Analysis

  • max time kernel
    119s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 10:06

General

  • Target

    a4ffc572e6d3fbd6bab76ec1eed99e89_JaffaCakes118.html

  • Size

    70KB

  • MD5

    a4ffc572e6d3fbd6bab76ec1eed99e89

  • SHA1

    57e227edc149c485446299ae3d6c1ff25084df6e

  • SHA256

    454573ed6e4aeb0a870e476987c5ba9c04ad3791b0903abe26d96afef62c9b6b

  • SHA512

    5735d3c0fbaa6b515bf8d50cbb4043f8da0b06cf6d401043244718dccd94843bbba0652eb09881a9210370e394a0d76756270a32e97c0bb28c4d32df75871879

  • SSDEEP

    768:JibgcMWR3sI2PDDnd0g6irBgV1CSoT2e1wCZkoTyMdtbBnfBgN8/lboiGhcRfQFt:JVjTTNen0tbrga90hc+NnhVJ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a4ffc572e6d3fbd6bab76ec1eed99e89_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1096
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1096 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2212

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    cb85f3fcf86ef0de7ef258539cae87de

    SHA1

    c73288fff07885a62f8c7033b348863ed3b8cad1

    SHA256

    7430a96d94b1faa5363b7656b323ffa416fd262e0405e498bb143dc93443963f

    SHA512

    dc152f2e8c8f7e316e84f7a1f3996e02c08d582d6d0e40b8bf7171e359ea952a80b7452e56690b30fe98b4655d4744e8529a930449ef1cd853e377f86294b2d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\265C0DEB29181DD1891051371C5F863A_064AFD10946058C9768E31235CF87F1E

    Filesize

    410B

    MD5

    4513db5b0c51c7aa9316f69db4c4df7b

    SHA1

    cbd92393d9d97037c3c5741e09485e7117d0ed63

    SHA256

    84b075d28b03f9d5221fbfda37e10d13762c4e795fb7a3f6bf89385553331fd0

    SHA512

    1dabad9dfd0710036c3843bca37b89634b1d961aebe767c72ceb02a67d2ee5175c5565b92d4303415f580b00c8dfe63f34beb1a31b269bba7a8d64a5060517eb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    4f7d1afa3c4bda31677ffa3dc44e5d97

    SHA1

    06dbc30bcf867fdfa57e825addd923d1230a3558

    SHA256

    9dac3ef8535f044a31d9f5b925f80975d9d8f9605529d54f27cb7756ff377dee

    SHA512

    a4e3ce87969b39ac8b990fd1df3604efe050a9a7aa8a428ed0e4cdf06288a246df3ec81b137565edf41651526d5f3c19a5f9f43102e3860d22ffbbfe005b5ad0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    54877e0efb0977c91a8d67d2d140f20c

    SHA1

    5f855f27fd05f32f3659f6324caf12f0ffc47775

    SHA256

    f50c5db4fc81cfaa0002c4756f8c8a0198d83e0f1afce2b1cd874bcaf0547385

    SHA512

    04730dfc10d67776149e87c2efc5c5271582f48a55991fedc0c1d38c1b976fff88a62a00345b331776d3677d24556bf6d8f37e43c01c686c9960939ebfbc0ebd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9574f02947e1e78df6a0135860f1ddc8

    SHA1

    ace69e0ec4c1d4ce32da09e99b071addef6cea28

    SHA256

    9af14d0bcc588b1c383406bc47ac7d62e8b962b64d0fb438e156480433ebfc1f

    SHA512

    853d35ca97c742d91bdf9a1efc788c52ec0096a5374e66bf929cba94631b06453fca2b855c4b21fa5984d68e32f9473b72342f6a9efb9cd7bcca631b1c3fe732

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9d16d24d201fc186b7a912eb94026d96

    SHA1

    9394c2c9c16f32a6d94417a48e8821e4138d2c0d

    SHA256

    414645e46c9f3a824771fd0dc7437fe41c83eee6ed5eac0f9115049bf43f74f0

    SHA512

    c740ce5a52aba1c3dcac65138f31530bf907e7529837c4db712b4d4bac149c0585557639b5fabf3970de2baaba1316776e7adb55f5621bd231d0ed6e236a663a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    961ec4ab12c8ba856883146ae91bd6c4

    SHA1

    d891dcbd68106451d9334cb710f5f7fbb31b5b71

    SHA256

    816d24c2ec31dfc916913eb32842d82c413cfc3cd3ddff8577e2b675186290b0

    SHA512

    9662eff70f01660076b62ce9e414a0ca1b4b1ee35339ac62f625dee7a1cf65c5ae760bceba5982abfc880e588e9744381d1884751eeb6e93378ff2c0b877d258

