Analysis

  • max time kernel
    117s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    31/05/2024, 22:25

General

  • Target

    8890b9d302456348bc95a61f8d05656f_JaffaCakes118.html

  • Size

    23KB

  • MD5

    8890b9d302456348bc95a61f8d05656f

  • SHA1

    824c77195a91229bae239464d08fb83d7e958a87

  • SHA256

    e7ac9d461c1ea56835925cd3682de76814385e7f3f0c5f4d3799b40f34fd21c9

  • SHA512

    cb1099cf17c504c8029c12ed088e8600a4036576d069a3f86c0c54045679e68ea51237ccb7e2bc73fe447d8ddc351c0b630917d6700da33e2187181a81b7ff7f

  • SSDEEP

    384:rzUBb4QYZ4tt/ixRLynKQc/4xAqpbpo04P0AQtv7nU50PTcya:A4Q+42xQnKP/4P5/YaU

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8890b9d302456348bc95a61f8d05656f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2772
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2772 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1636

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          39e72301cac5550a426193a4f90a8191

          SHA1

          031941875b70706db6e0c215983a23836d829895

          SHA256

          ff2e1cb2c1e7ac3098a63cda59cb020e25901f66c9b58eff55e3ecde9924ca4e

          SHA512

          50d5b5d56064a583dd06eacd7b0d705f3bbb7ba6c3ba1e23b80706df826c3447b186ec081fd5bdedeefc457755680b90dfe6c40ac49577af5cee60e6e0d9c589

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          af975d20cc0503ededead9ed8970a9ba

          SHA1

          59910ced727a5a9038d353bc0ece301e4482c5a5

          SHA256

          ff3aaeff12fd7b0056b438c67670f291e8063114313c2fb24aa4c891e678359f

          SHA512

          c2a6e1f4a252a50df0b22e7b6bb8233501243e2d39360c30637bd2635ed1dc300712254cd8f2fea17a68040d4de5ae282981c326bb38af2332f55f98e1a522c2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d20abc4105fbae2c443485d841e54165

          SHA1

          f235d77be9a4f7e070168e32f828beb0beca34a1

          SHA256

          10c172d7d6bd25df90806bb66c475b5d0957ef2f02b990d0d1baea27e0bae0ca

          SHA512

          73512493637fa1bfc5225cf5c559592dbb8362d9ddac4e593cbfe82a696c10a45b3dce0f166f14d1ea5e8121f66f8a2e8ee33c1f397c2df4b2245a383a7e1da3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b1aa3a4ea8ec0090fd438ba40098a719

          SHA1

          d87dac9674e8c7363280b708c9a8a663f46e3033

          SHA256

          b3540d166e68d43d4fd70f1f500bfbb1da281b2a5a2a5643ab37615520926c53

          SHA512

          f39f0445597f963a64b2aa3414fae0fbe6a2026d0b24ed461d0831e5867786ca430df30e8a257e1f52012127a67d471103d916235011d34f50f0e1e601c4bcbb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d81ff212287d193213d53d9762c080f7

          SHA1

          c2d607bc68a451e70e175d8d80c9a6cc1f363a91

          SHA256

          30197f3237c6dac51724346fea85e9310e8ec302f2170b29e91c7548a66ce798

          SHA512

          cc361aa06d05193be386bf34c72a65cbc63eb8f72461e88e7c2e065e3e6980425b65eee3a4976cee72df5cde20df19c5e0d6a9aa6f350031c845794e37a1b155

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cbc6c7f16ec610eefb0f4cbcfd328c35

          SHA1

          373639f94ed0576b32fe76a03e7a2a9734ee15d2

          SHA256

          558242d739cd8a297ce273ff847be6bbc117fde277eb9dbd720021d915111153

          SHA512

          dffc8b7f999b073717a875f8db1c51f97c2bf3b76e915b2c6908f553fe56e5279c09614253141e68abee2ff87249b9287f51063fe91019d3270ba30d5295c730

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5b7a5b61ba812512aa8e86bc367cd4c3

          SHA1

          ab9b80ff5c890d16682b8bb97162504ff8f8156a

          SHA256

          c690b9cef105d4cf4949eed55ec2dbf4c28135d55b3b6f2e3486140e788f18f8

          SHA512

          33e2f6c22dad3b28a1a9d1c81ee2348df76b76b8e753a9e3137e66a06f6ab308a53430e9739afd29ee26083f2ae13fdd8e69a2933bcbf726028bf61ce582be1d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d170a58bee30aba6a8d9eaeb48d56b84

          SHA1

          9ce8263aa3faf7ee5f8ca5cf1f21dd94b59cdafd

          SHA256

          6a564754195215a440602c8421b8badb97523fc1e54b0c01f6ae1a4d391601a5

          SHA512

          43b7f6d8304d86a4b8a7c1eaf68b7f9eba545a8c88088b27a97ac89a94dfbb95210c549a9aabcc6d6b256e35b47134e22d82635147049e72a9faea3d5e66dc38

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3052a533be59322719053c251cd493f4

          SHA1

          e4ef26768626fa3936c7ff7d192fb0f2683c6a1b

          SHA256

          a76ae53b4b3d10088c201283e5a0fa2383f3403b4ed416d2c43704dbc465b007

          SHA512

          f9f04257dc749ab8c23023bbb3c3a2283c645c3152c912f641f01ab11037c8fe30fdd113c2def093dc6af0666823c08b6d26967b2876bf8182da625c3e9ca6a1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0284eeddd74960bb161de6fd431c38e3

          SHA1

          4c7300ae72ac6d8d6aa30761f27a60417cd023c6

          SHA256

          97867ab46142f531159361c7e7f37462da33c8f3ac3b03894b97f36452b754ad

          SHA512

          6e75cae6337cb28d2930ef88e00c6371463fc517caf2d6786d5a384dc05da11f5a797350b270c73628a36f8a9fba52caf7be2fe2ef2526013ffc5e2e53da84a3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          da46877a1263c4f6d006359bbd0849e6

