Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    14-06-2024 17:41

General

  • Target

    aaf4c9417606da92b108729ef1215a49_JaffaCakes118.html

  • Size

    35KB

  • MD5

    aaf4c9417606da92b108729ef1215a49

  • SHA1

    ced0567cd2def5d3e4418871f685d6f3840d5c57

  • SHA256

    34490096c6955fdd7fe01127f457b8ac3c0fd48914639801f62378b96f1ea4ef

  • SHA512

    3e5461c7cd7b3e80bb5391f8b6454dbceb76798abb8c997dd6d2c10955f73c16f79294b0307b7607706ca8b5d4bb00fbd6674cfd1d90f1b62b7950f5c48d189b

  • SSDEEP

    768:zwx/MDTHP388hARFZPXYE1XnXrFLxNLlDNoPqkPTHlnkM3Gr6T0ZOh6sggh6lLRr:Q//bJxNVBu0SZ/N8+K

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\aaf4c9417606da92b108729ef1215a49_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2904
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2904 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3068

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    3cb29b0eb5f77f8c90045cf2538a6a0a

    SHA1

    37daf3259265cdf4e8d4374395313fb02b976116

    SHA256

    797976f28efb48bcc532693938bbf47e6975588efa801bab2baa897a25a3600b

    SHA512

    b414f86cedac9f2384d19725188b3a1d691b46743d26f256253918e10da8797b2346c4b025ccfe2189ebc8700610b9020c4260f89c759f7e244ef4d53adb33af

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

    Filesize

    724B

    MD5

    8202a1cd02e7d69597995cabbe881a12

    SHA1

    8858d9d934b7aa9330ee73de6c476acf19929ff6

    SHA256

    58f381c3a0a0ace6321da22e40bd44a597bd98b9c9390ab9258426b5cf75a7a5

    SHA512

    97ba9fceab995d4bef706f8deef99e06862999734ebe6a05832c710104479c6337cbf0a76e1c1e0f91566a61334dc100d837dfd049e20da765fe49def684f9c9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    3cb320a83c6405876a0f395de95453c1

    SHA1

    27fa0e6b0afd6ed7cb77a258e7a050d1286f9bc0

    SHA256

    ef8d85e03ed6fb0eabae77aebe76d861a87804ec8a933e09dd8234c6797b8afa

    SHA512

    878d531d588d356ef5c85df624d0175324f11a7a1ca4fbe78d59c770133424b866a10b5b7c61983a0a2643b3efd5a730f82d0a4289fcd6892b4b5d0e1d2d12df

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c69a52a59d66a0440c9ce4020d5b02c4

    SHA1

    00081fb55763332dff24347032434d3cc917338c

    SHA256

    e2cea7845457f03530f2a74976cee5ef9e6b4b6927e6942e2ec7c982aef06a3e

    SHA512

    7bcf48f38b0dd12fcdd16f1c298ab443a8543941da7b3245233a39bfbb08aa7557659a5c552528407107c9f6ac58931224184bac9807524615501a30603f3154

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    444346158a0bcd313f5eaf5e54fa0065

    SHA1

    539b290adaf69d19138929cb610d4ebdfd78c8d3

    SHA256

    bdcebcec2c6a14a48e546f613c87e31204e4459d9b5ec146f9121e5ebe2208ac

    SHA512

    5224d295121c3d6033ebcd32db0ab8edbbc8a2fa2ec0986249c957773ae72d32a1cc6f486f89d3945b2bcc123ca7a9e3ca17a69418c76c1db36ab9b6b8ab6e73

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0dd13f2f15d5f277be8281e728311064

    SHA1

    036c1e2e088f2b46d5cacdc16dda7dc3d513ea94

    SHA256

    795c1e14a536af1c2df0e57a9ee510724728b3959e0133a38dc6ae87abdcd88d

    SHA512

    91d1bb41bb7f4c3e880ee40f278cd059a171a8f5981b56b8a22733bb3d65319293bd7a689bb037cd8224c0a6551da4baa28a216754fa45f0046f68e718a68e58

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6054d0575b25ff5af42462f958758d69

    SHA1

    93333edf5669232886687946ae0b6e3e9e1abef1

    SHA256

    32607a3885b9b53b3a28a42bce8e0ee90ad50420f177573f4a0410b2a5076fd1

    SHA512

    547bd0779554a3d5bae5880e9b2f8f20762c6de07906425b111e76c8c0699a9b4609e12b377689d71b5057ecb67b08a48fd708ec80a3fef7a5e12f884696d3c0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6aa0306829c927dfb64ecc810c84abba

    SHA1

    e67bffdb273de961dee2fed18fb8111366ef5615

    SHA256

    f524b3d602b529d5c32b0d3c434bdbd06d2424a0a3011de036e61ae4edc2ccf4

    SHA512

    717335342e9406a72294dc6d189632112775a0ef7ee88ad34fe71fa5d45a6b8f8b31d14a3025dcce19ca1835a275e3261a0c4d1fae09b9f16dc887ddaf900e99

