Analysis

  • max time kernel
    119s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    28/05/2024, 20:24

General

  • Target

    7e48a4bebc0c04c52e3423871ab67edc_JaffaCakes118.html

  • Size

    93KB

  • MD5

    7e48a4bebc0c04c52e3423871ab67edc

  • SHA1

    4445acb9a0fa9efd580fa0c91d81b2141752dc55

  • SHA256

    90ac6a6e4da3155113ed27847589d9122341c80b73d1c62f008f91cff43cdf5a

  • SHA512

    6a1989e34c4215ac1f85787cd5003dd3d12138182b2d8fe40e7a4eb73db7ca0871d5c5a6c2a8f71aeba05afb70dbb7aed2b08608dc2eafeeeb94f2fedcebb285

  • SSDEEP

    1536:BWTsjUVMg9gLY0ARzhZkh8euurSm3c49nU3MhoCI0FThJtezkkP1VQdsLO8ylnQQ:BFjUVMcSuu2m3c49nSMhol0DnqkkPQ68

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7e48a4bebc0c04c52e3423871ab67edc_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2152
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2152 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2712

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          1KB

          MD5

          91d1a9d489736610d91ba0c783745e5d

          SHA1

          d7effa412880636c17e6e5f86f1978835980694f

          SHA256

          51fdce859b53035fa4c5b5c1e0a2b76ad9090d23da467387f3c1fc5b9c10e897

          SHA512

          3bbca7affbc3e2e33db7e9d7ac3675006a9f2e34de258ed493f0d12d42bd3d0916cb47296da9e7efe3f8848253495b093f790c0c2ca72cf7f3a59daf1cf1ffdf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

          Filesize

          724B

          MD5

          ac89a852c2aaa3d389b2d2dd312ad367

          SHA1

          8f421dd6493c61dbda6b839e2debb7b50a20c930

          SHA256

          0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

          SHA512

          c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F07644E38ED7C9F37D11EEC6D4335E02_02C4C6ED250727F9B08935C0A9565568

          Filesize

          472B

          MD5

          35d4177787b05c412c2bf77cd5b7837a

          SHA1

          fbd658dff11171fb18b3761554ce1bcab136d263

          SHA256

          28c838a440a325da201e3a5f0c89510a5f4e2e176e04a8569a5f9f65c0dc1e3c

          SHA512

          b6eb06e7f9e8c68ef93a3a18de81e0a05a716d7c3ec66f94cdec5f0d42c15822a87a46a942d6f8457c5da95d9fa38b4a1cbe8d1e43b84381f0522e28c97a09ca

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          410B

          MD5

          01a4c74c4c03d855f9f8d49e5da5e081

          SHA1

          4f0b97998d4e8229aabe42f1d080fcc74f2d1d01

          SHA256

          910210ed3ef9c026834df6bff106be0b761cc390c65cac2bd4138fe8fa2b081a

          SHA512

          e8a53346f11f89642faa33f8776c72a5e0582c8b36a99def112ce00a4e2df94fc02e5a9f2abea41914ef0984df8d677b20a64eac7ead0e73d0d0226c9267448a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          410B

          MD5

          5b17d5ab5560184463cb9b8b8e334e56

          SHA1

          29d6c4803221125d24778788c5c8d3a713340abb

          SHA256

          558b29dfab794d977b1583069c8ffbf0749a774d59386577658d62afe41ea58d

          SHA512

          bde9130a14d13ba19f3735c6d6062c53e4d11265d387e6b186bc05fcb92ccede56711d061415331d9235bc182f069aa15ae4428dd2b810af7ac19c504ee7c935

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f7371463aef0180ef662bd7184669122

          SHA1

          460651918590008e48cb5fb8b48e834bd32b88ef

          SHA256

          f5ce313908c82a93901a01c1d2b8c875346599de391e46085967c979095f8130

          SHA512

          d0df06e96c7b6b2ad6e9e962f5e7718bb9f4c0267a42f72f2884a027a23fbcb8920b93cd515b139d80096bc42d8b6178ae926db59c66eba769211ce7ede8c778

