Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 13:17

General

  • Target

    a5bc73a52c1df9127308fe6e4d64a841_JaffaCakes118.html

  • Size

    38KB

  • MD5

    a5bc73a52c1df9127308fe6e4d64a841

  • SHA1

    c032439883daa104609782922ef58d049bc02b9e

  • SHA256

    080760a4ffefcf1a132e46c5e85905f08c1180b12d5fc12d39327236c8d121d9

  • SHA512

    64bac64529a131fa7a7392d0360254cce7cd120174e92e1ec9cf0be6f461ae4bec1e2cd2cf59851b9e83eb9fb8d9e943533594f4e36e4448c26c1ffb4a75a4ab

  • SSDEEP

    768:SNDSJcjfQTD5Phy2HwpiugJ2xzmRIRu2cHudN9:SNDSJcjfUPhy2HwpiRJ2xzmRIRu2h

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a5bc73a52c1df9127308fe6e4d64a841_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2116
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2116 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3060

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a5766e8f28c76812a178d6a89a0405a4

    SHA1

    97b695fd51e869987092ae2dc37238ebc6e1012e

    SHA256

    19a4c2685d9772f322ebefd6a6b161cf20298c8873f0b2611f5e72fe3fa81362

    SHA512

    f50ad93b6b482708e115aaa527ea15069ff82b5b7d9f516edccdf8bc0db6c800e55ba4177072c26f803634fe1129c2c8abcc2064308b32a09d6821122bbdabe4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4b4ed2555ee878b0fc87374d82a1b1f7

    SHA1

    9764cb3e28efaf8c2c09a96a030dfbd950fdc36b

    SHA256

    f345eb46a36e5864335fa7a876724b84ac18b17048748050c5577d21b8daab34

    SHA512

    c206e006f7f82c637be4c08a74b6ac22a564c5f3edb5a59788104605fd1577ccaf9d47fc4fbedd994bb43062b8537c10959f611d95914e8daee8f18e01bb1b58

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e8907a6d9573f2f924784014d87a9f72

    SHA1

    90da0a4ee02e3691d722f9c610ba033cfd911fad

    SHA256

    6e78ad21d9bf1cbdb298f91f1990bc1ca4e149dff28fac19c8148b7a1721da1c

    SHA512

    a0316ec0c0fb72d6fa4f9ef1622668ec4bf7f2f24bb861899f9bf65e1238660657d74d3f4043973e0ca2b02c93cecdd1ab7dd81763664257448531acc2c88677

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8b3fffd04708c76efd4d7537613dc4de

    SHA1

    d17240491c84cbf2af9b8a9f09d8581bbe8b1a4e

    SHA256

    ae9f4b0dfbc0843c08c7970ca381d7e0eb3dcd25f8ddae4bfe9cb83659e5c713

    SHA512

    a0d396f9c1c945784ff84ff3cb29832488aabd5959e13014b31ad387b04bd815eb864ec23faeba8222a15d53c5a34cf6aee1717a8c8e01182015d0b0fec1c431

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0b7c8187a936bea9152d9013cb7b676f

    SHA1

    d88928056fdc56b0543bf35345b943d5ed71794f

    SHA256

    7576118eb73e7e40f0dfc118a96ccd944b544122530ed5f3139d90a5c9fabf8c

    SHA512

    5e6fd13f3ec7e3d09a539bbee6bb851cc06777c6b067d1622348bb0613ae94e31abd50804adb099aab629aee7d8b177bb6dc5d6f62603e5987375908a9bdc85d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d423fce283257642efbb71cfc517de31

    SHA1

    53d446f8efd7b7236a263c987fb8732941207d1a

    SHA256

    113c4caae2d819a6b5bd5cbe72aae47683e7221ac841222f052fb53aa5287e0e

    SHA512

    cd9777d5f290575eb5d1c4e3f577cdfc3fd89e0b5715309924350e39b43ed0dd566e24662668790c159b043d3c55aebcd395f56b74a57a064f5e5ee2c87d072f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1b77d6605154afa6e8bcea48086617e3

