Analysis

  • max time kernel
    141s
  • max time network
    139s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    26/05/2024, 03:17

General

  • Target

    742b82fe30d1bdbc2326352da5d2563c_JaffaCakes118.html

  • Size

    138KB

  • MD5

    742b82fe30d1bdbc2326352da5d2563c

  • SHA1

    1de59586b6bd9ea5fa69269a1eb1acd296086a58

  • SHA256

    e88e3e4457a357968358cf182d2541b92973a6adc156a095597701515dae7e3d

  • SHA512

    ccb335285a675d60068728f179b4d38cc9a1726f190005d95648b162843b9c75fc392263ba9aefdd583ddfcce48e2b2722ba9eddc9fae8f8377393e31ff14d1e

  • SSDEEP

    3072:SGsVUaRlbGdEyfkMY+BES09JXAnyrZalI+YQ:SGsVUaRlbCJsMYod+X3oI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\742b82fe30d1bdbc2326352da5d2563c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:944
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:944 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1712

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          a8560fa05907633b026060831a604f69

          SHA1

          936dfd59fc20dc260a36df960b9d94e669a4b729

          SHA256

          16a37fca51adfde685cc14e88098b0a1070b07898da4da1e7aef96eb106af8f9

          SHA512

          0bdd47d60ca6f1c396965fa9844ca10834abec5b69e906b3ac06e9aecade22cc97a3d1edc5f586dc04af9d59cf428af47a9788c4be73a09fe6e8bc4a06d9f29e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f54c773ed50efc08fa64338c13ac544f

          SHA1

          934a3591c03c7128d82dec147baf41a8219a7306

          SHA256

          ece0c8863f6a788478bd9b6dfef4807c3143728f9b25465aac952696d9723ff9

          SHA512

          e7bbeea954723d434fa7f7b3b9d93bd964db001ea51e21aa8e3a4a7f8ccaedd6baaba0b47ec040cf9d2ba63a4bb92335247e9270155aab6dc4a1624a9d069883

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d4dea7cb48e918fab5310dac530dfc27

          SHA1

          6dc2ae4ea90b1347da8c9efe8a91f8709d60f6c0

          SHA256

          8953e32016d9827e48ff1415d72dce362bd89aa2966a5942c0ecbd0ff58a7686

          SHA512

          228e54069491b3bdab45d5183ab0ee270c15ea54ddb3d1c5cd488884d4f218fb76f082c0cdf3c2dbae262c7712b617eeebcb55199a7b381f4ff22ee2e1c467da

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          55c6c034fda15936a08b445c140e2061

          SHA1

          10777081c1adbc3eb67788a0467f6db54dd8915e

          SHA256

          bbb26a01e1102aa4437a62cb3f93d2bf44d92cb34ab36a31349992f07e4ad13a

          SHA512

          efe267a73f95424ef17cf6434e0711cee88a4b7dd4844fedabb6d7e8903d8e80fe7e4db6a142c1d41d39cf469930eda94b2645ed14754d038ae23e97af0f3a9b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          278693eb68bd0d1695ca47c0ed9bb5f7

          SHA1

          c7289c6139bb49613897334eaf923ca2bfbd8f23

          SHA256

          a98728e7163f8e6d94bf5ce16c94c8b1a1e1db041703e11f97858c165a26c7a5

          SHA512

          cb861808ecabdf5da8f27a02ade1b35d11e4f029e7f3d09a13384e4607cc2658059d367c25d8d118eb70446fdcf8eb4f9bf8fc04da76bd165b7b7336828f02d6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1621e61af462510bfd6b4e0189c79b6a

          SHA1

          ab821824c59af0be29da0efabc725a262e28967c

          SHA256

          f9ba533081765e517bc43f6c3d02fe38fc09f3eddc19b020d7f13aa2ca781619

          SHA512

          cb1500360a981b10618e061a7ac0a61b0445ae142fc1fda517ce34cb5d0afeac1c1a8f120ce82e22fead9fe968fc63e5d53b6c18371bc8cc0e3a05379255be8d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ad2de47508958ff641becd82ce1cd924

          SHA1

          0b00e237e6e91825d59c0deee703b1ea16fdeadd

          SHA256

          ac8bca48f89b136a37024f34f7d22b2a5b35d0ad2a60ab0752a81d01bee380ed

          SHA512

          7fa0dc68ec335f22d910883e2939b9c4d5ba9b7b44fe5a088698804aee460a0b7c9d2704391e3148bc5913c51873b4400975999cb93a868b09447e17f985d0b4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          46770ae323b12cf4c47ea0c932918d87

          SHA1

          26e46e736e70f6deeb3e267d324d8235ce5aa879

          SHA256

          e7dd3444f5ab952b33473c7b61f5e8330f685ae826cad0e1fdb6103a804b5ca3

          SHA512

          0f58cc242b6f837ed3f4026706affd7d0271746117523789f6f1dd95765ed15c9eb4fbeb1b30ac95c9dc3e4335958058fc908fc98417eb750f25035357266ed9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a4890302d7ceff77d07226ef65a4dcad

          SHA1

          3c6c846a9e1c39ce65ea69981cf151229aa9e20f

          SHA256

          7c87f2543b5bc0eb8e5fcf438a7ef1fe4339de52130d764e6f0d9427d8d82212

          SHA512

          e3c7585f340104f16d68539fad6f83df5a145b69cd38a15c677bc81ac6cc7321f4823cb4866a08ae44ea5575e65b195805424cd83e603cfbbae3dd48a9a4132c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          af78d6b51cdd956bf9de195cc2d4256e

