Analysis

  • max time kernel
    143s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 10:05

General

  • Target

    a4ff28278d0c52edbe724e0ecda66dde_JaffaCakes118.html

  • Size

    37KB

  • MD5

    a4ff28278d0c52edbe724e0ecda66dde

  • SHA1

    dcf6455ca77f3a30668ef61ae416b8cd27fe090b

  • SHA256

    2788e0ec8db8e635b3c695fa11e1c18e45c8a9552a5696f5f56f58751f9d2dc0

  • SHA512

    18ea65e5009c36660dc64fbf56b6f351d612ef4c9b6ff087002269478f8bd95180c6ac4c9560744cb2745b3edf2ccc8be30358f7e8088309a1eb2b8506dcbe43

  • SSDEEP

    768:7/bVoRTW81D4RA+vEOjz6rdG2Gil54RZfPGnf3Gu34aLi6781DdRA4vEOjq6h8at:+RTW81D4RA+vEOjz6raA7IauC81DdRAW

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a4ff28278d0c52edbe724e0ecda66dde_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1652
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1652 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2184

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    f77cbf6db4c3023dbe30ddd5dbeab0b5

    SHA1

    18cd3417da01a2ff0a3e41dacc46fa56c62504f4

    SHA256

    2d9f9f02d04ae79e9c5949988be9e2224fe6dfe3143140b3998395612262918a

    SHA512

    c7585090217541e5f3903b598cdfbf29f75ac78b3b6862f286fc8b5033b95dc16f7d8b79d21d314469348dffdcb7006b01e52630b576dcb52218f00fe2c7afa1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b70ba7db60f4ebe02c7792c082789c49

    SHA1

    13a068ef41f946ddd85529acbbea8f3fb182ba33

    SHA256

    cdb3adbf2cf194f37704aa2a34042997e3ef72d6d80f45251b4459f53e65121d

    SHA512

    8f497ca87ffdcb6a80350e5b2f2c377af159edc6502f1c17b4e07045b5beb27a8d42dc9e724342d4a9041cc50962f2ee4033b5c5db7b6e0b053e443d8b7784b8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9a5e467a9547d1ca0be98e55ed7250f5

    SHA1

    b1dbe73a426a85878ec805f84bb4bbe4fb0f7819

    SHA256

    fdaf27ee9e75a450c7327f8087bde6544bc52042a3de7f2326fbacd84cbe5be3

    SHA512

    66e853531dc24424e0da99c37afee421b9c2355be455b6c96a95765032d5633a0963a05ac5a27ca9fd4a497cb9eb2ba90ef5f406d609e153056a92864650ba69

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1b34db8c2a3091617eb80fd636cb5bfa

    SHA1

    559a8816cb3d163e116da8ee13b15d189d7e44c8

    SHA256

    5b2c010b9e118a7f916ca3c46d668f1c097c5cfb6f797b2eec9f3d44ceab3d5f

    SHA512

    68dced75cf4d86a48d4c3c451f78b307f985ed58d5a4e6b31626d357797e311ba1da6598abc37579e1d3db42d6c984ea56436209c49bde15d4933b5b0e1fabe9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    662bc1a774f6554244f97dd5c32bcdfd

    SHA1

    182b8965bab83322e9d5d0016b81a8b354f9946c

    SHA256

    224b606dee6c627065824e4fdc8475cfc549da3e27908c9a98a41af1ca1f5961

    SHA512

    6b4acd92698923b2a57b6c7d20724d8a64631550177a53ce5fc5e0d8a2a8e44a78fb543d8df2a343e9c90febdcf708a764e5c0f71bcc077cdf655e0b1ebdceae

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b7f010c182ebba2f233f7a48f5c54cd4

    SHA1

    1ddec5302cbedff26bf24c4b5345e7a755e0713b

    SHA256

    ceec8af801632cc0958a685fcc74fbc0f1f438bae9443c25714557f47fcfa136

    SHA512

    3b357f6dc84c42ae513e91cb68809c4d20896d7e02de9cdbbb60d199b1aa910ceca01fc1be08e5b2221fcf7a00bb3a76a8f1db07cadef978d9bdb8eeb42e217a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    972b80f4958a0aa1e7d5b5708035da97

