Analysis

  • max time kernel
    139s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    22/05/2024, 14:25

General

  • Target

    679192d52874270b3f022544f9c278e8_JaffaCakes118.html

  • Size

    14KB

  • MD5

    679192d52874270b3f022544f9c278e8

  • SHA1

    5bba3e56e659e3df024d907f0ba9bafe71cfdfa3

  • SHA256

    f39d128821da6d5f9832fa013282ea26fde1e69fb2db5d7047781bf9bdcd55dc

  • SHA512

    75fa1e7cf1d491cf3da57db11276752186d6e0856ebb72a567669983a8ce3ca40840b8ac5882999e32edd0bd499c6c1bb5814c59d966dd3e3a7a4003a35983e3

  • SSDEEP

    384:FAjYxJu9EY7fJb37wpN6TIgSN000qGZh1b4sV:i0xJu2sWpcO0xb4sV

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\679192d52874270b3f022544f9c278e8_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1308
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1308 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2916

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7bfeffeb7679fddef0e287bbdf8e1275

          SHA1

          cd1886df3581dc4129345cb5d5c26f8626d29703

          SHA256

          8a0bd360b9c0af51a78377b7c23c31e4b81c28eb9bc9fb04aaf2d8e1571cdc24

          SHA512

          461f57855218ea0ecf6c397fc3a35c631b4d5392c61054a6fff58cbae04859c6448b31d947b13a49eaf61b8b389c81a4125f593ed0f5dcb83c8cf7957d838131

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1a0fffa8470575d6b161c30ae5630e3d

          SHA1

          fa6c36fcc52cae7db1e130f08508405adc3938fd

          SHA256

          e6de563c42345267dca698d8b60b21c9b6757f098a7bfd4a58519fbc817b30c8

          SHA512

          3ebad452db3a413490f5ad41554385f5dc9f4efe5e6c69885a89d30bb7d2f84685a97f118e1f8666e9eb4874d7625dd7f784e07e7563d61d026933947e16edd4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2aec397292f7b32ced4cbcce5a80e1bc

          SHA1

          edcab08d6d46ae1b1db58238a3f645ecd8b674b3

          SHA256

          343c7f55fa06a23f3b906136f13247f90a7333a7256a49322585e8ca2b912ec8

          SHA512

          40e9b4f7626b8363c36354202b14498b8e3cf4bc631f0a3703d5f9f699fd8feebeab5ea1a0b4420505f50033f7659338f5e7acdc687c00e08bd30972763a5a1e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1cc704ce85c4b7d13a841e9f88de3ca7

          SHA1

          6b7ac0f0abf2227b8f89a122cd44a95130a2dc01

          SHA256

          1d39502029fe434863eb2f2d6a92dc9b51a49125d5496b06d77304aedf217e19

          SHA512

          7e91b798454fc696a2c880d3f1f8418d3d86e4ce38fd841202a2225f61d772c047025ec2be611e45a827c7dd6a0c8749a0bd7be4f976b651574f1bc74cb1b7f7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          dfb72433f1089caf9900f7cfa26e2067

          SHA1

          18a77bc9647906a83276a4121adf9e17dd769465

          SHA256

          049f77995424b12fee76cf27d85f53e3aa94e5bb9bf175ada611affec099a190

          SHA512

          47ec274e0e0f0fb61bc2efa4843b8c9a5d8e9550e769ea109679105fbf2fe30a88aa3b98595c91cb5071e2bae115f0e392ac81cff63d9e7744de22a8c3051587

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          787d8fed803d68e9c451f1c88043d292

          SHA1

          2feba292f0a5cf2560b284286a642b03be6c4342

          SHA256

          0081c0fc3152e306f7dd2e2433fedd36709e1c36013a5840ffcb219a530dc897

          SHA512

          211806134ac925bb4dbe59cc0a66d19a738b3805b2df6c32dc5edc32500dee79cd5f9ab9f9b06373a7b9c1dceabd3e30b7d475a21348e50fb15bfb81b37c1c14

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          22d74cccb9ec4c77066966be14375c27

          SHA1

          e3518d4ea5d78aedb4353dd074f7017639441fb3

          SHA256

          b63d696677ce66b0f9703943f0e283827be85b7838a538f2aa9937db44311e16

          SHA512

          55047e0ef7567728b9395e0706788ca8212bcec56f0f7a088df796b270af1638ec44109e8b33c98d9fb9421891df4db643b3636d1f103ae648288734fdee9493

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          dfb22e8d0834e8cd1f78c0838c46275a

          SHA1

          0b8ac80cccc65eaf4a8d4a1339ac72679e03a2e0

          SHA256

          0473bcab7d6a1c0e778b0b79197498a5db216b5bb79b2fc481dd3af977683405

          SHA512

          a10491f115fc706b613084469951e7cad30779d02532b5fbb599ccb01d089487e53715d4b98a7643c72828d7a8c2baff25c886e81f60263ce0e337181c397630

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c70080f4b77a46c5dea10e1d09c0eea7

