Analysis

  • max time kernel
    149s
  • max time network
    154s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/05/2024, 20:24

General

  • Target

    7e48e3787ed2499e194eb3319521d6a7_JaffaCakes118.html

  • Size

    12KB

  • MD5

    7e48e3787ed2499e194eb3319521d6a7

  • SHA1

    55257f5f1f0439556e03a9f283747c35a60afd87

  • SHA256

    203bd32190449462c136ec7fc7b33edae2ce457040780e638d30bc5fa906c1bd

  • SHA512

    80d252a3281ec74d372ef2ed1c20a6afbf603596911305a77a158a9f1677b5c128f54d18e91c15aa4d8f636da1d054a4b1b42e643bdb3f0828b842336ef8f2a5

  • SSDEEP

    192:SIN47pWJ1/+n6xnk7QOveqrnpSMgf1TjiELjWbhFMxGM9lg2Oc:SIN47bnQONrpi1Nl9lvOc

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7e48e3787ed2499e194eb3319521d6a7_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1544
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1544 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2856

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          05a61771cf3d607caaa40c62f7351690

          SHA1

          f41ae429d87061f1317db0f1ad7a6c7daa8de7bc

          SHA256

          60ae1229b8a03ed107bd46959a27376c2b6de4b85409ac886f8b32d436036798

          SHA512

          1ee8602d0825a9b18dfc9c49b6ddf2142c7e8ff609f0c40e567f0297143efc8574106f63c17887bcd0769a5ee795a0b0f86e5fb87a2fa6220ffa952a5c9a4e8c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7970c065f7ae447868bff21a96c3c20e

          SHA1

          b38c66d5dd1b179ff0bc787afefd8101d43456b0

          SHA256

          e6b932c592a7b9fbffb69796e35bc52b631e3ee87559ba406067bc57dcab41e0

          SHA512

          9249f0c28d933be8c922ddad6b4fe7877b7c4a0171668beefac62ae17de1ff1b435feda22dddca18c51b32f9f14cc798db31231bbfe82a5b446dbf0afbe923d4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a35e9505d05f3c14a1b619f0aa1e1458

          SHA1

          db72cd89d43a5d5453ce14b0a59d1e2495040f8f

          SHA256

          f6601793a8b0810a645787b45b09332f582ddcd0ab61ecb0f701aeafd9d7c6dc

          SHA512

          530cd79b5234e9a5f4fe82d45be70143980effae4ef3b210ac93899c84e290ba3e2fbe52a8c0552bc45ffe677d7cd2783ef00d4f6069729aac828f3735cddcf2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f861eac6434afd2fa363efbc56ba789d

          SHA1

          eea09c39a2da5ad76534aa3f2b7a5bdee928a5a9

          SHA256

          b24f53c05ab3be82c7c543179a1bd56572c920e1c373081aede16ab891b6a10c

          SHA512

          3231eff68121524eb5d5bf4e03886fd73c36cf2a41178a9813a361e0ba641a172272603b20f0a14b8ea9d9b7c567e88200f4be92414e18a9a6fe9ad39b37a06e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          976af59b42bc9cfe248dcbffdc6117d1

          SHA1

          410f575b2e67926cff2118842e5c19876b05a712

          SHA256

          80fafec0db2c7d9fee8b7d207881a8647cb2c36a21e667de6f4493c49233fa8a

          SHA512

          59213c927657f2d98f2b82420537f820d9a3b8e1f4ba6b91bfdbb1e28dc89b2692c26adaccb5a04b9e9610b7e77aaf58f8b5e6170876ccb21c39ac3712bba326

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e23db2110163838f297ed0749ee497f2

          SHA1

          24499a391bdcc720ab32b4c223343822c236c4b2

          SHA256

          7a48923ba47107c8496b64f32267323eff02b0004d39e71297abd4c3d35f2846

          SHA512

          42e93e935c6135fe3151ad260e3eece27d6930693bbfe7a3eab239b92537201af2a25efc18699ea95824e119b4ea2cc6dba98e1529d24afae773d34e0111560b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          26e583a6a3f99db3b9bfca1176340a36

          SHA1

          2f78ab96f1f78d1592ef47f7dc9cb77bb168c093

          SHA256

          1c00dd0432bfd2441d2804510b94c4d3fc085c7f38bf9a7bb948a7c2384ab33c

          SHA512

          2c20461193dec0f47aba692d979907e3370c2444c5549fae8cf7dc7a5ec01e726c534bd7a2a10c657c607cb3dcca0b22d825dcfb28af2e20d5d9c779f5c11ccf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9d57160c7752d870f724109a820ebb42

          SHA1

          a85ded6cf3881b2151e00c95fe57d51b3d2cf1b7

          SHA256

          02336495a00a54cbe752f3c2c3ef56bf368560ceb5775b4f893d1cf662197b60

          SHA512

          330296f358e52c405e48645d7e7c4e5a3727ebdc511e7a533d633c2fc38d2ff84a19fa5b020484ae5abf78d9b7e0bfa065f22c09d3677112b9cea5af7ed2a073

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          547fd3dbc7faf61260a9c3e3d609213f

          SHA1

          378631355dcc7a878c8ed823ce7b1e67152d746e

          SHA256

          c1734537801d2c36f59c4ed811ea02da56276ed252030f5dfe5dacb3387ed07d

          SHA512

          ffc11dab6976ba10b9ea106e5a51cb241e266ccc8683671e2995fa2e561236d9ce727efd5d5c4f41a1baf2fa1f5d85f803dd7c1637adacdd9dd9d73cd5de046f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0848f384326c794dd2fe0edea6f571e1

