Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    26/05/2024, 10:42

General

  • Target

    7537450b149a5422749211ca550e5e75_JaffaCakes118.html

  • Size

    36KB

  • MD5

    7537450b149a5422749211ca550e5e75

  • SHA1

    04f52e582fbc42d4d30c77813a0e7faba9423264

  • SHA256

    b730191bf624e934edc1e92c44f66d053968156fb32ec4328fd77db7b52d144f

  • SHA512

    216b4b2f01acab9b010adefb9230f5fe4626c55013f207b20d6a3e0f218dec17b8be272dc20223966fb0eb5577f8e167ba4ebba609a777c35a4b30cfa92f3bcf

  • SSDEEP

    768:zwx/MDTHk+88hARcZPXPE1XnXrFLxNLlDNoPqkPTHlnkM3Gr6TuZO/6cLu6OxJyd:Q/bbJxNVqu6Sl/u8ZK

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7537450b149a5422749211ca550e5e75_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1868
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1868 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2348

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          1KB

          MD5

          beba3522cd7eb77a09fe36abcb252a4f

          SHA1

          220cb347af597d4f8aacacff27eb0ce64207e99b

          SHA256

          63c5ec564440d74f3c2c2a161a66a22dbf30b03659f3309419a359ee1f8c0d4e

          SHA512

          35eb19b0e1061370a951b1ca3f66288c6ed1732ce7c94fc663eb3959383e0f5d8fc28b3ab1cb9f5f3cb75a314c3d1a0a62694f51490760ea88e8772916f49774

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B2FAF7692FD9FFBD64EDE317E42334BA_89854CA6A0F0936A4D2ECA78845CEA25

          Filesize

          1KB

          MD5

          29fba829e51d351380b2d06fb58593b0

          SHA1

          c629a7e872a366d9b625ae5d0b7bd43fa52e79bb

          SHA256

          ac0ab66007dfbb74a2a17294f21acd13f3eafe9b1654c28bd31a9ba549c4f98a

          SHA512

          b517e9d346763e340d5a81567ae7bbf202c24d8a229f51bb2cd26789b1e6972b284589dce542447f22e150ea3516226764cb8530a03f95a922d9c022af512df6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

          Filesize

          724B

          MD5

          8202a1cd02e7d69597995cabbe881a12

          SHA1

          8858d9d934b7aa9330ee73de6c476acf19929ff6

          SHA256

          58f381c3a0a0ace6321da22e40bd44a597bd98b9c9390ab9258426b5cf75a7a5

          SHA512

          97ba9fceab995d4bef706f8deef99e06862999734ebe6a05832c710104479c6337cbf0a76e1c1e0f91566a61334dc100d837dfd049e20da765fe49def684f9c9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\D0E1C4B6144E7ECAB3F020E4A19EFC29_B5F77004C894173A10E3A199871D2D90

          Filesize

          979B

          MD5

          18a1f140623e21ec4b37490a7a021f78

          SHA1

          e958fa0815360968f60abca23432fe17af3b407e

          SHA256

          356a6f6647021463249be49c7f3c28346f62f0b001fa151c8839cd2f3736060b

          SHA512

          eae7006a5504ca343e4aa8173c86eb4db213f09e0bc2d6715ca1a65fd4c5a9f124560125c4e208691707be8ccf3e85e12e626e01303fbf741bd1788e8d2f82b4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          410B

          MD5

          37dee15fabbb65fe97a1c69e3acc43a4

          SHA1

          58255f53d240b7b7b87612242e9f34d8bf551148

          SHA256

          7d7ed863d6fc1e3863dda1b03712a8ea26fee828d2973464eed89bf0764cecb4

          SHA512

          8ddcd4d494159bafcbab5f46c401ea775f02b8cce2f96a35b3cb699dff4ee0dceb937f393e2d202f88cf7726761c3387401e0b66ea755fd5e36bf34301c92f0b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2bb981641c7c0fec12cde3679ec2e4a3

          SHA1

          d3b5fff954a735c7f2e4f7be5fc57703a5a05fe0

          SHA256

          26888c6ee4d32c4dc9a0e6c8aaab76c85f8bde1c5e7491417b672b49c7f8a350

          SHA512

          c2285179fa67eaf5117795a4e06e1fd02eb32b85ed5803406e687027b89a696962abd35379e3214b496dd2027bc2226813f0af3c2675a22e85e06fe84e33d985

