Analysis

  • max time kernel
    150s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    25/05/2024, 01:10

General

  • Target

    7063cf4b271dac0d970d640fa1a705b0_JaffaCakes118.html

  • Size

    40KB

  • MD5

    7063cf4b271dac0d970d640fa1a705b0

  • SHA1

    55c4b1fe08e5801cb166fa677c3798d3c8c8e100

  • SHA256

    94b074e6f490ab5e12a9e73faf9b212d77e800e53c9c412043579c8fea8c2c2f

  • SHA512

    1d087219b9cf66998aa40328c494cf39ff99da34cec257e7493f80fb6034998aa716f99fa75c6d30c28346e32bc755b5a8a17a3b9172028bfefead00f30a6892

  • SSDEEP

    192:uwPUb5n9GnQjxn5Q/9nQieoNnQnQOkEntzrnQTbnxnQmS0xWdSschppzr4sm6EVB:CQ/dvxAYpkSF+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 31 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7063cf4b271dac0d970d640fa1a705b0_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2952
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2952 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2900

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bbf2ccf23744b3ff72fb4490a65885cc

          SHA1

          1f2bdd3b708459890e1c996cccdbb8d1643b7168

          SHA256

          305021efa863a7ed10fe5e4d3746b2b8d2b627ec0011da39e340af5068040b2d

          SHA512

          85dfca5c815963283e897fcbbe6efb881f56725e9a95b2f962b9e93326bd00e5f2de7c37956771b9098391fd84076d182c6bd434e665191ffbd47db88e2fafaf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          231b362804a680f9f1bf52efcc45d006

          SHA1

          7293da10d0a2492983417dd00dc4370f1674366c

          SHA256

          cc14fee74ef8600aab3ea139e5758a27e937ca034c9a02a9d11a657615800da3

          SHA512

          a78d737fe852aef6de8f2063ce9e7b97b4278a3ec84f24521cd5df3eb0a7a85338295b13dcfa70b494e9708b713b229f013fd1ae664395cef749360700ff10e0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d548f570e412daf88338f7d8cb74b0de

          SHA1

          1c5e6a5a923f6ff5669c9ad1a0e2ca99a12af877

          SHA256

          78f73051362d24d7fe354852a172a526c8908971f8fd1f3fb04684b697912755

          SHA512

          6cb9f2a7d7f7115fc7f01aae9ab92e0f258ae48c0fa1fd9670b96b6d7f4bdb97ed931dd7952eecf8d98c13a02c89abc253a22be0464935d182afeaee942166c2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          717c1c1b073abd703614f062852f167e

          SHA1

          adef0b74d3c7b845ab84137f2b462c0f8a143166

          SHA256

          3472bd146891dc56e06d95079550eec8ce751f2c0b888886b140fa10b2b29425

          SHA512

          bbf2a4f046feb60f5fb3b5183978e3f4986910db17818989e4b0c0791678c240cda9855522a3b2abf5d68b579537cdf278db76e2092b347700535dfd08673385

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a2a9065f8b196ac95b5f606be2f100c7

          SHA1

          79debb775e5d8bd5153bd66323b2f8eab2fb7868

          SHA256

          ae442f1cf7f4a95a2cfecb46fa573541257a1a448658b0622a3b88c17f0d832c

          SHA512

          38675014c28a2274c0042e1b6a64c0525292c0f7d2946271cfa469d8ac17a6271a6a7cb99116490baee24b043b4d27824950e34b901e4e3185d8050674a0654f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e77d4b222a2f4009a2dbc071fc0e9d1e

          SHA1

          ac93974f0296677815f7d2f45a8a24dbf8f0c653

          SHA256

          9ef030b0bb98442ab7c854957778739d1693df626a22e45b3524e9e35afe7532

          SHA512

          5a8c2aacd9f0f7014f64b40e7f4dc8d90f95e82d7f880882ed6eb142f09933365e44166803cf79a5ef2ad16e21cdfccfea6785817db317a73bbfac3e8ca60641

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          272bc5b7cae70120b3a891f05040aa7e

          SHA1

          54e4a649a3b1b8a14d93c39901cec1732dabb1d0

          SHA256

          c3eb8ca2638725287cbb84993e57322a0a747e9f529b6ac23c5976e71976db0e

          SHA512

          a1f100401cca269cff512b202e4374447766166c962ef5e4428f824e376694a18a7ba7ba0a25fab837fe964f64c8e97c609f73afe476fd9c1eae7a0e424f1c9f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c43b740ce238623db2a69af15ac3f760

          SHA1

          9f299e74b404c46088474d85ce16b310f008a0c1

          SHA256

          6e795311b6aac9c1dffd9c85757c96cfdfd773eec9bbbb0dd4e82469c84a0171

          SHA512

          94a85c812a13001a44778c409f349eaa73608552e326cc72466418867472c83bf2764134ba4a934207804539f80fb890dcb3b0d6ecb06528f47608c46cdf9a20

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b551c18d5a1008a8e8695e4e22cb31d9

          SHA1

          dccababd7de8dff54987a0b50fbc6e0a5577e39b

          SHA256

          f471468bbbda3544a551b2adcadb7983f6af6e20c878ac9c7ebf1fa6faeacfd3

          SHA512

          2cc88b256c4260188c48c62758d453407e4cd76b0089ae5bf340632bc4e776806ae2052a530e23cf28d2feae1d9b3ea4dbcb281ee058ccc6b51a66e20b6de2de

        • C:\Users\Admin\AppData\Local\Temp\CabDF7.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\TarED9.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a