Analysis

  • max time kernel
    121s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    27/05/2024, 18:30

General

  • Target

    7a1806c4776d9cc08c410cfb5f9d54b7_JaffaCakes118.html

  • Size

    36KB

  • MD5

    7a1806c4776d9cc08c410cfb5f9d54b7

  • SHA1

    4d94d1dbd035e57684f5dd7f1640e77f82c16510

  • SHA256

    93789d14531fcbf24f78610a88946dae3e303f9e299a6442d747d60ea575dcb8

  • SHA512

    d630eaf54e85d6bfb7e60f6d03b9ae09083c20ba05a87d70f82fb2018216120cbfbcc7b5ef807ff8a30c3bb5a78cfa5d56ed9edf41b402e078291fce5b4592fb

  • SSDEEP

    768:zwx/MDTHJR88hAR2ZPXlE1XnXrFLxNLlDNoPqkPTHlnkM3Gr6Tsdi6f9U56lLRc5:Q/TbJxNVpufS6/s8CK

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7a1806c4776d9cc08c410cfb5f9d54b7_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2180
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2180 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2924

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          1KB

          MD5

          2d605af38c49a368b771cee709875489

          SHA1

          2a2ac6ce39db2439523b6a5dcc2470191aa0369b

          SHA256

          21406e1797be98cc32f7bf224291e492a01dc8bc8141e43575b71e3255498872

          SHA512

          534a97ede7e97dfe4292a2c8f66680fee8173b394596bdcb5456c97b775a208833d16938cbe467cae13b91c38227b59df76f83f60e1eca25da2fa7e164b7c8bf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e07567c4fd928788bb2402318f4e266e

          SHA1

          c2d23400c601cf44d6f36b5efe32da3685438fe0

          SHA256

          638474fe5c3b77f082b245cdf9410c935968b54a228b2961b90db112e6d50fd0

          SHA512

          abe289bdbfb4c9fdc234aaf62d3a7dd61bb1042958ca01bb5162e7ea6e0ac63078585f1b6fe45fc4aa59d8cd21185f7a7a11aad8c450fbf70301f30c3c306df6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          93095717db61b7acbb33c5f45e420a12

          SHA1

          e4130f556b7967e0ea3ef67338193a7f914f52dd

          SHA256

          36376309d46e92917509f950cc56d93eb7c2a6dc68f9e3ab7297da0310795a45

          SHA512

          b3c316c2b954481026c2377d4921dcf9062d493710c32d5b2bf09129e3aa5baabbc731a14366abae9ee5fb77eb63012c959d593d072aaf0548765b57092a4448

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b822d6f0863c60e8ff69dc8947a4140a

          SHA1

          793eddf979c452ce622ab52ead139ac65a12f3f5

          SHA256

          fcc662c4f2372087ae21360c6a529a1cb99b1ea8268a03a5b885fb347d4a8403

          SHA512

          dac55b07db29d5520dc8d8f5465e8575a134d600935a9280e8cf9c6a2d4b76265a9717e41b6fc01106befe30e1ceac657e2cfa48a80ef42f8d4c79e87cd49e3d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          cc21f0e457e6fc915b4fd4a0a16d8e69

          SHA1

          81b6dbbe7ceda9d1eee5dd45814c06a1a7cd14cc

          SHA256

          7f78f101946fdd7482e1baeaed1c346fae41da58ff9a7f40a3fd7eaa41f1173b

          SHA512

          dee6b229a021c1331571465e700250ed500c926fcf9df23118623f9183dd138194ff543393b5c6252c697052fe0ad177666c56fc2d74108e325f010068eb0963

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d96785ebfd3e35297b61d9cd847eeed5

          SHA1

          694b93bd3112ce67f3169ebcaf5d90ffd5db1626

          SHA256

          3d6a5ed455efdf1e07e771e507db3d82dd21d0d961ba21cd5ad5504db2fd05f3

          SHA512

          7938daa9dab44ec33b222b27654c09b77da16623f524ce7b23ac1e360eda2c549ee6df426c3426f8d8b04ba7a191d4b4bb5baf57c009341ebd30b36b7cb125dd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0068831929ac2ed83d9b31d21aed3a52

