Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    31/05/2024, 22:25

General

  • Target

    8890cbb69585e766b1fd34ca7c3448fe_JaffaCakes118.html

  • Size

    121KB

  • MD5

    8890cbb69585e766b1fd34ca7c3448fe

  • SHA1

    a171092348d6b2a55533261be1da0c319837bf66

  • SHA256

    da928f9d1ec35c3925dd3760075dd16cc595570228877f3cc9bff72840edaa8d

  • SHA512

    db3a8cc952e6ef9471b519b2ac2aa14909a487fc1b7c3cdc63f6d3b9198ecee8a055ac5bd2d632afaf8b7138b8ff7a3f00b369cb4c64f54745220646f3e5e743

  • SSDEEP

    1536:SHALXyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGL:SHATyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8890cbb69585e766b1fd34ca7c3448fe_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2356
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2356 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2108

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6108fe1f4ab4c0414ea4c8cf2bb533c0

          SHA1

          02040a02cf6d471584b354c286e51687d8bcec37

          SHA256

          2a200d7e1489145334a460155928b36eb4e9feff9af8a1c31cad6ee1766e4b53

          SHA512

          941ebefad0957fd2131333e735e82c19bedadd95ac53102591d31ea83b2a587f5de1a920d7cef092004a50152fb2ac0b3eec3a0d9ccf90c66622f2a2cbf0b68c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d3e43e0180838e70574a6d1b9938de82

          SHA1

          533530af9f938947dadc7b200b28548ccec0450e

          SHA256

          fa7803b6a801b284782204e04aeb358a9f026bff357761b6e382f91890957b52

          SHA512

          c7202d800b959a3a4a71ef3647961187e852356eb2be48945377dc3a58e8bdcc6fd893c665efe15585bc3f92d7c45cc5ab4e8827c3b17645cf51b45320df676f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ddd4b988c7d2843c9a5393fb1657cf5c

          SHA1

          896e9703bd2e401c9428ff5085481d12dfd1b67b

          SHA256

          d77c459566efa465f50f11998cf427fda61449b3b9a50253ec2c45e5370c9681

          SHA512

          89c35940fd88c054028f2049a741afed26cc9dd469a2f29c0fc9668a2b41caba59b7ac2628008350afec86d7faf92b4f52c191a98ade5c14fbf3ae02ab2ff736

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8fff4dbd0061451d7a1dae91622f268f

          SHA1

          5d0dae8e7b377895332ec2c6031a2dc6bc6d06d3

          SHA256

          82def6a490201330c14139ca3ac2129a4c6f264c4bc42bbb614338f058e37cb2

          SHA512

          a861d05b6728a36065cebd184c7cdc0352319d98135beedd18fe76a2cc2c5fa6c0f61fac1fca06134c85813e174d258d84a0390c9d0d379f911ccbaefe096700

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          61a829e52f77112ba8434c879dbf7b32

          SHA1

          1bd6144d2a4aa1178c8b692f1386dbf9fce2eddc

          SHA256

          6249f4f5322d28733644402d954c48ce963cccfd5513b483217cf788c023fc1b

          SHA512

          6041ef0015ed986bf4ebb0d550ddef16e669ed54a4aedebd8ea9f7253f2fc7e87f1d8b1242b226ede05c21cf7da87b61bb6274b21ce9c8df44ca1044d5576119

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          309722906a97b89bf351b7afe0e9b5f7

          SHA1

          843cca5ad2b856975c5c1d0d1aca34fad435909e

          SHA256

          78b32276d284b4f83733833983c7ca9c2b261bc460cb87a93b11c7f6e35eecb4

          SHA512

          89f69098536754b829107526663009581d3fa064c3155521eb83dd7f4c66b3a85a6d12447146d284adbdec6cecf24806f3f15ceabef87a2f520ade850001b340

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          db65448d1fd4b27d0f2121f1fbd43b8f

          SHA1

          4763851e9218c4e73dcc0b6db4fdb6d11ba8a446

          SHA256

          d68546b323dc55cb794cf73c2366262bee23c3cf2461a7ffd60c5cf056036f1c

          SHA512

          d1a5e2e6b5f3d13d84d6d1a1b7c7f96ec7dc6a48c1dc5717f9385eab1a3fb2a036064ab4a3fd56d60bb6dc64016017c40c98e78dadfe838df4b95032ab0d8761

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0c83007edd78f05627cb5247b2062b12

          SHA1

          a10e7d7c1062931e336894062e427ca37658a518

          SHA256

          2e3c9107d575c0e1a8fbf2c3a6878a077c317b7ee8f737ba519c8dc9c94cdae2

          SHA512

          17138dba86a115bec9935b470ec23d9dfb2f49244aaa44b2191d0e62561c3c94821cfb806d9decd1a09d9cc024e1bdd0d33e101254e605a87a0cf8110ea9b0eb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5d6dbeb1529625419e182d225b575d0b

          SHA1

          d51b3caa92407dff683db68984cd587bea757d9f

          SHA256

          7c3d30f54d0f9148919a42eb12fe0176a4753c750077c4857dec5532f2414ec8

          SHA512

          19c392d0c8d6ff721b207e496e8a55918dc8e336756bfe08cae6cb4d15cadf17daae645ec68d0c6d8c74e7354509b46e0e79edfaddcb66d0e7855da49fd5f024

