Analysis

  • max time kernel
    145s
  • max time network
    151s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/05/2024, 08:23

General

  • Target

    8017a3bfd86b011bc4e34fb279c5559d_JaffaCakes118.html

  • Size

    27KB

  • MD5

    8017a3bfd86b011bc4e34fb279c5559d

  • SHA1

    b4b66b50bcff94039ad09b53e688caad263c369d

  • SHA256

    fe7e017237d2ce01000b6f1aeaf683f2375bb902e2d563d206e281dd43507a74

  • SHA512

    a578ed18ca60cddcb6d2ddc4636599ff0a282b89e61eef2245126bf5919b0f9b84d971e316b5a624b6807566e90366d9f7c7463506ed95d5969ad4fa7d69b205

  • SSDEEP

    768:SOJpCOAOtWtqtytYtXMzE7y2Vnsb7n2BUSvoEP:SEpFAC6e2gXMzE7y2ViEUSAEP

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8017a3bfd86b011bc4e34fb279c5559d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2660
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2660 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2556

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          252d1c04304dd9b09e94a1adafc91831

          SHA1

          2652bc0342e206c3654261c909d15dfae538fc0c

          SHA256

          64dbeb74fb72fe893ab6b60b21f19a8774170e03cb583a847391300f1e7cdaa2

          SHA512

          43d00b4cefbd127dfcd3658d020a171f3df67b4d4e36dbc06694f3f179b429fbb272630d536d217d88022db7253f6dcf655e8abd9b4916067e589af9a47e5dee

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          bb95ececaa39eb2f53cbf4e1ececfeed

          SHA1

          50f07d9383ecdcaa1c907908a54b01fdd35e0426

          SHA256

          ff0aa32ea05cf4ff33377940a5159101ec6c738a72ca69ea1714422b7aec012d

          SHA512

          5e754ae92ac198c10eb72f50d7cf1c5ebd745239a79accf874bdc70cd1955b7bd5c760bea068d144d6c637b9dd910bf348044c58543c575b9d0f535cc916bef1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1213910a1b09bf7cc887732861d327b4

          SHA1

          7af76eaf4a8ea54aa5a270929fa62234c0f36e20

          SHA256

          4ff8cf1c4bca742a52fb5bb43e46a65f28a16a9e5516a9af8928be99af52211f

          SHA512

          3fed3f9e39d7f09f4e932ecb2df5f33534f839edec0a04d5d67ba0be477292e069ab99e35964dcd13827278a05bf0447180b7ed8965483cdcb22a98146311bd9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a9a56e39573dbab30741341b5cc6859d

          SHA1

          067d02e77952babb7fd4f53870c3ddc5dcc9567f

          SHA256

          f3735751b8fc4bf88a06e61259f2885693b3fde01e32b935d2b60c36504a9eea

          SHA512

          25299cb504bff1ec2dabf5c64bbfaf7cac6d79673850dcbd5035fd0aa82727e69e4788e23997fc4ff36caf084982d2fc7c1de4b1b2992fea6cc3749db88ecc1c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b34480b8d400304551b3ed13efd884f8

          SHA1

          e2aab7d396846ec0c7ffa57258196fb0ce9fac6e

          SHA256

          325712331c1c908e39590fd4318b99e1485115647c6fbf1de66a9d959069399b

          SHA512

          664a90167494ec295d9abcf9cf8a8763ec53043182c285a625153b741d154be333a7840a0556b8cb4d18f992fb6efd4eafba64113dd4724fb9b99f1bb523e6aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          48f2862212b25baa56faa49a5a7f50d3

          SHA1

          a0204ed58aab61af359555b6d154a928a3fbcc16

          SHA256

          ea40bda5d73816b81a7cfe6119d38abf4b076ba28bd83a167e078357e2522742

          SHA512

          b83f8e582dbb80ccf6354d6aacace1d1a3fcd0202839a6b2409f0e71e4f63eb0e3935ec87c2dd3bd370600ea75d0bc21799f816e8b08787e01349d8e872def43

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          fd65ae7846543d57decb0665758870b6

          SHA1

          ca265df4a9a6e0a8fc82f6a13b6d90650142cf19

          SHA256

          d6c4f5d1b0090b0bd271cc5f6184ce8dacfe4b60f6246a230005c98905e0e567

          SHA512

          6686aaf9d47831fc142dcf57ab23bf1b21ed14d643b78e469505e7bb9d2f1af57c18077bf3cd3199d1625cf36c276982e960ece77cc6573877d27c205c97b43a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0bdd87de177b6fbae0735283b2fe2cb6

          SHA1

          4991bb17ce22c85f951ef9b98d2b42351c1cd3ba

          SHA256

          02b2c409b1e55636835aef94898e56ea0e62cfea6438163ea5e0a65af15dae22

          SHA512

          c44a34bc64fb866dd4808f213781607a3b08feea9b6cdd65aa8f19039f2ce71b492e3af52290f18fad656bd68b4b12b15d53f68c445dead9d48decee328d0a3e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7d8084725dc993cea5e5d2facafd0de9

