Analysis

  • max time kernel
    117s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    13-07-2024 05:12

General

  • Target

    4051c8cfba171f3181ed1a121916d9d0_JaffaCakes118.html

  • Size

    53KB

  • MD5

    4051c8cfba171f3181ed1a121916d9d0

  • SHA1

    46b70cfd8fa798a3da1b7b73f9105c72fb01d676

  • SHA256

    1ab2290df75c99e0aab7a1e9342b23acaa4edfe932b4a17b9ccbb179777fd0ca

  • SHA512

    8c2d400f250adfab50ee577be9ff51862ed323d41dd6f16c1afb9bea16a178e1249b2381d68cfdb885072954795ec5e70ec009722f19b6e71735684a9d380a09

  • SSDEEP

    1536:CkgUiIakTqGivi+PyU9runlYK63Nj+q5VyvR0w2AzTICbb4ov/t9M/dNwIUTDmDJ:CkgUiIakTqGivi+PyU9runlYK63Nj+qj

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4051c8cfba171f3181ed1a121916d9d0_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2180
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2180 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2804

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ed443fb78d4d4e19630d4899bb6ee289

    SHA1

    8d625cbe0863f1ef40578916f69c524ffbcea14f

    SHA256

    fc1c5426c5ae3a7f628bcc3be231842822bdd75ceb11fba77aa5673669afd3a4

    SHA512

    a0f12a7e26194658ad24016a2083cf6755cc71b3f061cd81ea8886b594f1c6b75a357f6380eab51df1361d865d0041988cfca81167192a5d6b66d9977e353f5c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    93d9bb01aa12f334eab255be9678a3c9

    SHA1

    e4fdb7ccddcb13962d32b3205552aef38172dcb1

    SHA256

    9769b2fe7a696f8d8eebb6dd375005b5e45d5277abf62a78c85f7def0a869a1b

    SHA512

    8321ec139f46dee0ee6da51931ca281b1f74e505922d838cb5947dd53a29b33635ba82f7a722b95cfc89e9eae499e391f2f95861de144087dfa194dbab1f22c0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    30b83825c5770b06447d490ed1c23b0c

    SHA1

    ed69ee2bd006056be200620ca1495740da774810

    SHA256

    68cb9ca8a8702c0341735713a1e90bdcba9ef815696523de22ef0387f89e2644

    SHA512

    7aed80cb6f317a5df849206c12a99f75b49d9b32a2267aa5fc8c4ea8b4ebe4b4467e47a382af599a4ced10dd30a6bec9ef631a88c1ed1758ce62565ee9cae3ec

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fd2c855339bac4675cc51b1958264895

    SHA1

    62b0fe2f41288b1e86c98824887e46ad65e0a93d

    SHA256

    6eeefb635f274cb36654ed3918d8bd781f47e58fa458a1ad34da8f6421954b6c

    SHA512

    d142e806c6acb193650ecc576f12d52f60fb2ea015b48ca71bf95ba3e99e5c5195f4cf0389959905b4701d82ea6f5494f9067c8a974f56353a883375fe84cfbd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6dfb9f18f0f3737dc01e23aa75149e68

    SHA1

    a510259af50ca78b8b15c18513b7c94e92b24737

    SHA256

    e02ce06ce0d267ef85d4f35c7ee98f0098f6dac8223bf1c0d32417627a9213e8

    SHA512

    a337b0f7323c95f539bdce090b01737e88369417ef1b53c9b25bb2aac22096e5b2d8e31f7f6a48614519bcc18fff01c7e1a8cbaf4cb8fb5b8fb504f61ed8d678

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    57f701faa6e8c030c0d38570b6d2639f

    SHA1

    8fbb1957631e63b49320534a5913810003b5cc12

    SHA256

    5b69c0f7577d255ec0e2748ce024e7ce4f23211131c4ac933f3f6fe2665c3690

    SHA512

    b33d094bad4a48b047aacfbaeaa79021027193b1ff48bdfb6005c3ec042e06bcbc88a01f68e00d9e573dd32303106d3eb0df07c0c41faa4216e41e45df4c9397

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6082ca499ddde1e09e12e60a8bcc63bc

    SHA1

    9711bfb7a5094414d62cf95a00b973092c0242fd

    SHA256

    5d7ef292eeebcf54ec9fcb02e606af28635becfdf9cf2ad39590073dbeb7cdf8

    SHA512

    d558ee2629dc0e6b6c460f1e0df16f4bedacfea67d576ebd5713b35521750ac149b9d1cee681bfee2b890fd02892e298c4007292c959a6401e3171c9b7a4d33c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    06feb21ec995b8864202bfa7e138e2d5

    SHA1

    696dacbea89f8c4f6769db32de4868faa222f4df

    SHA256

    a4262f32aef6fde1c51847a8cd6aabbc16604e6edffa63842b4f7d016e827f33

    SHA512

    3921c3cd884aa61bd925b6e879780196bc0024a0e7205fadedfaee696d17d226d10c13ae68ada28d2d51f3de14cc50616ba135a722883f9add1d4cb76ce75032

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    673ca6216c8ac373143b99acbf332cca

