Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    17-05-2024 16:47

General

  • Target

    507aeec35a858a6e48d3801e9cd80b14_JaffaCakes118.html

  • Size

    460KB

  • MD5

    507aeec35a858a6e48d3801e9cd80b14

  • SHA1

    c28ae7c96f89f0150ba86640707c2d3a4a907ac3

  • SHA256

    25e5b6b0f37405fe3e77b9c36e39263348e78d1078a100304e9158a960d078ca

  • SHA512

    62db2ed8f91e8b640e5aa6011b8a906c6c5f7bd41d0e63953bacdfd501dbc7e37164c09576255d1eca6e39fabbd73a3507fb1f79b0b83031a4ee29a369b43f4f

  • SSDEEP

    6144:SXsMYod+X3oI+YNKsMYod+X3oI+YasMYod+X3oI+YLsMYod+X3oI+YQ:k5d+X3A5d+X365d+X315d+X3+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\507aeec35a858a6e48d3801e9cd80b14_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1612
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1612 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2996

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bc829a6052f7c6f4562265f43dbfb01a

    SHA1

    42a522c8af6b2039f9070a008f5eb679d5f38d62

    SHA256

    7c54f1f0700d84dfb4fad815312e1b92b1eff30e237988d2a37bb8a772e0fde6

    SHA512

    176caaad79b5dcbb625c43da57ca1a2ba5fa792090e9bed2d42d8478fe44a9152ec593430fb7be442beac6f00daaf9f8754a7aef044ffd57b6a87a82bd631508

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    8c3ef3ee4eb5ebc15e012a7c717d9134

    SHA1

    dd278f2eed72ad393face4f721f76e676aa9f2a2

    SHA256

    527643fcda65b111b36af9939d0550ef3a5a0473aabfb975c68ef2945ce72bbf

    SHA512

    07a49a8ea62f7abbb7a962113bb1c4bd44f83625223c45104ddf31f0721f7498c525cb2842079cdc5fb296a3ec7028d9b75980b9c002fd0bb18ac6d992b4d354

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    6c6b5925cfb533ee8fa4a8fce27efed8

    SHA1

    5c4198958cbbe9f150854e6bf4eef1869544dff6

    SHA256

    b0417fb5d5110710f97534e8822d2aae506621d6c9ef7280df5e00418c6c13b1

    SHA512

    35e64b0422a6d7fe1cb0900d57508c012d7f9c01f226245cdfca86855dca96161b7a4ad69d91e0b0202467ce1cb0a376d654db45e98e762993d9ad6ffb43692c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bd5a4a3996cd9c157aa592e633bf2ae8

    SHA1

    dce3e9232c5e1a107581c23ab4f5b411025ca3eb

    SHA256

    98eec6fb5cef80d7ddcbc6b6f3e03dd3931beaf1de7e3883669e39d2dd5f4f68

    SHA512

    a1c3e688129d448e11756a115220e4eab435c697740d8ab6da5230464323e97230bb353721779ae075d3f0973de16bb7b1ecba53dbc311847c7f038b855af7dc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e8abd2651fd92e1842c63740b00b9bd5

    SHA1

    f6aeae073c148ff91dc17608287ac07f60777afa

    SHA256

    e3d2a1fc6e2b2d4f1670b8aa51be4d38b2ab6c8698027d8f1e5c2365e2a6f5aa

    SHA512

    abcce90df408b6bbf3ec00c100522bc441030b9e1532a01c99133eec5f859ecbc71e07c53a038e46d711242c58bbe13bfbb7674dceca67b3c357f18a2f5b168f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    42d663dab46d4605b27c6732c18a91d9

    SHA1

    0a8bb90c6df0fd9cdd495c8f63c09afe352ab70c

    SHA256

    f83af3b265cd595cc8716541c52679e3bf594cf1b821ae4f76d1cf8c982f6fda

    SHA512

    55f4d9f7c5b891afd0c142ddda191af9acbb31d2c4dcd41376486ea06c233bf98a654e0b16b34a444a7eea069049ffe6d6da13a078eccf1f0c13fda6dd89632f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    da65c3c2e2be0c49f5b1be8e8848522f

    SHA1

    ce516558e9647b461c1a6e12576462940ee71ff9

    SHA256

    9bbd2befa86345d1a5e52adf4a1000917a82a6276039c43f4d0f10fae4e7178e

    SHA512

    0f326a6a721ec83f8af45c09469000b16138f64abb3e464a1e66d9cc71aa4b53dc02c63d2d1da57476d0c2f8873080d3b7861546b2b9582f78293c51f2214f94

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9dc91d05e7960c277d318a6f1becbd6c

    SHA1

    963a0a6799aca6176d3f14200b0372b272e44125

    SHA256

    d548170db7dcd0367296fee1180eb4d05ce0174b8eae9978b0d3a73d7734671f

    SHA512

    9807be8d49f3feaea09250be44a2b606448d5955f0eca18fe0dd1ab5c913e9f90a9b8e18b9d69bcb63a8023792b4880af1e7803768e9fe03238f0ccc7771580d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ad9cdfda50ec2452eb0ffa7efca07cb3

    SHA1

    9f57ccef2f964550fdb4286bf01679a2d1b02b52

    SHA256

    3c67b8da615877b53756b5ba1001ae5576957ad148a47fecd60633fc2b1aa50f

    SHA512

    f536a5fb52947aef6a8eeda70659360e1d1c1f7a7cdf86f314085503279206477df3ec56a5b579115c108cf3a2fb7427e8b8d5edd81f1541e0d0621ea015a084

