Analysis

  • max time kernel
    141s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    26/05/2024, 11:42

Errors

Reason
Task went missing from backend

General

  • Target

    755deaa96d4177304c6c805a61ee92f4_JaffaCakes118.html

  • Size

    139KB

  • MD5

    755deaa96d4177304c6c805a61ee92f4

  • SHA1

    8b812deb5d5395cc81a1ac02d37cc15094c22a23

  • SHA256

    c16843f5d27c356caae3f2078e393cf65f984d9893253988f5e2a793d327c108

  • SHA512

    0ae2f2c627a4735aa3fe07c35fc1137041728c413a7286b7fd87024459ea94b73252f67418408e5b9c8e4af0bab9d9dff592305fb224df205c27b7e481464e2b

  • SSDEEP

    1536:S0bwbf9lmUyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTs:S0hUyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\755deaa96d4177304c6c805a61ee92f4_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2004
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2004 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1720

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          aaf11f6066fa413b40148489f1fda17a

          SHA1

          e275b8b4c93a35a08dc873d21ff625fcfd819014

          SHA256

          ee7a3544aeae95785618f9b3bfda93a8a5b1ad54f6daab06f3ea7eeaed43e23b

          SHA512

          baec4206c2fd090917fe3498cbf5858a4d5658c880af7820fa442ba06caab765f75e597d56da24b966ef6f35e28c41aa7646e5f412c7e1b8022ae06e56af5e81

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f7d9f28d1074f4d52b66ee71ffa4fc9f

          SHA1

          d43d4adffc9e3ccb7ee020434f78d852480cd27f

          SHA256

          4f5bc262dd1f19f6dee9000026ea6c13055b07d6c25e80d7b409fc17d2c00c37

          SHA512

          c81de157a9a5fbdc811eb5f85f7343a21eff79697ec208864e2eff44e50ab6e50d5a050b13044d42b496991125b6509b3a7844d49123ef0dbefd54af543a2018

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f7642ca6a3a56f64bfa6f6d286d92d1a

          SHA1

          eb09151480771e7cc15c61ffdb597c0e77e4d45e

          SHA256

          aaccf9a248870fbabd72f23242311694603f101840663add2a00cd2e9ca4f371

          SHA512

          d39c337fdded3fa1941b8702a3ee6359d83f4ee2c4928e912e8dce246a08be677e3f4068511f955543418c2b340627689482f1aa50354a1a30f4c07e80eaf1a1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          027db6ad3f967afef852b3185d4b047b

          SHA1

          2cbed0ab406411dffa963fe33ab1769c60a035ce

          SHA256

          8285aa9243fc74b8f07b672f8cb11ca91af201cfcec9a47d76adeab6c4402aa2

          SHA512

          9e89f20d8c5d89504c2abac70674660c698ec4314e8c35247294550f12e31d0f1a0ceccb5dae28be1eee8debb98cd4e73b36c36a400fb39bbe20ab14ab3b2dc1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9ce00db782a66de7d8059e61d8f74a37

          SHA1

          a46bd4bd05f4f0ddb321231a4c22184cae4026fd

          SHA256

          acd808d7ec4bafd16cddb585f26afcc9953101f996320e90b8e4ec6b0b3436be

          SHA512

          31b5f7d2968d8421069707c8498b58505ff972940a33d50baa1c8ce9dd3dc0cbccdccc903a3b57bbc7808e4047c588956f06963c4178a716a40e035c11930d5c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          eb02bf3e806a111d41aabc1df603826f

          SHA1

          93670f58e420ae9809cfe55e2dc96f13dcb9cd67

          SHA256

          90379ee0bc32b935e2e1f4e4a538681b011daa0c9cc4ccc05d03d2f656abc8ba

          SHA512

          58050314eb18f68c0b331d1c0729bf75597706cb9ec26db0af0ca31412503288fd4450c2ba99f8599f562bb5730c23b92c35f41e566a08f654e3103a4efec10d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9651bbfa51a5d548c320f23491b63488

          SHA1

          b264be10c99fa716037b103ccecdcf2b110811f7

          SHA256

          51897dec2adb87e06e837f76903b83132e532e753d0560faffa904892e1c29ed

          SHA512

          0058409d34e4655d687a065b1d5beeee2aef0edea9416663da12cb01218558e6613baa88f1c8d5eba9831bee4adc3a58578a2c23daf3ec2978afbf7226dadfda

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4e62c12b2ec7ef4ae8cd88829b2d5f56

