Analysis

  • max time kernel
    137s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 07:38

General

  • Target

    a47605c5a0d4e0a0471982e1bfe5b56d_JaffaCakes118.html

  • Size

    15KB

  • MD5

    a47605c5a0d4e0a0471982e1bfe5b56d

  • SHA1

    0a05b9e93ffd5487a886e633820078b65ed7c225

  • SHA256

    e5ba9da97a3feb252e3b88d7d027f4abe2d180e733ed63d068e4631f8a058e7f

  • SHA512

    53bb90a04cff5cf4fc65373709fe3ea6a2808202eb2d77976364a5a5c90d542f9c5f7be10d1285f8d993cf1da6f469240073ea51c6bfb6f7802fad8f78015046

  • SSDEEP

    192:P2sOieqom88L+CHSXUIgunn72hdmOY/CZsKmt+pKGLcD:P2Pm88L+CHj2SmO2CZsKbpKi2

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a47605c5a0d4e0a0471982e1bfe5b56d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1176
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1176 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3040

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    cb85f3fcf86ef0de7ef258539cae87de

    SHA1

    c73288fff07885a62f8c7033b348863ed3b8cad1

    SHA256

    7430a96d94b1faa5363b7656b323ffa416fd262e0405e498bb143dc93443963f

    SHA512

    dc152f2e8c8f7e316e84f7a1f3996e02c08d582d6d0e40b8bf7171e359ea952a80b7452e56690b30fe98b4655d4744e8529a930449ef1cd853e377f86294b2d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    bc01db635c08f0f4c2c76eeaa0b5ded2

    SHA1

    715395478fba81443627b0f10f861e617c28a636

    SHA256

    687857ccba6b4936e59dcdbc4f95f9c02caf06a1e472ea216eb567104a018e67

    SHA512

    e9e10b6dcdaea84268478b42cd00830aa67baea3d2c9f76322076582adb95d518a7d79da58334a16dcdfe6fc98a2602c76882819d415e15fccf90b2d8ffd159b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    30e04b66a7cbf511cb1804da55c180d1

    SHA1

    b35f49d7cbf32fd196efff6cb5ae9a91853728ab

    SHA256

    c8ce83c55343ad14c8394d82a747e085c5908aa99f54b4e84de60a820d78fce2

    SHA512

    0f2546c814ddd4624449dc90eddd7d350cd0731eb986fc5ab38c6a5a268b466659b5001b936ecf0267a6848fd7347aa9faac58a756775ec9747103523046dd7f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7d0960c2fc17c31e9035fe59a283e6b5

    SHA1

    ad57cf9aff1df40bc107843704892839774a6ccd

    SHA256

    2e472959b559d50ea9498427445739d823f50693f50bf037c665040513389bd9

    SHA512

    674f0356547db7f95ac4d985985f9db318261c8dcf910e177c716de76306e97d63a57ac4462f63d888d4a7f0c33247eb3c5252fd07e239fa2ecbf872d93c50f0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    20852ffda6d8d83d4b369a3697e7b02d

    SHA1

    5814e0ad626e7e19474c49ba734f9c1c94fe7d5e

    SHA256

    cc0837989755b8250d5f1c6d89a202f169679c9761364818d01473a5a21530c6

    SHA512

    8f684d22386771a461c086af9d54a8c2bcff20f8b518fe660a81b9d69091bb53f4b628488a44a57fdfcb9de21d7efdb8f5e2f0b82d0109470321a7513b196200

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6bab27d59af07aa0c1f282d285312e18

    SHA1

    25226a64dbf09a0bd43934e20d481ea138c7c22e

    SHA256

    2e7207c863e2bcb2c649d9523804dd9518f42e00fea108fb2569d103c1360cac

    SHA512

    5248da048a7215d947d88a8f14b563052d9f440362346d1f1585b9b05ee49f42eb05ae4a43f0ac4f2af565a7faffedba91f14d0b2e940da0e46c2985726935af

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4ce18f8a5d5dd1b7fc7619f44b0663df

    SHA1

    f985fa969673c6a6c7757044bf1bd2095f87fc5c

    SHA256

    876d860e14979497e60f4637d058120f0cf36ebe18b8fe26d4fdffa2d7ed4983

    SHA512

    31b093fc146b93577878e8fd9981c505c9bb99574ac88834b756e009e694883acc0ce90b0c53a37d8413a4bb658cb226fa78438df246f5862ee31064766ce286

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9593eb04259b29bd03314504240379fe

