Analysis

  • max time kernel
    120s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 13:16

General

  • Target

    a5bac47f92f191b556c6448443157535_JaffaCakes118.html

  • Size

    68KB

  • MD5

    a5bac47f92f191b556c6448443157535

  • SHA1

    5303c47e2f0fb817385788f68411cdcb80960626

  • SHA256

    7e39c3f241f3a73c774e420202d2efafef00f2a2da5b51fa10855103693adc92

  • SHA512

    d2f408463bef9cd8b9e2d193147c3f566179e3d9daff83d4d275e6b07e9e0b8a842f4902a354c261f642a403cb6e1fc7251a44df15d841004057d6bc7116e7c9

  • SSDEEP

    768:JijgcMiR3sI2PDDnX0g6UsybH/jnrjVAoTyv1wCZkoTyMdtbBnfBgN8/lboi2hcc:J3uufHpdTcNen0tbrga94hcuNnQC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a5bac47f92f191b556c6448443157535_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2408
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2408 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1396

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    cb85f3fcf86ef0de7ef258539cae87de

    SHA1

    c73288fff07885a62f8c7033b348863ed3b8cad1

    SHA256

    7430a96d94b1faa5363b7656b323ffa416fd262e0405e498bb143dc93443963f

    SHA512

    dc152f2e8c8f7e316e84f7a1f3996e02c08d582d6d0e40b8bf7171e359ea952a80b7452e56690b30fe98b4655d4744e8529a930449ef1cd853e377f86294b2d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8f96f05820812084ccfcb4c2f673ad85

    SHA1

    e1de49733fd419519e0bc14d1e65046c9ad33ee4

    SHA256

    6caf7febd6bc8e481326d193cf5f03b7f9f0a3861825a72e5bcd7d39d9601719

    SHA512

    eba04f47260657299f570e5695a5d73b042b2b6e73ba37319dbdef2764eb939116e358e83a4950ad9dc5881e89bcad7e9e54da961f3fe5809cf8e525c6c0ee27

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c37a4c83d7f77dfcc2ec7b40057518d9

    SHA1

    b30622e6f3d2b9ee826d91111d2409eb5a0ace57

    SHA256

    ffa7739ab7612327ff69e53a51a1be139c219d8655caf470e7b863ca7c7488b9

    SHA512

    6999816a78f155bf836a143ea72dd49a22826165f2fa2371155cde64b1a97a9fcc0d652a8a5d34ff59b5a8e9f9f877f83a439cb06f144ceacac6be7e74129220

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    53aac7e604fc3f1f81411e26765f9846

    SHA1

    eb5ee290274b07b57bbc3c9b22ddbe98d86ebb94

    SHA256

    bc78d038c57e880c436515afc9e34a80b46d60633af60b5c6976dc461915e796

    SHA512

    c7f9b3f256da52fad0be1c925112006acea5524798faaf5f16bc1ab0047b05c8013886449397b03b05190e650245c458ed5f69e9bf1caedc2e381264274b19f1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    444d727ecf28f07b41675112f82c2174

    SHA1

    5a284925bdffcfd0b1d3beb8a62ceadf32632936

    SHA256

    44977cdc3bbdbbd7d2ac2e233d76433f483db8afef1dd4d79fa7ef388f666a04

    SHA512

    d2c5ebb90904be62bd4eafe913dcf16774c5ee340676ed062652fb6a45fbb94c7b37741100caf762851ffb7fb8cee80c9648b8b245a4c437356f1181646777b7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9e6593f1425c58e8211dc3d477d4edbe

    SHA1

    66247a99af0571aca27ef3c675dc81631636d186

    SHA256

    3f283d40bb3952d3254610e84c9db09c9336179df4c103f61418b6ee22065615

    SHA512

    42f5353019f08e1b00b750407c88c763a1f911509668b58902ff30fd61390b06708eb6d1b2f6f0536638019be86e71cd1281187202a255a7cc82f4835f18871f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7b1924ed5224f0a9f6c444076224202b

    SHA1

    0138a13747988702e0d2cc228508f2cc15c0626d

    SHA256

    90c950ab6c89dd64b58ec7f01bd671a205a389cd62f95602cd8aa808db80b3c9

    SHA512

    ea238af34140b9462e681142ffc9ca289f91bc94eed2bcfadab2ae7bc41e56407dccdf9c0dd335299991fe2a7f61dab1767a29ccdf30d041e59e543c2ddadeaa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ec858bfabd7848670b046f00c9505fcc

