Analysis

  • max time kernel
    118s
  • max time network
    138s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/05/2024, 11:39

General

  • Target

    790726323a2ed6c3c61231cf2ec07d7d_JaffaCakes118.html

  • Size

    3KB

  • MD5

    790726323a2ed6c3c61231cf2ec07d7d

  • SHA1

    9f3c1d729d144346e995b564ca42c70aa5fcfd68

  • SHA256

    15fc9ed16f9a559428b90416342318a2f033da110c4826a2e8e8371f8a7066e9

  • SHA512

    111c1c88ed14c82d7b3f93a8728cd2a2f1e6e67e2405ee5b047e082e6d1eca2213c4f2c5738c0f8ef6681d771b4b844c59504b869f7f0ac7e70232e56dd1590d

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\790726323a2ed6c3c61231cf2ec07d7d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2292
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2292 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2252

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b074dea6e20ab5c2d904b61e2739af6a

          SHA1

          36b41f6fcc004a0ea7e7b72915f8160bab3f3615

          SHA256

          30685a3bfb42a4e5b722b131f50c390088f9bddcc86d559f95abf6886c6d7271

          SHA512

          a104e89a620f7abff917cea6e17989f75979af210ae5731f07f69d6317f57696973b3ab56f14c906cb0630dc6e1dd1614784127fe497a00dfbf6ae459d1bdd7d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          658dbb771660a588eb90fb487c978f9f

          SHA1

          ca35eac35bb847706da8d5fcc0b418b7b91f1a55

          SHA256

          9925fedc26b05c9447af3541c83dcbe1ba0df7ff15e1c0883e70d5cff1cff3e3

          SHA512

          c51b53d8b1ffdf33d9989d5a26c7aec6fb0f91807d3c33736a96b1f363f65f0aef82897a216cb39fd6e3e2bfa7d3c1f436631fc21660c603f2ed5aac08f3d614

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          426a6dba50e8aeaea6c40bd53548918d

          SHA1

          8e9d10178e0db04d5805271f674ecf8bf88f2b0a

          SHA256

          9450e29b6cc72a051d302f36e4a3d4333f933a5ba95c69c29f83efe28c2f73dd

          SHA512

          cfba049491264c2217f42bbd2b500106ba8c2bc8cdfb774fddcf28fa41710e56512a17d64eeede72f0991ca097fee19a98faa16755b23cdeb40a12206fc9670f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0b32ac3e6e009a1b1b7bb271dc330ff6

          SHA1

          4bf37237f967bc933c81ac8339e8746585dafae9

          SHA256

          cedfe55ac91a462e4c7ad55755190a7aeb1e1d66b620dabcc31d4f2732c1b839

          SHA512

          2aeaa88f2fb7cb963e957c9058017d66353af8cddaf42b49c90b679a5d0a9f278cd0c5cfad014933485b743201a7632db7961759abe339bd702ec4d28a5c6bf2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          838ae373e434824d055ee65495cc4e55

          SHA1

          cd9f6cf019ba86c0347132510062b47be7b122d9

          SHA256

          4d08863e640fe5f417e07b995d6db502d1bcd0c9597798bf02ffbde8c94d1378

          SHA512

          d1212e70a143a6e799c07b5e281168fb13cd306884fa24a2cfaaf2c34a0742cec3678792cb6d0896a91bb3d00d5c7692759c60eb8c62b66bff38625b76e632b1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4efa6811775bcd942237ab18ac8671c2

          SHA1

          7b6fe67d821c21209a2cab99b0badb088d1a9d2d

          SHA256

          7a686bdbf4861cbcc382c2489059c6f01bc2ff702d5a2df2ce1569b9aefcafa6

          SHA512

          e2e3d25cd4b3f9bd49db9bbf3e41f80bd306faf490dab4227507612aa866dd7c8c820bd8e6f54cd67b56c9874696c8ef9084aa10e904fa4d5853f1da494dbf97

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e7cc6512c6ddbcf9b117ea02e46f8cb3

          SHA1

          7ea2dccb61b78a75a30b1ecd21385582e4c745f1

          SHA256

          552e241c440c611b7316aa960469ef4804da14104f6b5992064daf4e1773a1c7

          SHA512

          03924c6586cb3257646eb51e7d14409c8654c9b7550522b7ce072829386d4a11f07767bdf8cf3ebab97db2dfbb21429dbc72b2f9c4bfbcbb1fee5ab484c59280

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4ee2c0f7930dea8e144cdb6397de8064

          SHA1

          45042c033bc9341cdc12abfd4c9998922c62ba35

          SHA256

          633d69928afb884b4e33409c9be0d216b13d17c54574084916e1d555770b6978

          SHA512

          2eac180d103b7a27b54359544045ecbc269e7452a88ffcef610f2595586bdb57d3bdd01233cfd66e6f3ce747b128de14c7c00ed53842fb022d77918f08010c78

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3eef74b162cba522a9c2ff9a88dc202c

          SHA1

          215c29aab952e8313327a16b01417026e61fd6c6

          SHA256

          666e14c62582aa5aa60d0370656baacd7e1e91a10b2924539666a99c7b1ad52f

          SHA512

          60b627883de5d47f078838eb92146db64fe337da78396f8834f65e9289321521364c46a3cc2e397a9d11930bee1ce267191540350599711bb783a95a1a1f15e8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7477009d4ca70f790694a66be69338ea

