Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    27/05/2024, 19:07

General

  • Target

    7a32af4c3c0c97820aebd4ecb39a97d5_JaffaCakes118.html

  • Size

    174KB

  • MD5

    7a32af4c3c0c97820aebd4ecb39a97d5

  • SHA1

    052b9f33c88526020e8394e03a4617e2bd4192ae

  • SHA256

    45aafda1c5f29bdd78b2ca16cf3a910d337fe84c8074dc123ec5498bc4dd9b6c

  • SHA512

    a30ec244b117002c95527660334f6efee5122be1fac64d655e176a145af03d5a68bbafded831e268e72449d416778502fd057cc6a2ae45f41fc809acfb033a72

  • SSDEEP

    1536:hvvMpVsokX+SXLZLZiRVHstsbfbkNGaBeDkeoCDzY16peIsVAT2BYS7LVtVkiciw:NT9BZiRVHksb8Sz66mV9232wS4YtC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7a32af4c3c0c97820aebd4ecb39a97d5_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1992
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1992 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2116

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          03aa422a573570235bb523805680c165

          SHA1

          71a84dba32af175fb78992905891368f9b3db0dc

          SHA256

          f9bee22ecb59de9741af5c02fdb01ad8d3c03c95d3d7209d52c2bd7c5ec62ea5

          SHA512

          c3a6c67ce9d42302d77d3b16a30951ce91d3ed3880b7684d4cdc81c84fb027b76ab66ea6d26e1ada978f63c7032233e4828096b08a37720cf4fdb88c3401146d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1c0d20c7d62c83f42f6cb88e665bc83b

          SHA1

          e93a0a09f0de93f9e0270713ef9a45a24d1ba0e5

          SHA256

          94d5d1dc923ba6fedaabc786853ea97cdaaf0aaea46dfd198b9347a2fcb54025

          SHA512

          45c3897120c934980b1c905db78d0786c3dd681b03e63a8ab6ec646bdfb68d6fe8bb761b779fde683818052b738b84e8d3fd404a2a32b3a651f8158aa98a5e77

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b1c823c8047e16abc20ecf92a21d4ea5

          SHA1

          8cba1cb2f5dec399b9e1908e40e1747f84cfbd08

          SHA256

          e71c6209772e1e594b19a752e571898b2d4b9c1dad2339850406a353b1251b77

          SHA512

          18c5f3781a16ce443734bf5b3dc080d713482272d3b3b574a70e207d400bf63e27268c38cdbcdf41d36e46199fda2919ede8907e8ba94d37a5e45704f1079bcc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          95375bf0164d58112234770dad655631

          SHA1

          afbe6b168e91059fc3b074f1d190f6c1a6b27965

          SHA256

          94c9f1289969096d2c25379b2a737f415c028fe88b617597cd18c2c2bd7f46ff

          SHA512

          001f981d302d7aaf3c29de69f9c22e2ff946a8abb8720cc2a8401176f1385a5851195d179338e64959040654009dda69df4b47c7d23c1135e26371ebfa05ab17

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5078b90f4d6fc8df41756bd3ec05ca28

          SHA1

          6c1813c4363b1ba5767a5a168a2e81fb911b7fdf

          SHA256

          25c4519182add200586bad1e2c33596a5e8361f026afe2ffa3346ead23661177

          SHA512

          b34a06d5094af8f78bb090a121dd5cd285d0c6d75ac8939131833c88e6f7d739078c107be551aa4ac9f09d6ffce691f6ef979d366ab8de37915d170a561b9391

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          899c73c00bd7b0ba1c878eea3e92a392

          SHA1

          9951ef21f6b53d9e5f95f3132ebc5c5eca2d5d78

          SHA256

          a0494a023094a251ac83b07fa7d0622f958968821d182723b25f52d18a5de607

          SHA512

          f0cfc9fb1457a0cedc395f9d6fa53b02381bf0f3c41a1c7544789975f493aed7baa35b3119a8f7960c9223138f3c703129eef8abb7a2b78f38ac19e71bbbf373

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          58213eb0b051dec3048382fff5f89ed5

