Analysis

  • max time kernel
    144s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    27/05/2024, 18:31

General

  • Target

    7a18df5aef160c71704b69051e66aad2_JaffaCakes118.html

  • Size

    41KB

  • MD5

    7a18df5aef160c71704b69051e66aad2

  • SHA1

    db407ef3e2a2ee32077c4a75253a245dbba5e112

  • SHA256

    9940a141454c31ec5515ae24ea24b9bf9fbb63b56098e4002ccf0f7c6cedcf46

  • SHA512

    b3b100c469d770ca7e32dadf990742fc6f5df04f3ce7d5434c4747b587053671b037065ba3860203b2a93e055f8796d2d5eacf0e4c0854556809ff01ea7e7f49

  • SSDEEP

    768:vMwlcovXvXvcRgn7tHjX1So6pDA2SEw+qr:vnqMXvUgn7p6pDur

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7a18df5aef160c71704b69051e66aad2_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2872
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2872 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2956

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          0cadc51891f801670b65f2a6466e5a49

          SHA1

          a5d7f864c8405bb7ba051a28cb48c4dc8dad143f

          SHA256

          c00fc0da95e12a9a3abef191b25172f077b151cfa0afef1a85f734a9fdbb1bbb

          SHA512

          ca8205a15ce7034e7cf04d3915e649008bc5df5e9bbde535d7f3d831a7e461cde0b82659752fb0c5b4f53c0790b3b39e36cbdde7f0bc29bd599aecee33010b71

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9c4b2da1e0610e4033dbcfcf7582873b

          SHA1

          c085d0853fe2ad8454dfc4f00fbda04b53487c9c

          SHA256

          081478f0df270715c8301f7f525c6bb6d1da3d3b1f5a8917b280d5a319489b8e

          SHA512

          4a60c8840670afa04a33b400598012dc81a6fa178100b7aea60c87e35a57140aebd57d986f9cf310db6f9e3b039603dd5768578e9d92a6cba64d329a9adada74

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6a68d3aec945152c555ea6840b470a9f

          SHA1

          5b04da36a2d417da46b6d7fd33868744d340a176

          SHA256

          59b4a292f5b2b061ac47ace164540c74b1866d0ab78d63a6650771b9f86a6c86

          SHA512

          ac0650b665d2ab28744af9066f9c77f1180cb12916dd11f7f5a3d14f85f3801868feb938c0879dd23923aa3af8bf1f1d0aef63444fef7e7deef666dc06b377d1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0b459348590a91e5a7e0e10b3716e0c8

          SHA1

          6d575c0e26b667d736d4395116e340ead503b1ee

          SHA256

          57c86337f2a519f70869f141642cd4aabfdb308ffb9b991d9d6cd982cc1e60cc

          SHA512

          34175044fac6974fbafb6c8371141c9aca461bab8e2e3df2e066edc26819d7835234883a176165450c022e5647dc1cd8fa5789a32ca2826f3ed0a2ed88e41a77

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4ab953f395a33488c39682d0f9dc284b

          SHA1

          cf7c6c4ad391105579e6f99be8e941a0d08fddcd

          SHA256

          3a365b826ff26c30fb14c4aed776a5a09e435447aeb04d97b3913bdde60828eb

          SHA512

          775640a9f32592b06263bdd09233bf688b1ac535554cce3dbf369e9f2b868ba345115b49a87f49a99f0c52afbe74f1d3371fa8e64c7e873eb48f0eededf3ee69

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7dc959be449b1a9dbd276704cb8c0088

          SHA1

          6bbd681db4f902b3569310343a8f5b4e4ab36c15

          SHA256

          16f6f2e4ba5be5b9151e2beae8fb18fd019ba2913b5a1245934c468366c38623

          SHA512

          dec1bdabb4491893deb0cb48dcac612bdc60843e3a7d3caf32561297943c72ea9de07bf7daa8c8b10029a6e86a14579ee49f4344e8be24b75c06ca96067d9cda

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f7b8c7766ebb0596fba602f5891ad185

          SHA1

          e021d9d16dace13370feb93ac5caa9dfe7df15f5

          SHA256

          a0c61b97644c89e6582253db071c8af91b98a6895ea3fc29577dc5b257d15ed3

          SHA512

          8c06810c8fa03898408092222164b7f12f13f9f285a39517f5cb88bf316b60e27124c2e322acc75db9dfc1caa2c3eb19eef30c523bc24d2a9678a52569c2661f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          44b32f03b7b40f17afd0c016301746b8

          SHA1

          525f3ad93652c4573c31d3d9a3af788b26f77027

          SHA256

          a0e5daddbf2bd44c2864184cc207e74556a36148e8d42c46b0199a57b10dccc4

          SHA512

          15777765d52030b0397dc787351ff68139ae6892f8963609eedd5bceb719d8be7b50bea59801f601cbf6e208db0d476cfee08da90ffb18c8bf3200cbd96e12b8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          814b63363d369241fd688ff4d39f8a7d

