Analysis

  • max time kernel
    140s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    25/05/2024, 00:38

General

  • Target

    704f0fd06b6ef19ef84928be045b4f50_JaffaCakes118.html

  • Size

    139KB

  • MD5

    704f0fd06b6ef19ef84928be045b4f50

  • SHA1

    2cda39610e4a4903e2a06c61ba7ad04920b32d70

  • SHA256

    5d35a83de9f9893dd81c00b44530730cd7c978b6dbb74c22ffe3e3b08b79b223

  • SHA512

    8f7f94faf7fa278b6ee594b4e5b1d46b928d99786d3c580a94c755181ee7519e28b3d877e219f498cfb37317c15e089e3db1f173cf6d06f05927ee515869e4e3

  • SSDEEP

    1536:Sppdr8llinqiWyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJruH:SpL8sqiWyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\704f0fd06b6ef19ef84928be045b4f50_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2164
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2164 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3060

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c8380b372cc2fc08a7f2cc8ae282487e

          SHA1

          7d801233c2ff0d8388a287d92264d91d10fe9629

          SHA256

          414a369791ecd44bb056f4af63ff11845d48176f1ac88b9b52dc0f895a35764f

          SHA512

          5232083b43b25efc3fe47793a4ddfc92310ba293b48c7eb1ed170b2ff06841e8b039de5255971f255a94e18803c24d534d3ee857285cd0d9de2635c2bfd670c2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9eb715a3fc606dc60efca2eb01be1d70

          SHA1

          a960b5acd569f3d414867da1dc10c8be5c770030

          SHA256

          b4fc913b8c4a1ee200b53e736a9f1cf83f1e52d76e22b2320b91badc2b3244d3

          SHA512

          d92c43fc65a10252095930cb840e665a05c19d54225c17d0e06621469b70eb572898bfdd0eb8476625082b1cd4954b0486c8e9da1a68a28e8299d4d2923c3f5f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          53638820b545c85a71e623965e34bba7

          SHA1

          a27648978774669c9eb4208bda1084c53408e1eb

          SHA256

          86994946a8da060821e3fd2828145bf7364119dde38e620fc3f1ecb4488f01a3

          SHA512

          0e929bfef7864d8fd1a5cd268b4a80729bc050375b9ac50d935ad8e637c3114f0de5cb01801ab3b308f856e1d79ddf3780bc05ec2486000565e81ebdc4e51f6e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9f1e7a3ebcd81d5a8bc7758b509e4270

          SHA1

          935e656d0a1a38836636f213c25ab517a2906086

          SHA256

          1bfbe2ab7e00f31b18042fa3021bb3dfd4ba92a3b25c1f9da3a2854be9993fb5

          SHA512

          0b616e1000111144a9d4b12f17e5726a938682a8a9d7a2152cc7d9e95d2f3c4fde4e8b46443f19345f403c6262efe70553a89aa3513b02d386976e125ad70721

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9ea3140cf6afdc51a3be050540de2df3

          SHA1

          62f423e5de489f9497c3313c98e1943152c08e16

          SHA256

          bc2e1063d501179568ce1da5725b78e78bd959ea3d849e074d1c83d515632d69

          SHA512

          07d18bb0c75aab1afe61879b17301ea9bb4e408d7814b8a154ce0d72026a043672f03fd4fd60c1503cf2eaeb31fc4e1e0117e03f410efc657ec0c9d22d9d0bc7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          130e4c0edfd229304ac4b799fb1c890f

          SHA1

          615bf7809087abc74a072bb30c37e2a83cde5805

          SHA256

          b088d36e3d8626b91e5754fed23faa89323152d07931fa4f9f9e7f3018860557

          SHA512

          6d855233457977f3144c90a71239dae727059b769b82a5d71a3d48a6a8789ec613c53ae3e96fbad205868750cac7811473325648c0e2cdabb264b1fe26518921

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          23f2a436c016ef573af5ad5e136944f4

          SHA1

          617429a1cfa9b6a2102e090eb735ff3c25071490

          SHA256

          604199638a0d74d9ec9f0ca769186d3e9ba1516834d32a39b701a4e348bb0d40

          SHA512

          e3fae0269d3e813275ee95b960352730176eb367faddb4797a08bfc7954a6e613e97844093037d48d1ab78779fe4631cc30f2c0d48dd69aef430ef552d9c60ea

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2b192c0d74185b8e6769ca9f23375aa8

          SHA1

          112071ad512a89bdb2d54436660392454d0b15c4

          SHA256

          fdd7da971358d12e38a795b77c7e650367c61149716cc810f5bc8cfb713496ae

          SHA512

          5fbf92cbdcaa75ec7ca9b019d638e9d2149f9909a26e3d636c79200eeee16d292c86ef124710213a3d3fa7088d953004f7b2f12cc0e121ea7eb7231ebadd54d7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bec68cf25aad681d636a4706c9661b1a

