Analysis

  • max time kernel
    142s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    27/05/2024, 18:30

General

  • Target

    7a17f95b775797060d44a33ee1de9527_JaffaCakes118.html

  • Size

    5KB

  • MD5

    7a17f95b775797060d44a33ee1de9527

  • SHA1

    0038b96844222efbfca151d8ca1d2713584cae97

  • SHA256

    1ece3b42544c397517f58085fceb2b3aeadb7546676a6de4bab943d1d20e6ce2

  • SHA512

    855b9b080a0e54146f8800c4bd6608fcdb816a76f72aee39aab76266272eab9f9fc02b73011601c86650d633ab4949f1b37f27b92900cfbb97649707269ff935

  • SSDEEP

    96:c9PpxywhG95koSehaG48DMDqAcwSocIBtgcIivb2D6Z9li7oHo7w+K:cPlY9Xf48DMDqAcwSocI7gcIivb2D6ZD

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7a17f95b775797060d44a33ee1de9527_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2236
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2236 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2264

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          877c2dc4ffe348cae14855351d6cb27c

          SHA1

          f97e0a4e4b91de15e95fba8f32d15157d5bec7a4

          SHA256

          4676c74a329d416ae2204b911429e82c1eacf15ae99f80e13981272bcf1799db

          SHA512

          d26ab1fd1a77fa94484bf134f731c0af7c7d80c0008d6e82611252a3bfcef303e4d19307714700d63de0dfed959f5a4d3c420cb47cecf1b11e27278c566c8649

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          15214416fa75b0332cc46d084c2d12a2

          SHA1

          397312595695ae5441bf464a1c828ade52c17e6e

          SHA256

          c48c37c569118e075aeadb0064dd0cf40f9344969394b0cc26b4d61f363e701c

          SHA512

          cceeceb1bd677debd43e9573958134ac9e589613527d53a6b4d2720c6813b2b3145e8720b73fbc15304fe4b2799373e5b3907fcfebba06a5c3c80b1a74e32116

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          88e93dbdc39dbbcac7706b0d3a7c33a8

          SHA1

          b81169228c3cf442cc211693713c71a0378bee6f

          SHA256

          4c902b7a28b483cfab7be3ec105f07c5e3a2a4e1463657b65267ba4ae587a628

          SHA512

          5115afa42cd656390fa564ba543f9dc43bf9cffb25c4dd5c61472417aecfdd043788b69f0428891bcea5deaabf63c06e442342c3e8d4c9ec89d061d1a428ab3a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0fccc7e90ff8d92e6f9e3f540adb4d68

          SHA1

          cbdae2c55dcb8d86ae72162e254e710f957ac4dd

          SHA256

          d228eff366851ec97ef93e9307004e9760d7c1374649464f7f4b5ee9c0d6c4ac

          SHA512

          6b4490c155cfe5a2a52c5c50c182b5127d53a86d5175e3b28f7315cabbb6aa87e002851b12614db9a29c4bd71382faae8781c74d7e64b6406226abb29f6172b3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          17e4767ceb96d5ca5065f32433495d89

          SHA1

          c83bf064ef28383eaa86210f99593594d8b3b7f0

          SHA256

          cf0793ae1f8886251f744844326d0db7cd157e5a0a3c12e67dac499ff2d2697e

          SHA512

          7d37c127d341ccd8ca1e55396389ec3ed26f5357603c909c9c93302129d60b035ae3dd09fdfc7a73d265e9eda57204c03cd3364cd3084e4d5ef07992bfb1aa36

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          19511ff7bcfc9706daeaf6d575140c27

          SHA1

          82b1748a4cdb8c6d79ea5f00a952c172074cf27b

          SHA256

          e0080a8fa40a4bbe9ce28303ef856bc4548a5bb39eb06b07f6de6f486a9baf01

          SHA512

          0f40f7b8698a5e941ee2bfc8547a794c685e91cbce5212c038a1cb50d182b8b9716bdbf91dfda83fe4dd8ec6666b7c545bd4dedf966bed615cec2c3bcef27b28

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          baafefa7cd84e7fdb204daa55b27e748

          SHA1

          fd84f671f46d06ca713c4787e4bab2a3667da42d

          SHA256

          7ece4ce82c8a0e26b321870f56ffb6f7d081b10cb81067b7f8c6288438d2dd80

          SHA512

          5a79eceda80fec5f8d7a99fd08f9f81bb8b3f2200c91daf13034033cd16a5685a7ad1ffd386cfa7c6c9da8cd2d6525f4244f321a1734955bd8f860602faa3571

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f4eb70fc2ff528bcf11a88e46025a9a2

          SHA1

          a15667995093313cbbbe3c0dff11b7c94f82df33

          SHA256

          cbc63a1f7428666dd5832b4e3803075352535f7b15cabb59b4c54edb42ce6c50

          SHA512

          82c409723582c73d39752b7b3d5cd54847f00d79e8c33bdfbd3857ad2ad1b82f1f571c35ae85fb8994261b19b14c587b5f0a58da326a32586a68d29d348c2333

