Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/05/2024, 08:23

General

  • Target

    80172b7794bcb48e62f4dfdbca71b61f_JaffaCakes118.html

  • Size

    41KB

  • MD5

    80172b7794bcb48e62f4dfdbca71b61f

  • SHA1

    72a00a261e4cbb42ffc068fb30b6584f3ae99631

  • SHA256

    48953ca257543e808494651ea96daff546478c2b4c6b7e67dcdd8ac835cb1737

  • SHA512

    c7ca75ebddd572a7688f4d6cfee6b1a21132beccddceccb1080957fb04968a2c53c205eef7eb29e0d407db741487242c5d61964e802f66201900842036439cef

  • SSDEEP

    384:8vE6HLhZJ5bdb41vSVYFRyr1qsA4/A1SziuF0sLC7yLJHm0qINzGal0Voz6+Ma/S:Ur3J5f/A4/AsziO0jF00coT3qu

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\80172b7794bcb48e62f4dfdbca71b61f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2960
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2960 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2800

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ca2ba77fe37d88d367f3492175c6dfa9

          SHA1

          f4886f030166b9990295dd5ee5b7906d08ac5910

          SHA256

          6caa3ff143cfd159fbd1597bc3bc6a1464792ea2ace602b1f9bc4d1074137b31

          SHA512

          22fe4382692770734aec5a705282c00efe313e05ece9beda39b0a4c80ce4c9ef3759ac28e9c73363546e21c38f9f33e2dd123962d9690ed1cb4c7d70557f4d99

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          307fb58f16578e52014dc6b4d5ebf159

          SHA1

          96a41a44c1b81f0f0d9aa4b487a5807503fea17e

          SHA256

          331d82f3ac24f0de731d18f452056c14103470da18d70ef5b04c4cc9aeb8ad75

          SHA512

          32c0f4d46eea6ad6f988782d636e2f7c44ddf8ab1f3d38cf8f967601fb29be19d727fd5e2cd43bb76bf673e0d774c7cf50ab0c5aed562aa9a27cf55c030fc414

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          04d141c6573951d2af22eb071544abc8

          SHA1

          b6fe0e37997348067fc37368e8486fcb42c71279

          SHA256

          aae1bae36ccea075d0f4d6f7f7b1a228f228b617db3d35868f2be28e481e9e34

          SHA512

          14658ca20b2846aba2063a5582738757e924143e5c502437a460508cae17047efe9917021ae7576a90aeeb5c6e6c13f1831690c07a23c84f716e0f98de70976f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          daa25e742a27a99db253c2334dfb8ee3

          SHA1

          16a50dc35328c889d57eee9b85793a00f27541c7

          SHA256

          01ed338e4e335f1f20c11e102763b1b33af2cacd16a0ba01a07a343e9bd4a2f0

          SHA512

          6f82c0b7d90ffaddb562d432029dce7787623e9fc399a5c640f8bc04477fb7cb107b1204161de6d2c865dc64e47bc1bf88e50ddd52b692c0a0c54de635d5c0e1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          bee3ff44699fb645ea2440b0031771c8

          SHA1

          e9688a65cc4d66e609243766df791e7ee1434b8d

          SHA256

          add3a95bf3ec07857a8dbe8f861730f69e575b5e01f08274671b07c9926c46f9

          SHA512

          a91b6d373b1ecd3b1d7296a07219f21821eefc9ead03c3343b3b219581c425a2fed6bd0793e885813b027009365e537f395ffad57fceca7601aa6f8c5a78957d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          819df2bf055d2bfd3ad0c3fe304df1c0

          SHA1

          ae17b69076dcc0e9463b79264f4e37fc50040195

          SHA256

          83ca8ab5ae9728f70f3a1404fa1ca71d4d49ced71434d71f06d023c72ed1971f

          SHA512

          259292e82caad99d3a580d6d0756257f74fa203723e917cfef358b1ea464a0c4d5adc0e58094beca92d4ffd068cb7065e6a0b3a7d4fe7265685efb4dab61b01c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3455a072efbe4606e2a0a0c7fe23d590

          SHA1

          3dc4efb9dc219d2557434be330b87e0839e24c7a

          SHA256

          a0e1618bbefdaa170b69383afcc1b7f54cfd8e1a6f16c0d7aa47726b254eab52

          SHA512

          ebb95130c5dd6ad6ce3be1c17c765d105d52cf10e96297523c33352390d0ae14d17f62cf4e933dcf78a3379c9f84b6bbdb587b6b2660a8a5b215ffdde5afbec2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b22a983a4d8b3cb0f9d93fc075ffacfb

          SHA1

          3908edcb906da6ea39e664f1dd4af676a68d77f1

          SHA256

          33ed4ac0ec3c69520b1b9af5a5f2869a20ae23f7126f1bdd5aa130c40f60815b

          SHA512

          eb8bbdeb6e7e7d06825d10a20817593b9b75821ef2bb06cac449f6615e9a0f1f4bed740272f3938f9703f45e35fda3fe44c521a6af9c4c9b92c6dec926e7b3be

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9fb05ef772e1c452b6cc0e3fd4b5e0d2