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          040257a6041f784050920bbc0bba85a9

          SHA1

          683d587f9e0ceebec01e7175072202dd510868cf

          SHA256

          dc758297a0e1b799125d1080e10ec9b10c7b3c07c15bde295393e524b71c5b9d

          SHA512

          86f1f16bb910cf10c8765b37349fc4345518115144b3f2e24be392242a1c4c81bed7174dafe552cb1e390294607d7593cbcb3f61ba953f1e51954435fb85450e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4a40e890110e1976beb03dcccd2545fa

          SHA1

          d3a06a867eba4432fdae296663135a7c265a8292

          SHA256

          e5d8bca0e1ddb756a87de32ce440d59ba56e806e3e2969b0b1ec972a15afa4c5

          SHA512

          6680fd9555017a9ce8d321e9d41435c7dc401b8e5aea6764585c45c549fbac0fefb94b32c39d744b365fdb7706b0940f93f7c4565d4e3cae8265a12d3ae66bb0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1eb879934782709096076efb1516c33a

          SHA1

          64b53df4b1f2b7e1d17c11d74f1aa8b07df568b8

          SHA256

          c46c50d2bd21ff523cd9e8437dfb2b3a506778ed98d8a968e965ed2252470f47

          SHA512

          a8a5a5de0a708e1481d03778644ca2ba08e21905ad63f5b073d1c8ea250a634d426321d0e52e0944c162374b667d2d5782b2af9d1a5e3a8d9fa05c6a921c77a9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          dfa883c98cf1c5ea990585844cd5d347

          SHA1

          a79677561dda053c6cc272c06cb0ce4b3a38d34f

          SHA256

          b744db2490259a7f6829bc1183c0e87094ce9de02505193c8bffd13e1c858a62

          SHA512

          2c73d1f290e86f345d978e38003d70a7d950d79cd3813f1a98c9ca5f2735f8876dc3cd24368954611ea14cab90e580bc23c2a1dd936a044417fb260442c06235

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          844f24cffeebc4aa9175abe47c274bde

          SHA1

          6e4e55bef4095eeb32aad8f06ec4a82134d8ad69

          SHA256

          e3db2a511034e5fe2628a319dda1ecaa61e1fa04099dd32441b3c422d917f43f

          SHA512

          24f1371572bda392788e7a49377f0a82bdd450b0f2c27729d12cb3a8fc8259705a1794c6a3f8cb03f885033600538761c80181d65745859ea51e50314ddfa2cc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d88ebcafd024fac010801f8d6e75fd08

          SHA1

          05d94fe4a4f626968dd5677933f8d2aef9c38395

          SHA256

          c5217ba9d3e6b4b18d53784e15a8960515def7fbf96b4cb86e2c9d375dc99699

          SHA512

          5c8c34c577f69e1c1429212a9af98177ee92697f7ba20c2d853d76da82b737c7a40da957794a1fb2b7fc671d34656277e1deee9386ce5e138fcf2a8fcb12f495

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          428aa84a6e249ae1e731adb0ff44372a

          SHA1

          699ed5378baa07eb853c7344e8bf1b6ef8425004

          SHA256

          7dac0db68f0d9128382e20feb1615b75945f4a5cd28ea5b7885a20ad3144686b

          SHA512

          4dbcbf9f2887b872636bb82ef7667397921eef08a4c7fb426b6732ac27de6596c11bdabb552de66f1968a6c493d2e93fe52343a8ad1426efa9f11296bd4c0ed1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          dcb97eb90aaec6fcd761e01a0af82cff

          SHA1

          664b80221629db56fadb8d084f60f7bb27f8e626

          SHA256

          cdcfd573e82fe952139aa3acc6db68b5f70f27f62733bcc744baf8fb812fb191

          SHA512

          79901751c8e4172429c95bb4e6652060432e3f64c101ae946e59321c1fa3ec772f643ab3eb609a797308c1d594b6fb9ade16ace77b68bc45a23cdac9931f66e9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e4284d820ca4d9fbb483a936e962693d

