Analysis

  • max time kernel
    118s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    26/05/2024, 03:15

General

  • Target

    742adfcfcf8c629ebed309bc95f94182_JaffaCakes118.html

  • Size

    42KB

  • MD5

    742adfcfcf8c629ebed309bc95f94182

  • SHA1

    236512a6ae1e1c33d40223dbc544c90ecfc8dff5

  • SHA256

    43a38ddcc98d3794a6c5c2a742d42fcfb04bd19ed1cc6c0a66e52c9e2b65d1c4

  • SHA512

    2a5672775dd3d94b720af4074f9c717d6d45b401bb279dd3877062dfbaba97c5a332f0da7a527189077a303b048299b22dafeca25bec8e3896812980b82a78ae

  • SSDEEP

    768:SbYt8s4PMGpv1fWdWNaxNTGmDXnzcpjlA9vda3Z7A3Bm6Qq+idYqVevkbiICz6E:Se8s4PMGpvDeKOXzcpjlAxdap7A3Bmw6

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 42 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\742adfcfcf8c629ebed309bc95f94182_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2088
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2088 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2988

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3323b7c9ec4f7251b120d1e65b0515c4

          SHA1

          22dd582b9318a5736a31b54df405c69660d45d74

          SHA256

          342cd352b508585a67937edd91e283df9a7d74121e4477838018216a7cd2a039

          SHA512

          7ef21f5a8dbe0ac14c3181931ab857643917a73eae593295ed9b4f1d6658995bc113f24a2a5e5a4adf517d4e07019bb2eb348c6d75ac00949e4c1d3ced92a90b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f79fa94829e5115e00a3322375b47600

          SHA1

          eacc1e4d3f596f5ab381fac29497441ce7ee1d38

          SHA256

          c64ed4f939fc58311f5af15bade65dfb8eb2ef5f67d1295364ef9d1a5c7ce427

          SHA512

          522d13a1a3edcc3443dc272e3c89c5b6bef3c265c6254cf190dda254077720d3df2474b734f21908d1a02e07ed2a4f190fb595de0accf2bd1042c902efa3189f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e35a5a82da27abace6da545a26a8d245

          SHA1

          d69a154504d9cad35fd60dd856927869df954c74

          SHA256

          6d6cf28c4c0c130d0040b9842bba91191a5c7e5891ee1e88da5e654f238a8480

          SHA512

          dbace0719de7ecf338a82d3f9528ff0aec6da458cf62d6f53161242eba41b52b515cbb8638dfaf17ac92a40c5b69888f969ef4eea50c0b21b568f7a228115cac

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          905449a00eda97b728847ac42107e7a1

          SHA1

          4e549158d281bcc454a046692d32473637ba0762

          SHA256

          b522919bdfb753552b5db3b4750f102f1fee32dfd3665322451569b6187dbe43

          SHA512

          054f3c963e68aa3ef5e4a7d42042f607de766d07c5b89c9462113efd0defb9b4aa9501e400cfc00cc9824c0901a30459f318aceb9a4a06baad44ceaae10c8b3f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d949ce59e272ddc2c4f90b6a8ab7a90b

          SHA1

          a8bf42d90793f5aa95b5b5c98dd3d041468224a7

          SHA256

          bdd9caa80a1de106fc455795bab2c53f907e854068f86a59015dd96e0c32a503

          SHA512

          e651a00afba985f0758cb4f76cdb9f042384e935e95e5776ef35ff4b98600d6822472b490509e38eb88399f409e9519dc218139e513f24eb59b1bf860d1676bd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          18fc880f939ba21543ebc1afe5bfee58

          SHA1

          2fa3fdf0ed8ccac3e470e532d93a4e02eda0dbcc

          SHA256

          66eef50521eed192da9d6d7afaf8873717eea88759a6b82f357e1a1d09040bd0

          SHA512

          7f04a80c1702d6f8eab704052708da2ae249a19a3fb22dc3e1d4b751eb2ff1634d4725ea713aa2b3f985a70f5cd446e8cdd1cfb3e6089d062d5bacddb993ed39

