Analysis

  • max time kernel
    144s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    07/05/2024, 02:52

General

  • Target

    1f33aa85fb59934b89b8e968bff8af16_JaffaCakes118.html

  • Size

    37KB

  • MD5

    1f33aa85fb59934b89b8e968bff8af16

  • SHA1

    0b87f6219df39287cddd2e6b152ef90a792a00d5

  • SHA256

    87336fdfdd31bc81f57c2dbdfd9c79e2a33edea79179763df876d19733d4724b

  • SHA512

    f7a1b4ac31561cb9ae94b74ef4ced464e2acea8c66861dcdb00709c64c3bf423bca8dda102450fa8b23002a38cc9e6d94e4cbe0cb283fccbb3119415637a5145

  • SSDEEP

    384:TjvHwduTvmTznxTRL7DycpXWV+PzCsBSGXNEu0:TjquTvUnxdLXRdWIVB/XNEB

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1f33aa85fb59934b89b8e968bff8af16_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1776
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1776 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3044

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          4ce413c4fc443e5966c2fd645deda0ab

          SHA1

          8b46153077410b2122f4bf047de6f06f9786a5e5

          SHA256

          2e133a21a6ff9d9e14aa71c195a2635f5125d6860522011897fe5f587cc53bc4

          SHA512

          0ad0dc25e04f9f15c411f2ae3f1215d978ddab87938993f8ad6ee4336e20b6399e7887d8a96f5313a8d014a424ce3406e02cb38ed1735a5dda73b2ddcb7da549

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          66a416602376d817f877bf9813cd4b4a

          SHA1

          85a48dca2178e3834435e7094c1112b187842914

          SHA256

          64b75056434141e4252cad0ff5798369d18e0f7e207c2a25a9b732cb3ab6bbe8

          SHA512

          763a20982b19c6f8d56fa7b66933e49d16833b18444a84894a69dc14e46d26e56b1eb8aa33e07dc1f10eac96699c62cf534f0f0e74117ce489eb7feb23201a2b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3f3d40c226f3e9d4656e8031d2c03624

          SHA1

          04d3c0bdf13c82f6accab640741db36e54f7ef05

          SHA256

          1f7aad8d66271d471b371d6e779c8a0c0bfe55a0fd28000fe3205891b52138e2

          SHA512

          83ff03f19074f054aa1404c59d86c700e7539e589a831f6ef7a5eceeff3f6463dd8ac14019f30859ab9f77df39fa6d5b60ed14f49172754ea38fccf19ea8c935

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6c7a4f9a89741aa4f2a2c49ffed89169

          SHA1

          3f0b67d2cb928cfc77414ddf904ad249603759a1

          SHA256

          3664f06fe99cbbd6af312472fd76baa294cca2fa192c302c5d28a8ff49343185

          SHA512

          fcae6c71e03321d95509c91731d9f6c99bdf4b3ab1e002ffbad022391732b130b2b3172d15eaf56fdc7aa6626f0aca285013f6052889e34efa4c79a012e38f73

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9a339d78238f6c2a6ab18458a517ccbe

          SHA1

          12a8ee608cee1064c4cba50d8421a0fb415f0591

          SHA256

          995c754b87b396faa1f0cf6678f19521cd1381530a00927ec8e2f9681aeb0b12

          SHA512

          d9557991c9c29853a5f631bc71005d923265482279eacd30778791b5f8e3d8b5e960907e7390798f677ef99063390e6190290588c228f390f77c477dda2af741

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          769b89b43b577efd282aa65fea575ccc

          SHA1

          b31840170881c65cf0b1ea9f29d345e10bc01ff6

          SHA256

          e10ae1a29bc772729b5e4ad2d7ba48746b271643a36e71fd9e329cca3ef8290f

          SHA512

          d746d700345b96a9e39e63ac9fab6945d0778a8f840356bbd12171e9758a551300411cec159f936fcdbaf20efafec52c95577eef3687a7c5a5052d26f5d31c3c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          60c6f28e6b3c0a2e98672824884fa05f

