Analysis

  • max time kernel
    148s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/05/2024, 17:47

General

  • Target

    7dd4efb36316fa334ba9ac40e134784f_JaffaCakes118.html

  • Size

    26KB

  • MD5

    7dd4efb36316fa334ba9ac40e134784f

  • SHA1

    4e76942dd8bb42bc5c6c046071ab2756af435b74

  • SHA256

    aeb4bcf3b0d63f4f1b4a328dc57a69d3a15925615c92a40304a59b849471df11

  • SHA512

    4e06299ec456fa964a0770059fd77b4589b4d1f1a9926201da6561436096651d12f6d2403790e22485004636afe563785700a84e760d31b4c2d5e45e1739441e

  • SSDEEP

    768:kC/FnUaDtzNUn1aBRonB0Tr+HrelRLXG3hfFVMszSLEkTcgo9S5Qm:P/FnUaDtzNUn12RonB0Tr+HrWLXG3FEf

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7dd4efb36316fa334ba9ac40e134784f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1724
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1724 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2560

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          afe17ca4dc58fe6ec203a9a0a204ee6d

          SHA1

          8763e147df5d731dcadb842a4372edd55e79c417

          SHA256

          df1dd4b637e366ff00af3d9078de3980182f5bbea5403c3940525291455ddc2c

          SHA512

          95b088d569ff109b4cae6f74023adafc350d81efac4c566ed57e201e38781fdfe17f8a29aae9652c315bb196b28bc0f6f287b5087aeb207ef19eab8cfa5ceaec

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6675717d381aabbecb68c569c9aeb5a6

          SHA1

          7adc2b8f9aa07a05be61e4dc4a41d90619b65054

          SHA256

          5018b7355e2a68a3956fba9ae5136e191aa76c72712d7b8e688b15884f74698f

          SHA512

          b346004c9dad00d0aa75427ffbcf9d025b4ab93ed87ec6f2b43fdbdff30333b1f576072c146227a4f86232800cafbdd8f852502df30e99ef7cf27f224948b316

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d9b7ce35f163e7102bb9447dee1551a4

          SHA1

          714c1e4bfcc6880ea581ae0817e3dd2546d1e0f2

          SHA256

          b40d03a0e66ac98b2105d2c2e7156e4740fa24f2bced9c0586a56058e0ec0df2

          SHA512

          ace8bc5163bea14437c660e30ad4150b7e8419718af1f576a97e365c2aa32e4c94c5d02a89f799a1c91b80d58d37734b20ae9c1617b5d6f4cd53e7e25e7bf5ff

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          04a480c302977d38f430d4ddca2086ac

          SHA1

          9b02b8920a2c86f422acd987bb18d7873816acfe

          SHA256

          04244639da11e5205716884520ac92b2a3bfb61a181e7f903afa0437a2ddb2cb

          SHA512

          9c55f20a7666fe510f8192195a79d6171db9612678b0ecf9132ac2392c3dc788937c5ebf35d93368c17a6398cf260a56da2c9fc84afb5ba468fe48a1949e11ed

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5c519a32f276366dbcd1dccad5c48539

          SHA1

          2cb17a1db3e185b70ff4661555e50e35483d0a30

          SHA256

          8f5331b9767c1d2d9be4cf891a0e394f78b950b492e2362e7d5cd30f28e66676

          SHA512

          526e8fa983fd4d190d4fc06ebd3c019745a1c0a4787520096601b8a666fc4154b1fa8b22bc757319db4bdd6246784ebab690dd45a65c03416acbf9efdf6016de

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a4f265b428f78587445070056a50ccca

          SHA1

          8906f9e0a8c017ab874970eae7d9489d1a7bee8d

          SHA256

          46e1cf3121ed54cc215e27d2e12d933f5688e3347b71fd83e0a499afb08e8808

          SHA512

          3d6095598026bde959e3728470dda1a6b57afcad77ddd4a3a258e08bb4c8c8406d43c14fd92287af094406c7f8544840402730ecb707c03131aa8581c2ad3aba

