Analysis

  • max time kernel
    145s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 05:01

General

  • Target

    a3e6c9ce6d85dbbd25359ca4b4adb159_JaffaCakes118.html

  • Size

    71KB

  • MD5

    a3e6c9ce6d85dbbd25359ca4b4adb159

  • SHA1

    18ebdbb37df7cdb10353fdef7e67d73c129e9a94

  • SHA256

    821fc4b105fd036785f18e935f193bae75bba0e68669872f478e6e8395eb8c2a

  • SHA512

    22abd1b6a657e9ae700ede09f715fd7932fd93a5ca90b7e35500d7120766ded2b897f502005c6b44ffc92bb156b1e21157d4b79197b02a50d16b2e52686f4b7c

  • SSDEEP

    768:ugicCD+4wVLQl2EejS2lBLNYAS85UNeyLEhMzC:ugicz4zl21jS2lBLNYP85UNlLEhb

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a3e6c9ce6d85dbbd25359ca4b4adb159_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2868
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2868 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2688

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    18ccad5412b4bccadce603f172d79da1

    SHA1

    c6ef56a73f88a0d63bc683d9d1decca8afdc6044

    SHA256

    5de96901535dcd1909e9e4cf9e4d32fca664ab0721a36c14cde6923d4968affa

    SHA512

    ae82c05e8f3faee540c8ef6850647b026e1daa46ce3c2fc8753406bc8dd6057af039ebd378bb89fb331ff349b852e585c0cd4d3027e9919dbdf51ac41ed274d9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3bafa2a9959715a2fa58208915bf692c

    SHA1

    fcea47ebf4cc040407fbb0ebb1f85d5628bdb297

    SHA256

    739a85e5fe84c87b272e212f4d74d8c2df903c084ff73b951866ae40646a8adb

    SHA512

    5943f04a0a4ea4bf7441b85e00291798174b98cf53a17a487ccac144e97ff2c8ff92ecc08ce453f52021b1d0189d378125bbf3156e813cbf7426b11641a0dba4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6b867716e5ff4136b00309e72e14fe26

    SHA1

    1f501ff531c619e87ef6fb277abcfa9b94f7cfc6

    SHA256

    b1e07292ce912ac756da880c78360295cc91c379a353293a907822bdbd708dec

    SHA512

    879802ee76fb1d30670547e88d57980fa72d09eaaa24078ae809fa70e70a656667642c3902911a1d3bc2d91056080ae603ecaa38b6a0962add8edc04adab71b9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d3db25ee9f07921d7d843086bcfc7dea

    SHA1

    dedbd987ba3e3109137d5a1f06a8073acc1f8f07

    SHA256

    5a79ff364bb7e45a983f64f8f2d7b9b70fb72274dd5c91c2f8e0d7d3f966728b

    SHA512

    35d477da62713478e80e6987371a2e4aaa9e067b3139ea63d3a646456be85a72a41b8f8981fac589c526f832ac3089cea94aa877c8addaa88eaf162d05f35463

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f002e708b32bc69b3fbd9546462abb5a

    SHA1

    b45bbbd7f384ff245d10d9b0a8eb3e2f4acb7db0

    SHA256

    d891cd68a83214a710fd0c8110ad582f7a5285b439a82adcd3739724cc48a43a

    SHA512

    a2dc9e30c95bb09751069e76f727b1a211f3b6ec258cd598277e90111b278b3de298552e831fb87865d378992be7d420bf8a2705c2cab1f33d84df9e87064e4c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    63a952cd818e14488e159fd6e8ce6896

    SHA1

    88b57cb08eb1b5a8ec5830fdf5beb1a27b3dee10

    SHA256

    5e5256063600563b7b878c4e9ed763ac477b430fc50479f3be6eddb4649251df

    SHA512

    42ed9656fe4cd2feae2566620bb2f9f3fcd65b792e3779c50737f3b8aeddece2d0c0aabfc0755bdbbaaeeeaa16a927c6ac742a6465d1fa45f1049feb9928fed2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e460aad325d0fab3bb471a7ed342bcd5

    SHA1

    e9d4b6e43b285237ab71ac924f6959e7bdaee114

    SHA256

    9b0c61e7f6b8b037a4630f084d5e1daf97eade2ea5a95314d510a75390ae1899

    SHA512

    15d7e6871503cc102d78f515fd9c5acd182636460a084b1ade29d7bf28d1fe213d25db26d9042e96efc746ff7f9136fc14827e693b8a29baa0da89ae1030b7f5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ca0e3c751d4ce91d6dd70380ac9f2fea