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7dc25cf9cc024763010e497c599943ba

    SHA1

    59ab2dbccc3cd213e80c09be5fae0abc61ca682a

    SHA256

    c94710733acfa3ec1ae8d59a49d8f62da411798fb4467835478e0a9090737b7b

    SHA512

    58e3319f049924b20276fbc796b8ac549914a1a410e77f14e5e268b0cec42eb76eff3b9767cf17125ffc14616baf1c27f463cb6e1f389c1c204ca682dad7b31c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b1da21c43f3aebbb70a55a07e5b02c90

    SHA1

    a0ec08813579587bcfbf4dddbbc9bd61a66a102f

    SHA256

    95766b7b0df5891320988f1e6a47d06b83c03588405fde197bb010de923fdd40

    SHA512

    5ddf626120a2510f42066a63278ff9c729eba42a7cc99a14a7800d648e5bc682c263b2c00bc09f7d9f5087b428b741ceba8914be6fe8c525ef47752c7f5ffd25

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7c0e19376b7f4ba0ed9ee42e7934d929

    SHA1

    dfdbd0d328ea3a27bee8a438b266118a43f619db

    SHA256

    2e214c652bc46efd512d184672bc4080075000141a47c98defd3ecd8f9d7f7d6

    SHA512

    8138599ff6a4047004beaffa103e68e80a8f7359d238329b359e7a040eeba75c23c8f6f9710c501025b732a707ea4c52ab730381aad2d57126e7e4a7a478dcbf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f22b0f2f33bb5c5a5f368407b8b68394

    SHA1

    902152b93a54b543efd9f0365f4cb511b268bf45

    SHA256

    00c882689db6fb62a6225a1b2078b7adc902b0ac1181fb10cd3b30312aafec43

    SHA512

    e9c450bc3cba331fd989f25c9d76315e791e0339bfb20ae110f77f112aabb17553619cc5476fbd9e4191bb750f55a53c5f030a24e43a904dd897bdb98c040a45

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    494905b061eac729d786b5415f78fd6e

    SHA1

    7a774aee61341501acabaa0863ea348546a82360

    SHA256

    3356ef0359877cc46deaaa3171be23e7baaad783d74f8515bea5044e3a4835e1

    SHA512

    5642bc7eb7faa5aa260ed2f7f9799f666fa41c548652c035eb5ac2c837947158a64bebcb61fed9f16c8c1da98adc90c0802170a9769e338b88814b6ef5e905d3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f2dd6e5ee8d1303411ccef5b8c2fa022

    SHA1

    d8e77877525cf707cde892f5848ec7596c7d8c1b

    SHA256

    459de8bc28a629bf96c9fa9b83f7a5231597da83b7117b85cd9fbb4b96539b2d

    SHA512

    9bf613f540080d3556c8d653aff1c6c7710c8d1c75e585bcdf4bd93adfc70bb00dcc8190673782c2b48fdd8818ac892a2657fa6641954248243f86fa02ab56cc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3720c96c8dc4452c6d26168f1821aaca

    SHA1

    d97744040684a69aed9da803aab87c65ccfd356c

    SHA256

    1987a1f97361b0caa7d83f2ac6bb18088275e35e67c8a24942bad7a55caafef6

    SHA512

    7fd83a69a3875f7a31e76f9b1f425b4458289bc91a64437bd249b509e146ff4bd8f630d95669efac39820a7675d1610aca4161089f07470d067fbac0ee8b707c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    340961fe07d4aab7b16ca13e02abe32e

    SHA1

    6e16208acce7fe83c85286b03da09ddb66f016d7

    SHA256

    f0826879f9a8043eb95da73cb6894856af21e134ed26874886320e52f517c7bf

    SHA512

    f407249d11f477c5acdb3487cc4864ac227eaba5b57d4f7cc0e02e0a1c55547cde0d15673180f6b3cb5277743eec2a12557da61f95780246a1a2525a9050c9b8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4838e41e449b1a72b65f819490ff1763

    SHA1

    1b9963d102c120bd7c88c5da9f661349e126fcdc

    SHA256

    2a89d3c0037bac35000e3afa91c436e05e36a8aacf40b3723d281598abafa539

    SHA512

    ad4ab93fc111635897c092ffbf99cc3024ddacb5e6c0b8f26f6332393adf68aff2c90f4bd0f5e3b866e37b311b340a855b8f0365bc14db08d868cc2e67bad4d3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4041cbab49f6983c929b1cd402dcc748

    SHA1

    868b21cf1a58ab6d73b717d38e8ead420d7764ed

    SHA256

    a04defd10b8809ae5284410a0e251c16352b0699665357654e7c8803af9b78bf

    SHA512

    e3267ec72bb34ad1379f56b967c007c8be306edde86c793156f544a9947163285aabd2e45bdac61a0b58ee18f78314cf1a83366d628f8d26a6d8389d67c9e2d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0fc459d1df22855b5baea68769f8cc7a

