Analysis

  • max time kernel
    120s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    30/05/2024, 14:14

General

  • Target

    846e82c5b3aa9694907cb6fe9172c257_JaffaCakes118.html

  • Size

    462KB

  • MD5

    846e82c5b3aa9694907cb6fe9172c257

  • SHA1

    ac6100735a2e66089ef1d8b73f20e3612e2311ff

  • SHA256

    b5ce75df9408e83a879b964248f486ff0816c2c4654b3d873f1455b248cadfa7

  • SHA512

    1d605be77a672f2669001eee76e4d08f54f842205c57965db2b39b492ab30c7ff762ec91d9c0caff82640a3ff39607e729d823e065daaf7b2c3d57847d7032cc

  • SSDEEP

    6144:SgsMYod+X3oI+Yh9QysMYod+X3oI+Y7sMYod+X3oI+YLsMYod+X3oI+YQ:f5d+X3j95d+X3t5d+X315d+X3+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\846e82c5b3aa9694907cb6fe9172c257_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1960
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1960 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2396

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aae969cfd50a17da9a508641bf629264

    SHA1

    da6518fc8f7c35bf2110e9bba6748db588a9b6f3

    SHA256

    b9e074758de2e5570e173e6e9efe5d2b3c384bb0df538791ff6a7da7df42fa4a

    SHA512

    ca599df3762da60a595fd8c998df8f3e11a929c9587aae307c7ab8054a1dad2a23cdccebd5af8029a48ee7d043af66258dbb09ecf4ee8d4177ae7d2b9c7e7b3e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    69ee464534ae3118cbb0d4596f9786ad

    SHA1

    bafbbc448799263de51330a1a31f4d90da20a2c5

    SHA256

    5c9c12977cdbc2500254eed127a8d4960db8375ea7e95feb894c14fa033052f5

    SHA512

    1da74156a41dc189a7c35bfaf79a019fe79824e067784836981bec5762e73cf67b1a375895ce5235626b152d496576afa822439a5e8c7c157f37853163436347

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e67478765a29424645b33196bf5ae914

    SHA1

    2c31231836d2c19cec121a0d9686ab327dbb8a12

    SHA256

    41d156fd19b438585cb32eac07acd7ea10f2f502941deb3b5807404846af9417

    SHA512

    606a70b824290b4de662a428e0228012e1cea6cd10e8603e700267e84264b49ebd72c57fabe6134584dedd566003d147db9a72f269a1d98ba496e3539f96a013

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1a1540f34ec8bb1baeccdbf9912918f1

    SHA1

    e8a3e9e9e484f2a42e85f42ce036028cbd72024c

    SHA256

    99f7f061ec32fdcb6368200ad9ca786becf082f3a91f8e8b13acdb5375f578fb

    SHA512

    61a535e5e2552693b8198d65662ebb49ab11eb9c2e4b37809c5ee7d99525bd32f4d83f53c56013c55ef7896557d30eb7f52504cfd4b8d70b9938873bf548875d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    39a9c25b5e9dc6b2137c07276213059d

    SHA1

    649be36e0d9644a9c16e669ee3d6af9b4923ba2e

    SHA256

    930c3b2f611a3b8e967aba2c83c3387584656d74207cde47495a52fb07b00112

    SHA512

    0b9f6c75bb8bc71d249620a541d56c0e1cfc41fb918d0f0db6d362c15dbb2a742e31e995527d13a76a581b71be31ba324c8d2c781e0f82403637b0ff7da9f1a1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2eedb06cc43cabd68f1eca41c58eb96c

    SHA1

    27132b2d68765a8954c90b711bb8f101b398eb81

    SHA256

    32bd6cb2aae67c659929625eb96d6c7a422804f7360003d2fa4055dd69a5de61

    SHA512

    604635fc075e5c8fb90ed4ad940fc58324e70e873b79a61c926a5c4663d0081106b2c1a82819aa8707e5f54a2189242f0f8f3aac55cbfe5baeffcb05e5a5a8f7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d54298b0d3eeda2aa847e2fd621aad00

    SHA1

    466a91c56909c0f4b75909c9dcfa30b1c1356e36

    SHA256

    af6b0d49bcb17f027d884ec81024df265a627aa06fe2cd32ba22b61d372bd1ca

    SHA512

    acda5e1ca6bc59ae531533739d0d9d93621966f25339df74e5804475657978789e65294cc7e0d3028e7449333773259124597e42b1bd696e8c9ea1633325253c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    98447451c3b860dcfc21d37968f07c91

    SHA1

    fa220e9a3659917d58f4c29fd9fa000e6afe335c

    SHA256

    8e34eb97ceab4af6de95f4e3c4af3f51825064917d0c2a66bbd6a4483ea7655d

    SHA512

    61913b3933073f6c92a1a814dd1451be052235daba33c987ef9afed25e685072739209b7d0d5bc7d21ffbf15f743b97a1a539e465b0608f18f72e7f0325e3938

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5547c3634f7be3314d0daa2f90ffbb95

    SHA1

    7c3f92c2cf656c3bbe4826fba3ba88dd9efb8a2d

    SHA256

    a9e54dae61623be2abd8cf7c76ec49395ef9efe5233fea2adad049e103d3176e

    SHA512

    180635947ba20ccc38b0251077cd119d7a34ce292ca94ce2738aba81a43fd108603124bb365e642f118738e2a2270a7ea70bc0cd9bec17cda330d2ce279e5142

