Analysis

  • max time kernel
    136s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 07:32

General

  • Target

    a4709040931abfc53846366a78453d34_JaffaCakes118.html

  • Size

    167KB

  • MD5

    a4709040931abfc53846366a78453d34

  • SHA1

    839ff5547b11187df425862d860fdbccd1fd4a38

  • SHA256

    a723c2f0af3c2f59a0f5b1dab4eeb5448605317eeb87dc9e6495770e7140209a

  • SHA512

    a7c29acdf504fbaa96cd1f7932d18b51e978ff2bdad481a2a3be0ef7e1e83b1a535ec75840987d1a9d2c7839224b430263120de52ab7911c3096ff9471f43a94

  • SSDEEP

    3072:SV95aUDu4usyfkMY+BES09JXAnyrZalI+YQ:SV9/i4uRsMYod+X3oI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a4709040931abfc53846366a78453d34_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2632
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2632 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2404

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6977f380a1597b36948816f3a36673f7

    SHA1

    0eed36c7c5b01286518d5ffdc7ec7b674a9f4023

    SHA256

    c36baac1ae72d699c3cd6e2e6ef0503779b0786f63163606c24963e6d820873b

    SHA512

    3efa8b6eb5297d295255171bccecc85e9040cc0e0c37603d10b843917feef2673bb6af3e9c0b7f1f086d0d02c21d86b9d9223a7dd1012a4a1fd1dd201b916a0d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c633c41f4bd7a703442c20a23056657a

    SHA1

    7fa989ccda85259b61308e8fb51768c727a54659

    SHA256

    73cf6bb2d7a2b61e2208a6b52079c5cbafeb9070574abe984590eae77fe06f00

    SHA512

    b660d290691e90ba325ef315b73d23e88025676f27632c61f74b1a0bc2e862b800be9f00cba7c8e04c5cbc7cb2b46dca2f357f8b5fe09ecee6dd1f8f2bffccd3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    668b4bba77259a3a641a88e89c86ef25

    SHA1

    3bb17ad6a630581254b54203ae8031ff8bfc0973

    SHA256

    fd623de9a13edec2df4416eac567da4a4fcd2ef845bc356a5dbd3868436ec6a5

    SHA512

    d8b052bc0c20896db0b75c35e00a7de21d2f7250b15a70130fb307b6d29da8a32c9b250a21b7c9c7d66daf032832b88edac038e1e48595147ebc7b3818b95a5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0d962360e097783a2292f4e61954e502

    SHA1

    545deadba493b7e88651fa6e49cefb0390e1b442

    SHA256

    dcbd6d4503a4ad552f7e8175e4a0fa17786b250a825a3461b5e64efc69b94c83

    SHA512

    e5aa23814a3f6422e9167a09e920c06bed38c8c98013c14838c20911d5dbfffb129f117d1b43a9cf4bdf8aec0f3176008ca059e4a35919abf095293e2d96d500

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f94f2ba98db659dd8436f4a31d120011

    SHA1

    f27b38f275956d08358c258eec241251e06b1172

    SHA256

    ca0bf2d089d041db10f9fcf929e437719cfd3914ae9421354fde2c49278d7325

    SHA512

    a36347b45a862ee675c621497471a9b5b24e650e4dbe273a2721337ec3636c9af6f632867e799a07b51203bdc816a08a1972f19ce4e8ccd357c4ce0c25d17e1a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e8d38d5064d596e8d18fd4878ccf4be0

    SHA1

    b6828475812523595a6c5fea02ebdd6acfd59782

    SHA256

    0a28e67afb58ddc11866b94a6308de3f726f141af6babcf71eb1ac160137f5bb

    SHA512

    10a493c95c0198b21a97b45ba4d040eadd82b51466a93cbd9f3d4885ea56209a98d1c7f4f8b22e80ed8de09ffea158c985446da8a009b613022f42ac4ce2a07b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5c9fbcffc228130a98521990c55de63c

