Analysis

  • max time kernel
    141s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    27/05/2024, 18:30

General

  • Target

    7a17f2859830a64f6c135a695d65823b_JaffaCakes118.html

  • Size

    139KB

  • MD5

    7a17f2859830a64f6c135a695d65823b

  • SHA1

    994a357d974549a554818be9f14d45c9f7d59d77

  • SHA256

    1db6e98ca146ce1b609762a9c04c02a90ca37d2f9c4651c711757557feac8009

  • SHA512

    6dc1404a73399d66e64bc1963fec252076761fa8fdc4d494af4fb7613a887faede4e61245fbaa5f78906dc18bbf2fa25c2ab052ec415694b047ab3951921327e

  • SSDEEP

    1536:SJXmRrxl+QuyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBw:SJWiQuyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7a17f2859830a64f6c135a695d65823b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2268
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2268 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1984

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          dc5efe46b5049ee3f8bfb9229a3eb795

          SHA1

          ba66b7692f39b78e2a5bde80cf20f07a0d1204af

          SHA256

          6e0ad4cb71ee5cdec84c861feba7c0850f20ce46d27124da33efc888cd59df27

          SHA512

          457dc34658e28e903b7c3c27ca3e3b6c0130a8403588043798d1e6eede04b63efa03a7aabca6633cefbeb79aed6608822daa9efc8a8ee82737c648824417facf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c1c5816bf57e42fd70d366530c732c12

          SHA1

          2787437d270c6a59aef9ed891687f6bd8344c4d4

          SHA256

          54d3b0ff147b385a8ed4739d39fdc96a61999e97aefdf3e23458827b1bb25cca

          SHA512

          8fb8cf75f68f2fb4d46dee74cef8e7e324581e07629d3ff510fa83d440e3079e9bb2e5444efe3aeb218161378e01f77877ece98e3d38da0d1740554229012baa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c85a12e683f505997d4c4600a3f70dcc

          SHA1

          deae42938588d3f012d5b2fdb063ff90d26e2fb2

          SHA256

          661fb79cb7ba97bdde667d645c27fb2c465c2f165757f217b365e05493a8a858

          SHA512

          2d93c65b8192fff32d486e97942784972c76ba1df7ea9f3da319df3909772135d3d490238a5c73dfd95c0db38bec0e4ab7df50539bac57b3141b7b4602cf1b76

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f01197817428b50744d23499e854d552

          SHA1

          d33cde8afab342777d2736ac375a9c2f40fb814d

          SHA256

          f034e53746b24bf631ee6c390e025e5eff6307093ed331c34c5c16579d2ed3a8

          SHA512

          52e14a9ae5239625ea8f9c8118e8ffce44a1278c1495076c5f664756f58ffa13265b27b0204e1d13d9ce4b34ba71fbd0d682151d89fa546f6ac81d47e5c14d84

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a5b454e637523552cae04a6f2fcb6052

          SHA1

          51a27c7ad2073af76b422f52bf0e2071c097bb51

          SHA256

          df728e20ec8d6a178ec40f7bd0158343281ec23a90c355ff0d6d40c1f2334083

          SHA512

          42f5de6719e5ae186912f03c035f05ba541f3b7ebdf0e0a8c2e628e88d971787ba136c2a31100cbf618bc4450d65c0bc225dbc6d5c378d953578c411802d9f54

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1588a51e713d292156cfb8f9b1f7054e

          SHA1

          a9f5c04e63824f19a9c5997079e1a25927fa2e17

          SHA256

          f50417cc3b268982e7b99f7b423f3c85a703e3d24c882c497b9d603df7a864c5

          SHA512

          57c660186357e631b6071de6072daf6f5ef7b4a3d4ce7cb2d15573d9fe4a98e189b26fa672c895338012423da3d9f4fdd1cb2dc858ebd1fb8e753e0210d55ae3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          74e370cf6904422ca470fd8b489d1f24

          SHA1

          51ff51815010cf180eef7c98f8c59962684b0b2e

          SHA256

          a458349129b2f45fb26c2c923442d86e00771b6737278a1f1f8756d39f839433

          SHA512

          2d52eeda97d04b8414d1abec96f8ffd391e27b06c192d27ed379e4111fdec931bc1d4f9ece2761b9ffc7c6f0a9219d1b1ad361632fdb64294490f266c58207a4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          23a36409d3bde5e5be22984aeb3971f9

          SHA1

          55199a0b6cf4a8d8b92c450893e63d3b91189091

          SHA256

          ec461ed367902576751164b05afc53d579d21cf806eba471ffa7ac7629a7702b

          SHA512

          1538f38a0da4c5d34f9d60303256d85d61b735c132ee58655631d5187bb6400407891da8f3ff9962e0b4049029ce96f05cda67f6d15dc428352462b31479bbd0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          051bf4699769dd9dc533b353d3dc6a20

          SHA1

          089e0fe4aa13deefb892c395353b92f98c62bb96

          SHA256

          ef2c5cf3e5856a4f164e48fc79bc6ad742f0ca2146fe354b37d7b7ba56ba0d56

          SHA512

          a712220f17f4e1d41eae8e36f0b6991d9f0f20fa6b0a05243bdca78e10f79d860262958c90509c13b93e7766bf9204dbfafac988f054a78b45556f500f1e227d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2b047034c71977adf6e1cd93df466317