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d9fce4d970cbaea7177c6f39fb93387f

    SHA1

    ddd67e0cec03336e2a1aa0e6c662f124e570ac28

    SHA256

    1e9cd8209afdc8a0de51b0ae13da3cf62983a5bb5861a2a5b4e3fc5733c38fb5

    SHA512

    0db8d87133cc23d275aa6f28a620738d07b975eafee8c5d9ada3dff1b5b44caaf3a191979279af4b1d062151e56976430c53d526cb48b71772e39f31b42b8939

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8f77d671a737c16217e07e1b98959d05

    SHA1

    e53a3ecd6296ae4a272dfc9ab4acc91912d59228

    SHA256

    7e5087dd24c2f772467a927e52761894235ac3f855b50a7c1630e05e9d21a391

    SHA512

    1e86e6833768719c18538b8e3ab5cdd8d5c09fb9f62c48a073d0af0bbcf2a960f7d47197263f91bdf57c73ff28c0389d3de97b098f0f30414199b9e8a8230981

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b9d5f7fa6ac8639ae6e99646afc48be7

    SHA1

    02708eab92cb9c47cc3483fc783320de07fe699c

    SHA256

    73c4ec87b255b871c1a4b753c86c5926a6db3a94c1f562c425ae9405b1fdf26e

    SHA512

    aede2cd5466e5d6d936ce01826ff2fcaeefcc8be9547b86497448d092d5ece3fedf5c64b103d97aea3cb70bccd4eb6efff3a5e75606a296780a4ebb806adf17e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    734efbd482efb72772e1306d7090f8c2

    SHA1

    968782bc7dff1a7e3a433674b0dbe5801accd13f

    SHA256

    be98fe9e45e8456dc1460f00cad3419f38fb30170546a211f636bee458d09b18

    SHA512

    efd07ecf3c4d600286f99b679ec26ec927a898d41536611858c7ae2579498d639e70cede8419fde249bc4148efa883544f4ebfb7653e85332b9015242c4e590c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    04a1e82d40c64be77ed14d0c0e3948d8

    SHA1

    dace52c7c377ed9c4f6f1fd66ed70d55a3cc01bf

    SHA256

    ad1f2d5a933352bd4e03cee20102cb0cd9acfb9b8f85ad5c83abbeaf3578dea4

    SHA512

    2c344f15714659bbc6ea3799cf843f4c27de3deab9ccf28dbb6b264a8de19beff5a4ebdd61f916d399037d2019652756810a4f08dfef993b0a9185872efac033

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f801f0878a9dcb1ca4e1c83b56b54ebf

    SHA1

    53b358f07847b8d302386831f4209f3fbf93f8c2

    SHA256

    7c21fce6d77066ba19124a596ef1d9c2b50567c15d5f85505102b1f4d28f27b8

    SHA512

    db46e52f64accb397b5e8bb6984bd5ac534b5d57dc7fcd56ba828feb7ba96495dc152c981758e2685696171ea1cb7b89f87e33674bc07d79093228588e5a6d61

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c4d496bad427edb61de80f50212cb2d6

    SHA1

    1bc7dbcb85d05228dfea8308995ae18814574cc7

    SHA256

    766f5b70376382c09a6dce81dcd19db8922d92d6544d47ca221df3c8d090b803

    SHA512

    6329c5fcd31ae2edcc86699f45786f72435021073464a57b4a65039545665b53f0fb1a4cfba6c750d9fcd17b5fe9e6b817ff360541db40d1cdea04e1cb59f80d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6f87d781e1ec46a3ae02f540260e439f

    SHA1

    e2bb21b5015ed385fd2e9a7dfd827717c69f0392

    SHA256

    c56d604fdb37b5e0a8e7fd422ed8f5603a25ac34306f9f359a8c390c42c32732

    SHA512

    fff76be1f6979b2bf5ca687a67d4340f7763195f9b05c2372194120615a2de7d744a79566e0d5b7a7a516767eb02cebd3b64e9c7268dac85e30eef653203a093

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0141acc6a13aa5ea8738856bc1b6f464

    SHA1

    a9827a7cc1068768b2d32f2fab346a69009a63f7

    SHA256

    dee4b87aa36c3c55b2042cf7aa4fd9451dca948f0827853d9dfe83760b37cc68

    SHA512

    89bc442ba7acad73c4da66f1da431e8e14015b30bc9f9d780ccb41ac1a456ec37667a508c85f632981ff9ae185a8e0db267420924c2989da9d6d646ff5c3fa1d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3e5db9599891703966c7fe3866356adf

    SHA1

    456e5663123f479dede689ad1c3f2bc1ff41f20e

    SHA256

    ad646867c52d0597dd0eb428e160322ab3f7a1c6e44c860155fa131b196f3967

    SHA512

    46f1643d4d9ff936533f5f193c5d2563b334d40e84b3ddc35f888cff6df8e62955884c47d1bab75f6fad346ee81425adfc0d43cf63e3bb255b31d1fce7d53865

  • C:\Users\Admin\AppData\Local\Temp\Cab4C5E.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Cab4CFD.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar4D11.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b