Analysis

  • max time kernel
    133s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    31/05/2024, 22:25

General

  • Target

    8890ab738d4747286fd24fdc3239ec71_JaffaCakes118.html

  • Size

    945B

  • MD5

    8890ab738d4747286fd24fdc3239ec71

  • SHA1

    960a47f7ebccede27d93c1e6873af56e1d971377

  • SHA256

    2f94a1203089a41af85aa220e834737db8c5ea040847ec9607193923c6bd4174

  • SHA512

    374e7c9725d05d305eee8e4b9eff3bfcd117193a2a850fecf0cbb8a4f5970b2056322d515f19cab2b199dc6a9f3c0a1f25f1089c1a66dd1447c70354ee584109

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8890ab738d4747286fd24fdc3239ec71_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2968
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2968 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2528

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          fde08f1dd028b5eab44ec1f558dfbdfe

          SHA1

          134a67151fd28c05576ccf2883e5655d2aa8a55d

          SHA256

          4c5cb1f166ca572d04e3d873e61f4c0fec682864fb0604be17c93cc17429ffed

          SHA512

          7197c07ee5e242cfa2cc7426f003caae94cddc6ae3b81801791a251706b39780ea81cc2a45f87db81a20194db21463c8659b06c4418993efc150a3f513f7e362

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7cd193f797946c5a2c1abb01e44db423

          SHA1

          176b80aa7636e49f8ed62ed4b87ebe3971d689b6

          SHA256

          b8be47045388db3da56c86f53ffea9a5573acac83e752e9ed29a899985d78ce5

          SHA512

          ecf2534eb865bd2aed27ea91514e0c10332e5bf3fd59fa2142feeabe86ad9a5e85c6ddd7f83e40c7e232658810c34c683c2e459d070d634e80613eb700ed257e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ed40bd2efc8cbc4eef6a28591d0aa576

          SHA1

          02228bd123b29c7cf11d08def4fd7c3c78419e2b

          SHA256

          425b3c941a8734b97e1800f9ba5d8f89cf03742270f292c33085053189ed926c

          SHA512

          3dfcc3cd8e9a264cf7c95f215e761f39e1d44fdb8c64eff30c37763f656c2faada2b8f9c13b1f7c26d0d8a9fb70b6c04bf772fd8a750c15d776e4029115623ca

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a5e8f1923fff72df1a4c41c21dfae88c

          SHA1

          956bc53a1421168e7132ed3e897e12b62efb9a87

          SHA256

          022515323c57a8483cc66784cd8c090e6f1f20c0b4a156331fd1587aa5a9a926

          SHA512

          304b437403864bbbdab6067628a9425d7c5abb3a3f389eb5ed3dede08c1a9692371d901f252bc78d57c8acab1bf97ad6c0f3a83f78426a13063030e6df007122

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          296013d903d31c0666e06d706672b598

          SHA1

          27f51b79c7291181869fa11c90db62ed68e65222

          SHA256

          e3a65072c23d830481fe775e4e81c70bbbd231c42d0935f2eca4b3277943ab33

          SHA512

          71c86b8e747696b2fc176bb76577059a8a5c458dfe95a8637ca0bb175b8d905123505594cfc8539580389e656bf4acb9e18a6f0f3a1d1c42f0f18a9daa3dc1b1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          15f4616fbec582da5287ff66fa92df7f

          SHA1

          be3dab0032f26f32219907e6e9bf28718e2a005e

          SHA256

          289a8b19caba04cdd8126fea88e4a4aa0c4ac1fba8ea96cdad1d5e287e60f83c

          SHA512

          3e07b58b848f78c837d0a30a42b0ee6caeea1c05cfc5083538d7e094e93f425429af30204ed67e3a9def62fd622635849e519b0f0d62505319edf5211076e4e2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1b846b82efc118ebfe313ef9d68e34b2

          SHA1

          25e26a85ed6de3729c714076112ac8d9346b3bdc

          SHA256

          8a8cc54f101230ca8320a67e8782baa6ae5624d94fd5beee6488e5caddcee83c

          SHA512

          74da98e0324d38c361164178a964bf4f93e77fc1b035b908710f1e82891a04b854865e9c6023e178783c13aebf48ee23ea432c8fd9e91d60b98f9007271fcf9c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1220bc7b3884e7dfc17a59ccd410c297

          SHA1

          24ff61f3367af41eed94db04472e13ab0dfa2e5a

          SHA256

          607da20308ca4a65709a4401601c2bb8c62c7b5ab9b6e25d56ee2927aceae464

          SHA512

          bcfa957e40aed9ccfab7889192b6b40dd4737e080f02fc71a2c320294b957b1bb89aebfd9de0232e046c03eba74e21f4ac1ffb36df3eef51f0e83c111baa8349

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2a8c98c798fd4641fbdb2e8351ba9093

