Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    26/05/2024, 03:16

General

  • Target

    742b31ac6a70b934b0582d9b463cfd3e_JaffaCakes118.html

  • Size

    4KB

  • MD5

    742b31ac6a70b934b0582d9b463cfd3e

  • SHA1

    d9ce8f2c7ecda0f1a8a53c4815ce4cada3880d34

  • SHA256

    fca92bdb2eb0f63cde491a4a86d58bf494cdcedef16add5c5be0ba4a051090da

  • SHA512

    465f308d5f6f35080641f833c760c51cf6306cfef679465bea1b8741d3f2ac1d88fb7392360fa5874ced7a3c03d9ce640e2ed1814c01a91e8419c45672ac47fa

  • SSDEEP

    96:Pk7yJozTGknaEFHVKDZTBJl7sNjtXATIQFMA5e3fhrvDJUgwa71D5iJ8ocHNJd:Pk7yY1aEFHVKtF37sNjtXATIQFM93pDb

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\742b31ac6a70b934b0582d9b463cfd3e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2028
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2028 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2016

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          cbcde2690b59adb847e7dd550f97f627

          SHA1

          1bb802d73058710aa10769e8f87ae95b5fff3729

          SHA256

          2359b325eb2c3093b76bce83b4f14653c16c79ad40707fc4cb3dda5a36a2530b

          SHA512

          0b42fcca178c2478e10b18dcdc5ba2a84073b123d8428226884be2cdd361f4b782bfe7ff8698c2e3c4a1e724ee9ad77b695ba79780cb57c3729d80c7056f41b8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f55226d37a3ab3b29f09fd2a6ea1eac2

          SHA1

          2ecbd22470d737f7f18fe8ef1e1e2c8ddaea93de

          SHA256

          806c4b66fb6f5a2d17fb1014a1825d58c9bb467b7072be912bbe86343725269e

          SHA512

          15b062f49aa25c174f7c16b9263fe44601026f2ba383ce5ceac110a58dd013315e0be43556aa821281f4e69ba3cfed4cb1dff18c725031c47ed5f560cfd09f39

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5fc9b59721b8bc9b51008f346cf59f8c

          SHA1

          16d167397010685d6b415d335c3ba1d038511074

          SHA256

          7cb76522545ac22b7782aeb05dc8d9996cd0e2ab0ee666b059a52774d1690515

          SHA512

          2fa612de1cc01af2fff23f22699c2aa64e5b1e8358949907fdbc6ddb9cb006aeac214e192ffcec286ff6610560c0b25778ddcab7db3f2b9c7914595f0edbca9d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3b8bda0392a6bfce1a43365c86d791d5

          SHA1

          4f432fdf146515a361c150e9ea145ff5e2aff7a7

          SHA256

          a3ce0a084929326725f85a4ed5c248f037978dd7fea403cafb60bb3c145e627d

          SHA512

          e7c5578c1234ea8c029eef28e2ce6aef459c59b55a420981e753c096dc91eee9434207f4f5e1e1305950833dfd5335e4c79a2fd2ba43cb0e5aa1caf795539505

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          be26e653dc0ca4a49bb97e43543da353

          SHA1

          4f325c6dc1fa968e4b293715b87411c3da4da5a2

          SHA256

          5b8f31f8366b6d4193b010cc7e7caebfbb7d64c864cb86f4c4845a8f48ad37ff

          SHA512

          320135bfb1a6aa1b446a79edc6e6bdae41c1fa266e9cc89e971c19faac043b07c57e38466417b05d443f0112d85c95362e9c5cab6771b0dd0334aea902b71ba7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2bff88d793dd2d67e9cc017b142215f1

          SHA1

          0d49c59d31c47e3d48a499fed314fda73e62b49a

          SHA256

          11420fef9543b25865120a4161fee35c22480a39771fbc59caa3004b68b89667

          SHA512

          403d5c4b5830bad3e6c42646b910eed43f01d6bed9a24e73ca4f450dba47925967ec68f0ad286dc5449a5d2ac9f74dcb1ab3c1189ff3c18413fcc95deb009243

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c56c2edd85cef30710b0081c510d01da

          SHA1

          daa4ad730f60ac5435a56dd2bdcad1b5cb90d18e

          SHA256

          557c8f4d082d9239eae6bc39d902cd072cec691a8928fbb7df58c492b234ba10

          SHA512

          67d2b8e87b29c177bd2a5c64f8cb6635e112d332f88af2dd1f6d2a70367af688cf3748992b8dfa6d8dd26d255b2e16233fd314736d8dbcd13ceda0cd860b4e65

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d50be4269436914a8d943b25e0db590f

          SHA1

          17d68d61cc7d8169f925c2a3c256a2e92f0acdcb

          SHA256

          7eb4b239fc624e2bf68cbc64aa03d4de78ead86f7fac6e24683ca78a98cbb3ae

          SHA512

          16391e303f976b5c8feecf163466d712564607a5ac7bf0c652f426207329ef4e1e9f01c63f7005e86b0be072d7f1b208062089646401099db19818304d46bd25

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          cb3337b308bda7fc75f6de349edba472

