Analysis

  • max time kernel
    122s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 06:24

General

  • Target

    a4301d0eeb69024199cab4e603a737c1_JaffaCakes118.html

  • Size

    460KB

  • MD5

    a4301d0eeb69024199cab4e603a737c1

  • SHA1

    6c63e56b49e8d4a55560a7b32eef95140c8aed89

  • SHA256

    ce709efba7fe0fd25b39f056986e70ca22b52f641ec6d567b4b3d46c87767e93

  • SHA512

    3347b4f2bf45b9635252aaa3efc926785888c4228c8f6a3229133028ac0ce906be7aafa5daef3eda2bb5365aebd696e10f893010dc7c393d59e25ed6ce5bd75b

  • SSDEEP

    6144:SIsMYod+X3oI+YfsMYod+X3oI+YqsMYod+X3oI+YLsMYod+X3oI+YQ:Z5d+X3t5d+X3O5d+X315d+X3+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a4301d0eeb69024199cab4e603a737c1_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2196
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2196 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1844

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    29a7c8101028c5395d33f8440f7beb11

    SHA1

    b81a8f72fe1617c4717ce580abf3b018b6b3f770

    SHA256

    7dbef5a67b4dd2d60385a10654d5d0a81057e37d140391f4de6fef390d16cf72

    SHA512

    0193a18645bf810d66ec7cacc669372744fbb02b9e14e2d56287117e00f227673335427bb438943f74316b524ed3a00077fe4cfbb4ffdd617ba402d9322266fc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d724815ff58060e6a343bbf38d517295

    SHA1

    529346894b24125a2717e082cee3464bc0cec16a

    SHA256

    b73828a6528cb3bc7cf7f726ab403de38eae93ed37459ec13a87d13baded8056

    SHA512

    0346d5c2e3574f3f0da1617ebbe0ee0159680736334865da22ac929cf804bda48abe4da2621f1ec3a2725858de4f73ae6a1085f62c89910583188b3de764e5ec

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ab35cb21a6a12020f8e8a6fc66a28e9e

    SHA1

    6c046b476a0c02e14060aea8c21b846b56f953bc

    SHA256

    4c6903848c3618d992ebf52c382a8e8c710dbabb8d1db57011b02c5512586de4

    SHA512

    638182f821d1e82bc3140f324417f6aa5d3fb0dd143a58f4960d592859ee827c5c90c47bb677e90404c42ac216934e9d163b504f5a084fb471b63acb4ad9c039

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    28a0a4961232c6ba80bf162bc8c117d2

    SHA1

    ff93cc23af5fc3764f05328d700ffaffc475e786

    SHA256

    d3670dc42f21719e65b601647a01be73972d97c274791a2fd1514ca22cc49ee6

    SHA512

    3383764413f7995f62998e7ed845aa15a3d7d72e46d0ca42d6c336427d36994e72eff69c39568fc7007e500a04094fc69077784cf0f1fd0c8c4319a886efc275

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    480e5ec981c0680c042a5ef6437c87c3

    SHA1

    3643788192f8b768c2b503ea9324f3bf1cfdb548

    SHA256

    96fc46458bf91bf67343d6f8571e561b0bc6edea6a7a18f0aa5aa7c511a7c0dd

    SHA512

    6ddd5f8c86bd7b803be8642f6b9bf3dbf6342f0d0cf96880cb45f8c796202b4e9485bcb0d17ab54041e843a01e4d0f6f290b837a3c9835db918d264c2ba78844

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e9373e5df1452a05dea2f4bf3e75a219

    SHA1

    9fc0ac0b73bafb25166f0378bc18c640f624e49d

    SHA256

    ec86374bb098467ef5b5687eb6b72d622d2951dddc1a9c5ee14d825e1a77ebed

    SHA512

    ebc5ecd2ef2e558d4f14c461bf1cb3d7b30a429d7684bd8159ce89e03985626aeb333811f4b5ade366de3440f84d2805570ceb2f7296890d08dfe6184b423efc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    730d00b376f3c30101600fd3236593cd

    SHA1

    8e4fc54e988ec93c543f850425bef5d3cb9ea08b

    SHA256

    5781d3af0fd248ffb59c5dc34c7c88b5b4d8f779f0fde905eb27e01022af42b0

    SHA512

    349acf324c39dc7bcc0878807f5115e852213e3f8937728d71b62426cb26d771f7432b6adf70a591f7f6a8b15f179962057d5dbe7b82426d7f0ed599bdc3bd42

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f26b5b249e5643e163e5fcc4da006a6b

    SHA1

    e376d171ba0ba185aaf0be5aa4b1c3c2b1045e8c

    SHA256

    968f41bda6035c783ef8296f83fc6210da4744e71dd6d29f319593d4bee3eff8

    SHA512

    a59110efac683c4abfab8b826996863ab55eaeaeba2d7c57dde686f1ad7b565f1f6899f5fa7005e1adda8838292622373520dae4c9f4c2d9557016b716be8126

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3271cd05b854dbfd05b67304005721c6

    SHA1

    39525003f58d27d98083a877bdabb2e871cd391a

    SHA256

    0d9f154b31742a8c8c5797241b44b51c45d4ca4bb2eabae82614e487d57a2345

    SHA512

    3da0ee1a07c68eaab375a28c83833b061a324125e1d62bb874a8488ea518b260af16403fc060a5fb69628056aeaefe85f31cc835651e65421fa9745229d51ef9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9f6d6b4c884f716d53a895dab963556e

    SHA1

    238c07322117a43d99bd38847e976c5cf237d5e6

    SHA256

    b285c9fe107fee98fafd358ad4de2df6f910f0121f3284e03569fe0a34f3258e

    SHA512

    b565683925c261c646ebe94794bca1cb217add3f145ffd6f323345250b8cba8d1fdf0941f861370726d6af0201f340dbe8e8d954413fe9ef8d500cfa95a63f00

