Analysis

  • max time kernel
    134s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    29/05/2024, 09:05

General

  • Target

    80333a18b163c6dbbb67c5773205e2ca_JaffaCakes118.html

  • Size

    3KB

  • MD5

    80333a18b163c6dbbb67c5773205e2ca

  • SHA1

    729d9ff919e84582ff013098fe589184d47dd5a5

  • SHA256

    89163b0463288497fdd399697fc8f00c9c9d7b6c16fd9cf25b476284a6c4d985

  • SHA512

    21a9037c41d39bbb26cce230523770ad1844f23f351e012b3bbf96f32b3df3d60af8d46999b51b0aeddff2301ac82317262fa1f54390bf02766cd46f49ba8ac9

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\80333a18b163c6dbbb67c5773205e2ca_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2328
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2328 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2508

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          ea1e442772177532666547cf94f654c5

          SHA1

          f4438765a46096e87b45e47fc62b773d4c71b054

          SHA256

          06c020cbb461997668970669a94095a2d9be4085d189704ab54efd99bf55275c

          SHA512

          e74f5c94ff12332d796c471433bb1602a4474ee4b72bcdf973991111bbb681e223ba73a8af70b5841811e5bbaa4208e409b78ed78b3480250f94a0df9da736fe

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          e2921cb498e206cb4814e6f4d6fa190f

          SHA1

          1eca5105086f89d780e2a13139df39e5c7f78677

          SHA256

          e781b367e0f341ad6b9fe15b113a861092d301c7fe04c20a7a05db9affc721a7

          SHA512

          c127d7113c7aae88bfcf903ee088fe2a16da67c4942a9692392655821f3e7b628bec6c3466f28379b8f950bb21d6cf03ea5c48827a84f39ec0cd9252821028a1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          d7a29b9a41b7aedeabf132aea9a7cbf1

          SHA1

          6c8daaa8659916d90bd85ee5c91c3f0d081e42a0

          SHA256

          5e4220a04914c1ad7ab3f580367c85727df1ce9b13cf6bab882efe6074f0a242

          SHA512

          25613f2ddf131dbc0ec1aaeb67ac4cfdf31e3d48d395a40ee8b51dc159528fa84da440efd6c737a3fb3f0b592e57cc43abe9253543e1ed3fd85d7baf35f914ab

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          1f272ee36b54b2d0a33e8b2e71f70a3a

          SHA1

          c980f2cbff4e633946265671b514582c88fef8bc

          SHA256

          66260fd8bb7bc1507e8ebf009424a771d161151edc8471a15cf88ee681579862

          SHA512

          c760578a8f365d919b39f7625e8abaa956a57739d38427cffdfd899028d1dd8278da34082c2672d9657d4f47edc1bb0e55fbcb93f1f519d3afeab976df7ae8ff

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          f1fc1c57ddb8ea993570ea127d2b4573

          SHA1

          7e2c80b3040f0a39c86ada7d9c61453bd2a80624

          SHA256

          5069b25752e93da32ba95e9a92addaaece3fcadd269fe930eac4da26063f87ef

          SHA512

          c9ce811854c015ae4ecdf98e5bb027db545702630b7781f7caaa8400cac484663bacfab5980b93f4b3f6c3c4b34aa752526dcec6e1efa8fb6e5c3fbfc392098b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          97dfb4c36fff16e750ce672319bbde2f

          SHA1

          d6b1c799c43ba017aef203cf1f655e4aa8035169

          SHA256

          ba8249eaccec1ef264eb80348d4ae9ba300d98b47c46afd4ec5601174bc32188

          SHA512

          8ac799fa310500cbfd2ac616c5b3ef65b3d32538111b6d418f838756870d3a6ab6664d684ecca07240c5aa0c7b27f20cf4c78f41e7725f25cae71cb4bf2b6fb0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          c3092608fb15f5121487e24e5fb1255a

