Analysis

  • max time kernel
    143s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 07:35

General

  • Target

    a473c51ac28c08a4dcec746618ab6a19_JaffaCakes118.html

  • Size

    139KB

  • MD5

    a473c51ac28c08a4dcec746618ab6a19

  • SHA1

    71e877d2302054bda8a5d91eeb8ba0d41ce50ded

  • SHA256

    790eeda2f84c53a81f3567cea86a5535acf2b89fc73c59bab034f0d8fcabe8c6

  • SHA512

    fec2a5700171ea2721e601803df1a41fe6e44632304e040063282a187cbd3505f2cd89d683cb854ad3c97738287bd0b4cd03df2e4744e504c2b79e2220375398

  • SSDEEP

    1536:Sq5NCt5/xdOlwyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJruH:Sq5gjpyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a473c51ac28c08a4dcec746618ab6a19_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2340
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2340 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2324

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0a09c2d80cda89a54769a6fed0e4936d

    SHA1

    0edbcf596f14d9d21e9fcf9f922dcdd13e5f91b6

    SHA256

    67cfe35d5f565a054d69fa21d3121b92d96e3cee01ae530002a27c1c8bc97baa

    SHA512

    f5872ec2b932a5a9c900e67b3dec2057bb47b2e1cfe0f3d8194b7fd9e900ab881c5fea4b77ec1cb0d80627ea69ff5e48eeacb6697bbab2e6ffbc881873a67718

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a31b84a273e0b2822fe5ca1a04b30c7b

    SHA1

    3408981b474d769e41c3244f1ee048c05c51b553

    SHA256

    617fe02e99d4e50fa2eadb1f4e52e1146257c968cdeb18f8db56fcc8b5064049

    SHA512

    ea759014245ae2b634ed4b38f68ced4be316327dc19baace910946663b78f9afd722c58a2af2b1b1e4aa8144e94769bb99156c3c5c2ffdcb1c842e04c391f605

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f9f28664e35122c53192b51489075b13

    SHA1

    57140e148cad582f6e2bc4295cb900fe73e84fcb

    SHA256

    7101cf97cb90e65f94b112d9320f8f704c884d10652345ef0375c4b6a3e05422

    SHA512

    57ba954a12945b46daa3c50c4711871b721d50dbc5edb3ba2b9b083cef6ff4b95085dcbb0c7f579073310bf5a750281a2d21a03f3dc610c0f0a5a2ca7bd153e8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    973fd75c26da8c8a327531f08b7860d7

    SHA1

    c80b6020073ad270bb373b1f22545a16c66fbe4a

    SHA256

    c0966c5bacc194d8bb3580958500ff95ebc2f7344d4a8325931f5a94d71a4959

    SHA512

    6f9b911efa4a5d6cbb7d19a0e31bfc0ce4617f65228fdd8dcfc9db977c4e34ededb7a0250bcb8fd1a89c09744723b6cd12b5f11af7ffd36e2cef9dabe1d4e33c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5d3c66d8124289efc7f53230c1ba5957

    SHA1

    ee9f49194cbb2131d2383f00604c96c89f45c54f

    SHA256

    2e09bbab77c4391b2c83befb10d5f88895b6e1bed03dee768bd3c451978cf31e

    SHA512

    585ca86ae9c1ecbace960d8931c92bd4a5811ab15c98d20809aeef2b4c0c8f5be7ff4de52df526a7cf9cf610677cb99f2de5efc4afea113d908cb368ceae72c3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0f41f6ca88427b8086ccfb04696fa9f1

    SHA1

    9a659db838c6b4383ea30c7085d163c703d6939f

    SHA256

    7ac761e0aebc384265b7b2606d782d6d8bdbfc9645d71fc9f6beb87d588cc165

    SHA512

    1009e1b3a63de0dc876cbb53d85fbc1bc536586bcf165451565b20530372c0ad952eb4683f5b8b6abc25395854dc432ad5de1e9940e8fa23c6828619fc5c1093

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7abdddb8076bbe3d751a326073bdf866

    SHA1

    d1227a95482061885f4824a760b2b796144ba076

    SHA256

    6dda82b849905b2e54fc985fc49e1b32ba9406fcbaa08ce41b99487d8e80b797

    SHA512

    3b0971e65b9bd3caa908c90621984e37e9021da50459e7a0700b3c8310d3ef5929941303c8461dd758004c42ba54bbe6525ed5dd0e302367ccbbf8abc373001a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    06f3de4e75e51724da05555a246c4a3f

    SHA1

    0e329180f43db224dc1140bf7e80d5efebd4933b

    SHA256

    b7e3d95d9a354ed1d071804764c2ea542f332340452bbce1c87d1132495eabef

    SHA512

    4d4daae583c74cd8465db07c72c948ee4676a46872712c33bccf3c1aa808cbbbb8922d72096ad20a87f5703452995615f71b53f1a98cd241491062902b8278c3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ede936e42477983f56c5f7eb811baa99

    SHA1

    bce05f19c583160716ed0e99cabca3bcc013aa9d

    SHA256

    d4b12c6a44117893f15bd2bd630a9968e893b75831d20f0f77e67766f7890a6d

    SHA512

    f98b991ce399dc03f812514e3d953cefb49a8670079c1f27876c0ed0bc567e929c9fe84122196d844c9d6b76ad8fb4dd8b74c58609b1fc2b3e1ef49ef8c79003

