Analysis

  • max time kernel
    121s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 06:28

General

  • Target

    a43315e393e6b75f5754132ead177b83_JaffaCakes118.html

  • Size

    460KB

  • MD5

    a43315e393e6b75f5754132ead177b83

  • SHA1

    9c411608b334b1a699119843c7e5fbb5665b5774

  • SHA256

    5d0c2eeb2f70aed916bf9a88a4097429e16bfc4e86b74b972b67403f89de8741

  • SHA512

    d0babe4baeaf70d58c384f9ce48bbe2706ce657bfc2b5002f62b53864d7d09451d9ddf970c9d0b8e93005835b846753138c34147c5d72ea1d77096a6386231de

  • SSDEEP

    6144:SRsMYod+X3oI+YtsMYod+X3oI+YFsMYod+X3oI+YLsMYod+X3oI+YQ:25d+X3/5d+X3T5d+X315d+X3+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a43315e393e6b75f5754132ead177b83_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1556
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1556 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2308

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    929323d24ea90ff5093509c4243b7d5e

    SHA1

    c8c7945eca4a737314774f8eee8555fd6b90e83b

    SHA256

    1b393af1665ec0c37014b468eeb8e1815a80f5a608c033237e84e89d344649bb

    SHA512

    322ea2d40d0ef9986a1045d723ff232fa3ac2705a4f3b76fbfc4283314c875640b5d602a136601c74e7eff127546ecbbd75656a15ae866a0de75bffb2ce15ff0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6b8e27effbe9ff5c4103d05a82205bcd

    SHA1

    eb395a278d165860259c321b275d065203b9e774

    SHA256

    5fd316e4090b70d8ad00de122a4615b5bbdf80aa9acd4b1046af5f51c7165102

    SHA512

    e607574f8466c788f10ea4013b9c88eb723549093bf56b115a2f606be470517e308a787100bb51deabc4b54393ef1028de51062855fa1dd889c31d3699ce1409

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e12f88067a42b617c6cc7a87545e5b79

    SHA1

    45b3cc3d5807220f3cb6703323c0efda5a88a238

    SHA256

    c0cbb1033260ed86d62282a177340155a3ad3e6987fd4b6363a4e44d1d34c02c

    SHA512

    53f50a6a744e3f03600d5e5374be1f69a5bdf63558b4bd81c2c2633611c6c0e4fccc45b9ebca3b395e9f4a6f63f206526c51c7fe9db2de2a2a2b7d22dfc30285

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9d06db37c155a5ac210c790ff99803ce

    SHA1

    b876823b312b3a094cc381613551f2fe378c595c

    SHA256

    b49d641662d8cdd61685cb3e5be8a7fb684ff5d189a9b4b5c3ca6a26f0b8a0f0

    SHA512

    5644521ebbe1eaa999f3808824c67c2ba663681ec0be3e451e51933928ecfcfc32ca72ee880c32dec2f269e43df8253557f4dfe4d153683b7b2c66c3e6a3bdac

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    961f7cb564dba919d5c0d99d7ef8b0b4

    SHA1

    fda5b79c7ded72f6f6b043100d64aedbfe8a16f9

    SHA256

    4dbfa9637ccc3c8a1feed708468c18ab0d3a09cdcb575b2cf0fa17409e249e67

    SHA512

    8c8ecc8fad683c43504c208d21704254e29167241ec82e72d7ce8f36440821bd7c10103ac6e89b932cabb3486793cdeb329cd54096aa4e9647ab9f8b46c5cabe

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f8954eb92621994ffccf7863e783f6ac

    SHA1

    0676810a6f87626aacdcdd9862c3fc297fd230b6

    SHA256

    d8799e39f8deedaefe436448ff7e0aede88f9dc6dbdd2f6c5f315e0502d37fe0

    SHA512

    8c7bfc8c65268f39b87b4509948fb9c92227951a1d093fe45c25ca2fe43aaa90acbdee366b6dcbdee56abfbfec060a1711d9aa927ce2d953443776de34441406

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5330fb07ae0ef6277d2de16b94c426c1

