Analysis

  • max time kernel
    134s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    25/05/2024, 01:10

General

  • Target

    7063ffb13dff7967868d26fd34a7626a_JaffaCakes118.html

  • Size

    19KB

  • MD5

    7063ffb13dff7967868d26fd34a7626a

  • SHA1

    424141cbdfa5969222986dd4b92bb2b060909a8a

  • SHA256

    5a2eee196f6d32902fc294ced852b849483369d0b0ecbb3c914417096bd4747b

  • SHA512

    19e015aba7eea3464e10b8ce9c3f1fdad534eacfb904b43e5963efc6280ffc21c87bc4715c470fe983bec806655e4af66952a47662cf0456edad3cf7d149b4c6

  • SSDEEP

    384:StABR2zcKiSnDqfpIjgD8mFmgo8BftJjdeYufszPdXA2a6/2u5exN2k25uJ:S8ptz6c8mFmjacYufsz1/a42uKN2k258

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 30 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7063ffb13dff7967868d26fd34a7626a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2276
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2276 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2948

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          055174a28e7506da6f7e4b8c1f26f55d

          SHA1

          f83865465696436fedf2ed3b9f1b7de094533421

          SHA256

          8a527e7093919e5094a932ba401a975d6ff61b699ce747e30a22015a169d001c

          SHA512

          b208fcb382ff5819277afe816097677b1602980c25938986c7724c0649faf0e1b3ce86c8679119f3095b154637556e7aaef078eb38f2dbbf60d649ba90a60eec

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          512ec69d61b79833d83a44a584c17413

          SHA1

          37635d9dfd13cb15657135a05d8ddda86c2b6e61

          SHA256

          3955b49e1b148dbd5af905bf284a91cb4b1a55103dac5f8b749d01d68bc6542e

          SHA512

          cfbaf90e119672299380feeb27eccd0a367052a64e3e8de31c5fd759fe23a72fca195520644f84d8c3b19d2e1f492769d6ad4a3a0999459b84b542a09808d0d2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          81fc16ce9f6d16ec0949af489a4bd991

          SHA1

          a7ecf99dfea669c00c3a7bb879a4fdcdb23f24b7

          SHA256

          fd7b720a8fdcc317bc931fc0a4a1652ecc3127ae05cb6627dcc6b70899bb47f0

          SHA512

          f7b6bd3211856e30fa86c21b5132a8290101b9fcb329e555b80dc6614b2bfc8653b02c38001efe10cceee8228087b32ac6019d5409150076b403d33f8f49c4c6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          57f367b7cd311515be9f79ca55edff4e

          SHA1

          69bc9faf2a6a273bad7811a12e0aea4eec59da2c

          SHA256

          9e9446c38d2d9640b92b217e66de77d7e00107930dc18e21a6524807e84422f0

          SHA512

          062d866f343836e6a9feda66cafe79be0659aac0ac6c2755601f412f415b1390aeed0d121435707ee663c7f9722e977b31c904712525d5e36240172120e38512

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9be21eb17840ff8aaa70bb1ea289e48c

          SHA1

          ea0e2bf4870f8692abd51fce80b815ff6264cc0b

          SHA256

          2df872a4535993ea089733526156db8e5394a90dd78698f941ca7f12b5b89cc9

          SHA512

          1140e623f94404ac02e569a2ba6b644dc2a918ac3f2008afd29a55a35a86e1976cee1110e9404392155258a9fbd7de818741d16d38641418f33d64446fd67413

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          30ec910a62ffe07e191b56cbe948433a

          SHA1

          e867f745c88db265871eb9fc54f061cf9e52c656

          SHA256

          7ae746dee24fbd51d1c77ded8a3d735786f111c3e67967d8a5aab14f64cdd4c9

          SHA512

          10d941349ed27eed6e737218f06d4fee3bbe612e2c631e0f8f551be665c03c7081337ba967d1d9cc4b87f4bb8c610dbdea68bece6144370541ab54521da68b98

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b9a249fc861e3ebd2bfe12e15b86550d

