Analysis

  • max time kernel
    132s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    30/05/2024, 01:22

General

  • Target

    82a2cfc25dd5e9903de14eef1563bccf_JaffaCakes118.html

  • Size

    227KB

  • MD5

    82a2cfc25dd5e9903de14eef1563bccf

  • SHA1

    f89c967380c22ac786b94b70dd3fc94d4cfc2999

  • SHA256

    7e38a099c6974f3e18b2fb92c292766c082f908068e43fa50aa964d5a893e92c

  • SHA512

    2e5890e03f4082f8e2eda0f59c10ac331c1a44824c232b54673ec296179820a38c2734372fd0c8e56509d4ec311335ff9ce80894bfca1664f5618f4962e84e55

  • SSDEEP

    3072:SbiQrhB9CyHxX7Be7iAvtLPbAwuBNKifXTJq:S9z9VxLY7iAVLTBQJlq

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\82a2cfc25dd5e9903de14eef1563bccf_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2868
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2868 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2492

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d0413121293f5913ab0fe9eda6f65c40

          SHA1

          7a84184954b7850351d24a688ae7433d6b1b0222

          SHA256

          0bc14e5b3d22d08515ec814dc5b76e08ab5cb59da7fd1a6be331b9270dd4963a

          SHA512

          4753784accb0ea3c6cbeaf3bbc1474c53e2cd1ca07d1fd50738c3d83f139818483387a657b0ca5f72ab6fa0977edae1243681d7f6acd8c769e3b842835296266

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9c472a4dbefaca1a3570764389f09501

          SHA1

          2bfa7e8ba2a465bcf33abc233f6b716fcae465e5

          SHA256

          03538a44654ee59902e47a16b01180c18fd5025327a765f2eba95bb44caae39b

          SHA512

          7faa29d00ec3c532f9ae96aac9ec5b27771a6e7b6847621ba95eb08292b1babb8cb71558511be52fd82516bb29ae535ff48570fe107ec981a14ea30d8936400e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b863bf5800437f93a3b93795ee524dc3

          SHA1

          68ecdb2b3de877b57b2d32977218e267c5e16c1e

          SHA256

          451fb5f3495ccceb59e23c0c8f264990f03c886c53bce703bd598ead9e6b188c

          SHA512

          6cec884dbc22f3da84818dfd8cdee6a88155103dd6e558b0ee4d9297babbd3826930ab3fa177afd08072186c698bff42fa46c1085bba26367946f49738a97eef

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ba7a4cca79fe2b25ecbac99675099a87

          SHA1

          3305fdf8cae252106f2d18293820c32dcebc30ff

          SHA256

          1c857f147e075b5f47823ddd907ae0f771fbaa75e8bc404f48f9e8054e549b82

          SHA512

          d6c9ce6cafdefd7656132bef219e15642fe59245f7ed619c7a2c6dfade024422dcc6392f9ed7539a7e81de334708eb48cddacc9721639ce3ac86eb4f5bd81339

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          05a04f253d06e5176f6db4dfe7b5df15

          SHA1

          457b220473b165fb8ebe3683a4396baa29f906de

          SHA256

          5a550a8757bfcf08276077ec5d92e95f51f1555c40d9da8706804e18e6649c39

          SHA512

          bcb91998b763374f87f52fef7904e59f50db3db5b1bd3086b6f3399b56194cce15b349cc482bb10e97fa2affeb16ebd04319585b950a18ffd1a3099b15ab070f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4d8f6594fed4ec0ce84bc3e01ce4653e

          SHA1

          f600e8cbed528e52451ec9a6f57d8b0b3f97811f

          SHA256

          ef42f4ddcdafc5bf2b0588f5f55a76ad648d49d764810e137ab62e1f516be0f2

          SHA512

          85cb6601b281d9314307a7f5b701933f0d2d526bc5b850669336ddd9c18e3bf0bb06c7632f3c6f84c9cd25bec4cf9038afc173c737bbaee540b4f61f81d98ba4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c0ca7b13cc92dc062613730ef62216ad

          SHA1

          546cb25598ef4306e688957f25f30fd0014a2a52

          SHA256

          52e3230fbfd56f101dbece35bffaa4ba0f887fe756120600bc7dd53e12fabd5f

          SHA512

          8bfef2e0e07aad882c01eaf9aef613c65f0916a98b70d84c779a1e3876e4e37bdc73d4ed24f9692ce88cf91e295a7119e3b07bfe56d63da9949a8b26a2b0c2e8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e14a381a6b2c4201f54555b5fc26c0bb

          SHA1

          f451edef7ce124d34177db3672d4018eb9eebdf5

          SHA256

          9eb8d81257d8449b11a1492897464203f276651fb0eb9639ffcf26afc725bcb8

          SHA512

          4089bc075a7a94444642b38047f9d83f9c24c4eb70bc7097cebabf92a0eb76e3a3a95a472c7e6bbfb69090de23403a3cd2582c1c7badc9072a1de0d06fb8ce26

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4f586d7b1f0ccf72d7f4bf50af0e7dc3

          SHA1

          9e5131484f169af4052686da723278f5ed57a435

          SHA256

          cfa2d2a1a7562617f7cd87e029449b7a32dd65f88ee83773f6ea2ca9e8d9de1d

          SHA512

          5c42ad5fe4d4136d9972ac72c836b759b66df3bcd37ab6258612a418d38c12b50837805dd90e68c5c0eb92e46420b3603d1b79577634f6f5641ee7d942ca4ec0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d1894b7fbe186942ccc15fb57e17f1be

