Analysis

  • max time kernel
    147s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    27/05/2024, 19:08

General

  • Target

    7a33663eaf7e86c6eaf688f8153e997f_JaffaCakes118.html

  • Size

    201KB

  • MD5

    7a33663eaf7e86c6eaf688f8153e997f

  • SHA1

    7ee5eba0e03bf6c48d7e8fd237ffef0bb0d317ef

  • SHA256

    d6a7eb1637e40aedb3d30ebea7a1d42f37337113f353b14921e206c487819604

  • SHA512

    47fbc2c68bdf519c11f7fbd4e8f57cfca00db118af3e235e9487ca0fa092492e03b7bffde8c91d8caa31123aec957ed4d24fc4f6e51d70368593b2f080b51af5

  • SSDEEP

    1536:kaeqeQkyvbV3/x2HNgNBkpPXkQO+8h8qGep76vwLCV2GvM:depPXm7t

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7a33663eaf7e86c6eaf688f8153e997f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2980
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2980 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2644

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          7fe949d779ab203ab55c7d3c9d6f581e

          SHA1

          fcc090e5c4b3a7ad83e6f5c149db3cee359e8b98

          SHA256

          88af8906a4b002a6a8a4fbeac940f0c5947c41807284810fe78d9ab7c7941bc4

          SHA512

          03a7760d0e027ab51fa83437c0c94c8804e7d16c8a889eff78ef4146c510f3f63823881f2881ca70a0ce7f03f3c26b05a1b7cb69ca823fde358eca6274dbdc17

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a25727a5a9f58d36fa39d0301a963985

          SHA1

          1ed7f8dba482b2531104fc5e23117230fbf6127e

          SHA256

          1174a5bdec0fafc65534456097c2d0e2b1063245a5003e1c8ed5045dfc098b4f

          SHA512

          8d94edb6c43d361803d1db1b5803fdecc07aea7ab2c6e57f4ab6efea4bb195cdb26e378abae806f7a75ee60889f53890d2602c50794942055f4d313264c956a1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a53b3971edc8caf3648bb925a8c08ba0

          SHA1

          03cf12efbf385b4a60de9900e60a1e2cca241aee

          SHA256

          dd8e205aab4c70d4b44b4531ff3ca8dafb149c04d3810a160d35bd763fbd9b1e

          SHA512

          d92198680737cd44a9d36a75c8015497746f35a234a0826dac4a18da2bdf7cffe43817fe448d205a9338ee47734aa242d7c93c09702714d22ec474cb8b61d21d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          445d08a1946b90da475511e9b2365c8a

          SHA1

          6ecb39abb913cec24ff686fd887050a84e0f9ce7

          SHA256

          4bea1df14186be233da617422443139848ba1ba8789d44cec8dc7139855a95a4

          SHA512

          9472eefe243390b534e21a802805656a16fcbea6412a2439155dc4fb702bb6eab185c45e4d67a2fa652e320c3a02030d8355b52df3b4d19528bd42358851c2d2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          31480fb458016930ec42d957d6cec9c9

          SHA1

          cb8302448529d10b6a37252e698600ae889beaa4

          SHA256

          b16f9f9391ed7ea295b63929c2fd8cbcf8d0af4c871c881d1af55742e76af874

          SHA512

          85612e5d164132eca2ea5bdf53811caf018eb713d9a3e5eda2aa17a4500dce1d4166d6a64c20386808d3d37f4b71383b8350786f33ae9e14ba511e932b034113

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c6a0feea6423fe2dd1c8542adccfd6a5

          SHA1

          deb745dcedf5557403cdb3697b8c82495b98f9a0

          SHA256

          f9174c59f27852c2b08084935aeb95cc481cb2402055aef11480c6eecb10c236

          SHA512

          45c781e47220684567657ca84807319ae3efdcaa531c6349918d3efb366d44dc88f685d3ce3c1a935f2587aa550e22d3cedf203863b8312b55d814955c8981bf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5e7e4d3d7049ec0c48d74f9d7ae65f82

