Analysis

  • max time kernel
    136s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 06:18

General

  • Target

    a42adc1b51abd5ea20cf46acacbf766d_JaffaCakes118.html

  • Size

    139KB

  • MD5

    a42adc1b51abd5ea20cf46acacbf766d

  • SHA1

    5a78c5b3ff6f7c720c16092c02d4cf4730eeaaf4

  • SHA256

    7dfecb34fe316795d577ceb7c215857158587f2e748bee5be0f4a75b779fa192

  • SHA512

    85280fc87089343a80f0d6676ce1606223745153f6ad8f96c636f96ea3ea357db35046fbaa616b6d9e58e6bd68e8d26144add3e5dedfad5796e6c7996d89f901

  • SSDEEP

    1536:SepN8759qblcqyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJruH:SepoMaqyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a42adc1b51abd5ea20cf46acacbf766d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2368
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2368 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2300

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7ca31f70df199f8ec0177c9a0ca16a01

    SHA1

    50a0b64ddc2237d976d76c6e44f5c53ce04bf45d

    SHA256

    373f2147af14d3d18dd035aa122e5400ff2615b74ed6c9f873bc611957a7be33

    SHA512

    3ee52f3811eda5950e792adffcc574137a5afa27967d50aad6a232bf2120d72db1f6ad60ad5dd3c1eda211087cc9aac1d90b3a27b35ff2601d7165e261aa6ca8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    00e2d41520d17bbf574138d295033ba5

    SHA1

    fba0f7e95875b417027a8db47c43ddc70e4530d0

    SHA256

    a311bd73c741fd2ec887cdd5a31092fcb3024a3b7f34b7bf83c69c0d9fd48a73

    SHA512

    0e8b367afc891da1be57329700f2c7d099a02f148040fa6c89af676de69f6c770b8656c6c905e1f955834d34b9cf7e48d97f091b784450ffcc20bd1461f80a15

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2ea492fc35c061b9e7600d9f2115e1d9

    SHA1

    f813a3055d5adfed8b190a647a493bf33e774bac

    SHA256

    42e3366c66882ff0d30048f54279aa4c56133582360aec2deb521c656ac6baea

    SHA512

    46e5ae50d5f1c97bcc9982a3a54739e7c8c3db04410f9b0fa034d0d38eb669664e188a018f2c19bbf3f02b583e412e15cfcdcf69769c69b60220a5b76288e359

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    154d51d90444f20dc53ba6292b79c680

    SHA1

    4006db0c8fc9c02a5c5b1842d361b8f6c5aaf4b3

    SHA256

    859cf95a3dd8a407f8f3e082bfe6dce97b599ded7bc0b3b1875211ecfd254a64

    SHA512

    dbe458326b15a7f128491bf38b0cb497134054d2a2cef2c450ae879865c19a674e71f2a18ed7c3e7b421a56aae822d25b70a2aca945abdbbecaba73a10883227

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0cb3b5f009b97bacf03ac413312e15bb

    SHA1

    b46ef9851c2140b0267d26a87f121e773764bb57

    SHA256

    09861e8b38af7c83bffee9dc5bd19cdc74682d09cd24598bcc1a52367399c30d

    SHA512

    6309e18360f6336f5adc3d0c4ba664a0552f59c83db6883cb3e220bc5cc11d7ca923b2646ff7e0ac1149963dd996a1f0634a444db73ff079e4978a2752dc9f88

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9d8794971712e7458919d90941d39591

    SHA1

    242e46555a211c62232583a7e7c6dabd960c0067

    SHA256

    4dbc9b752a0c3f8fbf93d4fa738c75080736e9fd47261fe27f00b5b9dda8e760

    SHA512

    0c4bef1da56ab9457022bea9f30b90a2706349f853ed13d06d872044dbef30e7f6279bd613c15535a4adfd90c4e53d192b86a70a77a240cab07e4ebbed749772