          SHA1

          83d20f2c517ff34eca96401cb45c40e54cfe7303

          SHA256

          34698efda07c253eb88dbc96b8ea550c4bf397785b609f98e5c0f4dda19b665f

          SHA512

          64df22c5456a00d3b77aed0cc9d9df361ec2f584501df4927e8d837f6c408ad5e0ca714ae0df655f551317ac09d1bac4db11ae1cc83d723c94df17f32a6f5a00

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          afacdd555e2913d2cf8d25dd815c72e9

          SHA1

          e3ec49b3f1b152ff236e3d722d44f6a912527a53

          SHA256

          bbe6fee45f057c0c9cfedbbfc96c14a36dc19ee056a8696852c3dc34fcc016af

          SHA512

          62fd2638f8aa9b929b812c51ae443c9ae7acf8e6a0d16b477cc634b7776b33c12b56299056d2db7becc5248e67238be2826e0009ac99ee9eaa45343db30575ff

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4660001fff4c7cab403c9cc336adfe69

          SHA1

          c7415b095b7bdbf538945e269ddb1ec165c779c1

          SHA256

          b8c26f24f7b67dd8c331b85dc660890cc1a7f685d1d5283f416506f342b46e8a

          SHA512

          7d6ac2e0a6a391ff5249d9667c39721c867b45ed99d2ed352310079e673ed3fc8b4fdfa1ca668a86a20ac3a12a6fe2d70e9eb52a54e99e5b217747ba1beb3202

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4c6095c2fb546ce5dba533f37b6a322d

          SHA1

          4ee38af2c5261d2880c870f7194c55c8e18aefde

          SHA256

          709fcbcef4cd92c731cae2ed56f6a9f2a09884699d41cfc1b1624bf6e1967de8

          SHA512

          c98efb062f02845eecce28e3dd866ae836abad757f39f550ac616a60b546a12978fe717ca11171793e401704ccefa5812c97d68900c9dd6a674cb17bd8237dd8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bdae5eb50d35464b6cc09eea89f8a14d

          SHA1

          29513ea9f0e7addeb92dc9079925b5708b6a927d

          SHA256

          7b65f0628f792f11e7d732da65c63c5dc46bae8784b467f58e8bbad950060e90

          SHA512

          6c217bff208206ee9ca6ac91cebc7add986736f991cf9e87e18373b31a1186717a3d9f315ebc40907fb0c40f76e10e8df6bf9a9742921131a9f5fcb58b615628

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          832b09c5f4f8ddf6e1278295247a3f5f

          SHA1

          3939c80f100afc42b44ab2bbf1447df471f2ba22

          SHA256

          f7427f028f9fe3bbfd4e9369b3b56c6c463305311d5f190665499be770f6897e

          SHA512

          d24048f3167ee025abff4a5ea4890b57828887ca1bda3504bf89621983ea5a0858d1f2728e3f31a8a927910aeecc1f60ebfc10f1e663898c2be9d527e8627fdb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          82495a17bcf9bbd9769a4a9624b74f38

          SHA1

          c3c1586e1df62962d6b131797dd62f8927a2540c

          SHA256

          2a15aed29041b6fc1fd254cbf396839acb0c587fc41365e329e7eeba3016ee09

          SHA512

          28f2c5f2c599c819b4f62bf5c84b7abab8c7312e4a76816072e14c965f3190e0599fd3fe5f3a9a92e516b7820d9fbe471825b17d5fc221ac3c27067cee68bbdf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          86a6d34b8cb9dd401d64ec21eaa71917

          SHA1

          6816ee5c64f69f1967e7b2523ee4dd31650e6956

          SHA256

          e8306f9d64744127fa9c67b70c5571115a75d90861f1a6a6dc979587c5ed96a4

          SHA512

          b12e7ffe69ac8f3d03487dc732da49deb4225cc56afa6a2acdba04fad5fab38253b51b5cb647fa0edf0cff718563c70df8afd45d9480adac41900adbaa324d17

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3d6aaaba1de85f6d484d6f24dc3135f0

          SHA1

          5c132b902e6cac48abd220893ec6fffa6b650ae9

          SHA256

          59d92d3ce6f5ceb13d084b102a05b156cfe8ff83cbeb76b754e520d1200e0857

          SHA512

          9e3b112da2b4315f9dd2c39bf5c5d84bbe178d60d015dfad271ccce88672fc3d62a7a0ccc91ced2e5d72ff8dc8bbaaee70ffaa9f44a6285394d95807678a811f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f0e45b61fcdfc5e23a30e406988833b3

          SHA1

          2f486a3b2b165ff77a5e0ec0f08a30eae4efdf35

          SHA256

          653ef869428590d334a39056e72362cad900405b5fa0f065a36f109a5c858b6b

          SHA512

          017be93c1feb4283ac70e4fa6e033b06524a34620a552527e151e322c4bf397c587544a520032d18b64307e38b34b98f21ebf65f6a31c21118411cae6bce0c73

        • C:\Users\Admin\AppData\Local\Temp\Cab9E34.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar9F55.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a