Analysis

  • max time kernel
    142s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    29/05/2024, 07:45

General

  • Target

    7ffc3975b3e3977062e82a4687342565_JaffaCakes118.html

  • Size

    102KB

  • MD5

    7ffc3975b3e3977062e82a4687342565

  • SHA1

    417de6983b0f9db65fa9ff5015780515a513d578

  • SHA256

    8893d985babd570b56f9a0cf0311b3120de4f6fd381ba18ff6bdc610fe36fcda

  • SHA512

    8c98d9c63471f78192ae5d778dc018b05506089db1b3ca4630699e42ffd4bf776d8b0f1243b03831a6e805705269e027e5b916230b92be8cee2d076101b5c143

  • SSDEEP

    1536:zp0FJWQxDkPSPZD3UgbWucXmNRS7OfPBZAGIJc8kXkyjwqP:zm2Q4SPZD3UcZcXmNRS7rG/8KjwqP

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7ffc3975b3e3977062e82a4687342565_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2284
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2284 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2304

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          1KB

          MD5

          b9a6ce2d8d958f97f33e4c90383555b0

          SHA1

          1dfc439a009c45eb482547d65aeee88675679279

          SHA256

          35c92a56b5f0f8520f27ee9b8d093c80deeb4f7599dbedfa8619559986db3c03

          SHA512

          0395ce6722e8663e946c8ab45bf6b28dde3d77c42ce893dd5d9174bb1c2c287b5ec4cb165ab2c606c13b39a72af14ea2d1b63bd3f21b766f8969b6d18db920f3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

          Filesize

          724B

          MD5

          ac89a852c2aaa3d389b2d2dd312ad367

          SHA1

          8f421dd6493c61dbda6b839e2debb7b50a20c930

          SHA256

          0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

          SHA512

          c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F07644E38ED7C9F37D11EEC6D4335E02_02C4C6ED250727F9B08935C0A9565568

          Filesize

          472B

          MD5

          ab717c7b6b80f3c0b144b959aae3d0e4

          SHA1

          578fb3f595898df0d21f22704fed7e75fa780c65

          SHA256

          c935ad854ace02c1c74ec48648a46b5b40d8d5877bf44ab8909356e2bfe965af

          SHA512

          60e579023b4b77f4a652a53e96c1a30968d3a54ed5e92316d18c90603ee7a469a9da544dc55c6d6198c9065ee6b89242e47ee1ad1d9b5785677fd9e2be4c7ff9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F07644E38ED7C9F37D11EEC6D4335E02_91E41FAE8B0B67645773C1C9A8DB10E4

          Filesize

          471B

          MD5

          01d34b4f3acb8ba55afa29098fd8bf58

          SHA1

          061ba35376c3f396ffddfa9ddb46a204321db72a

          SHA256

          bb9784259188015c97b9626b80c1645a7041d916e2ae22407823f05e4a018601

          SHA512

          37e1b0e60e8b92681b8a238299733957b7b1a01159d2940efe5bc3c4721129c11d11e292680d6229a5fec834ba3d4c08028c29a5a39c94a54e71a5de66083e20

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          410B

          MD5

          ad5d7204edfaaa2e9721dc53cec22119

          SHA1

          98404dc8789ecdbdfcf80bda1567c562e682819e

          SHA256

          92f11116968a1aa3146e894c2af897f08db2376edff47bc2a7f0984ee84de2b9

          SHA512

          aa7f4cb7860b0bbcd184e61a2981de0cd98bd56c9f354102fcddd206738546b012ecd31e922bd1c608fe0dad1acbebecd4628487be971ed66ecdd414e2f4e92e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          00faa7cac5278695583e2c57a51ef911

          SHA1

          99b2c8f2915d735ab0ace73bba49bd8b3aa8b1e1

          SHA256

          32ce362d81aa0aa7f1e80d4553752dbfef0531dfb54a0a59275733eb72a069d7

          SHA512

          6c33c74d18f07b98ea61091f6eec90aa1567047134a809ae77e3c21aa04dcb6e038b1a63c8d421d86de4a8a47a391ff9b4679a538c0c5556d68fa291dc8cae18