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e14ba6991bf503c6ee4c5b2eb14478e2

    SHA1

    85530b905304c6981753304f2e905e484beb2086

    SHA256

    1337bfe48e686e9d4dcf1bf2dd1e2696bb6a99e4bbcdc81e9f6848b431df80d3

    SHA512

    0881f8e659d6a7c57f2345ac555c7d03d1e1737ae13543eb5ef0289225938fef12ac0829d1831656aab29ad191c1f12395db9915c84ee83b93277a30cbb713ad

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d7636d5a21bcdcf22b8bb370ce64e58b

    SHA1

    24d7b25d8aaf56dff340870a5d66911f03ae73b9

    SHA256

    8c5af347868864de86a371a634b9231b1d1378061d68a3f9c18a28c66701925f

    SHA512

    bd582ea1a32c0a2f9bad5c8673a3de94f512a067a3ec51ba334f686e490e101fad4bcf325069a0952f3081dc99d814de403f4535dc846df6526779fd602fc9e2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f24dfda9a149330cd696369fe94b392b

    SHA1

    d685e131741a14d93671d52212c586e5e2c2e908

    SHA256

    1bc28ef845260ec05bc41fc0d127dfda1bc21313aff53edf00999b3a58fea2ff

    SHA512

    7bced4d44ce072d22a745e6e28ca5526fe0aa99850d9fd77faf7e326b208360803df0676a9e8532100264f2f5ebdc69a3b93b989737aa5445dc5473c0800a19c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fd8c5bd0ba2bbd4daff56bf50e3c5a21

    SHA1

    1935dad4eccc300927f739ab88f1a9bd457e63cd

    SHA256

    d00470656a124a3ba7e317624ca109d0eee3382cb0b40b0d04a48a60848f17c0

    SHA512

    e569cc16c1e53d43da681e605c20095dd277b612a7f30105b9c761c6ec7003f332b4d3efebcf6c4d114eaad041531843e00434448c16b668e6939c9d97dbe264

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    930d3f4a1aba34274bf14b77c1863d07

    SHA1

    7fce481c130b24e653cdd31c3eb59718112431c5

    SHA256

    0f5f52f445d52484cddc88b12dc7ac3222b62dad8a57299f4be2c52fe3ea4f5a

    SHA512

    76b60d58efb9100f33ccb483d1f8e31a0213ef4c8a0560937b09aa9ff2fa24064db6c572d681bc7b2e976392cbac2f27d8e2bdb7e3e65fc160ea5e361dcbaaf2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1435b2d297d78f3176fdce8bd55d9c31

    SHA1

    204311deb4c33afe14afda7aa9e26f31e5fbc19f

    SHA256

    dd0f318bef6fed44ad22643944147269d4cc35a5e9eb46233de49d806b8b123e

    SHA512

    a189ebe71db5578ff332c2a420c8bbb724d0bd76c11aa24a1f71ae7ca7e794e29283ac390357d814ab7d7b5a159906f27b6ef3960b82d811f885df89bc866445

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7d29830094883ab00d91a8bc430cfb80

    SHA1

    f4ffdb780e87eff487a623e847247fb35ae98956

    SHA256

    98e61863db6ce3bdd24869e688ab672b916ca728d0c4fcf094309eaba299664d

    SHA512

    e02e4c1e8acc7c291a9d3490b16b8e82f4e671f155afce22923bad4891315fc4d03abe62df99c256e093f4ba6f23668d9c44261da4a79d4af644a9bb74c27508

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cd1238c4f8776771ebeff0b5f0a92fe9

    SHA1

    6e5a868abe33b51eadc1c1a0445f728d897d690c

    SHA256

    a7dfcc395716843c0e881a15cc2cff87a2df3d99f686f60b6a1f327389de88d9

    SHA512

    b43c4a7a79c5950c90b12bc380dbe9462691cea97cb317bcf31b4ed402d83fed6399835dd60b36dcceab7e4ec1863eaa237119ab6fa4f4945f52b185f16ee32b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b23b2e677e9730023169cad404323f82

