Analysis

  • max time kernel
    133s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    29/05/2024, 09:05

General

  • Target

    80335e4691f01b7f8af511a38e273531_JaffaCakes118.html

  • Size

    115KB

  • MD5

    80335e4691f01b7f8af511a38e273531

  • SHA1

    56a750a906c9d8d0ab7de01c31f29fc6e2ebd4f5

  • SHA256

    aa8a42f79d1b21c9959cd4033323fa88dba8f12a5c3de2d4a1efcf984f52950d

  • SHA512

    880389521535bcbaa060f136900ad2b1d735615e97e327ce9be5caf68cb4ee4901ae92ac0307e0f50241133b7da3877b614d1d7179d8ccd8b1823f512a5545b6

  • SSDEEP

    1536:Se4TEyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGL:Se4TEyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\80335e4691f01b7f8af511a38e273531_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1780
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1780 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2804

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e866710e88260ec4f95495ca620ad796

          SHA1

          e5ad801db43b3ba1eafc44ffcd1b9301c20bbc45

          SHA256

          7d5dd4422d5b808959b5991995dacc1e092f1bd960680810311cd2a1f78021cd

          SHA512

          88794568d0904962eacd8f0c0097e8b82796fbe52df32aa06b436c10ffda7eacdf2bded76e03d1e9164a8915c72ee4b71f663f366a2054a40112fe7cd13b4253

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a0019a1e413ebcbb966a4375f65d4331

          SHA1

          db9dd151947cf646ae40af20ff259fd60a91a19f

          SHA256

          34d31638cd02069caf3ec1eae0e08a2e61f2de1c7086ab768adaecb43a2b3376

          SHA512

          14f9a57368d7241a371cfa06a10e42a9737b0605b82811720849c26f8b72fbaed6305a75d43133acef58c0904fcc0f28cabf6d913d332f7ac969ed01533bb50b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1c72c13f1ae66756e4ab04015ce21cff

          SHA1

          e0a3dd1a444af071bfeb974bed95367289ee1832

          SHA256

          6a0c0dbabb8047a34450fbeb9441bcd6ced0ab0141a8edd40288a335f0b11104

          SHA512

          9b9d6ab3d28f1646d0a8a27e5a1c60781ab3949c7e96fb3ec3e402225d3ff849ce704d54e2c1ee58ac190a298975be3d245285f11d02abca956849abd7dc2f65

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          44303c4469bac62ec9d5c81e58f4f6ca

          SHA1

          e0e727693b35ad81ddc530226f0e3d09479b44fb

          SHA256

          2071b05414c4a20df31ed6aa784acd06de47579614591ca7b433ebd4189a8964

          SHA512

          f991852b9e0ef6fb7f7cfe5f3c7ee5f338289b154d9f51736a831a3dcf8de4b27b415e0b3030a75987d5e858ae6c5d2496a97931dad1e3636f2be0827bca4eeb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          686a8433b84d3695f1c2ea8386815e8a

          SHA1

          6e2333d45e6093feac0659207baf1bd454d1ee1c

          SHA256

          4c9fe7269184f37c477b78294ebab10cf407ce4125caf3cd65d2cb5b8a6fe9b2

          SHA512

          94a8fe464ca9aa7bdc1463717b0b0fff1e297a9359bf009a0c828e7fe590b313125025ae15d3ce7fdeef278e4b3b8d953c5849598d6f87642aa518be8eccca08

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0ae595a2ef80071d302e7457be505295

          SHA1

          1b7d77129db5bbee4f0f397d693d02ab34d2d4e0

          SHA256

          7bd19cddc1711bd960fef0088c0a9df27ade41cd42e16d5be05b58bf02c2c0d2

          SHA512

          53b7abca41f5868ee0acf59655939090769eb5889ab846b898df19ee31e365106d831904899834defaac9befbbc60a8c7d9d24805be3ee5753f052fd56f09665

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0fbfe36669438032f817df3ba468d677

          SHA1

          28e472fc49ea99807e04aede9c0b595e5d16c300

          SHA256

          2bc74bc6c02b55c2e89747271fe5e3627ee4ec48f42c9ced57315b81a107418d

          SHA512

          2c2ce3a89d4cb460e835e9dbed58f9ff2e21d7978b1adc652299028c37ba993d422c176026d0b9c5af703b16228a1de5810d574df5850203bf31f3703009ce7f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          15e97341f0f78accffd228cc7907c4c0

          SHA1

          5872c39355123b95bd16d021b989d3700cfe9392

          SHA256

          82ff08a3981a14a949ece9f5a23fc96c3c111576c48a3f4b7eff1a93aa32813e

          SHA512

          1bc50e240d11ebfb677d1b30ef0065e509a807d949e0f14a9597cf75b91c362f4178d7cf2662cea60d7d7411e164e12d02a7f9291196da3ca31009c0505a215f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          012285e7a626209986950831ee63df2d