    SHA1

    e909e26c56bff6c54c5cad9932de0cfdc3e7c388

    SHA256

    0e2b51d6a9c1543ae4b3c1766b03263c6a2faf37e80e536c16d6d1830768ba3e

    SHA512

    ae56e29abd4f483138025cb3ce030cf79547f0830831e9669232a97c14678af67c0e377ce016bc8360f59f01100d964fd218c37c60eb57a71b57435cf53f9f07

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1ae70266ef6012cf9b11d9a94974dd99

    SHA1

    cacc0272f0c9a0291fbe96cca75b0f838b4d270a

    SHA256

    b18ce38b4f17f24195cebd34d84f80a651345ad63e4834e8de132d7231cdb7d2

    SHA512

    9091eb7f3d01c45bf38655494fccf4befec452d63fd2e1f927b08c29612f680e6466d7082cf3a964037159c4d6b5e053b94eeb29d3be78ab6420bc01c6513cab

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    151ee71983a4cecfa2b4c23ab4fa0f5c

    SHA1

    ac2332c1b44478fa2bc3ee6a3be7efb5fea55780

    SHA256

    d57e6bb1b48b18100fdff7581a178a9d8c93a21f3bbebf590ab39f905dd91c8c

    SHA512

    765f64384c02d55297dfe6d4915672ba53ee68a5bc84c77e4b9c7b968b5221daf2bbe94b12b491afe8da8c37b70ae4313e1f82a39ebc4ecafbe0666f1f68137a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    1f5302416abd97dbebb8c27ceb469039

    SHA1

    2bbfe2db7df71205ec798cfd7204498129115921

    SHA256

    6034f790b2b1fcf60786e8f72446abf9dbf1bfa0088b63582bad0f7d06a66f5c

    SHA512

    d305a5d74537ea6f27fb1d7f58fd19c9809cf3977ca03a7e4f5b631d63e6cb1e03d09a34c6c732a76533c8647871cfa685e14d07c1973015c81e493df5d4fb4d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d5f396b3641eee4ae5a844a80045c826

    SHA1

    c405721b694c2f9832e38cd9c387f78d7cb6e7f0

    SHA256

    e4452223410b8e9c437394a7ae589341c9c5c9fd0aebdcd2ce1d9e6c2d3b3f0c

    SHA512

    0530a08e0e1f1bbe248a0cacae1a81f30e26d8425f13fd53bcedaf7bab119243e27ac4684547e0a34eaa5380421a8b876055ad21683bf1628bd6a31050485ef3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f08a6bd9588199c15c32fa5358819f8d

    SHA1

    549ad84fca5970dc1bb4054da4eba92088573d95

    SHA256

    4782b64dd2367240f4e6b2eafa4fb097c19ffda2f5fb17a30a6601332b89ad99

    SHA512

    52967306a132b2df1c8fba04721b3bb908832ac76da5885dfc7951916805eb9291e6004e51958872da91a107ba769b0527c05ba4b1a6e4fee4ea8e7fed8c8a46

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fec5c904736df936cb46d60f4b39d88f

    SHA1

    64d1054397d987c814cd1963f406d7645c77d52a

    SHA256

    5d0f8b3404251074cb59e0d9b3bbfe995901679f6174f25ae79ab7fba0df2386

    SHA512

    fc61810e91bfc1b7655adb6b694a87a8a4cad63d07eacb358208c78c7f0a4e377d34cc0b29d60cdce10cd2501979cf7446ebcc72b2c0d610a81e6728b1500772

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ede71d8eac86d6752cc57b87862c5cf0

    SHA1

    b5718400f2034ba62f8b13ab7566479743891c0e

    SHA256

    f10670943e0d3bb80a3f11091306f8de4229c2c1bb2c27d93920f402bd04ef60

    SHA512

    4bd852015865ffaa91bdb7b20582d804b3d6f4e41cc94a28f6a3106358fd8eb2dacfa0e97f2c6605128dafd5ac05e94bd678241dad2e2bd6ed0187a4cd8bb544

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5c8fea526672c2acbe88e7a7efccdc68