    SHA1

    8bbee3abe5f22ad93abe1f8442a80f318557fadf

    SHA256

    70ce5d1b562b5628ec1a8999eb7f9adcdf4f4c788015dfb12fc5a77e624eb603

    SHA512

    ad1105627079e631d82b8520f0bdf1ad24f5e8602aba5bdd2b0e15f631ddb9bbf5844cd58f91160bc1394bd378d02f676d6f6f451fb5c5a772b9e270694d12d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9b8a8b109dc0b656938d4ab73933c8d6

    SHA1

    7bdb49be11812ed8305ea374047feee736fd0728

    SHA256

    4f5f98ff0c1588ec4f9a12c12370ab268a14fafa6b6859eca627326b16788e08

    SHA512

    1f0bd4cdd571c9bdec88659883fbbbf5a643666532fbeb3fba4ae8de9ac40fca1cfddbe57d8afeed3d1351f207d81fa9f26718c520cbd8e101c0cdaaf2a0fe00

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6ea474bec39200dac9ae4cc505b735a1

    SHA1

    f2e69598725426c4dc57e71ecd35a4965bdfca7d

    SHA256

    e88dce5ddb0c6096fa696fd90936c8a7ea0b17617444eb4a2d6c4eea44737cc9

    SHA512

    997980c8619d923543e4dfbcdc72b88af9bb2cf91e822b15c569ee1e373710b345258de0d8276f26bc7931b401ea3bdf926a329bfe1d6f8a3c96c1c2cc150549

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cb10c101f618e02bde9f72539d797bd7

    SHA1

    9da2101357068370d4dfbe27322e75c5c63200d2

    SHA256

    0510c06320f2ccbebdf44547e40b979e4669c49b3d1d0b2b20c22869454144c0

    SHA512

    fac67f15365bf2e673a6f542fd171237b4754bff9eed5eb8d48c6ad613350f5642c6d905f2bcb8051c3e01793f7c078630a2dc83351c8ec544b6ede4c6a6a920

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c25ae47eb68fd3626cfe6af73bcc782a

    SHA1

    2314f13e4ba72c6ad49b4b255de06fb882c8f959

    SHA256

    f50ab8e8fe00713e72c5ba8fee0b549b4ebbe59fce75cb4d739e068c93cca247

    SHA512

    485fd470d6ecb9d16832d394cf854df482a311d1159a22cdbcf636c03017a8e4c6da2c8f48c4c3f2e3dea1b51c4d06425aac676d477fbaabf7c4cad24f6adb25

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a0916b2a2af1f950ee547ad3828ff93f

    SHA1

    3c21a6586e3fb6f632bcf96951fbf0ccbaa41d2e

    SHA256

    28dab7bd68a01dd78a57aad6c799df75be7e5f755493ac1485930db4a4089a6f

    SHA512

    1e4328fac0682d21fa5d208cbbbde626fa75cc69f793c8548668d40bba934c564e6fbbced3babb426b8caa8d8703c468b1a3f42be6fbc6f3f95fe1cf880158fb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    936ffa572477c5c061326ce704afec4e

    SHA1

    1e82654fc04867d1de95d89f5b843291a226cf16

    SHA256

    f8107a7d6db01f3ffc3adf6fdbd2e94aa17910d6700bf0aa35b3a91af8368fc4

    SHA512

    9d8fb9c5649de8be3a3ab904584acf14c948b2f15c2ef62e85cc387bd6c48b155ccd2ec42a247726624594baaca841346f6cc60e6eddcee7d6a419e41be6bd89

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4a12d11a71cd9c0b9c4496d89e115988

    SHA1

    790577461d7731e601b9cddb1fc0d586052b3401

    SHA256

    babe47e9cbc282a121a5ca9d344ba1b1f90a369b525dda1106aea0e5548865f6

    SHA512

    2ec48e6e1dbbbcddc11e78757d236355f7f008050a9018dde5888544a5f22a8154b9df4d8a7dd027c7fb90a0691b41fa63196a38f42a7d9d75807a07a6465551

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c079f11cdfe770b9b29850824217ef6b

