Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    28/05/2024, 20:25

General

  • Target

    7e48eca2b895e7335ed0a4fc1ba41c1f_JaffaCakes118.html

  • Size

    36KB

  • MD5

    7e48eca2b895e7335ed0a4fc1ba41c1f

  • SHA1

    0c8ec3f9d4298e3cd24632901a828f9a272913a3

  • SHA256

    be1b8d6f481cfa3cb78afd84801f0bbde3b474bc99258b892e487cc943179fa1

  • SHA512

    3d2efc9807cc9c474f0acb20698c4a3304143d2e1c0ac775b4248f74ad67cbac8789684fe997a4339a0ad753f36cfa14a2005a5d9d30b6b31f4f5a6561ab0fca

  • SSDEEP

    768:zwx/MDTHlt88hAR2ZPXRE1XnXrFLxNLlDNoPqkPTHlnkM3Gr6TtZO46lrl6lLRcv:Q/7bJxNVuu0Sx/c8kK

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7e48eca2b895e7335ed0a4fc1ba41c1f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2792
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2792 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1284

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          1KB

          MD5

          91d1a9d489736610d91ba0c783745e5d

          SHA1

          d7effa412880636c17e6e5f86f1978835980694f

          SHA256

          51fdce859b53035fa4c5b5c1e0a2b76ad9090d23da467387f3c1fc5b9c10e897

          SHA512

          3bbca7affbc3e2e33db7e9d7ac3675006a9f2e34de258ed493f0d12d42bd3d0916cb47296da9e7efe3f8848253495b093f790c0c2ca72cf7f3a59daf1cf1ffdf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B2FAF7692FD9FFBD64EDE317E42334BA_89854CA6A0F0936A4D2ECA78845CEA25

          Filesize

          1KB

          MD5

          c90575e0768c19282e379d5fbe679381

          SHA1

          dfc182128cfaf78e56dddf9c671e0d37a2165f7c

          SHA256

          42b7e7d1856d7fe90c927d82950da17f1414e7b9f1f5896ba29edd192642c744

          SHA512

          6e453dfff0079c69b5eee59b14456654de10f8846da40fdbb72b4a6e657682aaf993b8b3abb41a67f3eab7113fa4a0f3aeafda39c29282018fb97819527214ff

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

          Filesize

          724B

          MD5

          8202a1cd02e7d69597995cabbe881a12

          SHA1

          8858d9d934b7aa9330ee73de6c476acf19929ff6

          SHA256

          58f381c3a0a0ace6321da22e40bd44a597bd98b9c9390ab9258426b5cf75a7a5

          SHA512

          97ba9fceab995d4bef706f8deef99e06862999734ebe6a05832c710104479c6337cbf0a76e1c1e0f91566a61334dc100d837dfd049e20da765fe49def684f9c9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\D0E1C4B6144E7ECAB3F020E4A19EFC29_B5F77004C894173A10E3A199871D2D90

          Filesize

          979B

          MD5

          18a1f140623e21ec4b37490a7a021f78

          SHA1

          e958fa0815360968f60abca23432fe17af3b407e

          SHA256

          356a6f6647021463249be49c7f3c28346f62f0b001fa151c8839cd2f3736060b

          SHA512

          eae7006a5504ca343e4aa8173c86eb4db213f09e0bc2d6715ca1a65fd4c5a9f124560125c4e208691707be8ccf3e85e12e626e01303fbf741bd1788e8d2f82b4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          410B

          MD5

          18d62398bc55ccfd860be088be90f553

          SHA1

          f6d0b9a7f4ad22fb2d68d8da9cf60c138734aecf

          SHA256

          3af60e63538a5ec3d7d81826699dd10a0294bf1e62d348171fa0b46e0a062f68

          SHA512

          eb80bd8343e4cc93af377f918cbdda98a5facf2faefc1cd61bc1dc53be5bdd81ad2c710899f90f80a8bee926556be0ce893421e1122d618d6751f9e3913c66c5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0ef253adefbb1913432531741756dc26

          SHA1

          9a28993f3251081428efa8e25e98ca58975b5c65

          SHA256

          b673e4bc20ca13c5c12896991745d3eddb217cde3b8bfcd874cafe263f70be41

          SHA512

          0e78470b74160b29e78dd58877c7c8a0955db31cf54b6741b6be7907883608c40aabc86cec65a7f4b143791de717cc6e34d4b22fb362143a390c06feeca7948e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e648cb2035135f3c7a27fabfb2d16e60