          SHA1

          6a53ddfb2d6063466716d4c7994fd2a8d853ea05

          SHA256

          dd9573bdf17e5f5831d320071224b208eba73519515cd40bd8950a238e54ac68

          SHA512

          e15ffa89d6e0a06593a785a7b11c48ebafc303540a3f389aa273e8b6941bd93eca72f85fbf3a75d8faab11dbbb61f32006ddf32f06dbd7c1dc794a548af77551

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          80a55ad57c58f13ade34b6811d3c8613

          SHA1

          8c2521183e8a8e115e05bc0bcb7f419982471993

          SHA256

          8f011cb8908dac0ffa561d08553b7ff55e55e722d47901a935b05be88b0ffb9f

          SHA512

          434e8b49e2ad0cfa888ca92e2f92764c7303d8df41322117cc54bf7960a93d9b7d5c7e94c51c97c496c43e32481a3a1b06e15d5d8e74ba52141b0cf50256a20f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a9336aa462ac2c28ad2418816c6cd9f1

          SHA1

          c399c50856edea26d2118295718a142160cdf6ca

          SHA256

          9ebfd4578c0663284145e66ea92f23932ac35e12f6b4b105906f43c782fffac9

          SHA512

          95a7b9f261b17dfe80978395f5a827dc0522193e10103f4aca0ab8b4d69174f64d7cc0bed9e538e92096c87decbef8532724f2c04bcc1bd5b466ca5fd4091f3d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          136787e7b067368f5ef5fa17fe81e45e

          SHA1

          bfd2fd505dddf8a548b95ba3086faa675624bf86

          SHA256

          21deddc62a8a5f6363ea74d5e0bdc0676fd8adffd85dabe55ff9397751b857e3

          SHA512

          842daab6c32d2a7169bbc186532e9113769e751fccd21a8a71b532bc92de31423bd9489e20b46de9a2682916975d3c1020ddf871fe1fee1381a339fc2211acef

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3dc92ccc4f67a227f0009db457136308

          SHA1

          077f58a0a560d283f59e8722a9b736e14bc79cbf

          SHA256

          7cb71d94149318f8da5af2f4a56d93dfbee43dec01c342dc46af2c1d70744394

          SHA512

          404a8ed793e7e6363b11fd5c3f4b90e87c87aef36a4ea016bca6e574c88fab2b2966cb9b87fa7ccf464a89b5e269aff812763e0e1f9c8a8dea8a9a158878ada8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          08c126dc0dcdcb06b89dd8d9ecda1779

          SHA1

          626861726e30e8bc50de1b832b8da21664dbd1d7

          SHA256

          ad8fd5902e3b6a0b1d6943ba87bcf62643521dc99a5cd1c141e686503648434c

          SHA512

          00a5da480afa2cd9e619a5615e038a66309cd2237e5771816548dd10287c013991f92ecd0b22f7b20e5670e787ad352bd8a477e2a2eb674cd13fb351ed31a5ff

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3809fe53506fb755da7ad78560599e5f

          SHA1

          0cecf0f0a2a6bda021366b95ac5a24205af423c1

          SHA256

          df8a59a2c8ff61ddb9c4b9926d09eb07125c280235d2e4b29656de8d838a6b45

          SHA512

          8fe40c30f11eb646818b4ced9aeac1600e709086f1524259b86de6c67d7564be78aec8c8056fdf1e47e4ee841f3a3307b8261109164bf655a3402e75209d678d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          42ce53425f71c4002f8274aa8ccb86e6

          SHA1

          5123d820aef623d89cf2c056dbda2728dc3b05ec

          SHA256

          ca389d97541166a5164a30fef7fc93105423e63a3920e8149141ee655f4870ba

          SHA512

          cb3ae9605cf37f3af234ee8be1d268df50413d466fd2b99903f68b78460a4d86b7ec58b7e2d712c45bea367905e9ea6b8b6b1a137e44f0b27a0fe64991b85962

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7b0c70f56857b442ab188153748d891d

          SHA1

          691480736045c885c162d5b2ee32890bbbd34049

          SHA256

          9207fb6ab0c1d423d8424e865666c60d7e053d1bf47dda3f501c9eb1099c42a6

          SHA512

          832315bba04222f6fac6584fd11622eb0c95157f62cc3990d8776e9346b701aab5fc83c72aa7787772d63a527d3e034937e95f843019cb21b21eaad1b39e0da5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5d375f8dbd45e39576098f4c56594bc4

