Analysis

  • max time kernel
    143s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 04:39

General

  • Target

    a3d88059442ced4af4314cbbdc7ab12e_JaffaCakes118.html

  • Size

    138KB

  • MD5

    a3d88059442ced4af4314cbbdc7ab12e

  • SHA1

    690b9fc0b2bc1f504549907d7cbac470ab6ac5fb

  • SHA256

    2f1d41d59776cfed3ae7070e5ae704b07ed38600398c2b6a570ec48cc89b3fa4

  • SHA512

    574434fb07c92d7958b7f924416e577349d1a116198f944aef252bc9ed736772b89903bd1b8b4ccff7f7f975f1479fdfa23c2c3147b859684cd23605ad079bf0

  • SSDEEP

    3072:SSw0zn2c1yfkMY+BES09JXAnyrZalI+YQ:SS9SsMYod+X3oI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a3d88059442ced4af4314cbbdc7ab12e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1444
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1444 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3048

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5d32945776cc2e72ee7d0500dbcf10c1

    SHA1

    17340679eefc5aad9d7286c308730575d3f99a11

    SHA256

    d6fc869d17e6278704b24fbb24902e87fb6db48cff3b5449a472b20963f54a90

    SHA512

    2e3fab120488abbe3ad8ed12d414e722aeef3ca26f4aec53b86df5f600e621c7a1575d53474fd6f0a41a00e74254421ecf8d430b130e5680b4dce3da55059599

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    13160e048b67b85738361c2c6ff4d354

    SHA1

    0c32cd909688e0da593cc9e0633e436c08862d8e

    SHA256

    37c24769446ca3c5ad1fe71bbb109bfd5b63e1655092290584dd70aba6ca791e

    SHA512

    204ba6e8cbaea06bb73c9211b3b02b3846351cb6a6642850d4e3a6b65e89fac72e33a39dfa1f475a5037c448d6e9ab39abb28b2297337f98866656ba9703a938

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b79a1b4feac0e1faf4c92af9bd37f8fd

    SHA1

    caafc070c34172953075d740feed6dad32728584

    SHA256

    0f0b9fd1f39157b86d4849b1aa8180c6fb66a99ce104ac3ce4965d1d1815e26c

    SHA512

    47e509d552afa7b6b72d33967e8fe4070e20084e8e96a431e131525ed4954d1a3aa6b740903f76e5fc478538702de16848cf21d9b1355e65a3928b3426f62219

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f15bf7922fac010c62e50833806829f6

    SHA1

    af0b0c0ca5e8a89de75497af1910a817374ac559

    SHA256

    b2b967c1e50cb473058223a02590b275f7e38db4868212fa2d08979a2d45e393

    SHA512

    c6fc68bf1e0b751d8fd7ea03a336bd6dbbee6db4d178c8fa7e4e3bf971077df99793a0c32f8e865a7045ee38e604e060f8a23c74c23a6de21d646bb536dd2d55

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    705264c524481eb053c4c0cd15215d40

    SHA1

    a622a69469adbfad462bf685cda435d5a661e543

    SHA256

    3537f3fc83caf470071a03c81028cfd78a1109cd7e605cfdb456df521460523a

    SHA512

    8da7d5312885d9553a74037a0d7bbbc9a4f592974f652432f79c1c65acb96c0a143a79726e2b88d9a611a6bc3350862bd449f9def17809b57bd55b8f3562ea42

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5f7b85652f6332b8038585f33c8acc2c

    SHA1

    42035ca16bd7a583d74885dfe22478c7019642a8

    SHA256

    5787537cc98f7122d7aa010017ddffabdc8c27746261ed351414029c2753a79d

    SHA512

    7e484b4e5206b591c6d2351de90ee983d31f6a0f2a59723d7eb3ed5bc97070848051d5ac7db9540a12695a4451a75fa4c429b4d8d39c2e49eab7c2ffaf67daf1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d0e131c76918b719139ee6d2634aabc8

    SHA1

    ee6cec37647ceb7eb035303e6589b0572d35a4ea

    SHA256

    c3833bda78c9942203c7444f6a9af4a209beea3a03d1a86ba0336f195f44056e

    SHA512

    c7d64c94471811c22ea42b0cf8911c0f6ff6c29d00f38ea6a5e7af362afe0aa77a10b0ad9eba475366e13291a595a8d096190a1eddae0069519e3c744eb455e1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d6d3ed8fa3e9971d44c67516280bddd4

    SHA1

    e2b019111c8b1ce7c1eedb88d22fa3caf8a2ad09

    SHA256

    1120e65da0d7ec6ad959370aa203e910424d40bc806590883b8a9ad720cf35f2

    SHA512

    67995939a267647766c3a6f21caab2e00a0ba0c53d30fd520e3ee46a93bbc6181e47203ae63fe678276d88415a0a878a915b6e2147f692771d00dd833a6da49c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a2e4a5993d33f5f8d5527a74f558119d

    SHA1

    fbc94a3c2eee84a68e6c971c9ed6fa4894fdacf9

    SHA256

    8592ef7d755f18c549f8d3aa9c91f23318e227f6942c031bd5e5e32e21a6ab9e

    SHA512

    8994ad07d60c64def6c1857c8dc5e0e2a75b60a856dce5bfd044a17b0da856ade02fc2f4d0a5fdc0bc74a53225ba592f69e705229430c481d073c2ae3e6e042e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c333d9678c59b883a90a9faf4a37d33c