          SHA1

          bf3fbc79e960b688109ccc766866c90e12310c92

          SHA256

          f15aa0e0d9c620280e0da58ef507597fd7fcec0b0349f907b06410680562ae8b

          SHA512

          727e6fec0a261c16ee351086ffbe4560fe83dd521ee11fa5f35696a8970a0a896d6aff874da78ed884895e7cd93835593f8975e9dfba51866b8c96456051fec3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c2605a860ef8757921f7a411425b3cae

          SHA1

          b1ee38c7a04b834bb591995347cf70f2f44cb14f

          SHA256

          385da3fbd8003c902d5fb0c1197d3f60dc5f0aecea1aceb65d06d53cf2181dfb

          SHA512

          fa2096f6f2e9eb489b0866b9981f2b0d13c68c2c508ab75b2994f94782ba548ed79a42c1dc9b2d044121b044f004665dd8d9928d7a91ea1efe636352a9c63820

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          fd69278d6c3d3979c9e31a83fa7ce38c

          SHA1

          039874bea90b5d92433c6ee376c0368b693f6c72

          SHA256

          7178e9526c907e102f288f22e7812eb18804e5458fd151f7cb607926ebe43c44

          SHA512

          668efca6935c5caeb3e3b5900841a2d6bbe8c51d871d0fcc66a7d02f4b0f42be7e8202bd4c76f0438ed42ed100bee472e88db0d7bf45fd1b740e919ecdff0824

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6521d7d825d6423f6498101ff0d6e937

          SHA1

          3cfc52dcc80ae2d7d5d8c49fa5cbf537d4fcf70f

          SHA256

          22b81ea4d9512fa04407a4437a7c13a67e75caf74bbf964de6da1a2cd9fd4f57

          SHA512

          e8fe3b3706a208cde0f030dc5910000aa4eaca5b2fc9e4a39b739b789f7a76f14abf298054a5afbf2af9c90649ddea40e361b3dd3241e2f7fcd9e77a9c1cd802

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c1194052235dafbc9a13d5e436dfb26c

          SHA1

          e1780194c688355bf168e28c1d465255eac14974

          SHA256

          0411304eb0d110f18058cadcb8cb832697ffaf0c85fd4ddcceb58f7a59a431e0

          SHA512

          fc26d791d9e409ca7d2fc4826c41be4105dbe1c44062a40e1842bfeb7014e7a282cf93db9b7f60e22a353b8998fb5956a4884e450702fa3e14b7f3e2da3aeb94

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          fa61c1236646140ec44ba6e4af7f778f

          SHA1

          f6f1469dbcd2751ba199a424f4c10a203291d01a

          SHA256

          35600dd4fd4442718018ca06791bf3353e46231c679f22e038976ea04a5e89b6

          SHA512

          b0fa1a02625e793be092e9f423f2220b50ac84d910fa896adee4f94b26dc08c5be1ab4cad116ee1821760e816601248593094f2c6f99c29da2fc0cc670ada35d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          656f668383cfcb03e0283cf7c24378f5

          SHA1

          9e212926d246077b47e2928f675e58b151325463

          SHA256

          50981a8f992aab27cf279cab1a5a24e98a7d0ac2b229f669144b3b5afd3e6f3e

          SHA512

          e6a60f1151234f9d7c1db9cafcd7758b619ac02df1296a9e41f3788901520094061ddad8ff0df0872dc328d74c1a5cabcb70194fa8f2409073c60e9f4e3a3bdb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          04077f27edbaed6caad9ea123f2279cf

          SHA1

          2fb836dfe27ae964857550643c1bcb023ae488f6

          SHA256

          244e891055beff92bf8f49a74cb6477012981fab9529b545aa2e4546508df0e3

          SHA512

          f73ac472f31e3aba75c332f57aee0c6d172a417a866ac6ea2423d8b069a6dfe2dd8408f46cf69a0cbe0d071ed0adfa48afeef8491fbf3aae513be88784b17b0d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          78411ce65a80e0ad85e705f22eca91e4

