Analysis

  • max time kernel
    133s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 13:16

General

  • Target

    a5bc08af4fa2ab0aee6371763161da60_JaffaCakes118.html

  • Size

    1KB

  • MD5

    a5bc08af4fa2ab0aee6371763161da60

  • SHA1

    d3a6824c14cf682bf4c4635b2af337f88b80ecbf

  • SHA256

    14ec83c6e765fc37b255b235e8f96d14ce0ac3134b74dbc7ee3cabeaeee4e754

  • SHA512

    34db689e8dff6bfe5dbb51e6090e39b3385781a0098388a1bcf8bce984e8475c3eeebccf442beb142ab7c6152df9595bcf94da121670b8280796abfe3e76c58f

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a5bc08af4fa2ab0aee6371763161da60_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3008
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3008 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2208

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    4a2d53fc4aaa6595e07855931b458904

    SHA1

    f0da04dd144234573dd68f1eb96025fdbeadffe0

    SHA256

    0e5324cc073196cd7dd6dbbc9d40cdbbba204fff8badff4881f0677db456ed08

    SHA512

    b4434e594d822e3dd90b682375824e7f8614269636bda949466400d2216f308b565608b759619cc181487561d436cf941c0a6e6aca9112e2ef1aca65b2912f93

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    7f62cc44e12f74218cd10c4fd5d3a8a0

    SHA1

    02d14d1931788050856f0d86ebabe9a7dad54ef4

    SHA256

    15302ff07b3a84e9b57856e055dd23fcbc89b16e111a2f0373e5fa5eba4de5ff

    SHA512

    77abd3f2583f0b43baac5d6cdcbea40c0c2cd89ca8303c4e36b9693bf6fac0a14130794147b40a925acb7773e829833d5b7583380f14fc6bfb30eab35a16e4c8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    0f98040c3b3ec26c06b4632e9a2d682b

    SHA1

    7c46934c380c1c2a0703b837a301413b9a0edcb6

    SHA256

    3faaa638a5d44cca6b24376f920b9854a84ae03453a8c701bccc8c46a2816b5a

    SHA512

    74f51fe3dc75dae01abf813b90e23f6ac164dfebef64fc81d17054b08622abc6618fcc1d8cd00d013b6025ec93484ad0686c2e8b38066e6823ca62c671976538

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    a360b86c8b5c34d72a90038ec0a5b6c9

    SHA1

    3643a8aea4de6b89cb4ea52fd1aba5c786370564

    SHA256

    a5a07d6c22388aac7008e61cd5ff246c07dd1c680e9cf8beda28314ee310abbb

    SHA512

    696a26782f2efccc67161ce07b2c4e30a0d413414c2e65dcc429919d91f79e0d8fbadb1477ec79f096384b098310ca2fd04181370d4b88c941e8ad43e4af9a8f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    4692b8f0f6b81eebb074685d662ded87

    SHA1

    eaa5062d38c53a3d2adb059062cf8bb0fffbbf49

    SHA256

    d408289bdac20e8773f94402d6f95701f3b1c8d5e6c156dce14c7a0931746bf3

    SHA512

    48cbc7a49ea1819afea8ec20961670abecc23761092fa48d57c1d3877f23bbf5dc4bb266a7985d82d8abfb1c64b79d0426d7b15ae59ecd836842eb8bc9df966e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    8f487f27cc2a7244b6efc6a30b9eed8d

    SHA1

    0f0ea57ed34c3a472ec5ac9cbeedc0f923509d34

    SHA256

    1f8e0986f8dc5a116e463bf67a5ae81a47912ab93f695fedc25d643b89073a5f

    SHA512

    cbaf0c7993e11b0eeed15506ad47fb7cde520e96039081b494424670a1f8b3f9625499031ffae29dc0625dd142c3f93306c7bd4d3f0bab1adbbaf30b03db3a85

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    c9d8bb9f7ee6bdd754fcae93a3f563d7

