Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    26/05/2024, 09:55

General

  • Target

    751a3e70d2432342296cd07097fa4d39_JaffaCakes118.html

  • Size

    736B

  • MD5

    751a3e70d2432342296cd07097fa4d39

  • SHA1

    6cd202fd2688496b7e22df1f33397c31ca482d50

  • SHA256

    971870fbb7343525b6acbcaa2283b7aac766d62c8b8cbb4426b97ec611b87c99

  • SHA512

    3b4378bc9c47e24b2add00be784e02c352edfc0e08ad6ab6e03c5d2caf1a83e1fddb0ac0985419ccf78d3e49c8e47c559e671667408f6f6128d970a7442f2b99

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\751a3e70d2432342296cd07097fa4d39_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2924
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2924 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2492

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7ea2943036cd20425e5df891c891691f

          SHA1

          906aa07489bce1029b88555eaaaf8c388b24ebf7

          SHA256

          5596070d103a47178a2dbffadd615f47a94226a162428aa3b6909eb223bdfb58

          SHA512

          e1be8d080a0e65f016b3f9299985476763b19f9ca8924686a943d105b4642cd08e48f342c2fd2dd52f436e1fe1a5daef9ac9010b918305fafa267b2fab616542

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f6c6e33f3a5fae247a9253d797940210

          SHA1

          84fdc0105cece37dcd7e91920c403cff294f2d41

          SHA256

          51a296e2a2a427faecaa51a50da176b61bf0c392f96e6e81b1fe818742725633

          SHA512

          220c14382a913479c0bc4b07f5c8588bf8031057969098f80cce36f7f54cc43dc6675f9d3f610a43b56104bc12359e6c31eb769b1690b5150c8036e096ed4390

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9bde5a73a2f429d270944c6618d9b417

          SHA1

          66a8a78c1f70342bd6fb354fdfa6106c31bc2182

          SHA256

          c5fba6c9015b1d2dabc6a6da8e0cca8540b51780646923a59e52044b60ca5e3a

          SHA512

          ff133d0be8e8a484e7ee875010caeab9313c207d12eee24a42e1038fda6afc5a136b90b4178bea2653d4980d133d7ea1d1f717f34ff7d8532239641f3d147826

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          acdab9b30a19e5bf3a88d3c74c807541

          SHA1

          0aeb1551bf8fea4abcde8b3d0e208fc8558773f2

          SHA256

          b70595d9cb53ca9c3b58558846adeae403b809506ff8bbb1417496151191bd53

          SHA512

          0bf6b60612fcb555f40feb123858c7a659c09994127b1be1f5d50a590293ffa8e2e65abf0afed08bae6d86f924ae6e60029b7836b7399d3b36048c37862d1f90

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4ad0801016a8160437448dce15f5bce8

          SHA1

          b47a283366c580b62e26c1054cc1f88839142c6b

          SHA256

          42a96a9de03c0b2fc05d14cffb0a93f2b68b5335f11cb6d53d25f6f12b5deb8c

          SHA512

          40e3abd8888928b445183a28285fb3957f25c268ab9c6e43bcfbf8b1cfcd0d4bf4d2a41d15483b66d2fa3c3e9c0bfdb30ed07b8c22621c8d57c339f5d641a7dd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          155eb484ec3cab0f2566677b62d8a6c2

          SHA1

          30936806bf4f280b802732221c81274c2b393268

          SHA256

          e42e81ef4fd549ab0718b0f4fc103620411c688aeccf63fb6d1821b235811e28

          SHA512

          cf3488f5e45fdb191e70a566081846d0740dec79c4cccd06504ee40228dbbeef6b2fa17722e2685109d1b584b4a2a9c35d605a50dc10fc87559c80c4e22b02d7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ad34bc921e6bef2d7e67c99e6d0813df

          SHA1

          cc457aa558eb40daa426c1d298e4fb18c3883c1e

          SHA256

          1083904545b695e057ac741436dd4311e2e46aafabcc97d5aad80e9faa8d4244

          SHA512

          a4d682ab7aa038142e502da6dd81aa73b95f759fb75b744f2fde8d4f0e19db97d345eab8db93302a6e4256aedd2e9d6faf93dba6fbf3896e888b79f8dfe67db7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          421ebbd3bcb99ab60baf7d7184e0ad5a

          SHA1

          4b04c5060ba8b131329234ad664ad14747f9515e

          SHA256

          cf0ba788a0ae5ef751a39d85a85a972eb8d97e4e3d04985f55d10ff2046d8adf

          SHA512

          cbbf00c230a66b677ff0d0f5e2adb14fb7c10b32d661c607253e8334438a48664c7e38a56baaa3da18fe424d6a82ce98842494e738e14245e2f7549dd6bc3c03

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c2592ec82f4726e48c9919c45c202072

          SHA1

          f4852d6e676d2533124120b131ee859aa7540000

          SHA256

          4823e25bef830ff654c0dcbe099851c6d0d1d150e870293190f01dadcf18c049

          SHA512

          c283126ee70f395631298592f9bab9b33112103dfa98909486da85aa5a6c0893012d7321a5b09bc214dea207ff4adefaf8a847304f8edba26698c9d26c154328

