Analysis

  • max time kernel
    144s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 10:08

General

  • Target

    a501b5ad3be5a32e9be8f2fded7d0846_JaffaCakes118.html

  • Size

    275KB

  • MD5

    a501b5ad3be5a32e9be8f2fded7d0846

  • SHA1

    cf19453fe15fcf221df71e5ba9a9d1c7cd6ad8a9

  • SHA256

    6414b7dbd3c5360142497c5510375e95870dfe331b5f4abd6626d6eb47e23185

  • SHA512

    8245b7e09160bdfca73f09622514438f9804f0d63e61ddbe05053ecdfdc002bed1c5659a0e39c5a68a96e31f03408ba25b94108524bf51aba4856aa25451edca

  • SSDEEP

    3072:SPped4XzGYX9Sdh9X+yfkMY+BES09JXAnyrZalI+Y5yfkMY+BES09JXAnyrZalIO:SP2sMYod+X3oI+YcsMYod+X3oI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a501b5ad3be5a32e9be8f2fded7d0846_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1948
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1948 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2340

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7ec689e23a186ed7021ea1f5c9441224

    SHA1

    5d43a783055d6c3920f2e77fc80337ba4eac2e9c

    SHA256

    63f36b90e891ce5e91e7c58b13bc555fc5224b855da7d1621797fd53a5fe6ce3

    SHA512

    64662512c29e383aa461aa0c081c35abe5fba054df63a2e163802c8a69a873ce722fb4ae2c7347f22b1828c3201d5c9cb0cb3c1f7998b26bc624fd153317a6d5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8a2143fde0d2af4125d75d30e5284ef6

    SHA1

    4d4b53d1461487d398402da70c3a2b245ed320f9

    SHA256

    c4c75a12c088bc29d93ef307a6de4fdcb052aeb83102fcb241ebabb904e2f4b8

    SHA512

    485b361e154e7b178f41a557800f754edb212f34f45a9613e920f5cf29d2abfd4edb9827f907bb70ae581a981a101cef2aa0dc025ca960c13f2ff3c6e066ef43

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0463d3d84d9a1aa6c2550da58a7d8980

    SHA1

    0f45750632d6d4f19d085c91bc92cf3d9001806a

    SHA256

    371c88e39ce0f9569bda1fee055fbd47d3cd7a2110776964a7ace4628b658e17

    SHA512

    66cc10976fe21ba8565035a6427013e47aa9509fceed80909570acea991ff9178e15df0fd21c9c7edab856f3cc4894d36c72f7a1f50a70fc2db95b664cd9651a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4efcd7da0d3a3005127ccc0b29ee5545

    SHA1

    dfcf65cf1d5bcce54a20091a5eda8148edacdadc

    SHA256

    490820b10bfe35bce8099d1a2fc01741fe6ec4dd9e46dda4e8cc28825f048897

    SHA512

    56ed449d99be14159ffab93bbaab70d997b4e0069384ea7393858d03352a4a147fee69c09fe20ba1985ccda09b4555e90f92ffa5c63493197301ceec8392e58e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    379af69061efccb257a4fd7240826245

    SHA1

    f4c3914d4153b082965055ace9c63787bf7cf039

    SHA256

    9c8ff646d732df61bb009c9ea49ac4258f1a71486b833089e77cd214a7448d00

    SHA512

    7c4da4ec18e50a0bc7876212f8df1e3828ae91de4927adb93ececb99fda2186473326865959766d061b6670ea164e00ce475290f73c15021f91aa669d6cf9d57

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    260a1d286ea19b3477b2b24154a9bce7

    SHA1

    2c1a55c2bdb00cb61bd823a6a9ad5eb037b3e44f

    SHA256

    5755d2f7ed352fa97d71d1c3f897f2ca9a2cc0fef9a1a35eceda519f6b14cab9

    SHA512

    57e609bf438ae68198b0599de5a87c137299acca99c02780dbbe801fb753bd2a2d79b835805732b375264ade9f597dbeb2494dfb6d486b7cf1676055bddf764f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e84cc11a0e5aec8515f79ed0627ddedf

    SHA1

    299fee3892c8fbebbd5fa9d9ca2a3313bdd42138

    SHA256

    119e583f7acee5c763f782d5d9c29dc325c638b41a58267c0ed3af2416954d6c

    SHA512

    5248e8e7b5cc612fd1f6c26dd8626d139f008316ccdbed917d8c595e8157115bb48e327395568c35159b135a7c3019d720caf624f823636a6e08da5e5a0f0e1e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d6eab1eb0496f597d303c40b0f1acd43

    SHA1

    79b2a9d8c77527a6cad1022fb42ca2230df56250

    SHA256

    1568c08d980289e54a881bdc77afc0ba72ad23b7e1cf86f2f0bdcbdbfa7a10b5

    SHA512

    1a2436d479e242e423d875436af2c9059ed81c3b9b6dbd9468da63955d506eda3f4a8a9217233ed62bd74eaee7d794629b207a9f39da62fd95a5783350643dbe

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2df20a03db9e858f69b2d75ab8bac461

