Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    30/05/2024, 13:57

General

  • Target

    84627a900ee33d7b9093dc3c1ee5e28b_JaffaCakes118.html

  • Size

    19KB

  • MD5

    84627a900ee33d7b9093dc3c1ee5e28b

  • SHA1

    c323284350de81f7031b8c5a5c886e05bac00ec3

  • SHA256

    ba8c182db6b85d13fbb90b60895bc79e68290fd6c49eb3d42410c17ad4e691ec

  • SHA512

    ba1da309ada67731d6d47a4f2bfb0881802f4bdce8eaabf089f6e63ee7572efeceec2fc9405dda3d5e3c76117e87906e0d8b4f9bfab4a9fd20abde0296cea23e

  • SSDEEP

    384:OUZ/k1kSbPKv+mCGJR5YP+Nq23s0ZzB6AyLHyxeCm0aGzb:z9IkyCv+4R27QU6e9GX

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\84627a900ee33d7b9093dc3c1ee5e28b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2108
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2108 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1664

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ddb4fd55778c49857196c41c265537d7

    SHA1

    74fb55a8fab27136452f01c8cc57f91db8512230

    SHA256

    b39f29a140c80ad12594d6c0b4cf16b673e639df7a01c62e1a1ef757f6958631

    SHA512

    f271aae2b64f2ee1be3aeace42f916b49c5022c03fcd003b48d5d8add1af0946e076d31f83b3cf65190d9e710d84d06ce1dcf6d5d7e609fbb076ba1f77b41a8d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    421b215eaf5963678b6ace09ae05dac3

    SHA1

    5663883df07c909c5038c17a8f2007bacb25a5e3

    SHA256

    b424e5daa51725116ecb3eb34adf74fde51eb0a4b26bb95b770f1f228ad7cbe9

    SHA512

    7de3731eb963b34f80b1467020040eb05fa4f782ae125de186023c5ff9ab0dea72576ebd483dbe57fb590578d98d6bd65373eb400ad26296c678da77de452b98

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3c7d5900b6c84d9da1cd0f448c285058

    SHA1

    ce8069105618ade8d03eaf521e3867d6a2da745b

    SHA256

    e8a1dba9613a27fe6c5fa62edd9c2fe8caba51be8ccc4d3f6fbda213d5929460

    SHA512

    af5d36498bf12f8a9993761ce7ea60fe6ae0f0bca7b86525cd0fa39f812a039569c6b4d110a7ecb55e3293971e8455c7302315627422f211c26ed2de70c2bc3a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bd3026a36d92ca952b587400b004d1a2

    SHA1

    dbe7bbfe47a87e4c2689844246eee739c35217e2

    SHA256

    ca6adaef93825593e3544aaf6b1acb77bea621c5a53373c14938ef1faa0f14d5

    SHA512

    22a6b14bf281ffa9cafc4f54e9ff62e95899a23655f0c37b1d74a426537d6b97cb1fe0fed188d7840fe8cc24a067c2d1a8511d3326c7b1693c3a25aaffe52639

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    062678fb3dce8cc40486d1d572559814

    SHA1

    7e2844baac42f9bc95989898dd711143a5cd636e

    SHA256

    108314e046cb3bf1cce441181fe2e3491746b6588ea59a93b048279bd8d2f370

    SHA512

    6e8f3acbaea71fd05301d0a09b9d6c0a257229ceeeeb0195e4d6452b623537ebcfedc43847218254b9e389cd17628d220fb586591e5ade2a52c28cf251fae4aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2b8681da82ce15ce53e7d84590095740

    SHA1

    ad8b4c0020722e91ebdccce9078c76fbf637c3a2

    SHA256

    46aa37b7d135ef5fad02b4a0b6b6964a590cf9308cdfa386a9a287398d6631d0

    SHA512

    6b4757404c8a8af0845fc3d251ffca18ba9793de176e7caba01be151ad1a9bb3315345eef46ee453309795cc07762fb4b872a341910668cf0fb7e8caeec6b4ed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    09068f701842a98ac7d8f7251cd2b9aa

    SHA1

    85f524cd3f61aea421962fff6d46f47d910110d9

    SHA256

    c37e7a959e7ce9cdeb1b753931d13c1f03c61124bf65331c4520cfc4d2d5d310

    SHA512

    4c772b2e423e737b98952c95ade62abc578572980b8ee2c300581d07041fbf94314baca4ea83c203896b92ada8ed3b5278ac9c598e86abb6a8a665a597ddc358

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    941cd8af97fed878ef4b11595ae36de3

    SHA1

    ba64357e0af859feda5b8ea97401b0102c6f485f

    SHA256

    03a7593ecc6733e664ae09c30a695a3215a1c22196ad374dacc5aa205e6488a1

    SHA512

    6a37fe8fe9b733d370915e7a4224ae9d664af2b2f04fffb3d21c3c3e8e0007ac1afb9a5bdaad19de2d0fd1abf7165a7bae313559f4879e6c78b4a60f50d60590

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b18909d95fe59e7d193d13a9ce72d86a

    SHA1

    9d319f83b3fe2508004985556df57931de24e7e6

    SHA256

    0f8f067354a090253929ee25466daade3821629ed2df04e2c92a13fda308a299

    SHA512

    d6ea968feb477018cf4a980605911b39e3178f59785dfceb43d7c918fff32ba6ddfd2bf29e546bfa2ba61a1e58bcf804b98669ada09f313041feb0ecb5b1479e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3570bdbe8a6a0e34711e70f72eb50e36