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          abf0a201ca7615bb478e393639c46385

          SHA1

          179b939ca4f7d18359a656071b8203cb5ce62a35

          SHA256

          86ac218389a5f5972211784d02ff9897ebfbb395fe7f45a57c1b208ed60decda

          SHA512

          1448ba256329b84edc3b3c50a852a3d3eba26858eed49cb1987b46bf509a22791c5f0d429ab62bd0063968b4db68c98d6d9d2db20a61ad4d8c6c52aa7baae55f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e78f09ca6711e926e90678d3666895d0

          SHA1

          f9512f06889b89d66d845f41fbc74464d9ac33cd

          SHA256

          4bce9c80df075b547e8b036365d9ed381051240c9a27bebdb247f3b47d1a05c1

          SHA512

          f5b7b915451e288e68ab1cf5c8c206b8245dba013d07fb6b993d28401f981f2d4b0dc7546703cf94a5f32eea2b7b7dde6a286bd09f8df7eefe469ad854ce32f2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          02a8eb35201c7f49f6cc29c2879c0011

          SHA1

          9d6b8def34aab8a598353d9f742f741fa819f07d

          SHA256

          ee6c9f4a03d1e6de7a939d09c4a7fa7ea5b8d32446a7daa9179eb02edefe6e9e

          SHA512

          a50f33886ce516997c4de0756ebaf8631c8b24813b29c72b92a4d05ac5896c168afb6dee16ecacd3c6217043d8d513c957a18712b92ea75cafa9f0d27607f59e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5e9e3ecf41438af2d946bbc170f19430

          SHA1

          872e2c7ba57d18469afa5fc8ddec5dd2465abcf9

          SHA256

          6c73023e722d66af46e90b55a74fae3dcd3b07261310bf94bdcbe8ec5651d106

          SHA512

          70ad456c84282f5005d7321e4b18c285a2bccce7749f524e8a33f2fa65ef70433360e2c7ebf18e7210e3303ee6a96c1e2fb4058b7275ce0ff271291b7e584424

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          218022db4349d4ac97b7125f0d587722

          SHA1

          dbe215b58991d46e7d9e1185ad1b8ab74d74f010

          SHA256

          f12f86ce21665309cb641451f2498d11501d40a634767567ce15f7b834faa7a5

          SHA512

          fd252a4146855d71e49e87c6a99ed99369cbc850b4fea75cc77e4f3a32da90c3fcf717554715b7781a1cc0b834d72df305383d2a7ae09687c0553c50d91fa984

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bf101cc5855295e35984ce55cc9b5025

          SHA1

          9e21eb66ebd2f2737ffcb4151949679bacf81b15

          SHA256

          08679487447b8c4c2ac22a26f9c447f1fc5bce0c53d1f9835fd7f4e872520f55

          SHA512

          4f75ebaba5bcba6cd31e2aeb5ec435cfecd5ef8d23e361602800db6d7f23b2b3823e3fe357219b89a9253c3083f1a95231a851acd9dde8bca96c63bf5d4bbc04

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4cd40eebf5742dac9f0ec01f4c0fe898

          SHA1

          c6d3cc025a47b01886d780a99db13dbcf100769a

          SHA256

          dfbc857f630de87020f4ff9a40c60ffb306a850c74d903e4c4fd804cdd7a176d

          SHA512

          6cd3459deb7baca067c73b83d5cb3f9b911a1dde318ba2e50ace8c58ac629c7b210f95b74cf2da9016c432ad2a3f7fcb95c7dd4de20d7fb54f3b8a5abf2a9006

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          67e2be2c4a6ffa77d3051908fd51e37e