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0d86e29205151f931e327d554482d55d

          SHA1

          cbab84bb47cbe2854a391ac14ba82195152c7254

          SHA256

          24eb89c1a1124da2c4ba3b6fc88bbe470cc9cd0132c12b9a5fd39daf6b5e019e

          SHA512

          a763d11a7743243f54c237347ca0583cbae72d243fd7e250bf7bc0f226c30a69aa31c7b8777ea3059e8503df6a5edd4d355d8b798e9f9baa032202835f25e28a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a87b4741e361b030db96663bbea53793

          SHA1

          2c0599a4e1b92643ddc51a658ffef62b27ae1d74

          SHA256

          c5fb05cfbd24e44ee54371faf1f5d7c6ac67851603cfff5568b0fa6dbde61b38

          SHA512

          3217df1ba0a226d72bafa1e0d2675801cd9354eb28b841a4b1ef6c9f331c9da5bf4b7719b3405e8b481b8b06ac1038c7f530281feb218367b449d597cc62952b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          09a300e4c3955bc8b7d83076107b5101

          SHA1

          a023842c5d38cea355a8623756db27288c0a1399

          SHA256

          4c57907daa045812bf662221508d3a23793a5c5915a7e1deaf565bffffb4d21e

          SHA512

          ac3b711249e70d53a2b04df1d198f5a910f3a713946757c60c9bddc8f76c2b4549730615fd67160fde3c21524ba9f1a89e001546622b05fc89d3415b360558d3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          87d81a0f2aa29c6aed41faf8de60bb64

          SHA1

          7eab3d3c0193c0bad172dc51f72bb100d785af2b

          SHA256

          ef60ed1eebe6240aa770b7a51e3b946123b0be777b1322ffc3204d0256559edb

          SHA512

          f5ebc091b749c7ade579e95ab3c8fc2e6b0fe4a96d88f91464276d9a622d25f57ea8ce878d6abcadfe9c90417e200f92959c9be5de4131929bf22605777d450a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b2fd79c61b751f60e71a150c6ff6c1ab

          SHA1

          6f3f6b159e5a34516ba8185ade9db6794bcb351d

          SHA256

          fb7f57cb57a90a762167460b8a30dacfa3c71d95c8290e07942f6db91a809124

          SHA512

          a9728ba2dc72abd6eaa02c7541988ce2fa852375e8d83e93f630d6c8ba6793b9a7cfda34b6d0e88fe4ac1be5a3459228c71194709d5ca3d817e89d48a6daf55c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b2930db9fe0617028aa47bd0ce7a0a04

          SHA1

          75fb9edaef377f9feb84debe7660e6dcadd10f6e

          SHA256

          7ee31119d551a65fd86b0adc9c34575accee47313174718784f291c8943ecb47

          SHA512

          6312e891598aac61774261638bd21a1a1a1683e4c3e1df374e7501502a6b383db7f4a0ee6213dba8e47ce23e040452ebe454b2658aeda08175fba508ea860180

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          fe8dd4a77e244ca069cf8e960019377a

          SHA1

          58c99be74152168eab6397f8cf2c465a4e612a71

          SHA256

          302c2656a2e5855c3c3b187b2b67eaf1c8a69873e473c45b180d903b3d4d254d

          SHA512

          5133977661da50134dc1766a22fb557b90989428009dc6591a2319ecde01519670704f2cbf86b006b4718ca58d4be0cad9db6a12f2fdf9f3da36b9f2998311b2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          cf2442b30cb8ff316af68fe7eacc9275

