Analysis

  • max time kernel
    138s
  • max time network
    152s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 06:18

General

  • Target

    a42a30127cae9ef973275030d8f89c1f_JaffaCakes118.html

  • Size

    12KB

  • MD5

    a42a30127cae9ef973275030d8f89c1f

  • SHA1

    3912f1721271340f00c20d77f608b96fd8526921

  • SHA256

    5b41aeddcfa2549a8a1aa90383adcd4621346284863026493839387722269c38

  • SHA512

    b0e40f1afe20bdcb2d0656602ece764781638be654eb2eb52cc39eaa0f8181349fbda2a33b0dd43bd47fa89ac677d2036ecfbd20fd1899f29c4e6c58e0cc01a1

  • SSDEEP

    384:SBHnMLvuiqf1dHs01HQFbssJxMeuwqs3DVtJXzn:SdMLvknHJ1HSv

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a42a30127cae9ef973275030d8f89c1f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2100
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2100 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3048

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    505cf9d6fee8b3a800399fc1959761d9

    SHA1

    1c25ed1189bca24edc160ce6b88ba4f217a7a480

    SHA256

    36f9bc46e0314f92de7559a039d39f08e78cfd8fc7b60a57b7b21272b4d50dc8

    SHA512

    4ced69bfe1ced77f00e174c47d5e40de024ba75d45d3ebaccf0157802a21adeb05afec6aa50c8f688be049f1d17c4e7c9345a41b41d9927f4dd3adbb67a3dd4d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    48787c9a3dca813782b1ec2370c83fdb

    SHA1

    383f129ac0670cd9a3eb3208ea55b560846f02ad

    SHA256

    1da03da9aafd5cab0c97a9051cd769f0163e696aa734612863963380b674a341

    SHA512

    e795ddc93286be4ca72386ad6eac01b19b13ae2f21d54978674fe68c73a6b2090ba22ef52c4bbc3b4974bb1999c606717e0dbd7df86dda863998d87d481949c9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    921ddd4e1e8ff8e29165234c69a69b10

    SHA1

    d96849d6808a404915903be4f6342317620dc44b

    SHA256

    7eaac3c6f737b11b999fd4731fa07c6fd8a2bd08fb0633f94cd7be84c3e9dde1

    SHA512

    b334e390c806f6232a5a56ca46694d1a6d04bd6ec207c05eb6022ea4d199f397021643c9abc181f0cf1bde1f90d847b9b413ad82607be18cdfce4f0dd45e780a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    044c594bb501f81d447e11458d2fbd87

    SHA1

    464eb9522374a4469ac26019cbfa9ffc32a80c5c

    SHA256

    8c07f0fb446b53499ea5ee991fc29d986f83da789b338b931babe28f96e85921

    SHA512

    7353fd49c38b99cc71f6a0c06efe18aa625fb3aa3928a74e8d476cb2891ec1a3ab388d7860cd31ef828350f379d7d39d0e8cf539e3603a6a36876048edc9ad6e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5e4090f05fea10313ecfbed2ad0c2d8e

    SHA1

    642cd886dd58c7036ee9cdf1a07d51c78c424f71

    SHA256

    6254e9e1d063164362835d8d6af7cb649d0300595f444a2b2d01190c18247a53

    SHA512

    9d86fe8778b07b03e834c70d7ceb73abce19a284626b205301101b599df6d1e99ebb38424d24b5de839894439cf53d629650d481f09d7eeecfd773d112c1cb38

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    16d3a46a6d49427a3227c8b352b80de0

    SHA1

    f8e0f90f39898805dd1d710e565769cb1a7ba7a3

    SHA256

    b62f804e31d1eebb1c190319bcc0c6c8b7aa404e74bfd36b9b452bb4178cff59

    SHA512

    bb37f9605ac0ee321450fa4e169a57cddc1da2add3adca02b87e9b3089da6c68484cd237ce112a62dd5a0ec308a17a359000b5c06d6be186cf795d33f733f91d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aeb602e4c379acd5df8dd50dcdfebf9f

