Analysis

  • max time kernel
    133s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    26/05/2024, 03:16

General

  • Target

    742b134474113f83576f58cf1fcc517d_JaffaCakes118.html

  • Size

    36KB

  • MD5

    742b134474113f83576f58cf1fcc517d

  • SHA1

    cfde49a436ac358398a294355620ccfa86bcac28

  • SHA256

    3195738076ea73bf95dc162fa8d0b099c12c0b9d08dafc32c0f0f78cad243c82

  • SHA512

    4cc9f06dde85de3c063c2bd9f61e1c92a68b893196253376cdee56201d67a2545028ec5d137faae5e6274fa0427c0fab3dc3e3a11d3043c475d7a82466c125ab

  • SSDEEP

    768:zwx/MDTHcm88hARMZPXrE1XnXrFLxNLlDNoPqkPTHlnkM3Gr6ThZOg6f9U56lLRm:Q/rbJxNVNufSM/P8vK

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\742b134474113f83576f58cf1fcc517d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1868
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1868 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2348

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          1KB

          MD5

          dd3850d9ce5a33ba453ba4d1dfb4ba51

          SHA1

          df05b044dd14e7d009aad0398686bbfd6fff1491

          SHA256

          e9e041a83d7f3dbd6adfeda50b7ff9d3fd1abfcfb4fc5906d481c33db7072b85

          SHA512

          ec27ccc61d0133a76a612d5ddde2c6193f96302e17f66a75da8e1ad18ee871fe6b307e535317726449dc724331d4f48376d03201ad8d9dc2985aa0420d45b8e4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

          Filesize

          724B

          MD5

          8202a1cd02e7d69597995cabbe881a12

          SHA1

          8858d9d934b7aa9330ee73de6c476acf19929ff6

          SHA256

          58f381c3a0a0ace6321da22e40bd44a597bd98b9c9390ab9258426b5cf75a7a5

          SHA512

          97ba9fceab995d4bef706f8deef99e06862999734ebe6a05832c710104479c6337cbf0a76e1c1e0f91566a61334dc100d837dfd049e20da765fe49def684f9c9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          410B

          MD5

          aba297b0bba16d0ae37afc714ee87836

          SHA1

          62275b46176feae93e565c41d9d999f44dc5f774

          SHA256

          225419c754c016fc8237da07095d025ca5ab3334b3a380ca1bdbfb59e1bed557

          SHA512

          9c856dd63e9948a533d800785c2db9b2011c095b3115ca4c42484895ce8a448e96a427eb57ed2b7cc8031f2d8211d5f68475cec6558f75838bd1c6687f983f1b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          410B

          MD5

          8e7e4830454414b5df5ad4fce9758c98

          SHA1

          618dbfbcf552478f852fb1288058ede67cccbb05

          SHA256

          1579b563b27b542be02a2c96547f2dffb61efc32ef27056328825c6bd61b6569

          SHA512

          e15dc8ef7f1a44427f55b0552c42dfb67d0356055e18efbc94738a1c6698ec6ce1a106f021a5cf86b0ec2a51c1d2f7494e8637c7382948d232807e2be80b9491

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          86c2bb9751a695454452a4a2dc89fa41

          SHA1

          bd9ba3827b002e3090da05cc5c1cdcbca0be27f4

          SHA256

          963b33f6dacfd06068e3e2c85526f9fd1b000c0f3146428cbc82af164bbe2db9

          SHA512

          14100f0fe835e7cf5701b8e84b776e125b02b5b955dd1102942ae001147e6b0ee08b522fc2adf3248531ae7b5755f9ffab324f6d83f5a0f64d539be1608d62a5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          cbf02934a92d6cff992e9414f7f8ad82

          SHA1

          5654ced5fd533edae07305f484e9d04a5ebbb563

          SHA256

          3fdd52621e183e160a2ce04459e990887d5255a16a5399f9c5a4531968a966b7

          SHA512

          4fa6cca4c221ae389d9757b6e0abe2a8e68f8f483fd0c5eb18b744e53d31d195ffa0358a3b2282f3b737bd9b61c0e3df5f60fbfdb902a470231646b15a37605c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          10dd3e7715bb340941ce3fce1293e754

