Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/05/2024, 20:51

General

  • Target

    7e5b9c9eb767bc2d6ec378551ed1a292_JaffaCakes118.html

  • Size

    4KB

  • MD5

    7e5b9c9eb767bc2d6ec378551ed1a292

  • SHA1

    67835b90156d48c16ea0c0a1735397f2432221db

  • SHA256

    35b1c3bc3f929acbde51d2c424df2e3b38b076bb74d19d323ec40bc216952986

  • SHA512

    e82c266e93aa47528deaab84fc3a209acfe7da553ac718252f19b2b6d52403639bdbca7563eeb2bce0a0167bc748ee55d3f391b48ee5eb2d1748dfbffeb42045

  • SSDEEP

    96:Pk7yJozTGknaEFHVKDZTBJl7sNjtXATIQFMA5e3fhrvDJUgwa71D5iJ8oxyv2FSH:Pk7yY1aEFHVKtF37sNjtXATIQFM93pDD

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7e5b9c9eb767bc2d6ec378551ed1a292_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2324
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2324 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3020

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3a54dc5a0dd93fec9d494f6a41a00dcc

          SHA1

          058f2b0c1853196eb85abed1107a565ef99860d5

          SHA256

          43171b24a2bb22ed3f7011efc3c8a94db841d2d3d852d2bd728ed7137d4e2b97

          SHA512

          c1d3d7094a26c1b41bea05a657208a5a4b339b086bd739c4f1312a0dbe98678ce71869d049ee86425075eac5d441bce254358f8e261e76a426aa457ea70cd69e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          822e8945e943673455bcaeaa9122c4fe

          SHA1

          71cbfe551a912a4d2c2fb8419a4100174d2ef311

          SHA256

          b7c94d8fba7abdaaeeb4295de4771be162f0dbc4f9bdd83e8e55f870fc3cb138

          SHA512

          a3867d5c5c566aff90919c03f5d6e345c0a48e1ed27cb556fe7fcb74aad375a1fdebde96288e0c356957c4842186c709f7e8f2260ea0d705c084a40fc8630c1b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bd7dc5ffad8e5d13518b68347fd107cc

          SHA1

          6f9fc3c4bbc53a208f50e437ef9f1ea22177ae86

          SHA256

          0e0dfc91b35c6a08db8eee35cb79c14c462a407919a7f924468a425fa7eda0e7

          SHA512

          3f32988e520ca2c34a2c2a432ad6c929b9d05f1439806474c5e61f1a7bc9f8e52599365ef9967d24420a04df81e13c038e7b5fce1d5423730ff435f0944e8361

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e2db45e9a1b27292c103ab29f9a6a432

          SHA1

          0fc95560722ded91fbe58231e38c6761a16abc30

          SHA256

          6edc3ba899fc7cdb3aba51355a42e0c221baec5cc3a170ad6a9b3143ce2d7109

          SHA512

          602d1c817d2b6e4f5d4cc50636fe6717db8deb0743d303f4bdca7f4932c8321ad1a03c1fa850e6ad2b98f12d387563536f232165d72c64390903ee871e33f920

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ffc7d168bc136a00124e739569f1a495

          SHA1

          e8f6ff7a5f06abc6c61aac2ad24a0186eb57f1bb

          SHA256

          c13146f6810899d82588c8c2a194797ff13a5282684793389c2c9ecf4b03fd75

          SHA512

          b052c8c356e0765dfcfae1dfc87386fcee2df569b142b68fd7f47cf2bc1e587a1903a2b62496f2df8aa6d8e5c91a46fa40610efbe4b301322ab809ef2dab9a46

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7fa39b743d9af450b8899e7a49dbcbeb

          SHA1

          05543babc0600be3a72a880e7a55a293ebf88648

          SHA256

          bed6f7189de87de01455f890de0820ed1a32ca091024c4bd8820a04545260010

          SHA512

          98e7f088626f7513a60cf0001e9f5c14c3bba4ded820673fad43cd6e851fc6b92824978d19dbee08e75299679c10add4014715f3d0d64ad13c51b9c54185295b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          303e6abc1cfe6cfe0cfba9451d4eed21

          SHA1

          3924cd17a49e277c4b0bdbab49d0fa8ae8a25c8f

          SHA256

          f187cae2c33011c5e82618878c4fbcb282f462c712da0ddee86911dee47510e3

          SHA512

          175aaa42efea9cc99723c89f733856b7becc950aab5fc0409a12f9f124a2a8c4fab35aff90ad6c0a7245c2fef16b89c987081c1bad33376c27059c8a21c98836