    SHA1

    90d756f282fc9c464369c791c35b333cd44c3ede

    SHA256

    953156c5fbb4fc96f3af68feb587d7bb0729fd35aa958b4138b2a0c2643abee1

    SHA512

    3162309561ec3a552f348708fb12c514b8b2102dfd789c4a11d16d12acc9ff32db2cbf84f40cccfd923d62a3d2987a77a170599693b4a917f30dc53ffcff6e95

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    94523785db2615e47538c6432363f274

    SHA1

    70fab7216078b64de7a482512a5e5b0275019d7d

    SHA256

    0164447eb3e7fbd4a07ca11fe46340ed27a2f8d1a48d917ba051d45c6785987c

    SHA512

    0276bfb39bde7cba5c4b80a888493210183f7e568d145fe2fd76295fa1df4457c083d6b44f58562524a1257385c6bf94b915ecf4c07ff35e3b49bdccde19ea70

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    076062ffb8d1e10da72a36ba4e0f3c58

    SHA1

    e48bccc22bbdff632787a0c03fca691a4fb203d4

    SHA256

    34d134b18669d3d717862e05901d30bbdbe251fbe4b4961140809f054fae334d

    SHA512

    e7c307c820eb1d4f70cfb5726a3a86ddff0733d779919dc8a9715eea55d6455a17dffae59d97601c4ab8779e48c8c230c929022fab549a65d4d77a8554fd93e4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c2545d85c0cb97f49fcf9bf508721413

    SHA1

    4b3986babd97f753ff70fce054affefaf3f93776

    SHA256

    d2861fc200ab01794e36c1d63c4eec465ec46f6285933fff2a77a8532fc93255

    SHA512

    7f4301df11616e3ad7cfbd63011471a97bd7be4031f582db5b0a4f2435c4f303a3566b740460beae23d6d41440d9844f9c340d8043a9a077cc1375eda090cca8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3006c9a7379dbb9dd7e34c6c487d98cd

    SHA1

    74e8422c58a6fc7db5e24fe62651a963673a919a

    SHA256

    febd5622da42ec2b3cd1617b588226c5fa27e7edf10e316a51e99d4500359ad5

    SHA512

    548c82e77e324c2fad92e22f8f143a4b41f0416e0bd9d9c6cbd340d8d1b9f4bd5359403ebda41e0e311e87d72c7fd946af11e367dff95af77368d98e397825e4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f8443757c261c0af316064b8e9c685ab

    SHA1

    0c1baabe75fddbcadf835301ae1380c197334c48

    SHA256

    f59bc5409d1330691f71b5e1e47925ff19ebbec94e3d7872fa645cfbec0ce8e0

    SHA512

    29dab7ab814d2fd2eb2bb9bb28890851aa72a05bbb277bbcec47bc87fa306136825a1ca8b62259f1ff8d98b307b6e7e355ed15b3aa13a685fdb9106cb813cffd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9f456f7b699e443d7e75cf5b8fe80e50

    SHA1

    9c3f74e798cfa04921e1037ff7c15fbdf0f8ecc1

    SHA256

    9c3ea5aee533791e92e5c34efe3f8ab772dd0344b8b03d961663ca2caa115245

    SHA512

    c1957ac4a310a5853b3eeb36ecf6fdbe93f092b29c88cee00691361ed109b0d257f67e7183ca1a729a329e5028d7bd0b1acd8c35be7d2d188a66e6373a4ef568

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    392B

    MD5

    4f4a01614ba00f311c6eeb1aacba97b0

    SHA1

    d340b23a8c8f6e4eb7064d9c65a3754ed558875a

    SHA256

    2a7899d6c83f55e3dc8905b13f23438900b0f3a106579ba09e45862f8ff69f3a

    SHA512

    9150cba3a6451c7aafe752f97b684330154530992f4024d14dc193f9f51208351ed877077b9eae047e8afe977238d75ff5042b81d5b0e7f0231156e50aac8dc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    9bf1773b130cf6dcb1650cb56b648583

    SHA1

    986f7949d8d191211748860db72e5d6690fe5630

    SHA256

    59f0672973476bca5c8f196a6481e59448e46b8b4866c16448de73944da5017b

    SHA512

    dfd37e075c4c662da8e5c27d213c5cf45da0a820f35d46f03c276e5f8836b7d8d284d9a33234f71332ad154c95b5fa4fe13a6f37316dda302b1b26eb78c95816

  • C:\Users\Admin\AppData\Local\Temp\Cab2E51.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar4491.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\Tar45C1.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b