          SHA1

          8c18375e375973ef2afebedb4c35664a408025b0

          SHA256

          eafab529a79c78a0bb41dce67100ce3e15202d2943715da6b9ed0e755740483c

          SHA512

          0ab782f7cc714fcc02d1b5a00c7c551d398975d66a8040fe351780649c935a2e9425acf172389610295e345464f7ad9bba6153e0409494ea2eb11b0eb7d1202f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          fbb49953ced26740faeb1789b95835b8

          SHA1

          325d81bdcea52a85c7a5add10f474a5c29d14479

          SHA256

          37a9223f145134195ca9584d4ddcc11e6c02791c643df470b688b77b1af77788

          SHA512

          382e5f69dc80cd0f356aa0b1ff053623acb031972e7ad38bdfe86d397701d2b26ae042fd6cc6e53c6cc62feb911a247bbd14e431fc8a335d6db39ad7114d868d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f7ebcbee996dedb2584f539663f7e63a

          SHA1

          73ed72c0ff851053e7796df031ad578ab9f42c7a

          SHA256

          92ae3b39d80b4c7b3e29a17fa05442edc8bb8c5fd077eb3cb82c9962fb4844c1

          SHA512

          df25fe1432948d9999b967417ddcc13a883b327ea59af93f37af463e6eaa24eea3cdb41e5549b404f5ab18b4a7e12ce617b12d73f2cb873bcaf27c5f9f8af44f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          dcf4a9cb66214536ec182a221dd78ce0

          SHA1

          f9dbbdfd8d7dbe762e1cf1176293196ee7a85d12

          SHA256

          5a940ceddc6a55f64327a3f12c518a4ebcd2f5dda82eeef98423b48c9c5af6ef

          SHA512

          e78aa764e8a16058ce525bd5d8daed44a653d5613e57c71553148dcd16c399d28359d3603b1b8f77a5aefd8edf09d1eaa82ec5902e621ce139b9fca7f23d5c6b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          09010c4c383ff94717bf1a6c6f85c32c

          SHA1

          bf62fdc31d87023f90e376a239cec370fada2d8c

          SHA256

          42f96e113c425710d777e4230292958528326785097eb54db1cf025423f7fe46

          SHA512

          ef2024bdbc08291b13e6a4d224fa82b1d505212eca1b46c4fbedb6bc12a75165a18105f240ac499f58ff6ae16eebbc72ad63a4c4cd80c3129b726602ee7bd77f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d6045c5bb2d0deb0398ae1c2fdedb929

          SHA1

          0d449ec30a20c0e9fa3e7dfa4beac68d0a32f8da

          SHA256

          2789c5023604c99a025269714bb7125679cdf387f6c3a7e1e1c548e8bb685d99

          SHA512

          ad594ad8dc81f5c2bc462ae0d2c3221b13c6208f26f5e73922fb730fd915cbf11148e841c4ae172a461cad42196ccd50bbd65c21fe7a19335f63dcc5cbda4b48

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8b9ffccf8384b09373d570345ddcad6d

          SHA1

          b6cbd0d517dc10c0d128e9db1ff5bdbc08022065

          SHA256

          b508cd3892513a19e5ae8e3f5f085e0c5214e8bafbca43568c34aa12a7225021

          SHA512

          7c37cbce3e2f3537b5e400ac7597f87be8b3646272d72d8a62a3a92e10a0348068804c3d3e516e1813073ffaf25576c0536f1269ebe7c642ffc879673a50666c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c0138c45d1e55be2ea247739a1d6ffb8

          SHA1

          02164bd6651205a9cafd1126d964dfcde9a5c9d1

          SHA256

          6cade05fe0d6cdfb8c110e6689259fe6237a9e05f3daf56919197c96142f5fd1

          SHA512

          abfe6f2ddc8bf2b7815641888d9b433fbc19f345e7a21cc7d0a2b43caa0556de5848c796291b2664d4b95d68358d6ea9621c46641971ba31468238df54dad321

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a09f8cce17ae2cce7a4fb2c114856319

          SHA1

          4c945401e0e812888f97838476801b046ceedd20

          SHA256

          e0cd1fc8b2fad3b799ce2efd623fb47b1cf751494efff487d6dba59e349ac8b3

          SHA512

          af17a2fc419b6fb6ef74345e4feb4f8447bf22af9926cabdd396fdc5ac0b6bbdf20dec278620320a2a540922bde8323c92c6757e9fc2bc15c4ff931e4c19d100

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2719198a12871a1914155114bdfb3308

          SHA1

          cf396698377a68fd856b0ddd971f0db216834b5e

          SHA256

          fc7c038418412811cf94b76f28522e3c50222de7eb0486f97e7709f8ddaa37f7

          SHA512

          5c09a74c2d66fb05150893fe91c7ab801296070afb26063f989e092609ac2a51abfa7956ef49d88de71746f1d348ba3bbfac82ef99e05964fd6e22274ca8133b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9ad9d875c0a72364773defac2a632da5

          SHA1

          fe4a4a10af0e8edd2759db57200b52016ba42f98

          SHA256

          d4faaaedffa57045702bbd4d1fd84569336968bce1b4b6436f770ac28c59b45d

          SHA512

          fb10edc1f03a739758ffdf292c4280fab41c6840d0f98b05fc889183970196e594eea37f8a1dbf0220297ecdea62783764ae858654e1200779b02000b4818c11

        • C:\Users\Admin\AppData\Local\Temp\Cab3611.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar3702.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b