          SHA1

          44a398bd0c4703a723dffb159489f351c7de5428

          SHA256

          89cf1e35bd52498c0cabfded81d5e1f315f000830dc54595f7ee0ff4cf4a76f7

          SHA512

          7a7e812ee0316d3b41781731f25fd0655a48d05e936498eac1bfd399d5f4265626599fba9068573d06b577ddeeadf24baeab1a56e2e1064001750483a33af50d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8e447388e4d1927fff0f681cbc3eeb41

          SHA1

          c4786fb3e65ed410533939800894f44747575926

          SHA256

          3c76696a30435c6da3597559b78d613f0edf8bbcbc5891212930de7409d7a5fc

          SHA512

          0a17ac1e7111af1a3ccc5d175199c3c1733ba70fba9c7b4e1330e10188f10426d8fabc2878824a3985868ee7304f61ba04be157f407fa8be460fc88d3c983779

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e62cc8c677c845c5ec1deec357975d39

          SHA1

          75c050340600e7e806084d5b2958ed20767a086d

          SHA256

          02f2c77316fd0c9ca78543c03f90b43eb762bd537603c26cbc839fcf2280cadd

          SHA512

          632f2c98ae3efdaad1194c6191fabcf7bed2d2459edd1c2ccd665ba360b5dd5e81c6a374991add2e8a37ff7e7e1565bec6a8b052dbff9e20f35a8341c12c8307

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b2455393cf8508886d4fc51e2e86f6b5

          SHA1

          b3352a4797fc47eb1f21139213cc49ee90996dc2

          SHA256

          c421eac7ee9a9a0117503dbad31a85fd4d554b3b899ece5e68c934373e1001d0

          SHA512

          17f6cefe897a1f7983c74a5632203e929ff57b90075cf12f50a8d6370504b0c57fad3f0dfb2a02e60dd301facf30e35f9b2e5a40e0687cd25b2710202d252629

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ca6078c2d08ae391f53cc7e3b3f82e26

          SHA1

          fda96a1f8c755d8344a5cc8f1985989dd0184a00

          SHA256

          a149717f5c8ec74377565e4a3bf5935e72a18fb4f27e72ce1c9d71cad5fe6b58

          SHA512

          2da9be93155f24ac7b528b83997ffd45cd101764160efd9ebac8ce32f79d6c329ff4709fe95d1277b9d414e387b44a0d264dcc1a3f305a2530449e2b6ecc1599

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2242107779bb75ecac0dbab20e1fa903

          SHA1

          ac465215ebb6e1da77429d1a7a949bcab222b80c

          SHA256

          edb8998a902316421140b64c1a3e5afdb1f06d6681fa2d3cd52ae977d9d9bff9

          SHA512

          66b9cbe348df0d5f6af0a81e9b5c3afa1ad8e4ac708691d5050b0967f10955c0236f3ed7854e78c61526c4004ba5547c036ab649a351f4d8b48b5c716f6ee822

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b82c216b7d7f34b61655d003730f6d88

          SHA1

          21cfa85808e4cb6d72a8d820e9d89d140fed4c41

          SHA256

          22481320c79c1743aea79516457ddbaa2af59623e1d1667ab4e56f6f2d34de91

          SHA512

          74e56097ec0182ff656517a6b20642ad5c10e48863662182a25c605c247eed8b04ceb54bd63ea3443838ff51045e527e2c9ec8f34c2ecbc04012a92e6a4ecd75

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          138e28fdb132162b655992a8b2265812

          SHA1

          9811e5c6b5be75e9f59ff473e6ac8f42f7d4212f

          SHA256

          6428b602c7bbac372c1e44580fef0e78ab08712017cb7d59f693040ec9e99906

          SHA512

          a3487769d529a6a25c0b75c9d0db53cd996530cffb0a25e952cd3ecece43b73b8979e9dcd3bad2dd5dc67a0dc99aa50e989c45c884cc8c607b02618ebc44e412

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8db753902332e7ae62807304f10d0543

          SHA1

          b0f476e338c7c264dfa3190deb9331ddf12adc06

          SHA256

          4ba16b88365666ab94f80cf2191cbcbab881bf2023fc33f13e109e0e1a7622cf

          SHA512

          f8de42a153583cc3109bbdea69a2da7639d4c5f54baef10e5495a7c6e005132fc4533335c25677f6985c8300b94280db7fe172ccb5ecf24bbdbc65b105a1722b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          79e128a4ac09d2d5241e822709ca976e

          SHA1

          7197dafc8ebe38ce8c4514c40d744b4a993b58bd

          SHA256

          35366ddf6cb5bf53205452cb322d2ed0ecf08fd62518160e4b5fe725b716eda4

          SHA512

          cb03a5eeedc8fffdb691630b3ce8e31374e99b136f07ea3c457ce638d4db8d12a814a8232845e3496a72c1872365fccd3baffffe73ff4eb81883fd829f6fcf10

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5403caa717c73bbc8ec561b695cdb434

          SHA1

          020c623fc032add995346c73c267c697b2dcb265

          SHA256

          0d82e7c03e0543669890126c10d564e0fb736cd6aab9e71089708d1d077454ef

          SHA512

          3aedc9c732498e02230b587d0e5a7f2958696aa941db699e88d604a4292fb750024bf22fa6e5d8043ce4f6bb3983001a2362b94adcaac9cd79ce0e5c4221a4c5

        • C:\Users\Admin\AppData\Local\Temp\Cab1BBC.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar1C0F.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a