          SHA1

          2539933f3c69923bff9cf79f09b006a2f0b93082

          SHA256

          cbbfba5b25fc105d740103106ab58248984aca6a7f7b86cd51b28c486a80168e

          SHA512

          0a4cbc4eada22678b7b6a5b9c8eaf1542e9456450976f4d43eb4eabd227f422a293e6dbd11addcade9f2d6667a0268f1b0713335a94e4dd8a31620ccae32c02c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d961a80e5cbdf93361cab00a58a0cf5a

          SHA1

          2e9d98c4198faccd6ac13018d0cf5bf0fd05031b

          SHA256

          7225d1616da496c64e811e847ebb3d8b95b32074b344672f458d26b314662df4

          SHA512

          4547509d20bf507c9e17578478612240abd7faed93098db126f09f35052db6e1199dd44c6b9def4280d97fb1af6bee7dc88fc8fd45899f78119a31b2130694b8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5b5d09fcadecd9924a7bc1e6e5c184f6

          SHA1

          cabd6b7ae9113569297a8565a28bea4270fb68e4

          SHA256

          28fa7d4d70519b527e7924f3b4a7240f62a2238f1f676ec54163f757b0353460

          SHA512

          5be9c724454d60a653f8f4e27719b04cfed8464ca9e8b163b3905fa067bbf8e6c8c12f8934a7fdee2a06449ade4979e4607c55975e584dd3bbebfd496f5c6281

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c644228aff4bf260461c91a4eb41bc7a

          SHA1

          11bd598438a1259220ae70a82e78495f2e037350

          SHA256

          d57b48724a7219f163e264899b57a2bae164f81d121593bf1db7b8b13047c9fb

          SHA512

          f278943e23a09ef5b9cdb0a18481abf5bfefc5e244bedd15f117f28501f4e422b04641669d67d01b8855de9e9f76fdc139dc48390d54490bff179f90402ce48e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9559a5c6dd6201d6d4aa5c842c8ab536

          SHA1

          bd5919aad3727e8ee248d3280f73a0c05f41c5a1

          SHA256

          49513f636d6e2e7d333552c935484f6dfabe0577a87caef988878984686b4ca3

          SHA512

          c67cf68d36f072175bd4837425d9686b22ec21e151b56c1ca92aa60350bbe094dce991fa3f17ec4ebc729ae7aa7eef46a7cbd1bb2f155f2b4dcac37f1d0438a5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0c81321a1e46b9d9302e6eb417c38bb6

          SHA1

          5e422905b506860e2b4a2d5a628d3c607916a177

          SHA256

          004f72b6246d7db63bd11eda0173f717f73f24ca2b670a148ea223d5859e81b1

          SHA512

          5dfee4d3986833d1f1c78d5f10950ab0ad0ea3d74dc9f5a80286f521b54ebdb3697817935dfcca42bc01807898ff14f4a8c82159a48519b20a69709935eac2ec

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d5df8bee3445c73484d5158eb3222a86

          SHA1

          b1a92c8681933d7b3a6b901314748a25f353cdbb

          SHA256

          7078b9a6b450016a6ef92fd871e741e89c137661aac2409480713ea3febdd383

          SHA512

          b522ad7f14ed11a9599fe89d1b04ea5a44b2d516edc47e18390c0d49b2432462ac5dc65ef7c78a639eec7fe26f6d3ed28b673e65f0fec7f3f862da764a75d541

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a22bd44d4b8065ffd6ed8fc92d198446

          SHA1

          873199feccbf8898feccdfb89a8d4e0bf3c05e6b

          SHA256

          d4954d59ffa0d1e92e716015d8a649b8144e0a30cea300097b540d463582a260

          SHA512

          9bfee79ac8e9750b6dc41cdc827a753204b0059e220c1e34d0cc8906c10fa475022239fea08becccda2679d6766da885a5b750e0ba1ee1652a0c5423bb406897

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          dc8b8909d9d3ae897cd8f6951ddd4325

