Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    01/05/2024, 15:26

General

  • Target

    0c268932520ab26ca59a25883479909a_JaffaCakes118.html

  • Size

    29KB

  • MD5

    0c268932520ab26ca59a25883479909a

  • SHA1

    c39ea517c777778921218970d445ee96d7c46012

  • SHA256

    b959f6287321d4e46ba0c526fd72c4162917342ce698fe33f8d4f587e98dd25e

  • SHA512

    6ec2676134f88c9d5d9521c56cca181034042b5bdb68a0e32575662b716221b76675e732da67124345cf5df78d3c014b596dec37727e07f83e1dae5501bc21f4

  • SSDEEP

    192:uWvmb5nLnnQjxn5Q/inQieZNnSnQOkEntm8nQTbnJnQbMCUAIrNh8u6ziOS3D6Ic:VQ/o+zNuzid6RFPOFW

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0c268932520ab26ca59a25883479909a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3036
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3036 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2884

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9188d3956aa841e1642cd57b05a5d6fc

          SHA1

          2ca08de27fde2791f8af089324ede42d3b8487d5

          SHA256

          f46917614b97acd89c3f82cb98695983cdd5613aa9e29b5970ba33fd0616b725

          SHA512

          887f1b9738e7e916b63f1173497d2bb56b1e0f6f4ab094326679adb6111cecad2fd7b0c46abcb78657a5330e5b06981748947ea44bb522ee76aa62c03219be02

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ed30b100cca99841d1676d6c4cf305bf

          SHA1

          5233e95e58e4f698beac8bab4fa11f48d2f8204f

          SHA256

          c67439652451137892cf2a10ba80a06a847eb1eb12cf57d4b2779fdfb3c49a3c

          SHA512

          907e8fa4a509603beff0c3012e4dcd21721d13ff7f101b84a3dcb1fe4db18c14467aefb980ae1c50e089492f808847720b989af360a9a61c71b7e83c9b2247d0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7a8520a9379ebf96358b8f5285b86c49

          SHA1

          7f653e80ac0f01dd878ea89e82c7c6b7ad05d949

          SHA256

          4de157534cf1405ef65da668230cfbbe7319255572c2fe4651fd103f5f256c14

          SHA512

          19415e97eacc60368fbde48ae93a9d0cb3857ed9fdb9c81406450159585dce1e0194b296e9c537b2186ceb3af630864dc21291a732f1c0b38e083637a7591281

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0a9c221bb283511208f503951512497d

          SHA1

          59d93e80287ad4b92125f0ff2eb031f4b4055d6b

          SHA256

          d538f309a20783ea982cc0b05b22cebc4306d8f6bfaf1a18c04224c9a134e431

          SHA512

          be9dc0639deb297a7b6190b298a67835b84bb28eec3566557c63f748831369d41a8a2232d276fcec8f1d9fec709a800b171b1fdfd593d614396ef04a2b8af5a8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c95ea560ab313cb87f392857e660e279

          SHA1

          a02250eb78f603294fd22f43576355859d2c46ea

          SHA256

          72b5b11c3ad67c226577a83fb48e235c38012b1727a80ac1dde92a1b2a9f40df

          SHA512

          9536680e2632b05df9d0a48f4877b3d92d22fc7eecb49ed86e8d3f06bc49ccf25dc87fb8e1ec8e8bac748622f3434c795df6fc23c456614cd5003dd06e7753c4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          86364f43b3c56b49e9548939704a1970

          SHA1

          d786b5995591855936a54e21ab4e2c94c30e5780

          SHA256

          725e36f202d95f545e6aa7771876f5e6a5ccc51226ecb4bed26878132aae1a51

          SHA512

          595620b4fcf5e75133e7962f7df72e04ce3dd59e7f42567dc687f7dd7c50b14c6b12b57f9014bb223f6c7abb7a81476ee25c013506938f3d9484a9477b02324a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4e42b8f50974e76c7700eb9612d5d029

          SHA1

          23c11af89f2c65d1aeded291cd1041aba8d6ca49

          SHA256

          ca4ebefcdb31ebc0de105e0f8860e465c159d9c0a7e6f2ccd4082980bb3c4bbc

          SHA512

          56edbd53ee78d2ea3cb21bb38d97e357c280a930fccbd8b0af45267e8442ded30ac7d32995536bcdbcc499c9708edf4a556dbf21998c99ab2f5f46790d80ea92

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          58c36f2e14ad645a2e4dd607bb8584b2

          SHA1

          54ba64d1fea1381c1fc39fec32162b9767602b47

          SHA256

          af240a1524e9801760a79d1c8589ed858be2c9ff1a45f05f1b0ba90dee20b597

          SHA512

          f1e707c198740718f80d9efc0357745eda654a2452f228c6f1daeaf856641129f2481233356122330a5c435f95d4b6cd89c75cba82b602b32c098a637cd63881

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          84aefd5a98ff482030ec6f07893603ea

          SHA1

          6590c86ee21dab8ac55a8f12d05b59d218942222

          SHA256

          c4d539be8d166651790fb808f884fa90c71968bdcb8b8e2babc65301f1a5402e

          SHA512

          b3979c2e7d1fbe9a3adca4537be5ca0648be9e364cc78c7155770e5b9e2d92841f4f1c7d1f5e587495a93c7753f47e78da073b885acc19cfc73dd0e80982c1ad