    SHA1

    b53fdbccbdd124390b8af39320c7a3b82b5aa1d6

    SHA256

    e8d4a48dc83addd95d1b6235cc13aea6815350b316f9df2a0cc5e16d1c5972c1

    SHA512

    ff52dd26ca452590b45bb6af78a06346e5795522c923e18d49208a5e63a0544ce45ea972f4b7e7ab0cf0689206f6c0c1973ed34afaa7dfa70fc5f8b3dd92d7b7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    39f574ea100f326018e01b7ecae0b2d7

    SHA1

    631778e8764bc5871264b3d135550a5e1236f10a

    SHA256

    b0ce3cb88a8a03d00f50d1e318655f41fe5c2fd00bc942a642fe313a0faa31f0

    SHA512

    2ac22ed05eb380bcb728188415e9b4a519560ffd19dee6390e1e791351d752239ef56d89d6d4d7008645f898e3d2c77f6da2c2a471d9d2b4eee665c0584da008

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c45d578ce2d892640bfd1783d6d3f8c6

    SHA1

    350d95f9e9ed1daca184d1a6ebc87acde3aab167

    SHA256

    a66b88b91400721fe3196da3fa71ae6164520eb16afa5dcb655a957be4b67bdf

    SHA512

    ce59f4551bb5a5c7af30fc82029d0b33b020bd2f44068bf6815ae64f58d4b7312a1cdb911e6f67f0e0cbc04ba627d114ed92664c8fed826b87590f2a47be16a8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    49d4a4e82dee37f4f3d6775d8c1f81ad

    SHA1

    b4a98c72cbc4cf8c9a97745d471c16eb51c757e6

    SHA256

    f6ed78be9edcd0917caa453979411774ea36c2c4b5bee31fec0c2a06842bb6ca

    SHA512

    7a01dc1223a0e1c9fbd8a8e45b779f60a45ffde279a183fc3d9c08206189be1a9f449caf5c013f40ffeff58d56b1093d5e2328b42227632a7a354f46e3be0e46

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    10057cc1e7680638a1b8e837655d53cc

    SHA1

    5ef683888e44d86dfb6f3725119263d285140ac6

    SHA256

    a0342108b53092930aa4a153dfe9a94e8116e4555c88bf1bbaebcffcee0909cc

    SHA512

    dcb0be0ab73f59e74232bfae95f5bd853a383963312fcc21adcca28719ea53289ca8b59d1168cd3e7cd5fcfce741cb057ec87fdcf8842bc1cfaee15d787eaaa6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a8523342a880bf68218d2398bb730a6a

    SHA1

    ffc5c07edcd9ef971e400b5babaa7423bea84554

    SHA256

    7a84ae5600b07d4c231599337c89cf3566dc936e051585a8b06112f4549894e0

    SHA512

    7144c9731b524f8528a33d7dcf421ba8a7161ce29ff855b35883a7dc8e3e10dddf711c278145183da817f96b34765ee19061a6eb6adad5e5b101080c5206067a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4910e18f53161ea91b59a0016f2906da

    SHA1

    3a154ea47eb8bf0f4bdde7b0a46bfa53b49b48dc

    SHA256

    e2d2fd2d69995b06f1fdc268382ed3443f3e093cf76f67f6a940e1e4931096ab

    SHA512

    784f27c69f5082bc506d6de35743798e88cee612a3de75298028962d51d5fba6ca294ec3132ac6bb135c7e31c02f92e28b63306666cd315ed0376ecf93c40867

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    be343012a10115eee26b5009efd5b64d

    SHA1

    3a54ceb6ab3d3b128ea1b28b8713906801115b1a

    SHA256

    dc270952a012e558794e91ce3d11c403ff701e66807bc27c1a3bbbd85963d1c9

    SHA512

    26e795fb3b6f165064c67ca2c4a09f0140d4c30a57e16c771c190fcf7874d700e82de444f309cf80f29de35b22d3b6d52e138263cd4c45133a3e3140377bfa8e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    51763ff0a9e3864de17705499b5b1625

    SHA1

    bfbe4afed7666489b384a1cd0202c6fd177c909f

    SHA256

    d4728a73a1431e412f4d7e4d4fae0e86b7f67a6322719e1563b73db39780ae62

    SHA512

    0ed87cfcad88c0b299f65e02677f36451813404ae9a1bd4c339149861bc1d73e703b0946200c586fffae3923f2e39407678396e9056ebe02a07ab3da2a59c41b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dfd2a3a86a0eebc6daf73382f309fa62