          SHA1

          2ebf082e6ed3a63fb786102992795ad32394a9d3

          SHA256

          17d463cddf83bc47e05bf38d417ae038d168332b05e460b42100005325fd35fa

          SHA512

          d3a4fc688fdb2db1aee8fcd7edad0756934ce87701c8593f166dd59d2f12f6df328b581ba329080fd9ea2f3085978b1b914114d9b71ff5a7ef1a8ad404ead134

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9eea5a8a22e409070fbea0e4aaea0287

          SHA1

          dbe468d90957412eb78737febc7331247af134cb

          SHA256

          be1d1aa10630b00da1798fc6b2efd0b1f2b89c07dda6ddf4ffd36b24c4d4fdbb

          SHA512

          2f1ed042d5ea43bb72f68a1bacba1f786ac1dcd5658c8b940a3f8ea5462cde73fef4e3cd1be45237536ec413c7bc20790ba950e7907a953464684707a9817400

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b5b620f4cd9e86bc8cbb232fa47bdf38

          SHA1

          a1c414bb1d5f8bb9beef90cbbb53f6ab46208eca

          SHA256

          c594d7c1f2e68bf3f1921237ef3b63fe97e019ab564f12039ae2e915a9472923

          SHA512

          1c6085892d20bda8dc04289d8ea9e686ba1797e9d7f83eb6eb0e3ae8bfce09fcc48299728f98416da181440b953a3ecfe2f1e52de3281917e0f453ca719412d2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4c4499108a25879f41e583eaee403e5c

          SHA1

          91d0cd07b5bad8e4c5dbcb36a666ea63d911a6e8

          SHA256

          3c7800e62b42577c54a575632bef896dfef396a0739c3dc91e71f8d4b1b41d6b

          SHA512

          ef064afdd1a994a199e1439e7acdc0f881a20e7480cb9d7e81ed393289fac1f2e6e225c5b9be6e9b798bb30189be303691ffd90a8503d23f2da7eabca862f729

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          819cf228f4eae13229da45fa5a6b20c2

          SHA1

          5e52db71db0abac3af22c6c78cdeb280090f15ae

          SHA256

          d70f1bdd965d112bd12f33585a6441254b66d22c603b36001057818f679a97f9

          SHA512

          b6c8324b6f8786d55d60c0b3c01a22741cadcc84f5eef90bbdebce34d0d9f17b0409383b2bb88f573f2e315c6eaf1d716df7d6028338a56709ba46ee701bebd8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5b9c4bd08d6887895434dfd537eaf572

          SHA1

          55165268b727905aecf2f4cc0406887ee536190d

          SHA256

          f9ed73ebc97d57f87f883b4ddb957e92602f4cc50acebda6cbc1d40318207fc0

          SHA512

          a5aa74b4d27dbbbbf6d65cbe5608e00b9b4614750cd370c8131a6bb8bfda9fb25e736839c5db14d0395dc4f03384495c94ce24ebb57bb7d86d5aed2ec5bbc424

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2e989a7d03b10686a0bc48a35ce259e4

          SHA1

          f6e91a4da3368ac55f2244e2120e0811273fb37b

          SHA256

          fe6b88d9ebebd2466492b3d886b491a43727b3120ea2fac909ac465f2c32dbf6

          SHA512

          07f9b94ad525f21a30a3fed246aa8715ba8a9cdb0c978802a178865f3e8972147474054da1ca3c49ef96c594ac816d8adc63f06ef7a7e0ea584278dab647383f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9d3398059500e532541b508aa68866d1

          SHA1

          c321494d28db8941e4807c519c6b34e97c2686d5

          SHA256

          352c46f0598c29ca751b100c3943eab97385b7962fe336bab3821db99806e0c4

          SHA512

          8b1c71de92893803c43e9fc3eedaefe124f4452cd534bd61e2e4ef2060e027fddd19361b446dbd96b84b0764529911702603b5b43dfbe5891e09b4ea4aa9e726

        • C:\Users\Admin\AppData\Local\Temp\CabFBC.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar102C.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a