    SHA1

    ded20b24014ff28835a5fc71b8309c2a92a66183

    SHA256

    77154dc521db93c0caf5d9ea4b168d37d4dcd1d5c3ffeff7682ba5483bcd6c36

    SHA512

    fb0d46e7f6f43bc1d7a0e94270795c48f91afb10f8bc304045fc49473535663a90087e618a8ff4d4c38bfdac4f376e5c309694aa3ab1761b5478484e2a26e856

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    12249cba92c70a5352eb1ece02f35ecf

    SHA1

    b7c45d38b44bbfb29a434cc92be4b346324f7cb9

    SHA256

    4bb8481dd7430664690aedf758db8949ff9b7c3cc1a7659d30e9b8cf9d19e15e

    SHA512

    099a3b326da669e8fb9b1349523a7202059e526a4b2c54238572cb7cf8b326482440318c2eb6daccb9f6b684fdff259dee0f7a40d234f076ec9d4e993a12c598

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    e76b3566b067d39c4e5774c740ee04a7

    SHA1

    94500ec9000913424685488de73658229c6f1a0d

    SHA256

    8cb2367ea142795e428b25069dbba32e259778c99f56b711e3b229407f56cd3f

    SHA512

    95067c3f6e1425f583c27fb8811648a3b2962ce41bb14e6dab506b51af87269b7529d7c907f55d8e513dd64ef55430ed6aadcc76873bd369947b48b8dc76b1bc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    f07a61d9bea1c01d2cc2bd035148e4eb

    SHA1

    670e17d1683b75d666df237b6d3ab3b1a1fb4cee

    SHA256

    8454370d79e0878dc9c6c6f309be741f602415a72fe97e37ca5792027e154b51

    SHA512

    0ddce4943a70c2a6e8e06696281a7becbccf296c3608f0eda2e4126fbd55220b7717fe2dc2a0d37d1262cbc33c125ae2018a52f758fe95ba20224b929ceab232

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    927e9eb4d653f7cf31341084aab581c4

    SHA1

    8e71676019f8b83961e0e18db0d2d94738249235

    SHA256

    59663caa0db94332e48fe36c879310b86b3ea0cb35accee7e9428d695c5ad443

    SHA512

    9957a77269d2b8d86521954b47adeee783cef5a26add7c9f5fa81a24a75f029395702b6ad791798bed2f3759f9830c091556cd690d60925a98c8e86c824ea4b5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    3fa27b43ca7674ba77b5f6d7bb11dec0

    SHA1

    19fcae4fc44437174e4b0a2da51994079f2f37b7

    SHA256

    3a451ed4345f47d9153b4ed0a4740549280e31aad004dea7f98b20ed6e9b698b

    SHA512

    e6d8fdb013f1cca247ff2d41778db0db1b6bcd1011484ba4c61b25229da1d2583a76f416be88aa5fbbb22cf24267d7446671c55f2e3c23538995212a8c0a9988

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    b75bd6bac29a7f01bd5decb6503d3b62

    SHA1

    f72d38f4c002677c60284a5ae78c0a72d7687b34

    SHA256

    d9088a94a0efcf46dbe4100621b08edd242e1186bd8f9e60a9ed25bc354b9ec8

    SHA512

    0153952a8ef838bceacdde75e54100617af9eec9db0938a7c7d504dad5032a0ea26d0aa0f586a09ec29d5eb780ebecb46b5b72a735964e83f2d382081506ba9b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    592e5036458bb5925bc7586af6313312

    SHA1

    5239e396a5e7e060a7821de20e6480e27a508cde

    SHA256

    522420222b1fbc4128ecdb56ccf79245e21ee9832562089c24c5fe1f44f23956

    SHA512

    200af667910ee63e485f9014c72dc09af6a103c6084bad3a0989b4b115f03a41aa9c12b38ea9c545d2bf43c08ac4a1db5dfeceb0e0cc1512af7e66ec21fe6b7c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    8bba6afd43d0bfe3e84ff94a1d4d555b