    SHA1

    59716dfb353295e9b710edbec62f0cc80906b3c9

    SHA256

    6afc5a1a37886da16b6ed1108462015108fc5962f5aca623bbaeb1b704cafa0e

    SHA512

    4e1a461ce1cf9af7b8e794ebf74118ba61f6fa776cea0281a9f22fafa46dbf7dc19002a5d93222053c016f7bcd832339154a70ba5815f6417c36e24e6bacabbd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1a7fff1e48c9b09413c0e0ab0be87f19

    SHA1

    761bee3f06210ad286e47bfe674339612b8a05dd

    SHA256

    d823689f91a6731bc46e6bbc9edbdd9ae2703e13f8c270073e9bcb9ade94bbc1

    SHA512

    b57a02b2fb2a707d6853248be84fcfa7a6bcf50b6ba8b7a094b657f2dcfdfaf6b032a48752435f186ce09cdbb0ec333e9baa050a6aeb0fc16316232a430e5604

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d35af73c83b5a865d9041c6a6824c848

    SHA1

    bf2a9a14b16e4c8cdc3a5cbf442c65ad30769a17

    SHA256

    50fd33e53fa979b56b3133c05bd2b88cc68489c9a731847b64353889f53c13bd

    SHA512

    96865898f474595ab2816dcf667b9c7496369111b89524e88376b2d7c538e5c8b57d07c59808fece0cc174490590c6dec42ca08fca5339ea783b55668a6f993d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    58f4044bcbf98a1b60b1b38fb2cd3586

    SHA1

    b231f8f268397bf4db4a79e7a21437beafc670e3

    SHA256

    badb5d84eadfd9d2b681bd6c982cfaf953b6885aabc4f227d93285c8125f0e14

    SHA512

    f26e8423d09ded289d3e7c8e6578dd98c9fbb4c5cf163baa33b884252481d2893442bc01c39a6d5ebb732e24471650bbaba8d44ed4fe6f5a68785d7600ad8a7c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9a47d8a0e9e50ed5f6d38b713412a2fe

    SHA1

    1ad0c8ea28a682176da6f513e90d87238222ff7e

    SHA256

    28aa7b95e30c8bc6569c53e04cc9e317f96ff7156c2c31f8c167507efb709caa

    SHA512

    7033cff0118a0c708f8d6c5db900171c4a73cdef481f6a47440b7649df43d885c04f68c5cfd33ecb654d2ca827c304bdc7f877e4e077e7494161dcd02012a26c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    401dc1148b9d096d8cc37a9c0be365e7

    SHA1

    ef67ccd4e173cadf490180ebaf9b182776ff1dc6

    SHA256

    da5b57cc094c17b36c210cc4b3b480595cd6302aa35d3fd198f58c740fe198ca

    SHA512

    04a9862b46a7cf9ac290ae8de9a10380a71e68877115e2c61ab0e8c73507c39922ce19e3d23e28dbcca62b0823d097ca3e37077db5e050448a8546cbe6a8a64e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3a1c77e7c232a4a198f57ed933681e8c

    SHA1

    b9c14f901dd50a0382f543b9541f7e2330a5b80d

    SHA256

    eff2b7a930c97824d8195128dee58b2cd7930e23dbf633b587d5d4d852ab4a45

    SHA512

    5fbfc247afde99cb3b0dc6c3db763ea81b62f8fa202e5a009816da94de25f284cb85fefa9a9827b1c66ebad2715240019148f59312c1cd731b7af90eb91df91a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    709b2b81c57d6b2187edb7956745b600

    SHA1

    5b3cb99005a452767848e08e14a4f754ea34666c

    SHA256

    ebe833eab7fa6d65775e07108a364dceef0df468e8ecc943bb6ac80d1aa32032

    SHA512

    f8c1a30f36c39222b84af1266bed96e611e678e69b21aaedc396cd2a1900e56fc866cf2fd839e57aee10b3e9e51114d42cad7fcf25aff78d7b8a5b63fae46447

  • C:\Users\Admin\AppData\Local\Temp\Cab8DEE.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar8DF0.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b