Analysis

  • max time kernel
    140s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 09:26

General

  • Target

    a4d7f82ec5ff1ed6297c7dcd4cd5a5ce_JaffaCakes118.html

  • Size

    43KB

  • MD5

    a4d7f82ec5ff1ed6297c7dcd4cd5a5ce

  • SHA1

    7d5737ecc9ebd84f8204ec30829350a324baa36c

  • SHA256

    4617500355a043bca9bdc5896be9efb7de5aa44f8a3b14a87715519fb987a1b8

  • SHA512

    f3792f2d01681cc7e80c55a1ecb598cce349d0652ede526e42b747444581f93b9858c14b80396b8647283c793b76b6a6c627534b6f59df5fdccbe53137cd8e87

  • SSDEEP

    768:CXC7HVscF8tyME9eahZ3/094I8Am/bsq99:CXWSc65BzQsq99

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a4d7f82ec5ff1ed6297c7dcd4cd5a5ce_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1740
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1740 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2916

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    445a9d31ff319910ef8a9b45aab4b9be

    SHA1

    0c5a5713be7f5815f5fdccdfb50d86ebd0f848ef

    SHA256

    576872cda236135698e1a9c458f24189875ff2f7a0dd73806dec98ee94746f6b

    SHA512

    57abd82c45dc1e096c71d5c63403b9e76143bf9fa5bf2f28acf3a1bc44b596786d71830ab347d57155167a27a7ff142d8434fd65589cd016847ad8159214ed0f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a3fe60dbf34f8de35cfd89c59259522f

    SHA1

    929f570e16d5eaba2a41ee1809739021555708b0

    SHA256

    75a0aa4824c74963c3177cbe92ef471029cac764c45595f60963a680179770df

    SHA512

    1ea3ac05a09c1de5ec61eb4e9385b27fd5757163a44f29b64d7691afcc0f2f7360179538f32a50c732dc970e318d8eb20e4e41648a475a6b36ced002772fe13e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a5c9d07bc161c1d1930cbee4ab4af876

    SHA1

    c239d00179280025f536bcbde0f02f9641baa9bd

    SHA256

    66ffdc763d4418aabe87fe7703d5c9d4d466b004c4b1ab927995b6ce5a71dd20

    SHA512

    ece3f09324e38085b94277a4020856e7101c436b34e414878cd6be23f5db0c1b61b1b1057fb1fa696829de6a1c860d47990c16288d479bf7ec168beb4fc7ddaa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7c1c04228276c64214c9354423532c7e

    SHA1

    b6df1b4b1da340cdac3e6e4f43c2643f88149ee5

    SHA256

    55841123becd1a28cfec1a9f85fea79a7df4bdd74eb9e0ecccf2acac456c8768

    SHA512

    d2de717af8af788be80bfd0aa5dd24464fae7c8fd2d8c08dc5090371bc98e2bbb7032581ef57bb47f170ba961a668d2c68626263385b6cd5de88196a1feb57b4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    88141f4bde3331af2b9d89741f8b0867

    SHA1

    e0ecdbe37d3d2c954bf423520cc3c6b5f7f1fc03

    SHA256

    cc13069f6c29003ebd5335969e2049e843380ef83bdea5ebe7933e636765686c

    SHA512

    7fe2850fb34fa6d036e62886dc4074178c2455fa0b9eba81380c24550b9d874b63f94200e5985047388e109fd99e72d3b7973e2dab3ffd96544d5cf741430475

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ab45405b1a688b240a0a7c1dcfe2f90d

    SHA1

    865798d09e0c48668a8103eacedba26accc51e31

    SHA256

    a05654081916c45a82df8bb461ff35db51b91ee8eed9ede3abd5c08a3959df32

    SHA512

    979c80574bab1ec577bca7f17875ed27068863445b105f6cb1ab0af64046eb0654cbe665204775632e6539da69b0037932645218164fe78174f262c89207dda3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a456f6e09c04fa544a98fcce641153b3

    SHA1

    3095f049377313c291f3202ff63a9aec140ea4b8

    SHA256

    cf2725ac78a6027f106759bee08965bf3ea94a20c881b2b0da0e1fe0ac8cf39e

    SHA512

    af9a4bf385ff25fbf0e6f13ea78ec4eb10668f61b99f487036a4c6be9349ac6b46177b5ee667dead20cdaee2df1cb7c5ac2a89c9dabe7a6edc354f61a02d93ef

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    93e5b2bca05a5b4acbdf1ca96dd62065

    SHA1

    62e83692ff79570b60fb74cd113b909bbc3ad6ec

    SHA256

    3fcfba14d2883f19ca86872ee02334b69e02185fb6dbe15448acd2047bf048de

    SHA512

    05da2a598a101f05bc401186446fef11a23a8867fa91202f2e15f9b3e6d6694427618d0b3d8f36c1f4b4d7324c6eb1ebbdb15767599fc275cc6f8405a9b02bc0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b1dddbb40a61ebf32637e68aac20d432

    SHA1

    20c83f8892222d5e3c032201f22879dc5d6fdf84

    SHA256

    cdcf063d5c63b23c9d62f14da7b1a4df0fecbaa5f9c03e9b69a24375185c9919

    SHA512

    2cd3c742a0c929a5408b6d498da9135fd0c37e59ff6b4bc9f6425295ebefb1f70114227b5fd044bc1d20fa2a331588f2ab50cb7fd926c695b1eb3bc9a45e9a3c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4e022b787d2564e9a2a31bcbbbe5a169