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          aeb3734bfc9180edcb5d863f4d181056

          SHA1

          7813489a1c115b921fabefebd8eb70f980aa1d73

          SHA256

          f4b5db479f77048002010a7dd3ed098a69387307d86a7d870253edd0677a32f0

          SHA512

          c78c3e5574dbf21f351452990c3edc9666b78dc17d1e41fc2ad2d97c3dacfa2585abcde272d5aa97aaca6c94e42ecf87f4a531b44c5e99f8a2cf54d2c1e73cbc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0c3b6b29b0c93a11783e69285c1c6689

          SHA1

          062aa315b936742d03ef8f513356832c7b1ce14d

          SHA256

          22058b2b92df51abce534734e3a174988fef7f4e6667103198b148fdbee5a866

          SHA512

          ee10437a0a86ca636d0c80d2cbc7c44860b1d5c051548f19a5c01af3068dc92f001cedc255b6f47ff61c1ad073fb6a0b978ef3a2a5939ef4e358f06f1edfb754

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          14390c73f20747b1953a826d232a8e41

          SHA1

          c17b395302cbf6e61a3508832f0f44618c22d8ec

          SHA256

          1eb9da69f657eb8b02748c601a6214fbaa0ddc395e23978b6e078929a4e9df4a

          SHA512

          66c48ce1f4f7ef84588bd9480ce8fa411ac8899a28ceba3ce40701142d17f5a46fc54f806656960d4d5705c375c5d858f0ff3408f11e4bad300723b6ec4c8be9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          322e2912ff5a675730f5b3d8c09387c2

          SHA1

          0472120760e703ffda8df3b6c365a2eb8a527ed2

          SHA256

          64eb4b9a116f1b3190b96cb1f907acf6ce0587a62bdb4f8ade739d2f4c2f1f47

          SHA512

          f223c29be2dc8ee62b6350680e3041fab28460831d5b077e47d6869cb31fd9411ecf9e2e224ecb2d8f8e47a4ae3094f964e7f0431c158860831000ceececf0cd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9eba7d7eb932ab932491b2305bd4ac59

          SHA1

          4e4ee8f249bc8e4dc1c8a986e55b660217b6f813

          SHA256

          16c19e49746b4b3b8300001ca3c682714fb79c41620e556424c53ca8e2cbf898

          SHA512

          da9c794d9fb8e0ad68775cdf34e1a2dcbf33854f727371c740ffb343ae4c6a1f072e85a0e5384bb225cccd064394a096b9635cb3d2c43642b67a6d77d65a531a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7f4a146681e7a4ccd0586ae263f9a467

          SHA1

          96b5d6cd9460fd063cf18986cf946de794552c65

          SHA256

          f7b3876b2f8fa7f27b969d71e552ddf21637d1d5eb024fa6aac4ad94df29aa95

          SHA512

          700a4b61c63fd25dee3845dd6f7e411a8a04d8d35b81477ce66eac6d334bb83e7b519048d0b9dadd3040a08f4653161383892211dcd650ee81857f53eae1f5dd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          edb16752e311058b0cbb653a212ddd53

          SHA1

          83b50c21b7e5b2ebebb0032848bf096a5649e5fd

          SHA256

          07604f8dbf1f11621ef2640a5c89ee5eec08af1af1e594d29154126e6579b112

          SHA512

          6c45fd61734d0052bcce37e6d2be3a945d072ee51140bb57be2b2b01d40573c104abaf8b5573cbf5b834b21cbb1e7bff496e8ba533973abb412e18028e03b612

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1c376f98ae5f8b376be97b896c4ab516