          SHA1

          4cfb3606e1cce89ba8c5ecee02d38c87a80ca2a4

          SHA256

          39503b6a93f956988644793e03e1bbb8e4abf2e0500ecf2c2265afbfbba96f61

          SHA512

          20d26c648cf7c43d29e3e5fc85bd12c7a3f485305e701f85a541c3500d151ec27739428e5002d4fe0b0946c0134e349fbdcec57f0607623630857cb2dc978e8c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          34887dc5e4e65596ab4a726ca656e3a1

          SHA1

          2018fc74b329d55cc6ec40a4d857e32291195b47

          SHA256

          891e77d7de51cd7924b49cbc3b14bdd0f76e211677756595a2abd6d840b98f35

          SHA512

          fbdaf1c22ed64f2e10f19591eb86553876ce549b02af00df05addae9a675fe086f3b4efcd875b1d280eff22d88f170d89b1b7212b0d1688fba35fbe1b0684243

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          cbcc078aad36a54645d46d1cac374e15

          SHA1

          468f4ff701df9fdba02e2a10a14cb39d6e3aaed0

          SHA256

          2c325b369c821d2c3101623d4f2373afaf9cf66dd9695d3e74b8a52d6c5dae6f

          SHA512

          f2d74916d42f89c33726b34f2690eb4116af0f3f3a3b1b113f06c8a9767bc9d6053a6801bbba5f295c238ad6f22a7d7d9e7b73bd659b13acb5edd57593daeb92

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B2FAF7692FD9FFBD64EDE317E42334BA_89854CA6A0F0936A4D2ECA78845CEA25

          Filesize

          482B

          MD5

          f3de6a716f8e0caa1dadee1526013d6d

          SHA1

          f6e7f303f2b55123d8d955f70e31c2285717fc94

          SHA256

          6c7bc128bbf9f334b3d685423213cfa56322dfdadce1a8623e30a1815010eddb

          SHA512

          f507766983ccd5af5e6739f4ed32801f8ff77f481e0ec57ecc24dec2d53dd164f9efc4e6a4533d2ec82c0c2ffaef264352c6b7555a48fba38cb4ce7366bb5e32

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

          Filesize

          392B

          MD5

          16a4577f7c04456a8ebbfb966980b0ec

          SHA1

          dbc55328540ad139ab6462375fd4d81dcb3c914e

          SHA256

          a75b56f304e7f75f6f84e649820527d52778120056acdce1969ed0612752ac1f

          SHA512

          a531caa503bbef6fcb610bec661864c9aafa8686187812ae69f60a6413befca7f4f5e26b48ce6fc3c9c9b0e71ecd6727c6c2fc25d7c91fb32079ac7a96397257

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\D0E1C4B6144E7ECAB3F020E4A19EFC29_B5F77004C894173A10E3A199871D2D90

          Filesize

          480B

          MD5

          0fa6137c28538e8b07465c24222089e2

          SHA1

          eaed36fe649e4c89a5c9ca65002316ec93f98fb1

          SHA256

          85ac9f6148027edfb5359c708b74673a5bf829fb0d9c8af3c8b1ee1c1547f5a5

          SHA512

          744646e348967fa16c617fd6b76de33c4f4ead44d17af2262aadf785d70786cc56c719082b4711eb04041d1fe4dfa2fe9bfe97044638967907a05188bc8d597c

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IO0LJX84\fc1c90b5873cf00eafe1b374c534eda7[1].htm

          Filesize

          162B

          MD5

          4f8e702cc244ec5d4de32740c0ecbd97

          SHA1

          3adb1f02d5b6054de0046e367c1d687b6cdf7aff

          SHA256

          9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

          SHA512

          21047fea5269fee75a2a187aa09316519e35068cb2f2f76cfaf371e5224445e9d5c98497bd76fb9608d2b73e9dac1a3f5bfadfdc4623c479d53ecf93d81d3c9f

        • C:\Users\Admin\AppData\Local\Temp\Cab1354.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar1357.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a