Analysis

  • max time kernel
    118s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    29/05/2024, 09:30

General

  • Target

    8044bfa5ce3fb1d470665b7753854964_JaffaCakes118.html

  • Size

    43KB

  • MD5

    8044bfa5ce3fb1d470665b7753854964

  • SHA1

    20a518959f98cb6208f383620d62c5aee0b7a0cb

  • SHA256

    8e17b0e50f808b67f735ee7e515e377a9475972a430bf36bf1255a3b597e58cd

  • SHA512

    73da90edeb8c2aa95b3f9e63d3c4822172df839831391b64c50ffc8a694f060367cf7d9bdd8637e0d71a163808ca4121aecbe4b39d5a0a32f72d8a856d17ea52

  • SSDEEP

    384:H4XI8x9o6hUKzAPEeLaxcWCWrEZDOv3+K+vo/jLD4WhwcBQzoMNACfR/g:YXfX+KzA8bEBcD/MWhqGCfRI

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8044bfa5ce3fb1d470665b7753854964_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2232
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2232 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2836

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          bc23db0d0b01efd4c81370707d48a1c5

          SHA1

          7ebbe03bc77793012013d2778b063c74fb429c23

          SHA256

          ef3af4ff2a472908f289980d0bccde2d184f2f485a6fb8cd8fa1472c6da53e7f

          SHA512

          74f65399da0dd700fbf71d79db7b74905609839ddba041c1282a6a20603a0852ceac55da19e4a641263319529cbdc7b0b6cb9212bbb61c54c9a94ac25b1dfa98

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9dd77aaba52f7dec6d70f4133d06ea82

          SHA1

          a4d930cf6dd3226f11d1ba13e79c11cc02a7290b

          SHA256

          c9beb00c09352e67b519d31a9c5a563674ce406bccb6d7c0180d3d73b1e8a116

          SHA512

          f967eb50ad67c709ff3127e3902ac2278979d8e97f4e79c46843d941ae2a70bf0ceaaba848ef6ad3950292a44422e73feddfac6f8cebef941a2d30c3350efb42

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ac32c0a7bb584636c796e474a0c5b440

          SHA1

          81c6cefe24a476cc0a06dd143f65446ccf994acc

          SHA256

          0450df4c1a8694747a129ae2293fd6dfb06ac22feab21a7d5e0af33c252341c6

          SHA512

          4548460333d617288e981845a84272b800ffcffb3226b30805116e5b5785bacef0426cd1734f5c3f8275df7de8b0d9259dd3362248579c300b5dc2f892600560

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4fed543a634ea6e9bc50b0be7c8c6e26

          SHA1

          0c37717d87027951c2fe44601175969d3fd6398f

          SHA256

          1103e139049060283664b7ec03ac0831eac7073b1d3dc9c9df0ced861f1ec3ca

          SHA512

          c3a8e77ee52e92c6d247ae91368594348a669186e9123d08da4e6688d37f92ccbfcfc113a6ebc4e7c77938d7da3fa06fe9d7f5121fc9f1291e84efc9102c3549

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e04219eb785bdd5446440e196da3a120

          SHA1

          de34b4783d2e9118966ba036ff8a53f4fe0f5e4f

          SHA256

          3cffe20cd3a3fe442a4f2bbb48013e980c89a532e6a083769358dfc7434a6a9b

          SHA512

          d2815c95c590b2bc19f1995e05043716884b1473a925e38c1735a67969cd3d582f29983db8602250d7d8f645ac6b8a00c81afbde8731bed69bd49f690921f426

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          aecba9217121b03d48658a0bc2532d09

          SHA1

          989738c2f18ff40710e3511e609565a01c5942a5

          SHA256

          0a24fb334f27811cea69e1afb2a6b71a4e3c2b0ecf08abd18b918481056f03d1

          SHA512

          717beaf8b79e95fd37e40b6f0a6a1345719fad776f5ad0a8eb323d0f83f984ac65a81e64bc36bd6d87a8d0165cb1a12bd2e6fd48416cc03ed8878c6c5d9055a7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ab55bb78bb3a0f96cd1c592b79d1a7d6

