Analysis

  • max time kernel
    120s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    08/05/2024, 00:16

General

  • Target

    225b883eed2aab3b25b9c5155997a131_JaffaCakes118.html

  • Size

    29KB

  • MD5

    225b883eed2aab3b25b9c5155997a131

  • SHA1

    d3357053f835836a96f4818205e1e4c7311834dd

  • SHA256

    56e068b073b969f408ab88c19c92b9555905a0353e6f0c5351aebaa9d774fdc1

  • SHA512

    9bfe0499bf723b5f5ad20781e3480c4f94391d35007ba74cc673f382e175c264c1d4e50c731cf6f64608127e3eec8a713da0a2ff2e0f64419556b3f7f3be4f57

  • SSDEEP

    384:s/Ke7vRW2Y12D4IosVVeWK8kObCOfLOS092S2Y1bCi2Rfd:iRrD4IosVVZ3bCeg2dd

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 8 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\225b883eed2aab3b25b9c5155997a131_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2656
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2656 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2540

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          277a44bb52e8071e3bec88e239eaf787

          SHA1

          289b6337c45d1a0210abc79c0d205953ff3ac934

          SHA256

          19f751e22e0b97ce5765e5c4c554f22fa6347e82c8c603eb1d89c751689036cc

          SHA512

          8099568a8793c05027f39644b8634c784fc0fb600de41755e222e56bbd3810df2e5ccba5b7ee3b21e03909ae4a4666fbc876655aba963baca01cf2357f696fb2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d5533d995e0bc21a67fdf95c54c6693b

          SHA1

          ba6a77c77cdf3844cba90b01579d843ab4bc1126

          SHA256

          006113c6b9d208199de5a7567305d001e7fa1ee00e3bcb01e9d9080a2865d651

          SHA512

          11ddbe1b36358cb5aa13bc08243f0a3056bb6d1b29ec22eb425ae860adbd9caac736da2aa75995d7e1ca4ebb9ab68b2ae2adffbad7f219c18a4990e7919c34f0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f35ece8b235d6a4e9bc23f7ac82c14e0

          SHA1

          dd7ac88288a5171785a2c6e074c6ca0e5206d547

          SHA256

          70587da7f1c2bdacac045acb1348b489958dc231be4a890a7a97246b0c8e74ad

          SHA512

          339951f32a29c6babf5fe47424958845317af73cf713122305f313f3238832d39d1be9fe31e750b35bd9e56f6946155e0f9fc4ddb5369457729e7ed26ce55106

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1384845cae386d0e5cca7ae690afddc6

          SHA1

          85e9d33a0a326e406e86b4ca5a4bf673aba257ee

          SHA256

          93c3a3d5ff31df3147135ae744829f1662beb77fad78695c0efc06c10dcd23e9

          SHA512

          4f4bff09cca18def693a25fe5ddb56cab5fae0e9ae76e62e49f73323bc3fd31e5e5868f4c2c7aa5c98f97f7d4433af933ca7d94aa2585a3ae9565cdf1e8a3e7a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9bc49ca39324036b33874522ab4c03eb

          SHA1

          fb658a668d2efbbbc7c14b363046419facbcf336

          SHA256

          a43ae3c2b651b0b61284d360e73d124f798e647b7db9eb23ef76b9d3e512bccb

          SHA512

          05319f47cb0951c83fe718db0f6dab89940268b7ca679fb0990dbf5408a4d397725ed309f9827e93d60892ddccd2dd6a0ca324a781d6a7ef7dea6725d10fa101

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f1c9c18d416a666e990b9613b201cd10

          SHA1

          9177a9ffad573af8975c16b853229538f70310bd

          SHA256

          cf7f118e5d1d0a11397370a7a6e0ffe88a55e3f5d2a292d15bec9a99be2c7af2

          SHA512

          77f6c762b50a43f5cdad55381ca6dd595db5c125f90af36ea972ee659905b204e4ce184ce0cce0122e13b9c9fe55d67721f0812fb9a3148dd658cd064b6d52bf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a9a4125416dc3b644f720f4d56422336