    SHA1

    4f7e459a3942a07a306d315165f927e12a8567b4

    SHA256

    12535525a4ab6075cc453d6774226efb4a51e0a51878fdc77c4990c33de72502

    SHA512

    8bdd289d683e8181014f216ca2542c4d86c2d663fd6d15ca9650ee0384b9a5e345aca2760fb35db61a91b764fcf65efe87b49a4aa4c23c0602d763d26958b385

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1e7ae5212167a33d00cef5c40489d86c

    SHA1

    552bfea1999872217df4c6aa173a9569c404da04

    SHA256

    9a0bc316c74a8163182229c4e08d28f6908777ef8525b217ad87cefbf294ab5d

    SHA512

    a1cbbadfe00fe82bb371f3a466f6a8164ef7860d8718658aa1be10972a58f1fbf80fbd71d01f0d1aee0bfdda38312137f5cb71cf2c4706eea3a0069b53f57f4f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4bbfae96cff5d8887d82f5ac931380df

    SHA1

    5795c0722ad22c1e3dc9dc7c1abdf1f4d5f27f75

    SHA256

    58604aa259df3781ec9ec9813a590c9225c78b12549cfc8fe0bdfe04ad52b36b

    SHA512

    e23b08a7557e36111b44889516eb1cd5857f821dae3d59ed0779f3835784d1fd773ec909431b3731416ecffc198cfc291ef55c512fdaa0ba92e4d821e56ac7e9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    45400d66d1b040d98c8a7b67a9eb81f1

    SHA1

    17993dc3f2ac6c839d19984edff964eb76448e8c

    SHA256

    73fea37e7ae3022ca2b47b993a84d1fcea2d764d78be32179ba340b22114ddea

    SHA512

    224ccf13d6b368215f8104914210690aff3f38a58141d8b093ba5e7036f9cb4589ea7b770bed9f5b6235da15f371f8e8de981e7aced69b4093424cd9e6ffba76

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9a0d2c5bf9f53d8ceb2e3514e8f3767b

    SHA1

    a8212ee11db96b06776a46d5b488b85a0dde0d08

    SHA256

    4917c39ba017557878db362b4272dd6b7009f9e658aae5b6eb29d47f7aab1f33

    SHA512

    e5eb4169c31f3b2284f0f1651e3ec347ea4e1e9425dffe4acb45fe4a1db00664bff674adeb41e29d2194ae5e6feb7b3891f7084f2a94da2ff98b2b3c60387b8d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    93bec111910d7e2947f80cee44394ebe

    SHA1

    f685e127982b5e79412a3178a1f1cbc7db988078

    SHA256

    ef0b3bd2b359c9b416b4dca905a1b39f43d264a4b40cb414251edd87d9c4eb0e

    SHA512

    82fd4eb23e0c4e4eccd8b7d8a75396d58bc4e2be24c8f5eaa6f7f5b23a340aec46d7ccb7f3352b8616fd6b5b908960b5657ecf20e7b837d7fc869c9f7017d434

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5e5ad7779231022545fa2aaae577e70e

    SHA1

    cc64c41b5c8d0cfcde2f4fdb43aa42f251798dec

    SHA256

    2d0504ab43b92c071bc2a263f0322a4dcb7081b81a4fb50f3d4ee113ca97d0fa

    SHA512

    cfb438413c90a6a84255de762fb73fbbf7c94366557d85b301c372b318972bf15b10dc5ef5517b8498244c4af0812ad25ff93b0f50827f0d3271a35058373f8e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7820226359d684e99ce0e7f393dd47be

    SHA1

    dbca1081f4ea7f9f2e2deeb7a1aba86e8b451715

    SHA256

    742d3bbe9dfb9b6d9785550c7b39d8df175a6515feb17b669e9490c37e0c9cfb

    SHA512

    3ba361527fcbe85f8485dc5a79be3f0f79c791f1abf217ad7037647f489e9664f0c75c12145abc3389ec6149bf98d721601f61064d968c088b3adfd99b972ec0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d350fce071ec60d3ca655f91fb46d62d

