Analysis

  • max time kernel
    118s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    30/05/2024, 01:52

General

  • Target

    82b1a6681570fc912012708809db7a66_JaffaCakes118.html

  • Size

    10KB

  • MD5

    82b1a6681570fc912012708809db7a66

  • SHA1

    460a7ea0d932abec3589e52456b140364341205e

  • SHA256

    da8fd12d84a5a0bd92cb98a594dcd6214d68deb25dbf5e38cace796ce69afab9

  • SHA512

    1144f0dbab15e2324d78d907b56829aa499e78c8f486898ee0a3f24e10315d11f4d9f73ce3c6cd7a46f4af8e6a212e14fe5ea024a2858ac4b8ec140e7013e92b

  • SSDEEP

    192:Onlpn96HHXHZDmxsexY8bi+geqJwg4UHTE5w8gPjCZLtdyH:Of9EHpDmo8bseqLzE5/vyH

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\82b1a6681570fc912012708809db7a66_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3008
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3008 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2168

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e5567537c9c59617ab1b4ceeeebd03cc

          SHA1

          74739eb4b1fb88c65a4d1c5491cff91193ee693d

          SHA256

          68d893e18c08a4b48ca1c74c399517704a9195303ab80e7046732be649962501

          SHA512

          f96c36250e42ce6b663b61d09514c56fa8f2add460df93f2cfa9d55641b5abde662c9b0f17e2de5d1254ceaa5e7af957d88f9e42aff139f2551ad9bb2db6a905

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2aeeb867e70d426f6ae9f2b975a222eb

          SHA1

          a94d2f45e2a270aa16e46489cf6b8ed9b7fa7939

          SHA256

          eb28e6df406cad6c7b1dee9e3f5246219614b39a612296845d2d430e0fca5975

          SHA512

          aa59b4121990c7040d44d4e7339e0136055c94e172026309762bae8f30cadccea1441dd7cba9d385e22d02ad193a76afbe781c4e213acee5f637eae360a003f0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          acd91a208a62d95da03500ea14615dcd

          SHA1

          6598fcb198c8624ef1c1343d3e1c0d94e290fedd

          SHA256

          57184caeb263a624b06a477b56f023208b5c1dbad41d882142a140dfc34eb4b8

          SHA512

          6f16cfe71bf4849b8daa1793890f27536b8663e2e6efd94dce800a64fbf4e5bf553c5e7e7a7f354997cc17836ee1d8fac38b001411d1d0a7ad8534f653d483f1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b0d1f40cd0f33e0a705f17ee64dfb644

          SHA1

          3ab64966653427a9dc5b407cc3b24acaa44f4b5c

          SHA256

          4bc86c13da559ba36c84c5dc430a71fe7c9ffe1c2f63e245e0e9fa426425c82f

          SHA512

          50b016144ebef73a9f9ab512990d9b89d0843f363a501493d3ef5eb9ab718263ce2ee76a76dcc33fdce7534cf75da2963b7553c50c964010cd18f2f3300a721b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4a994acd589175a15278eab7e5a540fd

          SHA1

          0de89a18e8bd0833ed299303ad652102ac0998c3

          SHA256

          eaaa9213d07dd1db2671012bc49eea15ca0269b0fb98affc579e247371ce53ea

          SHA512

          d21c1d275c816122b8153d611d7c48ce18c42e935118c85007eb72aff4404f6704344bc3415de80dbafcee6ce4ed1a3f6e33529534dc2ddc57ca071d1bfd1b97

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7cdefa34f42e9bffc8c1616668f86d6f

          SHA1

          9e5ab2a96faeab350b6b5b99a22d8e79b4708385

          SHA256

          72f5f51f4d5dc682253119cf139c03786bf0de85effc4c50986160697578d683

          SHA512

          fe8096d4145a115b8a778fdd645b349b42e57571aeb45ff4679a376033e1792a9c724c659953f87ba828231486ff66534b3622d7f0e232df46fb877a7dd5e4d7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          60d97dc003dc6705acc7aed0af92f6e4

          SHA1

          0b3270edf33ab82aada4666b2932d6ed8db60fe3

          SHA256

          9987fbbf330c8b15389415b4cc378e9567c17e871b859f0d10ed46caf5690ec5

          SHA512

          b32e3bfe8539c4708038d2a37ed2f608c90462d184a3730ddeff57d79a9e79e2504a19f0b9589b0f199b2b64b2544eb7bbac2c2b69c392840f9942e3552fcc59

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          bf4ae4bc6e3e1e7a846a6397ffb55dff

          SHA1

          69b32d10671299bec972ddad46105485d0d5197b

          SHA256

          76d448dd6157c7f01438453535e89fa0391ec55799c67d63e1488a854dda46bb

          SHA512

          22b836344155fdc0383f0d18509ff9f0b109ceb7e31e7c261a14e5cef3441c4b0a1a0724fe112f1d2320b8fcba52d534d6e0c5daedf1d4cab24c66d43053f40d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          000f518423669367c628f74390bdf935

