Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    25/05/2024, 01:11

General

  • Target

    70642345f7b2bebd6064ae92b237225c_JaffaCakes118.html

  • Size

    116KB

  • MD5

    70642345f7b2bebd6064ae92b237225c

  • SHA1

    2d1d9f15df50243bd4c52fbbf86ae5a79c355448

  • SHA256

    35270dfa28165464acce5c94934bb1f422f4f9674eb49881fd22ed9024c5ed86

  • SHA512

    8b0f56ce088d350314063d1ea64a2aa8d02cbb6fe063bd6c1801f1eb29fbf5632305a77955e37e71585a00644b17022047e567e09794b43570abbd5051ceda68

  • SSDEEP

    1536:SLXyyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGCW:SLXyyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\70642345f7b2bebd6064ae92b237225c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2128
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2128 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2808

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e87eb310b2a57e9857ca5471c8a7f523

          SHA1

          9c1f897c013ee20210ecae02a02f3c66bb1609a0

          SHA256

          4adbf16abdfd132a72ed8dbb7900fbb71ec2a0f53d6e4f09c104c054bddb47e2

          SHA512

          ec14a594f31883ead7394762e6b03b43039bc6754cf5109ed4497691047b55d8526db5e44ab9beac2bc8ef77519675144e63461cf1ee7540fe2cbb8972ed8b58

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          14bf96e379790d63b7f0b93599c8986d

          SHA1

          aea27a6b8b4f28494cf24cc416f3109671595cb9

          SHA256

          79a9089fad4d72f9412d7f61d72cf524b3ecdef094f1c0ecd4fe3c5d5b230b94

          SHA512

          1849268e57e4c27f68f27f88ac6a85389d07fd0840d380188173e4428109f026b2d5d739f62256e93b9f060f4c3f9ae1181e8bf7144e89669bc5d842edccf6cf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          74c73ba5dfdf8ab826d614d55cdac275

          SHA1

          944269a9133df26bbe99088d5045c7ce0f6596b6

          SHA256

          ecaa77bbe94c290d1eb577fce2b57e706e96d0a4a36b6491e4c02afdb7adf2c7

          SHA512

          0e00b9ef0514aa7332e0070a816066a15abc3ce6a3b15d4d98530850cc98d96ed96cf6fa0896958310c387eaf9a69116d36b8692e0610ded774835b96dfcf4c2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          406f8706d958487aac27cf51d1823caf

          SHA1

          9e964cdf444bd2fb61fc9daf1542412a5b6bccf7

          SHA256

          12264ae2d61e6955a85d638a4837b69222b3adee348cced79f35aff6b1380563

          SHA512

          69211594034591b604b6bf43658eb8777dc9eff531d3aaaccbfcd45e8d31a07ccd91f815560503fdcac138dc9ce3ba67c8cea48abbdebff61848f9e45751b7a9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          36f7aa1a4ce60da3b4fa60292ad259f3

          SHA1

          9e77d3352116b09851e34f68dd75a202f3822197

          SHA256

          dc9d2f85a3d1fb7c58073764e60f8e9a2a7ff8b12174faef8933ec39c8001ca0

          SHA512

          bf9b47c9bba918374fe7baf7df031d968f9e8d93ff95a5ab4aaa7d5fb95aafdf52100c1731d4193ad8b9bd381910aba3c64673423083de6d77753029bd66ddc8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          77fc30b38f2303ee005951803545c10a

          SHA1

          c92e435c3759de3a44a0c73d5b95eca99ae20339

          SHA256

          a48faf2e0bb32a58987bdb4888e5d5f45356f8844010b2bf79d9dfd3d7d06af8

          SHA512

          c11c4b759446c433b41c0c8f97bd1b1c9117299b3171365e183099ee3e758a79d3d72c15687bfe42fe1565daa2fdefcb7691dd57052ffdd52d63c61a1a0503c6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          fefd294d772d9ca4acf80544d9cfd8f8

          SHA1

          43d5742e871a51823397b5992e59ea0fc0c0292b

          SHA256

          d844047197f35402c75ab6734018c730e11d59cbd618115f4799d4be5202b8e6

          SHA512

          45dcbc07b8c9d9a04e337469fb8cd07bb8f954b23bb8b25b03b364f05a1fc32b162bd35251bb3a9c26c547987e6632a3e98a021822a1c1fd88f2d550364f4773

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bd8f6b84243f152ce1f19e46d2e8b7e4

          SHA1

          86ba4d189b8e2dca6f596b99dd1e01c0fb9c216d

          SHA256

          5242062d7da372e17e80d38105cd4dad35d7a88406bf1c8e26d799043aaf5786

          SHA512

          ffc0d9981ba6f144a75f4d359f36b7f0ab2c60fa9bbaa222f67968de567f4567226336b8a4b3ee065b22459e609491cd8c62c9842f62b9b0de72587ec5feb479

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a5fb8d071005eb0b4fa9da0c58bfb875

