Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    30/05/2024, 01:23

General

  • Target

    82a327c366199e2f8dd5449d2a92979e_JaffaCakes118.html

  • Size

    14KB

  • MD5

    82a327c366199e2f8dd5449d2a92979e

  • SHA1

    7e1ef58328a02fda9ed7d64d1f0dbea9745a9a67

  • SHA256

    d3576d029431675ee0c82f7d6984080d9ac0264afa2c83a52a0ea25190ecad2e

  • SHA512

    2b0237c2c279a4df6c59fc448bd819d5324855985b567f7658c360f17f9aad89516d9671d58975b3b3bc989f4ed967bd8b841d4dc289688099b3899a1a4fa879

  • SSDEEP

    192:Cf7yEZkrAtp4i4TaVaoaKagxJRxDXclP6Q9dbd+/d2dokiUh:O7yEZkrA3QlXMJ7c6QXxO4Hi4

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\82a327c366199e2f8dd5449d2a92979e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1580
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1580 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2476

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\E87CE99F124623F95572A696C80EFCAF_8DBDB314F582CFB69D8C0359C37384D1

          Filesize

          471B

          MD5

          0b1b93b840cd03d08599fb73f2ea70de

          SHA1

          e53c4dff546f8cb02b485fe7ceedcb1a29e2c8d1

          SHA256

          4278da055ed875020c94f2a8ce428a6e6973c8d1d395bf12bc04e2ef8764b152

          SHA512

          baae21b742c74600bba289b96b569118e69da68fe09abb8aaa447d3f6cc63d954833de245b9da62dc0032b1658dda295ad68358edcaf8ffe0c37bccc4273bd99

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          bd977748f20f838f440016a05234278f

          SHA1

          eb8c098c8391665e9ef47b4a45b187485468c1b2

          SHA256

          0530fce5c61bfaf111897b99300755b7870ed9f0cf1bd6e6960e9f29f7961717

          SHA512

          1f03a12e9bf77b5a5bbb400ae95964b65dd6d7290e2cefd29253627322ea224e3cc8cb624958e001c29e8f5fac23d25c524bca2814493201c453339511960926

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3f40955374bcaa8d09b7ac4639c92546

          SHA1

          42531953c0a3ff8e0d80c4f92078f99c68ae7bf0

          SHA256

          1508b67948af3416048e6b2d3c3c6f9648601a2a7646234411f4bd6fff9de517

          SHA512

          32148089b93697aab961496972e5f1331c28c65879162a59b2b9e4fc7ea00d050b8c02ef647637e27459e8b7ee83fa3fa6d8f5159b54f46b05dfb5016f973426

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c425e9d0e323347316f822eda383ef71

          SHA1

          bc7c849737e48cf805ced5888694f1fe2d6e11e1

          SHA256

          4457c104ffa46df109d9a97f87ac3bd930922180b01f6e91fa142ae1456dc38c

          SHA512

          a7f8477afd4acd71ba42b7de2379649f0c141b99c121057d8b3aea50de0accec3b8e651fdf55ee3e8c1e4e7b4871bbc7408c912d905d7d56af82cff1f9b4ce78

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          60bf83639815a523e4492d7823694f91

          SHA1

          0c05b19fd89de292d926640d2ecc3b4fa89531b9

          SHA256

          0811475679bc3b1e0513216b4fc3b070985d62a9967a231a5778b4e57bd04d25

          SHA512

          393a85cff158f367d93b423c05509d02180ffacc151faa232ffc6d8d7ead6ebe633141f7e6e9534c21aab978684b7284a576ddb455df3a94755cba179e1b9450

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8482688556f510e1c505ac18a9f38659

          SHA1

          df119a4381cd568763fae3b580743d80ae558765

          SHA256

          dfdd99a53c64529e43fc388a0c3c03c5b973fdf94e4c4be5e7bce4f97ba80948

          SHA512

          37a7e8e684f71d77fc7434e9650f84814a6ad18f3e421c507a812c1f0f46ba9b8620c1878a6b81debf00dc520e9f2a96b10bd7280455f4479ac5e9a92fb1256a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e1ab584d217d4414773271ee860ac59b

          SHA1

          88730de6accbdcf5eafc529bdef5418f73738db9

          SHA256

          2eefd1d8a30f746681f8962d09b065d288918aad5467ad5b6e6c00d5c551c9a6

          SHA512

          56629f5cdac995730c26f146bcf088ff1bb4a15f17f96619086eeb65a50aac2f887297dd54f6d89895444420e8ed2d53d090f8de9083f99732ffe2822ea38dc7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a01af69f316ade9f9d88e41196310b87