          SHA1

          0b1787917fb542331aa78e3ce21c4329e54469e2

          SHA256

          d4115754b13fdba0ff5fd65177bb17b522cb0604cb04d6dadb680003b62bebbd

          SHA512

          1ca985e0168bb7d77f56c5cfc9a1e2a07c3c6ce3ac30e3abb018e33ce98eda2927a100cdbf610a6152f1771ff98471bca3bb2ebc722048ac11933380837ab44a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9fb013fb41dd27f7e247da5e26c9ed8a

          SHA1

          f32611f7510c088b50fe8d3503ae98e71a592f4c

          SHA256

          4aea301b76e6fc5bb8518506ed5c281c77d680f8d5f6d84d0651680263b43bd1

          SHA512

          d2490666a958490f244d74ee622d8ed01be5f2542a9e30aeda20898693b60bcc0cd441446abff98f0c65eab21463180eec6b080dec52c1a52059cec45680b01b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4eadd0c017232414059e96584337299e

          SHA1

          cfe995f1b9339ea080810d8c541293ef7c142b74

          SHA256

          bc3a9fd58604c06772a0258a1f24e5f706601985ee4f18c36d06c12c5785b341

          SHA512

          f957a170c1fadea350e87a26fcd843585d9d39ed724a64fed23c90a6300e06c042c2281f97fff775b23227ec0216e46037214ebc6e3a1451d70bf3f4d7ebcd3b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8c1cb9209b90144a5b9e4305e360e8b3

          SHA1

          d55c824b064be9eed4f4503a052a2d15f5c57391

          SHA256

          741746fe5ac3470f99ead73aacc9942472b67d84b335be8b1cdce473df57ac0e

          SHA512

          32c08fd637604726aeae999aec7bde74cb3063adc05064e3ad84a9ecb83db04829c177ef2fa1fc9aa90adf73241cd4fb5921af3979d962ebb1345c0deb877da5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          36625142842d1e9add6793573c5c3194

          SHA1

          2537982da6f04fe4c649f80abb575a8feea359c9

          SHA256

          2a6dc171d48d44311edb3f15ff649dd69d7a8f6a835ad194ecffeeb35c106e60

          SHA512

          c381de28977e823d8b062593ba77b00f1dda298284bb55ebe2032d81139826cbda3bd7757faa0e9009674832aeff2c67a3b5c00eece97329e21b184155d9ffb6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          013320982fafff065cb272a3da40d9cb

          SHA1

          5a032d57a3444351fbffa8fb898d44faa2dcfd45

          SHA256

          528e05ddf1d6870ac589c63914e72d0c71c35990d84bb4a349f288354ee491ae

          SHA512

          1780d5e0f9c44424fd5b7979921329e879fd5c93cfe21bbcd1716aa07aa79db3c50467be1057a425155cea7a1089b33280acdea7d913e90b2c3be5f9f89601b7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4807807b47bdddb532121f22689be05e

          SHA1

          71e9515122e6d7446e9bc055783d41af01d0ee64

          SHA256

          1679b8923e07af14f5ab9a6fac7ddc216365987642e8f1e8bd281ba4987a8b3c

          SHA512

          d8e813e3293afa5798d16e0d12338f7cb78c059c67a89bbdca6808eb67c22fa9eaed863516f9a2bfc6de8316a767cf4d838f885ef40c4599ca32ef1f238e1992

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          f73afd7a4297bc29c6bf1124f36b56c2

          SHA1

          c9ffa9883b4ddfc7330ea3541a5db45274fb9e9b

          SHA256

          18d6b6e11453bc6399d6ed74ffba715618f7611d7dc57910a0b0b387db15505e

          SHA512

          47d835cef43a203d6651a3d88bff0428c5be9ec8419dc3ef88ce955fa04079dd21ca4ae4a87f98d872095d884285eeef2a6fd5f22d656e2923df2f7dcdb1b519

        • C:\Users\Admin\AppData\Local\Temp\Cab2129.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar221A.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a