          SHA1

          2144668733f9bf64147c6524c0fe6c097d4ae194

          SHA256

          b6cf93442b44ae4167204cd3aa5ac60082cf38480e0fbb938ba9d1859493fbca

          SHA512

          905c232e7042ab57b584d70d59efbd15b8a17ec8265b7e991cf2c7412bc48833abe3554bbba486cb74f017fc40737a95b9500d16e26827c9e63c9e09097edcc7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ef8e1670be9ae0c4aad2ca0dd70dea65

          SHA1

          d7390d9fdc08e3a623eae176ff7b00b620a773d4

          SHA256

          49563ab7c35b5efcf676b57269dbf2ee291a89559b48774c1ed2b41dc71f6a1a

          SHA512

          297b4feaea1773648098faddf53d9104d6fbfb5aba5366b68e0cb8c36c8c8e5b099477a6ef161e4372154c89719e72b561fdc7fc4164b27a64e7fc47c70ca715

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          93a1097c9da92f72052221ca23c39a99

          SHA1

          8135e516a26c480650526b43a49bc78d4d08ff47

          SHA256

          20375dcc776551acc6f8320a64df1c02552b2b32569618c0ad67c481e3cd1feb

          SHA512

          2df25d0b9cd56c86dcf55b6da25657a798f802b5a7d63f5b4a867cac8c801cced4b2c2502ff4e341a4ce54ef95ca1d0200eb22a66201898bba050987d695906f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c0893bc6d70bb557963d0de3653bcd3a

          SHA1

          d4b6ca167ccd30134b8219882ff09002b0f885ac

          SHA256

          4e301d153f5deea8659405bde3bcd95c904d58e5bf728b18b48f49512ba636cb

          SHA512

          42d8c7b69d6ea398a96abf78d97fb27a367f284317fa82476351af23ef1a4572f6c15fd25a7f7c2c599758ce19da94471503e46ee25d1e67f8df24a42c4beb39

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6f0eade580589fa9aca93fae72ee67e6

          SHA1

          539d90e786a5c090938b15ffe709db5287b02b12

          SHA256

          4c233c94899a7ac4a72c9caedf1db6b2912fe44abdddb183ea23b623e2114d1d

          SHA512

          a83f38053be980d114e10dd926e9be9bde05eba637454a05c61eea22f4de09b888ff4650cfe0c4efb43d6b2a465954974b13dbaad9c72ca858c9d114043a3917

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          44124b0d8c3d5736d3e6f87bb2629e89

          SHA1

          18f24cecbf763174ec261e6b1770f7ae396e85f3

          SHA256

          9bea1579058afb106843b74456affc1c0c9fa528aca8d4ad0ea06ae4c1b4f50f

          SHA512

          a4207f3f71105aa349a2c8dc5906c2d26023ea165a00d5cfdde767174bf835440dffb164bff3ce3eec777fe49fd4df7b704ff24a5dba8cc4e48abf67571bb861

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f3f5cda6f0c3c2ab37ca51ddf8ff1b92

          SHA1

          7b0bc4e0f5b1a15f0d607ef08e8f74da25d064d4

          SHA256

          0e6135b48b7f9e68bc555eb0bad3a0e51a63d9299dec3dc29d3c1d6801f290cc

          SHA512

          c4dd6b1fc21f014e53ba5eee9857258e9c90f21c1fafaf43167ddc7a4c0eb98b582667df8d35c2753f3406cda4f55e991156d3b001fc6b8493946332a556d3f9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          58c5a07b69994084d589b5f06a76e81d

          SHA1

          e9c184a34f898d189c77fa3487845347e05e3956

          SHA256

          a617a7be518cf1adc56d71be80d4a447857c3263b87bc10fdcb1779fff04938c

          SHA512

          340b79361d58d6af7c89ec6796ca3eba50648d1d445398fa6c4dd92e61b0206e3e16552977e00c34d38b4fc7df48db94ab0b9e259ffc8aab9eb7e93ab3f02d97