          SHA1

          41e00be2d3ba79426d9d41a91bc47f6cfa712d46

          SHA256

          cb950cbd6668dc2d531883c1498a30d9cf4395ec52a4300ad0505a68818531ef

          SHA512

          80cbd6ee66553c6588d6f1b91ce7c4bfe46a475ba270861de4a99d5ebe6b8423bbf88c76dc7e22d22761998e118d87f9411d2c17582c918431d54c21e1180fe6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e37c9e4674a3b78d5b23f09d8c19f944

          SHA1

          24b543ed89921fbfa944db3ac85ee7734e6047fa

          SHA256

          8aa8d9736e5cda63e9e3ca08cbb0abacb160068fd68b7e23daa94afc65a82cf1

          SHA512

          41035afb926d97bf715bfcf9594e3008ccdcdc88abfcb34e189bec500620d1fbc150e9e5e152b967c526f1d631860e3180b3a4934f652fc981284693e10666db

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ec6aac30adedbde996ea7d2cecd0bf52

          SHA1

          b52642b389c570c108f644e41a48f57a965f3179

          SHA256

          e106dbeba1271277506733d7bd2eea5cf96c68c6c2d15abf3246bc45617546d8

          SHA512

          4829b313a9977b6a6413f37fe25de919445de2141c8f271a7dcbcd2cec67e8e00510f81b201691bd7756562d5c65de1c8f4117d0c90f6bd8a87454f3f49e405b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          53ee93d20406c288dd116be0ab99ff4c

          SHA1

          df3ca4c6e1c747836ca533774e9203b45b472b2a

          SHA256

          a6369c66904ae5d76b79e6deca454bc7c1033e2e1ee91b33aaad0441ec797332

          SHA512

          1d3ec228c815b8e02a4a975ebd308ba8c2137edd92963ea8d4f067354f6be1acd2e02d15b71ab6ac868cb9c50918336fcb44b36471e53c8b6896b2754796015a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3cfad78101acc7b0f083f4f0078e5ae6

          SHA1

          ea81d17be12a35eae3bafbdc4dd84d43ffff5a46

          SHA256

          5f5db5b93341888992fedf132489295919933daa9d6d7ecc841dee6c69f082fd

          SHA512

          3d766538cca4cb89c2f0a510d505a002fae3a0c13d228f73d59deac2ec3f918c370ac98743198bf7ade1b8264f7880d42f3ba9ddb4778fed139ca203a92489cb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ba89a9eabb1c26d8c193476a3401dd51

          SHA1

          d604cf2596acde891253cd9daa324a27e63aa0c8

          SHA256

          e67c1eaf8a0da9895a0ead742d41b4202243f624edb2d2bb0b18e9e6cfddaefe

          SHA512

          a48fcf395d102fb4c269e6ce10c8441cb08f8bf780bf1b1d3c50ee36aa486f2796270377ad68bb82aa6ee7c9017c4550d64a8937011137804908be8fbcef0d7a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          80cf0bb75b4e2ee36b8a71f0029cc289

          SHA1

          29d9ab0e6291cd8996c9198b400722685384c88d

          SHA256

          3856e22f614d2d76ca5a3fc857be071bde5d74b6d782465abb5c28935671dffb

          SHA512

          bbab5486b73be8149c373b7b079058b3eef18cac560050d638032cdc0cf9580361ddea8775c435fb20467ba5ea9c918d74be2619d1be11f432b477e63f41c511

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1ba4604c104487f0a07720695deae547

          SHA1

          891c461531aa42a6905da0a3caef70480eef8580

          SHA256

          9ce6278e75c81dd91f33ce92d5f7350c390d781df8f41e25ea354786ff974325

          SHA512

          3ed86f2d0adda20f739a338c7dd85a01410a151e56cc0efb4780ba5c2df530dc98efb1e5a7f4c4ee36993e88dd31ae328cebf715d7bb3b87f82cc643240b9adc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          71c63b0807caa9e286de0f873fbeb2dc

