Analysis

  • max time kernel
    118s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 06:18

General

  • Target

    a42a164f638bf28a50e03e3e49f5c3ca_JaffaCakes118.html

  • Size

    17KB

  • MD5

    a42a164f638bf28a50e03e3e49f5c3ca

  • SHA1

    ec624e230d8ca10be735b70f3ad5628fb284d529

  • SHA256

    b2facbea68f871ca80bd5d9a46be80a32c286a24fbbb5dd7d451ca06383837a5

  • SHA512

    c34afa1901f8ecf31728979d6147e1fce06b43a5d66226bf8b36d5d35351e35c5e6b924c3bbf4081093bbfc22733160a7a53084ecd6b242313a7c8e940f32078

  • SSDEEP

    192:JUhTnHr6urTnTTnqJ9TnIhcF/hAB+bTneV4vAZLItUvWjVaEofNRTW4BRDeOSVM/:2zgAIOsVaEQDTW4REMIgCaUU

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 8 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a42a164f638bf28a50e03e3e49f5c3ca_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1584
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1584 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3064

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    292577eb8f15d5cc392df0f1143ade65

    SHA1

    a0a4be7b320c9fa6011a4d4ef987ea746188926c

    SHA256

    71d2a3977ad298b5726e0be1763fb2a337b9349edefb83cc535358ecfe3c5bb7

    SHA512

    b0feafe8c8217add8ccaed4bb325029ffdf8e8c98f68cae13dbcd1d4acfccac1a4f55d03c5ba2383abcbb1ddae73b67269985306fab28aa8e5f39ac269dd2b46

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    05f42d1ae901d058f4b652874e9bc8a7

    SHA1

    e70fa659f7f583f128c487471e1df5f15ce6b31d

    SHA256

    299543d5b3cc8c2ec1b18b7800ae7d8aca08b90d183a3903ba10ca7ee3021758

    SHA512

    e9901e85c42cde7a6a87bb6d96084f62080c28cc37ce57b3b7418016995f7166cd13edaabd139cd3911396829be08dfd02945b3dcdf3efc578dfdea88ec0a1e0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2e6edb800bda89a077420a09b7f1c687

    SHA1

    8f4a2a394dc39034d86a6b3d3d92ecf2846d521f

    SHA256

    24691405a2f454b6e6d16341c0fa79242c77d87a3c7c2b524227ca0b658f375f

    SHA512

    ce6a05edbb4084ef31d82b515a31c60c101b6c991d852a53234993919e8850ba4f81d6e5079e066f5fe34d9efa5be95b21ac9b4a3cb7fe756935805139e9b5c6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bfdf24357fbb755f51c3b57d619d31b8

    SHA1

    d53360a415c8e9183aaef2a154eb108cc1506a0f

    SHA256

    fa1bb78017fc023b5c93fa80445740a362eba07a78f50355c234d30fedbcadf0

    SHA512

    e715f697bff0cc85ddee5ccf28740f5e23ca1269c5079429c1d364c7cbb4d6aa87fe145be3e499f1730a10de78b168488e624e4a2554133fcf09e454fc3bab6c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0c5514f665a0b960cdac637db9747a3f

    SHA1

    21040cad76d5667ee9ee8ad48bcb50f5c1970a81

    SHA256

    9c33869810c04f03fc87cb3374097890ef17f091357e7568996e27c286e25af6

    SHA512

    0d3f7a120e0ef70053629c2af6e2edbd020e021fe8c275bdcd45a306677da32674aa55dfc1c2f4107b3adc52544e8f8a0346699c29224525a7084a5feadec60a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b99bf3cb92044ee841837fb14f0caf40

    SHA1

    81a0deb0be9e8ea4d95cac49199e4694adb6c592

    SHA256

    37a4fcf4f7350853617542592762cc77da591123f93143dcb3c0adc08297b279

    SHA512

    7c4ebba2114a28d8a6d0f12814d56d7cb16e7fbc332844fd6d65606d0a69aaa179592574d546b180c4ad23c9a322ea1d18630d1634fb10126f87be61e71201bc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    93a2e8b0928ce106fa123d9186529fbe

    SHA1

    c0c58b34e6e6843ee84710cb78f70265115443b7

    SHA256

    6d04edf2cd132980316a299f9984a18a797d71e31a7850423879b7dcbecb7095

    SHA512

    f1d51f5bcb63bea199d4482777e53884e2ca535ed2258e59da968913c5b230ce962a3b33a939425f38cbc9ebe361631e128c4b75f50a98e095e0eb340e124c48

