Analysis

  • max time kernel
    136s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    30/05/2024, 01:53

General

  • Target

    82b1a946db310ffddbe63e3aad32e0e9_JaffaCakes118.html

  • Size

    139KB

  • MD5

    82b1a946db310ffddbe63e3aad32e0e9

  • SHA1

    6ebf7876e69be86c4a411fd9b4c69937759bfe0f

  • SHA256

    fae8826645808dd1ba50ecd6b1e16ecfc421fd0072ffc5a251b1ed3b52e4a55e

  • SHA512

    1140d8a4b741853108d8d60e47d84b7997bc88288308dbe26505388b33f05a5bdcae8b358cf2cbbcb6e38e43eecfd0383f73e8f7097085d371313f2177ecca67

  • SSDEEP

    1536:SQ+BEOEdDKx76vuyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJA:SpEUx7dyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\82b1a946db310ffddbe63e3aad32e0e9_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3032
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3032 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2988

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9fdb109fc9e7c3ab1613375b884c2519

          SHA1

          ad95b2095e53b698a70b46866c193918b3a0f4b2

          SHA256

          86562d14c9a4372dd7b2335ef9164fa638ef168a47839579f297f1c108db7e73

          SHA512

          17c03470f96d9e0f278e7095dac0f41e064336f5556d0cdfccd1b868517ae6a819dba5e77c059872e02960b7e1776c91eb0c114eeb7973bc6b5be6262a09722e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8cf80c0fb77235ec2dc4fc6e0d1677a8

          SHA1

          4a4f009f735c2bbfb44a6a54c6a2e522802e86eb

          SHA256

          2cc5fff67b8e61948e78d21b789929154b3f3418f6660bb86fb96d6f7a753c0d

          SHA512

          e7eceb02b8b3a4f38818677b74a97f1b0bcc52eb2082c19df0a005d1d5f2d4ce227a4974ee84c4344b9664493f96c9b307d9e270839be6db74d6000df4e02301

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a62e773db5e27e42ca0a3f3969796028

          SHA1

          ed61d4e0fa5b983577aa36b206e41bf9fef1b880

          SHA256

          d09e3dc4fd095cdb914796579df9fc81daf7e22858eb5ff46d88a43f801910a5

          SHA512

          f54de1ffe49a38aeee1a808b930daa658d1e6c6a7e2ff229e2ac8e6f8c1595a7d2d40b0fb35b8c6138cd15ba26ff273b99cc3697d18403b670e2ab2b5801f26b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d17a302a65615a4b1d5f8300e07a35bd

          SHA1

          94918f0412f308c46307b25131e8e0fe3cec9daf

          SHA256

          94c272d5862c4433a8dcdff0a50e08dbae5f6ca01aeca483e020c4fcaace699c

          SHA512

          661710f727f0323592d9c73f8e2eeb5841698396d34724e22b5d8732e60382609618e1c9c6df833a96e1a9212d8c74872c17e85123cd8bf51fd19e05ecd9bc64

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          efa1686734d455c5ad2101c6d09f83a3

          SHA1

          a23a6e68d1e057e98e7d5b5127248f6d3aa9b7f2

          SHA256

          61b216135401ed02dc519146ac115fe5716439181ecf70e9d2711fe40102cbfc

          SHA512

          703c7c8b4e5fb8326248848a9f3c0b06e8ef9e2fe5107d1febd809794cd464c664f2b7fce315a006a29d8a5eeebf8c82fd578bc00be6e4eb5f63b3fd29e913b7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2250fc53f97176a8ce91e55d95be8be6

          SHA1

          be8bfd2b2b055241f2b12ef52e9f6ab1aa97330e

          SHA256

          43d64b26e36f1894e6c3519a9905016c97dfa40d121883be53d383f1648d2e23

          SHA512

          6d2c5f5afca43760963b9e8ceedab3394cc4a1909dda331379a08645e33c9f362de10df8d80f2f37c8395386f2a4144847d5acde33ac45e44de69368c05f2019

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c34b99e4e4b70be5bb10184ec0f97855

          SHA1

          a87622f8d2f606d43ef4dd995742adcfce8cfb3d

          SHA256

          0649e69d6a80ceecd74f3ddd9d3a0c0561c88828c61b73b71d672cc3551dcae8

          SHA512

          8827a331d69082ee0d1ac015ce8797df34003024631da93be1b6935375016b1d27d5eba5845e5c7ad79521e7a4da803792d314269aa38754877d03483b056c2e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0261a5675cddaa73a0b77fd3a57f3522

          SHA1

          0b5a7f8d718222b8b4c9811e99ca9d6a75306848

          SHA256

          6d08aad9831690d3f6355cdfff4792528aa34d5d3b9a3a43db823d6d4292bc15

          SHA512

          2bf8efc0bebe1edc9d08848a4cc4508315e9d9102aec6949778df3d667c240536bdc9bbb80ee1821952b7f723c6e56aaafa4843c0b93aca4ad417087d1479900

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f282c001ee0160ed74132a7bd6366c3e

          SHA1

          b5f69d14ae78ea4c51762239d1fef6b012581d7a

          SHA256

          44244e6885ca45f626df020f49c78258ca04a70d8d6c6ba2684f157e3836d3ae

          SHA512

          bd39d328d2e11d9b1532adfe2e2210b465a998962556ecc6f9878c69bcf18e33c5da96eaf65c8ea3d3d8526efa0d398fa50442357fc912a31c8962a44cfa6627