    SHA1

    0676128ebeb1a19741865506bf4fd71717c58a21

    SHA256

    d5259c023a2e65d55f929903fc2042fd717cd4bbde35d46206ee6fe2b73d17fe

    SHA512

    6d61d0e859c39b0e7e703decf5036debbb0b8652306ab5e3ae15c5bbe92b0bd0c25fb961ab288cab60d43f0a46f621959a9321213686135f0e4a05b1f7fd25ea

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    00967976cc105f31d820d1f6eb6e25fc

    SHA1

    8a28d0d56e71adee810d451784ab5e5dfdc202a4

    SHA256

    9d0ccf7521f6a47f9611469ddd0b791ee279793ebc72e268fd9fa18914522ba3

    SHA512

    044adce53e1028983ee074eb770070aeee2069ba53488fe2527e615a798d4e22c83c33738ca3da53264fdc7d961861cb5240e1fa39e15939a2ee67c06d16d1d6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    14ea2c01947ada059c816c58fb496d6e

    SHA1

    758959da0402e3f578ae6346a78caf3f913b36e8

    SHA256

    43ccbd382cb1f5d854a3bce07234effb69deda7dc4c6e8561d881464763afd86

    SHA512

    6d9a8bbecc4d84b51c7a15f9b23c5c7e1645b7db8240ce2a4ead31def69fe1c6427bcfd3b04da16597befe61974718595f84c65ed6c9a6123c552bcc0f9731e5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bf61915d50c9e6dc8675f20d1cf95d7c

    SHA1

    a34037357e919b381ad5ce2733894e4992d69516

    SHA256

    e0eead312a3343bb642acb7ed4fc168c69f28b077ee47d8b6675bf849e89c841

    SHA512

    2cae489902fae7ee2bc7d6c606311b4fd15de7f5fb3c52e4c10a6a2927295de3ee9e6211b3b15cff7ab1e53a920aabfdf155b28c9bac38b6b5e8bd055381b541

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d87c2587653501407765fdda31e6389f

    SHA1

    5647602992c595f9a1eb4004cf23b19904af5618

    SHA256

    54f4dd3004e5d85941530493a12bcf0f75f14281db182acc9b4a08bc1bb4014c

    SHA512

    ab99f68d40ecb6db2e8910016c9f15f28a5b00992da086f28c324153529a2fc352f94bd3b0703da93b1df3eabe3ec6855e68c8e5ee1609ed08e15c6cf990b601

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7948195b4fcc5f00a03fc28d2e784c20

    SHA1

    ce0f3dd19d5d1d8d3b528097d71da4e6af6cd27c

    SHA256

    6769cacc62d18e920be8af5e12771d33fe4644306e7e25ee18a30a77682cb117

    SHA512

    ecfe61ab2c8771094ab6ffaa05104967f1a44da836d1f269abb843acf14f81d60a14d6e684a10cbd875820e71ea4dbe02e606b0dca91e04e9baa16d8846d6048

  • C:\Users\Admin\AppData\Local\Temp\Cab2703.tmp

    Filesize

    67KB

    MD5

    2d3dcf90f6c99f47e7593ea250c9e749

    SHA1

    51be82be4a272669983313565b4940d4b1385237

    SHA256

    8714e7be9f9b6de26673d9d09bd4c9f41b1b27ae10b1d56a7ad83abd7430ebd4

    SHA512

    9c11dd7d448ffebe2167acde37be77d42175edacf5aaf6fb31d3bdfe6bb1f63f5fdbc9a0a2125ed9d5ce0529b6b548818c8021532e1ea6b324717cc9bec0aaa5

  • C:\Users\Admin\AppData\Local\Temp\Tar27A5.tmp

    Filesize

    160KB

    MD5

    7186ad693b8ad9444401bd9bcd2217c2

    SHA1

    5c28ca10a650f6026b0df4737078fa4197f3bac1

    SHA256

    9a71fa0cb44aa51412b16a0bf83a275977ba4e807d022f78364338b99b3a3eed

    SHA512

    135be0e6370fd057762c56149526f46bf6a62fb65ef5b3b26ae01fa07b4c4e37188e203bd3812f31e260ec5cccff5924633dd55ab17e9fa106479783c2fb212b