Analysis

  • max time kernel
    117s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26/05/2024, 03:15

General

  • Target

    742aed91c06d0cee9ff191b1dd4be5bf_JaffaCakes118.html

  • Size

    39KB

  • MD5

    742aed91c06d0cee9ff191b1dd4be5bf

  • SHA1

    e18407c4cbb26af0e15b5c8ecbe3b77682239f0d

  • SHA256

    f57535e3419cf45bd3aa8642d23b2524bca2936839388f71e52290635116d007

  • SHA512

    bbb5967c58127655dc556443cca556dfd9323ade8b7de0565c2901eac6c4713e355154ee8ac72163c5d23b99a4ac2f05836ba4044e904bae3a807c5da2812063

  • SSDEEP

    384:u3VVK8wNHTEexUFpWPoSxrqLLrgGVkAWAju6JtbiXUYyy7Q2jeeIEG91Zq73UxLD:u3gNHTEPuAWGNJtuFyyjeeHG91sx+N

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\742aed91c06d0cee9ff191b1dd4be5bf_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1664
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1664 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2788

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          0b623193a85907b9d3f0c26b3056bc99

          SHA1

          430c10a2007171f6f9a7217387636e0ca74583e6

          SHA256

          41fadd2dfb9effa2672c05076b9b6b5f83ed5592dd22e4290eef5b0be41c3f95

          SHA512

          d8e91a409b310311f84eb16209903df59ba18ab408a905aa5739a8903e885bc527b8291e62a921debfd55ba019533dd88f0a8bf5dad2be6286fa49c298e75fb7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c811b05d0eb8945d4a42dd6c806cefe6

          SHA1

          f9d27ff0b6f11e033e8c87958938a1a84c73db2a

          SHA256

          c29c159ee2a280c2af1ad7659bdde6da8678068b9d6e4bdb6626b07fefde4a42

          SHA512

          0ef9f9848f5a437df9b5cc2995d33960ee6931d09c3e83846bbb04f3b3fa63e8df7c2bc335fc16510eed4d00258e175fb9db10c6f001ca1708c097d82d88c15c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          454e425900c0a89e58a88d74668d6e64

          SHA1

          321dea365f78540a4a8712af7e46bd3630b67fe8

          SHA256

          632842cbce3b7e58b28ad6ecc76914f67d487e931daad33f07a1e797354b13ce

          SHA512

          f0424107b43230ab9546eb3fa5300e396b358a7d542b10ccc10ea3509f8b9e69b5ed49b8ba82e55a109eff45c46b30a25f5513584fffbec233322ac454a7f3ad

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4fc25b1d8439dede6053f1a69e02ba77

          SHA1

          ce192d547014245471dfd8a341b63613239693b0

          SHA256

          7ee5b28e6883f502213be0fbd13c363cc78edf159a9718191969d273535203a4

          SHA512

          90c2adf5dc79d60c4d1a5858c5c950290b817915110a9058ba058bc5a6e4778f9a03d531f1d3b66257e4c73f3c55c03708073f1c1d6db389b70531843b7ad765

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c5b594812773f79cd47138d98f84fa99

          SHA1

          115e188cf0225e415b8bc39e835cf627a1dbcd57

          SHA256

          db53e789621c6e38caf0170c62ca1615c324ea42fdd9235f00ae602285ed7a6a

          SHA512

          02826b91d87560e0f07e7dc6655b3d90be204e0f420a37e254f5dc71bf6e88fe9c8bf27f46f045f1ff0dcf72cf60ce6a56f7079339e7944ef8a7e9bb0d37c073

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d7572390ed7520d5a7ca848d9ecd36d9

          SHA1

          0b160f8402c876a7481bca840208fe4a801b716d

          SHA256

          fc25bef6362c86362a1062d5fec9ec8411212bba5a6e988cc57c0a7e8a61342d

          SHA512

          860f61f3817e743bab018bacd8412c19b977ff617242465d414a3ce55803ca884957337229b2ec9a102f9582f5e88fb6eae3c5d5bf58f9061d24df939c458b9e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9ae03cfe27f8d966e3bf2fd33e0f111b

          SHA1

          705eada4ba1a47ccb0ef004ee3c386727cd9d02b

          SHA256

          979b1f48df07ac53cf6666ffcdc4bd86246caabb2939ca9a176b1dfee73d830c

          SHA512

          508e1e76a21494a3e91211b0f27a20e1e096590fab454234a5d7de7347883518b38f45b1eb5456232e3b558e492f3c664d82cc71b0efb2bafa1840f2d3fa1e2d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c7a598fe16f14dde306a1044b0d0b1cd