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          38e752f441eb25eeabbd329a4842d5f0

          SHA1

          44efc047a9221457300da615df556c22aedc309c

          SHA256

          3b4c190846b3c146a49551f651055003cccbaf65fe281bb6810200ce2cb337f7

          SHA512

          234f7f2fc7f7b2367658cf2d83d2a91e1833ece5ec07f53581260d035e069c09d90a3fd7589f7ec52ba5daa1a86610eb8c21f3edb3f303f10863c1234263b052

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f142c4ff5bc1b9aa5c3d949624369111

          SHA1

          e655ad91186514b6989f0e0472a406ba1a4e4936

          SHA256

          80efed2ce5eebd1e63a2b4aa7f9d3e7fbc8d7977c3ed9e8cbeab62ef851e2b6f

          SHA512

          404d0467ecbbd467313f2c9bd836d9637e5dfa94342596cb069f96d9f9bce51bbd6fbba9c22b22ce4a556c2f2d66017f5da30ad7291f0eac2d2f5168ab2110c1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a695372b28d07890ed3b962d333a9805

          SHA1

          c7013c6c5c28e2643ce7f23a6ab299fbd05271bf

          SHA256

          0ac820610654425faf95afd29469716080becee94c907610e6677d7dfd406ad4

          SHA512

          44de29ff3eeb6ec1a8526dc7a70dbaa0e0ce8b7918abbf3ea87222348e0811ae5139357fe9eae19e9e194595eecb3596987d5e742b827541fade5df7fd3f7e52

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          fa38ed71cedc527e8ef80dbcdfabe5ba

          SHA1

          6c6e9000cf0b9555ee26b0ad0ad057b9e40edb78

          SHA256

          f27f81d1563a9954c49ca8421f76ebc3e92b5b8c083af3d5a0f1e8c397225f14

          SHA512

          42e1a774c4f0cca59957f75e81fce49c14f9d1184df2dc09b017e8a8124f5af6d8795ff2f06fb80e72214516cae33a63a2dfbd802f725221dfe3296dc69dfa93

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          78655f1be4db406f1e1df9526de4a75d

          SHA1

          304cf101e6c0ea15a9e3c6e61da6ca55bf0e3598

          SHA256

          b492014f88b64e74f345ff1be7c0f06030ea0759b9223fbfb656101ebfe9b65a

          SHA512

          10bbe332fdfd515411305d942a13e9d1b1c8cb1e3c5e562ef9d2a3502cc2f320d646498e8381896a0fbc535a39c28db35e2885f14ef42c73e251f0436bb6b6fb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          668c15cfb8e6aa9b4ef01fd742b4b1e5

          SHA1

          3c9fa78cfbf6a85bcc6cf88fa5840b2d7a38b14b

          SHA256

          a4f3047529091812e735bc3cd449a7ccb8d13b9cbd86e3eedf8f9bb8fb460ca6

          SHA512

          07c13a07abfc14699e208e76dbf789f9a8f458aefec2aaa20d26f86dfd8e24e83d353dc2fc70e7b220667fbfebe329d344aa69dc7147dcbdfa4976e05b61f4be

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          eb01ac1cea36895e36830c55c9264314

          SHA1

          40f1788e214a9bd9b4fb2e42377cb0bda58a2da4

          SHA256

          e50f1f653378b882c4121d1cfae62ce0120715eb0bdf09c582a1cf8591214833

          SHA512

          2395d03aa2bdf66a1a6a3d71f5717e5c39ecf17a1cb87e17107959cacea659ac3a91189054227c3fc2396a1382d0d70968f36584815529289c4c2080034db97e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          06b74912775c288844e10fa10dac1b7a

          SHA1

          89470645e99b48169869611ea8175154410f3463

          SHA256

          40fbd40be61a047f1757e707b4b3ed216250d6e971c28515d765063338d07fcd

          SHA512

          79c17d07f5a5c500e68c635df213b3053ad5707e254c1952208696251f4f29f5f652a351ce008389498df553135bb94af03a4890a178c5480d695a4794e7935b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e45873da779567ac5dcca7dcbf38f712

          SHA1

          ac7f1a34c5aababd4d72d05107e992772053d57a

          SHA256

          c0a6e52e1f295a3c36ff13bead7eafebfb6aab88f4584348704f94f13992e219

          SHA512

          5f1edcceb8a96f48652dcd02b9cc044ccca49ec56abd1a89ba0c62ee66c6a847a5b9859a48959efa96c53168d521795d95a5b6c889864a17a0da37842bc3e015

        • C:\Users\Admin\AppData\Local\Temp\Tar5124.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a