          SHA1

          a808ac5fe3ad6655b98f30701dc5efcf38381b00

          SHA256

          44c399088e9a9c49342af062c2256b76ee4c601e3faa659d7ff7496963c0e359

          SHA512

          e2c21b02459d451976fe5b5f1fd2042269c7b75a2ed5b0ab1afd3603537a229519dd951671b9e2deea8c9712fb5bd3c392bf2dd5999bdb94091ad0655a1d9908

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          05d708253d7c4188cd216c0c9cabc04e

          SHA1

          8118e31721c0057251610dd24f1432bb03524f1b

          SHA256

          e109033a85418b5e4a69d8307e93d60ce3546257315cf5b49292562e32d8ab60

          SHA512

          291162625b49bbc564abf2b67a22970bead8e85fa760864d192f73ccc080833baf9285253df6d68d682668caeeb9b1a978124375aa6600080fb478cb387563b1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          74e39612b38b6dcdcb6e40e385c8d771

          SHA1

          48a7687e86dace6d2ddaeeeb1ebcf30805e9316c

          SHA256

          e8089c062ee48bd7fc8c066cba080b5c5d32609cd05c8bb40d8ef7d844ef217e

          SHA512

          d3425a5bca43fd1877dc5a05af2ed993beca5b5b5fb910744072e9fc09802e0de2805b76e045156f00d81e51337c022cef54f0cbee820208b6d0971c6250a3b4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cd72b107ba7cdd42fd1bb78f18110c69

          SHA1

          3fffb9938bb799a752d82111a752ae36830f145b

          SHA256

          d42585d92a8d8e1c38b89de1675151aaabc7f31c55f9097aa280ade4fb8e38fc

          SHA512

          09e2d8e3c28bee217f9215b235136259632af5fdb2a7401ede34fd534a27caecd1fad9bbdf730b8073a3fd5add4704f0cf82c63849012dc8ef74a74cb8f5e08f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0e65a596aed8ac935cd542c2cb490838

          SHA1

          bb50cb7526b3913949f2007d95dceaf26b54d29b

          SHA256

          75456af27459a3504680cf570038509485f308e4c0addf954bf43ceb93869f59

          SHA512

          c2115d4ec232b4265ba3e05c7756ffa5cbf8d95c7228e2587920752eaa6611c2ca021863612313fd4ce7e3fe1a77b33d0b1d44412cb9da79343f48ec8d5191c9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1ecb824351d189894c291a05329c5ade

          SHA1

          c57ecf68bb98479ff9f3370b409c1dc3a9cc0adc

          SHA256

          5323e607ba7726287e53728b3072613c521740163cc0cabe58553d208aea8e53

          SHA512

          76297a2cf39e9f9a01490ba9a95d7259d94f343e9c509bc621ebccf4149328b2b9c004005f76ebf1aca75e8c52e3c8996f0ba1257ebf59c458a47f58292d0e9a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ca4964847ecad3ac897bf04b3ad709c9

          SHA1

          60105f52d4a2cb577046361296a45eb8a147579b

          SHA256

          d5eed6fd532164ec44556cfd4f5120ddb84fdef81f445ca92226dbf1284596b3

          SHA512

          6b0883dbff5b87130bf09e4965d3a8bdc764cde7cd5df9eddf645f566424f7a8d504d79f178afa29a4f2b9cc692b6243716f17630f9af7b893716c627622043c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          305a18d6d1338f41c669a9f7ec1a8b64

          SHA1

          93a609eecf34e9e24364431ec52f948dd3935766

          SHA256

          ae127c61f820de5a60fad99b0e87c43427979d46841e3277251e499da4a586bd

          SHA512

          c1861b9bd293d5b5f731c0b9544af7e08b1b470533134883613ec94d6b6dddf2dde4a2820e92224b21b66f23e4d07f41f1dce75e31085f1ba3a6c0948c2988ef

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          eb8421834acfa96cabade9e243913a1c

          SHA1

          42d00fb9a4f4baf9677bc104f74803859609dcc8

          SHA256

          5c87d934af6d170451db97a3bdc7ef9f4e21dac71f74842e45f386217578933b

          SHA512

          2fbeeb73c4b6f9e8df74ddc5c70c9b8705f6613ed2c67ceffcf8a18e99b65ef76a3bf3977d33d109787586dd5fb139a327f5bbace45859fdb64968aa116d9fb8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          fa8861b07214177c6c93252a155f457b

          SHA1

          75b8e05d570f7c9e88b21f3d911cd27fe4f8ec5e

          SHA256

          bfbe7a1102f0f1616e01ecac8257fe18340ebbc687339abdd2fcc479b9f1c37b

          SHA512

          ef22e7c50a493829e9b55d6e7578dc1007e4a29659d027f7516ea34598932fce4309819b9329c101fd90af39363ad6d865db879a7cfbe46e21918ce5ed8c2a3a

        • C:\Users\Admin\AppData\Local\Temp\Cab2B19.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar2C0A.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b