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e715be717b0afe82fc8657631425fc2e

          SHA1

          7ed00827bceaf97d9acc3a7ee3c16c7037935a80

          SHA256

          67fbbc4ae390c444dda6eac54394354850923e4ae3735c6a1ade985f3a8965cc

          SHA512

          a6d5ab8b9a1ef017028cf12fed9914d12f52ff6f7e919269b3e3b6a5e5e67f4fb47b4a6b573986438aa5bfbee02781d4e001fff951866e076d43b9d6d4f39dea

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          89066f1db4827143269ffe68383f2835

          SHA1

          b2ab80b5c17e0be33e7db6aeb03cfb927f9bfd21

          SHA256

          b993377061c16ca7f018f205421aa308098e74f2cd1b3634217ac734afba0dc7

          SHA512

          d86d1aa9789ed784efa78557320104130f4d9b820a9706dad04346a591208db9376d366d2fa383be54d3ca9ca1b2765f13c49ddbf28ff5f902a80db43dccd8ba

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          59a9227f5d3c87afc6657a4c1cee2ff4

          SHA1

          2c07b587f658c7aae2769a8f055615dfbe3d311a

          SHA256

          9271d907568629718faa332ececc33be59551f0b3e45f31a2773091b28ea9513

          SHA512

          f15da97368a474b531148aaaecd3c67895954b9ac58cf390a397467a730056ede8b899d719bfd07c7be68ad046651b1e3a5eb8f14c439fbed3811d8e9bb189d1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ae61d1d1a5ba0987f30f73c8d95c4a16

          SHA1

          3efc1a76faec33858fa15111099952eca7dc610c

          SHA256

          46d1783fed8d6549cb5705e95ceb455e2f5b1f1bfc9b85df44f11bcc2cdd3e9e

          SHA512

          44d964d9e61fb5479b1ab70af583a279beb53af10224a759ac056cb683fb12ae3d9068c457a6e32865132a749f100fc8a11ef241ed07c4bdfaea641a1aa700f9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1e79e04196be97c93253cb7d67eb5e2f

          SHA1

          1553b0d6598c3af93c1a54f3b6020af8dc04a06a

          SHA256

          5c4c17d7fc32bfe7fb0f126954a52ec3b609fb1b3ce3b1601d163ffa4a7cea8d

          SHA512

          56844ac175b6e0039c84416cc4cbd6733196b39067d4c81829e006d48b188bb1035e7fe2eaf5e3e2e4ad30ba3234a2edeeca79f623702a7d48cff2e43db13ef0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e0537693c6bb9d92e3049668c690dc15

          SHA1

          6039eaa672d9ee364dbc134d0638db6d3af85ace

          SHA256

          0af943352790281be05f1b2d422c73037858fd7f864e15eabab00f1f23d05c36

          SHA512

          e52788569b886ad7dccd41f3e6a54fae4b6f154a06f5f3134a6fa504ebaa179fee79847241ea9cd94fcb5ff28436dbb20bffaf9c028ac38d3e3d098db46c859f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          637214799a15387b5f396ce5fad66f23

          SHA1

          11abfb74df267072357666f68ceaab49ee8d335e

          SHA256

          966a6e493a4a985b57943076d506df2174b976ef01fc831164fc8022ab18d717

          SHA512

          1c13f540e7f4758f54e81ec424dc34d56dfbc4d70af929e59dca961a0f52f0ea30e61eec59fd46c623715ac329838eefea998fcf7e8655a7ca605d12e9408474

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b55eab5e4bed5d5bdde26a074692124d

          SHA1

          3db9b80f0ac009a996bbd1c2863db095415b8611

          SHA256

          db1e39e7921a0e831ae122b6c8dcd3198f7b8617c07fb66ace8da26e03fb5191

          SHA512

          4df7a7807889d557c2a3fdea3fb3569049a0bc94caa92fefb599149906edf4e99fa063a34ac57964ceb7967ab83dcd366e1f349802dec7ba7cd3de4783a1cbb0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e6a795dddd71c41ac31ae17c7bb5a226

