Analysis

  • max time kernel
    141s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 04:39

General

  • Target

    a3d8af431e64fc3964e5ec68e5d20a71_JaffaCakes118.html

  • Size

    8KB

  • MD5

    a3d8af431e64fc3964e5ec68e5d20a71

  • SHA1

    b56b56056af2d61a648a88cdd20591466fe31d99

  • SHA256

    d9781ab99c5eaa24b5d0351c48f7adfc22c0bd5e1626ced8a35829b201f6ceac

  • SHA512

    4e4221402bc0187d4906603201dd3aa22de40d3ff21172312bb3a84b1a68d6d248084af81f54c9541a9d25cb2b535a3e8185f6baa11fefdef9e0075d84a9bd5f

  • SSDEEP

    96:4OYNlSAaiQ8WKUvOQkHL7bYtmrQnoM5v/rytH7YeTgp7jERwqopRPLRk/9fGAaCx:4OYSAd4WQkLPgryt0eTUjERoLzR677d

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a3d8af431e64fc3964e5ec68e5d20a71_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2292
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2292 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2040

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    49c0fb64d542824c4953bdccedcff509

    SHA1

    16c8356b29e144183a9fe9680afa5c90514e99ca

    SHA256

    8fa6d00bcb9b99ea481a082096908ff0e5f6c6dcb916976bb7a8355984d98a5d

    SHA512

    b0582ea246763c56faf9e51048d738d287251d85bd9aecd9d9ebeb3090c5b7b6f5c4630b278ae6c356622f0da95dd978e92250c022813974c76d22b02322d8a9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d77dd874a9e02426ced96125302cfd52

    SHA1

    ccda9121f1395a545f1c714ee34370a193e14bf4

    SHA256

    dd70b31124802adb15262175b44b716185bcddb679c94135c326455a0d9d80f9

    SHA512

    3c276e2fa62825f5e7b0751dfcda24a33608c14dddf9a07ad24d474bd92039cea64260e08849304b609044fa42a302b4fd810b8abb2b2f9550fcb6c48b645382

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1646664b7fd1b9609bcb151faa3db45c

    SHA1

    983f2ce5599df5e062fa9a48a292f92da7957110

    SHA256

    715f848aadcb8587908b344a18bb29f62d7e1cedae17bbbb110be6f3e14e0109

    SHA512

    f05c7800ccfc8f6af259816fbcf023768bd3221537911f0a2c5106fb20040957316157ac537d2f509da69b5c3333a8a075b1442ccca352019011020b16ea606a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1686bebda15ae9050082f108610f9912

    SHA1

    f947de68fa88865ead2dfe8f2d0d0d91c98f3b16

    SHA256

    1a09c1481ac7c1c96263065b2ac5683e27a92dd33c9ea03b0f33cde12a21f43d

    SHA512

    f8e82007efbc2ec16b9c9a36e82b9076c1884e6b58f05344595e227ec3f3bd922ed0005631763aa8416e79af88ca47806a8d7ef0823e57e72e4541681f92de18

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0f2025c24da89e9c1b4cc91e3e69032e

    SHA1

    2cc8d84120eb6ac6d22c5b1d040bf72aba4aee19

    SHA256

    da045c92a010ad4343310fca2c11c72cd400926e33a62721118e5116fa6e834a

    SHA512

    b133090a608db4cdf958485e7bfa92a4cc69990a855676255a15acf10de8d635394bd00a45d0e37ab0b91d80f4d810271fb43bc11b25dda3e4167a290dc3fdf1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0111fb9ce2b8f824a08de04be95f9d31

    SHA1

    973dd47045ccda3e6598073794a1526dc07cc04b

    SHA256

    0657c39ba7b1d3f3d1a38df224c3d263d35b19201d6e554e331f7797e19c979c

    SHA512

    c0da274dd52d843c8bf0701802e119e0bf20b6592dc27d681682604086140abcc0d62b8f483ddd931d4ac3dd301e53925525f7a59be5a66567095c9803e14427

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9d6531063e08d2e4f9624c2fb6bb45f7

    SHA1

    04ea006b806e41e84d50c0207b08f63cf9a81120

    SHA256

    3552e13a34f0eca2411d6f190bde0229f5e4e00b46bdc548b798c3ef3be38d2e

    SHA512

    2381134d933765f1e4d0d41c2591d34735cac87e4b32c6ce54e28871b3a36dffb67ec1ab25ed9dba17ac79909e47adb78a89d253de52589333926cc1de86141a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8d4087f178371a8a570a31ece5f97b41

    SHA1

    ea0318106caef9481348813e968f9c26890c3cb7

    SHA256

    cb86c9045773808d58e892ed017bffca318663e8e655ca2ad268ef850da4b644

    SHA512

    f697b1b6b8e88dc095327ed3b7cce33966e00f66942aea2842ad6b03fcd618344ea12f2f2f6d95d10976d1e5ea5ed7e624beb12c49c3e44f3e906935844c8a58

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    26366094b2e07e9022c889ab8e371022

    SHA1

    4508f307ae1150500b3ab8f8473404304a4a08b5

    SHA256

    fe9f76399d1e521b43442c96dcc99b650e9f54b2ccedc00aa2f70904795870cc

    SHA512

    5b33d4a0f8b5c1b458af488be94b284865af55eac9f025e4c6f85ae00cb02be1a084925905e43f54971d6009986ed6285a4424b82998583b14531b916fdf7944

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d1b0898d481062698224ac79c09f535f

    SHA1

    b6d36879e9e704e96f977ebd27272551a2619ac4

    SHA256

    aafc99b766a6c771dde45fea2636f0464adff12173b6100350c5b496e17e2540

    SHA512

    c07fad38a935557d1d663564e100da9e5b95c838e81bf024b5c63047f13b8a8d30498c1e6b130cbda8966f426228cff7f9daceaa4fa3f82bd95d99291468a792