          SHA1

          9d14b4764bf3c8f8d739693317057096aa3b85c7

          SHA256

          c7e76fcd7cc7e5ea5cb3ce698d3d56beea637729fe0490defbbf158b95a65372

          SHA512

          999608b95221e649e25b4847a11ab6fa9a9d7e08e81f3ed7521d72b0c6723fb5b49645633311943a4d27acf47bbdf6811c376b554331b21f4bddd6fd8b58dbc7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          81c9c1dbdaf5bd57228355a26144d559

          SHA1

          83c8221a6733cc885c1ececa9a62b56d0f7511d2

          SHA256

          2e2025e09d92ba6fec16f722e2e45cd0a667682d00ebfaea00e32f14d9b9a773

          SHA512

          6db58eb09a9cffa07d549ed96583ae5ee4ea9fef4c91c1eea470c867de4acc7508f29c0fbaaece99bdfb74ff043587bcf460931b813419e9349b869e3f5bdafc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          65fd89b9bbca4e4344f701ae11a1441b

          SHA1

          6690d4fec46c191b2e3e59f940b4eb10def8e2df

          SHA256

          9cca75d5869ca8bc7f7554cad75b1479bfb79d0e3048fb74b2094872c7cf0fdd

          SHA512

          3869e5ed52c4bc90adcc2a03bc8cb87627ed93cb3cfe64db725c3df963b1990790de2a9afe2de2271b2bbd4a8dfa35162846d5dd9782db411ed12684980e80d9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          89a067ae2f0baf06a3b67155f62583a0

          SHA1

          08b178cb420e5729d7a39f2be26d86c68382d0a3

          SHA256

          7b7056305b99aacb120003e97ee6ed17ee8d76418ea04466091e29859f8043c1

          SHA512

          bbb1f107906d68c31b9766baa188fada6133da20b554c3c0e10ec64d284aa428b7c72079d529b5cea6a2b7b9bb84863cf2ab645aa00162d49945aac7f7c07494

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          52d066c824b566cd9bdbd0aea2cc3197

          SHA1

          8f452f121233a58a96eb63960f91ad9d579db388

          SHA256

          1c05efd5cbfc1dbe2e9f09ce96bbf78a7983f6e168f06cba2cf96dab0c8d5ce0

          SHA512

          e23512f0eb668c34fc218b963d36f36db9f9272b8686691676e142c7d92c3d1465cb46925c61b821bd72936cdcc7853b4aadf9ffe01759e9a72ef46862ce27c3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          686d6da2864d438e96cd0118595fccce

          SHA1

          92dbdce26630a3a9c70beec46580ed1c15823b01

          SHA256

          b7949b9da1f2977fa5c2caf4ff786b52e0c972d050b59e770282d4ef5a30fd72

          SHA512

          738ea1c48a13e93d3f6e9bf279408d89a6f286ea45698f6816b18555986d0dda8defdc591591b9035bf4591be2e80ffe4bf47d5a2728acc021470cd575914924

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5499696d4427d4320d1d9e0090648741

          SHA1

          0c552af4ab85567dc821444c4811314f9efb6bca

          SHA256

          a52608f7d91d8dade339c08e595018b6a52ab5a1c2f99851d6b12927dacaa8b8

          SHA512

          cd46b4503cbace8f3a992d54445827b8ff722be092c5ef2089d7d96c3831d5d9da05ba84e8d326e8da34642096d6a34698ba726fc382043b9276538ee1d8016b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a2d9d94dd55ac3ba02d0afcfe62663f1

          SHA1

          452635c3706b3f03359e26a209f72846801ae5b7

          SHA256

          143167ea91e5de162219d0cc9d3b5d0d3d3a9f1260af7e49472d4c50334c5885

          SHA512

          fd7c12874671c0ac2bbca54f75f932bf96b881403ddd9f1c98d7a2142dd17360cfa9a8181640d80bdaa5b53dd8d158f4bd1e19eb6599fad8b883940e80236d37

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7a0b6f7e62aef9dbdc1e2794ab238123

          SHA1

          f101e108740eb823b28c68fcacae161b6d0532dc

          SHA256

          253fc0e4247e2e3eb94ee5aca85d784d4ae246cb74c7bee584610ac89fdcb532

          SHA512

          b46e31344b4569ddab6749ab4ea43d63333ae14d525512705bbd9b00b70635dc790feb04d1c7831e0b5b3dd852bf746e88228ec3fa5ef57291811bb09f6651d1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ba03d344dd09244a5f24de329b4b7c83

          SHA1

          c1408f2f040a8cc9d6beb9a03c21bae3662860fe

          SHA256

          96e1266f57ed0b655690bbc1ab9bae85d682ba7d1fbdc4f3c39b583429757b1e

          SHA512

          5e594eed6357c2509d46507bc9fd2f7ca0dd725df1fde3213c2ad8cbf2f91dd8fd851f519908ff5c2a2c41c7321919fd8d70766b987b4af4dc6b7bd87e79f22c

        • C:\Users\Admin\AppData\Local\Temp\Cab3D51.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar3DE5.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b