          SHA1

          2b04dee083ec2d4de5c90e1ef75b412e9ffdb83f

          SHA256

          6a20495dbc59a0867748c36031f45ad3c83f7d5881724b0e37885aa46781231d

          SHA512

          6dfdff388ae962e71306bff40faff1aef9f4c4f9ce57107f6369b550aa77db8fc351fa2efeb00f8710c6b3861118979e43b6443fac2dbd19c2de4c6b8861b1d2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f840982bfd2f693e7423f733d54b541d

          SHA1

          57276d36e187d704351fde7cfbea7add07b8c4d8

          SHA256

          a17fdf0d21e4d9b2280fac96b4fda4d51525d8a8d7aee57f3f52cf318365803c

          SHA512

          5de291a7aaa5b31c222d59c8f485fc2cc4f7f76390b1cb169c706b76edbe4ae449d33c3312d863305ec709ae947accc8e85092570579fc5a02fde1a1c223e08d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          db876136b1f2c5fa8326e6252e53950b

          SHA1

          1d3c98b92206cb82c39b74972fd6214b0a6987a8

          SHA256

          96fc64e32ee1f07070200dc83fef5376250ef1f8de067ec3f6bd0e0b387098d3

          SHA512

          cd8324487441c6c9932765b828d6bee87780291d298164bbd18ed5cb8d0875f531867fcf931b9e643e17dc5256de076f452a154ac71806825d6a0a9676688b15

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2e1ccd2e077d5121f76fd07fc4d35b30

          SHA1

          17dc6e97e8e8ee5326b4e948a45da667203dc29d

          SHA256

          004cffbecb71793c2042a936d94b7d9eb982805c7e6166efe112a3499fb9c42a

          SHA512

          1df18d06bf4f926edbb168ce1d316374bc56b9d88c800da17e1f182c2c847efc5356b4291ab76d7298fd5f718b3c7304929669e10c9ac471159a2ef0834d0ebb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ec0ac4fc9984e22ec742c3a8aa562970

          SHA1

          78fc8ce85ddd1cc3ee64480f3ba297c133b6d3c4

          SHA256

          108e30b525033297b6f6239a6e0da74e1ce90cbe9f36dd14fb0f610ee8f52334

          SHA512

          28d0ddb261df49513d4cb30a988dc6452a3cd0f5d1d28f005a9582ea43a715888cad8fdea7bf12e3669c3c6eb9587baa02d3bdbcb9e496a7808615bee0ee80dc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e4490e2910e724a6b62399fa37d5e09a

          SHA1

          df73a25356f0bd1105820e201f1c58fe9b0919ac

          SHA256

          1b9f3ea033f1d4445e2dcea8b50fd12482c91ed8d8a59ba48c1f40c57c61e6b3

          SHA512

          bd478780507f4f42a649a845fe96f8d5138956a9abdcde960b057e064a2829449381afc95a944d39653497f60a2e455c38b0009c800f751833a99ee7ba433b45

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8a13251388e20ab5f30184c9b28a776b

          SHA1

          447f5e99d8a2bacc9d09be6cc54fa51e0072f543

          SHA256

          412cfcec68dac58f85767ddb91f11eab5a61e5c4c0bc7899a51c8540d7df7abb

          SHA512

          34af0d73c0a6717c45c8a204fb8d38272e92927e79fee400c1a32eaceb8b2df4e3f68996beb23e4bcd3eceb57b2352818becabdf9f671c5ead7e9eaf14cab853

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          08edc282e41fc9df606d081f10a19eb6

          SHA1

          f08365b2167c839c661cad2bdfc33829e9d2ef77

          SHA256

          8b03ffcfce701d6c1f58cc9ce205f0a4d8c6bd97706f1481765afee092a01587

          SHA512

          703f834a05b7270c8ab9182158ae16b03b1b08bac9f29791c5596205722ce4be10b9b26ba126c13ea77378a406d9853c1d07240f315597199efcdfa808d7a25a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b11f184d649f7c68c2b00ae9bc3c90ac

