Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 10:08

General

  • Target

    a5022a184cab2e4aaaa29f3badcc94a3_JaffaCakes118.html

  • Size

    57KB

  • MD5

    a5022a184cab2e4aaaa29f3badcc94a3

  • SHA1

    6e617edc51ea585b68c188673630c3198be9263c

  • SHA256

    851cb8fbeebaf25622ddd54b074224c8d06c3b29bc545b545bedead87fbc7222

  • SHA512

    daebab4f7140fe378999add9a14f30b17a26251c92225d4365d259459caacba356931db407b9caf611483dd9adeefd0c5ddd9b1668e7cfd586c0af57808e488a

  • SSDEEP

    1536:3Yi+TsJLAeP33eMrpcLT/wYmFT5G/BSjhGjIMSi6B4HSTNDEm3stiWlD4aLYq/Be:UTsJLAeP33eMrpcLLmFT5aYGSiI4Hgay

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a5022a184cab2e4aaaa29f3badcc94a3_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2336
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2336 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2296

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    cb85f3fcf86ef0de7ef258539cae87de

    SHA1

    c73288fff07885a62f8c7033b348863ed3b8cad1

    SHA256

    7430a96d94b1faa5363b7656b323ffa416fd262e0405e498bb143dc93443963f

    SHA512

    dc152f2e8c8f7e316e84f7a1f3996e02c08d582d6d0e40b8bf7171e359ea952a80b7452e56690b30fe98b4655d4744e8529a930449ef1cd853e377f86294b2d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_45E3C223BCF135987E4038FB6B0DBA13

    Filesize

    724B

    MD5

    037ae8164352ca91e80ad33054d1906d

    SHA1

    1d6520e9f51637e61ee4554393f5ac5eddb18ebd

    SHA256

    07c018eb07002663d5248daa8a65eaf587955e3db45735e7e3ac9cb13d7d664e

    SHA512

    a092a9e43bb47bdb0e081bd4f2c0ef7c6f0ab9fbe3babd624d577186ba52e52e86209a527ced887275b74aa127b03e83c476a2a39a1d6dcf0ba1d024e7bd7730

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F66C41EAA2D81999FE21D0505464F585_C176EBF37ADC469920341144AECDB053

    Filesize

    471B

    MD5

    90f1b54cd8d0976ae9f5fdc103076a49

    SHA1

    5062e76c272e99fad5fe09472fee0c08a179f355

    SHA256

    86e8992427b58647bb8a641a4a43a4b9529ade0bcda1c3d6596a1bd54bdbb1ac

    SHA512

    0a30f126412ad5cc988db9dafdf49cb8d732d6a48b18ad31dccd83814ae107fc6ec512e11efe99be472d51c404fab2704b01c8e0f67b8cec67171b440187b7c0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    6bd53ecbb5ba71bd1fa0c40aba42dee5

    SHA1

    6891a6186227b759f58066ba5543320e5799fea3

    SHA256

    61439b637ced8d087456748b1b2bc01d7fb72d4e1bbfe30dcd060c4e57d2a4c9

    SHA512

    2a05da6b58d75377bb711b876dab7e3c47dfc36d89a3f2d82a000e6b5e4ccc3c567ad324a72f0a830168f98b656d8d0c9cff46e952eacc6e732bf16e2bdf7197

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    95f472cd1dcea67633beb153dd1a3244

    SHA1

    15fa325e83667a461cd2aaf20a79215b0dec46d7

    SHA256

    8237aa49b431092d58afa254058f85ae3ef3d793528c909c934bc566a01e984c

    SHA512

    0e7ca9d9fc0004168b5641946963feeea85cabdbc100cc36ffc0584cbd5685551557dff046ec0f0f9472e8ff001286d29d121cbfcb95b525223c660b3b62c9b9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    635429d6260978b191d1cf180f8660e7

    SHA1

    b050e3458ed47b8237d4f914be16e4ddd4abae1b

    SHA256

    e079c91b91faf0c4ee63140cf93ba45f5217c8c20162eca189e7ad6f3287534a

    SHA512

    797e7e7c21da323a96824499c651436de94a1c56fa8f99aa6f0113f11bb3f9615d65f79928c898872d2ebe2a244322d3b56b16766663e85b8a9f7c006a71c1f5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    be51b1e4fda16ceb3ccb87e97af21512

    SHA1

    3a1ccf1f29a93f12b8173d72b029c532ce430632

    SHA256

    8c83448cf8bf43952598bd23aa3c70ed6f917a8ecee08cea391629b84afc1ab1

    SHA512

    adc5cd24bc3a984f50764fb8ea8433e2b88dfd915be3ef9ae2c521875910f6c113447ea73bb69b038f2640aed5d7b4e93aa6fbd7485b69e6cef919c3936682e1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b7e58128c1521fdb6c86dfa7743bc26d

