Analysis

  • max time kernel
    117s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 09:39

General

  • Target

    a4e4d2f3a090bd99168298ebbe49e7e0_JaffaCakes118.html

  • Size

    225KB

  • MD5

    a4e4d2f3a090bd99168298ebbe49e7e0

  • SHA1

    5230e14191f4079acc27dc7bdcf2e1dbf1e4ae8b

  • SHA256

    469bf3669761f024bc3da16679065799340bca217d9ec3e5e81dd09f7f3f1fab

  • SHA512

    c77d15f66e2b9b2ce4ca9feae513de7b4730d3144c7bb0d985b2156d9afd50f58075f655610c4c3ff32dcac266179ee00af25236d0c45ef0bc220b21f4d57610

  • SSDEEP

    3072:S0OyfkMY+BES09JXAnyrZalI+YuyfkMY+BES09JXAnyrZalI+YQ:S0rsMYod+X3oI+YLsMYod+X3oI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 43 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a4e4d2f3a090bd99168298ebbe49e7e0_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2880
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2880 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2772

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    cc7cb016fd362b0576967b0c24f37a53

    SHA1

    6c5f3408b30aafdcc0537d5a7689b521e3b3b323

    SHA256

    dda6e1005dfceca2675e453bdc350d618ea9fe88cdd2d612fee8bd404b49a90e

    SHA512

    3f853929b64da647000b1a1994a7fde4327ca1ecf1608596fac52b9e0bf838fa410eee67c7cbd04fbdaaf7c5e8c2e1e30afb75e72195b4167ea0b0d3efd27b10

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    964a5056a5682fe0ce73253cf3ed4e0f

    SHA1

    10c69b4418aa6a465b5e5beb6e46be765ef92a9f

    SHA256

    53081211c649292bd4775bcb3b7a3fed380e9e70b67269e129baaa0b2d4b286a

    SHA512

    a5da2a4b1d479d9dce9bb90cfbe6b959be63f548c7cdf4b81bee072d197605005888b0afdc6fbd63bc303a5843b65b0f17976312517e8810a165912c34376f92

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    51469965a04f8c903594ff7344dadff9

    SHA1

    9a2d93ccd941c7c41d99a6cdc9bfe5d40094a329

    SHA256

    b9d15b13ddd81770f580db65d5194ac7e47214f6656c55f13f3a21ab9373970a

    SHA512

    69966c8076b17c17ae8e4405c6eb56a2756970aa10652c338304410ee1988f0f5f01e670deaeadcb84e840c4b6f08c4a55c7db4716d9af765f3d0bed3ea5bc4b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    97b6af95be2e8d3abd0c5c07d68258df

    SHA1

    69215848faa25abdc4cdaad18fa6a1d38f89676d

    SHA256

    6d011df7c8d4e5a07b10fdaea694841a5236911ad719bc7fc79f8842544b931b

    SHA512

    942633f4f96d43d1f5d5eea5b02fd670cc29e8bec8d24eaf6d4742b06c4fa4dcefc2e16480ef3080e86951a50963a3e229329b8904ed0a9e301213bdecaaf28f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a2a7cf3438c0d77be3c0edc8560577b6

    SHA1

    148e56cf5d6a65b7dad80bbd31649f6d229b5a1d

    SHA256

    b90ad2df5c684e072e0a434af70cfebd296f980b93e18aa07bc69310e23ad066

    SHA512

    eed27a3404cd41215f7d74112f4f56dd024a453c9a372b2621c736e78a83c781a6ecf60781bcca6f6b1ad8b6e2cc0f49c91e2702b7696ce2c08f433a0d675d51

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bd7ae541ee2348de594de660dc41a79e