    SHA1

    7752765c78485503f9063746be6f852a5af7f81a

    SHA256

    00067423da860e94e3148dad958782af4d6dfc4126ed1345b61bfe7d2135f82b

    SHA512

    32ef7e0f9905ac3a148b88196cc4aad19a65cee758bb7be00922fc88a2663fae6f8492c1f5a1b03d6c570cb7acad8b822c407ea05141e3452a35dd99f3b7eca3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ed2f3abcfd70bdb837cd80d4931a6efa

    SHA1

    5e04db9771a902493a2d6fbfc21a2f89a260d4af

    SHA256

    5c2eef6926e7bcca399911d7b055c0196f6027fe4fbd71cab18d5be94c67f1be

    SHA512

    b81c4efbacf07eb817fc6700ba206c9b9aa9f551f8254ab4f0e8796676c70988d8611dd2f9cdddc99ebc48fa91e15a65392ef4119e5d4feb5e8113538e231234

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f45a65aad9be79066e6c53a3717f14b5

    SHA1

    a859aec4ada3d690d7900710b65224d309730a40

    SHA256

    8aabbb630366fc23a278d0f0540d737fd89857fb5977247584d56cf61a8f77f4

    SHA512

    6fe625789b613e1a635b65c5cadba5b4d08dadaaa4392aaf354865c2627f646c9301109964727f0d01fb6c66897df61a37cbe0e13e1883497125a56197a26a21

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1e638da2c88429f9f928d8facc5c3ab6

    SHA1

    9035d58bab9db796c562c104db70506bd60c38f6

    SHA256

    fe8fac6bf104f45427d46225a04d186c270648c666ac0154df7b4a68fbe0f83f

    SHA512

    efc7bd4646f56eddf5adf0597ea3e50f0226de23360bff257d01f162b8e847368e793c92c2059e979da3568c9be6ce93b8503eb84542bce9f2f622f8264e3adb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9360ec298b5260deb0525ce3f649f6c3

    SHA1

    ace092ff26973948cc6c146ab39a419718e6890f

    SHA256

    f5e0196935be8cd86351fcb237ffd13fd64b74a281abbd5cc6e45e3f46bfdef7

    SHA512

    94fdc8e628562b2cb4977433eac6d9d43fb5404c1c9c5afe44424df31b609ac1bae0a429b0708127faa8b838e0c0f8e8be6984ce2f6ac84e09d50bb3585d1e67

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    128c96b325966b3e73ea01b2b35683c3

    SHA1

    aee7c865ee69fcd4f674fb1249d883693626e096

    SHA256

    0330710cdd2f54dfef9273ed4435e8e2be481f07378ed01729d15f3e2df1ee43

    SHA512

    90bfa9372f26112840da369683bcbecc16ba07ea9fae9e29d2308de6fd19bac2faf0e6bd8d4805cbc0745101c7f0563f0e36beaaecd68bbb1bf877f7198df183

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    441597d53dc0389ee591357efd475c6f

    SHA1

    779113b72f9e37da3cb733c4ac3c37e36af3086a

    SHA256

    2fe867e41940301238a3a5869d0e6f9093f69e9d052e96f3185535ebd2c03e0d

    SHA512

    9fd7fb55da1e7000dc2930ceda6e686759f122947df05367160d229209ab2584d1e5c4295ac76ce4b199270d6262d81fff24f4f8c812657fdd510f4c2ec6c9ce

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4a1afd5c4a755255b0bea6704b20fcba

    SHA1

    be8009ef06549e5a907a319e8c65d5866a73bac0

    SHA256

    807f6c157fde365319e60bac2f5ec34a3b4b5ca66886c1372658274bf456998c

    SHA512

    948506e6cec5de70889992ceef6397820162bf7313181384ed8bc15a948768100a214e4bea466714de313d5cb556a5e289c48687e5ada9058e8fb338da152e5c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6b6a356423b12055357f4b2eb05eedf0

    SHA1

    6208d9fb51e716af40641d8f5a5be1e7b8264522

    SHA256

    afa5f7e4682c6512b5a0eca7c2a4d26fb6d5268ad365d5c6fff044a9ce149cd4

    SHA512

    efd57d2aab26f4b84c7a904698414bc374a9543fcd13b2a701b1e3915ad0bbcf31e58ac505372daeaf5cb8dd227470bec5704fa841894a547da9a093a19729ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    383cc02862978db33da4a432c51f2ef4

    SHA1

    89c6e04b8e11d8232f65e38e63634879f7890938

    SHA256

    cba6c9c2c4e4e43a428206379a6b146c22495886f04c2d8ad8ce0469eb69150f

    SHA512

    64ca26e8773d9bc3f87c29e96bf01118b45194bd90783517566b5ba4da5fa7f571a590e2a1b0a1c8f1aa328bf679f9b8f74bbd09f32a46fcc7ddfbfbc4eff4a6

  • C:\Users\Admin\AppData\Local\Temp\Cab2C20.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar2C23.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

  • C:\Users\Admin\AppData\Local\Temp\Tar2CE4.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b