          SHA1

          963774c73f672059ac22f00096fa4c3b23f9f6cc

          SHA256

          7e5c3d93a215fa58f20d142a93766beb51441eedf1880f535978309e0b56ee0a

          SHA512

          83a16275d6e0326b446ec9c4b1381693e12addf74685a2b612443f8332391d5c671992723fd57a2424db710ac8a38efc7bd9146ba116b57f2e4d9aede5f3c5af

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          307960a2a971400604dc3d2840ec9194

          SHA1

          c078b54476d6124fcddac53066e990de8e1a06c1

          SHA256

          afad48139a671083d9c7a0a96c6b735751a13a448997237fb6608f09e3a53f5f

          SHA512

          6c1d578bf1581f72554dc512134dbff6ff4b0639d2a1ad89819168736019903556b75b7f1d80ef06a8b36cd93ec8f431a4c3e62a518dedc6668e2192fd2e8411

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d8ccabc27ba28b15da77a71f165e8376

          SHA1

          aa4d6c479727a32c4141dc71533965116f9a8120

          SHA256

          7e32be872ba7e2d5244d936ab4d8f913fe012da71f0d79629511261f36c6116a

          SHA512

          bae93e2012f7117054fd98ef976ac478f588aeb7c79988b0e76a90fb75ddf5ad28151ffe72a12e32024a29d3721affc0b6633e20b3e5eaf34bedea1c382d76e1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e14ce3fd1f3e545c9feb2f6df6780806

          SHA1

          ab6b5c0ec4e8596e2ec8f6733dd82833ccded443

          SHA256

          3623310b4871968b742747b107f9baf4d8723d9cae32ac982f8c94f5a5ed3d9a

          SHA512

          3f3607cde83fc6f0e691e846dff0ba1f3b7acd17bc84a87da70437c12c61cec175628f338a17b52d2196ff5548da1fe88e29b74e7acea364c4ce689b70a27e6e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2672733bc3709caf2a6e1c71f6019c39

          SHA1

          33fb561dcf1f63d6d9ebb26752c3792f52db4620

          SHA256

          c5e34a5f49eb189b80e2ff25651e3123d95ff5157a76d2752abe2d4cbc698a8a

          SHA512

          96d01e2c5dcddde3ec1541431f9c84dbbf0c291256ce75e0ccac37afc2b507457a7ad868d639e53a76a49925c0e5773c981838f8c2d14a0e993bbdbff81f1a9b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d65b5c5aa69f996755be01c36124f2ce

          SHA1

          a174d4f3e321fa723b368daf120568e558493200

          SHA256

          ce070ff081d0475d15daa64d36176fb6f9dc9505e662c7c5c26b2dbd8787b64c

          SHA512

          9dcf3c5ebe5cecab34ee89d51feeb8ac93a8a0cd1be7ec6cc4e86b1888e8a14dbff0e8d31dfa6deb993cdc0c5843a34b28d0b3a7178903ff96b2c68afd2814de

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          df2169e077a8bed4b84af3660a34bdc1

          SHA1

          6115f063853d84e29702b8d1dcb348189a925e5d

          SHA256

          b557a4502962c2f0730a44e6a90365e46f01a15fb16bee54fd10515b8ce507cc

          SHA512

          cf14e7a7f1148e86f81e3e8ac5eaf694a9a0798829e809564e31091223451799e75c0321bfeca3697872472ba0bc32e1b77094a742c534072b9ac8dec6aeee01

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8918f1820c38cdc46e9983d1656b056c

          SHA1

          9770c03a3586b1b798e9091a6c3cdfc64b250adf

          SHA256

          216cb303837a177c9f5263e161da3b7d97e6628d626fd869997307760437d573

          SHA512

          d0b9eb91444577808237bcd0244bd0bcf25e89a6c71bf72647985c7e4f069c952a191623fb64934c4d191bcd38259af1b36f80b894fb8384911f6366ac22c542

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0307ed4f323d797660397ba27907cff2

          SHA1

          ae9528207f6d32219ef3b9ced200b4ae54b766e6

          SHA256

          4cc22e86985f20f3c61ff49d01551247257f7b5b750e3398e5ee16490ea62d3a

          SHA512

          78ced01afee8b5565a5f324b9b6bb5989d5383da466fe678ffbf95a571d91c92c4c5029901cc5ad2d1a1c48330439d3dd079632b9f2db62ca744e1e480c29129