          SHA1

          e34442b0a55e8dab3a7055262d54d4960503da59

          SHA256

          3fbdba32b3123776c9c8e76dfcbc0a76f18fcdc5969b205be81eb0ad9957a3cb

          SHA512

          4c02cea6ccaa61aea3b9c985e4f786def439afce6ec400a2e78c57cada3e00a2f14e05fa41627040b1a1bed30f9d0b44d2c7b02e58f12d17fb76684f61758e00

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0c64a4db55fd8a2f84663aaf24e6ca0e

          SHA1

          0e632b2508519f5d19bed68483d5bd7be39bbb58

          SHA256

          0aacb6435254c1514d10d92bbf6632b149eadd3a30b31778e3898d7bd2da6f03

          SHA512

          6c0d9110041c32feaf28fbd4ab749a9ca7e4377f6f0a1dbccccf5ac11e23af882924b57c233381d5b9e26b43ea457d6903218409c94cde4fb9fbf5c921f664bd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e744b087676a164dc0fdcbcfd2659b08

          SHA1

          51fb19086a7e2874d1e9a6bd192d806ed875a5d9

          SHA256

          07a3d7968de95e0bbdfeae4c60ba731ddfcfdfda5f27d8c24c7349c04ae075e6

          SHA512

          43b0718d595b01176ffdf02e18fe41aef105274efc29fb9ac953cd049848f1cc6f69a2b9cb64de806bd77fa4151daaabf67ee0df3d11217b2ea394420bd716a9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a8d6088d0b71ae28490bde00a35de6b9

          SHA1

          99c0d8c9352752f92c46bb87d62525a47c3e2691

          SHA256

          ad0036bacde16610d93434267e6f14d49b8f766d80186e81c25555a46b450293

          SHA512

          63f19e5e97093d9f966febaf113fb034277b191a89f33671e2153d766e92ef912ff3b5a837fc9e2ea03a362cab24c5d49bef864bd82eba6528c7d59bf5cb39a4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ae99e98a18dcbd1dc397ba5a636f7c18

          SHA1

          d4367836b3e90a5926b5e210cb3ee85c7d483b22

          SHA256

          669a54e7f99603835148d0845dadc9039d20595285be9aa6003bee1ca1ff341c

          SHA512

          43b383dae97d5ea1f262208de6672e0f185a2aca2c570e141f3ba501281d30e1b2bc21b28c906940327c1bb487226bc606b1c2c914705ed93ac2097870da5a9b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ff4d3e02a854c71dfa76afc3e1562165

          SHA1

          0b16ea233a73c9b1f4b3a6d6e27b898fba161fa3

          SHA256

          6c3a5cfef2ac7d720eb3b3ab55395b46071103fdea7b8ebbf16ef7706096f4fb

          SHA512

          39828dbae3990fe5812c78174c93fc3895b7bf7129f9fef026439d9bcde03611ffc25bcb958518a5d4909c8272639ee5111e9ab77299cdd084ff4134876e6019

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          319be9883073b72da6097558c526af14

          SHA1

          27850dda89a985c9f29d9f3031656c3b12fd3a7a

          SHA256

          266df4a9831ac7e0b00e4f6e8061077ac42d989c8c7f7046b498041f8238904c

          SHA512

          446606cb635b269ef9f0d56c10bcf825cc0a4033f2d58a77dbee2ab0182a6a8ed8ce4e93ee1df162ff3944601c31cb6cd4c4fa800e2cf042729a8edcad05d5b2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e4413f9204532dbd37b8a7c307fbe645

          SHA1

          8c972dd904b8a144445033a048ca3999954f0dad

          SHA256

          90c30813279cc598003a98c984f6ec7e34825db2db2531d808da334e667cbc4c

          SHA512

          748ffd784f680d55095877cde640a0ce8e1620fb6e51564e8bc991e1d4e2a49f8d918791334b704b26b02d6246cdec22d1bd3e1fb567c98b5f9db691164a03e3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          bbf8a165d412068bd72b679e8fe99dc7

          SHA1

          32ae66636f472fd70ce83c4159957caba1e8d392

          SHA256

          c3ca01d5028f100b9ff65bc316fac6bef333433b99966025025e5fee7df20912

          SHA512

          f44196e866d931b8f55b12f08c1377a973c7aec7a8974ec746f14d56fdbe802dcd1addf939e2f884ee218d49794528df43069fff28369dc8eab089683cb0e3ff

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          69ebfd1e20a5085c0d17afffd25d23e7

