Analysis

  • max time kernel
    120s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26/05/2024, 03:17

General

  • Target

    742bd9e76c1b9b8987afbd5a41befdb2_JaffaCakes118.html

  • Size

    1.8MB

  • MD5

    742bd9e76c1b9b8987afbd5a41befdb2

  • SHA1

    a858e44965e53578b15707d60bf59f2fbdc9f5e1

  • SHA256

    e78055a3c413385e676e3aa352298ca50eed0ffa0eb3c7f77f355bbb76c29e27

  • SHA512

    e58fd3a6c38022b1ab58f25d010b03cc9258ec576e244ee073e3d06e03387892f84d3f092e8f87af1a431350313c6214cef1d750b7c03db182d68fd68fe77c5b

  • SSDEEP

    12288:w5d+X3poCPuzmrugwG2qr5d+X3poCPuzmrugwG2quQ5d+X3poCPuzmrugwG2qJ0K:K+aDHsN+aDHs0q+aDHsjW+aDHs1

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\742bd9e76c1b9b8987afbd5a41befdb2_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1932
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1932 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3056

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          dfea59c256ebf643e1e0834335cebba1

          SHA1

          4430b6e9ceb54e1c71a6140a206da18e3ef22f53

          SHA256

          5a3e4c2c541590cffa571a81666bc2aa36da9502f84b99ee0cccbf0d79b573ea

          SHA512

          41d9717926dd919f4976eaace281dd973ba3bd0b6c185e3523c7d01f9a40d37aa9e708ad538db82484cbb790321976da3d9d9cc817c885f3e97596a58c80d1c4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4bb1ee86d059f01d61f4c897a9b7bec1

          SHA1

          de1345037df0081421ee7f119f50aaf8229051b3

          SHA256

          cd7b52cb559e5b78a9d7eac717413e7b40ea8c47a6381a1e4449b2ce3ea613bf

          SHA512

          2b47bfe36c143fabc389b4b259d583c40ffcc09e7174dad4844a4b283f6bca6e37ed99757345c26f0c1e26b191ba0512e1cdd5fadbfa66a0176a03127351ac13

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2668ed978c68f94930ef79221a711673

          SHA1

          0a9b1028e59124801bfc6ccfc4bba9a12ce40a0d

          SHA256

          1633e5ef0b451b2c75edd594ef6254d55d865d258a96ceccbe9a7aa11fc170ce

          SHA512

          62558fd80278fd8190b427d346a2b70e092236a3811c38f61a702cd9d9e09e634b775864b630b2a8be850b42d235d4a936627f10b5140003350c6fe478731675

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9ff69922099bbbc6a15a6b50f3123abe

          SHA1

          16dbbe52aa40cd439775c951fe4b3e1bac652f17

          SHA256

          42b8103d075d4348263ab2fe094550845a4838a141c4d1c988d9d8e17732b637

          SHA512

          0b348310c491862ebaa6a7c7b7a47dee309d8e84f121712624728bf1ef1c8fa8f6dca3336869aa959bfafb0bd3768c61f208eab2b14faed29fc4375e574a0408

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8e05b3333cb1e65c5bf1e34baaa76b1d

          SHA1

          9ab41774f9411d2331707fb5e6e120a5a982a861

          SHA256

          0b55075254d995fbb534005eab6ac7a6f24f4c82c005f838fb90c07bb9218b98

          SHA512

          c196cf96c729ca194b5316fd62481a62d6f19be35d0d5cdee969a87ef752cc7e44aab903a3a216c40c3706b31eff67a640ce19dc17eb818ae8273e5049ce2537

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7359b3b29da1fbd17b3cd9f3d81ccd07

          SHA1

          baa606d6698901d8792a4d4368d7099a90bfebc8

          SHA256

          dea350dc98a67ba7a2e283d93f44324d526fb5630c36e2512df1da0f679311fe

          SHA512

          938ed752c123cfda4cc51d8c42cb7fcea281822cc2d122f866143f850044865f218272746a91aaaec7ec56badadd84f70157cbb6950b4596205be609f5542e00

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          76983c320f89f740d090c7a81287d082

          SHA1

          2191f18f4a98f7de4477bfbfcb07d14e1a8105e0

          SHA256

          843ccb04f1ee558ecb1400155cb7638367132d586f027fdf25f5972c75fa638d

          SHA512

          b428fee16f3f18beca5e268f3313a40def610150b7dbe86741de368fbdcf3c60ad3f1d31ca35e0d6158beef3762f8279491d67b8ee5f3297170f81edd2724ed3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f93aa3b5780d0bb7fbc6c88e04681192

          SHA1

          4d87de3dae258a9a23df94ca7c3180bd85a71a14

          SHA256

          0bc0a1405a76e1672184bde813d02120a0ad50bf175e21bac38d04b201ac3c69

          SHA512

          4c2b0736ce2aab5c29c0b51d5c27b010902801f8aaa947ce03110a705f6e6605c3c63dc25ffc275ca485ae10b83b90538c590497627c18805603efbbba1adb13

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          375766af982a6634073e0911ae9cf8b5

          SHA1

          0c1c2d9563d8ffdf5dd9441a1c1fad0c4028d836

          SHA256

          87ee3763e31d3fce70b1270cbb5d4b91b5ec0d1eb36d9c30d165094bfc06c936

          SHA512

          e58c87a22267321983ad6b2698a7f4fe268e803cb9d92429c2633a90fb2ea0c4f8a77dd3b161ebb19aeb5339823060034d4498994ccbd599d9f8724906e6542e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          97a2512ccac0499930719e8cba529f0f