    SHA1

    4af6d83bd6adbcc71ab46b394065930d17d6a3bf

    SHA256

    5cbb018c23207627efe2a69efa6c47b3d70c32ecd40c5077c9d7d9584877b46c

    SHA512

    0735ab9806c5323206dcdbee53aa540150fd6042eab0b09d98ec2f8c0a5ad92ed40ccb90e813da196e78722a9ec034755d86366045cbce27766717ed6a49506a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4224a89862c574e3936dbee21756c95d

    SHA1

    e7bb4b35de0d4f4070323c4f32a9be9feb4f4243

    SHA256

    1941d0e4d9581d271ab30104b8772794012576e48b2435ac36d4a59bb83d9b50

    SHA512

    47566a99ca591714e3e1a74712bf04c9d989ee19e99eb15b23c1deddb97519a6977340209b7307d56045bb3e24b11dc54bf86c430f4f7216b37a52c1e6bd1168

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    015ca134d481602d9b09538376f339d1

    SHA1

    2aff2c5a8f9485559092a95e908b7a50658be511

    SHA256

    b4c83b683c38aafc1e06a43e7467f3cd2d028e7efef36b32326411c82e333f59

    SHA512

    888901cd5fbaceda137991d71ec153c2fa74d2cc8fbafefe3b01a79ce1df714fc658d8291d422a7cee3d159f3068b0f84ea47fd84bd10fee16310c5f22637f99

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    97659f5753b14cbbc95ff01c55f6eeef

    SHA1

    d7a893c517231232e4a9f144cf47d91e851dcdab

    SHA256

    71eaac99bde2a492f7918fba8ee7787631b282ea61911c5aeede3faa4257c1cd

    SHA512

    abde43bdada5decf669e9eb4ef224d422fa0409bd9ed89b7f29082a92d5056d78094cbed4a06cde8e44ce16cbeb0c095c4eeeadc55df59eb07a6004dd584cd31

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7fabdbe65faad03f39bcd6475f314365

    SHA1

    f5901f55e46e7d1e9e00de696f4ab01be8b0345e

    SHA256

    3fae7ef78281e5eb7d05f415b0597429eac73f3acfaed151596c4e8af02a8b4c

    SHA512

    9e275d1e59ab36c5e078b3cc057ca482654bce7d7facf648bc4b027707f75c1567c508ced34c4d0b2bc0d97bc6ae205671d54cac93ff319c381bc6a3c0405539

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2ccf767770ab041fc2445df93b051a58

    SHA1

    9cd7af7a462d25865917f42eda26134e4c9d213e

    SHA256

    0271c1411598af4c4d3e691d4dd52fdf5368e22f558c8cee9bf6d1915144233d

    SHA512

    1246762692533d5543567324e91680f873a30690b8ed4eb0a3d46eeacff75755f2a9fa7d9a58dbc3d3676470419fc65bb21f2d80cfbd6704edfc6d0f1ee52b32

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    adb044758ec4d4e95cb158ada520ce16

    SHA1

    c1326c073c38b5703b193c3eff4295f21edb116f

    SHA256

    964f23cf8a959c729c6b5e40ad0e6b82888a34191b5ce326c32c3a3fbb4b999a

    SHA512

    150863af65dffa2896ca49f520050c86451d4b8e42f1ed1fe38987dbfbce264e4ecb41eccf1a176b4bd1fd7abf707d1ad6fe1b77056f5531fb798abf1bd0b40c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1546012b06f39ab3478b5a34480e5148

    SHA1

    d70d9d6ce3625c3712786c335ee972303962ce14

    SHA256

    0ed0b2a0f366c792979e78fc99935e1a9f5e0ab3b8514d94e5150763f303e361

    SHA512

    2502f8c054bfcd2a1477c736ec4f8cfb612dfb3459b23538732586463282a137ec663733a126186fbe725829a465861a63c7c69965fdcaebdffe325e7daac366

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    243cc68196406f5228d37c962099e9aa

    SHA1

    d6a541f63f681010f8cf19665060131e5735c16e

    SHA256

    6fbcce69f64d98cf869f181deaee8553aa3786d48273bcc506e148632d605337

    SHA512

    f5d7a6a91a898bf412465f6f3ad5cd0dc81ec8562444867f5389a61efb6d5e11a9fcacda782277187c56af91e880e5ed5d26049112e1d32ab14e7427c9ae6c70

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a9546b60805851cdf342c9c2f196d307

    SHA1

    74e7d1d75988748507cd9754e27f68f2fbbb9c9e

    SHA256

    8627f6b680a82a730eacec866f61f563aef704429bd158f8fe0fc20c8c72c63d

    SHA512

    f16e2935327d91fecdddbb78d9b75695b5983023c511c4322f5fac20e5671877e54123071cab6c74ad53b76e6cf88178b9bb2e1cf4597d7741be51cffc7a1846

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f0a92a0b5ac482ca81e2fdb300b18bda

    SHA1

    309de7742a9ee7d647182358b26c4eced9d202c2

    SHA256

    8ad8659eaf2144a7c2efa6825fd70237cef210e98d138a5b99d9b872dc9c5cbb

    SHA512

    d86ccd0d9c2f5410f1a93ae65aead0093984b7072333cabc759bbbe007dbfcd856f96b96014f0a3371ebdc8bb35ba1cc0ac076c74b025b3b970132c484a28e3d

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YUF3ZB4A\script[1].htm

    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

  • C:\Users\Admin\AppData\Local\Temp\Cab6AF5.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar6B76.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b