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f715d70ea25cebc3125b2b8f6bf6913e

          SHA1

          356e746b2ca1eb0d45ecc61261df269241e835dc

          SHA256

          f6c6816a596c6fda3f0ae1ba28026fddff0a2be0250cc7cebc7105add2e675e0

          SHA512

          e93733537011aec4c81ddeb4a1bfd9149e0981fbcdb661222e4377dd0cabd19067bfee2005121bfa91413f5e6d085f2c23b7ca737a6259de9081a47707d6ca93

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2bd05eb73bf29b024d5899ce06931212

          SHA1

          0b76431d3fb971c393fc1dc29a848d2c2554ae1e

          SHA256

          22c23ea4772a45c14aad10a586805654704a785dc50215837657477c9be3dcb8

          SHA512

          5ecc06f88a50004060518c5ff014363ad8199173849719142c3512f54522c9a27968eab42ef2340c3c759340169d4516b74a4abf8f54991f66090e4f5dc1cbca

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c004f6ed789bddd557f384c1ded01383

          SHA1

          c433b4a602c1c5b49867881450ea3bd27cb2c30d

          SHA256

          94a32af936f3a343cb99fae880d3485f93b27728ac737c39c8806e941bfce049

          SHA512

          56be5180d9c41b52cc5e8bff5b3e171d01ffd174cb40ab54a9a75d2eda2c14d7ee73b6925ff519539d3b5d55a7542a1f9349ff2333be85b38485f5ee84c510f8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8648874fc558f45fb3e1c26c9454aca5

          SHA1

          13fbbb04c74ac9e65e1c690472c9969f3495e08b

          SHA256

          b30527f9a104310a357b2e2578bc6f46e6cf8aca1877c4c33ac58a99889d1bce

          SHA512

          ce09db6615ff879270b803aadae89dbd620b9fd9fe48fb532e594701145f21f5e3511e1e66d12ec6db918b694cc1008e7d2ccbb985f233a52ad0234067be1842

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          90b3d97e26bffa95b8123fa041ab9da7

          SHA1

          9c96a1af277b3f58edbffc8be44f83ed6111667e

          SHA256

          1c7aad8822863084364c2d851ebb62b751bdc1b9f7abc0a5b3b3e0199cd24472

          SHA512

          80bd2f74ddf156284c29f2f3690cbe47057141fbcec96539b7bf9c00b2275632169e5bcee6a9aff20121446387547a7ce5e79c95cf9cbf6edb20267ab284529b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a7f52e668fec91f3d568c77ea1d15570

          SHA1

          bb998e1f2b44ff89809e6d69206319383397bfc3

          SHA256

          cf4f8d90b2848d48de89ea34c37e2c7718de8c18d06f3b29efdbef6dd9f83cbc

          SHA512

          064c72fe127299c02ff27ec567bdc4292d72b7f989f21d6e7f599df5343f6aaab8910258f5369e7759062aa99606d20dc9e7a7947b3396622f7717021b336ec3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3b82f0785c5ab1499c9aa902cee0db3c

          SHA1

          246c379d4f698ac01da0461c8d11b6584b242597

          SHA256

          7c7a8eca69011662e134efb39af886f331f7042938b4b07690dc0a74f3094245

          SHA512

          a8e6184a642bf97447e6d2b3af9789ae1f69681e5ce12615ca2c87fc089a9563cd9dbc3bb07b90022e43e8b342e845f168e6491e20420eab98e52e11f5be19ab

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          91a999af776c0e65f00a3bc9d4c46b6f

          SHA1

          236cb6c375236d526af36e9a6b4eb7110803a998

          SHA256

          88197a0c312601d746e6d16647c409afd136ae24fb16856ae6c698758ee41777

          SHA512

          ecf60fe88cc5342e59f1f921ff85753da5951ec043f4b0a126c64b058149240b035df50919cb4a8bc5c81984bc1534088d611eb5c2134aa1d5d6657cdef815e4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2030326b8a7caffdaf5782ce73d9892c

          SHA1

          5fb82b21a43bbd57d77a7406e1541147ebfb6145

          SHA256

          9d16fcc81593f5e96cfde27519df37e48824b2b876074acc4f2075318f3aa4db

          SHA512

          3f7e21e2db5dc9bf971f5e8092d91423cc5bac763d9df771f0f867411f04260e7de4fdc81d6f09e64a0ad15632c0517d3c3ee7eef06445188eff6b7e054a3f59

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          50ceff18a16a84a5296640ed1c476082

          SHA1

          6cfd26eaa2fac420b344ff4fc9d7a8ad8f78f97f

          SHA256

          8bb12db54fc0034b2053f0de757fa430733f0234aae7fb232878294069d02434

          SHA512

          b18422d61d907148bbfbe396a4c5b50199479476d6fa2d780558588831362aaa6769db010883c1c26b82eb262aa3d25232bf3f13c7124543a64e5ae2d6de44aa

        • C:\Users\Admin\AppData\Local\Temp\Cab21B5.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar2227.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a