          SHA1

          27afff2e492055a78aff1d59408d9aa679574933

          SHA256

          e4c4183d5632a88f58896c8726b133296375a33e47a655f182fedf5db3178bd3

          SHA512

          a32ded687e1dcb0effa8b86c9b5af0f3d7d0477a02791169f183a72810d9bc112d01771c81056c1ef750376c0c1b7350a5bab591caf7000df50cd137523f12e8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2123b1e5844bf8cfe1f79738d9a58ede

          SHA1

          9c5941f46a517793f46c97132ef223c8d8fcc0a9

          SHA256

          d78da87ee87bfcfdacfa1c3e03d32db46b4f4fe18aaec51264597c75b37a2bf0

          SHA512

          38f26993f6c137008b713a604e7be1c47efcbee57ed54c48be4558dd8def6a49e7ebe8ebec62aedb8110900bc1d9ea8fdd25b7b0b2b14e5b5b976fcf0b315431

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1376f4e514027c70e9da7446da764f44

          SHA1

          4d5f9a9bcf79aebb09d42c46e086aa76bacfc6ac

          SHA256

          923bd0c2df39ff2f3fae6058b69eeb8f5362c7b005485a0e2433f58b3b9eeae6

          SHA512

          9826bdd60b4a890fe45987b57d593ee16dc391fa2f0b6abe9eaf4fc9703e54e9b281e7631e5b6c3d2947de257d50af255da11b70858682f88bc60cd4d6925051

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e39d9d6bb929ebde3dd01481974c9f7c

          SHA1

          6c1714d6683f6f4349e7ca50c3c27b5121b71213

          SHA256

          0062ef58dd9759485ec0fdb0a82f83adbfa52aa8c846acd1a4efc2344ffc7ff7

          SHA512

          3590c189018c9c555a874bc2761a34a2f2f70367abe54b5f0235c877294e28a59d9b905174f21184ba9f0b5f9073adac6ac68e462668ebee272857969e4f9841

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          feef37d608b6a5bf8e967f8097dd5b25

          SHA1

          99e1ca03a0b0b41bf388d96ec6345909ed3c7f6b

          SHA256

          6ea2d53d78c8b492b28c97cfb7ee6888520708f05beab13153e359a3deed12d6

          SHA512

          f2f4db5a154c0c51f19433e52ba7f447a1c0b69417a2bdcc69940ed5ddf994472a20007d6f896611b126726429e06065b20fd90c347d4f0bdf70f6b7cc1db14f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6507c3fe550efb0e295d5d27ae103678

          SHA1

          303b626844b543a0e650370708aa25414eb8f8ca

          SHA256

          413266834dae20fc66618ac305c0b23c632c1fa30699d5a9593841cdcc5a6dc3

          SHA512

          f6f1126cc7d8cba7d1b2ad7265ac876c647da24b80f8978046bdb732ffadcf7c5419f1357834eefdb905fa0d7fce5d8435f842ba6e8ae57ccb6194752d537ed2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ee8f67506b1b21031bbabcd11edd2860

          SHA1

          8fa46e0c33d2a48516888f48eaa4b069437f723a

          SHA256

          62fbbfe928d4649c609df22707746b072ed25823d16d00bb2da0e4e657aa2edb

          SHA512

          163e2acef545f98f7386659dfb74890098b8a89dc5d84484acf22debc834a3bb264a3d03e05b6fd52f82ebf2af4e5a3ed7c47296670b0f07c2426eb2b5164076

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6fc16e94edc640141f80b56ab63e7e8f

          SHA1

          56992d7ca04475d3cebf8a58591fb12b431ddc7c

          SHA256

          eedb18a222e03edd7eda26486ab6175735feacec3ef2a9b9911851f30e6c23ab

          SHA512

          bc3e98ad4cdcba81e7dda74f0a182c393bb1496a806297f29d2dd943ab7d99d5cc696d8cd140ab1655f8fded2115d11aba4b0af4b465f8faaa013e6ad08271b9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0d5beca748c5a08b25705e3665af237b

          SHA1

          6c2e5901cdd759989d25047fed7c33b9f77429ac

          SHA256

          ea730cb7832e7e311def9318fc6bf1ccfd0d60129aa08743d58ef98f69796a3d

          SHA512

          bfbb9b3e1771817a23033f0e5a7b0119ead5c1cfff3a627fad419642bffc2d1724ec3e7eac26dd9ccc40f043cb4ad3b9dd086325a5197e75c67a32a765a99486

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e9ab450a811f4bf4eae7966d283b61ee

          SHA1

          133a936fd486aca615108d64ca8ecbe3b4521309

          SHA256

          ad8bca18a2085ca787e1c2e64038ac8800bc9312ae7ed31b5ddd3ed488c74972

          SHA512

          36ed7fb1b9cc5006a391f2a80fc7fbc51ddde6c47683e5126959bce74024250425d146e26a2e35e8bb3d8873661c28e5ba6c6f305066b11d45c57dd4aa4d9baa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          87476efdc144578b5dbf9669890eede9

          SHA1

          7a41e3089669ac84496fbe981b12cbea03d9d7d0

          SHA256

          86a4c18c9db290aff4437a477c4296adce49a8dd2d2827285f90c3be575070cc

          SHA512

          4cf7c3478fbb29cd4a16d37bc11618d3abb347e55e68f790f65a74ff40cec01bb33da5bba528062c7b48ad3f938dc5eeb682bcb31a063c62056fba7ef2181d87

        • C:\Users\Admin\AppData\Local\Temp\Cab3C85.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar3D78.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a