          SHA1

          255866439dc26dcf5d7175ce7e4a11b46b435b4a

          SHA256

          ffaf5bfb5a9799c9fa55939114aa0e9887e90294d527b14734f0b4176e4ac23e

          SHA512

          bc509c9629a59169dbe8fd7ac88eb1e0b6c94afeaf5b9d231c638386633da483ea0b61d980b3c65d167cd4d102ea3b7302757d67d2da3d848b0116c4543bbbef

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1f8ccf1d2031d1bd66675b57539ae184

          SHA1

          51a5989eb87a73a41c43b078bd4f12933eadcba4

          SHA256

          e8c6320b620e75da443836c6d4275760f0e6d84ea9e242ec302ed6a870509ad7

          SHA512

          ae191350edbb0b37c91353c3d3e0dfef63c28b53336c86aea8d45fc56dac5cf03214b0f7cc338498f2af5b710e4260ad65e741f28ae297fc23cff5da78b9f5e1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          988aeea84e0118845baab63411a710e1

          SHA1

          ec9b30096ed7de920e8d17539676431d3876566d

          SHA256

          4c59a3a8e1c8fcfdb620f68649b1aa652b9e168bafd5f6ac13fb10fbd9fae909

          SHA512

          53ee5bd3287e42add89529467cbd9f8b5c6b7af63791c7ba1a4f2895eefe36afda35682aa276112a4d17c89231f7bd95f23c6358d4af4394a97e31a2b611692c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0b78eb387ea821ce99996a2c60eb641b

          SHA1

          95d1e3e132ac2d5e20d40f60267b57c946ff1c00

          SHA256

          b2f606fbdf7101608c0fa672ab05c3e1d4e945169fd1c1c83db9b0e9dd40fa95

          SHA512

          36ca3dd3fa501189dc5bb42bc2268e20a447ee79fdb3d1030e923e0f808bdcff62e3d64b2dcc3879981aa76bf8bc5c45ab2de79b24dbdf12eb46804841b7deab

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          57cce3c0d42a397eb51649cdb80a05ae

          SHA1

          d07651361fddf442f52d0efa54c38e1b95ffd42d

          SHA256

          39e4a7d5df0c2b25eb00976d35240ba14168afd331a5327376240e6367b33c69

          SHA512

          1a7e3d4bc5f8dc9dfafc948eb8859aa9b7a842769542b16edc3036fa9ef9a83a30d8a2f1df74454cd1cd0ec0fe97b1fbaeedc32e0e76760cb765a5e3896ffeaa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          18584ce5da2610948fc155f4daf8a433

          SHA1

          a5ba8deae87cda6669eff17f2de4190dd148fcf2

          SHA256

          e5fa62d92f12a025c45410584a597363054e572aa0e999193d3cb1e6b8ef793a

          SHA512

          f41e0e43426f5e169cb5a467239467dfa03738324a3da0fa04b059b60c315581d79b1783f7b1d97d23e1a4e8584779951089144c8296af25c1d2d6ce3b410acb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a2bb95cd2aefca5115d88a601294e38e

          SHA1

          9b3b948ec74afd601bdde8cdf2b60f6f52e4b912

          SHA256

          0757984a03a78e71d324da2466814d864b064ee1d16cc12664779e938b2e42e1

          SHA512

          4e47b15c6e7f00d9ce30f02dc54c7240e4ebc196698ae26cfc12003de3ba040a7f0d423b01a917cd6b2c5aae5fa10c6ba8cc2771e95c3b37bf23e12745d61286

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          671cf3a48311cdb74e5fc827f33bf962

          SHA1

          7d135e56cdb87600db88c13c7696516280c5f279

          SHA256

          8aa6fbeb21fbe836dc7765e87488438b740ee5207fbfabd4d7cdc9557e500472

          SHA512

          3c2744cc952ba8a5522e070c390823052470065dba813adfcbe45ed9ef998c56582c2ef708f7cfc2cf2325003acea2fcb0f0d4498991d71dccc3661a782b9bd4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6d638a1faa6607c156c4ded4324cac9a

