Analysis

  • max time kernel
    136s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/05/2024, 08:24

General

  • Target

    8017f111213a005ddd9c4a463567b3bc_JaffaCakes118.html

  • Size

    3KB

  • MD5

    8017f111213a005ddd9c4a463567b3bc

  • SHA1

    ce41f0b6de91963ca643861e16b34c8468c3939b

  • SHA256

    3e03e2690cb69d61e66c495c84a1602969f1b88493da04cb33e5be2be34f4510

  • SHA512

    77f0f75d01b7829cc5f0b07a0520f2c9c3967a14f550d6301272ff1b86251bcb46d0b206e1615959192b0cec96935db919e05b66f8a4867120ad18b8f4ce7218

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8017f111213a005ddd9c4a463567b3bc_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1760
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1760 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1296

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f2e45844180841ecbd42815aa6d5114c

          SHA1

          282103f5b0f1bb4eefd91f6b03f8cd97e97fd31f

          SHA256

          b443f7d858f9b3a6ca1f62f5ceca89cfb0d2f9cf072c7c1ac2bbd7a40b49560a

          SHA512

          33abb4ed0bcfd1471553cf2f72ff4bf51a9efbb0cde1a0876405ef8b2e0ed75ed81fe1a464d42ac031e06d18181e68e73c1be8c0961932b6d75f1aab2bf8baa1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          fc1fa4557e9ac6d3326e0ccf05fffa71

          SHA1

          a4a0ac8419e90498440fe5cae65f48a31db45abe

          SHA256

          21d3feb5eb5bccbcdc2632450c7b5482ac72d3e0c74cb87cf8fae9b92ffbfd1b

          SHA512

          31fd2df7b1cb2b09983b6dd428e69177c2df844ab8cc9469a34bd16d1e10465949b9e539a56d2b6b5197a734255a9973c2f8fbe019047057a80d2645c6aa771e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c606293710608e5d053e10417eca506a

          SHA1

          5e86cea6318f46d5071c52523cbeb1197cd736fd

          SHA256

          e9d917bb09248423a651b7503aedc28214c6426a8b4d88ef001e3d57670b3606

          SHA512

          40747795186808b9edb8ea3efd13a4c81220fcefccf7f08384b4fbd3cbedd949de1fb825a172d69dd1e18bad4dec141177ffb8a51426d5b8eadfcedde5df4ffd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a307cc2a4c82cb52542c88b1d1daa66e

          SHA1

          e121e590ea1a428e0c14aede07ddc7881a3d11b4

          SHA256

          e591c0bbd03dc53fcffa70caf4dab5be467e2858dcef79092732bcc02a2de879

          SHA512

          4cd27e66d41cb84fd36f5d643465c951021b99cd5fcd79e162d104734f85ddb0274ccccd355c41661a8aa1b65490a8b6104f8cc56b7757be2ced0f8e6bf3db89

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a8607f35cc6c0121527f4e4e46be58be

          SHA1

          48218a3c963efba4b47b42a4e053730204ae4672

          SHA256

          af232ec9fe06030e927be27f90986d4ef259650212a8a02ca881f9b6091fa09c

          SHA512

          0df54bc03a30ab03c851781350054fe726228cc8fd89b70c7e2c08db9e53f78c498af76c571e9910ab51893d7bd118422a1e8c9483e92394caa81d5ea85edd1d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          24e927a2652ccfac9e67c8f33ceaf2b7

          SHA1

          04b1f9727e7b9b0c6207035600a4f21f71e7567a

          SHA256

          e355310955784fdef4fb680214495920595d407a5cf40a744a4b6ceeddcb297d

          SHA512

          e929bb01e65b2236b3c8641a7c7cb55eb34351edcc9a152472f96ff6c209cc58e3d6a90fd3ee7af85a5aa7f3202b3070f9996d0ebffd80c0010b4a37b0092de1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1e7fbf50aaf62c7335f855bebe119ce8

          SHA1

          78cdc318a790dcee3aee21e1fa0922620589c557

          SHA256

          03fb5231517386afecabe35b9734208155ab91b80ef5c95d517e79a9c2ee078f

          SHA512

          f1517085888f69fe5400556d37b847f719f2ee1f8706d2665e2c0cec457c5b8d974fb373b72ae998963e7cf7effcff59ab75d0058510f8a78d973c20cae6fca2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          294b0ccfed9d528f0aff6bf18e244669

          SHA1

          b03362c523d4604f1249f6e034b121f8851e77a2

          SHA256

          042d0c25b8ebb8cd5ef35873b4eb30dab93fe9e1e91e5d7d5b7eabde80787459

          SHA512

          a61b09d90d85674250ff24c9f516398ef6b2c1394f0ee7e2eda263ca4e466d1c7ba1b2a2563f2453e476733e93a096511cd1d44b60c9344e7d954f289567252e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7d32c68260f9cb3083b74b6216ef6d80

          SHA1

          1369c508fe741188bdc452e3b9d08b8d43830ae1

          SHA256

          b205afa251b26826ae349bcb2b08df03a3268a2f9ad6d9a5280f2001d7c8a5db

          SHA512

          504ec42d862cc984813b08f4ba3044ba3813df224fe0022b1750065be1d36f67c028d19e1994f10df5e0566deedccb23fbdce259559a88981743680f66dba42d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cbd4ab8aba2e19b9088b8fee8f8d703b

