Analysis

  • max time kernel
    133s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    26/05/2024, 06:31

General

  • Target

    749a018ec111af6f5a2ba769eee08f1d_JaffaCakes118.html

  • Size

    4KB

  • MD5

    749a018ec111af6f5a2ba769eee08f1d

  • SHA1

    a634e13128d9db5880f700a37a5107ffca522ba3

  • SHA256

    657892b5eec83d5d8423cfc904a7782e4ffc0e425ce175b0abf4d10234f3bb20

  • SHA512

    4f4f4f54018acb2c848aaef85b00ab1aba56b151a824e40d29bc35136bcbd49fc1f9fdf866e131e1dd6a08f66d4b74fc1773d6f6da0f966f7e5f2e3135cd745c

  • SSDEEP

    96:Pk7yJozTGknaEFHVKDZTBJl7sNjtXATIQFMA5e3fhrvDJUgwa71D5iJ8oY2F9p/b:Pk7yY1aEFHVKtF37sNjtXATIQFM93pD+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\749a018ec111af6f5a2ba769eee08f1d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1884
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1884 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2620

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          937e253c2631adcdb5725b2dc8b42c0c

          SHA1

          4eee47e9667fe67fec99b0584e100de96a321a23

          SHA256

          60b053ff9bc1d03a83141e1a20cf361d4da06a73f00a949b83da07743ed9d67a

          SHA512

          418f2cb72292d6dc2d5d7458b8f4d47c82d398de36576629715c60f88d2ea815083102e489f805bcb914ce1b10869697521815a21b36b691707322f0c27f5882

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5fb5ab495498d2d738a7fca6f1be8db1

          SHA1

          b5c2b268686496b8035966ad5b7674b8f90d6559

          SHA256

          7d9254b7d399130efe0b209163e4131610238bf83ea548f1fa4c2fed5a9cdb6e

          SHA512

          c1547b0240c5e83c9232ead55e03e652e815983dd2eb867b5404801313498a8ac0ec958c6486fe98123fb442b6f10bd782117dedd897f19ba596c1916eef3ab9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          35b6ed299d71eacf18a91acdcf01e2df

          SHA1

          d49d74f35eda7767c5edc5a4974d652e1c41fe4a

          SHA256

          148dec0c0afeac288b470497468b0b68f51d0b1fb1488232dafca7608fbe1fcf

          SHA512

          c93f0a207cda17ff8ffadda5b5a091d11f44ff046c46d82c75d903a0685bc98b553a7b085c5524780886195c419ee5001d47777e1d8377746add5c96e9f15624

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6e3e070ed6b34b075eb789fbce2f1802

          SHA1

          d1b76f8316a7b36c235e81a00b5832155c7771bf

          SHA256

          bd0eeca2dff08cccf6f235ad25a1ea8e37957cd56c631840606a932e6c09d4ed

          SHA512

          b2860e222d187c10c471c5383c549a295bdd2d88335cfda412357673bc488e76f95bfd35ebe24e967b2de9e5ee2f95ee12105819844afd09b5be2da4d7ad07d0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8bcff0d067e0e10e68b3b07e3f7795f0

          SHA1

          11da1ffd520bf9d2aa103d5e3aa63176475f5d17

          SHA256

          e2f8c75f4ab53f78bb01921d2b889cffc042de4c97ee1425cf3f6f4be31be792

          SHA512

          a7f277964ec92d1da791f48036a7a426d83b39acce9c0d9e92bff1911828e76de058d2f00e51c13d05b61e68dfa65fb23a21fd7f05b6f010dedf0da6c5d9eb76

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4b6d45377278e53c1d9f9fee8f20ec7d

          SHA1

          6502a616edfb7a8ab1fa2dc59c4592513e7858ee

          SHA256

          41940a531c46388c9a6bdfc864f11c5392e90823e18eca0f457a5745cc4935ab

          SHA512

          f941b38d1f1746035b49b07c819690ebe0bf7cee6fe53cc1ee53606cd0e8caedc036707894a100f777649cd40132edf024ac1266a0e20c9d067910e52d474d1c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6a59fe575a444d00fde8ca74a66cd89d

          SHA1

          4925429f08f50133aaf2dca5513f2f7fdf837808

          SHA256

          43003546d019f02d0f0949d8076eebfe68b01df3002faa37ad8cd5dd632b1190

          SHA512

          0cb562ae9dad26b5e0d23fe635bf8256809e31e146bbcd8dfb6ed8fafee6f2db9384febc83247a99c202311bdf0432c58e7dd0e8a15e58ecc0ff472374c2ee53

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a85d4e722702f6d27ddda3ee5d58ac78

          SHA1

          2afebaa5abf21adcc03797e2a74400ca7469375f

          SHA256

          7ff386eb6ef5ab4fc11e6d1af2426012ba09fecbc49c1cbaad378e10ab3413ed

          SHA512

          b0a5b3af0cb3f0adcb8020d1dd9a11bed6ee461994df5bb421477f31b00fecb6f36fec1b370042bff1895e66c6697f15a2ef812c443f566367598b8cab3a3af0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0623bc4f3caf40453896aa7094c6fcec

