Analysis

  • max time kernel
    118s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 13:33

General

  • Target

    a5ce6b3d9047e98ca5f5488b9870b169_JaffaCakes118.html

  • Size

    66KB

  • MD5

    a5ce6b3d9047e98ca5f5488b9870b169

  • SHA1

    20a72d81274a0eac9a2e3580918f7904e6a6fa1e

  • SHA256

    f65d9fedec3a038beff707fafff5a2b9cbc0dc211d034ef915d2449ed99d3ba1

  • SHA512

    480e910d3f4625313806d383f68875ad59bb474434eea5942437d3a58f1d3be62973b3753b467508f57eeff285bfb05f02ff67e20c9232180e3f0fb8d6c879c6

  • SSDEEP

    1536:ikjve9lDNUxGzUPGc8hE83KrKoCowAowALLpdeRKmoRKpnqAHpFdo2qduTo8DoL3:S

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a5ce6b3d9047e98ca5f5488b9870b169_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2060
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2060 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3020

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    d626863696c68b54dd3800d6f132fda2

    SHA1

    e7a60a9bfd1628ad942e26a5fe3797ae4bd47f29

    SHA256

    9c6d0dada693586f93d3d8bb5529416677785eb7623a789b2145d31a2c48efb2

    SHA512

    6ee8503be96320a601b6bab616d1c0d051df564111acb7d5d48612c759aeb8de617451ff72535c11c4f8d06497026281fe07d9018fcdedd2930ebe131dbce076

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e2dae88fe07e4408dd2e4c6b587dfd27

    SHA1

    61d95d193bd95230f8cc9a61d830fa06d87f4751

    SHA256

    8e4039ef1b18facb770b356bbbdfa81b6460af4186ec2e17284e14f42cc5b261

    SHA512

    a0f0f58fd9342946fce2e80e11600023bdc3ff223eaeca8dbcfd7175420afba0b88618d8668d43d415ce8c16ce738d768ee671f55903d4e9d6e95dcdea697a4f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d390ac8be93d87facc258cf79fa077c3

    SHA1

    1b29a4aa569295abcd56a3275a26832735a909ab

    SHA256

    11db7de68363941e749b4e8cb4a079300c28e5ea2fddcd006e86e2eeec7eb764

    SHA512

    5488a8417da402eb07d452a021f8a3bb3d5d42149d0f9123e75279cef3e42161e85b7d5ba65699761be8639d3b4c4240b33a3d1f7763656514f45cef4a165a03

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2874944ee843e9ab3b57e535cab4da55

    SHA1

    db82076a8ac10b8766dc518f06be5feb07f3b540

    SHA256

    c208fd31861e0b93e03eeb0c5e4a7075e6459568d875a3715470e05ca42f144e

    SHA512

    4519f1fbb2a78acd5f78967055370f948686a580a57b0be8379afe3433a304a7394e43a99ea42d894c0c3d05fea716e3aa488af8a50f0e09921bbc23cb006ee7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cec5674ec62b16b11e28e932c4c08190

    SHA1

    a5d99929f6b5d8a6229c975df02e1159fbf4ec82

    SHA256

    4a73ee6be3166b3ae46b241a800749a56f774f54d6a56a7097a2973cd9d8e889

    SHA512

    b9d43c582634c077c24ed3e0a9e2a5d0fb69b023c5d799744b1e007e732454320aef23adae7a59c984010dfb7cb51369e796a6d38d60fc9a69349727b4a3a410

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9d163eb33e832b0bbb13068828503fdb

    SHA1

    14000f13f1f1637eeb34680add3e6ea5125fd408

    SHA256

    37352180c4a0252a265bf591f32cfe301767bc3758847a856fe143300c59f872

    SHA512

    e247ab065a00b1e465ca0ae02b44a9f416dd8df152af3677f894a1e251692ae4be4bdc86e6ef54c6fe67a5eaefa93b2c40f2e68264caa92542964c51c60f5806

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    35690edf5e62b6c0be94835ee2afbb65

    SHA1

    e5ae1f8c06b5da18f7526f3e6d4174393f2ee823

    SHA256

    51fe54f37a8fc8c59c4f52907af673d19d8188adfe5cda8bfbcc362f2f395537

    SHA512

    353d1a500895e257e94884ab0e87c729402b4e40bb601093ba9fc1e874edc023b75d1c37c5ac188fe16e26cf70fd9e2fb973a10964b14591eb6a447db72ac83d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    10c77f5172d534b7552d89a4b00133ed

    SHA1

    08985827955767719251d65fb52fce429dcddd93

    SHA256

    7527deb92f4ba233edd3a7a2b854d3788e58b6e9be2dfb1ffc8443555d7d7d14

    SHA512

    91398766fa24dfd8b765eb52bbb89f6c5f51bc6e4c6c0b9aeeee71ad4c07c4990116bfdd95b0baf62f7684c3c74463815d27596159c3f1e085aded3df5e2969c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    136bb1d2987abe310f71595c22407c05

    SHA1

    a4f1bb34d263e74b4a070ca089f26af7d354d95a

    SHA256

    93609946408408f8ec2f5b0881aaf31bd078d49ab5dbbe86c4e47c9e27061ff7

    SHA512

    70e74b071bd287081999a9004e5ca4d048f53ecf9e5f53378027a6f6bdbf00a8d47b3a50dda53749bb4ece87e60cbac8f8a638cf9eae8071b942642e5f3c7cdf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aa609698f9c9832ea0866a7dc6a86e39