          SHA1

          4be5e4956434c8ce66646bac0a0a135fdb708507

          SHA256

          70fe77093e98225f366b574f0af0039a8ccb5824faa496a0e27c04d197d26db6

          SHA512

          04106e94dc929432bb0503542d3df1d6c8cb25e62e96e67aa9f4af172e70ccec97f9c72305d0ddb39f4f71592bd9ca36b550093a124ddf0743d3747d53e12f24

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          07158d49bc8decf35ed9187150264e41

          SHA1

          6c90d4092032105b55579a247eca3e5d688c19ad

          SHA256

          b2f7299afaabb8eddeece8829868eaddbb92c26b74d364a4c023c24d950959b7

          SHA512

          fb7965cc94bc55926e1ec38b1d76ad0043861b704554111f03b63c04add65e16024c04d314fe54d35fec523fb801ea49b833f11569e944a0dbadf1cafbc655f3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1b0dbb7424c9e69a8595fb839327ace1

          SHA1

          a73e60071128041699e4fd667a20e848a8da98f0

          SHA256

          dea587e59a170de5866295de0297984322005d50b76846b2486fa8641b3eff85

          SHA512

          d9415dc4de409e59ff56b20be87d8b41c3f7ffb717c6556e20ad616e31bc6c9106a5a6eeb273f6d2df6a898fe2135801884643e9769b0dc11638138f4b7d329e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3e384279b83b9d4209fa28585fb4f44c

          SHA1

          8ee9e618bcd722abc9409942b86122bea1cc078a

          SHA256

          de78a35590927c582eba3c7a05f5fb23a3a12480eea535111ac9d0984dbe718c

          SHA512

          7490c2c019d5cd7ad5e7c57d93eea2d8155b751d76fc0b6c2a1dea1723987b2f72c078feb70027de2750321a947f234c56e15e987c7751d2fec566075136adcf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          cc1d3ad2a140935594f2fb015ebd52fc

          SHA1

          8a907a7ba8ec97ba78f1e027916beec4d29fcbb8

          SHA256

          c734fd4529ddc344e225fcccd88d0b87ab4744a77dd0017f31177112545206ee

          SHA512

          1d4189e27e830b34343bde0d54039f63247a8d92d2b6cc3789d2abffdd3ab592d30d50f0be5f4aa6f602cd79560ece44041b015af37f9ffaa44d4c3f94cf3e0d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          04027e734194bf3cb1542a607e1f2888

          SHA1

          ca77bc97e5412045ddaaf3ea8907822980ac2afa

          SHA256

          60ef0cc1aab68ffd68902e20d45833d0e58ea674386bc619913ad9007f124dd5

          SHA512

          da58792b4f506cdafeb72891cdcd75a5120997becc6678e8196c5bfae64d1bbefce2c63754ae75688ffedf1a35aa2fe291135d5f8f21e0e27537bfa51ffed264

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          74868b50d65036d35b843b2dbec89ad7

          SHA1

          4abc5838b7192ed7a18aab4b99c4ce42d01d2cad

          SHA256

          9452500e7fafd9b965f423760abb27afd1e416cdf85974326ae605b54cab5cc6

          SHA512

          25a877670d224ab67ad2feb8f29c27f2ac4e9331b53b9a1ffa1a868aa367dd6bb16e7386559bb69b76f0458e5a0728db52c6d7913778b277048c0384ed4b8791

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b537add4f4bc5457d0b65370b9231e66

          SHA1

          510d07449c8a5071b3f484a1b3dc7db6372a8276

          SHA256

          7dcd58adf669f9c137357b7c991b9189091364bf992beb6978854e4760cf7f1a

          SHA512

          3fecc1c116e44eabd8007bbaf55e31884686752127f1fb0230678f98e630423ae168ac5c55901e79c1bdd46cd2f020ba3ed17158b68e8623fc9f58839d5818ea

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f56e9b16f4f9ae650fbe77b1c2b70968

          SHA1

          cee8e36784498d560c0ebf5e8262451e6ad337d6

          SHA256

          80a3d5d05528106cba636723ce0546316f2616296a6af57d549a01ba5ae2dcbb

          SHA512

          6250c9c875337a6097dd7e137608cc1c53a308338314ab3c4aac07c582a00424aaa477070f04fe9a89a0c683a9c48d7674244e9be690ca5c2973ec99e8725d5e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ef1df50f7ebe0915a2c71b2ec6353028

