Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/05/2024, 19:07

General

  • Target

    7a32aea784da672ab1f837e3e43dda29_JaffaCakes118.html

  • Size

    27KB

  • MD5

    7a32aea784da672ab1f837e3e43dda29

  • SHA1

    55d755d478259d332ae866a0eb776ec17903e331

  • SHA256

    864b9294d7c4be2774439a8679b476b01f2e39c84e4a50119fa519462d2fb61f

  • SHA512

    bec7bef741352ae2e0a03b7e0bc907f7f3698ff95b238950b2b3b0f3d3be0ce7ade96200b2047102d6088394c9bfddff91f15247320e8036057ee34f27f7fcf1

  • SSDEEP

    384:IdIHdwBUF6TmfXwOHwKLmEwagu/GKYih4XGSv6zqMqZvykv70qZvyqQKEHAyn2kV:5wBCZyvyqdvrQ7hAxslT

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7a32aea784da672ab1f837e3e43dda29_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2872
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2872 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2800

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          2028243902d9e1f970b4666811f23123

          SHA1

          2abbb6aabb43c09e3fec98d492bb84af2853abd9

          SHA256

          b951a6d7b0b115b8819a109ede62908ed9a0003e8bb70eee42e2daeef596de81

          SHA512

          7876dcf6f69a1ecd76bf81e1e35885e5d29430f26d0232a9601525ab8caa9e9a3752b467a5ff9021533e2b3203a34880bf8449f91f73b5556d4e865be114c877

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7a43c9c0a817292642377ca732a004b4

          SHA1

          4ad2b0f0651a4ff54b81dc349975eeb801457576

          SHA256

          142287d4b45ae045ca15a01de54900828a0655860902f184d288e17291338d29

          SHA512

          b67ea6c453d50d3ed423bc32c11d283f8cc227e74c9e95552e6b588605004c8585418984c80b87282a246c3f8e89b193e3a29e0e17fb5869e1b5e0e0b95b9883

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1f40bc32782c71a74b759733be53f5a0

          SHA1

          d4a7135491dd8392faa71eaddfcc38614472c823

          SHA256

          afd5a104acff2d85116fcd1431edfd927f8b33f1b90ce4a671b2198ca7f65f05

          SHA512

          4e0077567e5b0f49fd01d776d1c6fd2e44d514d6546e4a41e0dab19f85a5089b68e0eddaf9b157d2b6c3a9e7e9bfec394a5dd327ddbd041325aa0d6716a282e5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9f5fad36c881ea53817317b685b91daa

          SHA1

          cf83b28c091d7fc25bf0fa69b0a253d30e9c1d93

          SHA256

          6644e36ab6d066b8ebeafe7c48e374397a7ee250d8d96c77372b54c99758fa05

          SHA512

          8d273cbc67f3fc3213697db45c170ed384bd76d14713b469e9b101bdc3c10a2b4e69d61773ef0c7b6a44450991b5392e0d58365ff933a5c04867157f04540e5e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d5b04b5addd61d3dacdb5e457f43a78c

          SHA1

          130a397fbb3c01b5a3d43409c83d5c3d9f14c0b4

          SHA256

          a7b47942121b288e4056eb86cd35dea00182b4cc717d3c5a1b264e41dbac63a0

          SHA512

          cee82e844be1e7a14387fa0c3958b94f4b6b1fd33b3fb632f0de1793ec3a2f514b8e61a537fa35f2e5e25a1e107294573ce79ceb0a832b772a65de09c087db36

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9df09c24e23887222397627102714c31

          SHA1

          3e538c663fe5874c922f1d2b22894d49d545c5ac

          SHA256

          1bae0e701453a47505cb1e042e62676435276fb05e478c13140772271c1e3d9e

          SHA512

          dbbc225abcade0312a2903cd9bfe22166199008fa8b3241c475ba50557f5e0578fc2322ec70958fae5d0f4fb2870a0a262388a35b0b81a74d38d90e4dd7d09a2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          61a373a4a2367331323d3c421a6fba55