          SHA1

          9f4015d40c5050fe4371efcd29f67dda0a09910c

          SHA256

          19925e7bd0bf168414b42b92ed35b7862fe7cc7f69dce4073e077b53bab9a05c

          SHA512

          ebbdcc0f5ec9b37068c8990fa9305c64ae064a6cab22cf34d4e65e93f05b4894edab614a6fd79463c88cbf9c7a46a8b8dfdd3a5bf3d1ed77841c3bf14f11cc19

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          057d871bbebc75d13fd2a023f4fa93f5

          SHA1

          4cd666ccb5e6876c699303c22deb36eb581ccd01

          SHA256

          2e73243dca36bfa5bd7bb014c8a719722d46670769736e8d21b9c925691af79e

          SHA512

          5188e4f605d9a9bbb0bbbe96bf40debea4f7387c33271c5626a37a46347d18e5bb5a69771c4622c72280e0a59af7083cbcac2d24b6f35b52ec0a7d02fd1f3c1d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7d3e916e72d4a08a692007f5b626654e

          SHA1

          0e6d44d38c70c5ca8ddaf4e7da8a12cc51742c3a

          SHA256

          3564808f34882318ff6796214c003ccdd83d7aee2c6660fef1c761bdb22ce08b

          SHA512

          db5b55ac17f039912d6359d3d2fa1697234a1af65d8ab3d1965a2c794eb70a52c194b0484b3cb06f3d1535bd1432011750796d8dd6370e69cd79dbefd0727f84

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7b1aa295e53acf61aed54a3d845ad78c

          SHA1

          ec2515e224bfb084bbe9c5a3e889e669489395db

          SHA256

          26578e8010826f95e2976d1e0d2e296802f9485e7ba70389cacfa514febccfb5

          SHA512

          95a2c3832f0873629f6cbb48fccd2f4cf97e10e5d13579a7555501c26dd4b86a61972f13026a4c1290d17b8dbd9a03c0185d85ee12d75038e872d7444a0f115f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ab5c67bd25cc76d00399a4ba2fd42ac8

          SHA1

          aa9e8fbacc72e7ea04606b1b4ce0dde2980063b9

          SHA256

          49deba5e43a3fb6bafaaff4c9bd73e5fc869d3033c26999b3549face3a9233f2

          SHA512

          9ed959c11d924692d681c7c80a469eac2b8849c180a3d7f89ac9cce62af1e60c91a372e2cd2ea19dfc3ec9bf852c4c07ce1c3ef655f8a0fe764d98a379359495

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5e7223ec8aedd61617f7935e2f5b0dd3

          SHA1

          281b086d7de62969c57d29e057a6c8ccc6dbb148

          SHA256

          f9d33855c00724c58ce3b5ca2362ea75b6e6357505972fa59b8b5530b712259b

          SHA512

          e55e497009830e9a4a7103923fe42d7b16ee4747bc53bc7ccaef284b417bb5ef9a6330463a1b680225400a560f5659a21a1775ddb22ca4ba78dc590c9aaca60a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2fe4e35603d6176270ee823c3617f725

          SHA1

          93f265d222ced52ca1f5650e7e446c9381850197

          SHA256

          beb5be7cc30a1b517b57ea043d51893fd0f1d65d163d222a8a5ed5fca0d75055

          SHA512

          988de52149430e46816534ca524eddfed79dbe168770cec7c7e7ba87e601c52495eae7f03270672a39557dc68a561421f11ccade0fea4535b0592ee74c5e8cc8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          82f8211e73492969b9005e34a8a0b33e

          SHA1

          65a4279b08626473cc485818909f1e7fe4743104

          SHA256

          7660c7d0eb21320fc3b6ffa0b4fd4a66773b4796e457b7a6eb0f463848d0d6df

          SHA512

          414f3d0f436cfbb4a127fd9f4edf78878b5a8682dc76b21a8d3034ab582bf5521e727264432b147f32e6a2a8c19872f2438bfd58163c7ce685f77fa8985e414f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c2cfe165b2324722c74ed59614afa3ce

          SHA1

          c3d242766cd68f8b1ede5ead21aad2e18d4d1990

          SHA256

          c50ef23a892a13a5dba0b6dc179db698ed1b40deeea4d35d9c08d782be70f0a8

          SHA512

          9fc3af74936279677d90b877fe16c42962534fe01bae453f3beb2a5007310c3f43d24953b891f32d9624e8092dbdb67571f49dfa80b2bdc99ac0e69fed5dc7e6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          31cbc9135d25e46d96762044249d11ac

          SHA1

          f2aa95cdd78839b43cab3f5072cf8993f39a30db

          SHA256

          caa1e55709261f7420c3fb1165ca716dd32d1f87a5356e785a1b2a301db5b20c

          SHA512

          d0ff198aca66712238a97de9e713dcbdbed737410543649bb9158dcb75a7b7d907bda4bea06df6e4f37f39e92ee4687669c53ffd3374f2c9a6a318922793c1de

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2e7aaf0808f63996c543f10cc0657622

          SHA1

          6216e39be24c71d0c0da6b7e06574a77151c791c

          SHA256

          e63af4d6b58dfd3dae5082875580cf816edfe60f7675ec945e18bc7f1061c177

          SHA512

          13bb3cb880d7627d70f921baf87525539a06e38754c727dd1062a53438a290027d9bc45a9e0623e97c8daf9441b0e24f8306acac67d459adb1f69e437bf04bf1

        • C:\Users\Admin\AppData\Local\Temp\Cab32E6.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar3346.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a