Analysis

  • max time kernel
    118s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 05:01

General

  • Target

    a3e6e150572af06b3567993a48059a9c_JaffaCakes118.html

  • Size

    15KB

  • MD5

    a3e6e150572af06b3567993a48059a9c

  • SHA1

    09b41550010c31e114365002a7b37eb09c4c30ac

  • SHA256

    4bb2863597419454811589b802d4d625fb5f4b1ce6a78e44f1b93444d2c2885d

  • SHA512

    a4ffb86f7e661dd814800bae10095ea90cfe34f666cf4fb614624df982e4eb881261e7e65b3dda0e6ecff3bd0e791d8101f6b0d6cebd2b8b8426d8a5cccb261c

  • SSDEEP

    384:mY3g7Hpfnxrd8f3wQcV/ED2hAucephWBkhG8ETrrQ32wFzpdE81:Z4JfnhCwQchED2hAbkhV732071

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a3e6e150572af06b3567993a48059a9c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2108
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2108 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2292

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    436eb1627ebc6a4a85db388ff1de40fb

    SHA1

    7740f3e484779bdf6d662937b0462128d6789636

    SHA256

    1a64b2b50c2ae22b4409c412cb0c0e4a33d44e8d6b0b12c10f3a364cf6b3c7c2

    SHA512

    ec0cfd70e4452a53b0e528eba3c58e4565e094c8bf4ac7e8e6f1199ae05adba5c1229639fccfa4803a6e963b0e4eb6716a621060132ab45094031166800dd436

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    040b3669f8dbe1191524467a63d567c9

    SHA1

    cabf7cb317f73a36eb25ff007949e4bfffd79984

    SHA256

    f1bf3cd96b80aac3dfc65f06d8c4b479fad5b97e61578f3aff22fef3db9c9ea6

    SHA512

    7583e771be83bb39c4dba3bc1f90a97df903d20fe6ba766457288581acee136fc4482ae79b47a3a3f2567c33f78ef7598a49a76958cb1b0ed4b5571e6549fa61

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0329d658b8ab7903168bd186229aa271

    SHA1

    b7543cdd52d080bb4f991ec92cceca2f15e906c4

    SHA256

    2d5383e02a6c6076a6bf72f536516265cc7016cfd84604540a51a103704f8934

    SHA512

    0658e1258c792b131d4af6db7d4d7cb82baf6c0fc3be7fa5711a97c0f8819e4cef1ab37179d1fe7c735dda487c0d9e497a85381b19ec5d5d961790927915b38a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4615e88b057acb91d86f672697cce348

    SHA1

    b81791590e61c3e5db7caabdb58748cc754cfb34

    SHA256

    1fe25bd656907ebd6d1ef0b5d1e5e113399db4f8d5e8a22d8188350ea0634fc7

    SHA512

    2ea5c01ade6deb6c7fec08a98643d9ea83ea95a2cf3c156aa80c6023c8df0fde010a663f5c9156f34b71cd0e2d818510934f38b471aba82d33d92ec3f4ecbb29

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    10d4e08e3bcc585da36c2834e67b2a02

    SHA1

    895c62f618aec8cf5ff61f1f873ecc36bdc65593

    SHA256

    803a1b37861351e9165e6807c35d1c9805125bd752d061b01625bd20f76823a7

    SHA512

    7321e451fb947e699667f6246a42ec1112e947d0cfb3d89c1cf7c466ebbce79902b0d0c41eaf5958167bce3ecd33d9393417814f6ce1b3fd624018034d3c0bf0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d1784b891d9bd1017ba62145a5f00f42

    SHA1

    ad251ad9eac21d2624095afdea25c088828d4b3f

    SHA256

    b19d1ad2f2f74ea052cd92eba55f35e85e194e721342e9633cef3d81087c78fc

    SHA512

    fe402994431d064d93e08e6fcd96c47c4991c84518db089467daadbcedbe3ad5a1eb32ccebbf5fc05acda4e4b74e0d2507740263d67f248075b2fd77000ab0c1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3ec7525336601e90aa3c5c909cd279cb

    SHA1

    2304a5eca28ba3233407aae2a496dfd17e786f41

    SHA256

    55d587d72d51467699c666cb048c338eb5b8b2fecc0209e0d6909eacc520735a

    SHA512

    118f674a2f45d574a851ded40362694b3919da35a7e886ef86e6c161660537a5caf4956a3bb9596e5f4cee7bfa0cb80aee1c5481aa977c7a69d861dad275b9f9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c8e9f90552520cfca43ba2d1f5640faa

    SHA1

    c631954f80eb6f0d453ca499af400790e8c2ce06

    SHA256

    76f2b0f216a36febdea00c560c56b44df024106387ed11197a35280ed0f13d8f

    SHA512

    76c75e596a7f899fc48e9da1957c435ce0710115e35c5b1a9cfb101f17663f5610e26bee33c45438f94669fd8254857a758fe88860ace9421aeac2b1b3e60be4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e3365b7c6d5f472f9ceec396b5035339

    SHA1

    e114bdbf303b0cb8db6286e00c70a8cc462f133b

    SHA256

    4cad21cf3e52fc8bd23aa5f8a862e9bb7b395458709a367c180c8efdac25a7d4

    SHA512

    e67a423f8cb8fa1b78d6857ff29ea11f11cf3ab6e5cbe4a8e21c8d5cc5d3b8b50bdd51a52b2c99ee4853dbc6e0aba92fa72eb5856356344b843f19d21a8295c0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8f31137b6566dc2fdef772ed5e26bf26