          SHA1

          4bc6bc85d2549e4b0cb7ce582d2feb958b6382b0

          SHA256

          ef2051505d7973f8c4c031a6163486c0eb3e7cde497fc28eb0a1fc61f19625d1

          SHA512

          99c0d1a5e798337e7ba06bc08dbabc0b114197b8e78c4e76a28d1d5eb11dc9edfed08a1607328ba320f135f45e18243840558301cd3bbbb6fc193be0b838c217

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4c138dd8ddd58c1b65b4d3f5b7b32cb9

          SHA1

          13221ec5ceefa4e4cfb8677a034fd59a3028d334

          SHA256

          837a340d8a96e10c346eabeac5b3661a1ce4f3439592effd7443e086441fe528

          SHA512

          7052dbe87bedabe86a664936d55d32afa7c9623ad7b46deae2b7c07b50420370c15e0ad74d2705b4e6154f17ed4a21daff0aa65aabfa2a4fed12d5fd3e0947e4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5d1a77ef2e0fddb0b45ffaaeabd2cdde

          SHA1

          c15ac2250ff98811022ff6645f7c7dd7d60f3abc

          SHA256

          9d32ad12c7bd2a1c9e7925902695657fd75eea7f2019fbf5e31035e57244b9a4

          SHA512

          21ece4870a1695f20bcac49fabaadd3b75ed4f5b36feb538bd71e74e5dc62ed80946c581ec002d5aff1b5d103af349f74be666b5086cd8fa72ae5b37e3a0c2ca

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9d78c9c2502818ccc1e51b0e7921f5f0

          SHA1

          45c3deba28c5ab74a6ef6077ca67915fe47dc226

          SHA256

          7f584f276c89f9a2c091e88e10e720c2bac869fcd8b6c3c78f7e2257df394989

          SHA512

          a018c163c0f626912707ca0f6f7eef287c46b015907109248d5e771ace2942e9da34bfb50458157adb7c8d09cd0e8ef00a71e8c3766c4ce9896875027500dcaa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f4af010f7257a41cea6014e1854692f1

          SHA1

          ce74d91399e9350fc20f35467d1303c95ffadb3f

          SHA256

          d5a32165920585775bcce5b0859a053fea185c49b63a36ed1d27666c90e89de5

          SHA512

          79f4ba956bd998564942a412dc00c9a63458ec7be2b070818481e52cc0021ff14608254709274d8b7d6d71bc01be5bd3d0239fcaf3cb3a76df571cb04072c878

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          aea281b9a23bbde111f55ff7dccf788f

          SHA1

          7557bd4f8f7be9891ddf41f8ef6357d7c4ac5e98

          SHA256

          51700b3f358f5abb3f712226b3a030c482f7b151da7e48ea24aee9342c281124

          SHA512

          21d89ec33fa5895f2c6cf5be5f4718ac88f51b0f6c0e5d126de7d7282636f193f1bfac9a574e2fa3b08c4023c8144ecae498d7852f1bac4c48a10fc7ee1aa725

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          42f51a0e483f156fd986a8a76cf4766c

          SHA1

          a3fcbe4ee854fb9ba8c48486c5d8c1ef19e1b345

          SHA256

          08504e350f372fd797848912fb911d127b85c6f19fba4acb95043177d31fdc7a

          SHA512

          49e1e1a04953a92df12e4de783ce5faf2b0d9c49cc7cc58c5ad0ac7f0d331bc7ea37de6064e330d6e30dccc49a168099e39f150b321a409ff97c0658036e4bb7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c22756dee22405acc3071e8c85072b39

          SHA1

          81502dfee378f6e639270c9ed018b46f87207d1c

          SHA256

          a5cef5811ec7b0822e13bc5e7be317d3fd572411e063f49d9a2a6cfca6412737

          SHA512

          5eca2618d710c3e2af2b18bdbe9216361b39d7671696560c8df4c30ca70d6e5a3228d1ce865431b56d005269a4680378f98eb47ce8f586fada0634c714502988

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d5946bacfdb8c469bb6296ac1be9269d

          SHA1

          7862a5f0810b312baacaad0beb265f7e1dca10fc

          SHA256

          9b938f799f6301a214d6af7b37741a4bc856aa128d0c4df56310a4256734684b

          SHA512

          85c9215754348ccd0f5ddc3fd621d2653f6e228bf6ffaaa471be722cd0513d52ec8042e2c0c2049b1e24e60d59a01311149892583c60b7e3f11f8030e02762f5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e14bfafdf343e059bc7a44c6f9375096

          SHA1

          93f9c24e45163d56832061cdb73e010ef6b82f03

          SHA256

          4675264c094857102619761f5f3e8591fa51f88b742ed28012916d1a4ce9845e

          SHA512

          0eb8951b9a4a1453da907251bd5ceeb4ec0ffd651b4ae84a6a363fb36f4817a5b79e9d30e6ae181215221aba03325ffb9f8894822a45fbb13f7af961ae592ec6

        • C:\Users\Admin\AppData\Local\Temp\Cab32D4.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar3337.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a