    SHA1

    07d765c60131eca80db0af238ba4b986eb3f2c8a

    SHA256

    0f551893baef3a559978a5fa38239b6da5ab2a3fa841df4a234679b5f887c33d

    SHA512

    c318163d657fd70f058714f74882665299c31212ec0a181d506be3be620705e48f46f8882a8cc2d5bbd4b7fcc90d620eab97f190ac17c464fc59271e2027aa07

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1e07c33884f245ffa55dbf72044d8066

    SHA1

    c4c35e0932a9740c8bf4f0c082069ab0de9470f7

    SHA256

    924540ec510397dac6fde467d8d955c8bd84b8983dd0cb11c1c855bdcb42a547

    SHA512

    a2bf3bf8a3ba886e1fd2401fcacffc6fffa26bdf270dd42c7ea8ef07e8cc849c4a5ae95535c2c333c5fd7814e2bf01853662f4b9bca23157b14316f076f0bd12

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    082091f18323911ea9cfabb8f77df7e0

    SHA1

    0656bcbb5309fa48479731336b8c5ca59a4569a3

    SHA256

    72e5c14efdfdf97a13fbf84d0a9858cf2cd3e5076bcb0837f73daab5f46729f7

    SHA512

    97e5131dc5bd8699c98b661bca2cf2cf50b134b4ca10c933a05b063ac810d744e146462eb65e9bc08ba9e8f4302dd78c74f402129c5513b660c51505750f7c2f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e68162a3d39b00e6a7f5e10ed9b29126

    SHA1

    2de901608e578b0c2124adc960319e92d2b41d96

    SHA256

    ba68a7395fba8c8533786e602465ef171333484a4a7eb1bea71e1a547c42bc58

    SHA512

    8108cc06482b5d6b66dc765e30e4abefdf739dcdd346fefc2ad6a3a9fcc77fa3fdfbcd2fc705b923158c529556913f5eb21ef05463bec7943e62b0718b8296ee

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b2067343aeb6f16d519def23936a8ddd

    SHA1

    ce8a69f4040e7c92a2a0634c72957d9085632eea

    SHA256

    1df1770b40b7c28fc878bfe399d1f89ff9d9efbe3b1a9c1628e9a2bd13d13a1f

    SHA512

    53556ea6e3d6a418173b4f760a7250d909f2e5f37719db00b5a8e5d688850a847329c2a9fbf4c4ab9334514cee7fed2dcfe3f2d778d2aeab33645384da3c5b18

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9f036082ca1c82dfc614fa1a813bbbad

    SHA1

    6480c19052fe16f10e915bc89d673eaa8fb69c10

    SHA256

    c8f98a41a5c354f0cce215664e463fed5b5c93a6c1cac62e74c62f01f73eed2d

    SHA512

    47975b94ee6065003034ce06e6e53850557774cbc2cd022d661f6ff83f50e9ef6f0c0d6b6a0b79d688bde1d0524438887f8d29b70af84a95054cfb173a39b773

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7d8571ebdc928028580a9a0bedc17508

    SHA1

    e2b3a39196621542320b8fcde3b3145fe08bd8b3

    SHA256

    887066fda21ddccb4b248f80f68437f60f87156c9f068fb6b830df0e8819e71c

    SHA512

    b48a2b927ca11f94d8e24a6c936a0e1d89688a3aa1a4951612459f690a1719bbb8b73fb51278b09f3661bd9a7e10e31f3b902e1d1282aa87f4541e5e9c681152

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ad6d6265ff3451050af468e4a3f6532b

    SHA1

    05e5dc39cf9bb8a4df835c61620e1e9d725e0b10

    SHA256

    b3ce6be6b67401ec62c86738a41217eca8078e93864f88853f916d9cba4e64d1

    SHA512

    10acab12eae870670e7c9d4b015084a6df16004d95a039b788256732cecdfe71063de1ed1996bc54a618134daa7cb3c09ed18725fdd139103b6b36e19ee1eade

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f24dceb7473068e4bda0d599a47cab4e

    SHA1

    8912169f0581ad89466421e9b45e70a1855755b8

    SHA256

    988f8041ccd86dc157d84e03630bef6e42a86d4ad53207832e27be654911f8a7

    SHA512

    3b840727827683b39f6986a33fa3233e6ea0c3e868ea9fd0ad961dff728051d3870cbd29ece1e57e8cbf0f0b9b398fb5d74affa6f6a86c9a3dae24861545644c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    24623f43531e6d76f757a65143111146

    SHA1

    a41e68b5fe82f4f06d212ea68c52d5e29f5d3829

    SHA256

    244b2e5581db0e1c1f21045ff619dcdf00b48ce6031b180ec37f3d73581d3202

    SHA512

    cfd95b2d2d737404503629261e2ce59ec070d46ac16eef2e43aaaf21e85c7c5d15938f92f49a2287cc426430eda4ef583b8d98e7e52bdc12311d8aa1bb488cb6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c9369a1ea7be7271638e15fa92d0644f