          SHA1

          c87d690267f7974ab2f6c110ef00a6eeaeb1e924

          SHA256

          3b04dba0b883033a8aaeaee44d8f5001145dca38be3294dd26eb6770bd61bfda

          SHA512

          6d601778a8e9943434990b46c3121d787b74e779905c0076eede1dcba923b7173ccb3d4bc6e5e1bc3205f613e1c77535ca8349774c01508afb81017cac3b72f5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a8c767808a06e4d5ab1f99dcdb1f6f16

          SHA1

          ad63da843efe94443817c67d2c66ceef5f9a8620

          SHA256

          c221c08b49c48901637f203be21fd9170a96bfd32cb469bc2e0c13138e0123f8

          SHA512

          11817061cc3d0d620ff08320df875d61d052d4090924c123ae9470b4d1712d499797e72750e707b21e98c96fdd802d2a227cf09718db8ec57ed7d3ffb211d940

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          01f1c0ba1fe89b213fbf655d38b1aa10

          SHA1

          e1e6d9d8e18fe736f56802edc1c57c654b1a9c1e

          SHA256

          966e8e6b4ac282cb75301a581a9d729796b7b16019402797e85c0bc0c95df0b7

          SHA512

          d8e58cd506e8f1f2ffdd2d2be84e13413e4f4a8085fcee88f7b858ac65f61253c99e4282f8d34c1cfebf2cc4b7400bd0a6e04e315ea78e0b3ade146e3bed6283

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          31c82cffc8a65d792065837b7be96358

          SHA1

          08dd464b8393e9c9eb038b567028bce6ddb4c6f4

          SHA256

          8e61bc9773c00f3c1418111a19df0aec79e3b032fc5f720b7add1008fb39961a

          SHA512

          9b2dcdfadd94332154dbe58981d9072af367d7c61a2252387bbdad1f2b93b99147e4be5367ff56efb9533b89d60f846fbf7f90ab93b89394ac08cc7a9d4d61a3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6a451ffd404099ff73c27f9411097701

          SHA1

          b3fa020602d382b9bbed172ff6b58012e8595974

          SHA256

          e25db454d27707444db7cac9182cac42f30075d2779e30c4a99c9af8f840ec0f

          SHA512

          e91d6b4b9bfb9892aeea2a55da8e114caabaaaaa967b6abbd2e398ff81d3301935e37b89db9f12037f415ae1ddae838441d3ed250d8daaacacd03ca0cc2921ea

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7a48b9f261f06d4d3e730a58bcf80c08

          SHA1

          c43af14f1cb7ebff9049f316156c1cb146c128c0

          SHA256

          b6719b0ffead5507a6544f68b60a702a829c7c1a86d7a33eb61994245d54df74

          SHA512

          c8f07160b3a6434d226944a2575ee5bb9f75f3e2a464558d3b3db8cf12f48e6487ccdef72d10cfee78216496b834ec375321314a6d654b39f41517714d589694

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5874d249cdb2baf866a22acd6691b6aa

          SHA1

          3ba540328e279775c9fc8001b0c5a11b4d203185

          SHA256

          38b2544424767667d803f65fa28944a8b995c08ca77f9cbf3d6302a1637d7cc2

          SHA512

          bc7499666a1a05014b71c8188e0c09ef3a57b57e139c29c417dcfdd55af1fa1fe7e594690f5b3ea6e7bb2274eba1b9dae4d50a5e1dc1e4663f8a07e22b168759

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          fd131b57db568ac2b52082c24fffe6af

          SHA1

          f27e32135599e5ce1f87608de6c61d483dc86c18

          SHA256

          01d2c39ecfbd68db1296c2ac1632c6ad3880f2bfa86cc1016c80212e77beaf32

          SHA512

          90e1b23e1244a374af7bb189bd44b655322f318a352417b1d5d1de4541b153d4c0c8d4bbb29cb9f326ab4d5c06270c1de3c65a71a51e1b4341cea89832e1f8fc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          13c7e275dfd73e632388765e1c507bc6