          SHA1

          c27228b2cfcdbf2b85f82be286446e6b3c57db41

          SHA256

          d755bd91599a8fff11d81e2af72bc7bb92a30df20672982790d4c1bbed4613c7

          SHA512

          46967b98ba96617a99f778379c8f9825aaf2fb243835a471940756f00352686370a2446da4e63696a26ae6ed730e5aba52d10642a5b8ba14d9e67b75f58d2ab0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          42044ab2559cbac63244ed74fe88cfad

          SHA1

          5688dc012521fea50e40617f681dda74a2b9f80a

          SHA256

          80a4ac0a594ab27f9ccd27a03b039bfdbb85d119a5bf19bfa7d89c2727361c94

          SHA512

          ebbc3579724d454fe402af12b3ae3b9180a07733617aaf672a9f0a75cedb392ab76f0e3278f90a4bd66f2ddfbf8ccbf3773731d999f510f4f6862b9aedbf8e99

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          98b20c7540d04565ad58f0da4e6dc2e7

          SHA1

          6a8d4d272c394ffd0c9395f0fa8a9f082063442b

          SHA256

          ff6e966d95cbabb600140a30c72f3649fa860bc9c9321ac21a123a5dc12b8a72

          SHA512

          53f9a7297a82524c1004f1e1b968cde9110e9016446659a656f0a6df980624c542cb5ae50b6543386d9d3a20121710f20a640df81c3589b76be20ded54d43948

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f3142440e21dd7908963aa03aaa28d27

          SHA1

          7c4a137f67552fc6f3f4c052c05af6a2e8db4ea4

          SHA256

          fbcf0f813aa2b71012b1b4182c044a5169231587aed4310cee9005b4fef9442b

          SHA512

          ff1f8592648522262943c269dfeed051e1c25c31ba33f552734e0f9b2ca77ee9b4da9e2aca9b54c297810b217347797863a8515941100a9bf9bbb651385dc367

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a3d56adb55a9962de255ec266ab13705

          SHA1

          2d6fbbe2dc9e282c89d7917025646d24b5eb0fce

          SHA256

          d9756d20da440aba39d431c4ae07d1b4b77ce932c7a8220b74b2dfe67910cda5

          SHA512

          35419730e6947c1a72ccf2c845666f04202ee148dc976793a3529fb5c9d3ff1f0244f56bd0250ee4733b62f822cd029048c11fe7cc8c4b78a72af07e21009734

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          328702ae95fd2b30790ab59a9ca5a808

          SHA1

          55fd2f2ab6aa1f37f9c9098bdf1614e1b0cd972a

          SHA256

          931d80d9a580ae6f9a023aa0ef2a3aad3e70559abfb9239a458f2596d1a38198

          SHA512

          849988b01a32aeabc8319028dfd7de01dd5fe79567089f44877d536cf16bdfb1426f1c63f3ba39ba6695f1e97d7ed1e67b8ddc1ce633ddad5f67262c496c9263

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          40c3af2e59a5e508444b197c49f95fd6

          SHA1

          2f47ab05704e00c04ee069bf32ef042e6a2a8ba9

          SHA256

          6f054ec247b8ccd12325cdd015b310e8cb4b00c4cbc467e7b7d4768e5479be64

          SHA512

          1c7c0123217f4eb6acc2e8d4c8764986ca018c76bc3686e1b801b146493e5aab2a74c9c8d022d7bd7a01d9ddb6bef2e3cc7e31894b0352a376a1804ef0106c8f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0b07364146b3c9c6b39fc8fa57bff365

          SHA1

          cc2499aa3806347bd19c294ecee3b184cdb98029

          SHA256

          ceae0dd7001983d05546c0faa9e3ca9cdddefb10e4c4333980401703bd15b79e

          SHA512

          2619ea40eb1c2502ddc5b3441e687498c365a517a5ebe572b0c7bf2b2bf2af8d9d7f67f2e434f48d64071e6a0b2526f9752e8325dd70b4fcda6e5d5d818cac73

