Analysis

  • max time kernel
    136s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    26/05/2024, 10:42

General

  • Target

    7537daaddc81dc26da880a76b4053067_JaffaCakes118.html

  • Size

    214KB

  • MD5

    7537daaddc81dc26da880a76b4053067

  • SHA1

    5797cfd66cb18f093f2079464f37539b74db00ab

  • SHA256

    19a77f813e4b2cc83517f663bdc3c70460bed3c90afa2a4b9910d5021c3fd1f8

  • SHA512

    f92ac743b52a9f5e8810342da0bb88923c7c3bee7298bec9ff91d77b841dc03aea177cb55a36e863fb49116358585b27d226fcd9d8f8ddcde9c0ffd33bea64eb

  • SSDEEP

    3072:ArhB9CyHxX7Be7iAvtLPbAwuBNKifXTJv:Yz9VxLY7iAVLTBQJlv

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7537daaddc81dc26da880a76b4053067_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3068
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3068 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2888

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4b2465824dc06e8597d8d8975f938301

          SHA1

          f45432c383ba5563eb0b3a35fc086caa4b9f7db1

          SHA256

          12b411f4ecb199fafc3c0e5fff5ec8d48ee8483ec8f8433604103e16974f0faf

          SHA512

          d9e42a83e78b80052017463f14e784b8ab28d6f538d352544d49ade6018d93ee8ccdb3389949270268fbc1d43837edb8f43577f026b7195aec66ad2cdaef3dd2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1a3f2f6e2f3f4577e46d76cb721085b3

          SHA1

          961a9c3246b7ad56114e5e6049231028ee6bb1f8

          SHA256

          c5415f2d013d983f714d53419ebdb63d4bc396558fadbcc722d50e502914c192

          SHA512

          6e3ee423a309c68b050cdc4b6245ffcdb9774af9c4acebb77a555235a0555da50d7986d212eaa416f23b018bd568ff86c497be7ab27cbe8d65514cb7cb15054e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9fb0e5a256502f8b1a9bd0de9433c25f

          SHA1

          72d85f62e8c515853444ba03e56fab79b494c7d7

          SHA256

          550cef9e09388c1829fb818ab9db5a1dfdae8b4ffe66f021e67ab5a25f42a997

          SHA512

          f6360955866014edc0ea9307fa2a42db9db33534678ff5dcee3a1c797086be34b75080868cf7f3f30010ba2202e251a2995b94d17c0adc1cc6717ba10806a407

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3bdc8da099d9bb9674664201d0aa2f51

          SHA1

          7a7f4351e73887ade95ac17360c8cd953fb5db0a

          SHA256

          e5f3a2e212de982dd602b32a355d0744e01b7dc4bef6ef8de6658980146690eb

          SHA512

          d606be9096999e862a25e186d1400d21154fdd0312ee437ec74ac0dceecad4ae5c32fcfae4a1a5eeac3dc825c628f2cf65a7a29887adfd8b522ff7a541c3553a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a0e6a096a8becc41a3113206ec3ba4d0

          SHA1

          0b459de859e72111c54e1ed74083a31e40b2c63a

          SHA256

          1f55232cbb7fe6b3f339435399670a1a836b49b582c2e2c2f8e379c248ebcb7b

          SHA512

          06e14f59c7f12c368db628af23a5de9a7c131242a3189248f184ec50e6b6492e86cbab47a5b7888accef871efbdbd7c50a725f8f8a8b5a676571026605f69825

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          19ee107b585043c439cae67506f14f0a

          SHA1

          803deb10752234e8cb5cd8952f0f62d253365819

          SHA256

          d06264ca0355acf4f5c222db3bfd7e9265c7c2f564441ad65c76857ce62a021c

          SHA512

          c00ea717dc893a4424efa32e803028574998901f637ab69ad5512486b454333a17f1c770dda5227c0a03ea336826491cb7cac30cc6f653be14b18a12a14e5056

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d58ebf3de4834da921ee919d3d344fd4

          SHA1

          aee7bb03ce65b5df98cef73ed18d1612bdb43894

          SHA256

          458fbf1039dd7169610b094a0438790d8e826761135f3fd3bdba3103c8023e6a

          SHA512

          30b08b22434ec70c84f1387f43f1409f3d0b1410ce817690e7b36329d14d51b1c56b51cd70d29cf27295f0300d038762e6d9b677e2a86f9887c4e71bdf1e9e0a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          571884201d0e561fa47ca92a88d408f6

          SHA1

          5f4ccd256c9443d5ec157f7f00b0047a390c638d

          SHA256

          6b444b6ac9cf11fe675fe09489624e953c010708cb8281291620e31be0887992

          SHA512

          9c2c7cfb231169286e0eef41086fa5027d91aeb5d6bf88c7fe1b1b85db906b4f79282540c9abb95d53a374de8e44e7ef50674cbfef54b415a040df93186afed8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          12b3e5a0aa9c8ffc88af24b97af0e97e