    SHA1

    3653fd4c3195ad4986b2d575bb9b320ccb39d2a1

    SHA256

    1b7ce841a5a46a48866bf484df594498adf4953287f85c5103c50fc6a7bcfd60

    SHA512

    b4079ea4f5b4bc5dcf95a049d02911b2f54bc1342c29d7b2037c7e81f2a9b986a457d9fd7a02359075c314e5875c07e0473ec4bb23f5fb52ff6ef18c0a86e4e6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    485e3db83a252c22da603bce43cdae76

    SHA1

    b786f13b31d3b5d99c09a5881f9835098db02913

    SHA256

    061cb4e91f452a51fe535aa91596f35632263cf790e1784a436e4444683cfd0b

    SHA512

    9e1b1dcdc1d45ad064611ec2ed54c31b0e8da83eb6128c78dca4b07a6554367a13af7ba59b91f74b81e0ffe133a1e500987b91081a781ebffea24948562abfc6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8ecdf416e542d63c0fdf8b393052bfcc

    SHA1

    143cbce5e176942b87f9f32fce79eff97effba35

    SHA256

    ca817d9f6dabe78a70c00a07d34cf0ce83532e5330cddce8344bdab30a9a083c

    SHA512

    fc76302bbaea735055a690027aad10a648067cba1ed9dd15095c01ab23abc27bcc22706c7a356ca6b27f70b4d4e298b1de4a44af284de416f5eaaf67a7f6d763

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f1f7f292d66926d4060caf140dd32863

    SHA1

    b9e516d26b835739ac57a3bcf2b0030dade03686

    SHA256

    bd7037fa1aef916473fa3ad8ba885cf357a8131a7cb600d79c5111531d8c4125

    SHA512

    980c721b85a3f512a142c5bba5e3550d4ef2e0a9d59efaeffc236a830608caa95f9a69e146e78d23daab1ec1a52047c1a0315b72200986924c498e0e19044dc4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e4b53d08aa3a780a6f7e5669a20933cc

    SHA1

    fd3d3bb6c8a921e34ad8060406fd6c5085ada001

    SHA256

    32e0f04751467f20d00d0df2e4852b226339bf73dfb11c98e98273a471c9bbd2

    SHA512

    2298168b46e65a432990e9633f2437021d17b0916fc6761a9829409fe48762f8c99e2aa47704ef3a1d9c199069493fd6a20f5067e5238d9ade977a8d76840e1e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3a7926dc3273c3a8f5e37e6dcaf83ed2

    SHA1

    5f7a61bb824455a2106bb9aae28b69f7ce239166

    SHA256

    af4999bcaf6878e01970c231127cb0d41221c5d33c03371102bd40866c1172fc

    SHA512

    7f5c264c1f59c11e45269875ae207333ae7ea860928fe7e543bcb5a9cdd4a86d888704e4baf5625771385052e81722964a38e2e351e0277f07129cd37402d38b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    10c6ffc56d81b37e3cfdb27d2b787b28

    SHA1

    a8372aba7c1e5e4a58f8de7a0f5ec4df59a26786

    SHA256

    68b3e6ff7763dec84d47efded6f47e874195f02f9532fdeeef126a11f9fe63c6

    SHA512

    a387eb963b3ce6e6f8ab42ce30c1d8a11cf234638468d42d893bc9f742600f3578291da07bfbee6e8a0f6c068890b58109f38e3d669ea6e3b859b904ae4ede6e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dad498a9526e923aca9abe529e5de546

    SHA1

    716cf2507018fd11758fe5e30290e2a339f8ad55

    SHA256

    5eb84c6906cda46d80cce8082995cc9616f7ba55560d0b9a477e264c64e14060

    SHA512

    39c324606e22e246a099232249c9485f4af4044bd49c61ce43a0aa12ba07b8e98203b78bdc475dd3c4294539f305a1c7affd7b70fac94d90642f6322fd5e56ff

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    556bca6ced988a578269b34a3ace8f1b