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          738bb9d5382b410d7f93d90d283370d0

          SHA1

          af926ea5c71dc617b84baf402abe23add76f9399

          SHA256

          4687d6f09db7c3f994e7275aabf27acb57655834bb5696dd5c0c437c18731d70

          SHA512

          ed423c170c4fa7cfc255f0567fa028396c8ee81b357d27eac521d4809d7e6fa742646818a4034e558945ddd07e8edbc001b47d4de6f9880d73800df56dc23f12

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3995ce15981eb9ecdbbe8898f7d48de5

          SHA1

          553510bbf17be4cf4ef70c4c23b808fe602c897e

          SHA256

          88e96f88bf9ca9959eaf39eb816d0551d22c9c453ba5766e03e53dc5005ea11f

          SHA512

          13757ceae488dcc5d33ad6772f57c712703a57bbdcdbb81d45407955796b79998453a9734d86f70d22271738548e628ebebdf027730e52bc839446dfa3d8d033

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          12d7a7ba6ab026023f644208df9a1f5b

          SHA1

          b885c297bd0612aa385c24440eacdf3e3c1aa1d7

          SHA256

          6cec5cab0e905ab433c4a5a78184fb3faf65849fbab82e7c44937564bd36ac47

          SHA512

          68c7dbed28e811c577eeb58d33dcfeb6b617b1f20913d88aefeb5c903df5c1aed9162873bfed18994d769621e4cfb7e943174cb419c4c292664b879710f309f1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          de6c8dc49ead983a48d2b961e911fc00

          SHA1

          81a68a6d8b82137163a1584069ae570787339a99

          SHA256

          1e5c779561edef746a403d16c07468d24ff98835b0fe27bbdc4f615654ac688c

          SHA512

          74fefbbc6078b8b1bd3c5392da33ebea5059de92d30b1c9bd3a3028a84fa93f98237bd31eb06b58ab9e73393a04cdd2c418c2cf925d31462822bd96a44190c18

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2512246c9813ed46b98055f33b771aaa

          SHA1

          d8b1f670bf50250de51a0395224db8e80922a531

          SHA256

          405a61edd8d923fefdd7b9360c4e06db12877de8ef8bf5b65d3bf29e0fc1718d

          SHA512

          2ab000af029f14217dbb4cc67006880b7ada069c94acb4244e390ddb9e03f4947040a1e389b2fa1e08f59651e5586d9fac35bf4933b0e88ec46c19f13208fd03

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          92e3d8c9c9e56eba74d2712bc5749636

          SHA1

          5f5a72366707676577c2218bc3431aa2ec8c202d

          SHA256

          dba0f554ce5f989036ac7eeea8a2714506f687a621ceb8526d2d2236a3c93925

          SHA512

          fb319e68369a53a877f5de0debd1603a1f83efcedf69ff440f3e68ff497649d887a32a81f399adced46fb8fcd00e89a7f848c6bc40a316bd410982f80a878bf1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d96a47acbfe3937b2963ff5334820c27

          SHA1

          560853e55cbeb6391abd48bb1fd2b86ae2760401

          SHA256

          8ace252d53bc85734e2e05d2413ef72a7c69a1a1cd1629f1e173b250f7d5d7fa

          SHA512

          e5d57a06ee45182d13f6636aac7d5137ae88234d4e9931f4aa3df2e2b254e858483320a176c85f8050714374fbe7272cf0cb650a5a8051d093d9c3c36d3de1d6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c6273560971a03b32920911feea4d0e8

          SHA1

          0d302ff4f6e40c6fa75f5a797868465d931cd0ed

          SHA256

          4c9fb40703fac52326b7dfda2cb341bbdc597df3671754663b2f9e6f30f63943

          SHA512

          c965b114841a179e324addb09f68d6be313905dba9dcb2df0bb243da351253db49bdb01969496af6c794a1f56f2bb48d78b546183dad0be7b1175c5b3bff2b8d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          154e2f1590db3a637db3a13ff602dc87