          SHA1

          d7b8daf23562c8d0ab4e6dffa48d3fcc6fac1195

          SHA256

          95731b6ae57f9b594367fc8c41e3e398cd24b6c3cc5f8f1a7b4e9e0d1e353c05

          SHA512

          081ea7c4342ede650d88498947ba8ed303113c37ec1ecc66599a8fdee84f3f7d0061a7da781ccfc6eca0d9865e91d83677f11131b5d5b6d1c5881e5917158dcc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          fa98ec06d1c9ce73aafcfd5e37f5e725

          SHA1

          f26e08e720f96ccacfaf4b70f5ea02afdcff7778

          SHA256

          7d7369301626f3bea92deb2201c4b94e70cbfdc37b74105f08eec0a9a62fb12e

          SHA512

          2ab3e8872fe0513d360762898efc0cb8196b18888a0616f36901cd39609ccae87cc93903f4c1c0f90d7b4e43f5a8f7443ff9a1754c74679f61cbafb895c8957f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6fc0c6bd26dee027a37091756b38b11c

          SHA1

          3dd2ae622e6e319b021cd870b4dfa4b1411ca200

          SHA256

          760a9bc58d70f3dc93f2b0a74c1fc8730e3efee42750d36a4fd27e03b980c276

          SHA512

          da6096b2489ad40a0e720861a7a4c570b3dc9520e067c2aa9b497f720a495d8dc6629761562399bec69e3c0be7538116184c94c64866932e17efad0f0646c157

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ae4e08781bf4d66cca17c85594f2e912

          SHA1

          4dff56b47eb909110814f9349f472220ff25a919

          SHA256

          554b7496cbb6ef61ec35add77d6e3bb31ecf68d0b45fa8db81136cf6c5245041

          SHA512

          b3207456f73918bff07d261f308c7845c470f57bbd7498d6ebe128996b612ca09db4a87af4145e7087b111b9f9a9589814f277899220bda08923c0d5019d2d53

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6f2071d8f467543bb5a539f48320f0eb

          SHA1

          72d30521eaa9b6921c78aa1fbe00eb7151b10021

          SHA256

          d324acf96e5d5a52f5b468c9ba58d2cf36684f60072294508d3aa9b6f1506169

          SHA512

          ce01dd0c0cafb2d599c66bd937b0f01aaa498a139d85e3164cc041a65935080de30c390fa2a7bce028bc2f84d5e2b0c0c2e08792717147babd20ecaf18918692

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3ff334a4953c8a6cd6486fac336f9f93

          SHA1

          c1b485a18c9ab973189b2fee0358452243b062dd

          SHA256

          1efcce3a0990b4eb31c07e21bfd6b9c13a6bee82b72acbeb97dad0e2db894ae6

          SHA512

          67ecc49985f76d6d9e345d646e0b2db3e5704766ca895e5ccdbfefe905129b1354f9c7c73fca6da57308d08996faea5d37fd4c56204e72329ccfdd8f4026d04c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          81c0a24b6f440212f7dc15c253958aec

          SHA1

          0ec6d085db1af0bffaa9b66730f107a9ae1b8bbb

          SHA256

          ce9cc541127c651a10dddcc916def410e47b1f7e31a524843470b238580c6a68

          SHA512

          37c4ff3687c47c1f43b8f4fa3c266aeda27f463778f66bb685d83110aa8143926c002effda7c98c8c2e6930aebd7472203529bd749532dfef1c2f35898292e08

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7877ffe19667a9efd67936fea1bfc28e

          SHA1

          beb11b6289281df5ac7c2940e1f43d7fdf1bb57d

          SHA256

          277933a1b121b17350176eb155591397162e84d3c4b60d41bd041afaaee2e5bd

          SHA512

          09f265e63aa3da6bf18ce061398e4ca177b6a24a1b248299a1925e2090e3320e8b16d52937f64b57802ab4780e38bfb813a059842eef342abb528faccd966d25

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1b4af6ad50dd374456f2bd0d96516e24

          SHA1

          566cd8c404db0938d87e3fd6dfe549ae64c32716

          SHA256

          dacde23d7331fa8bf3ce6bce298974ab9c0f69a7b61414bbca08293e34890a59

          SHA512

          87845d66a9d4de0fe26767b4bad14524dda10bd271f2825f5d373df8035979e477e6fe818f997c5fa7018476d090138af9641cfc6694010617e4f5545bac6bf5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          691c4a4cf1c15a2f336f72d429ef64c6

          SHA1

          a0321cc61a104b27f8dfeb0bfe94873bd1fabad6

          SHA256

          e6f362356f8d0948bedebdf4a97a92551d50a2f0ad36aa22469a014b2672c1b7

          SHA512

          3b25772d14a5e0b3a146210d80474ebbf57a6ae340e109aa51b5bdf32b5e1b55630ca63eaf31ac14dde0677601a4757619cac753576d6f3eace345e87d24f867

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8a8c53d9afb38e4d5df877b6422e0070

          SHA1

          75f81b70acb48378d483c3c1267e0aff1bba272d

          SHA256

          4f3ead4ab4cd494f5185aec91dc95a154274826030c8014f5d2dcaa05574688f

          SHA512

          367b182544665edb2311b3abcb1abb88907ca0302e0b8afe04418e210d62c67141fbc63d139dbb731f9c175b76532398e293d374994ce978b8ee5fb941191248

        • C:\Users\Admin\AppData\Local\Temp\Cab8AA4.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar8B86.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a