Analysis

  • max time kernel
    142s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/05/2024, 07:45

General

  • Target

    7ffc32c8d94779af4c2b2296b8b58ec0_JaffaCakes118.html

  • Size

    27KB

  • MD5

    7ffc32c8d94779af4c2b2296b8b58ec0

  • SHA1

    05e3f2a23c9d67364c853bfe2bc4650f60bd5c21

  • SHA256

    a0dece25ce6298d5b4ad6bd79d58bad6e42c06515e1a3edf74a96696f3625ac5

  • SHA512

    806579ad3ba20e9b027752437b3bebb20c9e8319023ce7ab409b67e8acd9b412e3389748f95a81e3f128919df230cfa1e93dd5d0b8051ef269e684d8d5bb6920

  • SSDEEP

    768:UbQ5LjIZCSC/Ncur5MiS8sR5+quO7zu4bLtk8e5wenEe7eie0/odF85:UbQ5LjIZV+KuVMk8e5wenEe7eie0/od4

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7ffc32c8d94779af4c2b2296b8b58ec0_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2168
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2168 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1796

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          e756ef4149bc027430cb7b0f9d994941

          SHA1

          b7e5769cae9c02825820f65706edf4d84fd00647

          SHA256

          9d52a0350b2ab15029d06fd005ab295188b9b16e36c2dbba3c16f8ec120d5959

          SHA512

          5fbb44c6b01b205e1f8ed61a31742c9159109657e8756cedeb5434d70bfa96b8af6c1a7b8e52bf69d1cb7c305c27c85327cee5564f8fb519c73000381eff78cd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8608d864eca3edc45f82bd8a85bd4206

          SHA1

          a0d08a6fff88bebf1e7f529401bc0a3d6be9100d

          SHA256

          b00df7472ceea11ade692d7c3165f2b50792f9b8ef65adfc3fe4379babde4c0c

          SHA512

          068eeb98923937a440c6b1d9911bcb77ac008381dce22d5a0dcce0c0ec5e331a8bf56e32e5884d0298f04590ffec3df8285319b56f0908af52db6755cd4710a7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f2a0f39f32288256cb5a86ece6a3995e

          SHA1

          22c330cba96757b73c8c537d77eed74332f1af08

          SHA256

          1fff330c8f62b8024883ab776547ca29811b2807b103eca94107ee7a9bdd2e01

          SHA512

          b7b5bd9ea2c72b4c30f62ca7d0fda075771c5a16cc52dde23cdffb9018faeaa9f97ac3029583e4b4dcdb976fa04ec0f9c6902a434ac83039c5ddfb1a59e3c008

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          27561f3986bd559a64d0c943b55b3c9b

          SHA1

          bce11373d19169a8b8e4d9ac4ab3655af567d434

          SHA256

          7b052dfc937a049606792e6b9c637c74a79fa15146b97aec368f11709d699191

          SHA512

          7b1ae1ce07c45e2085b4399fcfc3543ef6a3cb092d8b051725371c6aa0858b8348b507bc07f0bfd33d8e4b459bb5f7d00a3e55e1932bedfab394004814c2285e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          37a18278b3a8d4a35419d56f39d5546a

          SHA1

          13e4f47262483ea7097061be9f1a223ac07eb42e

          SHA256

          ebd912d210578bbe0f4c7bcf19b92447952cea2b25f6f37ff5f5786bdec14c0f

          SHA512

          b7d74f57835db3ef21a17dd8d8c650a9ff087ff8041fbfa22234e082370b8a4e9d7bcbfd824c650bbf656c2d46caf36418a78f737390a2b71b6337974334a5c1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          bd05a4bc6734cabe3a3f13d0ec5c6945

          SHA1

          48e8eb3e71b48b6a8fe42b7f66ca6bfc6a72454d

          SHA256

          035b30cdbc65aaa174a2aa18d78e21d77c84d0a2284cf5ce0b1a5521f8390ad4

          SHA512

          fa713adeb69cb09106946a04253636bc07284c615fe5be461f82dee68c2fab70ca51ce00764aab7bb33d3c8116e10b721ea18db9675480ce2ccd4ceb9306c731

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          240f631b28ef4f3de179295c10339510