          SHA1

          e506bbdeeadbd9d2a628544790b7e8c149a05120

          SHA256

          ec75dff01c0833b433ca0d4ee38e75a6a99e6da1d2df9bdbbc7121f9d091d96b

          SHA512

          9c39a2501af8af80fabf1afc48e07a30ed7b8712646f852db8d2abba3c2163f9d631dfd5c7d3198bd18e03f9089cce0670eda2cc2085fb823c0dd8d693159f4d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          38422d949a0e4abc037d3ed7189e3acd

          SHA1

          ea2410e81074ae4424094911b3c393d62aa774a3

          SHA256

          763f8461cc7640d7a320c6252a838c99b29173a16867114be28550b38dc5a670

          SHA512

          d1d5eafa3776951597a1a4bfd5f5bbfc52a05ed92a4f8efe15f9fca7f78b40ffdde4a8419eba7208812f3be9c8c72c61d97de1b389698ba7bd0c169ebca5bb3c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          edb478cab001c1582100f35c67d099b3

          SHA1

          0b4a63aaed2eb5dbf2b34dfb516e8c03fb53bd7a

          SHA256

          274e631b9d0e3036d08915f1a37bfce4fdf181dd7c3f588c188f1ff826c41340

          SHA512

          32c946b1fa86fc21858c79a59780c9b401edc81548e6a251cc49fd2d198ff4689999de413b40be0b380da2eb0772ceced815fe36d4d8fb83b976f6afcfb27a8e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          df705bd5b75422e6b5fd4b5f17f12d61

          SHA1

          3d34b401656d0136101ee18b753f3aa4eebcaa50

          SHA256

          cd3e424faca01404578c2fd1980d64af05aa7eaf3834b526bfe2bea7c03b7ac7

          SHA512

          36579287e926064488fa14ccf94f3d943a439682ecb52fda3aa4d47b053118605b042e8643671fc171a03b506f52e74211ff8282ba3254a0712fd133a5451e34

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9c7ac1aa841b0978b747a4f015b159c9

          SHA1

          3389e2f1788bd70e3eec344c2ac4e012e5d0b18e

          SHA256

          1cade54bbd2f5c29897fb95106cf2c2d36d9d6c411bbac3e94fbfc97ab63beb6

          SHA512

          61c4bf9f91f29ee79217e24918d6536f8576699514c837b11c1fb1127542ffd4d492a65568e316ac5b45ec5b94d266a258e773139860b7625bacd2d5b6721016

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2be86af3dcd8cf2116da56625e745bf8

          SHA1

          325cefacd1b5aa179451edc490830e72968e22d5

          SHA256

          0296f222f322041a5b164e4d25888c39b5dd03e7f6724dd36386d3bae9b6ef65

          SHA512

          5bb090cd1e9cd4c793b0b94d68aafff2dde50a392bd0a12a39f73d9f92cc2183aba9d6a2349d2c34f20346c38306772e9713f2b62a5b217a43210b9185398dc7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e4f0ee605603d8d82b45c71d5b3e36b5

          SHA1

          fc7889c28c9c1b32c53d873d043e3f5cedd27792

          SHA256

          88a01826d24604aeb26be3ca7a1c04c50e8c39b3e478233a825e5bb6c3809505

          SHA512

          76de3b9ef2e0d42f1f78972b6a07a0043e0bf5ce07c55ab7fbecfd57b7cd5715709353ebfbfd649a2ca88e1e25840aa3110b956fa2d35fdf053279f418131bb7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ba0870a8942385c347207c0c49895ad5

          SHA1

          88a9c66b0a75f7c1c418335cfe0d4dba56cad149

          SHA256

          e669f1d411e8fc7defd25913e112c47b8022f525b9ffaffb1c05497687b2cc64

          SHA512

          be9f8feb1f48b0b1aa70ae12846831a68bc44fc583936f2bfa4751b523c39e0e2a526bfb6df20cad948acd0df0e03dc79ad2b4ecf1920dcd2de5aaca4986151a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bdf211ff78a86dd713cf73eedc90dc86

          SHA1

          94e7dcffa2c2acc283c48882e5f296abebcc5ae4

          SHA256

          24b5900988e66ad7584c49f0de0b2392874388feabcef7e74eaeb2d38b6d8ebf

          SHA512

          1d3becd7fdc6329b35639ba42f4f1e685ffed5e5b3621327f640d9a04e341fdf406ee9a2fa0797dd137328c3d91307f966f5617b849da5f8c5792fefeeab22b3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d10128ad9caa5ed90285302cfb4f0f65