    SHA1

    d10b5c3f5d76229147b8e9778dbb2438344494da

    SHA256

    212015d6b5784858382fa573f8ea60fec63d812e6505aec47749872e04dd7f32

    SHA512

    c18d4adac0727227a58ff49a7abf17e373c8ab66926b6149a5cb003c67f31926274d8fdaeae27bc366e2199b801fec5960043e44d6e5228640306324d7f3d1d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    077db288c530f52f420e18f031941fb7

    SHA1

    90d800d3358c9fc74110037d924bb0171f4a0d69

    SHA256

    1037cf531407e28a42f68222b47ba96fb6cdf9fb37f0b1d97d0317e7b1da8d52

    SHA512

    83a2985c559416d6628eb32baee43ed1fb65647ae5d55aa51602c23f3b33ebd90831ad4d238951e73dd22c47f995a4cabbd30795a42061ecb10789a85fead3a9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ace73b6417a3ebf29bf6a98d3b287901

    SHA1

    204f1276942eaf280c68aa9389f7e8ed515fbbb4

    SHA256

    c4e95d74260295e0bba5c52fa5d336ddce21b0016867ab7e535343e066bfa002

    SHA512

    078d87e240d64c3105b5af1a91f411c4cb6eb24a540af5b9025113847f101528d5d7ffaf63052d77eb2c71c9d0493accb124631f1525f92534e7e60d73abfbb7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    54852122084fe5cef26f381d4a42e067

    SHA1

    fd056caea605d3f93b675f01a4e385a89dea9a04

    SHA256

    d0eb753818bdc5f504c193de5d3c1edc47b836ebc5d9fa9d874856de7b3e248a

    SHA512

    9e15d3b17d0914998cd6e287ecebe34908d10b748ad8b3600dbb7746057385ae9ff9a65faadf7970ab0d829f7bc359575c73f69340bd187c6b4c4e33d8af51de

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    13987aaba676fd11f14cb7970834dcb1

    SHA1

    a9101bdcc3731be9435d320bf2d0670a718a6d70

    SHA256

    53dfff5b7512c3b1db5a18646320487631d81628a021e32a300cb7d683634566

    SHA512

    0d37ad6197b5bb77b252cb907dfe7734de0b763276e48317d92b5f4e20264dd80bf744f09fe2b42bc4adf8317745c6d97306bcbc8dbdc20f4c187e3c5f296504

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    46b42bf4c0dc091483e71941c4bffdba

    SHA1

    c867604eeb16f1e3dbd4077eb2c25a31e2f9c4ed

    SHA256

    f5ec305bf9f298dafcbfcf68e9f29a485cf10b5ad6319e014c41333069c61a87

    SHA512

    31d8021734fc71ed82d8075d2b556c103b4f620b8f4b9b5cbdb303b74f14e44e525c5aabade7c9b571a8bb550c23bd921cd1db5c4677b9f69ae335f6de4cbf7a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6f69187be662b6acf4ce86f3d0f9f2d0

    SHA1

    7660a52eb6550304587be2e113b554d0abb6b609

    SHA256

    2efad1dc965e4d274e279bc2a5fe0ae74bed206a0fde881820e3f8a2266ec61d

    SHA512

    7670825fa8cdc1dab25cf691bf84a134d59b4b0f78b0b291d7e316c101aa4708ef8c0325cc4e07ba8da45628d8c4ccb620695bf3a65e617765ecec6e057bb8c3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bdf0a0336fc751b600de352d04a09681

    SHA1

    49cca42b9fd217460a90f513ab7df3a6d6a48f70

    SHA256

    134fe2f598dab40903e0161ecbb4c1741ef012f2d0fdc3f520ca7b9b835b9e04

    SHA512

    8c30ac1a03a62095ee56e7a6a31067c77a8f9343d153aa12a54e9592ca6242358bf6e77704bf454603fab335924d90ccdf02e91535b2d2bc0b249458117d1f79