    SHA1

    7e7550667c2a20b01e6aa50c5e0b7473de08786b

    SHA256

    d3ac44534243576540331529d77e8f11c603a9bb81b6454fc4beebbacd35030c

    SHA512

    69146b6211c2516b133257e5c40d8970b724773afd1a495366f8569aaae56e4a0c57d9cc1d012cc6afcc8d19d79613f704f9d976893f4146e5896a7b7bd56c33

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    823b972b6babec42472be9a8dbe1c7a5

    SHA1

    d2df54446a7f5f4e01b3c08177036f0c1518d6bb

    SHA256

    7640d11da408b6f155b8ad164a5ce3609dc57dc99b5fe322315b7e628d48bdb1

    SHA512

    a92f92a8611187480c75c7e90f86ae9a9bb3f2135e135c8a24d6ab0e526d0bc55c1d7e0bd8f3b43d00848c3c7dceff3672fb726c1b71ca0f486c434bdacd0240

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    af4bb946a5b432a6ef511049adc85264

    SHA1

    71d7bf447d280e189788cb7e0ea1eee57d4a9b64

    SHA256

    65ccb6accd2c3c8b83fa5d1e7d311079d4488af468cc496916d74fa3a4d00b8c

    SHA512

    840432df6867e69a6bc654e758b559c7f173df19b47d1fa41568078f5b0b6302a4b2307f8cc0f821d99fea76f03997991b83827ae6c85017259f869c7f480f3e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5e1124482cf3457717025ae36a5c65f4

    SHA1

    bbba0c0cd7a5c1bb4ede6d6efbf68eedaccb3a51

    SHA256

    f4530f01622f1c583facfa2e965f4add5d6290d3a4a64fe774e82e6ba3f521dc

    SHA512

    fce017e10c6e4f718a90994b87c529592f3fa2a1131fcbc1e8a0fbcc2f8d834d5d331a298d5b8d72a1f1753c1d696aa45782dd2cd6ed1b99f46b9d133bee0802

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c8e3c4832223fb4bfe665ee12105913a

    SHA1

    2af0b7979e791fb522dc8964cd5e570c153b6557

    SHA256

    d24cf11464a50125be280c91bce676d89746647759bb1bb563c246baec85869e

    SHA512

    311f1142c9e8d450fedb67e973267d874bb0e0f23b58e38b0dca5602ea572ee5ee55d6c3f1fe64926759176752acef1b94ddb2e1e0e3f4eda31cffaa49d356b9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8d7dea105dd1908d473e3fb727746d70

    SHA1

    e48ecea11af7b5d65664eaacce5adfd73142ddc2

    SHA256

    c4680f036cbce355b3a4900c37a643000dcdb084780c136a3d273b535b93a5cd

    SHA512

    849c82695dd1f8ba5841f2dce5cb7dc19d055a0f05f635b3ce4c8e6f992fd40798a708050f753e62f213b9b306f03faec8811f3ca445bf227d14531c2d814df6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3d8b63c1706ec92849cfed298f241c21

    SHA1

    1db388b6e603bbeb61d5976281efa38c033513ba

    SHA256

    f8563ed10d548709b5115b4fba67184fc5501227bb44696bc3f5fbd97d238aaf

    SHA512

    765188e55d894b3122631ed62c8be421a00fe61b491463fd4dade6bb2d0dcc007a2161e832ac9407cbd479771b242a5224f0548e454b3e1ee66eff5a32d4a51b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d3443d5e0fde9afe3e313a26c57bcd85

    SHA1

    6cc16a98926754e1820a180fd40e8a7234e1863a

    SHA256

    108f0c867b2740808a054e38a0d1db5748c3463c2935ff890d4e49a38fd6a647

    SHA512

    bf33f00ecc67f4276ccaf9baafbab560296db41d0bfbd4c6c567f687dc910c87723d6c2d5a9094e8937cf9ed5b24b6d02432c66c81591f7994d82f7f1538fda0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ca505ccd369ce4c11c3b34ed42f2c9f6