    SHA1

    8284a684f2be47dd55e60768aeaba279c637f38e

    SHA256

    fe5e4a61194a535fc575e9e2dbd1ddd7d33645f1fa35b7417a99f543ebf22a8e

    SHA512

    c627ee0e994327cd6c63df1a0ad4e3a59120d08063d90435e2b100c5022533cad5157b03edde511ca4ba07e445f7914af4c5a4be3c10350952f185d90787fe42

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d695732cf510888577ec38e7664985fa

    SHA1

    b4f30bec0146da17b9aeab9db7f1acbbdcc98e17

    SHA256

    ad61a5e6f3ec30aca6c4640a9da4ec6bfbec887e39e31efb7301fd137aeb7cab

    SHA512

    07a8449180808a5d1af70fa652b9eb1a26d25e32b5c73814e325f29b711fe9e7b10f8b16133750dc621e4953848e2c4127e3c521e3b712ca4a8ad9b93e48fd68

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b01b169b5ad46d818f7df58f75bdc801

    SHA1

    21761c646cf6977c78a3298c2e55923c1b8198f4

    SHA256

    06823fe8d62970c9f81b1d24f6d1dd8472c4208851158635bc9caa39be52daaf

    SHA512

    f729b4a2151f47f26314aef0ad92f259a44b2ab2ae92a7c2e431a15b4dd874b6d859636a663de54e008cbe01621c991af150a60c88a1c23de8dd2770fbeb8237

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    700658ab9674f44351d29f2a1f5ae978

    SHA1

    9a86dd1b9303e176b6085b80931b4da24a194350

    SHA256

    4d72a653e98abf47a9c27eedb30853bc5a74e4b2f9890c516e31cc5361e6ff8e

    SHA512

    f4e2eb581197f5e8a789a15b408e5bd2ff2dfa3baf66a05321bb4ae5c60da14440faf1cfc01dcbcfbcbc0d52273fbfa75d8ffc49b13a9eb3c502462649db2334

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    97f1f8e0a62c8a9a701ca8f947b2a3e3

    SHA1

    3f91ce0381c19579290a5c438b2dde1736ec0680

    SHA256

    efeeb92623716d14fdacf298c160abe92ac7bcfe688738db72129bea64eb1176

    SHA512

    85079f4035b629afb49a42fd3dc5c9a1bdcb6e2df5842cbe02509890fbd51718146efe791adfa00c1c020c8159421503c329aa3844642b3a2d0b314166c289ea

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0f61eb5ed939a0217a49d3660c5dbd22

    SHA1

    b70bee7c3fe91bc4b82a1a3cd5ebbd24d4a64558

    SHA256

    74a1046a488df484c662e9a1708bc808a7e03033bc06975b107d2b57ad9cf69f

    SHA512

    7b4bcf6e0cfcc62669642169732d817109f466a429781f9f8caa476c813c33b9117e1e0c037cb9531f669dac2bb56af7a0f4c497f5bdd8b10e8d78b8187a3f6b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    67c10f484ec0823468b34c1e3d949cee

    SHA1

    1c292cd02f64ced03aa104f12a5bd93db01e3e34

    SHA256

    a7364600b2959ed37e47a2eeb5c5ce75524ca3ccfde5b09fddad8e5a5d84ec20

    SHA512

    64b88879e75711abbc257848ae4f818c41ec072ecd03a1caf3645c00bd77f25653053d7c64c148c78c0c0b150816969afdc4d663c11f2026ecba2557c56e7803

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    30620ddb81bfafe8d7e3b906e4b98579

    SHA1

    05724d91186eb30c563d5b5999794201005bf307

    SHA256

    3a529a233ff001526fb84c01d6f154c9da8713a9e3583160df540b6be4589f03

    SHA512

    f78b8aaa234c5eb329920aff7a0b8671d4ff99359fb75ab575dfcc208e74dfd46c0fcceea43e1d082bac7dd787001d977014b155ebd34f9d08544441c01966ae

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b270edde8c42f7dcd16f1624764d0dd2

    SHA1

    d6e454077a25a125da6befaf7417a2482645c5f0

    SHA256

    620d5c4d245d92ee5b6f447c983ff139839a6369f4a2b5de798341e87f4779ec

    SHA512

    f87ee0a420479aa455899a4330ef7a780a5f13cc1ee84f4abc6fc6e6bfd986914780ee6ecb75db0acd132c399818831b5b7a340c1636a82e1eb2ddbcce267b8d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    32d51590c0a975c9b5ec245b35dc6e3c

    SHA1

    2d7ce027f37f61fa89d930a7b55ee99ae70671f4

    SHA256

    84cd0bd71a26b01b70d6be92937aff3ea27f58ba7b693ab9d06f1a00275a4041

    SHA512

    02d699432074ccc74d5695c82f06cab0a2d56c8421f61d53d2fa9848722261850e6a4a79452edce1a9c810f39c682ded248ad69b575f3947bc6a8c555c210bb7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    133b65585c58c5f7b0056a43ede51938

    SHA1

    d15e3dc5854db2a2113ed510663326968786a814

    SHA256

    c0c3b9c09adc852d9d24ee9e2e45ed8feaa46cececdc4541ba525179918189d0

    SHA512

    fd43a6ef276499308692e893b595fb104cee0167d73dc26f9a920a88838e896638b62403f6cb2dacdf421bac4aa5caddec203a258603441e27243ddca51a6d11

  • C:\Users\Admin\AppData\Local\Temp\Cab73F8.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar74A8.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b