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8bd03efc9f91dea2117c0bf79801f933

          SHA1

          a4ca6eb257b7a004e0bd3d557b49f3054efdbb6e

          SHA256

          6bb8968ed9ebc725fbf5c1bc8ee11d2a4d235f93c4ef60f430a0e5d79f71ce65

          SHA512

          75ccdacc7b062ff471470814fbf03df83361e54a42db9ad231cfe1727e3149a83421a9f6ce8d8d65c096d5450f0ba187940122936e990ea2c58af623a3446cf0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          14d709031fb0e920287d8ddf9903e046

          SHA1

          48dc190e9d379f0e0b60e8631de8f3ca5bfd7d6b

          SHA256

          5723f2cce9d172a57385aa30d3fdb0585e30d45eec170bfb1cab18015a503a80

          SHA512

          cf4c0cc84265143a98cee49e389b07d59592e2a695b2bde308f0aa1d31d087bf593c86efea4800da4c534ede8e6a6b3b8922ade2833bacff19dd29f50b398fd1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5976cf29fc265e853f6f8a1df5c1b588

          SHA1

          af98ec8cf8a491d89e59be25208e6d96d50f937b

          SHA256

          6ab55e36c4ea33803bd6fdbd914d20d9bea357f9720cb9a672e4b2408ad775e7

          SHA512

          95dc1e7fb4ec94bfd467b3cf64566faf63abc7702a33d4aa67c985c71e7566f6f33e061561bed6e7a11d74192a9e8665588e8dc0b5e75dbb2a4b93f5e187a983

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f53839632158f4106b8d2e23c6147345

          SHA1

          88cbf3cbc7b0993db6e8b9b617ce581a4f12b0c1

          SHA256

          246b5b4df9b7fe7d66f641d8cb8618c01215fde1e92b1d7a40e2261075ac3d41

          SHA512

          1a63311ee98c42baec638db2df034fc1d7f6965e553e400ef5384cc528e84d1ab5d45a977ef2066d1a5e01d9e40c4780b42d29ef54e288f3017235d19efb7338

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          60ffff98d35b087ac87cad9fad64e17f

          SHA1

          ab35d670fb7f640ee5993ed3e4e87213c154cf7b

          SHA256

          ad83adda8769b914636e7ac60353c96be8054deb418340679047da63a3f3fb66

          SHA512

          b2e50da899240aae8014842e1d43ef17fed98a213d80a061cc0fc3ce1f757c28a149fad34ac2baa58fb02edc80afe3735877d75974392f16994589aae359eb8c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0733e7e97021f9e3f3374963f2dd88e0

          SHA1

          536dd9845af8990e21ba0f93f0efb6803e5ed16f

          SHA256

          90ffd4cb129600a598f4731ba4aca92ebbf4f29b8d50e8e9e27bc31c8eeafb8b

          SHA512

          3f81f4cb0f0c83380791c8ea224bcd86b8309822b875abcd0e2ecf2a8e4208307aec9f0f26b5fc3ef450e236a5ae76260af044f1288dfc8867c462728857497f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          05a0dcf741229b70949106d1a352d855

          SHA1

          34da7dad7af54300fcc99a26ca609ce39eff8dd6

          SHA256

          e0afc22ca1b857c116ee8e2e2f5986f06d4999d59db5d347e0fefc2ab9ae315d

          SHA512

          413699a056973d3dd912ac79298c8df1635433ae40e1b8c993a7bcb349b52cc52ae150ceea840c72880314bf5f96bebafaf3e02e5792b5f28ca44de3e2f99998

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          90b8c1ddf01edf9045ffb843608f6885

          SHA1

          348b57c60d1898982913cc2d62c8b206d868c497

          SHA256

          8820a45e1b18427c018896be04b0476c6d53d2434ef8b4c67a2d4c0a6d578c44

          SHA512

          5ae1a1194fd5c294d8442dd776460feb44e65b6c9abfe40fe7e0ee1452fc2c4e68ca4dbade3178b60c80b39e098aa5db07cd028a083e4d1da18316856abb4931

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2527a9a0b615d3862a3d29872b20ae7a

          SHA1

          fcbfea9341dc0a834c1b6fb99c1128abba55dc3e

          SHA256

          3d470c93e9bef953d9bd57dd5a02970e7ce8bd638539a800259f54980af7deaf

          SHA512

          fd62e8b2ae16a651536ccc96545314571cab6e00038eafb9b29a6d97f1c8d2a2da396788e13953b61e978a0f1d7cd44e4db7b7158725171bdb52169ae3eccff7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ad078436ac61bd42a8f65e4f4b0cfafe

          SHA1

          37f8a8f8a8ffba8e29b49cd5901761472a6741e2

          SHA256

          8611215823ecc2a0dbea9c21ac1da775e2986e0d0ca5e1185457cf18477e735e

          SHA512

          a5a4b07e0ceb980666144c3fa69c34cc96f0d36f917d04348ce63702ae2f4fee2e56e49408c36f59842f1ad6593fb544d7f8f8011c8d9fe91740aa3d7e859f00

        • C:\Users\Admin\AppData\Local\Temp\Cab13DF.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar14C3.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a