          SHA1

          2423242d0962b1e5ee0be4068611807701efb95c

          SHA256

          6456e545397674ee4d64f81609953c9bfb2bade9c2e5e559f5e655fba2f42d58

          SHA512

          50e12605325e573a25d0882d6706e1c59747090ca9418544e8abb765a857ec198917d6b5b97c428d3df75eaf8b4e96193e44e17a314fa9afb568793c9acae6d6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5220c3fcaed52787dffea7c87afcf0ba

          SHA1

          dc9a26da5cd82f7dc1befa07de6d32acf57c184e

          SHA256

          e86d050429b3e677c675ad2971e9f0e37309b54616cd5d60beedd64cb3a5a0ad

          SHA512

          ea078e18c5e476d35a6cd318e132c33c4d59b1f7b7a28fdecc054d52b058350f80485ae00e507f6d73ef07102256fa20e01a0ce053b2842aae5532e2142efbc6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          aa6e803a53405eba301afa5275c1fae5

          SHA1

          3b777ab448a4faf6aafd5ebc8c4ab721fd895f8d

          SHA256

          fa2be564e50484b163f6a178cd0cc8e05e881303c0b2728b896287540a7c7d23

          SHA512

          cac7f4afc3e6a8f659c1ee8558ba47fc980e37ac96197c74f283825dd74a5e3786105f4fb155eb28aaa511033fad9f0df4620c59f9cf7ea2c42312b957de91bb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          15b25ab423edf7d24d8ccd2e725b091d

          SHA1

          8ed27e05203b11e154778b2c97511d48e1fc971d

          SHA256

          b345bd8315e8cbb071299ba8c89bfeaa3d7cc30798d6ce10ef978a733568d39d

          SHA512

          58c612c0351edba3bcefedd9c08eb31e7786e2da5b8e49584c6974f8204728be0412528585a404c51a19e9a62430f03de7b154884f1de6d5f6d5d664903e0690

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          847429bf05fbe9d9570b3a6a71cf6792

          SHA1

          fec56abc10f64645619f73d69794834dc7e27597

          SHA256

          cbb829f0ef9602f7247a2491a531f40bdab72167f4abba9b0fedbc0958774398

          SHA512

          53471a0dd6832314a85a92f4f6e228700df839f09de2f332e47ce158cdaf211978427f1cb6e98777feef4a02f9335d304a85b9e521d2304b39ec664fc0e84a81

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3b17b8cf5d161d4677b5fafc68bc488d

          SHA1

          701d231df45eae2c95843889e8c60c58abc56108

          SHA256

          71f5d6a894b2765cf7e5398b5b1fec3b69403f82937a9c0b9a4bba778bca0735

          SHA512

          cfcef34a95e6964fa686f6f2a3dd1443cf1899146780ab43b4603372c0650854d2f84dbd3feee7c1103c2535943e667b3364356bf0ea5e9f8dd97198174fe8bd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c9142e81a5efedee3eecaa7e842cb5ab

          SHA1

          9ecdcbbe14931caa46c999137c3a499bdcebd48b

          SHA256

          952ce90517022048113b97cac76e2719b3114a3ed706a6f31b8539ad00e1714b

          SHA512

          c469341bd6a0c5b32705b5aa5c106701f13063c79c84283bbf7c664d0340a2f2fda4eaed27436dbfdbb831f55a8af3779c1731e197571692df1a74fc2a0990cc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4c65ef8f2dcebab0fd79268d9b20bb11

          SHA1

          2fc7c2c6be6826273074f6b5c8d70dd84b4a35c7

          SHA256

          8e77addb17c26444a4ca9d3a8a1a67b8daeaf89d50e009aef82ce021469d8d27

          SHA512

          eb9a66a47665eccf8eb2edc363a530f441451762e2277061b4a5ff804bf5665818fe368a3fa2a40a5b54f7d28b2b6c3c99fa968bb8de604a6204a5aa14ae3f63

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          96194b4dd5c821e3ed52b1cfd9246280

          SHA1

          2c05534e3a537ad0c75251a4303883ea62db055d

          SHA256

          caf5de8f323d60be85cedbc7deee1211346ceb93ef0daa92461274695bebebb2

          SHA512

          1af860d7c1e19d06fb460d6d09ee245de109408e4ac6e4788abd3d56805ced0f686e04803c00605d648febe2a2e96683c4881c4d3fafb07b8c76f5dec282f0a1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          24617160a9184b9327d64c5d305de973

          SHA1

          4c96254a376c4bb2f3767effb32e192cfa3e58a6

          SHA256

          25175521c5ff0876cfc898a1e8ecf7e75e3aa226bf7f43af350c89572ace1807

          SHA512

          3a825b6c2cc70fab693d95a4624754c43b56f504ba212182103a15aae70295bef9492c64e86fd0819128ce40b3aa07c92c5a9429bd993fc65e4e6645e9473be3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          31e69b4ab78e55cec56bd1f546a40ead

          SHA1

          f9c2d960a5c5423197eabf62159bf33116d7b241

          SHA256

          d62e60efdd42b6d2e8d37baea74502d0c7a79b1ba3d26cfe35003e420af877de

          SHA512

          a54270f914fc2cf748c456ceca36d70f09514f0533d91011db1cf50352572e082af6ceab123ccca96bcebb15476cfdabea0b576941f6b906c34f59778f3a16db

        • C:\Users\Admin\AppData\Local\Temp\CabA8FE.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\TarA8FF.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

        • C:\Users\Admin\AppData\Local\Temp\TarAA2E.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b