    SHA1

    b6ed5e29e28c72bd493c9b9ad14c2fdb7b9248df

    SHA256

    f17b1bd35cf18d2ba826f047aae1765e21584fa1e046c98577800e330fcd001d

    SHA512

    632d993b216ebadbcc6a3b1bc4e0d5e18984fe3be0814ee2dd9a626c7613626812910c8d588891746cd8e3f387046e4a44e095cf8d1ba804d2943f94e4ac226f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2997fc8c1741048074740d08948fc521

    SHA1

    9dd987f0eb90a524338ac259fae8e09b7457134e

    SHA256

    3f1facc83a6fa0450f00edc9887b6dda174d7e481fa6126297c326a4aecb5b9d

    SHA512

    0e132e97bd793078d85d22e1c1c6ac446f1bc41d09f9260c03f4ca7a10290b8205664ed0abff14c3ea4f3ce402641c4c3fa907c5e5204fa911016de4216f3334

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    599dbdadec4593491eb1eb8b4dddaf0c

    SHA1

    71a06e2fb0336c781a3fa7ba371d2fd200b9a7a9

    SHA256

    ef36d8a608ba2bb2558f72050f9b8fccb80d9723d78208499b6dd8773fcc17bc

    SHA512

    327927e9b3f88d4e994dbb7294bffda9e5fd5dc304f60edd2fb59b00ebc8f9be2cc08f101fd3df2fbbceedff966285186db2f90ba0f91411acbbd1a3b495f96a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2e2c0ec30adf070c8ecc0201842c0127

    SHA1

    eb4b5b9923149efc453298231d20013a0c0b655c

    SHA256

    eb9946f8945c3f2f2a16ee219d41580dcc83c687b651b4b29f8d9384ff321e54

    SHA512

    f8b17301eb72533685b36132b2de0220932cf72ec8d33f948f3a70994ac0cd7d095f7555794666090faf9080ab3404831b3bbcf8864830ed144314d40f12c0fa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4ecca805d80a2153f6cb187c398e64fe

    SHA1

    914a250fbfddcbfe4d450897fcddbf0dfa01df59

    SHA256

    6916beb113e44c74549ed46b86ab4cf8fa9dd9a8fe31ec587cbf19c9c5c9804e

    SHA512

    e125d243f0c57f6d5a7ed70d269de4bd3adbad008c3d3ad6f078c15e1d43e99ce3f49de6dc8dacad381aef135e074eeaf7598081a2e85b014961ced33edc2212

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7913499002adf75efb930a4eac6c1d3d

    SHA1

    3f2a6a8b1e20676326c23ac86fcf9c96c1acac3d

    SHA256

    0d6533d235bdf6f58a4a2124dbd01d9773f73af13f3b95d4b2f17d4ce8a2bf1a

    SHA512

    898fb23a1b8b6844daf06d790866dffd5c11f4834b6d3952ac370ddb29c02ca87c483894760699785db196b3d9ed3515aef36cc3b1e57d74d3ce807018d8a9c7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f4bf8e8dbce0f20b4e9fcc769df3a3cb

    SHA1

    3394c334ea988334b5397eef718cbbbbb57905db

    SHA256

    0d8265b415473f9f582ee2befcb7feef801487fb10e21823020bea9d1bf925c7

    SHA512

    2b49966381691a77867d2c83489f6380b12e925607492ba435c4632b6c126024831fe34a428b2e1b12c27c19683553dc20b46ba53422f8517ab7cdb3b192ce5e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    36019ee71d11c94b648ce2884bc322bd

    SHA1

    1bebc84758d6c60824553108940c4912bf5c88d8

    SHA256

    5272e37c58e1fb0e0a96ebbae0d8529d8a9baf9dd68d864205be82131f79962c

    SHA512

    75984305349a8d7a7157734adac30f34531d3be9fb65675c665201186b1124793262d97d8d1dea5af1b57f4fd2e8d6a391873b8ec04be40246ec1681c5cc545f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0f3b8bc24b5b94be81805eb852e65eb7

    SHA1

    fd7fb054e588332eb1e7af0b6d3db2bd7fb5b7bc

    SHA256

    67007209fe355805f17684f26c9f9b6e1741335391d9b93432ec61dbdae96510

    SHA512

    1d08a0bdb11fed72137c7b248fdc9445c562b6c5693f1fd1b2528b79cee54171b4b446c56206ad1598be0a5db6d1620ef2ca2aec509485fdc6aa0d81ed7cb0f6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5dfaf01b712022e92c93aa916bbb0785

    SHA1

    f58118cb5b6db297570ea5883debb0b5e59fb3e5

    SHA256

    6e9afbec945065b41ef9631d9681bb60da19795c9784e9d2f8c2da635ed62973

    SHA512

    a08986ec9dc8e636b9d018809e9159bdd3db2121ea290e8f59ca5f5fbb42a346419c5a20c2b6e03260c494b1ebab06466bd18d7a4a47d6abee21516314c48095

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4047ec71d87dda78734aa1af508418f1

    SHA1

    6f512c770c45d28f8367773f55a9716a3dbe165f

    SHA256

    f5760880c450ba278ca625eb1713bc3d65ddcbd5f5066260ab416d54de42ea47

    SHA512

    99370ab1813afb299bf6b191bd6e3490ac835e7f7a8e4b0ee0e23835256b1546eb8fc1830163a3658e1380941bb2c244c127faa678a96b712f07db0e48811196

  • C:\Users\Admin\AppData\Local\Temp\Cab4444.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar4554.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b