Analysis

  • max time kernel
    136s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 10:08

General

  • Target

    a5029cc55b4e2cb09995def01c22c422_JaffaCakes118.html

  • Size

    69KB

  • MD5

    a5029cc55b4e2cb09995def01c22c422

  • SHA1

    9428791e6e2e1d8a97254721a108c94af64d67a7

  • SHA256

    6a321af571a723493e95cf2318555b3d3db718927ca88b6da54e0ca19f01c460

  • SHA512

    c0d40807c276a43833a4333c8e9755377d8f7de0746821bc97fb680dedc299609cf9058e414b72c8165a456d27d91e8eadc9174da2213d56135a91faf93cd491

  • SSDEEP

    768:JibgcMWR3sI2PDDnd0g6sd9djeHdGoTyZ1wCZkoTyMdtbBnfBgN8/lboiGhcRoQS:JJaRTSNen0tbrga90hcJNnspv

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a5029cc55b4e2cb09995def01c22c422_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2192
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2192 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2144

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7d721a85c17411a33a56c1b7e8811ac9

    SHA1

    d2b9f49f0d7596226fd0605e130650267f800eca

    SHA256

    2b81b39023ebf389a3e3e0120fbbbd560125ab3b3d951b8ad1f1568fa9ca1836

    SHA512

    2dfa803502f9d03d126add36d6da80b82404df293b93790c34a2dc4e25d406d01a7a6d4a920437d5bd4f69fc38417d9443b0b1cc3072eb8d73321a145f7ec3fe

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e5b15a10a2e366afe8a550e269b59862

    SHA1

    1e4225f629c9f9762f3a6c04cf5a56ef329738d4

    SHA256

    323b713f466068209bc50b135bb0b9e40a50d908e05bf02abe6a3d25f9044d46

    SHA512

    124d01bb1b12c3151d7302aca5542152fb4cae6b292ec56a77d4a7729b4b46c8a147dbd7a79211b8fb50f01575037e5fabfdd0d51a1fd206efdca78ca2225380

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    09cdf41268a9dec8d0091eecf3c63795

    SHA1

    ed19f52e188a2034601c95d850764e93037885ef

    SHA256

    a8ae49f45c32fbff84b102f837893a43314e6ca158de5e561b5ee5959a4e21ba

    SHA512

    73f23ba65eb709feff4b84d3e21459ad6238d55dd65ba4865df1f2e2919d45c1fc8270a0b8df3cda492e3a28e207641e79191d821fe6ae6cf580e0ed6d4c244b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fb597c7eba734ed72bf28b82f79514a4

    SHA1

    bf127fba75910ce72ff87c1f1e6d81ce8e1f1939

    SHA256

    e997a26db60967609a09b56f324b9d60d3dfb5e8476548172f7b77cfbcf07329

    SHA512

    8aa819c00877a0afd33ad754381cc0ecef9853003a3b13dcda3ec93f5fbbae11dc770e9383ace6612510cc23ef8208a4917d04212bda4e33eb365cc2b1e476e1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d0f85951452050bf2c713fb02b372d63

    SHA1

    2470e4b06d4a93dd374e7803ab0d8f46f91eaff7

    SHA256

    b7c60bf2d74d842ec40a6a6a508e168c2b9f0085d9b41a782460ce4cf1d0e153

    SHA512

    eca91595165e98a3bbfd31c44589ea8ed0ecaaca91c0043de51be76eb0cbc0f94a04f2db7a3258d676f2b7911cad7ba4210723f446db13a9fc1876d5c09f8417

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a3cccb9f48b2a884023bcb33d3ec2ac1

    SHA1

    d1eed20706c0d5f76d6ecde765e9c9e998f57b68

    SHA256

    738038666934cddd4ed0b8e21d3242b2684d735bcc844e8c0aecfa0b5bdef7d4

    SHA512

    3f993cf3503abb0c76b45d9e13a877ece2575feda7742a8b945e3f826fc53c45e5cc0f1cda512cf0482a457b336baf1520e9c74128f289452a29f7be6bef73ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6570a7275261681d84dea77db4bc8405