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dc981554a4cbf51731dbec565f52d6a8

    SHA1

    fca585bf2c32ba0910007e99f807838585c0230d

    SHA256

    2fc93ccac64eab9e37cb75228cd093f0223748c7093ce0ffcea46d115ea0a5d3

    SHA512

    50af6da96925a3e4abd60cca48dfb8957abc270656a05d394cba0ab357bf22a35fedbe6c6b5e44853ff20c8e91d02afca1eec856b98657b977b00196b2ffa6f4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7ff3476398835f03c66c23849bfe7f2e

    SHA1

    8fa0846f3b6d2732011c394a9532f377fe24bcba

    SHA256

    ee5afda497f44c1586c0224b3cbd4f0bb14f5717f0f95db8a487efa6e6b033cf

    SHA512

    354785bc484aa4c50080ccc36bdf3f086e6e04c972bda77fa4563206b04f1ee8bc5243b69ef0326a288f0727b3e7c4c29aa5be07083bf8636a79458fe49faaa9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cc5a94e97e01a0d16ce153f5271b5e8b

    SHA1

    577441a4f3025e5078befdb5fc52918d1d9d1bdd

    SHA256

    70ede71ec6d16914f0d008db7366d49ecab146a66ce7f98bdf58c1b91ad6364c

    SHA512

    318b055285bd0cfd89e9fb1c161f1e49bdc4fafcfb89d818223f211f4777bd728182fe100e5febcde46bfe1bf0050c55651b7112767c9b5130c858f275d8e100

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4f0d3e35ea06aadb2478b87b87865994

    SHA1

    7a8a8575a3011149cdea8bb07aa3f5ce2f651db0

    SHA256

    4694c36118a222ff9aa153ffb9045d6c09fc634443f3e3a508e949b0afe09dfd

    SHA512

    cb8a9f69628a16a81cf1fe77cd6f2b102f85f74ac13b338b03e43ef53759fb6906415cd11bc06715ed92bb145c40f36eda128f896c86cffc44c03d3c8ba787bd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3a2648a6dddc4cc81312f389a9a6608c

    SHA1

    20b272f79c4eb38c9b9c539f3e9de3202e1d4a71

    SHA256

    648b66f01c94814c7aea90a3c0db323ee1b3625fcac2d0c1da57c1c7cf56dec5

    SHA512

    06a7fbcb9303282cfcf56a0502e88bf197b0372f12a181105756c530c83ed033f094833a1e3ea033019c5949392b1f16e6dbaebf3299e328a1cf23eb815b8ee0

  • C:\Users\Admin\AppData\Local\Temp\CabCBF.tmp

    Filesize

    67KB

    MD5

    2d3dcf90f6c99f47e7593ea250c9e749

    SHA1

    51be82be4a272669983313565b4940d4b1385237

    SHA256

    8714e7be9f9b6de26673d9d09bd4c9f41b1b27ae10b1d56a7ad83abd7430ebd4

    SHA512

    9c11dd7d448ffebe2167acde37be77d42175edacf5aaf6fb31d3bdfe6bb1f63f5fdbc9a0a2125ed9d5ce0529b6b548818c8021532e1ea6b324717cc9bec0aaa5

  • C:\Users\Admin\AppData\Local\Temp\TarD91.tmp

    Filesize

    160KB

    MD5

    7186ad693b8ad9444401bd9bcd2217c2

    SHA1

    5c28ca10a650f6026b0df4737078fa4197f3bac1

    SHA256

    9a71fa0cb44aa51412b16a0bf83a275977ba4e807d022f78364338b99b3a3eed

    SHA512

    135be0e6370fd057762c56149526f46bf6a62fb65ef5b3b26ae01fa07b4c4e37188e203bd3812f31e260ec5cccff5924633dd55ab17e9fa106479783c2fb212b