Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 13:16

General

  • Target

    a5badcdbfad9c0604cd4707d2a4710ae_JaffaCakes118.html

  • Size

    453KB

  • MD5

    a5badcdbfad9c0604cd4707d2a4710ae

  • SHA1

    72474ed0cd42a74f6e532d5676198813637ff88c

  • SHA256

    16692651bc3c68abc6088e92a9b01d063a597fab11aec833baf8b2d569c6762a

  • SHA512

    49b14cd7e8e7a2f7384e5cc5aa19cf4e1bf2218797461be6b2903bf0a8659b388e2357c27a073be4356b2a2ad0e887a7f8c295718b7b0223da70a3e0272694df

  • SSDEEP

    6144:S+OQsMYod+X3oI+YXsMYod+X3oI+YXsMYod+X3oI+YSsMYod+X3oI+YQ:z5d+X3B5d+X3J5d+X3O5d+X3+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a5badcdbfad9c0604cd4707d2a4710ae_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2012
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2012 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2744

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    83ab27c69732742a9857da68dd85c1ad

    SHA1

    d9cf12cca388da2122ea7aa8f2af04b4cf4173ce

    SHA256

    39bfb1704f3df37a8df942123dd3337bcc757cc98a95e94defabc31b222dcea0

    SHA512

    f17e9a936b29c49cc16992f67653f1ac85f315ca32168b876ed9a2abd198917f8426d4d75c3595869dd4fef6ccd78bc84246aae13dd457fc824e8835f859934d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f7b0663b2f4a494c52dd21446d312b8b

    SHA1

    015ffbfa3b3f18fa2d0dd94bb19ed15861ee87c9

    SHA256

    04d9c8e7455c693bb752ac6faf42ea4033569a97807d07ff36cb4deae16d50c6

    SHA512

    2982224f15867a75644a4135d2a6ddd01246c6058c98ae5e1a8f983badca72297c8294217afc22a69b7972267ab2319c7a92fd9ca97f0094e42595b1754c319e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    166f492de50d5cff3bd4c5de75ece2c5

    SHA1

    0c6d5e9bdb788fd4f621f1b13fc2b33c557ce6d6

    SHA256

    64f68b646dacb7620a5ee243d418e48ca8f3f3511153aefa9720c759cd96a6a7

    SHA512

    eb7bb5eb4836744423b243c4c51d3c7eea9aace98dd0bdc7f42de438d3d97773680fb9de302031940f4eaec6973a2f2d2d3355e10f60532a7b7f5d2919cad34e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3277abc9b0e16161ba75bec4fb6609cf

    SHA1

    0a598298aa3ba08516575aeef3c58757e0aac6b2

    SHA256

    3302a169298f962010c2d3bf71e454f777adac94372081425e19be67d4c9d404

    SHA512

    70273adbdc298d7a68ff6165cacfc408f7a50b5cd36766417f62b940923bf40952d404f39bb7ddcfeb731eb9d27e7786f65e8be18758b6abee24ef829750767e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d00ed60471c0637e73fd8ae081ef1892

    SHA1

    baf79e6790b6d56e632c4ab5840286b70bba06aa

    SHA256

    3200576e7112e05be4dfe93334697c31c64e61cb023e1361e213fb2e23adcceb

    SHA512

    9d2584af26e6ed0ece8cd72b3353da3909aa7943de36bbc55387c6a64f004e4907258049e0f77b637ccacea5f2e9b76322fb8a2fee01dd73607e2781777e0116

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8a897b7570b813782a9549091560f3ea

    SHA1

    9b8c63f4f8618e6dc77aabfa294e26af13f0fe83

    SHA256

    1e39cd01ddb16c7af2cd8d09739df5a3a497e4cd98b2dca25659819c108e0354

    SHA512

    d62c230749c1ae4edfc539bd836acb7c19d34117eaeb5dd0d5ba29d8a57422f65051007d83b1ff2250ff4a3834d0e5bbf05abf1dcdc7082800d498852f648f9f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    73a92a17b80996c2b3ba54cd1e6af314

    SHA1

    623028a0caf5c4c7f67ec93066eab31f8727f759

    SHA256

    92e84b4eda49af053040f279c8509beecf62a00395f0a45bf40e6ae573e4fdcb

    SHA512

    a248314f968a1ad39de67306effbbd77aaaa2e50c0b6c2d5c94107c36f975859b8e8b293018de6a402ca3ad556264908c31222aeeb339218efcd6db0236e0fe3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3be6ee283cf2bcbc60eb82b66efab926

    SHA1

    2cb434b3bb1d0f3299a406cbfff26c10d135bc20

    SHA256

    1163cce5b8a770cb3b8ad1dc127631d1778ae400cd0fb36b5aff5878bd9d6591

    SHA512

    38efe8e61454e456f9a4188f65e2bf8a3ade4766f0e9acc0535a32e63eeaae5880c41402f2d8a7a72a5880bc4301ed6c0f30f509c6ba1ec9194cb08a24cee6ce

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7a537bfc3f56578bfb8ca03ad7f342f3