    SHA1

    d9cfff706fc3dcc767cf4ebc9435ff28d6c30142

    SHA256

    103eaa33ecfbbc28096d0f9244a427f3f12749c94629c34d25ebbc2638307265

    SHA512

    4cfc6c0fcaa20096e7b9240e2283ca1fa0cf852332f55cb22d9159b4a0e8f855bffbffd34dfc261f9c38adf5d01d4ee71d48a984e0d972982a8cfa06fb344d42

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    19cfa736e1ffc814a8cf01b65b70c3ee

    SHA1

    ccf9f9db5660471ca3b7d0c12155ffd764cd3841

    SHA256

    ace590a14a10b934bf152c7e11acfa7b5e8cde0f8cb1f7b75192b4d1597f96b5

    SHA512

    8c8f32ca2c42ad68706ef885a26eca56291831063b69cef26ba57ef9de0e0e301272d7c943fff9b697c6d513d1b5a07dfef49c4bfaf46d818c08b108caa1a1cc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a461f03c147292ff8d3d685ba99e90fe

    SHA1

    c2f6bc078c9dc5cdc1d8ce911a9ebf13b3fa71ae

    SHA256

    00214403c19b8effe1e3ea3c4dd5a0a42a2f814cf22738ad515ae22a738338eb

    SHA512

    92a1a3728055499fc08babbc5625d530c813d2134b5d5d47610cb80e0e23a71db6e9c6a8a5ba2cd5b3d985231d8422ada993e3e56ab9946ce990e50648985427

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    876f507ec38b4a5330877ba437cd6701

    SHA1

    fb59f6263b645a5e5c55d544671a21ef9b44de39

    SHA256

    0f51eb4391ec0fd6de018508e5637eed7baabd3d129b80bdf3555e64f1e7b2ab

    SHA512

    9435591946921be754fbc1afd4a92ae32af007243266e23c9231eb83e442bc7700f883fd2d1b2012ff5505bee8fbc115c6b93b1e29657fece91aa616f5365275

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    adaebe12e2c941bb2f2d07b780fa4364

    SHA1

    6d41b584d2d53fc1d166b64c7109eb677e676267

    SHA256

    f66f6915614e5926b950688bf31687efc878bbf02ea80e02c02b25e798a37d59

    SHA512

    e46e7a913f3f10b4cf0a79c664707a004cc22d736986f591af4c688089ce426f95607fba5232d064987ac384347d4f4220004e5257ce29af165ab124e29469fc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    00816be0e74408e919a224df62fdb827

    SHA1

    abf56d6b0f47cfbbcbc94fcbd62064363282af4d

    SHA256

    7c61677e898e85db1e27ad33e22d92f4da9a08e09b4a65ade7bbe6ddd06f09b5

    SHA512

    cff762079d6c647a4bb2981cfecfa2f50c90d202474f559e691835ffadbc914665e85045845628154d065f87b208e185fc930cc603c9affb097045b0312c2812

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e8f6bbc09bae4e0790490a002c1a602c

    SHA1

    6754009a077b20472a9ee7d36d1a160051b8ebd7

    SHA256

    10926603831213dd2b7b4e7601cc53b97e5735da5db597466088576ae9bac928

    SHA512

    70d6eb1aafce96a8364089de72159300e2240530baa0de0002acdba9fc51c1173facd4c9c532e1d0ee9cd386de79302e88d355008730b8cb4c27f92e47f0aeef

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    978f9270f9bbae28c74912bd43bb2605

    SHA1

    6bca6a7f4188e50eead88c118d7846e63a0f34e2

    SHA256

    5f165752edbe8fdc30efe9efdda24c5e2d71130bfc19e7e0045a94fb6792d0cb

    SHA512

    444e533e8f3f92bba1b7e06a113ce1ea33fad3e0dcc38138ac7e5d901fa9c7e4feff2609da76d87507e99301b8dffcefe28411e31fcfb74d54aec118266268de

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    392B

    MD5

    7bdc55127c78272388363e8d712cb7f6

    SHA1

    2c0607b85ccf2c9f4192c4636f7fbf10cae6cb1f

    SHA256

    580c91267d91c152f4efc0badbd33ee9ed1b0b835cc0850c73f35675b2296786

    SHA512

    1ce8f2014af4eee96e0fa9df9f3fa7a98c08617713a7507125c833705bd1c3e8b8c47db4620cb15720847b97561a877787a20ee531853a52dac7f19f64e32cb7

  • C:\Users\Admin\AppData\Local\Temp\Cab764C.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar764D.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b