          SHA1

          914f6386ab5f27bc652fbb62b29b7df30aa4d1fb

          SHA256

          bbbbda412c79b6fabb7a8169ef7987a1a6a4c70f31b77850258c29fac96f1a34

          SHA512

          091765f1eba345ab0df431e36d0c55e3ea60d52edad5ec1edb69c9d4b211585df16483e8d665f0cccdaf1965a9bab9ea4c2c102bcce706dee579b116d899ccfb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          992c53aeace7fcf22b0fe87636313452

          SHA1

          44a9d78b139e094af33c67cc7ffbcc6c81fea7f3

          SHA256

          1e44d43da71d670ea1d6c320552113d5763be151cb81878a15854da20b7ae701

          SHA512

          9df5ed1094b69f254d0b16e842f25e7235ec15c1bfa1f884bd409861de5dcead397993730c6b5b5426ac90c2b561ef9b18b5955ec05582b3cf06d08e41fc64e9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c9d3fa5ca531036382acff3285992069

          SHA1

          9c3912c76724677edcedebccfb79d784c9d8dbb0

          SHA256

          834df5683b677bf6c27b5f37015ade697e3c8b424e77d2d93a9d0c94e734d9a8

          SHA512

          557874d99880cecf15da260609926fa4f6ce62721c97813231372eff897077ed5e307e7a58f7cd98393b39967ac7b25791fb7b8c8b88456b60c39074320d7224

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7039a87a7c650fc98bd098c490d5453b

          SHA1

          9419dd3e221cf6669ced09583e89ec9910d635d5

          SHA256

          4e06defe9019f5ae5a52d59d82be7d9ffe8b07ce46443d73546466e1b7dae5cb

          SHA512

          0e23e5b0ef6a4fefb97b62ca0eef3f13c251d8bd4a5c7d2a39fce622f8416631578241f0bba3ba61b5db30e9375d9a4ef2ad151db6f44ad77baa9b0ada584e57

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e91a8e7b065fbe130f39b583088b9dbe

          SHA1

          ce54b9a0cbb19974436f6220bc714d6ed1cfcd45

          SHA256

          bf9347997e36bdfd0e331a976527cda57c61ddacb822c2d0879c2671bd50d3f2

          SHA512

          eb5dcaf3dd7bbf2fb9b6c25390483e36ccbfb97751a289f836f145c124f0ff301b01dbeef73cddfeef7e29881cff494256f9fffdab097c186d1fdc43e52eab55

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f166808c1d93066d2d3af9e740134f2e

          SHA1

          bdc6a9c65aa3fea22d382261f667e57fa9dba5a2

          SHA256

          5bf085a5f17433c8884832553530d9caf939fe3cdb7c9d2bfa842b0b2c4e23b0

          SHA512

          2f813266cf0d7d575ffdd4aee2322880aa39568e248ddaf73ded424d600ab9643a5a0f326d2dade6a6e76ca90b8e209ac5dc5a9f80d66c3a556c93d7ce6d11f8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e0bce297b59ec325472a811bb4df22c4

          SHA1

          382e8c7a7a73f6c0227585cb385de4e38ac5a7f7

          SHA256

          fcd7434c48a90cab8e8086d194b82e6fbbd722a738cc7a6f69192db97c903055

          SHA512

          46626f1fe1960c9e5164938de71d1276bf94f202773d6b458eaa4821708a4d1b6a4382dd5408aba4114f2af19e63f0a802ee26b0634b6400351bd5e097ab6eb4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

          Filesize

          392B

          MD5

          1a0fa38c0e2e53cc33fd5b26c705318d

          SHA1

          93e54dd6f97c6a241b3b985eb70a1465d041393b

          SHA256

          5b728383bdb9dfb63ffc5fa61bcbee0e67bfca5b975da25e0ba9137835d57a81

          SHA512

          4ab156c376c32fb1adb618bc79374bd006fa9c8c146b5e42c2c69a0a4e56528df78f3d44e496873a6b5d77ddfdbe22b032310eb0378b7e3b6d7a294ac08979e0

        • C:\Users\Admin\AppData\Local\Temp\Cab1306.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar1319.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a