          SHA1

          ea01ab1116d8895b36cfb68e704d1f0833617c53

          SHA256

          63f52ac184a35d5aca6a5630bf2e7a4eacb81dffa7365cdcf507a84f6886ac7d

          SHA512

          d7d0046a2f6a2c25f2e360b0698e10b505890899696a896907b7496065edcca560274003ec52d85e99c25eed2280c0cdff531ff647540f3b1819296d28e6a67a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          a8024fe6c576807d3013c840db9c2b75

          SHA1

          37c65870cbcaa9eed1c2a6085edc386ba9903f75

          SHA256

          db0f32071df6316a9743c4b5ef8e14ffe39e7d43f7c4cdbd631756c84da464f3

          SHA512

          935581610ec7a7e0296af26c64635b9fe9346e0fd161c8f2520d3b37830a86bd8569035a851e825cef536356282b3b093d603221e89c7e555645b7740008f7d5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4e26704c637a5e7f67a1349b1cb6557c

          SHA1

          14d6029dc0a70a41fadd0a9af2c6c0299beaddda

          SHA256

          2eecd772f31b8083e3107606ecdc377749d24b2133449da5ff12492423d602f2

          SHA512

          6d5498be76bf0ba4a69be51f87a93b112a152a479d2e36401426a0ca19d85ef5ea065f308890c00a56a977a36a1d76f106f38b3f070394f303e837f08e6e5088

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          0db1b5e8f04f23df804ad36d9529525a

          SHA1

          9cf3ae98fb34f4bd7eeb5aa308883a5f40661bd1

          SHA256

          0c5f4860c95e442c2b62f1c5e55307abf734eaf6744f6e6f97403aeec98048b9

          SHA512

          1648f647b635b104c517ca42c91e44e14714ca703ebed13a8f27e6ed97e10925137bfe5e9d324eb9940b8e2f2708c843d96dad8ff35805873023b3b1ed428ddc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          0e65847ea91e80083f23d485ecc18df7

          SHA1

          686211c4abb4c8443278d2fff43a3e3165ed0049

          SHA256

          739636d4e161c7dbd9ee8771f19984fd317e5299b1ddc90e38660f998d4de700

          SHA512

          3ecdf07b2f0568e3a114b904c8c848c72f3bc1e77b6b0ddc557dde306bf445b669595c15d30652e3883cc093a0cbad4a4d7fd19ada771e45a6cd1cdfd69a61bb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          b254d0a3f79b1d49f2dcfbf5956dc279

          SHA1

          ae3f4c2b6cfef528b110baf8293a15a1094d8d8b

          SHA256

          3453a94cc1229fe41ae4cb4530e07e39b24356af8b07337e98754071f80dde40

          SHA512

          aa8e2a010a35a8b65d520b068d30e1dd040fc6d4f6235f930810ee1cfbf8bf25039659cb36a35cf018d60ac239559bf36a32c8b5a282d2d97c4857b652ca1fe8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          bbbf500c7f10218e254ca6eff4ae1fa7

          SHA1

          d6eee9e03c0f783583784b5f6f2a91ce9b0631ec

          SHA256

          55edf01c17914d595680c083e4782a18247e5f93af3e13b2257bfb3b7ffcc24d

          SHA512

          c4b67dd4c3e267c63085f09ba96dc0efffd508fa98f8a098324a9611dd15cbda3d561b854d4cdfd9490427d2f305191b0c9c796fd7e28b148071efa1a70283bd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          28e85d79a49b402c5b8a6efe65cfd00e

          SHA1

          c041026306285155041af86c8c7ae4c2883366ed

          SHA256

          1db1aebce9fb7fcdf782a113a62ed463aaf22880b4c92af14d156363c7787495

          SHA512

          6ca675c31f37e9e0411e2c8061a1618d4c5a6703210604000309160e6461aedca9bf5bcf37785342f254e79a4c6b8777c5e7c639e09496983479d8256c55ccdf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          b909f635141075f92baf4c1914180211

