Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 06:17

General

  • Target

    a429cb1a8df48a59c0f232bd549adbdf_JaffaCakes118.html

  • Size

    3KB

  • MD5

    a429cb1a8df48a59c0f232bd549adbdf

  • SHA1

    2edf59e39dc8b97aa5850ff4955c19f794856025

  • SHA256

    6f7de62c44adb65198fea30119f5ee67b1a3d6a744c05e9f301214c121848aa1

  • SHA512

    cb2c41512a5a2fdebeb869a951cafa68d478d05c9c8ab2489e8b58c0d1949b89569d1ce287941ded7007807ad5f90eca2f0d138abb4af90e21306fc5c1861dbb

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a429cb1a8df48a59c0f232bd549adbdf_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1896
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1896 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3060

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    a960e889178592db60463a9c3b7a4361

    SHA1

    5f93c96f5e61bad81ed92c7899502e17561a9391

    SHA256

    893a7331652c7780d85bd21f2f629a0a50e0a1223425861751764e3a940b1853

    SHA512

    ec3d65314a9662aeafbf9214f9e3c5d26b172876a93896d3eb17e3de87cca088b56f17c3bfff6ac39174df34602535eb49903da14547dc8a71efd15c57ba374a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f37e06fd6052bf1f139df23fe36ba237

    SHA1

    0fef1e8bfa3c6afad7ec52b58c48f29e74180372

    SHA256

    fe7f2a7f0cb623ddbf09918f1c5bab0d84189f6b5d6edbe58b2ed783527c2aae

    SHA512

    e905926dfe706caaa2e6720009cdbc6cc11b88edcb274759459b9af74cf90bb7e5e1e5b01872fb5c0f7e7971db2cf35aa28e4374d2e348e950e08fda141b0c14

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    48a32cb17ac17fab8decfc86ff6b7422

    SHA1

    c63c5279df52af2dd3146414a22cd1d3826ffb44

    SHA256

    7056c7107968bafaf4f8e072b74370c08e040bd1e743e8698cac8196f96534b2

    SHA512

    0299567b5da8ee33f59a8dce64cd4e6fb11e72158ee443e13dc35340484f72fd35dfbe0d9774e899c8c73660dbd2a9a65368a26c6bf588558ac581a743e76da3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    eda023c8aa43763e935cbd1b6dd5dbfb

    SHA1

    baf57bf87a20218c74c64559f7557153087f3d7d

    SHA256

    83cd2ab38cf688e6b10408098cea20443b71c23bda8d06ecdc453bdab786498f

    SHA512

    08016608bfa13006cc9b02cf98b5d053068c94d39436833ca73fdf8e873b09c6e400d1d157ec4e9864dc6f60713fcb2248535d74a993720aa7617e60ac9f4fb4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    65406ac2b03d3b4a511ee70acf09e3ac

    SHA1

    1d443c7b29b927aa524909b167de0cc7e99dc6d0

    SHA256

    364fc89eeee1d30aa6290d361c0f527706d6312e3450a46635ab5dd0b6b199a8

    SHA512

    8dc712499f11defa8c652d7ac14ee98773c69a3e73f022d30e7c7eee8be0b6d186f0ca4d4b33f4d69ceaeb93a0fee32904b2c142cd8c2bbb45295dd104044fce

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    962f014eb979fa4003a74d726622f3c0

    SHA1

    eacea02384b0d3cafa690955842543b51e6a5405

    SHA256

    f0bbcfb427e6f967b768d8153d84afba3de96636e6d05f84a8038af0cd28e436

    SHA512

    adcad8da8940077829d4d993aba6679b5d4932655ba5406c9eb412f40325c6d12e6c1dea6ca194ec3d38c07d1523fc6fc10e8292e34520551972a8020cc4bdeb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7e4b626418fb6db738d82ba3c0891bfc

    SHA1

    ba0ffebdddfb40a0f6fb1d1fe4a608a7b51eee89

    SHA256

    c2224f606f714eb9eb8c7acdfec7204a871c85d8835ee258e7be5d0c5dc99dd4

    SHA512

    f4caee0016d635f2c6fccfd114ad681ee3b6d024424d9f69ad9ecd9c6e1535c0b4e8e82cab1e1ebf1f361337f19992d775c0f4c0a3380dc09a88c67bd034e53d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2d975721bc7fc53492315ecebfbde7cc

    SHA1

    1a9940b5629c9d8b436c363e7bb3e923d5168bcc

    SHA256

    53f8cb330c727cc78495304bc8c9d93a5cd7e29c2bc290b6a9ae3ac0e479c4e2

    SHA512

    e66972656fec40b05892e9e547445aab8e8298634aac27c5b613fb9854232f528197c96a97c6bd231607dad282bc5198a308f6f0fda052081a5827783b5e5ece

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2b2bab81cf1b95abed67229041324099

    SHA1

    40dbf67fa9d59ecd16dd5b148e849f9cb66ac521

    SHA256

    3e368b5d1b637c63f67e3a2f4a224f37131ac7c3e8f8f6d6644991e5a66ae70c

    SHA512

    4a13e34399fa1c102bed617855a231643813d9d3a17b077a928b6d47abf507e9c890fa04632748300ebb69bc79735909e3931b92bd6f559b3c71184cf92c05b2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3d047525183afce79e7b14265bf649c5

    SHA1

    95f8e09e7e9a5046571900e68d82aea2c10f86a5

    SHA256

    6f2cac2e288e234b219109043a337134f8b82383426fe3eb45d30c44be5f0869

    SHA512

    becb3fb5299b408cce267d1ccd0ce3236c34839928238b16a7dc2317eb580c6474a2b97e551d0eff2d3a1fd36546628a6c6bf186c2c37067657f7191150a4082