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a054a70bffaa18fbddf44ad9b534f455

          SHA1

          7c1a0250a13acff9b59f19e89d12777788167317

          SHA256

          20648deaf3204e4c30ae2b9892866adf5e13100c05848487ecfc88e9152d96b1

          SHA512

          a14db9a973a017841e91e6fa0ff79f50ac2423deaacf5dd6196417ca7973c21e012898f2a56ced9ad4a6889efe600098d10c711e63cb3aa5c99d554e1171a2d9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8304aabc30298c92705177f1169bd702

          SHA1

          30fd1a4cd89f344a4ca1f295942efd5ce27ec49e

          SHA256

          63029e42c3bb328eb2f89a44e2a643f2e483635a375fa3b66e4b9a230e7745c7

          SHA512

          80ce807bb07650862531521709e6a91574c6a75cc2be1fc903c0aa4efab4e535a502bd6a9e64ab04146fe42cd1be1bdd17d882f8f0013098044f7a57e5835fa6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6c2464ae296a3f1caeef5d7baf73844f

          SHA1

          b66699675c5de35969359fd4d83e72550aa4f01f

          SHA256

          7db080f20ccd62a3e7e0a66f23ae76781c38a7867c672ef0e82b8ba4f42244b8

          SHA512

          6975d78b3fe180a5d9e9f32c36e730f5ac97363119ad354fd7d47ca160125d85ede069e93af3c4f8dd7a42187d4aed6d5ab2c0a0d3e10e16181885d3c52db369

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          747181fc74113ea7e4bfe412dfb82660

          SHA1

          74d4cb6991da02143fe50749def29c7ed960475d

          SHA256

          a7d11a36245d05b4c35ede86d33a399f0945a217b3e17dd49f59f5feebc45077

          SHA512

          feb32878915596570a94d4e046f6effa8bba3f7d82a9d55b0eee9eb8b8bba1761226d6a6c93cfb6c43724791e77d8a71cc0af13fc5271e97c4ec2441e852d005

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b678e2938dc1b3456fdd71803e886324

          SHA1

          77f4587e8e8e37720d892028f944d6e044023b07

          SHA256

          8d88c8081e98bed9e5d72359ff57f4e7f250c52858dbc11eb64a76f88d686eaa

          SHA512

          add88f56e67794f4efdf04dab9e865f67e3c82432248baecb6dc6c74ac6635a9d7625241650f8670bb823569912194247dee7239122f982bd75aee06debc8789

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a1f1db4d60a3c8a60badf84d341e6c59

          SHA1

          634f33c8d3355a38bfacdb0b4d079897d14c486d

          SHA256

          51cd36e6719c4720c296cb235c1246658250eb4607d07172e1e52d6597047e8b

          SHA512

          36b6220a9fd9f5f5464ab5e6911cf29b8e27ee9a353d093702f7ed181c4aaf10c03aebe2228270901303a39e9e50066fd194821273cadf5727e024281b797bbf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          73026616754fc2a610a01c39fad82d9a

          SHA1

          6282692db0f556c4f4697e26151b7558df4c488a

          SHA256

          9c7a1862d9b0b7dd5a74618bd586dd17e2c344cebb8ef5bb713e4f5700c800d2

          SHA512

          85f564a089fa356266348706a104aedf9e4cadedf6125c2656055bc3b7eb6f9796d5e1440ad454dd14aa490695f9a0e1624fdf255bad1523ed4bb43b6d3ce3d7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          78bc9b1b9e3d079efd67e66b45d43765

          SHA1

          90b2d02ab30e0471517b5cba3dfc7b820f1e1db2

          SHA256

          e27f881cc4338bda0d04f8aa714a131f81706cf698e3dc98318009a755e3cd48

          SHA512

          ffe37e3eb5184c51aa70655e770d193ac8d058a80584bf0823b404deeff2caf68fa8917328dcd5535c6abfd8c8f1623f5fb283f2b7ec6798efd22a977814ed41

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a41e6c4e4c527b715410910e0d71011a

          SHA1

          549a24d84fe85d97c8351fca9d850bcf108343ec

          SHA256

          efe05481adcb81dd421dea41ecc7aff7f67e8e3cc4ad9f6499837109f8a4af62

          SHA512

          fbafd3db72d342907170842751128a814b2740645934aee1b373bae5cb55979b28db3011c601a3edd68c02d3d027e16250e51d332b778050eb0c0a2fe8071d47

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          25da33fe8aa41189489b8526dfc7c445

          SHA1

          143fdb18c9355e374f5446f517ee80359dbb82cc

          SHA256

          f7244497ba4a516154b1be7e67f6724377c4c948a7df67e8f922ae258a75c10b

          SHA512

          1ad5399bcf820fa44e2985d92ff2322d6502388c05361ffcc15d3608f4ab83b308d5a100dd26923d92fbb61bcc1a8524ce8e93c03af0d323316348c27dc7d3da

        • C:\Users\Admin\AppData\Local\Temp\Cab37E5.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar38B7.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a