Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    09-07-2024 09:36

General

  • Target

    2fd8b8df1062ac86c742028964175005_JaffaCakes118.html

  • Size

    6KB

  • MD5

    2fd8b8df1062ac86c742028964175005

  • SHA1

    5659fbf9129cccbf1c02caf67ec841027c4d54dd

  • SHA256

    97dba04db6266603dc20d69efcfb5b648de6d0d94df658191d4d7faa98cdd3eb

  • SHA512

    43efee6cde4dff65cb562318e3e08c5614afabaf8822ed33a3ae7367192ee1b755fb7a94ddfe55a54b2a0c98c33201b5d3cd5a48d2ab94cd7703f5f8047009cc

  • SSDEEP

    96:uzVs+ux7VwoLLY1k9o84d12ef7CSTU6T/6/NcEZ7ru7f:csz7ioAYS/74Nb76f

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2fd8b8df1062ac86c742028964175005_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3060
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3060 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2692

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fec4ce8217bf547d23d72bdcbd7ad885

    SHA1

    8f3c2f9ad6a4181d581de84af81d1dfcc4574d9b

    SHA256

    faeb2bd4735c2cce6c7ae71335cd59576c6ca621e731a7e1430cf427dd9d1040

    SHA512

    5e7d8abc66ba9f8f20931b3f286ea22d09ba6b4f38a1124cbd44fa403fee3e9a74f83f275ad24cf27acc3f01e97004979ffd096ebb7b7c65df00e47f001e870e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ec648bb3c1ca22d33c8a40fd1721ab97

    SHA1

    04d84d8b75ba598dc0e843ffbc077f61e31f9896

    SHA256

    4c52d7acbfdcd929af602add695896c7ed5e1d67c008a3ac1b74a3b8299725cd

    SHA512

    c85ad33bcb2f1cebc16c3f5528bfb12dcebb6bdaae095022804ef72034566e1235d33d60dfd61e34d60f63437849d5180f34909180756eae910152383cadd655

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    48171ba740217539f9faff0d9e35e33b

    SHA1

    a42ad60a9834f47929d4027b58d28d28cc41634a

    SHA256

    e728fa243b6714a7f7f90d116d6482e94777e01f6892c6f109a91d1973dd11e9

    SHA512

    f832a0e1335a7687f3eaaaf092346d921770672879d0b50e09e362e35d789b6d179a0107472a7c317b1db394744a12fa94e1ff31f2125109905d5a3fe962ab1b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    09321f421d7eb38089ceee328ff45a93

    SHA1

    174c4663d5bd8ecf6ac969fa4f8e419cb3166e04

    SHA256

    81d3ad34b6a77b8f3b94149712108be6d656e90f550ee3dc33ffc2030f7a8128

    SHA512

    5c8225826e58f197d323cbda975fe8f0f3bcc115b6ebd1c6f98ebd0fd116e0e092ec6dbfe5a4d0a5e82153f65dcbd9221c137b8faa9cc2b6278809e2895febec

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    75aba2ed725b95fa2fc82904cd0fac45

    SHA1

    e6f690e0ce1088cbd4e694d7e50fa4eac88a5f04

    SHA256

    a5cc35b6389d398802ca3d1d79361b5246c4a36d2892d0251242bb8e53c5b37a

    SHA512

    76e88e32a76d8083284e27dc8724fde281a18ef0e6b3ba1ccd2e712abbbdf171ccbcbf29931c30049f5b0087268fc42e7db837b4acd47b112da02c44840756af

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cd833fcbdaec237d6baec43990272975

    SHA1

    58fb9345ae6d2238a183b5aa32c5e4f4d7109633

    SHA256

    b6490b5cb0c46dec924fb36e460088aef98888e441a5fc05fc4224e734162fbc

    SHA512

    5826788f2b89364fb3158ca8e5684b0c7cd271f728ca3d65e2557575d3dd6ec96df8aa668375ea16a54b935afedd3133ae90ed7c54164b6b6531abe76807c5d4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4aa4ab0bd76c6ca1ebeaa08a8d1598aa

    SHA1

    3c98aa02973f1628f87211343c5348ab6fadd80b

    SHA256

    a69ce0afcf46b674e27ee277ef3d6b475b4e665c07d1274553d60ee60bbc9b30

    SHA512

    723234afae51bd893babbd5c8d1bb27391483169aa01f3ec81ffc62bfeeb4d3643b286798cbeacf5178e641fa890bca540b3d8b25f490bfd56552b15354d9622

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0eb0850e0b9ae839444e9a9f19cddfb3

    SHA1

    4791e750333c06f4db8d43039f6d40de54d346d1

    SHA256

    727704ac20dd4bbb5c3f46529654668c2ebb32e30d060db0b648cc174bbd397c

    SHA512

    ff08cce1d2b9a24da850cd64e00ae685142ba34ccf03e1c3850da651a2a7f3548a19c75ff5845cb13dcd3a3b2c43ca1fdeadf5ccf1c551db372b911135b0ee3b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    94df25ab21aa4f3061f4a6b012e80a4b