          SHA1

          8e9dd169d75ce1557369630d908a5dacbdd15313

          SHA256

          76f3c302d325a471eafadd8b7f56659b96d23ec32e58b94bde7c04e38d3baa6d

          SHA512

          b5e859d8eed7c463ce377628bf5ca450ecbbbb76832fc7c6b5a574eaac3ca922a6468d6fb3ea2d04f0870c080e617f5b22e8776c9e3f0f2d8d3a688dd85c0b16

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ea6d4c90efa7ae254b608ebe844a609d

          SHA1

          e1b26b68f6dbd0d4734b24387fcfc6517434becc

          SHA256

          336b45ced781e6f865ffd3079510f8bcaab529cab15ebfbb28dea7b9138b2573

          SHA512

          f9760c4732a0a142e2029e31b82a0953944b31949a6c66072e0660961be817058c2ea75e05476c0ea89a980ac9e597a206d9d2c60cd00f1df5472e2dcffd15e1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          78df47eb5f422bb194ac3e95ec0f7eb6

          SHA1

          7a050b993e1ed3434e7922b65f3787e269132d19

          SHA256

          744fd588b70dbbb6e79366c0e35245ac76be4a75bf6266da819c580874f1648c

          SHA512

          c5fd78edb766cd3f085bf4bbabfbca600e954fb780f01d473d0e7ca4f274a898f235bc293893af1cc08b15cdee91942b26437d5a33668107bd2b9729a7dd0446

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f88dfd8bfa8d6168a9e814f12ad994a3

          SHA1

          60f6b1ba8a3d6375ea0e8644b5cb9be6c7c0dd12

          SHA256

          8919f92807aa17bff0d11e78fbf1bcdea2600fb04b284575b13874508275ae41

          SHA512

          c3396d8184e9d199d75f59a45e19189d23fe54177aa55cc53850795dd690e62d0e4c1bf90746299e19ad475ba8a5d659f38733d63a8622898bdeaa05ef71687a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b7d50b2b20f1d35d029c533fcdd1f983

          SHA1

          35868c027f0619741facd7cafa13ec35debb7e2c

          SHA256

          ab66864bc86ca2269e6b8ab28321eb8d75a9c297730d13e5ef9f1468d673657f

          SHA512

          670d6a30ac621d01792f387760c0e3106dd179ce2dab7eadfee1982eeb7f5f662254fa60fe8a52cd9dbc6204885e9722e69ff5939a552eea431aeb95c8e77662

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9f64cf2bd4135bc29da95806052fbda8

          SHA1

          0aaf58ff483520199f8e290cff0a2317873a3500

          SHA256

          722adba4eaaf0c168cf9bc6d2fbe2adbd236d3dcd509fdca35fa3d7a360f7e2c

          SHA512

          641b853d0d767a2add5cfd0b1975d937cfd27e6c2ac2bf65311abd1c98161c9d2d8023666b2abb4b0e60f7ad8e05a2be35bab5a723c0384b0b0e1c3e96455c6d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e1237402d29236faa4d065873e5cad1f

          SHA1

          4cc04c14b7c6f53fe4251b76300c92cd89195698

          SHA256

          a1ce296a65f7988eb492c0eb066fc9a4398ed55788d2e9ac48c48e07c9809e87

          SHA512

          73111260d120313525dabefa5d9d7d9388d3be179a3a9a8790f67c7c5463c139fb40ace94fb7e52c22dc79e3143720861543b50cf9e846f0dcdcde69aa11d1fb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9082df2d7345b3396a884f7b0e5575c0

          SHA1

          e089577de89580b99c0507c6f268a8d963df7bc2

          SHA256

          935435c4e207287927e2aaed918498871e4042ef18763af26fb677e88fc2f493

          SHA512

          b6d272d2e12305e9102176843c4c6cae14a5e83af9a8e7aec663ff4c662f72c94ded44affd8b8096dd7fcb5f0db9d75889fda6824f199b810c99652959dd37d3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          fae568c7289737a7d5a2e2e316583942

