Analysis

  • max time kernel
    134s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 05:01

General

  • Target

    a3e72b9a7a9fdad495623ef59a9b29b6_JaffaCakes118.html

  • Size

    2KB

  • MD5

    a3e72b9a7a9fdad495623ef59a9b29b6

  • SHA1

    b8d59c41c439bbfb312bff6051a7510729910337

  • SHA256

    b76d413e7189f113c8205a3b9f0f05378b78c6ecd3f9a242d3dd47a2bd704922

  • SHA512

    6e8968a007571ddc092ee76a6babad0ec3ac1f9307844b6f1cb9381b527f9e1d849aea74c67b42e3a4d9d3d278bcb56ebb1af42ae7cb2c4467a3168aee60635d

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a3e72b9a7a9fdad495623ef59a9b29b6_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2268
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2268 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2616

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8165e7afcea7b385f2e20c175b1f1949

    SHA1

    4b8e65b2e8855062a1035a938010f1fd208400f0

    SHA256

    ef8653a70674413caaec177740ef34f33a678b0b16100b5c4ba27398ea0ca998

    SHA512

    878c753ffd8909b609e4ab1cf9e1655c9b103175b26de1afca63709ac02cd64bf21fe8095c331647bcc11cfe74bc5497c23bc1b9f7eb6cbd96d6fba840bbff98

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    844d2e839d5010a5bb2156c8f13800fa

    SHA1

    5aaa333aa77a00f71d018a4d68cb49510f1c5cee

    SHA256

    1fd1bafd12249ccf52f0ee50009fa8d400f740d43a723ebbe2cac95a1564a3f1

    SHA512

    c84376a5db0f74624d4ed69a0f55b431b932816f1c7a9a4fb01309efcd3900371f2cc7172bb1dabe99898807565415c59e85fc46fc5eb0a55d333cbfc41aeffd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7af171e1932ab5526a755c8761dfb987

    SHA1

    eadc6900c6b4891306d66085fbe771b3c7e7f51b

    SHA256

    b29ef22bce4bc50dd18205670fc0e088ce7c07cd5c5360cffec2fe1ead059491

    SHA512

    dd784479291115761438347aad5347ba611710e57a1dc2a6d97897e16c6bfbb6c1688814c69a042016abfd19fec8c7c11262b9e19dc79af7ea5f989bceb47488

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    776fecf20712b2872fcc3d39f38e56e6

    SHA1

    03c0e4d60e8c5a897d977e3a0bcb1e7cd41b2dea

    SHA256

    cb78661faca9bb492e7ad4c86ba520ee00fa4b809479ce07e168437fe0205cce

    SHA512

    9086a434d505b724cde74ab26bc4d76a0ffacb3559f197a6ef903e7c13049c0d83976260ee6e8f185454fcc62782d6e87c1e242fe84285b06e2e79c8118713a0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8a6cde6e2f829724986a6e3b1d34d84b

    SHA1

    032d4faa7f475165c21b0f77ad0ce69b84391a39

    SHA256

    b67dd0c52827b70763782644d862fe77d7637b94d63da1d8bf96d984fa5d898a

    SHA512

    c39dc3b7f425a77320c6e7de62c06895b165528d5f3803e19d54dfc349e0599da419c77a3029a71b52926b42b3a2456b84e0a5a44420ead6a5fc0003fe57fec3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    99c55cbecd41fdf7b0025efe64bd108f

    SHA1

    ca7797b0ff30cb09371ffe31c3ec2eafdea6f739

    SHA256

    d79bb0a92db81f4a8e6268de165facdeff9642805b2e0eb49cd24b3788427b95

    SHA512

    fae449d0be1852ec2ad37f7765ede68b13c2b2779a6c81755e7960a4311f649ef787a36d287765405b86f105aaf04fd3d564f8ce1ef80591b2c3bbd316c94c6c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c913260a3de9f80b72ac17310ac4bb5d

    SHA1

    60837e226e1a3db2e0b8a305e9acb0834da2e63e

    SHA256

    938c0ed952bb0ab5307dc1298f3e15b361e2c5b87b7d3b864eaad331fe3aa4ee

    SHA512

    d3b40d9ce3e82591be73bccd972126d5a38d571927f2bbbde59cc45fd9f4d495a5a6dba16c541c7ebd65b77819bd8fc5c57fcd70bb6432d3b6e065530702a4e9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    99c4c167b5fcbf2920bd59181952e246

    SHA1

    8a05ac99150e91e10ce213bbe92296926812c682

    SHA256

    279fe0be7b160c1b6838c319de52ac653c92e569d4a8e791113a08b6fa9a3a43

    SHA512

    96e3af3c263ea04350fffc0097c6323589c742fda724914a36ae1d1e77cac2a5247be0bc26f0e4f13c9a8d4d2003bf65165dc4957a6a97a601597a0aedc7d70d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fc4efb50848484ace13b1acbb2753df3