    SHA1

    035a7fda9c7a0e4a17e96b3ad9b694ca4ef343e8

    SHA256

    38bf2bbb20c3ff0711af5f1e7ab11cde52d337396accf2855c6347b573a9422d

    SHA512

    f98e7fc5502c8c747569d2946f171e77aac6b1b2cfa60467a3531fb59d72af07f8435d580636ec55670ceb9f3c297b73a914b6a25bc2bf22dd40f4b840c35d59

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a37c056458031fdbd37bb6dc4f0a9fe6

    SHA1

    a2a9d571efe39df2d5625c6bf9f0086e8703f59f

    SHA256

    394d7e1b1210afed2fc91dcb48eccd47172016ef32d1d04b84b561b9015c61f2

    SHA512

    e0bb108c34f981ff573833c87f3c1f45903e7c0e3de4b6fc48cfd119254bf8c440a08cc34cf37b95126b2655a2ff6c342d764a6e673209f6634adc7d263c44a3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ddcecd1542c922459fc8a6120079a0dc

    SHA1

    24d3513c066ba72e5cb945104de1e76bcfdd5112

    SHA256

    739a6c6399fd6e44da2aff9320fbc1e6e9d6387bbc6194382a8d3146a3bb6dcd

    SHA512

    779689bdd7d0f8635947676256bd9e220280957e371894fb16a57a93b07f532ad4a17815fd64e808661e864f2417548c87801450140dd05812bd624b11ec2fbf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    de46d78c1c374a4d501057dbe045863c

    SHA1

    ef63b34cd0135b19afbdc3a4aa11a83c83e323ae

    SHA256

    c11248d09ed2c08cf13426ea817f5dd083d59b8cce0f1b461c89995e1759f36c

    SHA512

    1758ce2b15a67e3606a74a252f406232c1f58b4494f5f4faa7c35153e49c45ef98c213229da56d0226ae670f27675e11fb2f8643d677ee3b0d027b62b2ca3ecb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7d0fa23b636f340aadf22b5e4d444259

    SHA1

    51b4f871c2dd73b785f487ec10a3dc36ae929815

    SHA256

    9e923ae0ac13522015ee36bb6a64358bc811bcd950ef4f52f2f4d70b104c2d19

    SHA512

    611c511551e6e42e2b00809a1fd293f82a513671c21dc8e3ff402c1fd7af9bd8cd2e437f4cf13c7d0ef7f5f52fd714e01549b617441ccc8057f87ab24ceaa0e8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ae1b8112ac0a1ccb7f7e816f7b382f2d

    SHA1

    d20796d4c209a752f59ecde0e83ccf39cd161d89

    SHA256

    af2376a76bd66847691abd30702910fe0ff866333a52d6bd2122dc797dcec217

    SHA512

    902e1d3f20a6e5a9dc4f421057b743bc99b7dff00d9c82c426ca61a814953a68430611f3dcc45f860b27fe5cf6081302eca80f19fac457b0b93f6b7282604782

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    16c2689935883e191ba702cc9ac5b3d9

    SHA1

    2c8e29a4919404da09ab2c891b63e2a272ebac9e

    SHA256

    0b2f209406abca8204e6302be319beec37135a0dbd9a5962946667a86dff5a7c

    SHA512

    9e2cb161de51d2918db7f15614f3c591567c264d81b400ba9fea6f82adc614823c63995bea2d07b9643d7843ce124743fa7b6a2db0cb0ec145e0040ccb1859e6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e0dac263aed0938ad6c060f4a24c686d

    SHA1

    7162dc27bc9b24ef85bbbcaf871c150cdbe7b227

    SHA256

    532c6dfd5c802ec0d5a6e43da2b38da1143448bcd32db3a4edf599f3603f45dd

    SHA512

    604f62c8f51ae1200fb10f2932106a14159077a265a15181d89ffc7c2a5329897b09aedbcb050681211ac09a31b029a758bab85753b9a4b6d7c6f3d66d49b1ed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    f8304f79ec93af49037e27a2e17870cb

    SHA1

    441d3cc31a9768b42fa2fe40c574be890ebbd8bc

    SHA256

    ffb6f5063988fed70f49a538c006ec63279635ef3f2c2e82686334cc43b1b729

    SHA512

    f071ccbb5be8ec294fa1e8e1b169330757abdb51dd35d9c44fb57ef4804cbef79756d5df2a8627580ecaad7b3e889f831635702083b2014c814cada4ad89c407

  • C:\Users\Admin\AppData\Local\Temp\Cab3C57.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar3C69.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\Tar3D3A.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b