          SHA1

          7c560bbb8b79a9bf25e61e3f41d45c95fd5761d3

          SHA256

          bf3c491e6652b087d5e6fd5bc81068a716a08897c6cbe0678c5bde02ff225ddd

          SHA512

          b6ba658b31b0f0e7be36472c8d76e7f6036f55d3dcda10aa8520fbfbf1655f102a2943cfa42af4d02d06f60eef4feb84ada96e4debe69a817056c9c21db3b560

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          985d862a321b08af8daa18b98d0cc46d

          SHA1

          e496f613788b1d24751f1705beab4368bdfaee77

          SHA256

          c69d1f412156185d1382fde97238c2c402f1823df0324eae0374f80527087c22

          SHA512

          9461500364d6134fe9b337e3fb16cd4cd67b8221dc62f504ba89cb50129787d62699defbaa0c554fb266b620dfa08911f026570ddc438c458aa3eb310f112867

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6ec0f1e7f73b2012a29857a260b61d91

          SHA1

          17850b364576afa018699258ba8c79f8de5c9ebb

          SHA256

          afd881caa27a88a431c60378e830f05a72655c3457ab175a101fde56d392c09f

          SHA512

          6835ef4eaab71b0ad5dc8924c53d253380dd4d875414b9266d3fee0aa4424307e74bce297f9f9a281b18cbe7b13c4d74cca3d68a385c076c7c4c45f8498ebb50

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          db032ef30dc11af87723b0656df0fc43

          SHA1

          84c87c7bd93aa4293c19a3ec9d25cc55847a332f

          SHA256

          23eb13e0188197b60628f03d1cf61781c4ce4a006d90135c9b5ac544ca05346e

          SHA512

          156bdc3539f888b22ad3f1c4362b34592939fe11885e8620e31ccc42f783f9ec1f5dd62d5f61e213dfdcd0f38b1965334ad2d121ebf2989792ebec3ed2a54db4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e648ca41cc7b4d32c0d51527703a70ad

          SHA1

          6f6bf32e191da8b6f243f149596a4eacd5d35e74

          SHA256

          61fcd27980df3230ef96aa3909049c98eaa91b846525c5c92fe973d61762608d

          SHA512

          8e80b0a69c008f24ba185a0d63869fb4cf50f6e26e9da8c4022aece2fab3ce38e4c677fe02a04779e6e057b07abb979cf723f2cbacc19d6b94aa921b4bf83817

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2dd27991537bb30f9744c6883754036f

          SHA1

          73553852920e8c6e1b5804a0b2221af20f4aea8b

          SHA256

          ebb2c4d3fe42bcdffa054248ac9c990942289d6ba6c204ff9248401c885d0dea

          SHA512

          246fecc726ff62e909a656bdf0e3467d6454fc7a0b41b23f558d66df5bbff3aaa8b851eddbb15ed78197b61d260af83282ca51bf8060ad083273cc8dffb34889

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1a11911792204872556d838391669419

          SHA1

          c9e5265052e524b6072af6a61db47eaba0521dbb

          SHA256

          4b9becad51bbd0e7db78172445a6662182d4f6caba3f61d93797abeae63e61cc

          SHA512

          76be3d2ae7829190421ce5a8b178f4e6d3be5f13a072d4793711ab6e5d157d8a937805447a056d62bebbd442541c05ded05fe49601cf08c39352432c4e0226e5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          39e6e594c93918c00a58120ca0891b2c

          SHA1

          ef34272fe9aad5ce4e91608fc24217818da157fd

          SHA256

          ac6e4dbf29837239a5f5a0820ae1d55a512925b474cd9d394dc322fafc076442

          SHA512

          21069f2c49d0553d27bef535bb21349560d84b3c0235bd09ff91a72f2c867b5fd2abbc561535470bcfb6bd62bb488829b81aef72e7ef5aa64423d49e8cb6793e

        • C:\Users\Admin\AppData\Local\Temp\Tar1646.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a