    SHA1

    97910c9c3a87d5a690282ac7289fea58666151d7

    SHA256

    89990f0ac9bec79d5499ebd9c9e2a4207574876a1e661736429ac6bf8d839b6d

    SHA512

    16126034fc15e1c98ca5c79da8ebd712b89b3bca5b76a0aa5373627accfadc3e28e3bde5d3e85fbe54851a4d50fcdcd925d0b8cc13bf2fb3c1f81be0afb51442

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    de214c2cb16c8734cb60dff87923858c

    SHA1

    78e01c8fd5bc726e4c37fcd3c853db4f2fcc2c8e

    SHA256

    3e77fdca3288aae0e0cbbeaee337ef6ff877979782e02165f9823c97ad6351c7

    SHA512

    a418fd5bbe02dfe21f10f3bad47aac323c9bdd39cc8da63ae00da15e1c8f78fc6afbb887caf933307587c83dd75ed3f246ea44cdb3e7699d946941692a8b697d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    12448a6d4f82d9a55ee488cfbada472b

    SHA1

    af1e1837f06b933401da5208f689bb4d1c02c025

    SHA256

    cad607569b5964c39428806e1361aa5db10a969d6cd01bf9ffc21d938b6a3712

    SHA512

    a1495d12a65cc066260617fc477a8e7d52a6a5a6b77a70194607a4f1a7b2134581d5894201c6a912b948f6e72985ab72acb8dbe4ffe57070c4bfe86564efddde

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    89073b809f9dc4c925f9442203ee019b

    SHA1

    af54ac21be1e43c4ffa4a5007680a6764e681abe

    SHA256

    14d633051b36e1d69fe7cdcf33f25d11d28fc7cacbf79e55d9f2ab74e20e1477

    SHA512

    8d4af51fbee6ce6e6bc65102efb3fb699951154caa31971085fd020d26c53760376f192ac6712069dfa9234aaddd5501008e9c6c6d2058dcc354a8f4110509e7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    44c43f0588c842a2e5780810a5d13945

    SHA1

    50c9511ca359f9c534abe497c09fbb626d32a681

    SHA256

    803a10aa4b2a2b0474715157389473e81363bea758193d897699621e37796f4c

    SHA512

    7e51cd06d072dce232d3580bdc22fc31b80ed1a640bf4883f8630bc1fe777496b3d4944160b4e752e022e3a3e3d66e4c61481d0fd9fe238902a96ac9fd04c8bf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    91bd438fa062f3e3db893e0f6f956a78

    SHA1

    cef35b2f04f7c704b24312341078f868682f881d

    SHA256

    73ae0579c9d2db33f7482471aa2747dd7747d78a81f627383b4a18a926b5c98a

    SHA512

    8956c71e215f72a4a9e5e3ab18e591676e423e638e51e8f3f80dd384d50850cb33fc870bc84adcbf23da68706a504c0d33ba86a9b2e10032a10de72d1044786a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5c1709048726a5f5a986dc190b2d4580

    SHA1

    7cfdccca7039769d1669717cfbafde392177b784

    SHA256

    60f43121f2eab5733fc70c26656a4a180459d61fbb1703a4ccb3eb5b0324fa31

    SHA512

    5bd04cc086fe5f5c4fd207c0f4b7d00a2690771bde0bc137e37981250a70f3833bd07425d9092eafffbca2689a8d54db82f7f9e2e4dee605b15e8eb12ae31a03

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7aa59bbeeedd03fe041bef2dc83c4072

    SHA1

    b299d36f12495ff247e2732e4974a196c21509e8

    SHA256

    14da3238a9d35b7e28280dcf0405442ac8b1029b2b1c5c8eca7afec22714dd92

    SHA512

    d579b89b2ce69accc95beb4d9f79e2cae2d731fb7cf5f2d4f7f6890b345f02ec2def542ff3e4643208b8245ddda1f38369fde6bc6752deab25e74e4738e5395f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    392B

    MD5

    ace0a5a70a4daa2edc27cfd60d7b3b94

    SHA1

    59ea80f5658fe0a395cf5cb1ceadf95f4bfd2792

    SHA256

    7fc4741935fb6134d6c13b27a064dc906db43efdbbaef858efe9f1f8aad37eb6

    SHA512

    41b4bfb7691f0b62b0fe822a65e14cf5bfdd79ee3d77b728722c30828eaddcb90e6dcdc143346d8e917b83825c2a37605a81ba553187e22ac64e39f4395c898c

  • C:\Users\Admin\AppData\Local\Temp\Cab584F.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar5862.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b