          SHA1

          ea12abdfe8555c905db14552f57b7b7e0e246f66

          SHA256

          f5b40d201d8d192a820bc41072184520aaeec4efc8405da313ccf2f9ba0c4f58

          SHA512

          563cf47e4e533e19680ae389b820d304f66331d1f5f50de37e093aa8b82566e6db7bc25c5c468a5ba9b5f10c3ed4d1ddd7666d7384fdc8cff8e125d6bec850b9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          419f0534a0828bc6bbabdc60cef1986c

          SHA1

          95cc99ee38a40ad3e26624524b356faab3370039

          SHA256

          6f01b61d292765b3d551cd59792fe4ae3625e1d73930edd89ef5fa40a9e04de5

          SHA512

          40321f5f9c1fc5682a2fbf4b3ff846c294cefed9d918e62aadb7e2e04f8335cebd7ec69ce70c15a92ff6bbea4858cba8fb08d165e040affd55d101d74f67befc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          48799b5a706cd2da0f71d26e45ac36bf

          SHA1

          61296dc53bee500f1613a9c835f17422c19f65f2

          SHA256

          a12e74a40959a852998b313e356733a43b4e910079dd7ae5ecbda4b1ed55b5e8

          SHA512

          51f14e9ca12392550367fe56f683d621895ce33369ae39b7619d9dd5e74d7ea1ab36ab3d190f5c8b0ae7659f6a9ed91020a64788fdaa0e24471195105598116f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0893104018b9df4c90a147b85e090ffe

          SHA1

          11f954cc045cf6984b7751efda4f386c13fad76a

          SHA256

          9a476b04aa8b4e826262f9b6e73c39d3879e201b2c4a9336d031da1c3924202d

          SHA512

          493bfdf29ed7007791b9092a99877282ba5a932d6da76d09c80a62864513b7fc3ae4e8139018d600d206be652a7d7afcfeed0377cd06905a1b6cbef4e1702f05

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a26ebf24ea0a05dac262a36d8241a0dc

          SHA1

          6dc589c23fcfce843c0866c43de3223b7c9e3358

          SHA256

          b6455ed1fd73cc440726d6d8741f184569233b53590d635b73a67f5283b0f8ae

          SHA512

          b611fd822dec3f272b115fa32d76efa8672e51796fc599eb726702a06ce80cf508f0ff45923cf3154442f5eae36734613b99737f6713723e8038d8fab419d153

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6f86884838ad3052a7898fa47bb56e3b

          SHA1

          612f338c83d1c9cb33e0647dab24c21d415e3a99

          SHA256

          515d73007188c68a3867132831dbdbc5514e561284ad2908ae953e99f4e1d97d

          SHA512

          828fb23ed3ada002f80ff08b855cb92c2d080f6f56dc03becdfa24e5158223f54e85c3a84deee4ef4d126088ebcfea6df6007c1e9c9315295ff8abdef2147f31

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3c5827783b18851beb3e7ae76bcb2cd3

          SHA1

          b1605faa0c7c152dc6599f90e60322bfa9bc18a8

          SHA256

          cc1c5c2aea2431c26afaf114a5192b31c65bc1734b30968f48d1b93090fd3017

          SHA512

          992a59100c8520a822f7b5256f03341c2c8f37a1a0f353f8b5cebe1a10efaff7548e11090987af77b2360aafd8fa1c8cdce6d81863bf16103731f2a810738669

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c403aa6367a65b692dbb11d65f9e3fb5

          SHA1

          6f924b87fe3786473b9275e01685fe2a4f426fdf

          SHA256

          77e97d6f8bbffb77a58d8d5dc5304d55d029a97ce6a2650de2f5b5cfc369575f

          SHA512

          b9f7f3d7608597fd6eaccf475c42904b0bd87370be1fbede3a9c2159f87ab17225db45d7504f27209abe7cd9c80de6526c3c9022e2bbfc7ff62f74da680c0ce7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          14db7e041134d94b88fb75ff4054af4d

          SHA1

          b09a84237a82bb9a1e182ff528f94642d6a7801e

          SHA256

          7487e0090c0f5a8a4ded723eb64229e9ec2b11e82f38a0093050923dfc208b3f

          SHA512

          000949bede87f9f47da8753787f5a0f5dc14015abb7d5ffe6f541aa0c89d95e85e802ab4ed5c9931605c60a15b1b6bf807f77ae50b79f076be44260499fa623f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          26a4dfc1e944d56915b29e2d53457325

          SHA1

          1a1d312e4d8f0eeb3575fe79a5acedc2e3ae186e

          SHA256

          d5071a5b212c6334587bb75e81ca1fd156e048dd23f9882736bc8df2e9041d4b

          SHA512

          5613b1488ee6fa298dacbc4f76928e372749c9d5c2120bcfddfc8e15fed079c590c65e7beb44138e5c2750505c4df52fc0dfb69c5df6d3fd7276476ccf580dd7

        • C:\Users\Admin\AppData\Local\Temp\Cab1D42.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar1E34.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a