          SHA1

          add86754b29cfa51ba7161a012d355a38cd207ed

          SHA256

          4a761ab66053f48bc9c85b0cc7e14b64148acfe72624a5b5558d481b4613e79a

          SHA512

          d683f32778d2c48e92ab4a41f886dad01f5c8997cee1bf8840939240961dadf83628e968bae27ce9dfb07a25757ee85e1bbfc6882dea1f095a290cf4bbe9ca23

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          305ae7aec4ec488333e88585d199d49c

          SHA1

          4e7f84d2fc45b7a3a7eebb27f5c0eaac97e8c21d

          SHA256

          7a8f6c6f2ad7323e3e760e10274112b9174d2a6134dac4f79155a5be9c137064

          SHA512

          b2f64f017a9dd504b8f3b86cdc8154db60e74e4ac51502166cada3d42ac167d0e6d092611ce9c6d7956a482ede2240ea56fccdc45a321d94374ba99d3c56d629

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ed7d93115d871194179c9034fa204328

          SHA1

          8f9eb046d14a60028bf45fe4c12f481db408c9b8

          SHA256

          3394a18774d5b6f2e0d8da78109796d2d0df747046eba173ac7c426c3b43c356

          SHA512

          691c4ed9b0c9181f4fb9ba631bfa2e41441369b610447582e5387b11e8da76c4965feac712cec5002de73fb65ed0539eea49d37c775352836ae9597d9d44f452

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0b8e6ff104602a4cb133dcbff93e4193

          SHA1

          d71f140f0c1315b0a1410936907bc0b0d3fb8ca2

          SHA256

          e6956d1dbbf82aaeb1cebfd4da706c606d080c5e0eaddd1e592e547cbcce9554

          SHA512

          5baf0beae694f637a480fd0748e6951bcc6ea9ef8bff0ae8e5e2660b20ad62600740e4b88a25e06758e55832e368f9b81620e010fa0186827dafad954d69f3a3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7dc21098f03a9c1c8496f413ae074970

          SHA1

          7fcc6293389646bc077cba65e61516764a53c5bf

          SHA256

          a6c705eeba9956eedf544ed82f33a0c3be8cd4af5c32b1dd9e587ce328d501e6

          SHA512

          3fcf866801fee25426276fbd08ddb03ed837d84e5356666387e5acaeb9498c1e8477382f1b6eb7b2ebecdeaec651417644cd4a51ae9145ac19f44be6ed321030

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          009f9d1cd8272b52c3d534322d31c8d3

          SHA1

          089fe8fd35faa80edd814909a18b002574f32ffe

          SHA256

          bf9dd9462d73e524cd1eec539812e4aa254e15d85e10b3a85c264dfb9bb5e5ef

          SHA512

          568cc623510ac32f139e60a049fc79ea57c3420ca1c127b02e0be1f577f6ae9a5d2df147189bb9528cb81e8cb79b81f33f23fd88accb72bb3a30e2275d2ebc8d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ea5bf2d58d19b28740b00dc380e7df35

          SHA1

          d7c2db5af0676d56c78ec39e81d747fe3938b3b6

          SHA256

          7519ac20cd4e9640a457484ea7bc4760ddc1dc44fbde6bb80cf8a77fcb36e892

          SHA512

          0ff22f13b626e2708fb3ccc159e61ed736791bdc5e77c2fd66c87c3987fc649977e150b3aee91638bb070c588904fc4c89ad9c7ca93513a9eca6a3ae8f4792a4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          928a3c8f09941bd8971fbe84a524e6b0

          SHA1

          c17893ecde9b95231b8d016ffd276d9276d6704c

          SHA256

          3ed5b7bec5e294b4c51f937b173dd8c359190d3b5ab474025d375a8bb1b8dcbf

          SHA512

          50ebe6a5765d23acf39b8256f6ab2418094822a18c438bd22229941b77e190f67be0aa280e8f4c74adc244a5bc047f632f911971325c416a1b32bb8e60c29f34

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a9a31f59200536bac92bc7730ae0299a