    SHA1

    8207d34657028c5b880fc4c53defc02d0c5821a8

    SHA256

    d89ab5adbc99100430f962fc5fc41d2473beb55a93fae531497bb08c15c3dbf1

    SHA512

    5fe7cfe1a31240d07b968a32ce75674dc193f7d8fe95d601c9ebe8a4251c31116c2795dd6cf02e1e8e4ffec7534b9ecb3dbf912be61ecb892e79e8caf15d656b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    55b71fae65321bb934ee46312c9c8e26

    SHA1

    7aa8ad107470e859b9d45ce8e76402e3fdc08bae

    SHA256

    49d8faeaacd295165fe1cb3a1c4dec18cef57744b1de347918e27b84c82de9ee

    SHA512

    6ce18d0b89f70717127cf8a83cc13db1248c5ff0ccc2dd014fa7f2fcea5d4ddaf60f07e3d0681caf31de3d51a53266e64a93bda6dd87f75743f884e438da4655

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    c3b15fb56346a57c87c427529f004dc1

    SHA1

    15ad65045cccdcc2f9c45b402720f07f084393de

    SHA256

    170a985f999a63c8454ee1fb56ffdc07b9e5a7cbec47de3134032aaaf64b7904

    SHA512

    bb8570d867e7c2c17fb9f24defc0a833439c91eeeeb1b3703ff0f799b89eaca43c30ccf98ff0e481deb9c28ac5343f11e71c2492503e9fde64fdaa8bfb73c60f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    4b4b789a7b6bc20f035d5eb929c98fca

    SHA1

    db7fde149b85b586d92c9a278dd7397b1631ad7e

    SHA256

    cb5c428e66cfff70a07800a74b5f979f779927de0bb02aaaa16e2098d0ae72df

    SHA512

    858f15fa2c2f2690e24fb4b4a00bc042212c94993ece1c210de9b6654c629b807e3b25b824bd2a1adb28cfd1e7cf4020951012a2d7edd4fdc09f5bda89ba1894

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    ac769bca13dad82723f234d3d03341fc

    SHA1

    f2aab6992026e4d65105a79f11020abdc27b06c0

    SHA256

    4eae10f6584dd8ae64fee9528cb56003a03e8922bb47cea5a8c9ac662949a02b

    SHA512

    29477b5f82f5fb1e33efb060b5eaa08448cb62048e5f9858f5025cd4848718c72dc76e896d16249f54ddd3ad36668344034db9861ae000244befbc5549054aa7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    bf66548c0f620a6b9a925a86ef4f29a8

    SHA1

    8f6049dbe56eac03185d98fbede7d567bc92bf32

    SHA256

    a9fcf1ac312c1b5b9e7eae913ed5ea3ada28c2771cff488d760cc560e801f880

    SHA512

    9e86b66875f616e58ff54f53126d42ec9c0387910a50f99438560b17c8255da9e627103a572f74c065e1169ca1d7482141e8cc2e710d50f41434888e408d1576

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    1567fa13028dda8b0e671e32ae554bfe

    SHA1

    01beb0b21651e586556aed07eb7c97a46965195f

    SHA256

    830be053bffa3b3f6f23012c9ebe47a5946683f4695745514f5b7a2aa04a738e

    SHA512

    b022a0b0345e0002dce09c6041850ecb395ee595874558af5fd1be4ffbebd3ecd8f1f0e4e448678c0b4d28f8ca704b60e0966258a7e887933d7ec462534642be

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    304B

    MD5

    cc16c39e90ed29eb302675a2e9da956e

    SHA1

    06a7d2cfe490bf8d0afd79ccbb30e7d467fc7614

    SHA256

    78c4745f3728d484db850d12d0cab5a6f42cbaf9433de37f10a3fb3dd4ec9e8f

    SHA512

    d89bd0643133657b629f2e2477df441e57d186a8722caa3e93fad2a3dd9b25df92360ee3fcde44f5458f60b138d2a35073394278fa60e746ac96294cc70528d9

  • C:\Users\Admin\AppData\Local\Temp\Cab38CF.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar39D0.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b