    SHA1

    aebb27bad0f663fe6783e9a7d4cdfe9ef8e1c744

    SHA256

    4b97c8d0ba73192bc4b6d26f36eb002b6fe367998ec73074dc3a09e395428ead

    SHA512

    20aad1e3ddac14b0995ee70eacf03df665f125a4abaae5be540b919cb002471feb9bdfcddbdbdcb5bd24c611ff15d172cb8220e04b420226385e0b3bae9161aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0cde11fc2cb362644d2fc52417dfd708

    SHA1

    04d58f033b00aa4770da1570611dc09e5c26e8ba

    SHA256

    ab9ab589e9bf8f51b506475a8fe80472ba8402dd75904a065501e72b6c152d91

    SHA512

    2a32f95e7c45c5329b5e0fa37e4ca2017adcbd5cee1291e8f7a10df4eb4157c65648a5d98f285b8ed3841ea51d6503c634ede47cf9d87fa21570b5f5bd89ae55

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b01b62183b5967547690ec10516641dd

    SHA1

    2f732db157c5bde5a9df76c7d7ae52f901d953ee

    SHA256

    61f0fbc318e6c38d950a5c21226378f81be866728319d27461fcc1f124d81207

    SHA512

    0207e1299fce3a9fda2b557e9088cacf7b11456989e2df4eee5e466572fc55e2e99a15ab92e5fd7f3258c13e622268c7d7aa710f0c0cb05ed83be991a1da88e7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    59eaf381e0a1cd16bc3903b51583d29f

    SHA1

    b6c16c1beb7b23ab1dd9ca85cc58c6a966a4f3cf

    SHA256

    e54d0581fae5bb9098ca7b06ef4bca01ab1f6e5119fb6c8f6641a4bf98a51ad0

    SHA512

    e25bac4fe962c67a4a047c44ea4fc3f07759692196e6ab7226ef324be6a7a11c309458033de3b75195095e5a1f64bd92d1f4af7d3dddc563ce5d9ee00c8ebc15

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a5954172e27e35cd105cb16a47122d23

    SHA1

    70d73de41e7d7d15b53b35ec4a2c97be050ddb4a

    SHA256

    e1941aa67a085b5208c361eef517d3520c5cec7d4b8743b724cd890ffdac13e2

    SHA512

    4943fe4f24cf9ae0d2d906e94d9a2c866c535bb9363c8c9971d0127fc72f0e2e532a20fb088b37c3f3219c693c68fc4c3272c54b32d756d7a53f57767e7befd2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d53d33db1cd941d6a0455f32d80b8bdf

    SHA1

    ab7791cc0887829d58bedaae3926b498d7c2ecdb

    SHA256

    ae3307c8fae53506332406a205a694119b243321cd6cb44ea776dbecdbbfa7f7

    SHA512

    2498deb3898a7071ccb5077cb0515eec96d9a7459e866cdfdcfc4757371dcc1decf8f0a2adac033fb4751c617eef49c7b4040109b93c5154959734948d9a58fa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7845eee32c5de4951d08e65b95416d31

    SHA1

    665d4e306e049c9d6276c12d398f785c467bf345

    SHA256

    03851dadd1e8a35e3dbbf925dcb6f05a8850612eb64c9c81d1a6aee0158a1c3a

    SHA512

    3d1e76669ab26cb554b46b28d8ac6ae4d34571c009c597086b28b84aaab245c29ca17d823f96dbad4b00b32a912e4f4a22810ae7bc5c067a52890173c311c65a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    e088266e7d787f7e5b324edf785f9cf8

    SHA1

    7ba45732bd4ff4e2813ba94f14df755062475747

    SHA256

    7fafbd3e131a4ccd0b46e40e2f757f372b6018712c16fe6f6b495da50c4dbc28

    SHA512

    5c7afa3f51c126c0b5dead966a8e5fc2fe1192cba79b653254df9f5e2cfc3cc54eee3f491103212e4440f21687eceeecef7a2937dc7b93857c9bc192bb6a44a2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

  • C:\Users\Admin\AppData\Local\Temp\Tar2533.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b