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b38df9e8dba6de831adfa9645e40a8ab

          SHA1

          f2d56c9d9ce0595d4853db6d92529506875252ff

          SHA256

          d39990aa4b96304d4b117660dd1e49c1df6e4412cb3593fb2a61043f5f7b1fb5

          SHA512

          812119de7c439ce939138161c4a4976765168f094c9abad31db84c61da96f4996ce057ba399814c9eb759f07391b62da3770d6f78e71b058a62a53a6b165bca9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ba059409b7e926cd04c970c080ece92a

          SHA1

          a8092ed612dc724113bbaa22632ae51c3236b58c

          SHA256

          4c5a44f85fb8332c81b1dd1768ec03080eabf4e7d6135b79a02528a64a2b2e65

          SHA512

          9f8002da049a6d6c49336764a5eafdcc7d697b285ee2e390656aab6331dffd86502c2b317c65e63684011a32e8092c45653770fdc79472fa8b45d7d3e1f99fd4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3e717ca68ef0a804a602eac5838bc3fc

          SHA1

          8445f9c7007b7e9c24e53073821e694e81bed687

          SHA256

          412754b61d66f6eb4c5fc9c7ea050dffa34e7c3ed4d2977dc877f85d338610cf

          SHA512

          6480121141de748e5b0a970d7d903768588d7a42cfcf2e10bf877e4c81a936f0441964d0f7e2a19e808a6b4a815f14a6b46a7c6e524ba13b38ff59c1dca85872

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7c0f4fe8b5138c891b086268d5ed4281

          SHA1

          45373f7892894d7cb28241277be2c5f7a0391493

          SHA256

          43f9e0c0da729500c167744cf0088981cc709bd4b98d593021d7baa1ab1193b8

          SHA512

          a7701338176f957fcb1d095eea637b1bd48021997590f58bce2f714de3e29dfe6eb99be4efb92af6fef6115ca65a6735da02db3ff655bfee4f1081ca9b691467

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          49430204026e7e58beac879c002ad3a1

          SHA1

          4203b1d4e08914d5d7c144341634e5f1ec3f8853

          SHA256

          aad06d111c26f3fd1c3ddce72ded6417e8a361872af0932c1a6e057bd5f9e9e6

          SHA512

          3a455fd8f289206071ef739c7bfddccf72b4b7e74b434f1ceb23020b98624f8407cfab2c0b4ba1aba74d798c564c064d30daef3c4bf25a7e256045bc649a73a6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          19748b76226b2e1fc73ae9c4e24a5257

          SHA1

          80e4f92f72b9e42768949c7e5ee82cb0d819c18f

          SHA256

          8b13a5d544c76d748096c9a549b6cc4ab2c4810f78d7b7aee1f9c14c127ba8e0

          SHA512

          59500a7683da1508c5cf24ce70407a154add7cc4b26749a028424215ad1244869f995d8e33a876b5b98d15f52b25fa28b95882de4ee3de6eeb44cca31fc97261

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5e97c1f4cc7304fa6781cc7d6c6891a1

          SHA1

          84ee83f62cd639e5a12753a688406f6e414188d6

          SHA256

          f1bf49add1981731aa130b6b0e221d6a8c7d075004e9ba42157dc8a1f4862c0c

          SHA512

          bfd36c3e3107d4b9e253d010856c153c4e16617a1934a708ece3d66ba8404f0e7712d78e8635f4b54dc8efe45176211af6b9e68dbc7cc032f5b84c0cf7ea8416

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f31a46af25f75a01fb48d653a25ff765

          SHA1

          609550d9da0d9f7c17b0f19266df324d05873bcc

          SHA256

          1f10bdf4870d000bf48e99cd13bf0704c435ebd95349e1bad1927d7882ed8dd3

          SHA512

          fcc6807a209744604dcbd50f9566fc7d3fffba97df69de7bfd3016df61cf2c847de402db033d2e4408287deeffc17d9dcf23e642472611e0d0d388b91b5fffe9

        • C:\Users\Admin\AppData\Local\Temp\Cab22CD.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar2371.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b