          SHA1

          961ffdb125cd00bdf0e8eac40fab6bfd33f571c5

          SHA256

          937f94b59f42767e8eaf32d0a1588a7163b93717e6093ad6531acf0fe87a4f5d

          SHA512

          9a239c0d9466c660dea4a246e696cedbb019ada96d55f5fa975e4aafcc5cf092711744ac790b4ec104fc3810f38dce489ab26c4a92e7ad141b5afac4bf70a363

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          df2dc39cf34e7c99e1660474f9c29517

          SHA1

          7d1555471b5db43d2c41ffff4847e1d41b01602d

          SHA256

          12e4b891a2afb6ec3dfcef16975a274b63dfdc30abe886793cc0f87700ab787d

          SHA512

          2c90535ee3db7d08173f5d5f6aa9517133b2d478bad31bda99f71ca2d0874dde16931c648bbd03562cbdd00f04f036f8d8d83749153f64ec74d73d0196fd67a8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8a0de0cbdebba657de7b5f78e1517486

          SHA1

          94b94ea95757915752f132e477f6958379c21cf2

          SHA256

          ad1e47dedc01de8cba3e1d0d9fafdd4f20d56861ec08bfe1b3c850a04b01b1df

          SHA512

          5e634f636c44583a0900d93cbe92fb0a319db079844aeff627ab04a0eaf50ec9d318f1a08c446023204085f9e840b679fcb18353c222cc4139d1883ae99a5d0f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1cd5e45601a9471f05bb17cdbcccc529

          SHA1

          df5f6808b78663e29aa8559000eb7bd4dcd98321

          SHA256

          50d6dbed311f8e64082b486815b4fa1dd2c6e296449f5b41e321a0188939ecfc

          SHA512

          69ae83b6116c2bd3f67aae57fdfcd27c7519153e94e0f24174dacbe1e590e8a57455359e3aaad644de2252d23406a4311759a063184a95edf61ac79a3687287c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          859082d535f21b2c52824eb756bb16e8

          SHA1

          f2d538364957d2933d5ea31c3784560be2d7c6b9

          SHA256

          bf275a2ecfa8b73771134647856163aa8c0e06325c57eba869f3b394e5ab763c

          SHA512

          87a56503837da96ac0b67b4fb1708e5371af7131f5edfc23fcce13f34baacac7ea60032b5ba57cf841b574063896028510e1d3b86cf50ba068c7332ae249e195

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3c4ecf8ddde848b9e7e1310dd6e431c8

          SHA1

          c571ea557f9c582799cc5aa17543a709f9f7c20c

          SHA256

          ade30e405b2e44c1d6bdff8a6d8e9a1cdfe7753914ebfb1064d77fc252a47349

          SHA512

          e92b7475ce2072dc57fdb4383de4c5179c5178b1db57e7443a0448efe57c88d0cf2bc11c79271666bf727a6801400617302c27c718aba6fcd1c65819ed3ef84c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          677590c63309cb4cde94efad4c550117

          SHA1

          3c4ef048c99d120a07c4836f775465c309cc49bf

          SHA256

          229472c4cc0a1e9a1bef07c464eaa55fd803040c28442bfb147c960a8b09b69f

          SHA512

          60d7a84d4b251dd46223db52c2cdaa5d67c4019af11c23e4bfbff6734cabc8e941384d60570bb3e1a7126c3af88c578d018d538bc19456536907e8e65561d7e2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2da944fdef6fa9ba39164c9bc901a892

          SHA1

          1a78ab0bbafded0ec4ea86fdff3fa490ad5d86c3

          SHA256

          cf27e2a79b96f48f455fbe9e920d189ee001184c47bb988f06ccd426e6c0d7ab

          SHA512

          403cbbe219b166ea7e7b8e3d833e5e1e7059fa927257763ae1712743f2462f242a21d86fe6fe339220ba6b3335470566524082787f3c42b99dffc4e73b08970a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          bbda0ea97f1e77d0d4956d49e425d12f

          SHA1

          8aee109649243db7c1945bab30d14139e19c3fe7

          SHA256

          ecb10a3f6c4e20ae909365a919f60d528d9e68d41a1081291c44c563274d3b55

          SHA512

          b7b508da28e9fec0bc567a75606fd4758cd361a108027c1c22b996e28d2c42e0658404306fe1100de075ff7d13ad5cef8a7d980d542f749776bbc49e1a2d758b

        • C:\Users\Admin\AppData\Local\Temp\Cab342B.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar4B26.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

        • C:\Users\Admin\AppData\Local\Temp\Tar4C19.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b