          SHA1

          60fb15951ac753d1b99574646419dff639dfcacf

          SHA256

          a40eeaa08cdafa8484e01f323203a1dd82ed4408b55652a9685d32a34e3c634f

          SHA512

          d72b42cbf97412a52a237f68f8fbe063dfd1c433b11bb71db246961aa790482c35882b763ba809b456533e0c55cb5e71144855e04ce39a7fc3640a035ecf9e4c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8f1d0146ff9095c887cd42032e94f7b4

          SHA1

          b3199fc2352eb022148122a8daa2e63ffd20aba3

          SHA256

          a91636f9ba424a8e78777819d0e7c4d8b36d0b2f798e070f908b93d076ed670a

          SHA512

          2b735bf72395e3651d9703df9dfe728460c80fb679f63a61d3d1bc386cf76a0ce0769c46898efc8e1d65fb26b08275e1afe4f1a1ef750cf93a9b13c83a5989f9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          dcf980b308f1bc99c872da0fa1e4d5c9

          SHA1

          8b697ea9666745ab2ab27adbc0405bebf51c4b36

          SHA256

          f873643119e2b4c4eceb70a8442d09d3b7b7ae459daa9fc4b187921656413685

          SHA512

          1aaf469c04c16f382c3b1e62ddf08ad288a0ebdf112e768a4821b0e9a87e07caa7f426221c309b233c7d14768b232e9e999189c1049e5fb399d0367b08111837

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          76bcadf580f1060b5839289e7af12a74

          SHA1

          7a6b75dab2acda7282a21d006aee563383ccfa37

          SHA256

          fad6ec83f7b34ee7f36bd3d9dc7f3f74ae093e66503d1a5982a887081dc54217

          SHA512

          0787d42ff5016570d58c2c7acf80d06cb93d4ec70a19560546cef90f6c39d00efd3cbe1e4cf3f4e8614832f76258fe75d98b2f52621010ae5b75ac85cfbc499f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d5ee249f66e3c4d09defb7994b6bafac

          SHA1

          5fbb8e5788ebe17311f1b66bf675d595182ea391

          SHA256

          da41545cd6d11efef17ab22cc1ea6d29b9be51887e409bfa2ca05ffa9dd581f9

          SHA512

          974fca2f03a2f5ea1591443da7023fbc9689666ebd5a3e4d7b28107d18c01c664bb90b7135e0cc5f69b21bbde0c09316b0cfe91d247b9c65aeb279d948e24fd4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          05efb4fd8ec3063b7be564250decb71b

          SHA1

          fd662f3ba4f65a61c23d1fd69047748ca5ca27a3

          SHA256

          e2f87a34bc77ffce3ee4c04749426dcf6ed9231a7217d1720ceeeb3ca7311433

          SHA512

          7f7779c30723bf3b205d5a9c98df1e597192e231030afbaacc98f692831db0484e2ae04bc1035ec88fbcdfd37d38b7b2e9159dcc51518323c795515eca6b5abd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2e1d45a5c0aa5aa17665ef2b31a7aab6

          SHA1

          b152117bd3f6144b93ebcb116fe9715e6932a010

          SHA256

          738d32f612f54fa6622ff4ee23bae9b749efbea82aaddc0e8860e5b6fb1efab6

          SHA512

          c75ce44959d352b3dad2450705e2ffe25d211e00aa569b710d060414d05efb33c5977920177035f46f54dbf81c711718418b5f0cf5de0c4a3b9e3a6f37259608

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          777be0066ace25136995b106c78056e4

          SHA1

          11383e53e58fd9595329b209ac0d8e9e8deadeb8

          SHA256

          467b679355e3c699e3416036f334aa98f1c201f1a114a321e01540bf966f5545

          SHA512

          a6057a200fd78d6e91217962932c9fe04bc172fdb968757f50f7889c79dbef5d0eee8730cb09e60f08bf8fd2c81a1f07c98fcd3cb93ce20ab02a0f17b21340a8

        • C:\Users\Admin\AppData\Local\Temp\CabBE5.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\TarC28.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a