    SHA1

    27aa9c322bbf1ff8b7bf8ff29ef390ef9b93a81e

    SHA256

    cfbd1f619852992615140bccdec76712f596e1ff4cf00ac21d7b7f204b0c3719

    SHA512

    95350e21b7338ab25a2335a47bbeb2c677da23d9cb44c099f51332e1136c12b1fbd26601e41c0717c5f3d38253b3ac4e458ce746e3d1509b8fe251596e4a3ca2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6c47c713044773192695bf4c8e385b03

    SHA1

    d7bac309962954710692d5d070c851c44883b6ff

    SHA256

    821fceb75e735258cc24c4692f7a9601c2421edda1c6052d0c20f024beabd154

    SHA512

    624561b6111321f49f5738bcab63f1665b16c922e511e38d7812f867486c81c9ca9e9d29aa18653faf6c52ed5f91580459d83542ae8b7e01cece9954eaf7edd8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1fa071fd863dbb77d3c6c1112f8817ce

    SHA1

    b287691eeb23af504dc4cca97b9936627ef40ed9

    SHA256

    edb2fe62ff18a219b70498436af2929a568516e93ad899c5ec737d866963c43c

    SHA512

    59991e2f3e2a946c21703daec509634a02bb6c60fd86e19a53a7b87651dbf0cfbea2bef82f7690d443bd408bdbd40c3d4c4522e89a67797c86207998bc3c7330

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a2d9b63e45a41aa58fde65f21005bea1

    SHA1

    abed3729aed3571304ef22d114e984f39ea9af58

    SHA256

    f6bb6a3d6200b7514342811b8ec513f19725a7021da8aceaeb64e5edc6c9e2aa

    SHA512

    80b78eb6d6b693bf6199007f3fec9fb1fe466ef454c3b4cf16b844a487e5663fd4c35c17b6c77fd9ccd4213691c72962cfb72543df9874d3f88d18c380bb478d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ac762f7636c94b3c7b2c1ba74ccf5ba5

    SHA1

    31bd9a96880e7a0fa233dcd67f7898f7bc541d08

    SHA256

    0a02e7e04ee781d6a10b620d277a0117834ae873a82dbf4ac013ee621ede2cb0

    SHA512

    5f6136976a4972aedb7fbf5637a909210dbab95a5bfa4b0d0c27cd0ba873d215ebd60bffc8104fbf4899030c893ef50b81317ccced8ade01c22333fdb2c373a0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5125513a3f356b3df21e66399ff34d8c

    SHA1

    3590ae152f1f9cac46fb1716c59d2980a97ceeec

    SHA256

    c42c89827da2f09498092bd3aa5b3024a1050c50dbefcfcff14da4cf5be9e3f7

    SHA512

    3645d751ebf61a79a576325a9217dd1b0128b49acab2c22621581c41dfc8fe9d98e66bfd31c2dc335d7858cfc800b877ac2f886a0b9e75dbdbcea71c8876090e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    60648ac3ddc79a42b7d8fbfc0006f873

    SHA1

    89484d0cfb04d5dd10575d73d2cc45a3b222e768

    SHA256

    053821a36d0b7271509c1b5f12bdfb1099c6d502017748eae01773e5b89cc7ec

    SHA512

    982da7fe8f986bf2cd4dfc675fe17dc3809c2f00ddf6becac9daaa40a5e7551060999b44067e6e8f7736dcd82666903ab9ee5b1dceeaed1a3bcb6f4fcc3f78a1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5714147ac77842ab2f75d6e2eed60b91

    SHA1

    c963b1f2c5f117d2b4263c27be62af74855c0068

    SHA256

    9d7bb7b9590ae81cc58804681ba473d12c7773498663295a0d55f34b47d90cdc

    SHA512

    7d53ab2ba88e6ba4bb8fb58deabd9664c1928f09db13ea707a5b0b3aa3f5554b2eed8f08472d4e170b6aaae16e43dc0f632b38633c1f27e0f0d2450600be8510

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e9dab8868200fd1f7a5bd9c5cff6562a

    SHA1

    a899ea1db664e631db3636b64454e61f3aa4e249

    SHA256

    e0705eb43a14ecda5bae2ed9682679afff163e40ab6018a70b0f195f4bd31bd8

    SHA512

    94c995b13b79e646788b47763b671c88b6993c469caf743f772e6eb4d4c5eb4ffa31a633d0a53c56e034ca80475a1318c5f3e9f8736328b46a2e1106e84ff970