          SHA1

          accfe42655c400473fd0a17d5697539ff74744e5

          SHA256

          eab6fcb2cb51083f4249e5f9a9d78a1464bb201007223f99c681c2011a08873a

          SHA512

          bb05ef2084b6f153ad58e1364632a699f73d14e65f44aa5ae7b1cd59415c92ad18b52db448ddefbed36e1f3561b7879a99f9ad000e398a32363ceb2f417affdb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          fc104aed3092bd1829aff3afa5ff678f

          SHA1

          4f216af3585456d170ebcc1874b218c27a949f17

          SHA256

          083c33b59d5167c148361913c77d95f96a764401a5ee41859be85d7cb7ee4901

          SHA512

          c4aad899b6ca9e30299c8b41a62d360be442e3f13e44dc213bf62f38fac26205f8b33e986d64d0a2ff28da97e9df872b2c372cf0babc46e7d4931b7940a1971b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          453e836b8cba75733650a591cba22575

          SHA1

          255f6e0936b6e18b0dfc623f2867843f9aaaca67

          SHA256

          b9b5f88417769d392f5b62fb4730cf337eb222db6211e14a10f718e81c0fe4d1

          SHA512

          e6f6aa15d67ac32f225a798511492ee4ba77f999c70088abd9215a1bc2b3aefe7cfb213556495d8807135ea4d4ffcc5f4a6dc8b27e37f69a08e9cfcce137ad6d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4adebcc496d948e48f0a9e31d23f00a8

          SHA1

          d62b11983f72fc3fc7f4cead891b22e815b75fdb

          SHA256

          9b6a7f7c74f61f40e1f53170662cbc9be5dccf86010d01e143fc9a6edbbafcf6

          SHA512

          f29dcef43c8adb02bf48ded5ed7219f505eef6f77d7751c5abf0d2c3b3701218995fa0fd69b3b02bea6e894c237719b893c63650957348654e9c0abec4fdcc1f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e7536917a768405ac99e8a02306ba28d

          SHA1

          81593977209a82d1093051214afdd4c5a2e92a2b

          SHA256

          62f27df4ce8c9860a96c7a9812cd826f39392002dd80e396df386b6a7188a22b

          SHA512

          088f8c53c1d4a8a6a325846a0cf87666db007b7c4762b61d863024f21c686ccbf5dafbfc8ca37d3a695ffdbd37f1f12dd3a9a07e03becd406ff2e3d6b414b449

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f12a243d7e7a3fdb462a213701f846ff

          SHA1

          1b0bf489bc6b943f70b4ca9151eacb26fb082d54

          SHA256

          e4d56c101f28cec7f6db051bba0d896220bdbeaabe0e27bcaf5c132b096713fd

          SHA512

          15589755e02da1049ac0ec701cdd4ff90d3fb76c0491c21ab4abe49555bfe94f6d0cdda3b3fa2407c0cce91b010e583dfe9dc3940ea816a54caf99e591e06733

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          97778759046fcdd6dc805e807731ed38

          SHA1

          cad3d40855eb2d6142fc47bc236dc23df750c4d3

          SHA256

          600a99f93a45282deab7954619765f63c5b906d54cb862bc2bdc97c03d1f52ad

          SHA512

          ee3da9927bd25f0ed5da4b946ed1884a7789179a4fe84aeea28e90cdc1ea1d2fac65a2580548aea5e1cf7dce970bbe4be475a498e0522e262f6691d8e791d83d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          790086dd4214dd774e57f6c35f37de22

          SHA1

          e4687f67e2d7b0cee767b2b3179cf188b5327727

          SHA256

          910abb9d0ccea54e2823f4d2451e0d595369ced4aa58e4907b7c373595e5996b

          SHA512

          8392ecc6e34f956fbf589b5939ff83fa1877843717f4210d269f82fba19b695ad6a561b41534d892e0164eb94e9aeeb1b0a108f765ea25e8054068a55768f183

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          10a7642b6ab08e9eb668ae0d10a67127

          SHA1

          abc4f75552515386965a48ec853275e9801979e1

          SHA256

          727def46e3821e34b5b3f37f5ff1fb981b1216fb13e8f4e5f2a4332367548d4f

          SHA512

          71d7c7c16e27b5a2533969f32c49f693869f194c54ab5a13c6656363fd987d4d900028eee64cb12a4597143663d52f6e0a3a8402ac298e0780d2cd1f8f5568fe

        • C:\Users\Admin\AppData\Local\Temp\Cab86C.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar93D.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a