    SHA1

    f7b9ddd63b6f5abb37cc89e958d8e6383cc9d252

    SHA256

    6670ea6ba69d681176471cb5b5baedeb94f144aa7aabcd95f0cb510dba332b10

    SHA512

    80baa3d5067fb3db3a9b7449d52671a9e69d25b7b5d09d14ebdd2d234e0937ba0673741d6871e858ef99382dc34fbdb873bd0af8174fc6e9afc50094c8957faf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e607c4f3db31f7fab60f265d31752d78

    SHA1

    a6a7359720bfe3b6c462dc87e6126a36ec28869b

    SHA256

    f1c4577a95498461d4d02f799963daeea9bf7fc7e2b78bb2bda8cee7e4779768

    SHA512

    897f589e08c76cb30ee927a3cdcb77e35a4f5402b1184340b8cdb9ea4c9e8f9f1b8994865ff283d81888f19c91e06532262172bb6aff12ef719ab38202de1e67

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    595c587eb87c24c191dfe902fddf0c08

    SHA1

    46009ad6444c079855dc8cd7f0d82a09bcfd8093

    SHA256

    dc9dba9dd115d2113d114a80875420a160a856e4f55ec995423d3f9234a9a09c

    SHA512

    f5dff039e922699065ab57ba6d94f59f6ecc5792b54053f7166e3b7d3eac0ce1c876b2ba7f9f99c2a4a843287898d56027475278e8294076d4b3789a1997cdd3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1a4b2a0518a354bf7ced597a4ffe8adf

    SHA1

    50ab34821ce9bb1b25ccf5a8e8f4216576ef6a48

    SHA256

    92371db22f56a09e7a0d10064426e1412a02af0ddcdce65dddb150ef7f0d604f

    SHA512

    b47dbcf66ca4160f813c246363430587b63792880e5c48c15960df1f7fefa336091282404bba4d0a4ad5a3d7c69079fca2a11a40661735675e391fd12f201410

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    085b6a0fe668a0580fd5abf3f60385da

    SHA1

    32b8607a17cc666a674391fb8b141930435dd035

    SHA256

    2dfc6007dc3bf7c21cc2ed4c44eac746535dd081ec0d6b4e3fd575bfe88dc4f6

    SHA512

    4819ad2cfe007630a24a4d26b5e9ec5ab2caeab2c96b2c704f4a1da64ee524c2cc35292486e54afe6f0170433a16306bf48da3c52935ff5070b656e02b818b6e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    96b349c23ebbef014f9496ba69237487

    SHA1

    254ff2ed45ab4c069085117d9f1a441b7b20ff41

    SHA256

    887e9d2c362719f44a9a4c0eb55ddeffc341fa6480f989cf14b70026e66f8851

    SHA512

    33d8e872234339b22077ed610c19f5904e8a5526f9a7233b62ac5f02fddfba32dc80cc2ea2d5e3329d9edd661e966dfdd63eb02441b98611eb896868655fbb69

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ca2d7dc31e14b3f4d5687fab87f5df24

    SHA1

    4bd4b7c7957da7cd66624373d271b1e565ef2652

    SHA256

    1c800edcc6095edf95b81a96b2e90c4b29f493350fcc7cd5da100de209bd859e

    SHA512

    c5a2280b4de474b5e8dfbde2dbade18ce4756b16b73de0f0a9a6d010b2f437c9084f37877c403820ae605dc6c5d30ae5007051da8e207a655c93f6cae19e4f1e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f079fcbfa21629b96b98199efc9350f4

    SHA1

    88ddebcbc04c03c84bdc4019a3dd4325ac94cab8

    SHA256

    9896499361834db3bf78bc05b867a4550ce7900fb0457a2ddac132275dc63675

    SHA512

    208aaeffd823bbeb1a962dc82049f13509c599efbd8dcca8991e1fe4676405a644e995ef50416bc32a95f4fca2066c4f674272b68e1d6dff0dc7121065dd0b91

  • C:\Users\Admin\AppData\Local\Temp\Cab4BFF.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar4C90.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b