          SHA1

          a9ff483e2de303e8716d93ffbfa96c93715ba49b

          SHA256

          39af7da6164410eb0caa1c7f7cd37141d7653c18f2723074f4017de971e15c07

          SHA512

          f5cc0b45bf2cff4564853695e09453e05232ec9e42d24b556e9c950f732e453ad8af1d8eccfb17654c77c52d0ed73d0664f3d4b8884717d237501ea097450bee

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          caba8b2ec5bb9186eda9bd4799e39bb3

          SHA1

          39af1e4e9a44179b8adcfa4643a358043b814603

          SHA256

          8d7ba4b13092a7f248c62f63158c06b03a3cecc5666354e0ec7b7c21fcf44338

          SHA512

          5a2e629119554a217912381823e6851cc4b52cc31968f61148a94d2c1214ad7d9742cb5e54033a60546a5a8266571937c5975c8a85b243bd5b0c56c426ddfa51

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          32b4a69311c6535f8f47f3dae49bcf16

          SHA1

          92d0c3c3850c1bb7b4dc00c3980582f31b0d0c62

          SHA256

          0d9baf6017436748729b28167ba839ce859367eb9b78404fe0a4602058f33585

          SHA512

          5eb9a2a1eef18727c6f140232e14ec416fb9397379298236a54f67c0de343757815238e98a0bfd88cc9f1771a5384d90b931a0ce01cb998ccb22886114a2f929

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          35df25f62bc7b5a43ed36407ec7980dc

          SHA1

          cd0217eaf2ba0e983bec366900c89f6b21c88c10

          SHA256

          c139ee96d1f607d544ce7ec2dce2456b50d0ec29ae2acea5112381a69a1b14a8

          SHA512

          24b07628f5dc346dec19b3b28e41de67550d70c9eea72a3d1db4bdd24514722fff004950d8cc68475a32de6b5b65329c5293403d5b49eb51967082edf5853225

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          30ac0d0f724ea7b043f15908f5be24db

          SHA1

          7be60b7179c1234f6c9afc1fa914de5be98160f5

          SHA256

          c125652ecbe1cdd16b882898cb6de46dcd60f3dbf1fbaba67a5107073216fdf6

          SHA512

          6707c194dd7b55be1028f872cd7401fe07b3c5b60bcf7167e96af3f5f90081e8fcf1d7343ff87dde79b7c4714c055085855fcbb0f3785a0387e0556296f4145e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5be868e0f930865b9d472478fe779027

          SHA1

          4ad53de29ab48f1c1f07352cf8dff0b71e96166c

          SHA256

          dc1237afe3b84a827c8961bcc00d7bfc1e67ff4249a863693cb8674448943924

          SHA512

          09136464d817b47c7723e1eeee9e76b98aa15f63706132c6383209317fbdffc4a4aea54ba070ee06c809671efe9ae7797e6e42262004cc222d52cb2a76016695

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          34e6aeb76aea2ef0209f4b8c98965148

          SHA1

          9314e0e74ae7c0f63470a1b9cf6cf8eef6852681

          SHA256

          bf004494031db8be6de22660cda6de90111823697ed0ca04eb22c153f5d38b44

          SHA512

          b4b3ac699614c25688752b65cb237679bf5776b23ed7444c53a6dff6531b97bd03685433636f5fd2019a496d08c41ee0f1a47027d2851f7ea1cda982c3c3ff14

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b074e378117f16cbde9851e61e2295dd

          SHA1

          f4d056f3a7e1543f85963f7caeee56c498371065

          SHA256

          13540c06ade9e4b9b5d7e1cd39a8f4a68de8dfcac472c476703da0f271436bee

          SHA512

          76170a824a773fa74dc04b3bee3d1990ab2f752ae2d0c303d8ebbaed2e077e7c67040e40c8b6043bd4183ac3060cbdb1383af2d1f80ec961af9c54cee2639a27

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4d46a962c43cca2efecd9a794c347ad3

          SHA1

          9aef1e35377c36728e6fe0c50543c40beae3e885

          SHA256

          b58bb5e79d3765e807a866cd22080703fe0023c8b2b02f27e8facef113b8cb12

          SHA512

          b0dec26ab5e00f2cc21aee2499d65884a3bce440ef52909117cfda5e254f9c8b07fe263a0df3c9f8bf3b03475f608c3309007a1d7e32d3a88c7a2c95b28ff620