    SHA1

    eacf26a4a887e612c3d75e36f1c17d5bad80c1be

    SHA256

    77856ae25159465eb384b93c471da16a114076b77c475e312d928f6dc678a2e0

    SHA512

    455d5632e6729fd3440dbef02116175c9b4691cf168c51229aa0b7f38a240fb67f5b852fcfacca36fbce2d951c7bc49b12b046887dde6ad794b7aa0265a2fe8c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5f44c23767918d2ad4d2e672a8762092

    SHA1

    98c1f13c50715b2235cb0ba006469251d7d4f2b8

    SHA256

    590d5cc8bbcb0395aaf46dafe1e2dbf341c9b148abc6f5c1b67b06f9d05304c9

    SHA512

    939415f219ef75e23985a00340aabc171faec8aa92f1997f21e711f1145fb62df4fee610992042c0dcd8a303c66e5fe51afbda25a09f666b4fd56148c5fda0f7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fed80eca5222afb829a1134cc77a388a

    SHA1

    3de5cb565694e9eac9b4ddf4d7cce9b460a1dd9c

    SHA256

    6170b4175872c1cebb6ea7fdaac89b803f2c653cd2115a25106c6cf6fb127c6d

    SHA512

    b8c9074f03220463ed4593d505fbd5baa0deed0a20b0804a7b1eb4f6a7ce40d0769cc0b309ea8ec6581b711d7b4a4a36c02d00ad531f4c79710113aa1c770ab6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    92c2ab01a21cbf26275bf9f957a6bc8b

    SHA1

    dd00c53a405ec9a8b20f4c12de183db903dfb564

    SHA256

    e291d2fb6d29e11108f40642bf3fd43cd0bf47b6d91e57dd05153b6ef26288b2

    SHA512

    9e3729fba870cab169752129d7c1e094d93b8d826d5c7f2a4b38c0bc4039f7322c395aa58e0429a6834188e37dcdd7fd95e77490c2ed0680243776a64a9eb3f3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7546ea7f8a6a366f5386ba5e40aadbbc

    SHA1

    c6cc8cd660deda7333e5e082da4469116c638ea8

    SHA256

    c6c0a8dc06c266731ef2f4183b1af0af8b7fdaec83170ac1ab30b17277991e37

    SHA512

    969458889cf9acf9e9951b07f1bed1ee883027bb8690b231051200673cfa912bd4adee2604dd97e4ee0f39bb7e565c8cf84185ace2012b6bcc9a320c7a8964d6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d3b6f5b985368827890af74046783acc

    SHA1

    a853e35703ee49f80b517833a1e172f2a758c8b1

    SHA256

    1ec2280e0547ef22ef5508654f596e6a4772cf651d43df08e9a9681f8f87047a

    SHA512

    13d1f44f07b68d63e3b0ef663425606154266cfe8cd207ada4fee4d1c72b795059284e247e28dbfe9a4e7d28d8ea96401f377bcbe07d5575f43ab6769abac46a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2ec10ba4931b3d6f9ad9ab1c34a9fc12

    SHA1

    d024acbd7aa7dbd8cc156b440a931baa986ea9a1

    SHA256

    4c35c5b63a50b86e4431507da9c02e6a95bf5804dc7f823a696e7a707f10fea5

    SHA512

    8b31e2e4196c168fe88ee99886a155f1fe6f2207f4e3a631b92fe0772603d0c512f2cd1efd05082aa60001e2fc5f0ff784b1684a7ed6248997540eab277bf7dd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b246f31f94d8aa069bc4df3353d96854

    SHA1

    5d0c03a54b9687381eecb6ccbc6930de516e6451

    SHA256

    6b70284fb6b5fd29a98550870680192b0cce2fc90f29320343688cc3ff4f0bb2

    SHA512

    aadec5ac74f2356e3dab12f503261674ebfcf7053c6a54be8e0e9ceb00ac67244e91618e5e61d4fa1fa282e535340d018dfe34255018f18e4205ceea560e0c1b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    077098698f390f432a65fe1f69ff2180

    SHA1

    906c687d75d9068cef750e545f2661bae784f9fe

    SHA256

    c9a7bd7d326f21aef99a55493cb672561ee823c9daf5dd17cb11b480b3f1f9a5

    SHA512

    1082f95365f640832a218884bfa131f68752effda4b41a14da32ef71455ab486e6b6cbc069c45e62390c66c789637ac45976fba7c23236ce11fd8211714cd41e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b736f13a3e6f4ea7bbd7e551f0394e3c

    SHA1

    5a680ed994f559c205adb2266adf7e49f133f4fa

    SHA256

    2289c60082d0eddd9a187a44a09ecc2232d922f8e9b994e7d1000caf216c5b1b

    SHA512

    3cbc1de93be171c74808c77adee641e91bcb7ec8ce4cdb27e9980e1ab02b90d7e50a1087e798035a9d488bbc12ad55b1d54081ec2442e6f7157289438b27cc2b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    075c00a84db10be70decb83fead6ecf8

    SHA1

    527ae05d726928df10f70bac49f15d76bf47afc5

    SHA256

    bce64a9f1c48e7a6e3a6dc6c1aef519e86c4fd2e03d04f59b724bbce8cde822f

    SHA512

    88f6a38b90b6e9f87bf9fccbcbe63c489709b8537246193079be979f4f49c03d8e5ff7cc96be6447c31648a3cfcaf2dba1c9a2a554008fc474be209ef583ead6

  • C:\Users\Admin\AppData\Local\Temp\Cab2676.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar2677.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b