Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    27/05/2024, 19:07

General

  • Target

    7a325369295a7ffd4645c154690c32d4_JaffaCakes118.html

  • Size

    68KB

  • MD5

    7a325369295a7ffd4645c154690c32d4

  • SHA1

    33e97faad019e2060d7fc36a608630a60a3185d1

  • SHA256

    f631a86b4d9300e43afff21e01d88402826f56cb25dc3da4ce1a85753696bbe4

  • SHA512

    f008ebaf81aba5a595f841531c8af8f1efcc6fab6483210a357ec5d92a6db3687d6026eb6195c96c80f6ca20fd420009559296123afe585980a2cb75a9a0579b

  • SSDEEP

    768:Ji1fgcMiR3sI2PDDnX0g6wY7zpkFeh0woTyv1wCZkofyMdtbBnfBgN8/lboi2hcc:JooTBTcNeD0tbrga94hcuNnQC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7a325369295a7ffd4645c154690c32d4_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2084
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2084 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2036

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ef4a201025082d76688a440bccbc7f88

          SHA1

          3af0a1f6d18a1d2f1170d10c70a29a506372aa05

          SHA256

          66c881d172b3f43d16a59083173ede2225e5b768856b0480cf05fc9f21e4ba01

          SHA512

          f81276231114d97fd886eff4490b5a27b1e09de236bf988a66ba755f4f81c01b96a866f8f8fdb25879e8636bfd4faa93b94d163b940659ae646d4360b131741e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          83496a9a8ee38516ce11143357b48782

          SHA1

          7c8974b03d5f373266e3ecf0cecd495c36883b7b

          SHA256

          81baa2791f72320fb0d75319862696706f1e9c7843d680b967d1cb682609bdc3

          SHA512

          43db66d7a5fae0f1df7f00e619e25cfa5bc8ceaf62eafe36cb2c63f36abc1468160c710725abda4ebddc701d69fd783d8d85ca5c062736e4b01700700f688a39

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          13d0e08b7d5b3d150cb8c41daec0f9c0

          SHA1

          2a534e89f44b3e600cd9cb1affca8c171e0d44a0

          SHA256

          343fb9741ce0c77241d684b075cea292706463534283d4dc4332b43e77804738

          SHA512

          241c09e5d439f4ffd60deb48c8ca85d0aad22deb63221d535e8fb774099c528d776905a45246c9c376c10a55401cd22fe540ccba9e831de763f8f7f1deb3831d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f7e5499e8e38895cca4d07df086995e4

          SHA1

          ac9ced51fc3aa88548bc069604e1326612002cda

          SHA256

          9137d1045c75fcc6ba916e3821e8d23b67a5de72aa62c0a9d2440e474798dbf9

          SHA512

          14eb080967fa70e8536ce628c26f975b50e192a681fc4627b6ddbf733bfff3e172f1226b12ecfbe0622f30fd7a2b7acf65e137006acee5cc53353ab254361844

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e067b22c4d07fcca951748ad386173af

          SHA1

          8f589579e01ead4e40ac68f101c1b3a4a4c62784

          SHA256

          1ef1217d6efd094072337a61c4bb614199549cc69666153868f26f776459a964

          SHA512

          76293a2f8ae597a84aec8d6ec57f3651584b84e47ae81f8eb6189cf68aa897c856a589aaa09d30f867fcefbd1788b751536d17295892d5c2b0f1a9db5617af87

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b04e78d2922ffce16c96b37eef956d5c

          SHA1

          033db5023b4a0ae75ee0bd2839c5e66295094830

          SHA256

          34f8fe4357fbb4e4917a63df2f8b7bb53869727c39de12de5d5e5083f25915ad

          SHA512

          7f9c9404758eb47cc91bcfceb5fbae5e48cfe395c1f602050c02aa9d08804ff03e59492d0f26854a1ca22915ad70cee092f7505b7d5f078d158b3ad3d158a953

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3299b510ff3dcd529480ecec0b419583

          SHA1

          30d3d48ce08ef4c5632c94b2bd9ab4aaffa6f8b9

          SHA256

          647ac52f66430328bd58e40e06e26261277beb67242f4ffbd3b9eb82349c9dd3

          SHA512

          cd800be9039788a172d4be2cc4a8f7438e82e58122e1fc23ab1c14b7863d894d5b0daadbebcd74753360f505a4f3bf062a3db9f56b912b577fdf93e01a84e8c2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d626b80876bcb89057aedf7b3de8f876

          SHA1

          69f81190e1beeb41259744f138dde5833ca7094a

          SHA256

          3a6c82d80e2b6a15bbae1bb1a7172f2caf74423cd5b37e2f39c5e34dc89e55b4

          SHA512

          4300ca0659135d6e2467ca4afa1431f9d3f8dd84daded2ac3a35c0e40338c000d5dcd2ed228ee0cc85bea6c688d391509bf3af164cec35c9c57e154648aac492

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c1ec65dc927ad421cf235311dea212c5

          SHA1

          39bbfdb0c1d447e7a9bea01f3c2905cd9b1f2fbf

          SHA256

          8dad36e6691a9d1e154cf62f411690b7574c75471749ae884e3058cbc5accf53

          SHA512

          d16237521444e375f80435012493f25f2eb399716500b14106d1ca91f123e492ab367c7a40656aff2cc53d1a98c19acde45f2f3bf869d3cbcc7b924143dbf58b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          cb30b9f181858827a732b9b5bcd78912