          SHA1

          3b27c904d03a408dc28f698c94b9122c8d70f759

          SHA256

          838d85489501d8d0662f63e584ffbad0b9a74d33aed7f708186e32936448aa60

          SHA512

          ae4beb2e279fd9c440ab32ae3d8f5315b7f46f4ce9770cb11b5402049cd9ed42a714505df55a2c3cedcc008fca17c7b84ac64d52c381f67bfe717bd36e1f77d8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          9e1b7321949df737f3cbbc7e29a3f5c4

          SHA1

          48873e5db4191b93bf397af48b498ab53f3614df

          SHA256

          8c0bfbfb738c287df98e6bf1ad37fbed22ff013e6f84b63adb870be1daccb8ff

          SHA512

          656abf2b40705b661a9750335f8e9775be712bb564a1f7c93802bd0275c74108bf43783f87000ed19a56f5602022c9afa38d35dcf3e18a1b17a24633a61f3c1e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          16d49447f0dd1632d0d224b62e34bede

          SHA1

          ac18a85242f5d202b4fc059441996744a1005d95

          SHA256

          15950760219e5758273d529de6c61f1c2fda133dedefe585d92a0eaf8755f2df

          SHA512

          7db06dd3900c43c71aad33218e246a4b4a363e4c2eed1784443395cf0ac346b9245f26b22c8821ca3b050f0b1492ec3b56d7194d3a0172a1417b255e3e17cf32

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          7d5f0879f31a883160368aabb29ad9c3

          SHA1

          a230a697d8a27fb43522d9ca254c90bcb0eb5422

          SHA256

          31e70f5234832547f95ac4b93347c70af76bbfa4ec5d2757d8da6a72915e73bb

          SHA512

          f1b2c0e265f24deb204015a36a8ec4c37811ba87cf0133020e3728dfd0be7f200608db7b54cdc74c609b1e0a125fe841851fae9698c1ac6a4a81a68d413a7a78

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          72644e7e22f7d0a0bcd25ed8c3676f89

          SHA1

          6db27ca30373577279c235eb09716d6c36d8a3a8

          SHA256

          835a027ef692b8880b3e7e26348214ed03b6c67c72e5509fa7710462d155b955

          SHA512

          11c9dcbd3c5e57810e3ebd0cacd4735c4796a4f0c2d5aecadeb961d6a7308915b2610e600d64159d21e8c2fd06ae0d1c49ea0877967eb72cce452b1a17053e5d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          06c87b99b0243e8ad62790d2acac40d0

          SHA1

          e96ed0fce9ef169744c2545ff710261daa40f324

          SHA256

          d4f8065a536d277e70af6abc547b156120c531ac0bf034786bde676bdbb3b275

          SHA512

          89028c93cf03de908a89a033dd8ebe592c93f76440d37a354ee74b745658bf2ba33ab96edbba078bc29c45bbc24ce3d0f26273fb6d12a040d366035270044042

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          4b35ce4cad31e377762fef0b47a516c6

          SHA1

          d48a5f02b614335042e0e54695b481d170cf950b

          SHA256

          07ca7af95253df621ff0088e6ff4227e0454a8b19e271874e12383da2bb5e730

          SHA512

          443f28dee7942e248cadf32ad7ada6b526cccb7bcab71a45b171fb3c57ffab8088969f6514c504ebb42e494cec0e20ba0c50efc988b840d8de6a3773a79e536d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          8bf23515102a5e15b3dc000ef0d32108

          SHA1

          57d022460263a423c32223106ddf0f17642d8eaf

          SHA256

          c9d43e3364119b5c8fe1e6675b86764fbe2689ee2175a0d09ad0342f98bb5bb2

          SHA512

          81e39b31c5a7f36b414fdbebeac378499d071861fd715d8c1ee41ad46856c78e138e859874fbf9cc957d9561d7aa621347035cb1f940fac947de948bbf57e30b

        • C:\Users\Admin\AppData\Local\Temp\Cab2F3E.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar2F3D.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

        • C:\Users\Admin\AppData\Local\Temp\Tar301F.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b