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e83391561daac588f0ec104c148f41a8

    SHA1

    92f5f6e6357a9390eabe31537c2b9306b96a1c0f

    SHA256

    a2843a140fda2eacc239c3d9192044a6635cff77eea5dd855113a98a8a26b5f6

    SHA512

    4d7d8fdc6bbff63d1130bfc4ffcb041d946384846695326eeba288b1bc5724a465515a5203ed1f421b915268cc3aa48e0786371fa3699c53a632e0519326d84f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    386ed9d1047f50840f4e37f5ee94dd45

    SHA1

    4ac5067f4895f7460474dba9521e8754c94fdb8c

    SHA256

    6270c061f5dbee98b93dd77d91c13a0c5df891dcaef70a03c6815f193770bb8b

    SHA512

    8200a921a382f942ab21046be9ddb891d9e4cd3a8d1f87b21bb13c3e5172c11020808bd103327357430f1f80538428bbc214dc2a1b384fb5fca765773d114f47

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e4f597ee621e0ba4d2151a68af1341b4

    SHA1

    0cd83ab16c3928eec3e58cf9acdde3c8c7ce03ef

    SHA256

    da9f028723a18bbdd8c2d695a0b1e5f2a407cbf7226899533e0ad6f35650bda1

    SHA512

    0f96dbeca6ab4b773621b5ad11cc4c8d5f611abd7f6566116173fc18507c09d71978efa4b23c29a15c3ecbb8aaeac5b1b819c87cd322b93bb94251c78cb40a3c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    78e3e9738f7360e7d667ac4b34bf65dd

    SHA1

    5f9241362a4c512b10f07336ac1b46a83385451f

    SHA256

    0de6f8a3dfd6b5c7f9f9edbbaa3186cec61e023326e262f8e1b4b14008b7fe9c

    SHA512

    a26a1603bb72a49624140af245b2ac1ce604f15b3fae7219146d9292366cd70b9fcb86e0c2748f6e801b32054454e60a3e9e4482baa53c15cf9b2d16f871eafd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f55b83319b75578ba1a36c207e2c7661

    SHA1

    418b9e836f20c71d9c13bd6819b4cb216654a699

    SHA256

    47b990cf9dc89fd4b3c90b17c460354da1f5998932237fd353383385c1ed5497

    SHA512

    6179acdf40b0d5c9ccb1a511ceb19f6a6b3c8d4a5b33c23b3ad5a3594c6deaab3b2476d8b2fbfacd7ecc97f7ba0bd0771c6e936c8c87bbdbc00259db4dddbb4a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7e2d62b328fa2f922fde0b55517b3ee2

    SHA1

    34be681ed197d1e9e515672a0831448815824e31

    SHA256

    0624a96df4972d6214291c6c81568642f2659fdf0ccc42807e26772bbd341941

    SHA512

    61bbcf774ed7f6a4642d385de23c64cfbe0f7567ee10d61937c020047aa934b279acf65ada96bfbdab0c9beda7565b4712f29dae92771b6c3cfb363eed18b72f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2fbb43c16e30ac64a6444a0f04c160a7

    SHA1

    845609738c30747067dfae53cb6f513d2b183968

    SHA256

    e288e066760a8010d62f3b825b81115a1ac88948a68948e90a2ebfdb8bca1a7e

    SHA512

    1aaa30630fc1b49ee354267fd77f1302c30c28d422d6841055f2f20a9c876b07a65477440b4365d467ea587a31a9fdac3aa31f701cedb8f439110f39ab223773

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    99d20173daaf4be855a522612087d5b1

    SHA1

    de03ed97eabc1f1c766bcecf99b348204a5b059f

    SHA256

    91d64486e9a939dc95c6210aca6b94cfaf1b09418725140f961b658a076f7e57

    SHA512

    055599b3a2310ef89d4e02163414b11323047c636f1232351c8af36c968b8dde63159e96c51f0974925fb9f47e01d7693ea859b139d4fa94aa8c4651b22cd929

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a8b15434a1e40afcaede8e886283f3f0

    SHA1

    77b8e4c2c223080ce257037940bb8f5f69950b72

    SHA256

    676d82c36556c95f67e92eeecc166ad39cc6562e01b071b578c921fd94aac51d

    SHA512

    e696b6b52c78947ed10438f184f835bad850cdd92c76d0b9e01b2f71519af66dd83dc67166fd90643ebb6614a90f91910613a88784f440549d0015a80ae5783f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a92ed4e0b96255fbe92b7f6b608b2b09

    SHA1

    357a3c9207a2ac7ca8e4fd53046faf314774db64

    SHA256

    37730cd37ace0b01d92e5cee518b4784c93b6f9a372cf11c939d31a61a61e1d0

    SHA512

    93e10723fce0bad960b840d8628444a4e34f8e5db9e878049f832829b25f4212c5667bd2bc4c4c31f6ae0106e9cd1f651210abb9f8fa947f3c06ad8062bf9cce