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b4a4a5cd2a205388a5b35626453f6006

          SHA1

          e54e87cfa82113cb6131581d9bb17391db948c61

          SHA256

          eb3acfba0439de8ae1dca75c506fedaccc99e72ed42f6ee36a915c9309291ece

          SHA512

          284ffd554daa4ada758b259a95e116ad199691222cda749a96bb18f4fc7e07e2942ccdb1a842250c42ffe6f6ad4015bf4070f40415cfd5331e343222413930b8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          cb75fb1bd90028c0d3e780c01ce974bc

          SHA1

          c20f9efbe9005421929fbcfc618796dc5c350f29

          SHA256

          d2793adcb5a080817b2c8e407bf0cc94068689137609e9a0025cab0a061dbcca

          SHA512

          93dd0c7b6f6345b0419e44ba5e82fa963bb40b5e717721609ebed12c883600bf9093ef0409f8714a711728bc686fc07f040f40aa32bd604d48dbc8122a2660df

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          af4006ea2b15346eab40def819b632cd

          SHA1

          7edb4f9aae34c97587a7e2dcca4c3e59522a4fd6

          SHA256

          d025de164e7909dceede1a9fc77f9049349b7c11373a24e29a2453e56dff85fd

          SHA512

          3ee124806de9de8bb3a6c7e5004f8aae9462c11cb4692339dd64c1b9345db90d6cf825f7a30dc5025684498aeec16c68d73293d75866c1038dceb9c5f29b1816

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bc8ffbaf42d3e90f8f275fcb58380a91

          SHA1

          3dfdec4cdb90e474e31307072e025e1d97005405

          SHA256

          182870a8bc839151b12e870995841b85d6431df9ce26d0733f7db013a6874534

          SHA512

          13fb48c58dbdc0937fbd3716d7cbcec00588a32513fb6939c3c23e8acb45e5c73e3d2303adf1feb609fe35635ce0d7550d0462eb355500604af81d97a09bc4fa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          eb7e89325bde84af596299abf894ff01

          SHA1

          274fae761f77cab0c5965e31360ce38c1139415a

          SHA256

          324633dd70189075bdc4c3466d2e46369938ce20847f0fe76ccc8cc3655312d2

          SHA512

          4cba3eb3dcaaa64607b9900777fdba28cba9dc51b28f3d6b1feea1dec5451de74ca7b15b960912c15b82983a6fab179ebff61a53ad282a89cf4463145ce6557b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e51c0040d689931bc16bfb5b132a96a5

          SHA1

          a5a47c88faadaae02af3d090c337decf7120eaf3

          SHA256

          d139ebad09bc9c662d7103e0c5caf35769841096a53bed88b143787189b53136

          SHA512

          59748b02c0fddb671718ef6b29acaaf12521be86a252c2a3b00c67f21adc3537e43eedeb455c6c61013f0c8fd29c0ce30ee94a6abf130e76838ddd4632189b36

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d7e817f3de08bff1adeba9b306711eb1

          SHA1

          0e2e6dd13b6abadefca020a863e6521e018cd1cb

          SHA256

          6c02a34719931b112cce3c18f2c59d308512da294283ba389cd45ade01ee847d

          SHA512

          534e2a0eb7802bcc4a12e5e33642af6f74cc70c1586f6f99a0094a3b711b22ca4af51962246c94dc3c6aa84fa14516cff55f407091099cd0bdd98b929db83c5e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          78c9b3fab6942ca21f3aa1837a085670

          SHA1

          803ffc3934011abed2751f6af88a2ad3913e6863

          SHA256

          6afb3dce4e2e0e52f4a834cc2d245ec2091b8b95d6a4c9ffd20acb0eeefd568c

          SHA512

          8d1da6133ab1aa8f4e38a64dbf3bf3508a27ae876e73f55d74ff0c84203544b773db2af3f019735a50df3ebccc41b3007adefafcc5b5856f047430a2a2a18d67

        • C:\Users\Admin\AppData\Local\Temp\Cab12E6.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Cab13D7.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar12FB.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

        • C:\Users\Admin\AppData\Local\Temp\Tar13EB.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a