          SHA1

          5a32f26cdcc4f46a1cd499b02df619a63bc08f80

          SHA256

          e9d8f126080ab1afc7b73993876f357146dd13ebe342975e1a024d5d46845a9e

          SHA512

          a0ce7c42d8184e2853e1a5ade26bf0c639e91a18cda3a595574840f59ef9b25a8aeb656cce8295df63dd23bf982b79b45317181a5bfbe015a81db7fe2059555d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          84a63a43f3828bf80dd574c8b0456033

          SHA1

          c3cc96ecb245fc16c86f1d8801d1187aee861f80

          SHA256

          14d94b046420f28753941da9eeed51b2d6a85e3f9d40d4fb16af589420d47bd7

          SHA512

          0dc2e089ec79e9feba709f0ecea844d7b1acba489cab950bdf73514c627e977434b650aa1016359d13c303a3ca05f089534a6d0a99ef79f390762601dc5b706d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          209d5f17e36e96abcb960b8cacaa01c7

          SHA1

          c05211409b374338e4104d284fb6af8d6c8e3b5c

          SHA256

          04c70dcfa39bb8d8163c15e174f423718dfbcfded9d966fa4545e6e663c0d1e3

          SHA512

          1863dc070a942a420ab0b8bb20568f61366f26d3934094aafcef643a3f2e523f655b71e1748fd8464c02492b62d4b423434d0da1612c23940d09d908c7859fec

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          900d4089fcaf0d2c9ef6535185c2aab1

          SHA1

          f0056aaa367e8f0b94ed5a90b9500afbb05196e7

          SHA256

          2f7d36f50ba651bcfbea5b96a857898ce0e89e19e62f80c02766b0c2b13cf74c

          SHA512

          42b3e1cf09b95227ccb5efe5f0e0264fb1de4fdc46384ddca38db2c42b42891245bdb64f6c259ad119ed862b0b7a12ac0060d0e1c25a8a2052292469ec44032d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a5a11b998340ff4a8ef7bc3d02097eb5

          SHA1

          ee880be5db5e2c69e9c00feac6a2b487debc679f

          SHA256

          519d98be7c140dd503079c37b9631638dd63c498b201b2368b7b0b1cc5fef87b

          SHA512

          3ad08c412c6e36627cc7e072ac983eba2a26e6d88c9cda1efb3fa8a87a394949d19201ed0d851b72960c6e9623a3fb6e579c675ca107bc8c86d0d8b26ad4c4b3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ca7a574abc8e9373ea0526d6e4ccab57

          SHA1

          7df5e9f3fe2ccfd3bb57ed7e097700606699d530

          SHA256

          5041e2c5acf07f19ada275f3b6d3ac33d89279bae823ea879efdca629fc549b7

          SHA512

          7c156da4d349515e94366ab367eca9134e5046aa2258a2c5c13989a520fdc6d4c1baefeb336fd7cf424b3d2e1484445940d054c9c3e38447954c3c7e6be3b60e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          56280bff1200e8373b1131759b09acab

          SHA1

          f70db2b33344f584062db05d04b81de784043475

          SHA256

          859f2c363520633cdae3aca3cffa782bdb176475fd1f9f4404d719dbce5579b9

          SHA512

          78df67602b366fea109b90a11933b0d895d05bce872c96c39e17cfc3fb9589129147208ac53f5120cc3d443b3cf3c4229dfaf385f6b600d3da649c8905a81971

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          79d3d3ef13549d40e7982d6fdf7352d2

          SHA1

          90bc1edbc4ab4135ad6377fbeb11cd2331eed5ea

          SHA256

          4e53d610b213576e61bfbe795214c83fabf8611f63bb5a97a6bdc705d61e735b

          SHA512

          2d6fb87e7102f2b4dffee96a4a0302c0a6ed4b9f52fcfeb1a97c9e36a274a8ef6ce21a0ff5d1dedbbc776a0a5a63cf0064dcf6772732a801ca90e76d03acbd9f

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9M0HR0P6\analytics[1].js

          Filesize

          51KB

          MD5

          575b5480531da4d14e7453e2016fe0bc

          SHA1

          e5c5f3134fe29e60b591c87ea85951f0aea36ee1

          SHA256

          de36e50194320a7d3ef1ace9bd34a875a8bd458b253c061979dd628e9bf49afd

          SHA512

          174e48f4fb2a7e7a0be1e16564f9ed2d0bbcc8b4af18cb89ad49cf42b1c3894c8f8e29ce673bc5d9bc8552f88d1d47294ee0e216402566a3f446f04aca24857a

        • C:\Users\Admin\AppData\Local\Temp\Cab911B.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Cab91F7.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar923C.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a