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7e155e6f7bc13060c84d1937ea6095bb

    SHA1

    d41300a81aa5daceecdae963605d476f03add6c5

    SHA256

    0ba8dfa9e446d50364883a848d4a313336c382dc471a3a1754f89af38852f287

    SHA512

    74712c3c2235d4a2c1119dbc43d4c7b08b74cd107a4e0553a65f2efd59181bf2b14b1129deb84ac12227e49351a807559e8724b47ac30cc82a7fcc40a09b7b95

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7d9db174723a846fe67d36dbb14da96b

    SHA1

    8cd8ea28cd15db95316ffa806b1a844d025a966d

    SHA256

    886b0660fa0004935eeb10903f64c69b5244d52a710c0189d6826bcf043be36d

    SHA512

    bf31bbac527c3aff004f1e5037e709065f8abc4e6d91b49475ab135311a441c0eec9daeaa0271ce8a5cef9bce15df208bf4d4e5633544c05066468b0b595f62c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9eee6dde011b043d7d7f4c66ba33fd8a

    SHA1

    bad5f63e4dbe6d4a10b64a5666f0a108827e61f5

    SHA256

    058ff50b4f9e4ee4fae6b1576559d001c4f46ba39f3dcbac5f6fdca633d70b3e

    SHA512

    3b47799acbcbc0a904381cadb9c61f2976a70432c4ee4aa3fcab46c0def1fa9312a819391bda5779450a2c993d997ffb74fbc0dd7211e33416ea76d28cf9a13c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6bb30a18c1f6ea5b79e9e88a1e5d1a1f

    SHA1

    12866518faf07565f87bab9fa5a139f7f33c7633

    SHA256

    0ff7a8876dc8f7d6170207f3dc31f3d9e80d0e89307266d09486f25305032b12

    SHA512

    91b30b15e47e10110af9b469bf899d89779115017f3bb16e657a220291e7dae90aa0ee168b4df928dfaf8b1432455d7136188015f0d03f541a8045d8e25b1433

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1d3c8bc3e3cce640af9397c5f4f56c43

    SHA1

    7952532fddb7a097bbb52434939a626106423efd

    SHA256

    07b8d6ef9cec34f426509a1340ba24745881d0395ba56318409ed62e8b87441c

    SHA512

    e688341d9d919912ae82e0965efb1f55415428ce10fbd358ea7919b8d467c2f91ba00002a466a12beab95b5f48f43cea6cf97bb5baa21ecf6c7294279d9e1e14

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1a88c8e5914b9de9240c1b0c33cfd7e9

    SHA1

    f9dfc870aa4dd10d879e908533679f882a5dbfab

    SHA256

    45566b206fc44997a9705c5dbecd83b6892c19e5d19d651b17b4b6777778e95e

    SHA512

    0899557f784335facae2c0ffb6163e01e9affe8a26676449bf70583b2095bb90694a11fcd7da5a5f695ffdfb76de788a13dc4e106e4fb4a2e79fe1c96a49ee7f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

    Filesize

    392B

    MD5

    a01cadd1b22e8f9c2d86318ee88449a7

    SHA1

    42dbd4989603bee6bf8a861b49e8821bc1b47fa4

    SHA256

    79d697ce33d8d57c2128ecf53cfe9b7743bc1c5862afa1a0fed0663661e52098

    SHA512

    03fb85ac5127b5e3a3611399ad19899e873f3eac1303dc0ea7937c056fd7c526f50265fdc10a96ee1ee77c2f4c31261407b738ee87d8611129b1d320fc7bc10a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

    Filesize

    392B

    MD5

    75027f2abe5a233e5ac40b13fadd10d9

    SHA1

    a9476439b79259e5d498e16dbc246a096a80b6bc

    SHA256

    ea2f086b4059a13d9d74bfcd832c906be1c2d5e46ded021233a95d39e7b9c09d

    SHA512

    17caa57031a5512c1d814625caec4d6997e3e9b242282ca2e09c1eb9df8651d5ce2468fec3706e22fbce3becb006b2fcb6799fdac1f9b49154d312faa2dfdeb0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    c6c40d5e84f370dc6a45c6b975fdd4c3

    SHA1

    65cf258b177e73a5f47263a6242b754c5c7a6e19

    SHA256

    69aa6690be9bb5ce6f37ff8594becd422bce4dd326ecb8d82aabd3f73e3f4296

    SHA512

    37395cda5d6d5570f914d18beefeb7e6bc5e68b628f42488b8e85fb3bb9847fce12a3ea7f39e0555eaaa2e847dd4e3144b7d38d304722491f0f25d94b2464c48

  • C:\Users\Admin\AppData\Local\Temp\Cab190E.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar1911.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\Tar1A05.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b