          SHA1

          622bc1f3b8845af5b2a9d95cdeda9d3c3778e583

          SHA256

          ea1dd915e3fa16715b3eb0ee889471faf5c5b4d1c4684aa46a8fecc47f76f733

          SHA512

          68fcc40a4348a779a8c416b51d3aee866b8def484e3d7e7739d3d8b7d291d8f419512d9a8ee141fb6e4721507687ad44d8038b6729201ed66474541719b10ed7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c394d3772d4a6233ff066193382db0dc

          SHA1

          119db748f874173c332998b5ca9e948fb8557169

          SHA256

          8d81c4f979cce561af9f01e038dd0966b03b7baab87ec6463a12a067ded2455e

          SHA512

          9683db2aed2a178afa8e430e7de9ef1ccb6dfc67151c1124e2137f1a02a141933dff2beea74137b7446c739b1da87c014129cf4bb7b03d6c56cfa5133702388d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ff2014fad40b6cbd7c9485878f681550

          SHA1

          e99e784e35f42d8288b1edf90f730ed6704a9f5e

          SHA256

          b757ffc8a15ac27c7bf8b0d4d57990f36f03a4b23d9409ee368a7ce6c00354e0

          SHA512

          28d46fbe26181fd3b77acd124a199021380fb5db7ff5da3bbc8fd65419dfd99d5ee5b37496c534c9a47188709208bcc7de18ebbccc1bd5bb445fafea4beb033d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bc51a614969969391ef9af14e56df2e6

          SHA1

          73b1d852d3bd79d479b5e98b553ecb676da39324

          SHA256

          a421730ae0609631db0bce6ec7af23447ec3120e8af8a743e33e204c7907f5aa

          SHA512

          65d562643bd214c39f9fc561aaa969bb2cbb8c05c14ad809f1b70f847e8afb284626a86cb171d73d38f8284cf39fb283a4be1ae4dfea796aeae58f5c436bbd60

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4fc5cf20366736ed0ffc71b74cffc83d

          SHA1

          4fa2f38d254fa08d3feee2e2e5664a7ba344aa8f

          SHA256

          4885815aaadcbef7169759ce28bcd1f2235427de29a0c58f34a468644c874653

          SHA512

          d76fa8d7515e000411bce65290b7e027c7f6dd5ec8162b1146bffacf084a9aba5102c47fcfc96e3849d0a30f076245bb4af6f72e5a5559564f6b7d6a6298ef26

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4b4a30c0c008f3f9fd9bed37c1766e3e

          SHA1

          50d6069ef6e015c7c07a39a0fceab5b90ebfc18e

          SHA256

          a70d66933296a339d43ae837cea3f86396309589ed3438e6c9af35bedd82b124

          SHA512

          246137841e0b4b8f9d5b81a17c435f52f2384dddf19c54c6a55d43254e029920fe765042fd42ee0df044445993845c4eeb5f31e0c2fb3bb8039ceeb39ea87f1e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9a42cfbe6a83b3c8c1d3aaa4e14b7274

          SHA1

          babbc9381d724be78aed635369b789297ac67dec

          SHA256

          6380d4b58ef6011dbcf1d66b1839b18bb22a9b5fdfbc3ffdd3da3580b8402eea

          SHA512

          778be02d7a24c6596ad3a7bfb384738b80c28c2e955093fb1d1c268e4084d24847cc80b1cc41f68e7ed7880a32eeb1ffd261dbd1ed153d968d1679dcf395b1ca

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6e447ec905c66cabb958b5ef13aea361

          SHA1

          5939b412bcd9644b3efdf2f3a06aa70b8b73a28d

          SHA256

          2f7a1ae7d0011325e015b6acce426264d5cf3e9e3d21177f21f73a93912b3c82

          SHA512

          0c60feaec57bbf53373859a1da66be8b218f70debba15f4ab85f7cfcfe6c730ed86e49e17431cf5fd177a5e5ed5bbc2e5e93369d36736a43bcd4ad98e38a5117

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bd1d3f0b37e611249cad26659515fdba

          SHA1

          17d66de5a94d8bcb6b3ef3bc1c77c25e889fc792

          SHA256

          0c763f570c25dc1fd4034093feb15d2fa3d71f15d3cdff11eddeeb22f7221f40

          SHA512

          b0a38816f880101322ae1c4acb97cc1e5229d4a94feee8a354b325ba220a508f246d80c05bff2d937a767ad17f2593ec2798d452d1913228b3ee740d42488aa4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a64f5b6e5a25e14ea12f00dad17bcecf

          SHA1

          8fcf1dac87096f279bef8e781b2c561c6cd6af26

          SHA256

          b81ad2246f708c19f641987c610e295a6104cffd22df434697bed324bdf4a3f6

          SHA512

          b33e6e5422d5a9c1e352d4f9b3640e712d90d837b8f83121e5d97373d76cc8d860d5b9b0c1cbff5e905d41fed71ea7f043868b12df9d5406a97cc57dea96fe9b

        • C:\Users\Admin\AppData\Local\Temp\CabA46B.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\TarA58D.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a