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    afedfb5955bb010b549909dd04e96c3c

    SHA1

    8943f827b69a7e82c29a95a4da34ff986df40f0a

    SHA256

    b2b8ef61db33591ef683cc8cfffab2a8dabb0c347fd0ebf63a315371e2cd3f8e

    SHA512

    75c8d54de01402b2520f049f7a3d40c9564a3c52f35c1a87b6607c9c0e0a0f467c665b0dda4064d26728508f317ecf84f59aed942334c70f4ff7cb8348aa48be

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6d8a7a0de96fa871872431f266b2e4d4

    SHA1

    efeb98679d9bb31df76c9194291bdc894e0fd31a

    SHA256

    67eb904b4f211da51c001f3b0190e9678d7718edc832f4e526c370cf8d33aa78

    SHA512

    609e871a61430a9f669f1ecde4fe5e8b2198b89bc562b744b2bb6bcd77690498046eae075214363304b37110575def220bba4095c4715cee2dea160b88c49d00

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b4e6d7705d799bd521bc975343fec3bd

    SHA1

    6bd1bad87faf36a6889718f7b7320a08c0d3b274

    SHA256

    54045e23610cf5979ad3f37d3c0329a48c092546b0a7cc756e265d0985568201

    SHA512

    649164867b9bcdd0e257d4ecb14368cb9f0d759225114f4cabf1f75c731658350741b1d731933a7f51cbcb4c3d56a0de8c6a2ce97c9b62de02e67b0d3a777511

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bad77edf2f5d2fdc0bd8760e26e73bd7

    SHA1

    dd3f7bbfabdb4f57f7a9ee329a36c8014b77d15f

    SHA256

    096e023b30efbe2614971e5eabbefe2800245b858e4ca793e2a086240baa94de

    SHA512

    9707819b1ab888aca2d15ab1a2cc5e787cf1cdced5c55519af84bcc7aa6a1023adcc1d9609b7b6a129ffca5624d5eb749c7a1927ff404e9c0b827f0d48407f2b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f109f6d974de26d933cac4d36c2acae4

    SHA1

    8d08dba21225edef9eb3480014e35a2cb4524695

    SHA256

    ab2806db3edd2c047aff066222fdf76548e1636496d33c102bf57dcaa2317894

    SHA512

    af7b97c796574b712028381ba17213dccc4418303785635a65255d393593233dd128aa0b426e75e0168e5270d94a6a933df59e2e9d08b4b574192c08233ce14f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    64de76eaa57fc1960834b66d7da527d9

    SHA1

    1f6efb5c797a47562988695bd5183018b9b39ee9

    SHA256

    78478acbdeefec5230abcbd352d049b46cd5ec8bfd9a043f73099c598e2aab73

    SHA512

    c2f637f91d804d0b86709992c1360758169987a8d07c9a42b34a07dfd67d986b441d08833afc419f5c2f03d368502e220e76360f743b926e6f0652b69c1de34f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d6c23bbf0fbf044169583b265edc63f7

    SHA1

    ec75cb87df42c10ab5cf84ab8a8b66d2a408c6e4

    SHA256

    8e1c4f84d4f8b5379b8aa30d5f3278f57ddf63e987e4901007f896c559a33895

    SHA512

    c1e2152e2d35f3350e4eb08118fe8083c4beafc6d2f29f690ade5abddf8c35debf24ea7fc5aac1bca65e09c947a9ec5f58551a915c7455d2eabfc8823f5e9bbc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e4f69227d61248bc8f61e0997edbae06

    SHA1

    a383c56e1ef532edf42cef4373f6a2172f78b616

    SHA256

    77a91e4133521929d480e5963315b7beefdfee9d7e075860cb43a74aa894db98

    SHA512

    e5823f622ff2e4d09284b1e82842fefc5b89dddf4df26558b29c40e94fd16950f1ca2e61bc887f45aa249842fbe778a7c77967b3dbefbe51f48acf0df40a4dde

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    43bf22d47362cea29ea6049081903f06

    SHA1

    1d8339144844be66ba193be88ead0da1ccbcb4b4

    SHA256

    1b01484ddb8472b7283b64f5f7ebb9a18ff949ecee94becbf89ab760c88913e8

    SHA512

    75befe19efdda1d1d72af1aa23d565d2ac02b758c68125d24f447a2c3f577dc3961136fcec3b43f5e8a2b7a70fc161966f93090f3168ac746fea6e98199d8b26