          SHA1

          167ff516ed2179b3162607c117085188abe31887

          SHA256

          baf516e56effe116e014c75ff9d28496a952ee9d9053881ae68a6d40f1ee7843

          SHA512

          589a16147009ca08f4f8e87ae05d7e133db7928506945339b67bbfdbee76f2de5a2550bc966cfa1ebe6d7d43ca34fc1d6bcb2643b1989a1a84dea14434673b21

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          acc602b589a9089d258aa3281e803057

          SHA1

          f8a34278a5c8084d4c79ea2d30483991d5290f5d

          SHA256

          25881b62990d649f865dfda29d57f266a3df5c5376153785aa5303144fa95b62

          SHA512

          c655e15ef8d404f97374f4283793b70eabf972c6484d460dfa5c4c9bc9e7fe1a7cc4acc5b8a774ebb8418cdcbfeb44181d868946e3ee0ba06fd30360ac273eb4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b4e867dbd481ce3c937b2af613657b40

          SHA1

          92dabe8f45744b900a49ce17e2c68b8c66bc01b0

          SHA256

          93c64971e332e53bab827c713b4908a2743e914a88618649e535da109bc71496

          SHA512

          e85cfe78d9bd20221f5dc3981a2397199a91d48e0512493ad762076c3068e3694e528477f02ec8200553a074618d3136d8849c4ccde47dfe255748838f593e14

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b42b12d05a60841c45957be56e09361b

          SHA1

          bf31d7bba1a001bb994e9012390b9de8008acad1

          SHA256

          087e21023cbd96179e8b5b62bac3c240f0676ca77bcf24f241d1e0dfa59f532a

          SHA512

          ec8cab2b10fbf2287ba9e1f771af8b9a0f245e3ea31500a8b560dbb8a2b16293f63da57e65b58bb6e46213edde2ca9f5ac6cf947f4996cfc19d213235a9f5b77

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f71c525ca4981d32f4c3fa37a37a1516

          SHA1

          0874455732b879ba956e925451d0141d94b790ab

          SHA256

          4b6b054c29fb36fd0519cc55958d1c689dc56110e85d08a52462956b02bc1f05

          SHA512

          2122c36e33e0adb380c2ba4ee102e02246ec0e0b7737d38c710455af5cda488bbcd4b27726772596a2bd498cb1a18487118c1405569187fb5bfc8c6c8caf9e19

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5b08b082e693546e01c89bcf477434d9

          SHA1

          fd4cec92b7ce25a1489f79eeba39297c83e23311

          SHA256

          cce6aa4875c9fccc6533315278c8af7f53b5ca4820fc43ac02898df73ad89381

          SHA512

          a1509f451d21e8285781c82ca91ea314ff6cb4bf83ee02bc25115438cfd404a5bd442e7ac0aecade42b1c1b8c019b018bc6e4339a9ea6e1f5e5c3eef6e539942

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          590a81f6e80e82b67b85d884306be486

          SHA1

          c98fa679ee9fc4156195bc2e8123d43ef5db2483

          SHA256

          d04a0be082ab7caf0bb18c661db3bbc1cdf0a659b16b0f22449560cfab50fd21

          SHA512

          8efcf7e76a04003a6e975e573bf9322fa6104cf707e24cb2bb7418a3f66e2f97add68c92e80c79854d6058d56410f882f68b4b960e1c9876a851c2a3d352cf81

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          44d61e6891e67d6faef382080457cd16

          SHA1

          405a822127e5f4b94e32e5c56b394ef3456cd77f

          SHA256

          df81c60f42c6ecf6bb2c8dd55ec181f7af1f9a450ab3781ac1264be14b76ba72

          SHA512

          441974236ae75f4ae3b3eac0ea2b08eea84f4763841b36c75b60b31c5551757461850b3dd560d4bb6be88880d35f12c9ba6c51bb4845dccc5c0c86a178d0dbcf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          956b7e5b8937d2d296319cf1833675ea

          SHA1

          7bdb0ea4683e6fbb351a687ff2f4f7e6088042ed

          SHA256

          02016cf313e3d02f111f6b49a18594872675386acc535e5fddde4bca5345cfa1

          SHA512

          714386f9613f8ddd29f9a05b755080e0ea23161030ac0a46fba66bdbb3ba874ee0668ee2b570df45e63b3840bf1cd788f4768f35bcb11e7d1c814f2f86bcfaa2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1e02884067f0c70689ce271a26162e6e

          SHA1

          c75f79f3bfa96e3e87c6768c8b444dfdc4818719

          SHA256

          aa166fba1c31e23cf61883ee6bf9dc51aa87ac3abc7abe139006700d9dec8c6e

          SHA512

          e6d481bdf89a19a8941107b9cf8befad3102b836d20446737133f56bb666900511e1055533dcfd21e4513a070fb53e80f15334a245e05fd9097a8a0c7172f8c8

        • C:\Users\Admin\AppData\Local\Temp\Cab2B18.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar2C1A.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a