          SHA1

          285d4093a4dc075dbebbad4d834caeddbae7a871

          SHA256

          6ffaa102d6e5e1b94845c0c2ad45d5ac172cc7dddcf63cf4b1f15f3a9dd51fba

          SHA512

          c52222d68ef6b9a02299f9e8052c1ec9cbea2352dc378c41f5e74eafe36d018672dc804c0237b4c499714941d91ca4cebbe1ca04184da025334ec180d217bcf8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a68ee67af315cbf82b87416cf6d73fd3

          SHA1

          c5e494d462f9975d96b4dd89304db8e983b11471

          SHA256

          a5839a506de4a09503b92c59b2eb20189fc41b1e718a5eeb5437353437d1b18b

          SHA512

          dd97f32208c08e93fd26a9c29b6bfd879763a0ca2a72f471bf43d2321a6d22fce42e8df1cde523c7bdf56996cfaaf2bf5e489b401bd8b9fd3d1c6d59243550fc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          798330fa4b397959c214b62cf3b2b73b

          SHA1

          6106da07fec54666e95f8f14b628224d2c75c290

          SHA256

          b714bef7e19adf6670c5b82b8cb145ba63c7962aaff2308b138efd593e423880

          SHA512

          0b3017bb13f1be00565c2664f242e664a4059d6afe1113d91dc1e61adf116d611bcda8b0abe71ec10978414cb0dacb5ff8b9e1a7f27e7e7d389ab9460225e2b5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          dd2d5ffd9a5dbe754a0452ca668ad07a

          SHA1

          651c3709a8c13685abf8ab4e399525d219dbe353

          SHA256

          d0e70b306aa3d4eb932c82cb274beebb0686f8826158eeb001203b3f7d7ea169

          SHA512

          b8120c3b011d79fa168c0ba0833ae1bcc99c2b2882c1326d71f61e3e70c78bdd0f0513ed4288cf6d9059e8aa05829a8fdea30c6db159e30b6bf47abc890b016f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

          Filesize

          392B

          MD5

          d1fe41c2ffcf09f179a67d080391b039

          SHA1

          da484aa6729490510bfe98df9f88fff73ebe9c30

          SHA256

          51a769d61fcf05600048e2f60c178adbb57dc0581362fa9f41e62ec788e0bdde

          SHA512

          77157fc907401cb4cf89ea99e4d23a626eedfb40e84a5f63afe4c2e97f94b0502a968d4dcc45dc6b792361c7fb3f93179db1c194fe03b6eb7a6f5e7082e0bd1b

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G17BROQF\jquery-1.2.6.min[1].htm

          Filesize

          114B

          MD5

          e89f75f918dbdcee28604d4e09dd71d7

          SHA1

          f9d9055e9878723a12063b47d4a1a5f58c3eb1e9

          SHA256

          6dc9c7fc93bb488bb0520a6c780a8d3c0fb5486a4711aca49b4c53fac7393023

          SHA512

          8df0ab2e3679b64a6174deff4259ae5680f88e3ae307e0ea2dfff88ec4ba14f3477c9fe3a5aa5da3a8e857601170a5108ed75f6d6975958ac7a314e4a336aed0

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J8SD872Q\cb=gapi[1].js

          Filesize

          133KB

          MD5

          4d1bd282f5a3799d4e2880cf69af9269

          SHA1

          2ede61be138a7beaa7d6214aa278479dce258adb

          SHA256

          5e075152b65966c0c6fcd3ee7d9f62550981a7bb4ed47611f4286c16e0d79693

          SHA512

          615556b06959aae4229b228cd023f15526256311b5e06dc3c1b122dcbe1ff2f01863e09f5b86f600bcee885f180b5148e7813fde76d877b3e4a114a73169c349

        • C:\Users\Admin\AppData\Local\Temp\Cab2DA6.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar2DA9.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a