          SHA1

          2f392b1b71bccb0c4875cdbd183f5044ea639f91

          SHA256

          842304d227eddbf27c76f2b49690b8bc21ba921c5775941abb9e8e6202b65e77

          SHA512

          ff05a5496f07f822b4a22139cb53b1583b00c0083214f232bb50d52a92c4bd1b4836a15435f7075424b5810e9e195bd5592e7f38cdca905e986fd8ba95beb101

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          487ecbd1256316977b54280a90caeaf9

          SHA1

          dd60d38e54a0858b4e9c450d576b5356944d6e59

          SHA256

          d185bd46cf509eb2192b07ba3b44d655ebfd5ecfec9d9ccfa40dcdf758261ee3

          SHA512

          938c6fd14934576e6dce5c9dedc26f693247a6c6ca47a6224549d1423b28af756667ee6971cc230f528b5ea196b6572536f90692c12f0ac0afcf4fc2e54acbcd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          435499ec824fb3b03d17ace6ed653a94

          SHA1

          227db2a8dd64a902320892f570e3a85da4a44d2f

          SHA256

          a6576005131fce84fc445ea932a1d990a6ddebeeb2b92e4f1d36599ae5d74c5a

          SHA512

          c921994940ab01785e51fba6500064d0f1d975d199629895c3ebc3b4c02a189d72f3e0a1d379a9e2890a3fcf8ee26187de4ea5868614853e046816edda306e57

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          19c5e88bf8b1cb6b21992f022d628a24

          SHA1

          6a589bde0f1651f6cef405aa9336786e30795184

          SHA256

          986308ed3d283be490a430215d601b9494664c03310a8e4b6239f0c24e69941d

          SHA512

          6a16df521e71d5737b4429b425e7e52328d9093bf2a86ca6b7a7dd9a3a9150d8d415231207d3d4ebd0b47261cb39e97a7a8d46dd2663bdcc8fcabc412421593b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          77cf33e821e8a3824b64e7a263dd4ffd

          SHA1

          f542689641ab88c5d756fad4686fa3a27e1aabf3

          SHA256

          339f98f5a1777bb2745ab46d7a3f1be160a416d65a7531084e07cfd8ffc82b16

          SHA512

          fd54243db229a9ac057b4766c29f44130dc910931f0262df80f2f0b9e5635f88fe15c9efe7f9a5f5b16c64ef28e940a54e038faea9e0cb4d765f819a2bdd8615

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7688f5f00a06dde46e43ce5c715b578a

          SHA1

          975ffde36a0df8b41d1fbcb2c261d1c1c780e254

          SHA256

          8eb0778171fce2a266235d87026a8bc8c0aa50b438d0ba034b45756a40bcd3f2

          SHA512

          c8b7f1138feea2cd5d86b2eb421516c94ab5fc21bbc12b059ec5fcb35fc61a66b57341c46e50a8da9e234d13554f7173acb6a6be565395bd339728b703c7ce52

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          effab7f6e6f601462989e052ba058f7d

          SHA1

          72670df1bc3a7a738cfe479de28bc66bc2601e04

          SHA256

          99647a73ccb551e1162846fcdf547d2cc56cd09988d30a2cc7a9b22f86f2a15c

          SHA512

          a1baddab6cc0f94eb52cc4121a7ee7eb6a27195752fb3b7c602c45033ecf30206336953e3467a31017d086ce55446221bb586e644edcc36f0c7f994f681720bb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          36736eb67e5947b4e33f16c4866eb127

          SHA1

          fa9c42e81b8d6ebe118503bf543faa98d017aaf4

          SHA256

          85b14dab000c2d35313100606964652acfae37b653073d5c72105ec01661cfd8

          SHA512

          213723c4b2202a1be3fb4f154a90271cef6251ba8c1620b9db969d22d00c802fca68ae0d34dc6501725adbd78a22ea8f7fb96b458e99fc3f3ca44e8538531fab

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          44d930550b0bd81bf4d1d197f7be4e6b

          SHA1

          42f5f75ba388db3740bd67d78590206ade0c7666

          SHA256

          a762e593e328be5f29abfdff39e73b1a4315c1b3bb555ed8bc86da22259b3614

          SHA512

          e974cb7fa7efc8b37d68491f8ddba6e344fb177f7ec0f73176afc89d849982ec6a0271ef0807c80f1b118695eecc11ce7d378be46021cc459bb69d11fc99e5eb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cac6d91cb1d2eb3e61ec6c518d0a166b