          SHA1

          b3d8fb353e536f05932b442d18212fbc7c5aaee7

          SHA256

          55eccbebcb6e1e6e8e5576f145bfe736c8b0285002fc7c2a39735c32961ec6ba

          SHA512

          9a718cc47c8f78633e95825cb95e357eb78ddde31ce342689c1a1eb9c69fac4235158d7e8940055ddf2023e24e9ab969939e1c54ba73807bf6cb31b638aab0f2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          fdb90532192491e003dfee219ba3bbf0

          SHA1

          63e4126a33fb943a79a8380a767009f40b4c665b

          SHA256

          7090bc2c98ab215a2b5736088b1a88af7aa0664cb7fdd18125090330b3c697b3

          SHA512

          596c47ced605005dc64caa4ca2de82e80b7857abe0b38fa663f4439819a41976e55436daebc598b808113be5882a99b2239e863cf9e5dfd9ca4ff8d468b66cb5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          66488e393ad72fbf28b6b289e3973df9

          SHA1

          b7fd54af610fbb98b10ecbe71ac94fff38913728

          SHA256

          7ef084f446c3ba4836bcdd81b029e68be4aa20115d1638928065d780146292f6

          SHA512

          91dc4944c26dfca5a46b874aa823ec63fa40410e6b15693cac774d533ff931b94dffbd9b9caa7ffaca3d488caea0b8824621e58346fe1102d67cfd558b5d2aed

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

          Filesize

          392B

          MD5

          4858ec7a902b1783fe13b83d847dbad0

          SHA1

          f707cbb9ae63c248db7166f403e1c6e286a5e794

          SHA256

          c82db1345578e29a61c9305731eb270bc4f2f317930b95a4a87f49a94bfd58ef

          SHA512

          df0c25baef21a904a88a6f6b7afcb44e5cc58defb8799780c525b794e6244e03671ab72f044f662d5eb65b48ed091f5950a80bb79d3a9cccbceefe64f92a8ccb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F07644E38ED7C9F37D11EEC6D4335E02_91E41FAE8B0B67645773C1C9A8DB10E4

          Filesize

          406B

          MD5

          0e99e23fe61d0e586e5d2b2ea0b039bb

          SHA1

          fa3c6bf42cc45fac60db08cd4f6b30379bf62f4c

          SHA256

          2c8cfadbc33ed2ca5ce547fdc6bd593bbff86d0d7e4f73b320df22a0229f0061

          SHA512

          83ef09c1a7394e04bafc84b1aaf4e9f3c5b5a44fa40c14cf39f11021c054f4407ae207c254ffaf20b7cf3aa181e4bd9ef46f3557ac6382e544b3e88cc4be4174

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\52G8PVLC\platform[1].js

          Filesize

          54KB

          MD5

          e66acfdb2f1dfcff8c6dba736dd4ab6d

          SHA1

          36026360b6c8d750488ef2c739e04969f8c5bcd7

          SHA256

          742841b3cf614dd55ce486a7335018bd1992c4d05ef74b45a0781318075a99f3

          SHA512

          113b6e50ded2703cb7a484a66250a38d74833ab9a994dc54042abc95500fe7405f9e5f384186c15bf392c613420a19108482d279776f6e2fd00245b8bd892fbc

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SVBQZB4R\cb=gapi[2].js

          Filesize

          134KB

          MD5

          f9255a0dec7524a9a3e867a9f878a68b

          SHA1

          813943e6af4a8592f48aeb0d2ab88ead8d3b8c8b

          SHA256

          d9acfd91940f52506ac7caeffea927d5d1ce0b483471fa771a3d4d78d59fda0d

          SHA512

          d013be6bfc6bcf6da8e08ed6ff4963f6c60389baa3a33d15db97d081d3239635f48111db65e580937eb1ea9dc3b7fc6b4aecb012daeee3bf99cfebf84748177e

        • C:\Users\Admin\AppData\Local\Temp\CabD4C.tmp

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\Local\Temp\TarDAE.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b