    SHA1

    87d226ebe0bc0deb0946238ed018697bf7942103

    SHA256

    c41b25d709289c017d26c226dc841519c726ce8f893d9d1926c16fa8449ef7f6

    SHA512

    cb0630d222583e3baf1d75cf00f20ae4739dd61b83306caae7e9883fe123b51effe5c2f0337466160f1723a778ce36a9fd9bf1057efa0458baf0dde8b93a955f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    45f6a1a2a3da7a50bcdab29068af5452

    SHA1

    0e97eed77367b97c9dc42d3ce036bc7caa34df7c

    SHA256

    40fab665c7e6cbd9b80409695d9855e0614e44250b07fa6d48f8ee4d77112cfc

    SHA512

    c6c9a6f336610f14e3f08db60185838a968360f96069b3261125edd64bf1391115563786a7877d47251fdc8385a6f05a0e3c1aee46ea0c1fb0bc915afa861570

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b7cbfc87e66255af54bc14181a6c709b

    SHA1

    e6769567c8057696cacea68078d42e00cf2dc903

    SHA256

    7940b8784afad97d2ebcf8e79a9ed9d21c3d9200a47d5e523f57ff509e4c40da

    SHA512

    ace50d2c2647f44083be3e2c3be639f6eae08b748170bf957bf4b68a08727ce617104e891cd434f41ce62ec37b5a05933294213e487f91d99f6e52b13ce7d6f0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c4efcdfc1346fcb7b75a642dcc1bded2

    SHA1

    e9b1f7217ee3d69fa7538ae2ae99406e3bed0cf3

    SHA256

    4d957aff9f30b6d70f45c8d604ad3a641b7235cf57c021b844418323a6044d2f

    SHA512

    e2433bbaf22df8087acfbb3ec4777c0bc4d65d7b9c3abe293464cef95effa79830bccc6452655b30d90fb7d5fd1838a1f5988f58af6485f41f83fbf8da271eb0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d0089280d9541d5a120fa58fcbf9347a

    SHA1

    64b3bf85a006fe1ac349a62bbddf9d14eb1e691b

    SHA256

    48e8a0f28fcab656e761cbf3668344915a0b2520e3cfb9cd88f690ec33c159a0

    SHA512

    4434d419eddc1e01af080d454e4c5dd9feeef0766a399a4c61cb2da084ffc847147411c245a0d5f33eb62a932af3167ecd1ce70f39f4c859c0e7944c30bb12ce

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fae53e9e2fb52957ff6aa76828686026

    SHA1

    7127a0b5aebe34bcf7dd5279843cee4a873461b6

    SHA256

    ef841aee0614914d7d581614604bcddf4bb36cbf6c861bcc54f19a18c7cc376d

    SHA512

    2a3a068837067ef1fffb933ea6a8075b68433006ae61d3a047eb90c1b9384e0b597dcc246f32e1dbd5a90ce1b7962f7ea90b187bc20e10c3ce699dddd54d3880

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cd51b2540334e785ae39e8bc734b82ae

    SHA1

    2a07db72fc746c833f27137a5ae0e1550e275e7d

    SHA256

    53be7c27b3bf140b87a2766534577487ee18a4a9ed0c71d5cc586129100f79b9

    SHA512

    0411aae2db74bace04b1701ecc33efc0f3d820aa38fb131541aedfc6aea907aa01c5c737c2ba0c271805a8f6c92b9d27fdca6902e47b914793dcc07fcdad4a73

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b955d6751d4c7f288e370b227fd35786

    SHA1

    e2bd979dfaf76798bc14f7227e8b8699316fbc66

    SHA256

    82b497d456e5bf4c97a7991affb1f68913de798a18fe3eedd4408668249fdcea

    SHA512

    c58c41681b596c54c8e4ad5a129bfe8238b262f3fc5851f7b4babd2707a7960fc0811554d77ef451e4d5699520b7e25b59438ca51e406b81dd5bda93abfe139c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ad9dcf115ccbddf40a6f276ab910fb81

    SHA1

    716d956388d151a3737245e9d3e375e1777bb3a9

    SHA256

    deb3b35c3a46d4a9e6ae9c44e5126d22f27604dfe5204d32f2449635eca7bddb

    SHA512

    a2db90a091cc93199b7e8a60068167b10d0a9433e188721f44fd728d32e22988b1bbba2fa9b03049d0075fbdd626dfabd6cb3fd8344bca66f8efc59136ce70b9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    51d35815f14bf1cbd05ee8d6ad25c239

    SHA1

    f7aaf80e99ea225a7172779907f2a38989d3e94c

    SHA256

    25403f4b4bfaaef1ac3557f8f5ca463078a6a79559f9795a800e5111b0e2a3e0

    SHA512

    795eaf99b1efa81921714f3f63d30aca76e15f693dd79ebb0fd8d3f900d84d1c8ea752429757f464cbbbfd64a83bf2ec1e9063af815b549b16c51f9085937830

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    02bab389951a3dbd1b07515604838c54

    SHA1

    ce77066138ddcc42739161e2a8b84f20cd4f694f

    SHA256

    e7ae9e2fced851be922233cb2214567e45b1cb449e4f392914079db4041681b1

    SHA512

    50574d3930b5d03e56bf4f048f2e413de3358c146868fbb8df3ed57957f6b31821765727bd92eb330d2c8b3f4c650fdc2f80ae4095ee10e600787d975131ad1e

  • C:\Users\Admin\AppData\Local\Temp\Cab17D5.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar3141.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\Tar3241.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b