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8931dfd5c4de3a055354b4a2c8110006

          SHA1

          5ee8a357d9a4cba13da0b2396ab35ae3d23cfcb8

          SHA256

          7d58eb8b16dc2f43979aba6d82d0d1aa82e7bc1645cc87aafd7bace5f9f63554

          SHA512

          9ba6bb67f8a5c00b26517e34ae05805e54521af38d3ffbb3682163a0251a2c6f76db2371867f5aa63fe64ee63d86c998880564075063295f434ac9525675b41c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e93c72c6a3ee3de04b8245077e7434e2

          SHA1

          1d373fe534bbfdc1a508d2431bd4cfc27068b257

          SHA256

          be2fc1e760138ee9a1a9ab5fcf723b153ef4e87c070e4339a280e3ad38a101d7

          SHA512

          a34bbeff604944c8b1d8e5d4bd82b1ecdfa13ce2ce3f8b5f3185d2c6dcebfd870a4f8a48d616ed19b39ff600512473c6eff9d9f02fe9d5d49ab53f14e7cdcf0c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B2FAF7692FD9FFBD64EDE317E42334BA_89854CA6A0F0936A4D2ECA78845CEA25

          Filesize

          482B

          MD5

          2151e407e5047c6b2e8b696e890b955d

          SHA1

          65c01e54ebe4a2411526116099262f93a218ae80

          SHA256

          693c9676e91064a722c920475bfaf9db83ac9258f70289bf89c21b5519c44de2

          SHA512

          6e64a089df050517be21a08f28866e74877a49bd9b3d8828cbd072e5fd03652e02ceceb674d16b0af297f096b41055458d94e543a2a50a36cbbee09698ebe8c5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464

          Filesize

          392B

          MD5

          f424a6138ac83c553f6bcf09c202bf0b

          SHA1

          f6274b733ba848cff77b0f4ab088850bff139275

          SHA256

          6d14aa935ffee05616985624a5213f292bf0fa9fa1e5d944b87e2585a2a4d5d7

          SHA512

          f124046cc4c49f08517afeb9916aa4818b99801b116abcee6373e1873bbcc918eeeaf61032f3c91c5ceab6604d6cd4d0c8555bcb3b9297cf5c4d6778f44de0f8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\D0E1C4B6144E7ECAB3F020E4A19EFC29_B5F77004C894173A10E3A199871D2D90

          Filesize

          480B

          MD5

          0b1e67115baf05d1a533f987b2dbfeef

          SHA1

          ebf30b7be9d9e24f1590cb2d712b8842b1015561

          SHA256

          4ab7ad3b6fce1f121c17bb5553868e9da21a99da4a1b54758c4347bd4c5dd48f

          SHA512

          34afb44cf75a303df5a91ed29edf830f69dfa1b1908e555edcd14f038d143c7be57dc945fda09e808142f743c77760e08204e817ae408cbf03a6998380bc0a0d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\D0E1C4B6144E7ECAB3F020E4A19EFC29_B5F77004C894173A10E3A199871D2D90

          Filesize

          480B

          MD5

          e128d4d44f89108affbf6db635508271

          SHA1

          96af4e92b69e7783c979d8133c9159c4c3017067

          SHA256

          9b8f5e6d053c3673ea979beadd201008512703d8cafc03426cf7f925eeb21172

          SHA512

          bf10037dc5a8b49cdbe7f557192c6b542033488b4d2059c1b46da39789e026d3644dde015fd1eba5f214f6ee646738f629056a17db0ecac5592c3b166d2c108c

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IO0LJX84\e93d7024558d2ee595265c43dc1084df[1].htm

          Filesize

          162B

          MD5

          4f8e702cc244ec5d4de32740c0ecbd97

          SHA1

          3adb1f02d5b6054de0046e367c1d687b6cdf7aff

          SHA256

          9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

          SHA512

          21047fea5269fee75a2a187aa09316519e35068cb2f2f76cfaf371e5224445e9d5c98497bd76fb9608d2b73e9dac1a3f5bfadfdc4623c479d53ecf93d81d3c9f

        • C:\Users\Admin\AppData\Local\Temp\Cab282B.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar282E.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a