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    462ffccaef8edc9322f61c99317de9cf

    SHA1

    b3a039caeeaa375a8fcb1324c9ba6b33b8d4f2ae

    SHA256

    6784bc789bc67297d6c63eaf5eeefc167d99e1241d89e169fe7a80aade38c8d0

    SHA512

    2d4382e5924404be359807eefcfe8a2635bf604c1027f15b69bf04435cba9574a92cc7d37b8a7fa0953d50e362f8a262f4ced6fcacd964f6aabffb385efa3368

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    42e13fe1ec7550a9c70710182b999b5f

    SHA1

    2567006760e975e923a20e56cf44db771ecc6b48

    SHA256

    14e1b3767e2b82df7eb894528d8e9f6aab79ed61b582eed4b9fbb3bf27ebcc28

    SHA512

    a8a0ab3ff0240fbc24ed3c93fee680e4daf1208054217e9f17389b8eb884e88ec28a42d0d062ee9c8fc23a05cce625c2cc9431e831ff8ef0144531ba581d126a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1e8e69d2ea7a093651a2f2f447e7d169

    SHA1

    016ca4220f59532a19123f76c8eca03ce1811747

    SHA256

    ecf17da360f7ca789dbe134f880d376a178894bd04675e0bc9c6f56c6ab8decb

    SHA512

    b1aed92b86dcd167f0cdf1559310add1c58aaf6e14942e7e8e752d4aca2f28470d94968926f695477b6f3c7b71e2e548da33d8102578983aacd590de76bcf195

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    08200a196937853856913f657b078bb5

    SHA1

    05f5472f633a870f37d53a6f73dfb34a378d50f6

    SHA256

    2eb974085ac49df2cec5d58557fcfd396f57615780fbc867a4463307d3b44619

    SHA512

    9cd1757f243f5e34fad58a29ed7ba58a00f67dc15b47eb8eff3a3201ff3713e0c114ac96ba3782703ca8b003cd5f712a6d6d2c16e87eb6ca1cecc39aa5ca9b3e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c6c488b5b6ebb36b94cc807f6e50186d

    SHA1

    7f04e6a4a0fa899bb2733a6f8031187ba8153733

    SHA256

    fe9ec38e6c8f2de157cc26bbac690f474cb644fffa183f000018d52dcddb6297

    SHA512

    eea20a70c42ccdd45ffa1c8249a387b73f872a9c05fadff10240d6377c28a0c76a3bf7cbed2f897665db06fff2eb5ef1dd58c4d273fc4c38f4ad54116f474067

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e1425894059be03a2652cebcc3b08e47

    SHA1

    608cdb9d036321d218e80e962a13e90f9e86f67a

    SHA256

    34baf2ac3f4787e31b16e75d25644c3ef6d203ca1bc5b006833139a3f71cee76

    SHA512

    9a3aa86867222e696edca6671ed6618b95f0f933a3c908a807db870157fb10dbf178c019f864d79243964047d6f246e79338bf4f6fbeb33fec83299f9b377c5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f21732e5ca52732f1f9ba3a865750b37

    SHA1

    be3a42a2c62bb0e040866fa90e4ba84e248ddc44

    SHA256

    a95e02dd42a079128f21619132f57c4dde6c5c2c739089fac8a8ae658f23b864

    SHA512

    b11a8ae39b5c5014ae7573d997fdefd7ba4b749d9eb0cef42995756ad782c1ae6364c9a9e2bf8750a91ec6bf8b84b31dec111c12df5e9f8fecfe0404fedb77fb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bf9ef106e69f22c281ceb1c3920cc76a

    SHA1

    2387e6150ce296ddc02b0f414fc82b10336718d7

    SHA256

    377acf186b462fc60c5ca105ae054a92f9553b962cfbb0444a2045f1e04af89e

    SHA512

    a35ecd0ec4935e51061556d37961828baa72b0a7e227b4063bf0623562ae9fa7f6aa5e1c28f87f76814a79762d34c1e8e78c36097774d3003d25b6f38d7cbd5f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    377e2d36de81a2060233d5473a1cc4a0

    SHA1

    cd7d5688bfe15a14414d9061d38fe0ab48cb506d

    SHA256

    6be65981cd63603691ce6db4675f57c9e3e96faf311b1050119a2fd57c14cb9d

    SHA512

    a902432e444855ae1aab5f7f0adfeafb138bd10e5e70d0ea661d385862d7544bf324a405c8bd9acc7be321e77dfb6bd6992f3e33636a3286485d9168dc8fcc87

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b2d009c1a862af53e65a266ae22d0289

    SHA1

    3fbbedee6438a14c8606e0b9e994f501f2ba319f

    SHA256

    c344fd546ab227edddb3b0dd524e5a1d25c6aa4910a4e768d8f90d764ec781cf

    SHA512

    de796453fa82753edfcb37a3848352debb2236ee9f6460d2c019d008f2acdf575babfe6566299d88f185d8586ffd38732f9c467d3636665658c583d32ffff946

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    172d2dbeb58a041d43461b85e16a6a6a

    SHA1

    ac4acc6dff71cd06c60c08df4b6910bace985379

    SHA256

    dc2e39aa6e562c5825d20d2609a9fe6ecdf1cd2f60c4d78c469a14398fc80e42

    SHA512

    c1d934463e0cc1a9fd652412b2a3d949cde7e8fa3993471aca4bab1d1f90581c454a4734d84302e211a099455630bc0bc90d7ca3b1a5d0246305bb38631f9186

  • C:\Users\Admin\AppData\Local\Temp\CabA3A2.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\TarA461.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b