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ccd473b36875df6378642d91ad48f736

    SHA1

    adb620a69787bb49b3573ea182edc7e71868ba93

    SHA256

    9962174eb8cfde7b1760645481762da69a2c7dcba5ee7bde3156c21c2baf5403

    SHA512

    1fb39168adbdfce3c7531f8be8c21f793d7d269665027749836d557ae7b12c9405642ce977d0462db32fb34627c7062426c490cab416c397312c8b8ffcb15bb6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bf9e5e36f9fd40205a64b87a90bd8039

    SHA1

    b65ef766fab0fc448e9189b7e02683df24c32acd

    SHA256

    3ae31063f46d5ecdc7f33496fe9a30e8c2320992ab8239f7d2e9cefc110480db

    SHA512

    09241044ba5c22f0a9868165af6bb2c0d063b92a5d15788f5d73d8a7c82216a65b8a8994e0de4bd254bfadbcf0273958f533d96162b81b5db035acf692ee49e3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dcdc1b9245537649e6569dd65ac341d6

    SHA1

    b406d60f5fda626d35ae81183fefe5af5bdcf409

    SHA256

    65734819a3c1bdd2fad56531c28c7df2001d3971d68a92d72bf7fec08d19487a

    SHA512

    e60877dfd039aca90aaa5e8a07fb116d60a8d62c2fbfe5c02cb4d6ec01fabcb019a549e8fc6b3a095bda5cfa752e1e34160538cb59d4dad85616e4a8b1ee4c90

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d491f41b1a278406a62d2214fe8a4bd4

    SHA1

    d4ed218fc49e727cbc7370a5be6a0d291d62d7d9

    SHA256

    e48539fa0aa1564743248e4d4b2358473a746eb8e444aa18a010e93ff386eafa

    SHA512

    65121b2185643ae0e5b6e2baaf251ddd93f4656d33779a6f1e76c15b230a3403fcd2cafb60a5ceb8511dda9a19ddafae56e5f60168afadfef83a6e816350eaba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    abe30b4f7073b74213281a1b1274db37

    SHA1

    5c37401c7fcd4d6592884a165bb068f06aa31d24

    SHA256

    b52b8316a455fe8818844638adc623ece8d6d2a339b544d35ad9a5c33e5f1408

    SHA512

    105ee71310498d7f74afe6d5f629878757e6676ffcf379f71d3213c265da1b438ea4cd0e3034049f887f5656dbc94d2f52cb6ac8d2617716b4ff12bf02d653da

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    595d69bf86be83a092988810b199d8de

    SHA1

    495c22c0d7f88f4ab2a555c2081db498ea73a8f9

    SHA256

    d07b970564abbcb6652223985699bc5e00a23f7f70303f83387fcc8fc3ba5e85

    SHA512

    1c7344627492df39822c4e27faf7e0a58c2123854f917847d97618bc2ec2c318808fa57c4e7c298d7ec24b6719ac3674d903d7d4a3770f904156dfd5aa1bcffc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d61e082ca02ca9dfe423b3e4d8caed95

    SHA1

    ae0001da187f855f9583dcf789d1609dd7cb4347

    SHA256

    c6c4f34a47ed3c59ab9bb5d4a7a7a5dce093f434453adf7571d63c5a57d44941

    SHA512

    8140e0637f95dca33f9c92283839eb640bb9c29fcb1a1e35eddca7f4dca767157e128ff8ef4b3f6d79c59fabce548cff47ee10b9baf25b539617e872a70ce224

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a602aef411dde2349d4782bf006b6242

    SHA1

    b3a5e185dfbd8082720c2f2fc5ebd5f39be65186

    SHA256

    dcb8de58a5c04466fa0be5515ee14044c9dc6599c612bfc9e2ba75195722857b

    SHA512

    69ec5cda7d7e156db6d79a87a48c9eb2bfe0bab1d41589a38ebb70acb94bffeb6530efafa09169d6103958eb08c405769aeda371bd8cc468aecbcaf259553aed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fe27320289b994a44a46fdaa099c8a2a

    SHA1

    6b9d9ccea3a1346e3ab293b11a227bc605327bb9

    SHA256

    6fb5479060b4e167320df229eb48650d39a5b4d51db60087452703a6868fbf6a

    SHA512

    a602d9e753415188946ca66b3b817c6bf9d44d35bd2d02a354a3d07c3d997037dfecb1a3821b345db5deab9c94f433e9edb52d766a364346364c9f1947a5aef4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    174bde373c7c5479c91a079a0e229992

    SHA1

    d0656a8466093d2c055ae7c46f3f48a7b5b53700

    SHA256

    ace20a637553ea29407474b98a138fda1e5e0ffb166585408ddc3a2f1ddb3bac

    SHA512

    c90a5df06092d1d0f4ad2de8eb1e847033958c3d2a48ee9074012903a1ee851e9ce66e03ea3b089541db30bda5a19f7afd7aa965e51156ce781c736dbf3c7006

  • C:\Users\Admin\AppData\Local\Temp\Cab1CC6.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar1DB7.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b