          SHA1

          afbacc04a48a0e34ff0a62cb8e757bf368fc4c79

          SHA256

          3e4840ac4670f2a1cef5392080511d0108152aacb4bdc0ba858cfb02ffb5db15

          SHA512

          a9e887bc623a631c9a20044ebf6af1392811f8ce123b8b5d5ea8a69571ef5c53344a15290df560bf9ca28417f7a5fc4778b8aaa77b8177337ae74e806b86955d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          52917dd8036fd219858f040c11129b2b

          SHA1

          ec2009287a00cd1dacc984a0ddc24fd2be8a785e

          SHA256

          dd01a26d2a9f665df56db9043da7eecd868658fc604c648d7642c5d05739f512

          SHA512

          1e756da635c1ebcc98d2d9b22ca24e643c8091b5988dcdc1bae6ec3a9ddceb3e2fbae403a753258f0dc13d527e3cc29f98bf55ca8078535e63bda1c1f83ab4fa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b531ed2578a161fb121a852cc9e1d8cf

          SHA1

          f8323ac56a33970a45c50614568849ab8ac927d7

          SHA256

          0f9160effc06220e5a688d850f3aa21c67dbe0f71cd7536f29479d29e046ecbc

          SHA512

          cea29c851b4e9e993f6fdcd69dbe43e6e910a49c9152e83e636eac4b4b0e51ee4867768bf3d42c8f862f18ad872ce101940f9c97440c9afcf8e98aeabd84a592

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bccba41d9468c148f25427e2a971867e

          SHA1

          fb722f8ba43ec8113f53cc89e57d30768928eeaf

          SHA256

          2144e5d489e13762a5989f834bd4e86fe2896071fb53e1e5442156ae16c26343

          SHA512

          812aab59cbddcea84d0622ef9e25d486bb0489fe6a8afadb62e6264a66cbc0342690db37000c4c96e2f36c305befa6e72a79c4a0a3562581ffd5732f66b880dd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4fcbde77199c20a019726a365a78ca6b

          SHA1

          b33fb26ca8ee8c3d1e9d93f285f3bfb982fc1e8e

          SHA256

          7bbd82d2b4e5c8f9f2400cee3d308db3fa9950f78348598e54e2ab9a35710d31

          SHA512

          513ca75cd6118d3ed7772576fc5e4ddd219748dd337539850356b40ef3e2b55ed93004da9da07f303517e088ed9ff9820386340f5e769453eb46c2e008720e3e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2432343adad8c748c81d3fa5d25e3d91

          SHA1

          b286689653c168989544088a226f45c83ea2709f

          SHA256

          fc079e117ccfb4820f9c2f227e95a1065dd4abf1f6c92dac3306f26b9175fc73

          SHA512

          e5a63d33ddedfafbebed3c6bb0fd27ebba51322ef81a210b65f1c3c08f40204de6fb6f391ab7c351086ef947e0aeae120afe3a7ffefddb63329d085fbd45489a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          34f6caf87ac2ee23e3362d987c64b4b9

          SHA1

          7a86045ff5e13c149e9813fa286e9752714bf809

          SHA256

          a25842d56a55a53d043f3a4c662567e4e1759b9cad16ddb0c1fa757cddb213bb

          SHA512

          5b26dc8111ce23eddcf03837b49d1cf0bb329723bc643025b7b95bec716eacfccfe0c8d5d3ba21ad7917777793bb41197f30a5f3b31ab3437ba786e24aa53d77

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e900a38c9cf1b98c323035b1cdd99584

          SHA1

          975bfb4dbcb7b59d10596bdbe97c6ae11382783c

          SHA256

          7ee986a7f21deb186f0683f618f8290f41f4138478c3b84ae8945f5dd91fcbe0

          SHA512

          d7e8995e57d35f523d6bb4e0294715a950eaf1bc710a0efe8d3fa0f0d3b876e26e66be8b8b100e27d12c0dc891377888c38ce636fc93df62508efa9f613d0f8e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9567b86057cdbdb8e4893ad692ccd5f8

          SHA1

          9692b6e7c0ebc809f016cbad52cd448e69e2527d

          SHA256

          f825f33e8ef1dd37cc0b1ee7c35ad27789e920ab619bb395c75be5d4dbfbb520

          SHA512

          e75594e50d07d604b027026acb8a2398c91990cb7e9821763429bd37ca6182863c272dcf13417880d2093feec23de1b75538078ef2b2cfda23be7ecb88db2103

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          32174b3f28ed3ce20f7f83a29ae9cae5

          SHA1

          e7cdbb7abbad16b2a64c4d43a5245582a2241cbc

          SHA256

          f3efbd48dd092f48b92be9d8eaf2fd4fb728d0b04bfedcc277fd81b5724c9549

          SHA512

          e5a4e7ded6a1a324354d274094ee2c828180db06bda823c878c6112346c0d067d6a2a47c871ae5c92a0d6a4faa0ba71422889d87c412c72cfe87c2046fc2d115

        • C:\Users\Admin\AppData\Local\Temp\CabCFE.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\TarD5E.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a