    SHA1

    767a69d3d3b97c6125f16f5591775375e8c4633f

    SHA256

    f4a1d2a822f7784337bea453763eec8edb75ae424b88c043d516b72a071931f4

    SHA512

    a0d349aff9b8b5a7ae4489852df8fe2d046db5d5e6f922a875bbef3bf8eb7047d3eccfb5fd47af56a8e3e58dffe55f9dbe7c06c340169f3d98cab203cf572ed0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    960dd2a07e06dcab02b7be569d9d840c

    SHA1

    f3531b529e2c626bbc0d706eee610875106ab419

    SHA256

    d5a005c4d1dfb9c97e68afb68776f21f117846a07c330140cd1b0f35524843f5

    SHA512

    84c109179d0161ee94bf4fe8d81de0e3e05d57bee31f45f8ee9f9704e4df26d554be68b5e3c34e86f300a5cf48824ae8ee214604d9b13184957a0b99229b247e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e66da0d524e66467ac76a93d7237b61a

    SHA1

    b3e10d1dd2ed7c9a24e477c64fa5c2be45a52cc6

    SHA256

    0c5a867d87633d469b5d98ccd7726e4e95df846e604fe0705c1426fdae948990

    SHA512

    d6b08ccd0c9e90128a7df7ad72232e2d8b8077d03e1aaeec2084ed986374a07f589c7563ad7acb5ed487de4996e601c2f60cd56fdab8a996fdafe97175cb9bfa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9062d892eeee958337ca5747f50cf9c2

    SHA1

    089fe5f55b27306bfa75aed9215336df786cb4db

    SHA256

    b11281d5464af677446f635e32615b30e086e3fda0c96381237202d5fb6c682e

    SHA512

    9be8573f5a814f60e3c9990e52045a975f52954ad3bbdf22d6406bb5af7fcbd9518f2b62e5311152209360faa1ce060d1183f5f399de57861ec2f3f77887b2f9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bb5dfa8fbddc843f902915148e35e3a4

    SHA1

    4871683475a86c8c55faa30f6107a40587c2fa47

    SHA256

    3d89d8acd2c4d25033b4266ab37fd012f00b230b0ca7ff10035aca7864260a16

    SHA512

    38af4facd5d497fffc4f9aadeb310542de6d0ee65604d22035091e3b0889848f97d4a0eb782771fb4fafbd1511b0a60373a504413e8d359f21a26c8337f3c6ca

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    90bda4a847c78425dda6853358929e0d

    SHA1

    80a45e44cd7066fc5fc6cda70119ff7b55aa2d0e

    SHA256

    2c6b7e0d01b6f380a36778c674a5b9d965ae42671dbc9171f61f8acffdb09db6

    SHA512

    fbc00f685258a6ba9728dddd28ccb9e671729adb25ce19241ad37795e1edd8528574decfede89e3579c7bf2a86884b5f26f677bb39b7d81dadfaead396bc3302

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    89e9144f0b5bba3e9656f297df1fc0b2

    SHA1

    edc19f215eef091b42ad81f36fdabe1de1734d62

    SHA256

    aa0384a3bc3bc93fb953eaba871b5f658be713c1ddf9efc010226c170d5b9202

    SHA512

    426aa7f3637b35beaf3132fd0b8f255e40a8ed4d69256b825d066a7002a078b1285f4e616eb5a8ec4e7142ae4ef62db1b59aca1a69700e09ed04029df3b4f203

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3ae9f4c52792d28c118b69c96ed1534a

    SHA1

    a973e8973ed7e949dde48ae7361956564ddabe18

    SHA256

    366ed3e2f1dffea2ab146d386b8d61b3f75f75800fc9c0a125613c1c780ce8f0

    SHA512

    a5a2d3ef9314e398976f78aea227dcc6294ce122a762d39b5140d8cd6db45cae5d85a014e7ebc4fc677b3fc8baef3c33e42aef0909ba6de0375cb91500a0a4fd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0ecaac034561ab2512212b094cc681f1