          SHA1

          cee61ea5b3c8e96ebe977033dfc79277b09b9c76

          SHA256

          2c639382297e43fe69981b7dd2584135ae386c0a846ededa763b39a57b7bc379

          SHA512

          4fab25c23f454943e4a99f1ef13b82e84b8302e0c3d54d0c1a093c70958712e00f2f8cd2ae619cc2bb51ea8a3e26bd1df65d4c224f35df9c1411f48aa6615c00

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          611aed20d611c483e0554348c90b7e55

          SHA1

          01ab28a4d49b97cd6db30e58b3518c03fcdf7374

          SHA256

          b5ae81bcb0e0c6da14e8d3091d3fc80d681f5dfdff0f5d0d169b64a057041851

          SHA512

          b756d8425fb393f91c57dab830c594e7f3c4b6e79b69dbdee6d2f97a6491f0887ad71698cbe2e5552200bfd95fc560c0321b843c09b054ef76c9e3f4569b22f4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1ed32d5d70ebb83858ae9dec568934c5

          SHA1

          caa33a9416bf792a26246c188aa27a627f4f0df8

          SHA256

          dc85ef1219a166831d3a22587f30257213e9d313faae1dd6f324f1b84bbe0a16

          SHA512

          5dc0e93453fe50df8b45c03e2ef091bd2b3330347cf2f42e950cd4fed85261423889cd282e2922310765029ac374d95607a008e68f53dcf76377cfc00911566b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8e41ea675b4e41c80f099643ed524f65

          SHA1

          1bfa51708186c97916d58d2656fdecaac29e26a6

          SHA256

          333977c1fabd06a4f4d764b5b361a50e970044922f9cf768c6d3e799fd85ccdf

          SHA512

          dbafc3c1044f4bf9212712c01fef1464ed49e2989664252148119e0ea38784202698b6a54e63fe1b40c13d545ed019092d07b7c30adc81e66737a5a769d508d6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9f8fe91b1983966190bf9e7140db2c96

          SHA1

          8834a75f0624f339b7620128edef5bc0c4626569

          SHA256

          ef8671f215be8eaecd6347dd8ae329a753b12bac04853274a4b08fdf524b3bcd

          SHA512

          f92e4c686df118c2a8110fc7eae9dc21b899387284efced1801c0d18f44406c4ef7b8b6e2286e675a01c907f9046839a9b9894c6a18e6595ee12c124040590ca

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          834c79ef0f54c7dff80401147912a8fb

          SHA1

          67ce8828d8afc50d7f4592fa0e6dfee8f7faf1ed

          SHA256

          ade5cfdf6fa06ce7b10f1048d39f04512aacfde93899b24c8ba0c1594c8c2d31

          SHA512

          b27247dbbe44cccd0168d57d4fe8a83302bca5f37bb7c4240b9a75d89c98c97be2e19c68b5282e117fa8f5c0f5c8a30da482b12d40d66abe2b0bb10063c9c9dd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          843f4d1c91d9fd4575e703dca46d9998

          SHA1

          40e173f193ce5da27e8b6b6fad1a050fc86f8cf3

          SHA256

          168bd05cfabd7beb1db63dc64821e468ffea65e60ab98393c6c08baf5ccfd70d

          SHA512

          049be112164cd503cd9c8c5c06af6a61d1fa0ec527e7c0a38abc406f34e398fb3485ba842cbf5a9375519a4a87c4e994070faa587e079b542415a6306a1477e7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          9caef6f88142a96774a56ef1e7843201

          SHA1

          b52786f8bf10d8cf489a724d901fb04c496ec6d9

          SHA256

          796548925176137abb4a8f474d695d681e3bb4b0d11a9a833ff94aff9890bedf

          SHA512

          05f84bd9dcbe1b24973268b74c41efb14e9b4da23fd16652972f715e2af45204974fea64ed0a4d21bcd73241eee3106d4e01a2c8e7b8a07c1feead59393b012f

        • C:\Users\Admin\AppData\Local\Temp\Cab190F.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Cab19DC.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar1920.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

        • C:\Users\Admin\AppData\Local\Temp\Tar19F1.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a