          SHA1

          bd4d47135c69fb4add1ceabe134ffa8dbbac01f6

          SHA256

          de5e3071344340fd8566c2dd19f484c6e28fa59e147040a532ff26d4f00a7a99

          SHA512

          16c529f701caeb13209f71a44114fef62207e2fa6bd2dde63ad3d5ccd7635795f8a4e3656eacc912b460a93fad97bea15c50d2adaad9f46d60cf10d4025efef0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1c63d389dcb689644d4888b3fb3bd5ec

          SHA1

          e3696502f88be35e6dc5afd770ccd69f82e62992

          SHA256

          7dd3a0fb2dba67c496bd3b8012be29e5e8ef6543fffc834c177456449e2c220e

          SHA512

          b8d0f29d08e5575d7381c603ef9d738722d6490ffe6d540486ee8d99454514af4225273d5063d119b923a6a8b7a9a000da668b4520396e68b7e4ad20d01404c9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          712c2013930f69efd7d28cb7f8225bbd

          SHA1

          fe5df3d063f875c47e81de8e36e44fb7273a671c

          SHA256

          abb926a6dcaf209803d519d34910c3474f8d476105299528da062905857028ae

          SHA512

          692ded87f7ba38f349934d054e2c4525688db2a07d6d97a46156262cec9a228fc415ea704f60dd9056c6ec420185b14b0d9b34216dc85612af340b68099d6404

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6ddfe8e55b441fc8b9b35d806a145f24

          SHA1

          f1a0bc672162399cc875748a30800da573bdad76

          SHA256

          0b9354739c1b5dd02b0e53075a27d1aa62782571d351a9358839c06fd9bbc9d5

          SHA512

          f3bd1c529a8fc3b24a975a49a61a0ac891f13f956b331be437b6a1e19d320997071b87b40bb9cff9a083ddda63168b76a8b269d854a3922cee32f9f7666db0aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b990776c7537694ea407e0f36893606d

          SHA1

          efe650d508ada1dea2c67a580c6b556999e2528d

          SHA256

          09c71d8ec57ef601b3eddcb28d980b3dad3cbc53f6849e7569f94357706dde29

          SHA512

          3f01a2a82c1ceb50fe0c4fec80045660f8a46b98a5220cd1ba256facdcb3a06e788245abadff1ae035058e39b1d2a5a1ff373a8c0c44f9c961ce1e8438876dab

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4da63800e54f0ab5efff75603759c70d

          SHA1

          0b9ff812c2f07122e50d5d019b59fff2458e84b4

          SHA256

          01789342f4557dcc8a36198ae8d01dc4ea80d8bbf55314960f4d2719c834c504

          SHA512

          262fc703aa47cc61923002d1dac0e19844b91a7790f7f6e6b90bb39f82709c942183ecfb5c37e57171e17c79b021d3ea32d35fc7f6b23442909f1b994ea1af99

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4a3f465d4fcee894eaf15b588c34039f

          SHA1

          8588280e076349321d3766ca3fc5da6a6d1e1620

          SHA256

          e35c8a486fae264219c6bf8a606e4b509f687232e0ef244c3daf347a71e3dfce

          SHA512

          e4837b2ce3566ad27120cc0af77739bf698dfd4b5b1f06f03e1295f99e245e770ed47cceeed2249e4ad89f1c4d156f8ed16e5f219acda8ae7e48a371825938c3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6f95bfc6ca0e6aafc7d8644628d27270

          SHA1

          88ccc482bb156736183277b64d362c29e93d056d

          SHA256

          948d0649a2a78f00320240aff248b81c6f2abd5400240f00f35ed795e4ac04c1

          SHA512

          aabead9d4d2975e9c0c356234caf356a83a8557096e82a9f22714c1571a0449f1eca3cd8053db8fd116a450ffbb30cc790dffb9a5e12496a0ce6951cdb824244

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          498da4285481adc8ff1eb8c8ba084cba

          SHA1

          98ea851f4c50b960dd5cf3317155cf061a99168a

          SHA256

          9bed13b3d5a7237e86e728684e820882b34a8292a574adf6172146ba6010df8d

          SHA512

          1ddec90aac26d32735cd37e8bfcb2d73a0a9ae16fa6661a081ccd3e6fe8d95bb08ddd9d86e429555b914378593dfe3f40f993caf0dabc79e635b5a4d96c70930

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9b0fd90c9a958e82edee65b773bfe5b0

          SHA1

          d28ab6383eda7c7c89be2b45b004505ce6ef4ee2

          SHA256

          2a828b580a01de5e1bc6bd437bbe1738f081618e188eb24d37cbdf5fc6af795a

          SHA512

          7301b8cb45c3d4b0e4e47958d5d03641c9e516ae7cee8c9d0b6ecff6db1eba9a3b62618777ebe01d14d2830719a33b4635b21dea998de1575d77d8dc5ecaa287

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4a4958ffccc57b1ff5e19c766180edaf

          SHA1

          3ea9fc56d5f8a1a477abbf5428b778e9787f801c

          SHA256

          3be9be326c210a1f254911cd64bb9db799e4de77320ea843db8b48eed237f31d

          SHA512

          333733b977e9d2509b2ace22417e42b5a920a232168a9d5f62b6705f30743c7a3e1151b3c38dcf491dff34bb42a2d8539015acf7729b93e8afb5319784afadf6

        • C:\Users\Admin\AppData\Local\Temp\Cab2CAE.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar2DA0.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b