    SHA1

    17e95d3a509a2b6a37a9a040ea2ca2c41deace53

    SHA256

    62ec2837eaa45bfe0311cc5876daffc96c4437b6827c395139ff022435e63247

    SHA512

    23587bb2494f3a2804f9ef6488d3c4a9768e6f6da049c88360b5f8bdba378f9dfba271f55ba29256c7ed08ee1b64e17ebee92e265717c9d7e020538645f8500e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0a92407595769d3188daccae06c50689

    SHA1

    183f606e8df53070288a691645f7fe800d6227fd

    SHA256

    fb55b6806560a5932f3ae5530180f3b0182cb4d3bba13d903b73c661a0e80a97

    SHA512

    1eba066bbf99df4b23e506b12f1daaeb53afc493cf416481a083005cb22242f56f6ff8b5b445275173f22570b9cd444a8e465ae57345c451ee0390bb02d30f55

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dfd8932fcafd9da45c770a2903c69268

    SHA1

    b45557e3891442e4904839179dce0cc30a75dee7

    SHA256

    a1ce5c602330306d72b247173ce3a57155e20c2d81b36ddee117aa63e53d7de9

    SHA512

    3ab0e2e259f3f4080a7a969769d9b94230600bc0f635f717394550f976ce4a30f1a9287fa3dc3480905cbf70c0fbca3279ec499694b0972b88cb4d6132ae73f8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1d7a91b1b6de2741d3ff0ce88022e6ef

    SHA1

    dc1c063441a249465101157a93086f18aedf31af

    SHA256

    e86bd559586122d096b02578737204114511861b9cd482a120018153eebf0c43

    SHA512

    9c42a3bafea76bc9dbd4f3377ca0b39c43e71e812984ed8adf1abb126d19dac0ad65fcb6745e204dd8786e8264b3796eb6f3adc911f53c56b32d45c8cd19b25d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2d1d44be3677f071760c808395673d60

    SHA1

    49696b819cbbce9984acc695e499614b165629a8

    SHA256

    e9012d94288130a79cac4d503a7e1d76316b15e0d587f60082ababd6bf44e795

    SHA512

    412abfc306f2170a79f110f7cb22a508875330ab1164d37e65baa67d84d311b4f39180aff227c223bac40c848ca02d39c449da8e901a72d810af0752237618b6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    94200a1f40a51be1e5ee9e7b95faf3a3

    SHA1

    a52a0229f342210e1dd83f9a6db15808e209810c

    SHA256

    032fb4bfe3e8890fef5d36f7bb0a661a3b019378c64aa3bc5c28da89e98ed3cc

    SHA512

    d15179c48210d840269922521ee0d38ea99bfc8c18e1f6c3273ea0655dfe49a8ad5aa561ac9ed95fe8b87de25d6fd23cc4cf6b6999d6e1cf00c501f1f899b65d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cc17f77e11c52b8d9cc82d01fa726c38

    SHA1

    363fc06cba4d9ce6a0a3b35bfb6bef770256fff6

    SHA256

    44ace1510a0bc4c71596a558295252aa8944c87df1f2d34035f2196bb6b558dd

    SHA512

    e8cc4928f2afc38b55915bddb62604c463ae4ce6a9bdeb2d4e891ace5bf505a1ff2e77f22955128cd12ae9fb64bb2a4342fc367003448708f84a5c3670c67e53

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e456383594ef866669bdfb5f49b23d14

    SHA1

    62f1762c4c0121107610696e2c8aeb07b3004ca5

    SHA256

    a66475d30012db5c9b2a74da06ae42b2544dc55e27fc9fc79f405f7ac42db6ef

    SHA512

    d35ae8fb7d571795a6cc66564e1a95eb7a50ebc21c8569c8eed7af47dca9f33255c2202d03a625a1146f8acd22d7630c25d27ea8f2644ac2c09ebe1b430da47c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6c8978b20dd029299c5d79d72f6f6090

    SHA1

    ff5fb366849e3987e16afa1c628dc418d0a1a423

    SHA256

    da2d6cf4f934fd79c6aab5ce7fd9f5db6c7cdea088538f628af8c67e5b87df13

    SHA512

    295d68860ad89923073f983a02f0caedb81ec3b210fc18f1d7e9e8b0473e81f17b20f9c93b30c4077980ad3821214d18f0f617d458654b254e5db5506b20a52e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    039a5bbf96708c3b7fd0a59f6b686631

    SHA1

    8e3a7ab830928b2d3c24f87a6468ea930cdb3c2a

    SHA256

    f784c9028b617e445f3786eb7aae012ff3a25cf1ccac2bb98f26641e13d567fe

    SHA512

    22fa66feb193f39e95e271940777c28bde395a2a22a44e8930559eb11e6e4d35677cc679f758660c7e802d64f6af370a94e0a44521cec8a8726f33cd35d05bb5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3a373ff98aba79aa99f4490dc952aefc

    SHA1

    3c5062a283925fef49c579eab5d13f41defd7c5d

    SHA256

    ff8762e55071c2121ee6844f8e384261e397b867064467c99714f935288be7e6

    SHA512

    2cf0c621e9e70190c0f328e99dbf96488182831411eef6c96c4e858db9ac599b9d47114e47267c0b52075b9fc6492f8c403595771a95603068e3461b0cd0baa3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    31a780b3866b28107374cf5c5cd5b789

    SHA1

    c073bcfd3b98c39621526df8ad3aba806d77cbe2

    SHA256

    651c974b8884b921fba76a419a0775663e8739fa8210f36e7f322aa700bc6f00

    SHA512

    21ce86ea4f537222c44ec30eda975e3210986bc60b2814fd1e463c674b2d39abd4de80adc09572dd9c37b0d9a54ce6c7611430655b20c22b5d38378e3e47d459

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

  • C:\Users\Admin\AppData\Local\Temp\Tar3134.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b