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          952c60f301030f1cb9a3286dbf419bed

          SHA1

          5e8f9fb7e44c2b7b01ea279204997b4345f53e65

          SHA256

          bbd384bd4c61e999bd0232e49b7a596674b4d13938fd2d3bc3a76537bee611a5

          SHA512

          80989310d8cd3216a1a6a82d6ff348d78ae8e02c9bc0bb7501c2bcc6ba722b54d607cf944db65d02ccf56733856c9e11fdd3facc311f794840d264fb4c78ae6a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1e078d210e00366513ac91a8a348aa9a

          SHA1

          0f42bcfd3dc48d1b734cccccf9e4984dd07610fe

          SHA256

          e414b714723fce2f8c75646ed0f3ec62ec472830a1026cf6f95ffd672c2db243

          SHA512

          a74485e180c9ba74dce36d775c6e6cb7ff8c13ddc383e2158db88b7b06ea14c80444e855d378695dba3fe56c16a983ae2b1789ea539c2b39235b7f6f3a08e879

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          99aacc0e080ed872e2a8bce55280773a

          SHA1

          1bbf04d9ad9a02ff47930d4a942a6cf9424ed9f5

          SHA256

          5aa0fa1f14ccd7b2211d8314d093d343a04ab3077c849c8b24a9c4179c6e5d4b

          SHA512

          7b9bd529f31154aa2de48be4027bf42fa02d466032e690f8dd6945e46780cd0b905d9a3146f25fde68001a882e8d1b23c1ad7c03ef28925fa87ded3bb7647db0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          078798824384da4e58ec09d920c82821

          SHA1

          a3c4c263efb356d7b52f239fd775d1c10d89c8bf

          SHA256

          13238e47859d59641b4c806f62267a7c56587ea56d35d8d9bade3723ccf067ac

          SHA512

          8016da54a9b68e0688b2c71253517ada99746a23a37c75f635476d742b10270f223d1cb3b221bee362559866bacd5b0f4f6bcb6426be904b5d355caf8ad6ec55

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c1930e1e4e3da920b963fa4b3e230a98

          SHA1

          599bfadee8ebc16055e79b9a07a0cbd5a2a17df7

          SHA256

          aa778566ccb8ee4a90384d9e8600cb4fea706f7e05aa007782c31c4de41baace

          SHA512

          dcf93092a4552430e9c817fdef7d742820a6877ba2b6e19e270bd76f91abdc1231916cb2960d70f8ddc69025edb179d0392df80a3d12e3de4f73ca7dcc29d852

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e482e22b28ec100b12f180252e6a80fd

          SHA1

          64f4e8b4cd4de161477ba0003709bf4764578f8a

          SHA256

          49cbef9ed80c80be06c5612714c03905a4139aaae4bbd28c13a7ce66609016d2

          SHA512

          4dda9fa0e1ee837d25c9cd423af5430127dc3f989d4affa7e391cc74e844115ba4563b4b9fdfaaca6fd10ce9cd7411637a5da679d963086b9944859375353bea

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b57b7a1085a8266baecb3439d40ecb4f

          SHA1

          4a8bf93cdccaf2135a8d5d38238fcc227d163d6d

          SHA256

          416649a893c0817dc9e2b89959ff8a3128d8bdebfc24457ea79afb8f957572f6

          SHA512

          d8eb12d7c9921ae8d4fea12d1c1c8bc84adaf686c7a3101fee3e02a98705f7d3762afd97e9223470a4f297f76d181492c341667451f87f2696667720d27d9cfa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cb455dba1ed38f1593cb6d731465e4e7

          SHA1

          327350e0c225de7ab22765603cd73ad3ec19656b

          SHA256

          e82d567e24a7f1dcafae1e83e6835ea9a1739d58f86dc811fe285241923ec777

          SHA512

          041ea227d0840b0161cc6bbe00d3deb2d865837efb4706cfee8a0351e08ebcaf7f842aa04565b78e6fff5b580b1c37443c25a15c120aad5e2c7c24239fb3f7ea

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c491bb075d9ae0d08f15d95caea57c4d

          SHA1

          be96a265a343e6bd4afdd82a94f050ed1011c0a2

          SHA256

          b403b819216e066100d334f2552fb7af4604ccb44c0956a986cc1c7ff9306ccc

          SHA512

          422831b112b7b2367c28a29351313828e037b70ef9beb1a068260f462485565d542e23ad4954d72c5469fc45277fe1a578058fad2b06202b95d3abd4671cfb62

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7684691aa661af19e1729c2ebd879dda

          SHA1

          5db6da9822f2c94a9add43a9fb7d0781a79cf627

          SHA256

          46bd9459089747d2fcb21b288f9435182001f500de36b7062f70986b795e4de4

          SHA512

          0a4900aa15ec4b5efedbd9980a5c7d6ce7d3a85b915476b7c6e2704f81dc61e16700158e7476cbce189f819a9fff0272292e6960452c1963c776620efdafb9e9

        • C:\Users\Admin\AppData\Local\Temp\Cab2B75.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar2C76.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b