Analysis

  • max time kernel
    129s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    09/04/2024, 08:20

General

  • Target

    e98e0b6f53e3f1009caad2701fb39135_JaffaCakes118.html

  • Size

    15KB

  • MD5

    e98e0b6f53e3f1009caad2701fb39135

  • SHA1

    a0b4f4a752cc9e3209818d05b576ca10ecaa2915

  • SHA256

    365162a1924d79c1a64bab3e4dedebdda0e26ce146128d5616a12c7aabe7bde2

  • SHA512

    7cf52ec15f838166df12be653416cb5927cd034ba82ce9eadc92ddf08efaadd9d7a9f5812f495f147dc01c5a5e94debf0e4357cc18ab2f78817e1d5dfde86874

  • SSDEEP

    384:BJFI/Qz3Wf0ZnyrLnF/SyKztALncRfjINc/BYMPx/Qz3Wf0ZnyrLnF/SyKztALnM:BJFTap

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\e98e0b6f53e3f1009caad2701fb39135_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2352
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2352 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1888

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          7fbb6b356744db61b2417a82ad5601ca

          SHA1

          afd2924327e33b64c1d45bcfe63e8934ab2578b1

          SHA256

          319115fd3a661d96e25ead3f7efa5e6eae873e547ab5ba81fbebf28e52e73d86

          SHA512

          54a1c27c5a85dde7d855887666c5d3b0ba739245f086f57945e1166a5eb7be506a1d283a729152b2f162cef93fc96366e788af18bdd1af06937e2af58a9c8958

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          aedb60fee74feb4a5f34057fe9370297

          SHA1

          2c882bf1aad8b2db3321cd15b1a70e6613c3e642

          SHA256

          ea05f9865a5f6489038a65b7450e007ed517cfccca6d369b3062c2f7c1395f6f

          SHA512

          dfa9a5809ab0e9ef2955b77b04d7171db8427bae3c925f0762e3c99735f934279a1dc81f0774966b4334505631acb8147b0d149349227e25821743baac7df05d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          03d32388c6696f9953968f1d75cd9452

          SHA1

          e38d93546b4f011daf989a931278dcd6745672c8

          SHA256

          68a4d83c3496f2d39d3029ba2447cd86f6fe961cf5e3bac82867556fd0ed13b9

          SHA512

          49d898a836a5a9ab9c4ff2644d8f89f919a237eda5b6341136c13eab22725e5aa1f8dfd153581666a74757760a219b519b13c6bea4163896c83d622306a6bec8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ccdd46495dd281aa59526c5e80d8f6c9

          SHA1

          a8b877e7d485c34ca130495817fc6024c0424572

          SHA256

          9c792928888042a9d593ec32f483b851e6adc6823e6ad93aee116a3052825642

          SHA512

          d486fdfb38f624a4db2795a01721faced4373fd27f2facacfcf7e1a4918d34aefc8901b3293649c6fdf7cbb43c47736e010d8abc8391d3a0a5e18f1c8ccccb87

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          36549043479bc1e9462d4560cd360b8d

          SHA1

          77a4d6fe38c8558d6af0ae42e5aa244ba6092a5f

          SHA256

          8f1b662b163eeff893eefef55141bbafcf2a64bdf925a9f2390137d31564f367

          SHA512

          b8383e1aa8cb8b39f6c246c9a04c89dcf947f51baaf3853f2b66929b3c916289593a23ad1d86dd1069c52f59bc22f4004138b48497220d856bcb264e6c9506b2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5915c8fb6e51f1f150b2c2973d648b35

          SHA1

          e11b3120ccb19dc352a56fd54dd02dd6240cc5a2

          SHA256

          48b9e3bfe23cff787c686ba47e6eab57b5563d3e1ffb799755bce5ea0a5178ee

          SHA512

          08dfb150f1e393e8feff7920e1574201dd8da79012317514193b80f86489bfedc64c3a0d67a4d419df20dce9c752828a5f9bca58ca7253d2b75829d158dbbf7c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e8c5931b3bb7a2f6fdf09414c4a9adf2