          SHA1

          57c675c25c5a23f3467565419e7654f951587a0c

          SHA256

          e87c66ca2e2aaccb9f4f3100f1ed9a09e0616e00f7a46dcae77979a7fb255bd8

          SHA512

          07b5e085723e4ddf1f62ce22c0bb1f33710fb14cd7e7709c6d18f4157ada9bb259a330be75f9a81ef485682cf7b9d4644bdcd3947873b5c61a1a5b0d1842457b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          28406772e91f8c9c70add8cfbd36c43c

          SHA1

          a420ac00489e0b0d364545ad74bec7ed5bda5462

          SHA256

          bf332ecb4d1dd94afba6e9bf87da654c2ce1f58a1874f02449d6363f8014165e

          SHA512

          3eb1ad63efc8d6229f7247763e8af7524b75ba20900493649b1ca5284d7b4448116da7ab5a7253c9fcddb7abac70064ad591ddcb71a0d3c242694d15cd423969

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2b6f4e0281f5e2798c931f77728c1bc8

          SHA1

          76dd2ab834ef2cdffd135f3a6f2d88f966998dad

          SHA256

          d4ded2f4ad7a6906d62de8aa47558816a850e623a8defb811f6ca4fccacde897

          SHA512

          33ad76c9ff2ad0c8b7338520aae8a86b2705fdaf105a780256af0da14a013c4d8eabcbd872726af96d291af15fb1dc7496fa8e638502c2169e7c5d33530b8aac

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          90eeb6a956255aaa8c2700fac6f40ca8

          SHA1

          56d4034fd22a680d1367e2c96a7c2dcba8e5dea5

          SHA256

          303ef5c7978d20c7b3d8493de79ffb3a78cd352e981499f74fe5ef8df8c169cc

          SHA512

          af9d96ac867726dbb6dd40467b4655f16b28c07a91cfafdea2650fbc2ae960d7f1df6001b8972ad57f87ced3b4714a0da4f780d9caf11c2ef57eebcd6c7d6aa6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          151d02bcc2ae7e1ac674ba156c55f66b

          SHA1

          1b0e33ca5fbfe889bd411e797aea623b2fe65adc

          SHA256

          f8e335f0af1c4e81f3ed27cd5b46d50a6f626a58b897efc7f202f9de06ac9f94

          SHA512

          9e44024b372c58558e306d6cfaaf5875f0e45948aea9bfc8f7c77150554a8cddebdd2c21218c7f705c9afd2f3fb73c1d77749d1af2b379a8e13add7549ef5c8e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          79b2bfa38acdb7b8411e5f0ef33c4efd

          SHA1

          6ef898173f13e31cc8534d51f5099ff662a170ab

          SHA256

          ff54f8f0196c020a88533d9ff68393bcf3754b054d18805b89bb0d4f571f305c

          SHA512

          f6e26746b57f80eb6e7f40bf619e3c7a80301b0b62e7d0e140d9ac59a52982f6d53faad11aa2d5c6826eec5b385165879b9026af5074ba31265f14bf56c84b07

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          913c53fa647f8bd8f79fff0edd5ef9ac

          SHA1

          e2d98c63de27b12c8bd9871e007c8592a470d6df

          SHA256

          6f75a67f2b69e648ed830fd4563e7c221ecc45118e365c0d9917c3dd798812ea

          SHA512

          41bfdbea01f877fc6a6e2ed42af96f5645b661ec24bf75d2a04a1b1711ce5617bbef9d0713b7c5fdd5465e1792a222ae8c6f178fe598ca58fc5c1b343bd19d81

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a86271740d6e82c563a6187a3da1602c

          SHA1

          47ca134c7aaa14cfc0ccba8e9f87bdc759e2b571

          SHA256

          ada31d0d085938a4dae1ae40d05b0a8118280c9b92e5fdbe3887be202e8d2de9

          SHA512

          c10da12387a198e404ae31308d506169c77181e1f72fc7669f5ef5db93cc092c7fffa3ac0904b0ec20d4a0d823b9d6e531cc9e088a9b95552b3e6695d71333d8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cd7649e436a56c665975987fc71f2f5c

          SHA1

          5be1a02298e5ad5a403caeeeed8886c351fca79f

          SHA256

          6557308228ac578cc500a17fd1bb4aba803746e3c1384b239cb951a3eeb950db

          SHA512

          7b98e3430c06404f9322588f917a49b0882eb97d20fb4c358bcae9c70fa310ffdf1ac85c712d10e5040166add017f891130de52e856a9b3aaec2cc5618c6a8c9

        • C:\Users\Admin\AppData\Local\Temp\Cab1D81.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Cab1E1F.tmp

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\Local\Temp\Tar1E43.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b