          SHA1

          8971f95575174adaddefdd8d6b1a354ebc45cdde

          SHA256

          88c048a667955f52075af95b5819bab7decc6f609530da93b3507bf2d1952587

          SHA512

          1a59cd7ac39e4deafb08cbde05132d7db8de286a1db07eae04f8a004f2014a57d90ebee5a1ab540c90218ee81712cf28aef0aef87fe7b7796ec9ee652922a36f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c21fd8853394dddb6756db29cbd22d79

          SHA1

          4fbb325fe87bb82f1007ca3f9b2a7c736aa24b08

          SHA256

          f4a06f23d4faa334aef14d508493a4e11a9032842130330b35ee9ff097abb602

          SHA512

          8f743743ef1b6de9a3684990fa4f08b77f71998c85218c0b070386265f25ce8635fc38ff6d9d72f2bc1f6966adf533e2b1ae08b56195e8f3ec476409d0b7c2b6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          131bfa790369adc057da0f2b6bda7079

          SHA1

          9b604d04a370e968f828e815bad0de112c3d6d7f

          SHA256

          b924c9ba63dcc727f19f00b8a43992da7c186c8d442790e63136fb5ee1ce08b2

          SHA512

          167b032aaa9388316baa34e4f0a24f0d58ffe4bad389fc0add35a52a9f97da470b7e048886b61ddb5d2608aa7a10c4a9a219c1b9e7246db94d34c037aef35489

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4e5dcaced93b8777a15f59e06387dc33

          SHA1

          a7421a308e4a56c39755904aa8cc43092db4e5ed

          SHA256

          5fc6fc2a48078b40c5a34e7ea576cc9a0b22ad72a59b808f2c1414ea971fdbf4

          SHA512

          d2e50bbeb6b70672d98a8760f534da11d91fe505b7efe3e4805a8f81b0f15cdf3ff4885cd9de0d10f0355f6f698d73b5066bd215d6474db8a241fa9ff7a12121

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8011d68d4a0a607e5494c26d8b258a36

          SHA1

          780735770c964ebb24993792c5a92a66c5040187

          SHA256

          b3f4fc9bdaa4c0b04b30981a1a0a6cf44be832ee6904652b3756b62dc09eb092

          SHA512

          2fe6edbc3b12893b2cc7fd0662a7db06201d54a0f48fb4a7a6da5093fdfcf3dad222fb2adc07c09840aaee7434218d20ea07d89bfa6a45b2fc9846c072d224d6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3eb648c82a92a59cf5408a97b49e5e71

          SHA1

          83cafc023e265c06fe310464f76de38e3e01399a

          SHA256

          232860fa917eec383af1372268824ec760c67fa19378acbe0f0677826de6f9a1

          SHA512

          a9fd3544f5b1f415ff00b32b0484d0edee597f4d3178eefaee71a0b5f40a5df03dbf7c1a04692bdd2dcca6c98755e1c7cbceb35ce871ec574598ba51e88a84fa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          21db01bb8b2ae85d00821978986b21b2

          SHA1

          74cf67fbdd84a2adec3065d17d5ef002dca5f6f6

          SHA256

          f1e42f0bb97603d7ab0f63e6ed0420c52c88cf3bb50a2ef65ddaa7baf02fe8ec

          SHA512

          0d3fa89e8f993227214c1bfd5606f3b0b8bcdbd2d3d432c68a3ba5aac046741060c0de65097654476ed72c61b1cbd6e38cb2c2c2b60a688c3a1061b9d0bf4883

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f02a05ddb9880b94e5913dfd17857030

          SHA1

          f1374d1f8ccc335ca55dea35cd69062ecba5f989

          SHA256

          5a8482d4bb1234bb504c435db76c6dc0d26f0a2fd406e2a9c26e9b79c1949e95

          SHA512

          50c720b13e38360def05c85e7bc300adcc60c6b34ce8f7116fe8ee67854c69ac213e722820254b402ad1607c7fae0b884b21d78ee1d7fa487bffe36eeac39f6c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          175129ae0a4227b441adde6fb1cbaae8

          SHA1

          96dcd642e4faca9c9da1c23496f2129ecd386cb0

          SHA256

          36821e260b8eddc4364e9f16528c67d6f95b6e878b2df72c202f1388efcaa423

          SHA512

          42994c9d78f747b55d14b7b3dfab64d5f73e65f60f1781c870621ecc11e85d90d756881f052ed2db2d257bfa3f6f3fae5c98f13e82d5d7364725a56c44e2388d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          44f1dd93c6941b0232a8e503f701ce65

          SHA1

          043f16c93c3b4d00c8e8070a6877f9b76f082df0

          SHA256

          c53d2a46cfbed818b4f16353caf90c0f48a3b996c17240d6bba709bbc93d60a6

          SHA512

          89a2c6378469c4028434eb1d0f4da6fe7fd4195f715f3af5dd3c8802b7f702caaf24254d03a6b0b57f971f152c9edf45e799aff9db29364cacf464601f100c38

        • C:\Users\Admin\AppData\Local\Temp\Cab9CDD.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Cab9DDA.tmp

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\Local\Temp\Tar9E0E.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b