          SHA1

          dcf78ef4516d75137027fa2c5972f869e8c7229d

          SHA256

          da6f7768b7871d1fc2d34abf656d2cbede6d381e24847c84008a09bc18da53a1

          SHA512

          6c9ca83e8a31068f00d68e37e68248047307fbf34f21134b9c11e1ecc985905f84fd9040d4ffea1f2ad14db6113388c4dbdac082334d1803aa3ac4122e86bb52

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f1c70ff8930afb48ccb16d1b2d703e63

          SHA1

          59ebe90ad86434d8d5952635188cd8bb88d8ee4c

          SHA256

          9195b91669caf831b212ffa5808c9b909f5727e8824c349b61b345c3aa961414

          SHA512

          d9649cc1e097f5c284f5392e68d7584acb779f18eae380f65ed0661c85e7a1e93e1f325525eff48c2820162a0a262b2c740234a920c22b8643bd02ab38ddeb15

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5c117893010c44575ed5c47e7d0108e4

          SHA1

          01f4f0ba9f6e41d4c184fc729e1d186127f4e9ab

          SHA256

          e883f3740bb7d89092ce5f44cd87c6cb81266c0a24f1c484f41f32889f90beb4

          SHA512

          d50e4342b97ec681dd5005bf940c3b9acecc3fadd364198fc8b7d8fdc023cea007713a1c53daa8c55ad9d7fd831d7ffb7d43fe58b954b3a0897b5d4fdb4a5128

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bd21f05503bd353c6fd7d7457c5bd8ee

          SHA1

          3f5082b6f8cfa0db366f8b10cf73cede7b30cddb

          SHA256

          8264850d25f7041cdeeb8e85f5c8404fa1897e68b0701cc2aaa870bffc185719

          SHA512

          64ccba1c23cdee0f8e608dea92adcddcfdb0f3d4dfecd295cf6bb57dff03cef6d3393e0c42a0745f66969712fc880ce5404c1dab815a0c76d01c7cd92f80774d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e3d3d1a2c837473928a14ef63e51123f

          SHA1

          b250377f5925d7fbb7abb58a35efb6411cee57da

          SHA256

          8ba7c23fd1877d5cf1bdb0c065842ed9e0d2e9490864c04ed79d15244f406290

          SHA512

          c1981901955a6e4714e2b5d04cf045b4ed016071636be4396bf55af146503a8efbdd41738dc2a4512a0a8c5011c8045c4e26c74f15e26c35a955346a4d6a3fae

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6f39071583453abc56f87573b8d8c268

          SHA1

          9dd546c3091c8f9f7f61012a12c5eba3d64346be

          SHA256

          1307b1f9ae272cb796e9f8cd1bf7ba2c2bfa46d0830360a35707d4e2d007dd22

          SHA512

          fdff56ba58f9e99e16583bcd5df60e0ab17005868d10b2417d2dc41be0aa412c05d102a4677d76ac7ccbe93dc88b2a525320248860844181a46b9617b06487ad

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b650fa15fc5b3cf440efa5d6c26c4996

          SHA1

          39052c78f6a9b0431263bbbd81f44358e5174565

          SHA256

          774504ab112d64169361a5978aca186272e276fdd4ca698b7289810612587ade

          SHA512

          fc6bfde45edc48e8188634311f83a0e26f6a130213d467ef532fe6707f4c2add95ce7a9f68a14a3bbbab1d5dab2491e28575cc0bf15dc2f908f62b4663856e2b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          53cbdcf472cd3e3267b66a7afd069a6e

          SHA1

          6217aebc370b2c30fc4aef713f48a42ee556de09

          SHA256

          24325fa367a547e2022fd6098fa67dcc2c06f15cbb96a308ea11f4843c922b94

          SHA512

          8c154feb49909fca893e42fd2c6ae05a864cc5524f71597a2f2229b7bd20b512f708b7ef07503cf648042f49bbb69eb24f20b1c8a9aeebec18c110d2cdbc0a21

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bf3f72f72feb285cd14882700833b2b6

          SHA1

          f4065e809659425f276cb07fe70bc7a9924cc41b

          SHA256

          8888230da4005a3076ac935295dd273d92c514926af65c8a847b9fd5b12bd48f

          SHA512

          c74de37673e9df11272c89dd8726661a237fe427d1608f0d2a411d565e8fcd5899d92bd6f4b6c03fb23903a9a2719bc81bbe8cd3cf97aac8ebe880b06591d912