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6abb795bf1bcb2a487816a401a25e87e

          SHA1

          4b38928edccfc0acaeb25c8feeea1ef423614fb8

          SHA256

          97873deb9e77faa5b511037aed6cde8efad1ed60727feeca3330b88704527dfe

          SHA512

          46fa93450d8fcba91c21b1fefed6e9f5c1c8e39b17dd04fafeae93ac5e7d6aa3ce3ca6d3b03590d8ef45a81459a6e54fdc4f4e14003a1e2e069b57c0982e5b42

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          962939d35227c8a7b5d4e899b90778fc

          SHA1

          3348821b4d86e79fb900102410fbea6dc185f322

          SHA256

          6f361c3d17caecc40f319e0e422a57956e83a5b2d7ab2da97ae55c3ae73aa148

          SHA512

          2d044f797962e4e2805f4b7929f7d6cf2d5548759b7cd8a5383e1c15706864f268dd4c8efce8d1df9d47bdd3c17c108d95f6bf3c77171018a64abad2aab52939

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          612459b6b09fe024b655208b77ae8707

          SHA1

          e7ff81bf31a62886c2c299c199a1853e70b04cd1

          SHA256

          1b8bfb786c738220b838ffb470109779900aba8b9a9d7ac0e7faf3a274a4c492

          SHA512

          b83b89050cb20b35212279494383d0fa237399f339b7b325b3353e2e8aeace60d79bc9f17712cf3aad0ee0ecd950308cc9e3694dfcfa1113951aa3608bb7dd1b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a50e192fa74242e4e1e5eadf23ef710b

          SHA1

          863e11d112a302d30e4b77882e18c216dcb0ef52

          SHA256

          eb90051ef55ea6776be73ec0ca3baea9d1867093aa88b6415e8e6671a715b1ca

          SHA512

          7704f936e3f0ccdd5ee9d8a5a63316961ded090c2e8baa11c23caca2e318f3f4441be8c5ec5930ed41e9eb019961d59011fdbe6e02a9a946c282400c048ebf26

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          73a3f6010287dd53e59fbf6fb78ef537

          SHA1

          ee8945abcec9ee25fdf145614daf5495c2741897

          SHA256

          7c29d8eadbdf4e07d68f59cda1dd0b7e65a1c9ef6a18b0e26ef1ea59d8bae674

          SHA512

          94639e6808e2eb9eaea9cee120e383ef2a0b1adcf9227530ea00481c1b638f0176c71645e103a4eaedfb67402c5388174ec3895620f2adf07e4ab6c8a725aaa5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9b90be80ce3a83e4e72c36e08a8afc0a

          SHA1

          b5c44cfa8da0431e0fbad0037e7144efb71688d2

          SHA256

          214737a91b2ee79ed79cea8a907a29c257ad1a078eb913c9caefdc9dae4378b2

          SHA512

          32760976bf944581427079b2499afa4b0faee1be41fb0836b65b5a7cb73dc02eb3d31991ad46466a2396c2d2f523dc82d5ff4fbc5bace3daeed780fa22001892

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          23b3f46f27e9815bdbfa99df331166ac

          SHA1

          1b1b2834ce13561ca733103633b152be897cda4a

          SHA256

          4bf92eef59df39ac854cf034fa56c8194a641f5ba4e7ce3badf81651cd5f8fa4

          SHA512

          915cba48d7ebbe7ede755a5e1ee1e81e726a796f1186cd0a47a3022126512bc928612e266ae615d2d12750a71fe4933ca38923807ff7f49143fe7231bc0d5d87

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2165a6a6709597b037fd00eaa286469b

          SHA1

          6a55ba70d4c0c9667637bff2ad8477e54323192b

          SHA256

          0994fa5548b545ce4e9d8b8bf9102594f400086793c3d5007b91f3541504c75e

          SHA512

          52fa6aca6014a6f4d1b8a098ec37b0af0d83ad5a1bf75cddb2564e8a0303aac3e404005bb47df8a87974e140c467461c5f28713256419a615c0b02f4299ede67

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          192814d841a3e34cc8ec57d36840b347

          SHA1

          7818db47f92015d904914b6d17cf9c7e3aea5ba7

          SHA256

          6b788fce9767b1f9661b01f3fba04c7cb360a4d1982f2fe16ea5d47f0d3064a9

          SHA512

          7803345a2c05d595c4c2c4d33b27572e933890d5ccb31607e09039525d22a86da9fa520083e8181ce4def0191fd281e55bce6cd8d49fbcc7939347ed9870ac00

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1f07f41ef688d9debb4d7d36bb6a2e76

          SHA1

          c31743f5e83ac2644d993000c12dc23c3fce847b

          SHA256

          b0ea33dea73cedd4b336e33027de7ee9e9ad5527ba7eb9d7414a7505ddd306a9

          SHA512

          b0be31043a3eb00d5ca0bcad397afd3c242046797a61ada260df5becbab6a36941cafd2e7ae8509bf3ce69549db3c52f8833139949509aa266b5b859ed8db1be

        • C:\Users\Admin\AppData\Local\Temp\Cab2CAF.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar2D80.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b