Analysis

  • max time kernel
    136s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    30/05/2024, 01:23

General

  • Target

    82a3131f064f862c6e19852ae37bfd00_JaffaCakes118.html

  • Size

    118KB

  • MD5

    82a3131f064f862c6e19852ae37bfd00

  • SHA1

    d20cdeb08ed75f520c31550880e8544252b006be

  • SHA256

    4c340b7cf7812ad6cfc57f6ea92e20640303c191a67befd6e8ec52337c38cc07

  • SHA512

    c9fa8f0a29a833688428d66808d51f9a6d7d2f4c60fa69c589fbd47249c3b498c5c43aede21b0c76159bb5cf2b1e6023e6dc216ff24c06c130b0f92821a298d1

  • SSDEEP

    1536:UYzQnyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dG1:/eyfkMY+BES09JXAnyrZalI+Yg

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\82a3131f064f862c6e19852ae37bfd00_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1640
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1640 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2896

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0f7ddb457a316ce71fc40c6219692900

          SHA1

          ab3774c86bc42c7b55412adf9d6321f42cbc2f31

          SHA256

          41469448359e8551d591d101570e377165e0fa4cc5180df7d23d4ff3a32c00a5

          SHA512

          ff9cce967c10e08642c229ac6629425bdf57f86053f796d1cfe8a140a35fb6d9ed41a04cedb8933ccc82b2123b5f48cc8381f54fb4ebe1d1117c13afbf7c1d64

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1e62283af0c5f481c0ecf51529a10417

          SHA1

          444aab1cf3a4039f5654383f4bf7741db75174c6

          SHA256

          26f03cd91519dc426cbe8fc2269ec69ebc2c288f92aff023211917ff3ef4812f

          SHA512

          53a10a5651ccc3526451e1db38ce79c81b513cbd9202c9fb2d1fae38e06d56416b85e6a2bb97909e84512554b203613aa48868b53abc73e6479ea83fc41c9816

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ac66f3b9874a1324776238af42c569fa

          SHA1

          f72c9a8fd33bc5732d44215a7ff7436fa160ff24

          SHA256

          9fc07001a95fc79dff478a7fe3edbee957eb5480adcd9acc623e522934c7d362

          SHA512

          cc00061c54549b64d4be42e1242a2a7afceb05c13128a6dab161c2d31a378dd905591d8a5656260c14fa9d82032f9fb3b5268fd0b71a9eb46550504201d41e29

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          47ae2b4f1acd4dde5ded681637c86506

          SHA1

          acf31973f85e4ce5b62e8b328c84559c5c7929ff

          SHA256

          b62386afa68e82efa98d322ff62f4625179836fbf4101c1afaf29057bb7f82c3

          SHA512

          6cd36d81cc866fe3c5f563b152b6113f3cc37df19a24b209d8dc94a8df0f91ec36edf42fa4ce90c2b3d8adea1e86d36e64904e42985cd54649bc7c651ad616a4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5142a8b731d4bee634a8c35f6a345a92

          SHA1

          72030b8a29bf566a5ca1ed4dbf0c20e8614eaf56

          SHA256

          1f90e06ad6a26445e19c1e1a5e812736ef63d550bd1557a6238cfbda75f2bc07

          SHA512

          de7315f13d37ba6809d71163aba291394f0d46efb9c786e89657f66d42b55ea089343e4359bb13700513a5c1cc8c5317873a8e7c41143f3cc99ce1874318e4ef

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          bf85ea9bf4ffc5a382471e0cfbb2bf23

          SHA1

          9e71e7ca83101a0dfe1d49d6fec8798b5bd5bf09

          SHA256

          8be2d2cc5b432ea876b7452dfdbb3da30f7a2c2a6177ca99c1c36c55d5e57c29

          SHA512

          a71b6abc362d8a91a6723bf16ff9d4699bb8f0c24bc73f92a9bc1ee9e237877835a700552d78d939536c26704d34b08628ba769626aec11ed6dbde0d861c5de0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8a21492ea5f856df1f991c5e1bea1d4d

          SHA1

          8a61d44c1595516eb1af7a2d802def5ca1602abb

          SHA256

          6192f06e71555bf6ee7626f64c2fb1a08f0c6ee85acb7b12fc73b450c32d28f9

          SHA512

          cea3c7f006073e6c893ce91303b75686648fa0c11e9e21ef6bef9bcf4a6821e636d1beb5786d6cbb0e0e32496af84bad97343e61e07dd400b78404e4687c5128

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f04493513a33e2fd1dbe5906e66c0b2e

          SHA1

          5bcdda0c4db9687381468ace6057b60e61f8b680

          SHA256

          7cd1e037430f284c3fd66f14902e0dedb0bd961625f59c161d952ebf7348881d

          SHA512

          c4f416dd6cead6cd668b249d8ff49a1ce6f97f14eeb311c123541b5bfd1e2a92d0e3c341e65c02c1003ed0b834c1fce8ddb9db7496bccf6ce0911358a15e2d9b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          68e23e1761524be6cd33dd92b29b6d4a