    SHA1

    3a541ed9227612605b4d3892ee597263bb98d8e3

    SHA256

    d06574b00d029dd354ef879f98ec5b08f2af3036ae82f6f7c9e354aa03b63328

    SHA512

    c70f5de519c94b8e2a3fc43bcde4f0082280723a4c71bfe26c375657b3173284ede7a2f44bda788417ede454ce2df69b9a647da65cb11aefee368ec1846543e2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    10816fb768152521a0129063d7e977f9

    SHA1

    f1d7df762d55505e8aabd4eed676bb7ff31423e0

    SHA256

    23c1fd232f1ab1df158364855b0e57714a9ee008e5f3c0797bc4974b970f8228

    SHA512

    b1d6bd9562a7a15d636f233e1e802f905ccbbb1f15d12ad584e76e187449b5280347d316aaaf666cbacf54c2a57fab1257e16b255c9b708fede07a0ea96b8549

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    351bc8498f67bfeb362e1475ef5cd9f6

    SHA1

    6a41aba5a6b41247ef92eab17abf07680694e74f

    SHA256

    0fdb878ed11df2f7be1ce7b0e3c4ab5c28ab3aa75ee367d6001c58c7351f1a61

    SHA512

    c78360640f845fd0b09f7ced9d5455f274fbdf5d985f5225f3bb80b87237115eed46cab3d2e3482acba843563577fb0a3be37d2d92742f985eaa0c6f434a8dc8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f059452ca3653c8d86a430c85dd5f591

    SHA1

    af48995b9a50e79b4ae3c4aeff59d4c7a0b587e9

    SHA256

    b9310d4c2527d620c0cf5430dd87e0b35d022259a95d4dfe1ac9e7920dac3470

    SHA512

    83c9e059af6c4b3aa6850ce2080036986536dc0fa5a642ac676649cc8a96216818479f0a0b3f4b8aeed8586ef49d0e0743ff43625ea1eed7fe348ed42811f994

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b41cdeb70c6f316e07c0e870bb673598

    SHA1

    088048cdd4f7783a11e9bc988f74f4c92d2129d0

    SHA256

    1dbee931404b83aaa680cadd4ab23882a7ecd2a54e8ac5d9c46aa4aac760b8cd

    SHA512

    7b909ad919d1b513187198aea18ce32eb392cb910304c9aefd88fafa77b3bb50983d52ab3d87fa450b4450356b0bce66eeee3b24c59162a410bd31b1391bb4e7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7202bd6d1eb2ab08baaa7f5cb1c97195

    SHA1

    3d078de4fd2a1f67441a129ec15a3c9a1404e79c

    SHA256

    e1b543ca2642ca92f936aec5bca36f6372055c5cbbaa74cfe0eb6b28268fd8b1

    SHA512

    6824b05265b1baecc5699b99502b3bc5e8675907361d421192e3d159c15cb2df07ac100d790ef1e4ea0355d511fd41cd37e0ddf49af32e7c085e978fb0cd6355

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d7d648c9095124026de62719c5f065ca

    SHA1

    d9e12fb7b503f217bc12128a48065b2031a32400

    SHA256

    3e2bc00238aea55d59752a482f070b7670388c1b04c0c6b0607e21c5820a1f32

    SHA512

    a1f0b403585fb6d0c7cab9bf40044fb1b562a077f91e2aa6cf5582594171dc34b92be550f48029dcfb2577347aef18cc10a5d0bd04b5a1dd0e8eb6a105318b19

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    22db3e083c0bdeffae2315398e692c52

    SHA1

    9ff45dd939727b0d97d2d8b908c0db5d78625b33

    SHA256

    0dfffc72d1f80b54dadeee9498ab24f25232b52fc4c506e2655bb7a52704a9b8

    SHA512

    b65d62fc8ab5cd44d01462f379547d8407619bab8be53752afea6eb71fd262b1185f8c38e5246aa1ac698f7a91c11132b7e12e25487063c4cfa706df9ba840cf

  • C:\Users\Admin\AppData\Local\Temp\Cab3304.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar3317.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\Tar3426.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b