          SHA1

          cb7e043c3565b076ada35f04b2a900b02b5a9666

          SHA256

          f4bf1e8da004afadd5b1fad3308117f79ce1228a1860f8bf3e772a6f3200d248

          SHA512

          26f72a3e10d06b3a5e5a95c2a174e04752828a80b50904d3464f338a3b2d83aa9d58f74e44187662e99979e9d47bc918a05928ac87c1600819c81f09f27ca46a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c7e102b3394d55ef71f809b8bab3b629

          SHA1

          bba6b45ccfd098d32f0c8f7cac20ccc3e52e770d

          SHA256

          e3a48e2bea6d559c2fb991f9b8b9a7b6f6611284301f16b30a3df24833b2721e

          SHA512

          b1f4b53acc69f8735a1d28cc076ea376d5d58e88aff112fc4611d30c47ac9b8358ca43a4b512e0699508a0ba5ba4da111351861b7bd421c3d2e2c98b7f61e359

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          23415f97efa53ac50c8e5660c09eb767

          SHA1

          d716d11f2b9d74c339a5f35e7ad023dd7ae64a5b

          SHA256

          4f002f2cd068c854f8b7c34ede9aa06abbd54746eff2812a4fe97903b3493cad

          SHA512

          15636cb673d760399f09dd51319045703d23856fb52e78d5e4fccf25febd793de0f4da4bfc9cdd1e584b06109ebf5a0eb80ee6fe10c04bfc3c0d06215aaf32c0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c68c1938eabe50f8f546d77daf804ebd

          SHA1

          738c032edb2e6d925e07d02c520e7dd0076c97e6

          SHA256

          aaf676a6bd8d6c20a42bca392ddd85de8ebd8efe4d63d945f481e0d508bba919

          SHA512

          c2aa6c31397cb0f080fed530ec3c08d436b11f802f3e2dd7536c9bc0cdc3099e65dc31f2dcf6888b6f62834e1aefb1d0d3c4343d8518f5272a1e945023b86ab9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          667719b4457a62ff5093f12ab2f49025

          SHA1

          a37fcfcb6b5798961dc9b481c3020e5fe5820e7f

          SHA256

          6de05323dd3fa3d6ef1b07c0d200c4ea1f084ac4487fa67fc9a5d36975bc099e

          SHA512

          35383930c6d7a33968b82d39dd868b6eabc96dbbd4c3fa5c84a5b6fdf839dd5b322262ff16abf0516aac2b8ff2e141b885f6ae03e7e94f1a47176a9655c00a8a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4c60715cbbc87d36cfcee4a9a4186116

          SHA1

          3c9983d7bc6b007ca08727c9d81a03517120e1b2

          SHA256

          9e818d7c88f24f3a0522b8956ca9a3591b06147a074ed37e1bfb9a68b28fd0ee

          SHA512

          3afdeadb26caf4df7a91fef5390322acf244ad89f782d49de98a73473960853393a9fad62ad027ef3b403ae2b38cd5a734303a0bcbee8ce303f828176924ffc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0e08694b6fc4280b53e8bb0c3478ce92

          SHA1

          96fc75355f5107a87f62ea301b0f675aaff9b385

          SHA256

          4c48e3287242a9d3cdb7fc456acc53b2bf4c2efce6573b23366c2d487fc28d9d

          SHA512

          8e2bfd6f0eeae1f8f83c50fc71affaca2d0365403ace9ee5f150997dd337f36b00d225c77fa80fa9e0180687188a6219f6ebe747a2c27e3f925f686ae94a41a7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          00997ca30a288e882dc933800aaf0fc7

          SHA1

          f451d2d01a6af25d2f6dfc34b9d3a0ca44cef487

          SHA256

          5c8c11c25117d362c3e76afcbefb042646fe4b03d17fa5e833e373926c3f9262

          SHA512

          b5407d68e778de263d39a26ecc1db441b05343c515a736614135b443d933b340083530eca949bbb073e18d573c177e4b5f708c4e045657df849d811c22c0e694

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d112401fe75954265d80964db1c2828a

          SHA1

          c59003a7395edabd0c449149e13a0e2dd8517839

          SHA256

          74634c3c422ad00a9939583dcaf9a3f9cfe6d2fb248609ef8c226c805c3ce2e3

          SHA512

          abfc9a92760c3ae29808af0347107b742d6e097f178ae86070f9e936b66772469236dc72002a3a0293385d581734f15e5a950cf35dc4477e44b5399726a24724

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3c7cc557f84d31e20829f87dea4d1696

          SHA1

          cf72efe427e485d90de8c7cf0871fa504ec891f0

          SHA256

          a874716a08afaf3c8ebf1fc68f2918fde92da6a73e1d90f8bc566a8ac72d4e2a

          SHA512

          b60ca2c7104d0b3f729c76c17006981e3e0536d56ab144c6aec43c0c588a75c8d99be1068308cff03833da0ddb350e8229c955a5240c25e6ef889e11f806f6a4

        • C:\Users\Admin\AppData\Local\Temp\Cab2414.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar2467.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a