    SHA1

    d5aa847f1fe8c7abce7ce4405003cef9f009c7b1

    SHA256

    e76a38cc723c73591c7ba66c0482208a55e70ef263206a456f10579eb781a386

    SHA512

    8c7c7a704e82dbc7300bfd73df0bf32c2bac611a4b81b5282bcfc5e328cc48b893292aa0f442b65a8026337b97fc109f917e4b766e29e758a062a3a658c14e42

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ad11d1bd60840ad3bb8b5587056b514b

    SHA1

    914314b158aae6e31718d7f9ca102874e77a9fc2

    SHA256

    c9f93f27637f81d7971ab3ee54363bc0cbbc4dc614d1960cbf15d134659af134

    SHA512

    40c0ff8ed2d0ae7dd05f8ef61affb7dc7c826d91c51a3dfff19c29400db3910e0a9b4bd0bea93bdec5ec93ae8bc0eb835b031c638836d06aee22cdd7b3f72063

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    48059babacc4fd3dca24b1b521cc075f

    SHA1

    a7ee22419ed49d0789bc3d8edfb8410baabcecec

    SHA256

    d7b321d9829fd59f7cf7892b386ee1f02e8d08037b35f17c6003b5b6ebd41456

    SHA512

    4c9a49de59df52d5c8e88df1d4e938ae82e9ad687cc7fd7160b4bd99ac419f947346475787812d2e4083c4e2d8ebdebe0af9ce6a43999707e81e56ea269049c6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1edf6606d8bd3e33ea80d58134074c1e

    SHA1

    2265f51f5d64597a573f3df62df66ae6c94c6fca

    SHA256

    1d8e466c4d396957be7820c0a1067daddb91c4e3ef1bbc873d894d4be06f9cb4

    SHA512

    3baa156120d709aac83ca2be39ca62a1f0f5c4d57ca1ad4c345bcb26cd6e7f1923750024832de4a2499a3b8bfdbef2db43c2a35a0681e3d7ecdd25f215cff835

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1f94ec62db16cce2dee5e4979a84ded2

    SHA1

    e1fbabd69d51c78304a1464484f028ae71f160f9

    SHA256

    d138342430c0a4124c11f26009ea36bf08c9dce3d25213401679020140f1bf62

    SHA512

    922b200b957c21354728a62753db88fa151c768c756de03af07ff213520e07fcebb28baf0ae462594a1855b7b1e8f792640c0d7a0fa590416c20439118bb9c6a

  • C:\Users\Admin\AppData\Local\Temp\Cab147A.tmp

    Filesize

    67KB

    MD5

    2d3dcf90f6c99f47e7593ea250c9e749

    SHA1

    51be82be4a272669983313565b4940d4b1385237

    SHA256

    8714e7be9f9b6de26673d9d09bd4c9f41b1b27ae10b1d56a7ad83abd7430ebd4

    SHA512

    9c11dd7d448ffebe2167acde37be77d42175edacf5aaf6fb31d3bdfe6bb1f63f5fdbc9a0a2125ed9d5ce0529b6b548818c8021532e1ea6b324717cc9bec0aaa5

  • C:\Users\Admin\AppData\Local\Temp\Tar152F.tmp

    Filesize

    160KB

    MD5

    7186ad693b8ad9444401bd9bcd2217c2

    SHA1

    5c28ca10a650f6026b0df4737078fa4197f3bac1

    SHA256

    9a71fa0cb44aa51412b16a0bf83a275977ba4e807d022f78364338b99b3a3eed

    SHA512

    135be0e6370fd057762c56149526f46bf6a62fb65ef5b3b26ae01fa07b4c4e37188e203bd3812f31e260ec5cccff5924633dd55ab17e9fa106479783c2fb212b