    SHA1

    c9866cef5e4d43a97b73c4fb41d8a78ab760ff26

    SHA256

    4158d0d8132d1ed6cb5aa8dc8eb95b6aaccb47f86252870f5e2733081db0fc7c

    SHA512

    69ce5380a7a092e43093c48a0af1b43fc9b9c3620f4c4ef8f9a298c93ea9037c3db9b9be8f86150b7a5a2dfc91186d34985366ba4898bf9e42108f84548fbe0c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f59a85c458098860f0602a0ec2cfee4f

    SHA1

    e80745baa7cbbe0aab7cb564b1f60445d339d285

    SHA256

    55427ece62e4ef1804b8a23370a6fd4939d6e4c6f79fb0f3e8ac1a90c8f7298b

    SHA512

    b4114db348a9e0dd5d222a521ededb26ae98b053f3133aa72097782f6beb290cc250705e41a04269bc47bb63c12ca61a4903c91b93bbc5a023e4b954fb965b74

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fd0d04b531920db4cedf732edfe22fd6

    SHA1

    6cfd1a9b4ae4f2b543fccd2166173109dc09bd25

    SHA256

    72d3326174a780ac1ba6bbf6bedf96460cac286b7f5af8a59589a7ef80cdb5f5

    SHA512

    f29bd22937fe83b98e9e535bf08dc6170e3011728766ca00fdd3d04dee163285d90fff726018ac7a8371d97c7d297bf0ee1a61cc180313439fe4c0e3dbbb7b12

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ce037a50dbd8c537e7d9619a60010728

    SHA1

    945e4a466a33777327cd27f0e60a0947c7c1116b

    SHA256

    60f528e03672f7cdf2f4107f59a9918433b4f0e12bfa292d559513fe655fef00

    SHA512

    5c81d9beadde8f738f0e3ef5b8e4de7c0653f0398184a8737565ebfc70a46be4811ad4f5afd81bf0948f3467b0631005dd2f3e29bbd14b7b0223d3384d0a2c08

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    259ebbdd97dfa6264f233bfceefbdcc7

    SHA1

    a719ca71dc58bbe7d6d1f150b463358dd8ea0f16

    SHA256

    91e613a42d3958cd6b9ff22a6419a0187dcc640031f5564939675678761b3223

    SHA512

    ad5481dff15177cd979368d091dfde7a26fb113a94e9002de33d504734073e50d589202d465d668b1ae1d099661bb446a6cbdba9dfe2ebddd4b636d8480b1b4f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cfec21ef564184d5cd40db698a2f6b00

    SHA1

    3eec625621ee801a35047ccd2d06cfd280841866

    SHA256

    8471a4695d410aacb7a3480e93859647b1d2fef794a15ed0cc4dcbae14859ca6

    SHA512

    fca5bc52cb7687cb53b960f0e8caebc2ccb39fcc35840abf9dfa3b37cd0621921abbe00ecea95b428aca4cae6a701bc396f97cd3171b796f96ea550b36495bfe

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    75edf328fc8bbf8be32f5b5e91ebf8d3

    SHA1

    b86902ac49a823339742e8322d797f1687f3b469

    SHA256

    2fb3f3c50f09be221f51a9590dcc0809946dc60b81662e91fbc0f42ed0de94d9

    SHA512

    200519fde38671db65538315ff43e7a353ab4589ed20c868dd99c68960f4da927a13319c59ef428d2d06719aad94bbe0af595a70d5139744ddec85a9e0282140

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    27be6baa51126b55f38bb602484ce661

    SHA1

    1463c13b58d4d138493c51e8755d7250ef0296ec

    SHA256

    6233f41b1c434698ab6918cc3bb325f8f5c539b44161bd7a9d6d236ea309400f

    SHA512

    4046a98049849cad30b30bf5e78d9080d02d96b9026bcab2f2e1bea46e1f3f23d68c9923bfe417c3d2692597728286ab2f088ecd2115111e4d674b0cef455bb3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7d93c403021028f1328bcfd97cf6fc78

    SHA1

    79a57bcf2d7abf15e23de94af48affef6ba31bf4

    SHA256

    2cf0d213ed01de93dad416533d6e5e1c18d69b07e541b62b62366b82ad1f21c8

    SHA512

    12634104b2754beff644d0790a0fc20043f724b09686c3aa8e0498c6d1ee25472ab129b72df36a39619326bad5a140cd51961096cac3f5d048c131a11b53b096

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    79a5170542d0e2528b5be116e89ffbd8

    SHA1

    f56bd4f29dfdd71e238058ea9996b93be3dc3c57

    SHA256

    adece683f9a8bd2ac7e635eb38deae15d37196c9b4e7da713b9e0f08177a84d5

    SHA512

    ce694d06b8801754579f2aa57da2ee0b35d685cdb47500b329e538486ce4fe070ffa030d1646300de187bee7d291cea24c057aaaaaa86839c5b1ac26e781b819

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ec044b7a1af6ca93024d2c7b12c57abb

    SHA1

    a0766959f5f3e4aabd2af8f0134d0507f6f75ffa

    SHA256

    0305aac7c42b4fef0ac14a4d3a216136b6554ce39bfaaab5a7470e55e9093434

    SHA512

    929367dc7ef695e3137aa3dcb09f9221cd84d8a5cbca1d0cbebb9373e866ecd16d399133a6271d75b2fd2640aad750780c6cadf12dd641a0e09f25969c8f2474

  • C:\Users\Admin\AppData\Local\Temp\Cab6D66.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar6E15.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b