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    63a6fce774ae7852cc6af3f56b1a4b6b

    SHA1

    9702d93d0ecd0248fe83158a8b9a6d5df10b96f6

    SHA256

    f5eca840221658b5c4ee32f38a9d82897b657027f1eca64d91a352f1a56aeac9

    SHA512

    46f90869c9755e16613ba36b896b4979f39b84b80b78097706d7acdd7941cee783801917edfa8be9a972b107d7f9631f9c6a69bb3677721d22aa6522a9be3f8e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    20d5254df8b122a979a95a3e9e8e135b

    SHA1

    2b9117f176739a064d9d4027dded6a9f3b532a4a

    SHA256

    4435a6315bb030bfd15238693a8e7335c2840aeddd6a72436afdc9e5e9644d60

    SHA512

    973d6a436882b01f82626e3d152169d3f78c50ebdeb4a2a488b330e87804d9bde40b8e360691db9e0dc6d5b103f5d4267444c727b4cca9b45f28d5993c9fb348

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cdc3fa9718202e9ece22abdb46a0cb80

    SHA1

    1983a5ede474f2870bb184c840c4b705e5c9b3d1

    SHA256

    abdc14e1b4f819b9fc835c4e8a30b24df1afeffab704eee49d612ab89b783410

    SHA512

    0f51767d2431963520fc7935818bfaacde78204157973b2eecbf05794667e64243dfab68ee4b25c1eae86765bf8ce143133a6f056010c16a8d8c42aef12ea1e1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b6406cdee1f1c690002e4e8ba276757f

    SHA1

    0a5bcf8a5fb9633b0ec7edecb1344fc2a39f9dc3

    SHA256

    812f73c496f9f43e4a008f1232da2b0182dc6b1981a91320c4a44e6b4f244632

    SHA512

    90fc7cbd194f04dcad0913baf74fd065143e195998edaa85a56719bfa0efe97acb0c14f8cc9c09440651e6fffeebec23cbf4b8d5d96579e87640bd502c09a8af

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    19310447aa3306966fff81ef229caacc

    SHA1

    2d914217997897ad1fbe8bf213821c813eb787da

    SHA256

    f30ea4a57379db302a3c9a7a450eee4f417b086c167010ec5da46af61fd2157e

    SHA512

    7523703c40886fc2e1aab8f8cfc3cf29c3917f2ba034058dcc606f3ffa3f80c2c3a32a4faddf4bd365acc436bcb875feb7247dc65c6b9debf69be0034533bab3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b415f54ca66b6e918b415851b5610c2f

    SHA1

    fe258ac17f9f81174af0a27d0ca27f3ff8b2b7bf

    SHA256

    cc5c21ee141c371f3e8e25155995152fdd9aa9060857925f90057fba38054d84

    SHA512

    b0b1e5d18f16abda18c59bbe2a4bc412d3c7973b418ab64b67ac404d1381dfafa7b9d72e7c8b1aea5c5c0574bf86c8b3cf0c12ab1c3c9e0fdf8d5376ea031892

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ae4274745a0a2902b9db7d556fa0442a

    SHA1

    f8ad0ca419b5000a9a1afa78115214471dc1e5a0

    SHA256

    23ab9e32c4ae3ddc5ea8753aa5a170fc0e4cc23dc032429bea997c15bedd6324

    SHA512

    7e026dba75a1dc693a5daf286d3b3ac7422bb2baf1dc97653b6befd6ba6c433a77907e52cee5f3d233f1bbe2cbeef82e43e6c26153d868097f02c5a014fa2a3d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b8cca5851e2424a1712ee256e4e032f2

    SHA1

    0c281086cacaaf17b553818f79029e58b7368ffa

    SHA256

    61b65b97d3fa63b8727ae097a9c4b6c448d4d46783042327636e559543314e05

    SHA512

    23ed1ad1635e6d3fe3fd0fc0b9b7078d3a53b1476cfb50001f1d6135d3cb059f2d96da715adf6759e6c4e4d538a4e1dd21aa04a03a359fed7d705081f964ea15

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    95e78a8693ff4b321fc620904405e9d8

    SHA1

    76ed4ddf745febe88cf06943f505eededf8b3763

    SHA256

    5e6293ba8d4c48554e8e595232d2c54f025499059fa325949f55374a4d02f4e3

    SHA512

    ad529680920306420a93369e0f7c4a5622305424e578aa03b6bf5a09430b712bd56262579bc631beee6273f66d83119a8f137d648c2ec4301022cb3b0c599b15

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    afe7624a1527d7ba029f1ed23bc08525

    SHA1

    62999d5b12894200c2e4a166c4d5c668b82567e6

    SHA256

    10a92cced7c94ba548e51df09a7034def4169a0323ceccc9e1cff7af9ca3c554

    SHA512

    efba2dded60017257c4872e29d3a755b364003d83756d82bdb42c171bddeed255029f112aee5cfb957a586ded47df23116ca6d052364c0f43e47a5048bd1f02f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    8dfee996bd891d5a3d3ffcbd6b8c6b30

    SHA1

    f73a5dd66a5c1cf6ea1491db75fc87021eca1c19

    SHA256

    f27a9bbd663256c574f468856b61768d6a70f6d6695e9d2745ed6a19ac886997

    SHA512

    399a6c8bd8db1afd051fc2028919a095a44054d4cb75346bfbba38b2b3e474b600794582b98b17c57c871f69e55d8b45a3f06700acefbd1dc7bc05f30b446702

  • C:\Users\Admin\AppData\Local\Temp\CabC6F8.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\TarC70B.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\TarC887.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b