498337d3aeb526ae7a5dc03c950535c8e40

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    050f5013e4f5af4bf5ee6fca1de5a435

    SHA1

    a40077cc7ff680faca778cc74a22c14a36929d90

    SHA256

    5a349d9845d16f8761e6c78dac774cae0eddd01ddd69f03ae7a842e6e9964386

    SHA512

    33127b3bae97ee35ebe3a6a2b5b602205fd615da25d0142263be2efbdb3dcfbe0bbf8d159fabc7fb1e625e17dd365fc4e0c563f81981b252226b41ec9849bcc1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    214d8dae1e56bf1042596c0e66a660df

    SHA1

    f1c9eb0c577c284f5b5701211984d10b57a0fc6a

    SHA256

    5901bbe5f24107f9105529f67c673596ca068ac1e4abd5421491b5653f19fdec

    SHA512

    fbc6218a8535aa60e180f2f798ddf63201c9cc0ebd969e5ff53b5d5e60c1e5363750c8e5cf0409b13e8ede1911dc9342b763291e2d7e3c08515cbcbf8670373a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    93cd99f7ef742f70e0ed075895c76e3c

    SHA1

    b016898fdeb8245ede53887dd63c33c4bcf23067

    SHA256

    f3741fc3748c8b9f27ba9da1dfab9c89babd965abaa1fb47eafe315be84224df

    SHA512

    2ede12c55f5ea689539c56442f6f33b3071944a5a4a99ecda5fc99d3242fe510e5840033b98107d6a35147c4813c371ccfaa255d9913de826b036bef651f7cbc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ccbc3eddcb276ec03ecd024dc799369f

    SHA1

    432ce286a9d624aa75450e25bb68276a53b30593

    SHA256

    c3a1d7922e63c4f7912aa668cfa92fde94f99624969240bd4bd11540beacb342

    SHA512

    cd8751a74a9e9599fc6c45e65600ff0d7dc791a4eb0846e9bb6a3d1b368ce4d1c0ad1869f1e4cd71ef1cf7ef4ad6bbebcc5ca1c7a3b2c7ca97d99bd1601eef87

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5abfe564449f4e97fcd16fa72d38acc9

    SHA1

    72963dc8a6bc24b1e71b2175865dd9a445e9cd18

    SHA256

    d02ddca6ef7c296a06d9164f5f8580e6e93b764492578b955bf0ae6df9c9530e

    SHA512

    22c75a99b41caf2de8007836ed02f632d1aa8ab1763246e1ed5f353553383da1de27e4864b0fad64b7ef8733af25f31bf6b15496576ff86701cd509fb1c3ea41

  • C:\Users\Admin\AppData\Local\Temp\Cab4B05.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar4B18.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b