    SHA1

    692fe5db9563c13964ea053373a3332abb6b9641

    SHA256

    4cd5812d8d861921c4b8b953540411af3e5f8781c01418fcc3b1e4061aebf08d

    SHA512

    3b8df24ad4bef8c74c1578b742aecf47e45e3bdf7c2e86b2282b435fe546c8f42f2c34f324ce2230c0028bed7cd29d5881db0f5f33acac72587779d4ec8705e1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e0677444b667f372862d257dba69e7ea

    SHA1

    8023da2556e8f1fa994cefc272e7858bdc129d85

    SHA256

    679b0c727bdd7dfc44c26389958e5dc8954f33f7dc9d089284afc93df206be67

    SHA512

    83d08dad17060a062ef41a506a489d0786c85d312a7d1394f36f73a8d9711b10ffcab1ab01c1e41ed329887616423dd3d9544db96c9b951825397c3d45e6793d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1b4ba238b03d1af9f76e04c700333d68

    SHA1

    efdeb51900c4339293dd95f6d9f50a9ae205eaaf

    SHA256

    3548d467a9a976f026d8750e54f02416fcace19ce3c7c318124f62b96d554c64

    SHA512

    d24b4b55e0fedd5c3cda9e512044dc6e1a4def25ec5d735e8d1c0efa962fb3e36b86658cffe357ebd9d2cd93aafb4a9fafd59c1598c6e6dd6f5c745b704066c1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0f0ddb95a63116e025c64ebf2cd0ad46

    SHA1

    6a2289c3a26192c45a7a76ff0e5e992a714eddaf

    SHA256

    83f09af062d669de58841f4f495baa1993945861bc768a1c031f087cf5574fbb

    SHA512

    b6bbed85db8ea12b1239f909315de517f8b299b93c2dfd5ed764e3e69585ed2cc30420c0f8f360d31fb8303b470871249aa700568514b49ff30a7193d7a95a92

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1daa4a8f7d54b9a3633ed159865c5bdb

    SHA1

    5e1d793c6361b8ffbacef75fea3503dae1e49071

    SHA256

    690d622951265b74f607a58ebe76e5550b507c52ea6dddac44b1c84f11daa81f

    SHA512

    ca79212840de2350e20b5da9635439e42bd4ff385e5edbece55d899fcc49487dbd86682c02dd09b4ad72459158626ff7a5e058c0d50eb23c7c8dc640c9026e66

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e08c26f51fff1354c0bce5e453876143

    SHA1

    c06bd872adc0e687d8f469782cb326f14b6a7cf1

    SHA256

    19f3ceffd7cff67d79d58a946139bbb157801bbb235f641c318f067ebb5db3b4

    SHA512

    5e4cf8b89c65431f1e2e2dfb0d9944eb97b90cd10bc0a9561e402e93a17de81a4c6cf7612acdb666ff5dc8641450111a3b3842c14d75ea50159ea14ff10cd74d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    429bf8b0caeb57a321569a9da216971d

    SHA1

    2a555f98f187c1f9d5055759ed80c3d90d8012d5

    SHA256

    64243e60f6f88e91b9bd8ff654b48dab4163e935174f07e6ffd63600938a7265

    SHA512

    8a827932b9d0e09e1ebac85ae14a8eee92b03f244d2e1022f24aff0e3637f153e2a88fedc40ce625eb85e2459cc62e0a804850df170050f62ed8deb0a90fa7ab

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    61b234a1b24534b45e6eb1bf8ef84f47

    SHA1

    8c8de06e5a1a1393c7fc871be26111bcdd611961

    SHA256

    431000d3bb2e56d432dcc3fe5bb2ec571adf6a884f785e3929d03a4d1cbea25e

    SHA512

    1bf2e9799b8dbabbeaf360b0f44364eed14a71a5dc51aea487cf7a2597e1647e82c844f537a7533d1b77e8bdfd02a0f36a28efd3c6a77b385fed733b6e181284

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d890226ddaee22c5f76b8be1fd14fc1f

    SHA1

    59882de02f6c562e478f435002d3cc4d5230eb06

    SHA256

    03c3f060cc90f3a786a3d0f3283b3b10b12bb2498d089debc3f5bbecd4c67165

    SHA512

    998d023f8c3570960ac3b093df385772bde07006aa23b3b93079302c69987e456afa7326eea70b08ae71225d1a39a61cd4105340923d13b508fa56050391b718

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7030cbe7a06ee0ac91eb4db38de4a32d

    SHA1

    a376bbb5ce24e095f577d898a4b99e5b6481b149

    SHA256

    283b4e1cbd33c1c185f32638a3a0615e0032aa396f741d248adfbff5d2b39691

    SHA512

    b8f6f326089a730f4c4a4c3050349f1661c28a76720944a8f1ec602bf3dfddecc0147e541f4c3a1abf13782171aa7f5258ab3ae86a5e8eb122f8dfd2448e8d2c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    27bf8018e643c4663f34d88f1423446d

    SHA1

    869a48c54de606216db269146fc1d5d3bcf479d8

    SHA256

    3679471deeda8a23113a2b5594b06bd3400edb62f1d6072068ac2e6644b484b0

    SHA512

    4e13951f18527209e6118c3856127f1534e3a76f8667bb621dfeb2fc13cabbb599dd6464e26118bd762d1fbc36047a9fd8f8dcedf1ee2fb87fefc69011aea63e

  • C:\Users\Admin\AppData\Local\Temp\Cab454D.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Cab4629.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar463E.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b