    SHA1

    52ee21259ab488e1b042b848a53582181b6299a1

    SHA256

    ba62f06f635b43dea8ea4218351ec1fa265a30adc41d9b8c943510bee289d1c1

    SHA512

    0d90af2f9469d5118f9bc34338758540939666b7d328a42beaf2d10685269f3e12bea2c161327d3c614c402d29683973a7f6cda20275cdc7a3c57f54f079658a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    68834f123413598d3ea3f18a0d8c719c

    SHA1

    162d28583bfd91e63a393ba79f1a2f91aec081bf

    SHA256

    6d4be1979c2bcadf55e241060067f2d592bfd10fea156ca9e195c309d4e8d115

    SHA512

    6700006696558ccb0ebafd863cd41b8fe20837f3d624476ae6c2ba1766529096421dfa55cb65179e9918df3eb0253525e7a6239a23330c5d6274271685a9dbce

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e1e683b70a6c3a8115d3be90b0fcb293

    SHA1

    880ca6aa0ef6a7a881e528c333487f09618d5bfa

    SHA256

    8e678502715046392842f4420a7a714e51d350bf4549dc812eb48e617dd662a7

    SHA512

    76d7597707bf525612038680131331508a8a06cb88ff2fccf46588f539fe6b21db33135920b9eea35be26a9d9de5de98d834616c9ddd3153e15665c936138527

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    035c9143cdc32592be2bc2378af90309

    SHA1

    73ca5c46e317840d115a65e8790f8701f571d1a7

    SHA256

    98f03ec9fbed25547185c37611489830522a25270c4b7d439e4589dcac002436

    SHA512

    ab7c1bc71f7c0a012b2d83862d4d922f1a828b8d321658becceb4d7ec3ab6a9d1c3ba10de12ea97b418c00111b483a1f51bf48f40d3adc1abfa2513927dcc0d9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d2b5fc07a48d64261cdc8b9f734207b1

    SHA1

    856c5d2a32584caed75add12b92d56c669024dad

    SHA256

    173b942b878b36db0b4f68fcf82d0d97229adf632909bbab24e44f9586258624

    SHA512

    f5a3ebfb5cf839d88542c6d0724ddf2d5af8ef13bcf071b373bd81592dd406b2424754ae88eeb9d6a5a1238dc85e6fedf03c6636a204101670cefc0069c6958b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    de1c133725ae51595c5503cc03d042e8

    SHA1

    34ed45c484e0080a4d69698ff868acefe58aadac

    SHA256

    90c0ca914a15282fdbb7de07030efccab27c6c3f26e2beb65f5b512983580a6b

    SHA512

    64e8a13372219a247847cec9e309f2d6d1b10be1ea761d101e8b350226d8bea0f4d0f751dcc13b6f56c3aa99759d99a88cb240ed07b18ef1cd7ed974e531c888

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2439934a5ca6f75ade3303462a2166a4

    SHA1

    c98740977e394bc33c0b58cf274cce677e86cbc2

    SHA256

    12a6ccb941ef9cb512bea0fe663b83fbf448e290f053e02164687f99f1254a64

    SHA512

    51daba73e4bd254c1cbd5636e2b7c2a19c555be3adb241fb55a249bb56adb997e6158206d4172f99bbe13530f469cad0d62e912d3aa6eabe49afbbdf8ecaff72

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8a1097b312e82f92749e8c111981f445

    SHA1

    ed03b6ea1da849174c856de78d8cc0c1db68f2ea

    SHA256

    741a99ec6364804aa76204389576cccfb1e4409c014aeec7d3701ce85b79f6d2

    SHA512

    7c09a7f15afaced0893584c75564a20c1af5a2a60f158d989e0147dff596c14c2b400be2516feaa4ce5960a0f7e493a90154ecfa0124cbbc60bc313fefeca888

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6882b653ae0068e3f335b515e5dd46be

    SHA1

    f0eaed7401db7fefe14d45c7d20303748ceb8e06

    SHA256

    2a8b4eedb2c2b376b89501f8382fe53e1dfd1f4afe5602432019a5194b77cba0

    SHA512

    510c0581498cc6fa8a9fe176740415e2876cfc23cb31f752445b2c3ebd1e270670a38ccd1739910da7f415cfe79ee9c7b19eee32f087f746370c33dda5e129eb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0d3f230a4ca5a931503f89f5fd70458f

    SHA1

    e73d06d4886900810b95b8f90da1f6e7c9735ef8

    SHA256

    682d1d297de0424e951b90a2c8055a1abdfa1fa8e91ab13306e227a89a1a4d5a

    SHA512

    f3ec41445abc249b5fffaeba2f35cb8da2f057977cb5e96e65bfbd9c266fd6310bdd08fdd272e53ac7636d7fba73726243dfef582c14df1a3d66b0dcbb7ab400

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    47378cf0462578181f638269afd69b35

    SHA1

    22a476e970986a6890ed2271874dea7abf4e86b4

    SHA256

    406b9951001f115fcfbddb76f5a0ec2ff983fb4db8713ecc75e7e96c8588fe2e

    SHA512

    313b64775aeccb03519c58665b3a079fc5dcf4e508eed3844ea0746fb59022ecb8cbb7847c490bc51b92bac1708dee467a56a9c2a4afd201e1cda5ef6dc62816