          SHA1

          73134eecfff9048bb6f0ab350f28392bee2a5a35

          SHA256

          84c13351377142f49b035c597e1cf5c5bc5ba33f35d5925865ed7a587bf525f5

          SHA512

          71968e2c2aca409a28d712e20b3b77955ff88a5355b0897782970b1bfa39983c31f6bb159e6a715a64eea7a81df7cc7c104e59b6f70822b74cb2f9d4061062ba

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          056e1e1dc8f5ed2f504b4c05ec1b3b33

          SHA1

          a741de88d74ba8cc75a6dd65502672de1a534823

          SHA256

          206b7b0fd45d4f72c529461d2fbc5036bf84231f45101d9f3d1e67f7578cadb0

          SHA512

          26c086e195edcc62ec2e505f7447a4aeec99a4d7a950bce9c598d51b877cb153a3d1b8d44626448f8467b4aabf318d2cec42c13dfdd577c4897a7d06908a45ac

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ee3066475396ffcac152427941c329f7

          SHA1

          42523b21764d366fed7f197dbd75cb85f88f614b

          SHA256

          d80b55f6d5d173a516986623c8d2d82016ddc5964d61cfa9a12c15d2fae4573e

          SHA512

          a4f47102c1c9077d3bab1286bdf91130b3d993bbeb5c03f45535047f9b98cbe3ae298501f958381eac9de2417245746e679316339606d9a036431e33549802b9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          23cab06b9d88a922a911b01815018fbf

          SHA1

          555ffa319253bccee69ab8bdc8bbb4db92beecec

          SHA256

          b67462d9359edbcbad3d6db383127599170a97152926ec8223df37d8d15e5d9a

          SHA512

          ea195c8674c85d5423bf4923a4f9ee0e902f1325840068837cd3e19a0a37289b0df4a3aeb99bd5094e37f732c077a8f8f91a4931b0558c2b3dc8e073e5685be0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f1f0f6272122ccda5df77a92fd7de2b1

          SHA1

          02d4b070014ed089cde944724677601cd78f526d

          SHA256

          6b844177713593af5e459f2ab9294bea1ed15bdfcd69da2b798c752fdcc61f7f

          SHA512

          ada9af40774c3b696dca68cd4fc401509c94fa89a2550954423d00e326d43e6f247a89d58f03176ca41c8a29c02ae77a930f725073e4b2580db50da2799d9188

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b67448c7e1eb0ea163966bc34d4c8be5

          SHA1

          a782da02252b14bfb13c05b129d219639ca279ac

          SHA256

          a2fa5e14828b829834b6f5215624a6bf81aa99a68f69bb44d1015c6e1a9589ea

          SHA512

          704e4bc72941e4dd1c88816090c1eaa0dbdb1fbb863448f0a629f19953a45b5e57fd2c12c51b8263cbb4475548160068acc19d4f7d9f709a03e7cfda9efdf6d5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bb9cf958ebc4e57350cfb30a34c7c594

          SHA1

          c1fb59eece26893d812505dfd891a6db056f1151

          SHA256

          f6dd3e66328491e5ff64b2b56479ecad5c26871a3cdda829b7b5788e7fb3eea6

          SHA512

          88db7602a902b3c01d8c3d7aaeb6a9eb76889bd2fdd04379559bf9222c7547f7363b7766ed6daf39f3842556c2553b3415bb17068859b000f959b83929c7c399

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ed906c8855ae55e38f658d5bb670f49e

          SHA1

          9da9b0cf9383fcd31e5e82891701150ca3f41b8f

          SHA256

          11fbd622073e018e4846cdb9638eea5dc7dc271764dc6eba594f735b5c71a8a1

          SHA512

          fa75516c084d74e6d7a074eb79d671ed7c465aff4e248003157dfb907832cab2c6fa45ecacda1f5873dfb856132fcd91c618570a46e74cb16bd7a378c101bd49

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          aa6b9110d34717ab7848f819335622d1

          SHA1

          8ab9bb3c9192add6d87e45c093a69c6a440461c0

          SHA256

          93f022bb40f73c366192afb87b30e0c6a7244283df6f924be30759fc1c08e6ff

          SHA512

          4a3d25a6f1cde8accfa49dd893f356df85cfdf87092b606ba7a74e449126dc8001e8b0f52d90eb6eb18ee91540180be782d9940cb2eaf8aa80cc92299ea30eea

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          1dfba4d380d1a34a90b4bed429e2c9ab

          SHA1

          8423199f74c99aa7593872cb52f5060cda01f0ff

          SHA256

          74c2e33e590075c17fd37784004b512ec9d37350262bf7b53bac646a6b1ea634

          SHA512

          15b58d0a97d6447fa688c2f643e56ca6244de8f9fb2809ff025b40612aad25f730fb5c18141c0f503d892c73c23602848e015cbae844e02725eda4ff6eb3ece0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

          Filesize

          4KB

          MD5

          da597791be3b6e732f0bc8b20e38ee62

          SHA1

          1125c45d285c360542027d7554a5c442288974de

          SHA256

          5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

          SHA512

          d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

        • C:\Users\Admin\AppData\Local\Temp\Cab58C.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar6C9.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a