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ead70ad88677508c1a0e9caa95cf2182

    SHA1

    4d00f3b5ffce50fedba2989836e6cadad22a4b6b

    SHA256

    55247bd8766ea7104313afb40f7b600c711827b27aea7a4cb1c066adb3e7be6d

    SHA512

    9c47e4036f952fa3b24f1a4cc30c2a30afa2d18b10f0e0a1d8c31de2327c5fb0bc3dfb0a3501abba76f26a38c3a4a41a37f7ab6d59bd04148f79caf8fc276bd7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3115b313d157cc8fdd9345a77bf81faf

    SHA1

    fb457c616034cab31ff8f0616783dc4a1a455440

    SHA256

    b1171d581125a25c0631fb614be6359935b219211807adadbb33042c17923f94

    SHA512

    e1f0ea7713f49b0ddfad40b6eb7bf1179dc4d1d65cbf1b19b89d2ae342b305c0e44a24d2817de8158752152f39aaf11921989da00f1bea88dfca5090cbf63aaa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    38bc4dc19fdb2030a0e113d6125a79e8

    SHA1

    5db11fb06b4997630f75b93f2e8af06a8b17b8ac

    SHA256

    f84dad495f1a461d65e3ce9381fe8582f2f09120cdc4a99eee8f2945148ac2c3

    SHA512

    3fba8fa262a1ef3d8d5968682ef6ab093ab32b1739d5127e76fcc4a082a9543f6275c0a7c235eecde51d50c0ea32d362ce1776520e0814422869b637939a5c8c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    029bb0eb08c3e3e97f23ba3952000679

    SHA1

    8325657879f67a4f3264667ee27199d2abf21ca1

    SHA256

    790daec3ed10ff1776dec744cc50973a7aa05b91137d8881cfc62b80b3f29b15

    SHA512

    136d5b46977787c6f4df0b62e67f2915c16092dc97b7689b0d49c87ef490c5b2e274908ce2eb011571982142ff8dd487258f252c98221e26a4c857a69aa9b8cf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f00be5cf43b81e29b7a2ddc2b7c2bb44

    SHA1

    05536c5fb54023d56ff2df640be93d8e2d50e771

    SHA256

    b2c53fd4897c5de4a7f22ec5150a898f08338a2ac6987cb0f84fe52714108eda

    SHA512

    4838c55eeb786420d14c8982437bb2ef2ea3d7fd96e56bef86523e2fa66e70a19457df03d69fbc62f43299dab28b1bfc679b7f5b07ce4617f218039faa47bb78

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    627be7c054659405cb0fa459669ae87a

    SHA1

    cb77513fb91268b28a418d8f3b06fa3ea0c78c70

    SHA256

    6892dccdcf6fffd2a587345cdde1b48ff0397154bd8609ca25c75a1f909a51dc

    SHA512

    f7e15731f5f0eface7f994b02d5cdf4a7cc5446e3a4d0c63dd0f95c09050712f77c114a223c50af415ff1dcf95052d239e35b732c6a25e76072b015b51d94803

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    82bba204bd2dd7e83db0c4da8f6fae05

    SHA1

    e6b48d6ba94bdb501be26d2edf22780050c86c4b

    SHA256

    1052d893cdcc2f134cc84e0026c950078ba2ba1b9e6ac0ec74fe6033b26f3270

    SHA512

    89485923a62b2d82b5a6daa51ca2138484dfbae2ae41d578f5821470176b8508bfb75519f991c351eb683067f3b364582f2c5db04687cadd5ef89e1ed45c2fe9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    9a896537863b7cbeb69ecb1b08c7fc3f

    SHA1

    9fa88edc0230c415407432900367f5590f9292d1

    SHA256

    87cf66e4bf8a2e16ff74962e986a81a27b29e13e31a4594a000455d4f4e84619

    SHA512

    b9c6528ca96ccc1d5c297be84e83c324cd6a8cdd926f479b37df70b7dbb581396d78485bdcf410a5671339256307197fe15323e86a4c521ef86f6ec4453bfa92

  • C:\Users\Admin\AppData\Local\Temp\Cab2ECF.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar2EE1.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\Tar2FB2.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b