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d1c0be2584c80db0dbd91daa036f6956

    SHA1

    b6a048a22fc00cf8a85d7d3a1ebc08bf07796ae2

    SHA256

    8af98253c81095e5b4f99ee3576b90c29ef54161b216d9146be1843f20a17f18

    SHA512

    257130b8c73dab9d09532c93e480f1b99f9aa5637c29aa48cae64a2b34dda3e4da7d7eae68beafa08d19209ad75112425dcd54e5bd653e89d8f300b946a04def

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    663efb9a37f526f6e46f84e171c91d5b

    SHA1

    29b43126a4a5664396124b2a5569248c815352c1

    SHA256

    6153bd868a73230bc85972b6fd588287d5f9398c8561f313b5177900580b97b8

    SHA512

    0f54b16c62ecae1c4703c8cca998e9a087a0062e235878b81b160d90b4a1be764a8a060d57788b6d9222453d8a896db2445b13836da3fcaaa412f052979c3002

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b02f91086944b1c8813c4805374d2009

    SHA1

    c27d3ae8561c45d2842e4d8ae53264be59b2a6c5

    SHA256

    c9ccfe8b78aefae6ce385d148dddf95367507977b27470140c06d3d1303aa90e

    SHA512

    c9401683b337b5aeb48d6d2da59486b399cb5d0ed167ef884582196059dee742e3a6492de46ebb9836a83419b8f56451749e80c260c6d74744fef33a1f80d1ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    25a437f8622d1e94d7d86db4973dfed1

    SHA1

    9a1f30cd1fbc2227d48a5204f7dbc3a6ca91bf46

    SHA256

    855982e3d679a59cbec89d6ef1e93ba23057f56e1c7983ddf1f5f4df25509703

    SHA512

    020e020e6f084d3b285c658661fb126ddbafdce96932b2e25fb3d2ede5f1a74682714a59aab3c181d008e3438b5fe03ee0d8ea7ecfa7947e21e933e47b051c0f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7c847cbcafe4731e36b2b56ed15b9ecb

    SHA1

    e720414645064d3a8fe6bed3cc7c19b60c696a82

    SHA256

    13804b53236c36593758ed9f3f541a1dacf6e5c82920ef2f6a70eedf992105ca

    SHA512

    aadd2fc70cc246d73e97fb34e2d9f8ecabc74c4af4a7c40dd8a12d7cb4f78d9c5e28d207c0f28475272cdfedbe771ab80819fc285cd5cfb6416155026e6f9625

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    186719bf02e322a76eb93ebd15c13762

    SHA1

    3a7878db7587d335609236d9885ac965b9b045d2

    SHA256

    e485fa9e83d00f35a8aa35cef0f50b41401423c6bc0ede4270739e25cf430f17

    SHA512

    09787a70644a4ca0bce9dbbbddcd90127052d2a0a42670dcabdfafd48cbf980db231d3b7005217a2360784d614e96ae664c35eb1269f2ca69ad3c3ff5ceb6cfa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a109b3b2cf9725eff1002f65ca87b881

    SHA1

    a468677d4425af347681b8a5db116f9dd581d805

    SHA256

    0dc8dbd0e905af3e7c6ebc84487a624d715019e4b776e5915df0d4e3ef380b09

    SHA512

    eafd4daace34897ce6797def665e9beb5ed9efe47af8732bd8066a8c6572509691fd6260817c1ee3d550027137b21d4b74a3ec669aef83e98eb00f5f4dbf20a6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F66C41EAA2D81999FE21D0505464F585_C176EBF37ADC469920341144AECDB053

    Filesize

    434B

    MD5

    7132e381c7bf0365e705410e29870675

    SHA1

    3ad47ef50b190027beaeb6900f6b865be2e098dd

    SHA256

    5cc0a75c8270971e4f822cae7a5abb3996e98bbbd1fc6e4eaffbb3f9228bbb24

    SHA512

    f6818b3bcfc5b2a28da858557bee3d1c9e8cd6dc074742b836870411c773b5419f4f92ff45557313285cd228f16d501cf5be64a4b0adea36faf2bb05e0e5e8c3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F66C41EAA2D81999FE21D0505464F585_C176EBF37ADC469920341144AECDB053

    Filesize

    434B

    MD5

    64635c078aa0bb7477923e1695806394

    SHA1

    39d26ba961f3ccee247ad52e9a62b7f7ac795859

    SHA256

    2895e81e1faacb7fa1170b8597e46ddc5e66acbf05373d6418cbc7db640d4a87

    SHA512

    ad1646c9c57999a6ba213710c7ceb3c7a8007430419c83108ca128a12a6ca412c865fda5fc6a6895b1e2f0f193e433db512eee0bdd6c4a83a74149d2ce9148a1

  • C:\Users\Admin\AppData\Local\Temp\Cab1E2D.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar1E4F.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b