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    121e24e7ca23ebc5294429f43bd325de

    SHA1

    073dc7c300779958d0e0f016db3f871e25e5b0d1

    SHA256

    c6b0f5c53ce9ccd1c1cfffa00046b25bb717d0a3d1d12e9148454ffc79b50929

    SHA512

    efe2fe025fb36c4d15cf68d0ac58f2b7c192b5afd9596b9bf8393f8d0e3c297eb35a862d19fd79a6b9faea00057501ff194d1d58b4782aa4a4542504c1c311b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    24081b64948c2baf229cf03183143d2e

    SHA1

    2f5724f85c1a45a2e6c45fe515d3113948802bc2

    SHA256

    f9a879c5199fab58bea8d1adec70df4278370417c2c5f98ce21d81933c19a414

    SHA512

    d105c56e28401294a6794c0d4059c9ca33a33758c81af60de1ac07e06b9247b330bf62e848b0d83c2538deccf518202db52117488e272b7960c6ba4663c360ec

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b2d0443a2d73af94dec019278b3bd567

    SHA1

    81262171b40984d53b92c120f3845b36ecde89b7

    SHA256

    e862fe8b351f84150ba0b6f013e954412d36427f78eb39baaf43b12269ce57e0

    SHA512

    b2f03b80ca2895380d40e968cd35a7c52b53828c21fbce9d2f4386a105ed6328267b5b76343ffefb9b9bc7f1f74b133416725a15ebb1b6815876fc73aabde736

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fbc0c3dae613982e38d655a322445110

    SHA1

    e0e2ca3b16a47be6e4c2f6168b85fac390406480

    SHA256

    7afbd280d6de7f5c1642e24955440dfcfa819c6ca001b1a008738d62ebfd606e

    SHA512

    189f33ce67af07ce0c6ac4fb572593735d9b3fd7dcf9d7836a616129c0e48b05b929aa35a5f8b8d60a631aeccaa6d57c5828169ad9d62aa93c42f60cb7bbbeac

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6e0e2f0b77f9538aee185b3e084943d4

    SHA1

    aa5ac61f25551ad439696edd6fa84be05b9defcf

    SHA256

    04e839691192fcabdc87a5eb9275a563756ae3f9f99a8b3115a606050f05b27e

    SHA512

    31f6b4a8029225a0e3ae43cb7c8c7bb4ba541a68ae2d29704ea33936d5f53df8faa01aafdc11450853f04f182ef8b42ead6974bdc91d13cf5e6f920a996f0a40

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2c42a1c615f1147b277d42875ba17ae2

    SHA1

    be73861218f2dbad0678e1daf7bffab63f1e5b49

    SHA256

    fa38ca8528060794a2ac4abb13ffee7a8063740b0bb6d8c6c914f9b98ecb4e3d

    SHA512

    fd4e86a818452f5ca0e744c6d6280d2650a09ceeca28aacd2c4995e256ad0d308a6fe2485ecf4fd94630c86b6745f1d766d081112523e8ebe852f120ee968644

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6743e15ac2412b9c26fd7e18f8602f7e

    SHA1

    f5c2838703875020ed850db25228478398842516

    SHA256

    4a5a616785597137925195de12ef915a44cd5b777cc1a782cbcaa9afff797d5a

    SHA512

    76a06fd908fe618d0d13c6a638a7235703f57ff92e00fdb7df1239e6a494b7f429fb7d5457a758a6922372b0472e56f7f5370b7dc99d998af0662efcb969f11f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a8331e4405a8dc466f84235a1ebf20c8

    SHA1

    6bc0e9d3fb75de7d815d573aa4cde93a3dabdd2f

    SHA256

    dc9f297b6cfcd08002eaad364ce3cd28c1a50060f1ca2dd912c5c1d2a076abc0

    SHA512

    93e6f60e04a571d7bdf129169926ddad7a57b771c1dd780de40a6b68747885cfce9afec18e7ea8ae7f16e8923bf902fec6f1c5e3a8fe104ab1912ea573cb1eed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4f8cc6b9376b9c788dba11b2c301e6a6

    SHA1

    dc754b48a3be710f5b21a62d0726db25763e2597

    SHA256

    f3730a22805dd16fa4bc48fda91f2f9a2906ddac8a4ca31647f7302f24c66bd0

    SHA512

    e06461ce5b2ba5ab1493a47e3785b260db8f65683d09e00e513238b0b94e928ab53535d962717d98063d4a39b65ba74f3d2dedb638c7590102f402b8d86d8cbf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0893e8f11f89bcbcdec7bbb412c2bf72

    SHA1

    117be32f9d9ed582b2e80c6ba0dea929d8f61771

    SHA256

    eb423dbc1ad1da87efe2d4c02cde01eed1962f81b650c52f3ad8ca55f54a0648

    SHA512

    a75e719b89a39f3f8b9704099f10e7282f3975840bcd225edb83492c941535a3939ca0e7bcf0a705c45d5c6d0de2f44a3dc4328b89d40e933386d3e20130f932

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    65b29ce8ee8e3ebc77831cd6fe5453df

    SHA1

    164f109e48b33bbd367cec2177a6223352d6e479

    SHA256

    83b8bfa6eebfea0bdfeba3fcf48bfa2cad127c1c77bf1d8c76edc2de27357fc8

    SHA512

    9b51aa89fc6eb29f0b92505fcfc57ae33130a96119bf338feb0500a60f508a5d89b7f526b787470494f31ce3cab4c6f664d2799c5f4fb34f8fcc54cbb4bd1bb9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

  • C:\Users\Admin\AppData\Local\Temp\Cab1E5B.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar1FA7.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b