          SHA1

          d08ff33ce000549b0a573f53ac46622330f0ecf6

          SHA256

          fb8b26865f4376d9be1b00dc577fe084d53901857f82d89487d34d51ea297b19

          SHA512

          b154813a15f15a3e27217d0f9797774bd232340179727e1faf49388121359b24e2a1f7945ce19c9a0799a2373c9b7294e58ee752051b97fede7c78bc5091c0f1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          576e4aa1e41141503ef5e9a3289e5205

          SHA1

          81817924125b58009b7ff6989de8ffc9ed230eac

          SHA256

          60f2361fc75ff14cfc44ecd7067f244f2ac114477c9e4ad8d98ba66e6cb4b781

          SHA512

          cda6ad0188a1da03e09864af34b3b134307e63b49a4f3d042b13a123cbce817d7bc37c66e43ecf4e27dfef73beefced3c07f3ece02b1dd99131c2f11d04ce725

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5e38b002800c8fc59b305f01b4a2537c

          SHA1

          a781408c48b6d3584d8c4f6deb2c0331ab4ae0aa

          SHA256

          d07306b264e5fc697148efc1b57ec4f03ce0610faa8c793475c3169d4da19487

          SHA512

          df79bfec3772e62316e706be5d0852f2d20337886a80df6f0ca77280a0017ea45d1246462b10128e609d82bebcca190f6c7bcf9f6245513676ded9d84242ed1a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bac6a5469acff6020017d202441a59b8

          SHA1

          64552dd5b89beedf322b869c4ffa5f8500953a90

          SHA256

          db99c00b872bfa5f1a5c53f6ade764331c1f9ce1011fab05326f4e521af092d4

          SHA512

          89ee9df469ede86ad6c7ca76652cf4e17197db0393db883c3499c9366acd70b74acef1e3cbf8e01d06be8c772e41b3df87bbcadc4ab79c0bc3344643738bf2bd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d21ea82384eb31050fd7603f6c93fa88

          SHA1

          3660e7b85af6530085b8b08337397e9ee366fada

          SHA256

          6e73e3ed11e88b4d722b28d2edfa39493d6787e307c25e7325ca6f08070947cd

          SHA512

          85e75cf772ea6f10df685292050719a98ac1fe6b3005bc505db09e64049b38060d2d1a3fb28c2e678ed9a6be3db76c9b418398f055820d1b771c5172b87109ad

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b9b657fe4f36464819bfd0f8332d69b9

          SHA1

          0d962ffdaa902b772fa2e76556aff28680a5d9a7

          SHA256

          c5428c8a829d8eefe4eabc90dab35a8bfe494a20e28efd5f5c9b2842fef63a60

          SHA512

          30400f0658e12fdd7876aa2f205f684edd7635112c51b08ffad37b8e237e9d213133004c43d1e977e786044e610d9f1b80036664d13ee322272784611fd10035

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          911cb22243fc45d3f1187c9f5521b434

          SHA1

          e3c3cd1f0ee7f1fd6a34af6ad48f28898fed2177

          SHA256

          3694b53e706bd0b2f053fded2f0e4755e87496d1fbdce8bb99d395aef80a7a2f

          SHA512

          3bde691a1e3acc6ee667056c5892badd691d9b6f424018724828a3a67f062fdceac2e7adf46ecfe1b1724f9d52e83c7cd2917c911ee5794acd802e6623781ca7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e82f92bf551b2675620ff5910c47a387

          SHA1

          43cf2deacc7e393ea11078bc695f51735148785a

          SHA256

          77a13814a6bbbddb1726f8a2a46fa606d3718d4274e1ae5c533d01d3c4d9f8e3

          SHA512

          678d9189a899a7cc065fd8463120ebfb407df2dcfcd966b46fc692c6f67e13ee6ce23f6b09747bde6b99f4c947a3f76953d9414995d0d05f0f58c16b36a55dac