          SHA1

          f36c7aa37f8fde0a90926ed8b0efaead93df87c3

          SHA256

          517f64f135182e1f316c1f17aaae8859e071e83d33a7e0e4e44f50f273514e9d

          SHA512

          fa167e6ed127ef5ed25960f3daa4b492719bb78c36c4365a39f4e95fb8f2a2f69a2781c2c7cf809a741f87e8e6a6ed6e4369b3b5536caa02c5e84d32584fa301

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          fd58e88b7c77594f3c449cd1ac5f6152

          SHA1

          1f190807f100c5a7fb8fdf3781674a3863b53690

          SHA256

          22fc31af7d1842ddf6a5251c2b398f4d35fa4bc468a737c7b1cae30f71494afd

          SHA512

          11fe4d98e3478fbac22a7df5d13d5c9589fc76337375da9890564a010b0b68686140e8fa49e903290a0df0687bce126b7cc5b273d736c774203a8629b1e87864

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cf37c0b5ebbcdb772c454e14f60c1a1e

          SHA1

          862b9632d86fde9e685774dfdb52b94289fd8d61

          SHA256

          b849d36b0b8c8334aa13458b3efeb60e172c934602f4c270800292320166cc94

          SHA512

          9b4d9b3eecf55655a9b2cc4c4fc0e705a00bc83b36ffd5c1d8a080c5037840cee100de50ab28d6ebff8ad1848f129756fe1359a8d974a7ee626266bed21825db

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c86e0489b7c489744c67f734781e5897

          SHA1

          91ba67313026275e2e989afa426b933174015e78

          SHA256

          7b1fd99638a0ef5f2f34284b14619470c7990e608ad7eb7d1f383d7304ef1b10

          SHA512

          445d8f0a54b05217b444e70b375808f9b2a9896767479f3ca6166725fa35eeb423da0ce58431dd774ecc9b81be76ca1ba906255068275ff11fba608b090f2b43

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d4258019b169d48beebfcd2c60469f44

          SHA1

          d95f22fdb607c13a0054ed853533b20ec577bb38

          SHA256

          828cb88e7abf6925b7cad3ef49ff44237f40a76c1d1d359aa51bfab50d45e8f2

          SHA512

          3951b97c57dc103bc58d8cc7a69131468b73d4c470ff24950a9701ad6f32ded8298dc6efb54f87279a9de2ca5199fc7afc3fa34de6b7b8b809b9291d22d911e4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2d8481fa3c072b053d7bb525331f8bcf

          SHA1

          07a7fd5aa73de670dd98800b8245a9a1e4ec5e33

          SHA256

          39c249b2ca972cd7f38cfcb74020192a8fb5006f06df692084ca3884880b2990

          SHA512

          85c6240f49d19e6e1667b1aef52a6af23015269b93a5da47f8c9efca318f75dbd5c2fb4f5a5e54c014eac65433d0f8f6e10eddbd22acdbb6d0e183df917783af

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          731c9462aaf11030d396ab71a9bbb40b

          SHA1

          8d9be59dbe2ebc720628b6d1573a14a4bb3db7ea

          SHA256

          dd95a86feb12829129e3f312a177218d75190964eb340aa6a78df4d772558a15

          SHA512

          7f449e093a726c4d2e9c216f69aeca2a66ace55ed5d2385ee9ccdb0e5fbd6b1de4b6f4f3d564af21413f79eac700aac13355f320dba8d8faa38228355f7079cc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          3071aca897f0189faa72b18ad8f38a79

          SHA1

          62d6ab1b5e745df093b7b47a7505ce11c33650ec

          SHA256

          355dcf2c442d415c5d916779cd8708375168310a4dca85e2ed7a04577a3919d3

          SHA512

          94bcd6b7ff2fc24910b760fd0ca9a83e2c53ec2e11671390b44e18b167f188735cf341388f93a27288e22533bb5342e6afb5e738c0940f1cb9db3ab5d7279d2d

        • C:\Users\Admin\AppData\Local\Temp\Cab5209.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar520A.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

        • C:\Users\Admin\AppData\Local\Temp\Tar5329.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b