          SHA1

          13686246c7e4b56ead04aff421c6e217fb159968

          SHA256

          7af862ee6b176b2a8e1173b13aed864c4d7f7727c547ab48281399b61ce1a93d

          SHA512

          5df1f1285ef2242ba0ef45b183699dbfefcc768ee7c317ad92d5e83fa8e00967a8109be685888ed22b7ee8725a6c5983c131d7bf681c90246457020b94e3edb6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ee6e0266563f1b90d3be3856b82a1da0

          SHA1

          fd626b0a450d7cdb7f63e6a41e27a4670758d314

          SHA256

          e9bcddd2fe7744a68251d6aa13ec423d1ee9da9c48f6fbc184716d5a4999dcf3

          SHA512

          c4031beea4147e27c370779787bc522d11be0f52011caf163d413019fe0a43d521bf47ae19e4d5f88173e250c18854015ea2df9c6e07c5661fd3223f7acbf370

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3e0eebf000e00c6ee211cd2993f2bae0

          SHA1

          b8b17d51b311b4d2a385d6c4bdcc69459f90c9e2

          SHA256

          95f9cb7de235da0f2189281ea2fb996f854d4487bf5736eb5ec18c842fba81b7

          SHA512

          00067cd8cad8e8b1c4fdd2cf8ddb692da81863620cbaedb2c4516da118327987686427bb3561cac2d5f10ff0ff01866f8a7c9dafb02b07fc5ad96939299bdc71

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f7c30892fe2aeaba898d7b1835b1568f

          SHA1

          8da47b875a12d5178be0b73dfa5e21ed1bc4663c

          SHA256

          73b986066c0c764dee869b35c703b3c7cff191e16fd9e1300adb578030ef623b

          SHA512

          e22a30928008ebf9c7b8611f7b44d4eafe48a0aa974bccca94f200dc942f2101cf9f4acc5cdaac66d1d64c9928cf299c2643da926340bdd3b5fb99750a0a1154

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3a6be21c74432e2d35905a0631ce47b0

          SHA1

          9b9b845a5f363be87cc4c5344ceba16df693e751

          SHA256

          a35f9d5a0f3682bb2c68c98cec77f0b6a5a3ce2a00a7f3cd317145f850ad5422

          SHA512

          82d84d272225c94fb582307222aac060997ea333e5072a430f039db289a80857d528214ec8b8f346691940ad9a48d715f177beead347ee2fa03393f054f3a6e0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7c8042108c00ad450a027d28856f62f6

          SHA1

          c7e9c7438ee64b8c8f85b4aa2d67cb373e82095e

          SHA256

          7b0caa92809f4a5dec9bc093e5130ef24fbf77c69d6b3340a6fb61ecd4c3c917

          SHA512

          5c25c05c759bc7424a39b51318a38c67b1382cadc0fd7f1807b7aef4209310a92fbc686c3b900fc8629d105b987b3bc8c59aaac12bdbc7a6aa7aa63ac3228a41

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0a512eae5ff3523ce4b98d7b6dfdb08c

          SHA1

          93587c6cfb0d41e1aa30d6f044e78887ca3ab237

          SHA256

          93052b9e8788af030071b082879d97d8075f9ae8877bceddbff3cc1d4a0c1a07

          SHA512

          e37fc9337891b0c0d9fea46777f5e57d864d90345ad158fee831af93d776365ec056018419006d1527f57539c5f34edada562aad3a761a33b04260f6463a7818

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a178069e9a0be6d31f116ab6f5142535

          SHA1

          ac631c40a5d44ef02eededd9e4c7e5481af6940c

          SHA256

          0c0ab0ea294ccca626f8f3859523376f2b8227f21c9d01714d2065fb1048d4cc

          SHA512

          16a61776f0199789b6ef0b7316967fe1f02ccfc316a4061c9236942d815bf95162379d5ee8502656f8325cec605f5ce03c87e4187d641829fd12a6d61d33a0ad

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7ae21f84acb637fcd813ac50a36fe9e3

          SHA1

          2b6b6d6101e5aa83357ef8bcf59e7216e9a2e326

          SHA256

          b53a6503932156a0bfb25b992384bcaf675f09bbdeeee7fa3f313674bb6ce04b

          SHA512

          f4a6e4c63f49626d848528a72846015fac218b3d69e75d21e8f39dbc898954b122285bd0dcca3066bd9e4602357583a31fc1d38ee89a472e10641216433f46aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          fb4bcbc0670bbac20ed49237281cd43f