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9f349752b4b07efed2df85ff1ee9ec81

          SHA1

          ed5c79974c228d6ea207eca3a72d3cdab3ceb76d

          SHA256

          fee11a25bc0dd5e613c504297120eee0e7cb5f19ffe68dd3db85037569b98019

          SHA512

          e7c2e8dbf0c050942ac7bf351565022e4176d718663e7a7cbd69ad6d5522c06d9d05608a077fe820fbdaa6a02399e22a4eaac0af27e3acd54d9755d8504a0d5e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          318b3ac7deaef337e2e087ef859f49d4

          SHA1

          f3be8501ad9427c6d6f8a12a497755cf26cf1920

          SHA256

          3d1cd9e3697b3bd5087fdf67c1a3cedc5cd79d2e6ee0dcb1edc17987b7e4893e

          SHA512

          aa07895007bb2f1d446e339e39c7c705b8bc91e4b14d159ebdd6610ad8dc5fa1279a7cb3c81a9c16670c104d809d760813b58420e3904b28dddb76bec29a94da

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          63a17b27da1062ef8715b7c2dbaf96ef

          SHA1

          64309d3193ea7ebe09436fa1359d630675aaa951

          SHA256

          42e7f03b6fd1c1867e7d63557f4528698b9ac1608b1a2891f20081c684bb6c2e

          SHA512

          ebc845c2d08a8540c918ccf3fafb479caf52d2d106980bf15495f35a037e061d972142b02edc36b0e12e46dd6506bbd4ddc53400d9a182d614c1d82bc288e54d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ea5feb6d1ef244ad56f26bd20c64ec46

          SHA1

          7a266e13449f645c4bf9ba8467b6f742312d4780

          SHA256

          591790a48d942de3cf881a8833d7d475bbaba7a6c2fc538d9c2b559b13e07b03

          SHA512

          fbb54a8058fc7e6d46af11a6b3c6b6353e221f3d5b7ce4287614ea9db847d9d0f58a2551e6c28bd05fd436e765555be63a8036dc99c2d95526e919ba291be98c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          56790d9598bb167f5be7df28466c06b3

          SHA1

          d3f3edf3c5b72411a11577ec26ce0057cf35a92a

          SHA256

          49004985163d546d590308c0fecf96ae9ac39b284967898806502f2eac45576f

          SHA512

          2463777895bfd64d5b4964dce567999c3bf87df385dd503a33ceb602db33b6f50f4db4e331e088eda0f5ca4796eb7b1f4a89daea6b6163cecdd52b24728dbd95

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9729344fbb8c7627b181b0f4236291a8

          SHA1

          497a16de7626ee2e17456c011cd8a0c1991b0b09

          SHA256

          d0af66056dab8d9fe7a7ef6b4580c1ab09c4a6028363985d5a21ac85466d70c0

          SHA512

          6a7e4930da55b84c01c30883096938c4a60c9a61fe92d183a8171bcfa468798af0abddf4731a74b0fd6f6630dc6c79d2df74490cc9b9056f359e613f42296db6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          4a92da28a6b74ca0387ba3bb0bb70dbf

          SHA1

          5465e170e6abbc7ad47f8cb794de93efe6c5d267

          SHA256

          e1007d67de0b4bde8a7cdae20c44aba04bc1ef8055825797a9532f755d541ac8

          SHA512

          505be9e50a7ccd28308f98c147e04615f1ebda018947846e6ac3790f12dbc8359a97b1200899b1f92aeae9f5ddd715d80dcdb1c5442bd81c947aa3d42112b7e1

        • C:\Users\Admin\AppData\Local\Temp\Cab3D6F.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar3D71.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

        • C:\Users\Admin\AppData\Local\Temp\Tar3E42.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a