    SHA1

    a5ca1cc288ec52100505db6eb2fc6acc6b5e5c73

    SHA256

    bdc4d596464146fb5425779c3b7a2a90273e3b37a1435f96ab957b47d432d6ee

    SHA512

    2c5a0fa6e7d18322ea6b4dac19cff4762416b094e8f5ba73237bae8c633c4957d10d4cf2a55c45bddd60c9c2c1927e69a4db94a169edfd1bd4f364abf05736a2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c25ccc92db1cd867e94b7e0e55f9d992

    SHA1

    f3b32b9785796b28d0bb2d5d64f88d2696e0a6ea

    SHA256

    39b0f01bfa0dae59381dabfd356d66f758f65682f810aa9ec03daea4f2b0a5d4

    SHA512

    b415a7b41e01fca78b59840116065626e847bb55a5c34f2ddaf4e5320c1e6b7c03090276a46e50a559e8044b9926f4948a0035b9203fda50fb89096f5e6fb05f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    afabe2b7026065794a709c31ea1bb2b6

    SHA1

    ddb800fdffed516708b34de8915260989878e7d7

    SHA256

    eab79f27c517a29c575bdb81c652b0b85cf2ca21ad723b2e8b74b9e1272160df

    SHA512

    362ba68c838eaa17c9d819ca3d981e8bd7fcf7acf23cfee4bc3965410d5da302f8216957862e3781248e86dacdb18d3d4d9c2bd651ad3112edc17ffc66766fa3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    93922cd32cd8f8ef2f08a21bdef9c124

    SHA1

    18d07f158c480ad02fcf52b9cb99f6e9a7560dee

    SHA256

    f40349e5a4d4904e76e8aafc1280ab900224c90764a47c9e811c18608238a192

    SHA512

    7e55aef75d1c43ffc1757d0807ee3d8a8b8cbee1cdf48db3895d77a54a9b027bc84586dc32d5fbe80ba49a61997dd42412cb8ab0815b7316849c5054d727ddc4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9ddf12d97d1921aec5b6e37a5d1f0418

    SHA1

    3f37a3d0066c014b90c2b93cac7f8b17e608d031

    SHA256

    45c4bcbf2140f16187a271d018f69cc6e18fe7235cd3ab3dccf5c042d7912823

    SHA512

    6efd53c52684fe8f2a46a9dea4807e4450d5edab4a4a0df8df7e97bcdbee52711199efd1890cd6d4616b2ff025577f201f4fe734a9e51c666127f881d1bbeb0a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    60e43a63b9d4a6c665a2010ce611f6ac

    SHA1

    a47c0df8192b6e4df32dac3eb493a66cc4ff60d8

    SHA256

    f79b8e8b094a7b7bd57f378879913d667ce2b0add9525719c38b62ad516ed614

    SHA512

    14169e91282420b24dcb895b93c85246aa81b5cf486875d309463cfbc5fcdda7c20193061f5cf86dd623c1a47dc4acac22a794dd2047f0f591fca15c298d5b36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fb1e17271fdab6db50a47c2120fcc4b3

    SHA1

    10c8e2d082df2725ce510ff5d8f13c23089eaaad

    SHA256

    c29fe6418deb4163d7316b389c1cdca315288c9292daecc6f8e6fcc9ffffbf79

    SHA512

    5e47a9161fc93f6707b3f7e656918f2adf52dddb3f139b1918729e2b14aceb305105b635d2203b8e9d22f10dd620582849b177d2c8fd63bfd63c2f2ca1335779

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    110c62811bfcd484c96e7fd362cc8bf8

    SHA1

    97f22cf670d73aaf27722d614b9a01ef23c6513d

    SHA256

    c916690387626826f25a6ee137d09c8d868fd8e758debdcf2fbae66137925657

    SHA512

    f8675422dcc6ae7d71f1675123d5a6eba98c19c77aa8e90ee844f5f2cf4a8ebe8341a917e1575c80e572f47b8efc4549aa152db0d7138f89b95e74f2f6c6e67e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    17af175ed27740ed8da56d95a3eefbb0

    SHA1

    6fc4ac87530cf5258abc4310e82edc4beefc9d34

    SHA256

    aa1f9a0de86694ed6e5a160948d513d59a026aa8d75a6365a652d481176548b7

    SHA512

    30a4c538d3fd2d4f6952eaf4b460c02d207dbc7cd3784e998bc29ab7f25808dfc876d3602d3680336e78cf111d67ed3b84d5c4ee30e80a13c5d1aae35a9b6737

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    56384d2cab9d688a86f1c28aef5f0e58

    SHA1

    3dab5f5f74807b422ef0cfc4e4506ac9f80dff27

    SHA256

    89f30b2894dd5cda40884894abf451b53bd1580ae2b06cd2baa1fe02b9b2ae38

    SHA512

    7e60a77c2339aabba214136692d293e16bdc2878b15bf066b728d5ab6110564ff41d241ef618e0cd62317ab004e5124d45d312d90cde4e25d5c63b5cd41bcaf6

  • C:\Users\Admin\AppData\Local\Temp\Cab2E73.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar2F83.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b