          SHA1

          d989f99a3aaa8892c4697c908f8da3bc9489c2d4

          SHA256

          e5fb86df96334bb89f2a60fac2e84c0519e33db4b99cb2301030d8013ec0852b

          SHA512

          4ae1a33d2a8e045238b0d425fe8d50d37b010f29f6fb0be97cca738d8aac6bb2aad59a7446fedb12781517fbb7b188fa899196f789479673e46c33016a4eea42

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2843c69d6063892102cf8e24d1991de2

          SHA1

          64f9e0e0c9b0224b64f3989235c29530be0d237c

          SHA256

          fc9e9be8274982fa0215a5c50e740ff577ce6b9f6178d1919d5c241e9339fb39

          SHA512

          dac1bca218907fa22ee1ac73f6ba57d1f69020622276e4ba4a2e75c773be23aa2f4a7e17060f669b31c0793bef1e32e5a08a01519d307cd5eb79324b98ef30a1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          63ae8cdddc36e945636745e429216d1f

          SHA1

          491ebf29a59fc2aa2140267e58e83b222abbc6e2

          SHA256

          0fc051b77a78a2d39979950ca78f624f7fe11cc88c2ea35adf95794dc0e4db64

          SHA512

          50ae156010285e48e8fe8e77ef6a9b87708bea25931e6568eeb5ec5ccf976969e8599837c583f073dad293e38f16c242805afc883cd003c29072dc058bffcb4d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bd3957df83fd71c0bf491f372d56ab06

          SHA1

          d01f02b8dbbfb691812991d336271a620c8aa9e7

          SHA256

          22336db989424c5ad130bf10620821e71f29ce435569710c6b559bb342a43bd7

          SHA512

          21ebca8cf59e0cb0f4c48199cbe42d512b602b136dc80d0d1f56ef89a5e19142671c880725deb862a68199a0376bf199d8c160f0a16e3061bb1271e4aeb062e6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bd8c540d4598eb03815697bbb92123cb

          SHA1

          2dca0dd87d6a6ef5a5d6240c865de192fa642bbe

          SHA256

          c20a8291b0ecaeecaa5228bafa7acb134e13b2fa647af2722c296ec4479228bd

          SHA512

          997ddbd5cd2e8e55b9a9d843c8e0f264addd54e6fec8bdc6ddefc4fa987d12feedc09655cc048dec9c79cb4b5cc8b66b25798913f581bddf4fdb813752a5dc2f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          fdd7ce07228bfd404cc5e94b102abff6

          SHA1

          4fc04bd6176ebb6f51aa5db7a5c52dee18b119c1

          SHA256

          1e92d107e1ad9de118b45aad69eb698fa0bebb1cbfe06b73a1ab196db401c4b3

          SHA512

          93d06c8438757b9cc5f0062bd3d30e0fba60fbfbc23cbebf274e0f036fd20339690751f232f18bae7a831bd1691ce9045a11fa65e7620517872be84bcb2ddff6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          030ba16d923bb632cf5bec45b722958a

          SHA1

          ada84c2ae560c516dcc6bd398ab8360436573284

          SHA256

          b89786558c5b2209bf0e1c3b24a0b8d4e830552629573db84a69af638b6cf141

          SHA512

          53524302bce4ba82dfea35b02f852a8159bdbbbba97830a4d3a115ec5a2bafb3d472a4a1c5c5a6556192ca08320f7f9e19b99826fa28f04f03ed65f4447f7031

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          bb23a90b196325177424c642b07bd1bc

          SHA1

          21a42c1ee135de58b060088c5cb5dd1cf16d0661

          SHA256

          8b618de3fcef61058239fdf2ea02781bceed8fd070497a472ff8f1cb1d8b84c9

          SHA512

          3f806044447fa55ca05b10e7f4459c9cf871e3d1e4174183ca608dd5456c6b28eec83a99e136c65601e17720a1607200606b398456615d13c87d4cf03992cca9

        • C:\Users\Admin\AppData\Local\Temp\Cab98C7.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Cab99C7.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar98F9.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

        • C:\Users\Admin\AppData\Local\Temp\Tar9A1A.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a