          SHA1

          a83dd8aabb32579f2472bc2a1a821cd0909dbb1b

          SHA256

          287bd57729fb201f7aec2440cd7489e57fdfb2ad4b0de3d3e77cceeffe2512e2

          SHA512

          b824f6ba094d133a23a7db8684f890b0ef1aef06d78ec9da59b02e1842de611d355d553a46aa3099031b8caa6e08ca50b2f21556715f7d9a83864bdfb8b193b0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e791c4a56b650176f876a21b03ac8a82

          SHA1

          6740d84148386aae78410043bef1993a045e87fc

          SHA256

          caa6c51aa2408ccd762262a7cc621c843780df69d9aba5c7eaa42997ffa22980

          SHA512

          994a8377e99f42c6b7b69cff255700ad4cbbd3b328c862d52c5b92044b8b06f50819f0ea720e509268a6054b513882aa442e604f5b770f09238ee68c76f3c577

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          32b52254565ea6ea2e1ea5fea8319543

          SHA1

          fbdb3259a92c256724df080c277c9c00813bb0a5

          SHA256

          67fce17a539b9f18bd865307b4a74ee4bb718ce70a06f69966859f1159c604a4

          SHA512

          8cee8bc748a3fc7833ab38f7a7651c8d3797a358b978111f4c599baca61a82e5aeb50d060ee6157dce9e0e59ca5a1ef77e5c5c01eae3862666ee7156090c594d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c60ddf2f098d85919f83648045103787

          SHA1

          a845acec90d8bfe258d486ca52794b96a39e006d

          SHA256

          92592df25026b959bc000f15d9f27dfc4792530be9e36eac90657df10914131c

          SHA512

          b5a7c14bad804d37f371b629617241178829d146fe35e8bdd06283299eae756365d7433e4f76cb73fd2af6dd18b51a5682b2227e7108c2b239340e4359d08f75

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cad4be86e685f3da77412a8c29614cdf

          SHA1

          6265ac66c64c15fac5389d7395272457a795e21f

          SHA256

          9d6a3f552eef98adbd678387368fff97d485d929b29b5c9a251af607358cc56f

          SHA512

          41d68ee66d0c34adec03786c59782d206983df5c0122749138fd3262c509003b2a9fefc9c7c75b31aa4c0fdc6b9db736353a50c66790fdd4e27d94e744bd59e5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          40179df9d03c3b726ce1cd6116609c4c

          SHA1

          efb4b0e2a10a87737e2f3606de1f5b17995d1535

          SHA256

          6a25e3838694c1b3dcfedc8a899c992b9b8d2681c6a9c7d4b20654efdb3613c5

          SHA512

          07580b17cccc901d96fb8663f19f1f05eb1944c722b5f8f52ff0b341eb879f69fdc350a64c6759e6c4fdd0d740a97503ac4410b25409e0130cf7224ac2588ca6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          964afcdb07df03697d0c8168a46ba99f

          SHA1

          cbfa3be6869ca82e1c2d48a9694d2d0c4995fd2e

          SHA256

          e54ac5585b2f1d5863bcbefe409db9678bc2aee165eea14d90e97c231f3a83b2

          SHA512

          38420489bff10b1e345537498075f0530bc8c19fccd126f68c2afecae449ceeb54116df0cafffc6860531d3e5cf1505fbf9f9c50214c430bc772b54c36fb7585

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          727b24f771848889ce5a840b42e16837

          SHA1

          d6a2cab31051f6df3586d753622f8a8c11dd370e

          SHA256

          f8b30dd547b4e3ac936416806f4a6d90c1936f212d91ae8aeca8145e3454e37e

          SHA512

          339df1e812ae7e8289bf1795ad90c49df65bd5d864dd04e6288319d88d1b60c3fc966b9d074e9937f86eb612e15a180a7501c66887cb4eff2f3428c55f550439

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8fd99fd8765aa0b14fa3312b2574c10c

          SHA1

          3e2b3243f61b9d45332063414f00884182f07c81

          SHA256

          ebacd7c3c4a526b6567e2e347282fb5a271423798e9751532835120283c491c0

          SHA512

          6946882b626eeac05937735f702f9dea7f106bc6ef35387c5a728a6c358513372eb7de62f9ec3a6ad0f636c2cf3af14845c7f8cfb2c9d2bd69ce38cb2a9e6c07

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f377836e1b638560dbf1446c571e5413

          SHA1

          b646141bf99db4eeed5ea624d0760a9107b047d7

          SHA256

          74ed086d60f479249fdcf685f52c2470c8a10f0856578185c2ce6c9129d36167

          SHA512

          65c24553df8713e812828299fa4888003ff27fbc733013e4caeb727047a9b81339a8f106e24d5f7f13c79d093762f52b13ee566ce201d4ab5e07254dc19e2516

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          fa9ae6c3be4c276250de141a64a8b45c

          SHA1

          b25c6d0cbc110526016d7b807162b9200f101e3e

          SHA256

          e5876f7a058bcadc7e82a99257f79dd0cda6245730eb5a345afdcca245d35916

          SHA512

          ff9afbe4edf2ca03a29efa8d6f8b37dd67d570b2258fa51d3e43c12f6e07a7adaf3c3e5b9106815374d37e85e35b300a3b4049da8a1993f2efdeb3a2a6719851

        • C:\Users\Admin\AppData\Local\Temp\Cab1AE2.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Cab1B71.tmp

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\Local\Temp\Tar1B85.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b