          SHA1

          50abab0de516fb441f42a6e1b3b5d030e678061d

          SHA256

          51dc59479e97d660ef783d30dbe451d880df550937a66e9e4f745586e87083bb

          SHA512

          ac13092ffd1cff7f060503b1758446b3d0f7d70f6634a00e2adf452b3ad7f130afff92c7bec444b8979527fd66e979f6efb079da55d4d57306d008417c20b97b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1305093e3dc527689424ba808098db5b

          SHA1

          04d306e3b4d5c0cc42e23d37a9395217742ee4f4

          SHA256

          d9e353e3b54d288fede03378c938055cc6c65113a7b6e6de5873141294c35571

          SHA512

          ea1655be532636c89a25796770f7737834c64dfb36843c25577a9ef2c6544d2b08d3728749eed3fad14349bbdf267846e987d905ab33a377eba2bac353330313

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          837d87de71b3175f0ac594d541bbcb83

          SHA1

          1fb42a8d71d0f7e11ab5b0604a19ce8248434072

          SHA256

          545e42d44c10add1fd98a63d73e772266836adaeb6014d01201f017f822d8f57

          SHA512

          2f8f145a93e103de3f69f025b73a6e48cd3c6f336fe0ae48faa8a90e14a1b8a51bf633e434f9e2664bc7433b47c14e2506ef5f79be9332ab6973dd4c746896e0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6db4bbc2d5276571f16b39796a34dc0d

          SHA1

          6071c341de87bac3a7a526aabe5927dff21532d8

          SHA256

          f9032f2a44e2e0a3102e7abe5190a3e12b410a482a43bdab5a79eb981e31da9a

          SHA512

          b732ae575c6f257d6a630d27f63bc25f36b8c3a5839d62b5f4714585ea6d11b3e3d3238a27db939774c01088cbcbc0e4f2c0477fae76195b3bf7dda5266358bf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          806adbe1502a8e1fe3cdcef374197568

          SHA1

          c1feeddf30d9e8b7938b2e9700933d020d009a0d

          SHA256

          557dc6c44b6e3cfc42bae1a6bd2a425ebec071caa9b0f297345438536ea627cd

          SHA512

          65e50f578b3035a5a061c8ce95c14ef5c60a39cb142427ada09f3fa005a1e273a052431b35d9659b2dae1ffd232ce98b6f3b593644e96d0f1a6a1f51bc780945

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          51985ae7bbbbd941aac116858f39a304

          SHA1

          99069b7480fec3f1ef385508997cd74732133016

          SHA256

          3257a27aad61ec7586864f053b577055efde647532beb44b4901f86cb43e67b7

          SHA512

          22d74efeb831fc63fddb81fe4deb115da4b9fb2c7f26fd4c1db032ba90f46965bcb2b33d28507d6f84d100331ceb94a7deef0162b0557bdd132473c44edcb1e3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          131102b605b3f0f5e964404d2a000714

          SHA1

          aee06c66f6b7400825ac9113cc414e97c97c7e81

          SHA256

          97a104bf567472d1de78e04a04d90ae0872a9ff3adc46d69ad8d4d78d9b4b7a4

          SHA512

          a6c9b2c41f7efcc79df600a80f6b97701fc0447a632885d3dac8b80aaf9c5d6cd041fa31fd8e9ecda8ad74fdfebe2b65b29a639fa6bf988c8582f0ccc184e0d3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bcf88df2be621d8149272ca6cb1bb1bd

          SHA1

          dbaf3d80161bf190305fd678682e25cd9de38222

          SHA256

          3f01569917cf8ecf9f56a0a76b6ebd535384cfff9c189b6eda58daede0acbca6

          SHA512

          af7fb8934ade66551e28b51f047c48c841ef4736a799076fe8cbd42ee447355127567b97c467829894c34b53eea60a16fd60a60db21e1a6f91039fbd14e6d567

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a322d77291a2e35877945dbf039e2c95

          SHA1

          b430702e825e64520d19ff1e782b4f1a020bc9e5

          SHA256

          6370f9878d9cbb73b9f2903125d4a267e7d25a0e9e0e112d97b5e6e399bee3d9

          SHA512

          7ce08989627da73c8a48ed66eebd4421b7585c5b8e14aabd8b569988fcde9200ef4f3f340d4937d5de61d5c86ffb5f16bdc2218987833a3353f8b6bc47682a2f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          57b506951d21c7b6223ededb9ddd92c5

          SHA1

          3d50aad2b6d0a7c456885d86e336601566d6dd86

          SHA256

          89e935123b4353db472405b1208595eea776af3d034c007167851ad956ff8b6f

          SHA512

          285c9f60641fa410ed2fb633113c662602b3701289d550c7cd447758d5572db80aab7710feacffcecbc6bdcfe59d71fff21a32157fc351b1cd05fe8d46e6b13e

        • C:\Users\Admin\AppData\Local\Temp\Cab170B.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Cab1982.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar1895.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

        • C:\Users\Admin\AppData\Local\Temp\Tar1994.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a