          SHA1

          3eb2ef736bd062aa541c64d629dc490ba1d0058e

          SHA256

          a0a4aef20db26d72a4e6321a7f1c6a6333e02786f28e9b99d2f17dcf57347570

          SHA512

          39eec62b31fe7058fb68adbd5b8e4773a9dc8520db2bf4f87cacbea4429f8661afcd1a622f39bc7bfa39eccf1820d755274dc4faf6b1377685b8de2da5559954

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3d780d93a2ddf1a65e5ebd613413e381

          SHA1

          5efd221ed5fa44e819384794f12b17d91985c795

          SHA256

          cb1da7fed257817f5fd0a66249947c95ba720f38e6ba91e17f0c7b830ee68e5b

          SHA512

          8dc926d1a3ab1f4d78d229f8d6bbe5c41ef1848dbb41ea3fab6ebfaa0da361133c22b7543c79d37472baca7cad5ec6964079c4a6be5a662149506ba306c25d87

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f810e6b8a66c8c0dc3af5b9819982f0d

          SHA1

          6c51e1dd3d52d494e404233205a6e9dfb67207b9

          SHA256

          38075582e0fac39cb2403457d5345892ad5ffcfc6cd9d5358ccf3527dfb577f1

          SHA512

          b01a0d29f6682427dd7ab44084111b8b2c7ff5d5939c7fd877406ca3bafc6903d392c6642bab5bb7e41111bf12837c24ed88db93ba1fe70fa4fd6c5935f75ada

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a65448fbfa1e8d7a08c9851c00a3ac5d

          SHA1

          09ffa4abf45e021f9b31fc537da2561499c7f5ec

          SHA256

          597de0cce621365208f11dcd6abe9bd5f0a49cc4a90ff09b1d610892d868f413

          SHA512

          e675b804eaa8d7c3faf2972feeff0177409918289fccc266c38a399d2020c85fc6b51a6d368477d9407f20a87646bbce17205a5f279134f23af33be356f9028a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c0b16358cb9b8971471fa7f6dcb69025

          SHA1

          b59058bb920c5768d5cde36415514755887f9e90

          SHA256

          1d5a4b9757b3841f2d8603b692263313271fd52cc976c770bfde8752d128e0db

          SHA512

          da228ef487e03a342f0074a027778584d67fd77a2b4c9504299a5bf996051b520ecd09d57f781d94a0e782a37758c0ced6f6682e639bc28e18e5f3e5203f02f2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          85afd5f3bec889f4eeff8bff4bdd66a5

          SHA1

          31f8bc3bcdca66a3bec9815e32f40823e4628a02

          SHA256

          2ef1aa57aa9cd8934c09466a43a5cc901c1e8f06a6a107cff70e4cc95b5434f8

          SHA512

          fa1fd808f7f7d29a9f4ebf0e631e3fd4ed75bb53309b1873499dedcfb6f56e1c178e64a93fd9a9a2b75d0ceca295272af37c9e6da5758736b24dc8346ea8d826

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5d541e886967398ce6ba86b1631fa2d3

          SHA1

          84f7550f0d91c67cd61f63a06fbb34406d7e3e13

          SHA256

          d459505d7898ae24c5b3f1ae2a7c10e4938093c26af6f5eb6917ac9dd68dda9f

          SHA512

          352910e5d88126d7662e5efc984308c219470dc9a56c244427e2b7f62bf013e5272dc8aeaa969db869342a16bb922be67a22d8bafad8be2175d9ea78ed7d53f8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f9782effdf52be3aa401e6be6a17b35e

          SHA1

          2c548ca23be7986df84cc1cf7612e2bcf3015396

          SHA256

          22ba2491d5eda15b34225da6ac8fa46527a21aa9eb3c84db57c4eaaf2a72c220

          SHA512

          6e22cd39c23c7f30e11cc497eabb8813861b454ca3488ff40f2378a399bd5d44d5e26dae7aa8f1a973f36d209801e35bbf1f736c899c56a20da3bcca5bf6fd4a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9f09349a3d0baa40b2b136622e4d233d

          SHA1

          a7c0faa6abaf9cc2560ba33bc92f9e8f8e10cd11

          SHA256

          6970a40b2e2828113fa17c998f712fc2d12de70d3eb88ba2e2a663c76e2c4777

          SHA512

          5a05382808d5a5fc24c5643f2bbe223898b3eab54890d110ba12c4fe29bff3d55936778a721c6b07c4adaf23b995c71a80a25fd4208664cf8469d985c4ace232

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f58ba35061f67ccd0181fb7a127278e0

          SHA1

          10f3335e677b48daf4609ef04d595839ad7515c6

          SHA256

          6615ad0d8896c607ed1325b5ccdc86e597c96bc7ac2f7904bc786150370abc08

          SHA512

          e1b0169600fd1cae7e3e09d259d97894ee3175176f15e52cf80c327be0c2d9e19c6cbf6af236bf9d09b43e626d24b73ac014bf1e884c226213067f5f67ed25f4

        • C:\Users\Admin\AppData\Local\Temp\CabA131.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\TarA31D.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b