          SHA1

          ec7368702ce997aad34a9df4a68aef608f9cbae0

          SHA256

          9f9e20f366694396c81e2080b9b4bcb770d2c5081552baf1939702b3baa787c6

          SHA512

          779d1d8f1746fa3baa40fd7cb15a2534feb696d9ae2f93cfdc2d7293cd3e2803b82dddcd009f8e41ef281fab8fbababfdbe2bc119ff9afcf3c1326fa9498a67a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d96fb29a1c58e8784a84617f122834bc

          SHA1

          6f85c4c8af640651f68e7ec344a2ea48f034d834

          SHA256

          315a2966357385ebbf15cd0b82debb2d8a5ee438e4305cf43d5ffd0486cdae02

          SHA512

          78fb172239b239d2300e5849d6f53fa8913ad86a9c07d64392b38abb14ec088f822cb3fb846f1fb6ada316c509c087e2f3c4d2c09c8147ccc3b6d19fb9764617

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2c230599a1b17a84a3e10def037b071c

          SHA1

          63cecac3dfb89b73ec3630eefdfa0e53e1acd71a

          SHA256

          8528a2275c6e4412858b5519279d1f08f5b98eb2b384773adeda10db287d9ffc

          SHA512

          559809a4a335cd923f9cd4455f9eceb88e38514b889cf22c68755fef6a4b2e65e30da64cbf2fef3d82a4e865804e56aac39c48a8a672d63825ae65d6c8424500

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          025da6e95aac073c60972670ee240834

          SHA1

          f5dd35b86aeeed6600b2dfe646a83df6f24711b3

          SHA256

          747607dcc111f54d961f0b786bcabddc1473506ab352b330758517e3c9320842

          SHA512

          093ced6d0b893eb3de2bf62c9ffaea555855981918cc2a122d9a6a3b74db3a063501a10db0c9234259478d014ef24bfe1baa148924a1e3bb524dd1ee2a9185e6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c8a5d43c54da1a94ef6f5c8189420ae6

          SHA1

          7db27480df141a9e8b3e95cb5b1dbea0f06cf568

          SHA256

          e15462eccfa0915a0b35c5db1cb4398b0b786373a2a35c87349516b1599c9303

          SHA512

          9da7fb066723937282abc8863b08028a2f4dac0e790ad4a5da08c88bf4f186f11fe7fd79648aa85553cb346e37940bc6bfd3a81817c8207665c4e50767b8ac77

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f7462baed664ce26fb0a4a04b0609aac

          SHA1

          1d288c629ab11b9eb9dab63d0d99617971b87344

          SHA256

          c9e6eae36fc65b374200768988fdd6a6994c07918a58bc602958568364764c64

          SHA512

          9f98743fde6485ab64d08b023c456be892e3895b2de761c09684a9ad825109d8aab88f07f4964e2bbe165398bf76ad3347cc8ff9dcb775c97e3bdaa767e6df57

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b0b960891408b75307c3c8ea5d418f3c

          SHA1

          b72e90043768b753929d96241821835d997fd97c

          SHA256

          6ba8d0d395b3b0feb04c19be4eb79fbb3c5483c595acfaf75fc72db506daaf8e

          SHA512

          fda355393813ac454dd407cae16f7b7b1d819bd44e1d023eefef5d37324bade34898d6066dd46b7595b212af762ae792c4587409a858908c8990088893ade51c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6e7b28b7e9a8e5c8ef613aba30a13a76

          SHA1

          d9503f28b9f0e4c9e16ecef8e7e4f16b947acb1f

          SHA256

          ce5a1226d81aa5b28dc994d8ccba3818a173dfbe5e48a946417083e4a7272752

          SHA512

          cd87240c13b5e4c5566e97664a610d3a1bca938f9922458c88cb8b5950e5e8dd3837001fd53c129631006c6a125d875b735b0146227e01adff583316387a301c

        • C:\Users\Admin\AppData\Local\Temp\Cab1CA7.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar1CAA.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a