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0a831f3385711c2f8dd22c37f930d1a5

          SHA1

          6a6bbeb0ce679d88988b0ee25166a482918e9b53

          SHA256

          f4152e9ac10413a1f22e110c67d6906b9f4c861f47cee9e7de158777679e5dca

          SHA512

          efb27301faa115f979e53c7b6dfe88c1b59a462f0dad658bfe4f4377736601d56b19b238950f2da298eb2819e95b1c1c15e9081bab8e97f573d6c69fc58315f4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          65ad36c8414b07a7f47d0ec078c2ab89

          SHA1

          d8c2eea348b6310e1c4e3e8c3590af48689176e4

          SHA256

          83673be227ee5384d3aec22ef5cea1fe35cef71867009faabdfb2a605fe8bb84

          SHA512

          d589e73148e5f784781928e8fb894a8a761885bc47dbdaad8244f37de8c010a3c7cb5a3810682d8906cb143f50756ff9d0f58c19d411d14243b0a885ed281a6a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4b0087ec1d22a9970f27bbba58be88a6

          SHA1

          1ad2e1bf366e5930add18929982c85778c5f458b

          SHA256

          def47b0a6b6691e7ae1d200beec4cb0baee93ab762df9091e4132956dfe032f8

          SHA512

          1538f0b50206d6c95d99c7694d6f78d9254c36abb9d38a6a9706194d934021a6a1d67657d11692cad4f6a311b2418db558c77ef313ed19ce6748e8d1424a1be3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          80cf686f5a99a347beaed6a7dcce2642

          SHA1

          a19f10b9845337d80ddb71b9c5f829c2daa43168

          SHA256

          55a8920b274f175d21f22d6b956ce8da37021ffa69254b2ab628286adf316e34

          SHA512

          9728fa35679ca2f4e82f8c64bd5d3d6ed8114bc4c8bead41ba8903c1a3fd9d18a2519415c33839ea56d9437a6b46924023ca4c2d185f0479b1e6c173325760aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          81036fd1f8cd27b210d2c9964e2752cb

          SHA1

          2eed50911a769e25dec8e37b7d67549687bf05da

          SHA256

          e65ad4811d39c9e278070f17f96d921fcbe16e32c5af3e269463961443f9094c

          SHA512

          457ca305b3b26bda7cb1f9dad14b937fe3fff87187f53fff3cf3983e6c3e2fa6b3a55c53c03daa6874a5d31c50b1f54dd5573044018879610fefe6db95ede2db

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9d353343102c17b1e4803e9491d8fe07

          SHA1

          e7bbbe6095b91a22ac3ae979dab53b24d290206a

          SHA256

          e2335c3e4e93aa467d17ac44c227e68e266b935c8b7d5434ce3db3ae7e888b6f

          SHA512

          61f8cc3365d389d9f95b456cc063f5d77b92cfcff331a4ca903f89a3dc6c74639119ea6ad30a42d960046c0d05143281abd992f83920150e257e2a9f915df285

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          42eca1614456e36937f550682dfe480e

          SHA1

          0921e5d5ec785713406afd6f8b327160573c67d2

          SHA256

          6651aa56b56a5af9e779cf39d0cecac1da951b6499103bc64192a8c1122ce471

          SHA512

          812489d6a22ce26cb84bd662c23a8ebe320e28b0be706fac01f5de8b925e0abdf3b7139eafaa6c4776c2005b4ec1ccac4f4fa35f87ada90477f98081c5697698

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          0bba552c4d03aed060757fb58f78d409

          SHA1

          ad974a001faf99d2fc2e5db002be9f1526ca89ae

          SHA256

          dfe00ea8fc710c547af4b0b88b7d0e707f55c560df64b844823a0f2341f12020

          SHA512

          3c52596e481389a9fdf659c3e8f2ffdd9c93b0de5a226b7f3ec63b4a2e8efe939e686e90c0352d714f0baae81d82be8e9a64d4952712cd094092686707320b99

        • C:\Users\Admin\AppData\Local\Temp\Cab452B.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar5939.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

        • C:\Users\Admin\AppData\Local\Temp\Tar59ED.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a