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    02d38024c3ca331669739ec37fc6161a

    SHA1

    568aeb8f9dcec51a81d4b1496c6e472470fae783

    SHA256

    958e06d52632159d479ff3660140a6c55daeebd1282d210e4c04742f0b138721

    SHA512

    94d40af450b9e7251939cad6525341cee752ebdf50e31b85f411ed38a5add5283a92aa20874b7792cd5a4d760df8d165d66185f610b7dfe9dfa557d15cbcdf07

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d4626dcc7a32ef06f7c0c2330bbc90c7

    SHA1

    c47219cfe71da1c5bbf52370983e62223f5f469a

    SHA256

    66a2c2cc3c342c527d32aad86ce5ad27e357eee0f899405e703e5fc71f887789

    SHA512

    f747faa902b747581f71b7e677be886a106649b12a88f46b39392fd6182fd671917baf6b00a108cbe2573739a03ee9136d54727d9331893ce0dcd22783ec671f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e8f995c85380d7dfdbe33561d56291de

    SHA1

    98195c6d47a04973efa4de790b83c13a1132732d

    SHA256

    9e85119e2369f6b072c24ed371ee0058b57f11ef463566ed8a98340b9d07e5bf

    SHA512

    4bffcd6c03dcafa957343f62c34c1e91b858221d6e2407b1d258d794449db91aeded772ae00e9bdf0f613e7d129352a2fea9027dcddd6b8a63b373e61723af7d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    20365b96f738d6545efaab55106f4613

    SHA1

    2f1f4148468fc6949c077aab8450666630c9f726

    SHA256

    bf831adfd21e999e106a8beecea130f454698b99b9cf6d13aad57bca0bdcd528

    SHA512

    8b2e9dd02d8d580602e1fbd16683d95e501af9391b88336197c7250a6dbdbc993a61ff5943d6c9a00d7597962e77419fa1bf424b11e63fd3c6ef513de9266cee

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    484a87c1267daea6344d184dd931f7ef

    SHA1

    f9afac39771a7e03f7c70cb41473573e5afcf3f9

    SHA256

    a57d2d878d58697c3de29a5c9099e4ce6510f61e51115419290242e77e62727c

    SHA512

    97fc0f4e8cf63092303231d36a1c7c566f0dfea446bc2f293b10dd5dda3288e85285074abdd211392b1f566c7d1f2df33b0c2dd1ddc1d5764a0a717a1d3aad05

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a2a99db975a5d2d64d72db444d2dc5e1

    SHA1

    65dfdf53fbda2747f725ab8a75e3aad8f98cc6ec

    SHA256

    06255816688720e83dbd77f0be60da3346a66462f90b90033a291dfae6e81a80

    SHA512

    462387b8f631d8e7495a834fd5288e4bb00e2ad36e9984e6a1df500c6eb1d95aa2132ebaff5f8f9c26e581c8a08d5d7bbe1b97a5fd80cb814a2c0f33352ed15b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    182f4ca117175f6ac877f1a88b5bca56

    SHA1

    850f1e1fcbcc5c3bb0b7ccf7ee801ced70527015

    SHA256

    62d0bc0e83d7d0a0222220563fc8d44742ea79e746b708873a092af7c7561825

    SHA512

    938ec7f18828d1d9df01f1a53c5f1a750890e297814f8c23b48b9f0193b1a63caf58d9f8b2f951cdf925588e1d090a61606b4517953488fa0e1a7b8736fc7488

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f59fb77386755e6646de4600e062239d

    SHA1

    b3fee9d38a0179824d0616c97025f6e43b9036d3

    SHA256

    7a85c767c77ed6651626ef8a8111249d0a3bd6a97b7ceb44f5313990c1971f11

    SHA512

    e6f90951e4aceba624762c899db9342ddfd70ad1e3e11675b2292bec1811bbebecd585b17b698a56b4f36598d9a786a0659b1e23c6a152b6c8d9c6d8ac4a795f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7813572292e5780095b76ecc262f7cb4

    SHA1

    f34d7bb8c91627438ce252fbddc2a172cc531a44

    SHA256

    204c8c0d10639cb7978e87f778c5133e0875874d6e86cdb3b109e889def52621

    SHA512

    1b20b7581d33c9e21fe4767d688e04fad7ac59b0b1518b28ed42f5896126d27cefbae4bafc668545c4c2f24b3c9cfab62617ddc954f1c17f4e77d64ffe4e644d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    00234903705100d3d142f686ce388df1

    SHA1

    08d103698166114648a041025b355e06a2baade3

    SHA256

    10f579eb7bdc20683d06a16cc7144342f7c4dec7dad3505a25d1a411d045fa51

    SHA512

    8fb47dfe3d4954a9078937d7744ab97c17efe21bf67aadb61861f7932a3f68da970ab63febc80587a589ce9c54f05a2ff59cd084feaef7ca6b4f15a0c21a9b12

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2741a30b5d118c232c5737ba55a08ce0

    SHA1

    23ddf95b05243a0be768ae75f57c7b65e2707c9d

    SHA256

    6ce4f13624536c103792c0882763762a3efbfd8f348babc26acae0478d21b7c7

    SHA512

    99f25a58e10023567e0d9a43a57585576113c5e25f8e2b5a9931e3e2cc9f24883d962147b31dc5f01b1b3ccaad6315bfcd9b3deba7649bf49176bdac0a1025f6

  • C:\Users\Admin\AppData\Local\Temp\Cab3A25.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar3A96.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a