Analysis

  • max time kernel
    119s
  • max time network
    138s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/05/2024, 20:51

General

  • Target

    7e5bec36696023af8c78d956310f29d8_JaffaCakes118.html

  • Size

    127KB

  • MD5

    7e5bec36696023af8c78d956310f29d8

  • SHA1

    36c59fa0da8d846666e48999dfb3995e88684ad6

  • SHA256

    f8bbccdaa3b0af346307590ff68551416129fac8827da4258d292549d93bb381

  • SHA512

    9dff9e3f2fd1b506128b6ade593d1b1f6aa964609a4b34aa925225d9f68b649b9eab09411fdda9b8b590445e20d308564caa5f97b64a18915d4d61356ec1d94e

  • SSDEEP

    1536:ShZeie7aeseCeSe5ege4ecBbOlBseMee2e5ebegyLi+rffMxqNisaQx4V5roEIfL:ShqKxyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7e5bec36696023af8c78d956310f29d8_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2804
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2804 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2204

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3450464729ebaedcfba90eb81856ef6f

          SHA1

          9dd89f1cd8769f872af5f8f2acc12231dba1e714

          SHA256

          524b3a0d992bb88f1e6bd765e8fb08d444c1bb7172a736f886acda39858adeb7

          SHA512

          29324805ba9d3291df3c3c05e1a1609f544bef9bd8991c39bd9b0d7dad3e0177c27aa8068daf057d7b9f01baa72fc15384a40155d50fa9e5df1df44bbda5cc8a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          68dff570a2051a6aa87f77236cd72cf6

          SHA1

          2597d14673b13221b0a2e5746c3592b345346137

          SHA256

          2389ad568a45f4992548aedfef37dc167e041039430610aaa9cbbe25c19e1783

          SHA512

          0f9d6a3cd5565f840df8437a928fceef15761ecc20afcac59c753029ad7b283bcf7a87d00f93e5a95e03ec7b51c42a1ac45608c929bee22abac9e66d9ff01484

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          92841e3ab1c8e28fe9ce67cdf0597efd

          SHA1

          ccc51bc544b64fefe3e041c95071328ebc5fbe1c

          SHA256

          8db1bb72526d6ecfcbd09e727b483d9e64bda7f060cdef6a1a972fcc6729ba3d

          SHA512

          73d0bcf0c82432b19f069d47da2c2a35d69207e32fe29caa004123a2c631d7b49986b66ba608f7ab2644fdae4a11d23164de4beb5529d252ac8008be4ff0c7c8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          98dbfb9f4e9182a8ed5a7168cb0ce0c9

          SHA1

          4cd252828fdfefd443ddd0792db4543371c4f9c1

          SHA256

          d8472c8a1eeebc8e947ea72269f4eadd55e3a75f0ef90d26f6a3ccacccb42761

          SHA512

          ea0c40e973bf889d070292534bdf9a36d2db01c55b3e4f6280f205bdc31fa3788fff669f7b9499137adb05edb509ce356a350a64600a37a2ec850d3e353f5b23

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7550ff5d161bc92fb9ae4ef00082f722

          SHA1

          d5d039ef86bd333f4548fbdc4d66650d558bf9bc

          SHA256

          90d78808ece3c32bb5ddbb9b7aaf621067e4ffaec5081488a933eb5f52343dd8

          SHA512

          73121dda3485175b65b99e9c96fa99b685fb5cd90c16e7abf5912431131f3a3b65c6fd964fedfda840e959b4227b4202ff2f661467931b3929ea0de599ce8903

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0ad940da0d99835d8a48b8e26d30c310

          SHA1

          59618c44981610458bf393126febf3c1cc8c9864

          SHA256

          e08f5a522e4487a5e52e48f7bc716eb10395b108a5252f36f2699d0a9b0f80c7

          SHA512

          6182875a40e02f24b125f0b3da767032d74d68a3ab03fa997b3e920bcb433ba8c3db10af927c4f92507c0df60a0b07d6224e6f5a9067f0deadecb8f890e7aac6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          41a29fc979469bed10092939ba20d272

          SHA1

          10986f208ba70e89a222203397222401e6bd359d

          SHA256

          5b2aa8473dcf20a4655864adafbe9ed2e5f4bfd079dc34167b0ad20d1efac237

          SHA512

          1096c68b56cd5729f4b93e2188c8aa7b98d037c9b8528e7ae4f8b05359ad8de213eba4076cb03f9078556d4cb18bb2664356b018ef83fb788afa242d21618af8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2a8423d3123f004c44013b8f36385fba

          SHA1

          4a7710ca35a7ce78a1fb4c805ee5394455d76193

          SHA256

          365432dddf7409d39ea1b3762295d8ba409af285d162167eecb21ae623102bab

          SHA512

          f58d9c334af17c0b9e8953f83080b99601da4006b7fcf9b24badfdac0c7fe6ffd261646a73fdbec3a2b909e9049f1e8d491e880d27f6d3ffe12db8155ecb16e2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          404f85bdb1a7b7fba5e34a2054f04fda

          SHA1

          5866706493f3dbffe82869197dc4a918e16c18f6

          SHA256

          cf6f7af6a70ac45439db5c9f06cb36e9c1d7f90873bf31e2249e65afb4fca153

          SHA512

          4656e2bb09e055a55499cb1b97b8dbf48a332b8745caea6af0b51fe4e2e3e6bc2739fbe43039f010755936fe590ba6aa1ae4eb37a200254b345dfab9e2e20ee5

        • C:\Users\Admin\AppData\Local\Temp\CabA8E0.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\TarB4E8.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a