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b4a3a0873817a6e7cdb7ecf3c1db037a

    SHA1

    05f429dacc5d6c33fd85768ca3716f2f7fdbbb8b

    SHA256

    8aaba53cd5f403602f5a8f74dfe465c08a723ca7609f54cd724b96dbe75907f0

    SHA512

    7b2804b9535327161ae3858b38000a8c2bbe4f73575708ce9d11ecdcf2817c7d38ff1042ef36cb24f746006ddb0ef7ad1a15ed5549c4790d296b76c3efee4635

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ef4e17c672c8374eafc3de68f059a9ce

    SHA1

    39f3b9be778458daf6a55ba2f67e371c70fe9616

    SHA256

    3231eda8987dc7076beea0d7184534d636b597225b1a042857cf1d09e87ebc36

    SHA512

    c356fd7ede0d10d50d9466231dee1da531d00853a2c17a57ec07574fa4da6ca185755a4f5c6236fbc14dee5da9ff2bef3ac3797c9c5d0ad77148344d66397a84

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    314950d81e6786fb5363c7465e404c30

    SHA1

    459e6f2de943a8363bf7bdbcca32c5b0de31da38

    SHA256

    684f5da92005f4acecc157ac711386d41945dbdb7ceae94e40f683e47d78dfab

    SHA512

    90dc2204b691cbf6d1772c01cbcd380723db64649ae79683080aed765d29b2277c938c672a81c962e90f082e99ea4864826bbf885f492bc0677e1d4f7eac6376

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    762a3ac97e1c7167ff7857c663706e45

    SHA1

    d0c943fe00a8515cddf26fe5b088d06cc6fb8f04

    SHA256

    af9f040092b0dc395dadf5e6dfbfef412a33c05172fcd8d4e97f286c37177c75

    SHA512

    d4e8bb1eb1c2bbff5005f13d52ed54b4b1e40b70b40f2129c969e499435499add6a9a150120c3fb8614df6e024702373c995354d435d0082417f6927392119c6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    60e5498211efb18ef47f1eb86084422a

    SHA1

    c7bdba2ccd175d068c4e124efa4eed327dcaa2f4

    SHA256

    9e6a37ec358dfeca893b96c97518905a25fc71b31b507726a5e091273c6d7162

    SHA512

    65f8082dc4dad7b8e057f4199066b1d453e5b6398e3aac0f25a329b9c945bd0ddcf183cfbed44f6c74cad8701c6a7658e9997d163ae1d353b2f0263bd1ae8781

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    83b94d62e406cc651177f6a0acf63488

    SHA1

    762f4ad660b2c5fc3c601d27dd4d539e611c3e3a

    SHA256

    8686447723d45afa938971f9dda83555d7f5c7c14a580152811da8efb74c8ccb

    SHA512

    a1fc9f949908448a6153e0997644e06714a71b99403fc806a61aaf072c631fe998e04cae690e96c13d598fc9b4678d7a08eb1da5587468c45197e3cec97bdcdb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ad71cbf3738d770a52e338608d05f3be

    SHA1

    fb905e5dbcec80bb20199ec8bcf6d70308fb505c

    SHA256

    a38cc395f3606b6d048861f1ceb506855c27e591a21c1ce661e6d477caed14bf

    SHA512

    7faabd442bfc94a81687f8ddd09d3bb3bddea217df66057e67971ca22ecfdf7dbc3480574bd46cad0e9995b278b3f4a49fec75fbcd51c910be1623886d4b2ab9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cff44ed81d6d6ea124b2080a402737c2

    SHA1

    5abb1d0e7d5b69b0011cb9306ede7b3ad848243f

    SHA256

    db731beff367855fdfb254f2a5f705d826fa0ee377c1dd4323801af57f8dbe11

    SHA512

    40e3061b38be52b12f8d4b1a098be0bab57efffacd63de3f4e9d80cf43deaeb83c493335e0f3d6c883cbcac98074864cdaea87488b04f5a2a40f17a9bfd3890b

  • C:\Users\Admin\AppData\Local\Temp\Cab6A3B.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar6AF9.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b