Analysis

  • max time kernel
    120s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    31/05/2024, 22:24

General

  • Target

    888fcc6c4ad08daaaffefd5c9495f975_JaffaCakes118.html

  • Size

    13KB

  • MD5

    888fcc6c4ad08daaaffefd5c9495f975

  • SHA1

    7067c27d3069aa02a4709241411c8137f453daaa

  • SHA256

    82a3cbb0c1f045a07f42668fff527703c198d19d4568c58670a5be32c0be2735

  • SHA512

    a617c5e5521874ae897158a3236e2cb1ac0410b78b5542bc49866577ab78b98be38817615acdf50d5d02e27829967ac75b36aa11e73949290b796fad92093218

  • SSDEEP

    384:3c6qPVfPXnu4FKFrBNfwtOeqxRXEzuEm8VjmFP7R9k:3cXNfP3+HxezuwkQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\888fcc6c4ad08daaaffefd5c9495f975_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2752
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2752 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2560

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          0abcbd9749ddaeb72475b23fd48a81bc

          SHA1

          491b4754cbed8151138f04156b09ae55735f405a

          SHA256

          a79c194e2f8a3f10c4d1617e68822f16ba27bcc264d71f0bfa45daed17903d1e

          SHA512

          0af30b8525d995f0bbba86c0560306d3a29b65f4d0214d83308e5604e1c8ee7bbdecfc1eb6ea2cfd6ef95e920f38d3ce14e8c0f46c202ec356cc31c7405bdfb1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          21b52e4e96457c2378525b68ef8f3a40

          SHA1

          4abca712e9e6b0d3bd3ea1968bc7d0ec3e4e87a3

          SHA256

          103187de6be671d7e46b996a194e19dd81b7280fcf4d6b5796981a3a20ef6729

          SHA512

          3fa57b0bea72a02b6ae7087d40652c4e114a2950dcee3a7af9823143ad030b1be40215244d751e849c232086ba31feb2a0d24a3143d9656576d98984e4d4ed65

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          064cf1553157991714cb15f4a0da2d0e

          SHA1

          5f4869cbdc783aa21a64801cee9079ddce9da1d7

          SHA256

          d81913dcc203aa45ce74a72ed2f8ca400ce959c7e72d54c83e2563c2fb71bb31

          SHA512

          5e734f33585337050525c3679a4839da272ae421ceb0dc5a003c2be6c57da816c19b84908e79bb3371eabdce9d4ac547d22f6c4e24c26d6f538b330710cf0544

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9f15a0e38c79a43705c939cf04dec0f9

          SHA1

          a2925af631217c6e539947c96d0c8a3b5a3ca5e0

          SHA256

          05e32d474c8e20b7ee9386fc3a82fafbf1d4ca0297a66b3a90d83d67206981d2

          SHA512

          b9111b6d3947eb8f27c90db304260c82eeaf473853a44fb53150c23a606e6bc1be5dcdd7d3d238d202535751a13108c5f0b46dbedf18b3c87e32cb427cc12e0c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a7ed12b59a1f744fa3233d0079135391

          SHA1

          deaacf704d0071e90d5059cd51b612cba7b4c2b8

          SHA256

          cc876913a3a72a486d6893c54fd7f8c4dc4eda90f4e58278329c7bb696017b82

          SHA512

          5c893c40dde9ec5b378b1909205e79c90d58db67e04f9c78fc5c711f9bb37213fb8361592d187d991e0f985e09428d2d106adf708de6478c48567a4bef88deea

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f4e6f429353d995b94995ec203bc1b16

          SHA1

          7ba403b16e4e566567d5aa9779df733b02c9d1fc

          SHA256

          41f656276b25707496125002dc1a94ff32d6f708cea6b651436486a96534269a

          SHA512

          7bf2d98d042c172799cc99de333ef1cd006c681c38a1788d482be5096eb02ba20c58d29fe13c4a16dac5c1de5363a020dc29fe4f4d53f8b4f3fa3e9ddd1e0ce3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          43258a076fe1d35b6f100be1b000f94f

          SHA1

          6c6f96e6524b85fbd8200a82926ee699988ca227

          SHA256

          e8d74039154b3ca328de97841a620e970014ec3e654c6a3c75a22da660bcd693

          SHA512

          182288d1da186274c5eec5b1f8a5e481210407da2c4442e049823a71fa36242ae47e8673f7e846ac58dfe31dd1915897a5e21eb983335c3b95a3c4c27bd2b7e1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f4ad8f9ae5b78038ce74655bc9f4f430

          SHA1

          18793f2a155993e34e9a9f7b6167bfc8d8c50a43

          SHA256

          7cdf8faf6998350a05376ee7bf43d84b15a57ddae378541591038943ca769cf4

          SHA512

          2f2193fd6f23c1bc394a45b1c4040f72b525e0e657dfe0a9b72667ee7248ca3e72dd86c3e1ce03c735071b3459f5f49b35bb2b73e619560524426c76aacc9370

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2c74d0313438f0cd0762945652d4512b

          SHA1

          84b8e134e7a860d736c1ce8712a147a0633e7bb6

          SHA256

          10ebc06140d5efbe444213f53e7d29f13cb9e67960fb4e5d50aed3f46c53d01f

          SHA512

          6eda57f72605aea97ce2958375c747ff3b384925f12d89086cc9d0a3aa32060539746e22e51c1d53b18d4d82c21d4d31bfcaa4e45bf61ba5b43888bf735d532a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4ca46fb16d68bcf481893651c19dab76

          SHA1

          dbe4a8fe1b8df5ad866682c6e3225c32cc92a0a7

          SHA256

          a1a4167317b0237d5abc8c6504e2c750472b6c5797811a45f74b0b68db1fc4cc

          SHA512

          8cfe4f2de8dbefed48a30db37567d71199aeb3231646ac0190eb927adfb26e0f2bd2a527c8ad056c15cb5eead20022645952fedeacf232282595ae1b629bcc72

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          da1d4e9ac73673a410c5d5fc14424901

          SHA1

          e89f79c615809ebc16c0929194dc9d53b3804296

          SHA256

          c0a3f90275209fbe609b2a72d261b7b50b7819e54472da04f4fe41b85ade2c28

          SHA512

          001b0fcb5d28b9747d82774168b34f27ec2e79672433c232fa6846435b597ec2c0f6a2a2d59fc4b4b0efe0955cbb5b2d74e2d507be2c56c7269187ee4aa2f92e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8da5b86cc02985d2dc20d73bd2795844

          SHA1

          7352ce460c8cf34dfb6d9531a7d7a1eb49b8555e

          SHA256

          bbf7340f7bee665373d495fa307c0971333daa575f5ec5bcd77e73a983a8da18

          SHA512

          82c51ec2edf87c728025c13696528d92d98fa8201720e4b31a898593dcbc2ed0c9970955a67b825dada7ce48a8f564a3d20ae8789a0fe9fcd2acc5008b1d1f90

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          47575c864a095e024f290a45111e22ab

          SHA1

          1228a66d19e922ef6b5962b2c0ff6742f2e7b3e9

          SHA256

          416558e782e80fe5ba4b8786ef49085c3446b9275f117f0faa8ac5e01fbc0ca9

          SHA512

          69d875871d526ef077e769c366b3b59fd18cb4cc4bd0f68570c85415c752a1b13e8c2ebd27fd3b99f605062bbb0561fcab12a74aa1708ae8f374f4c62629f8d4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8e5917a01ce1a685a768e60732fb58cb

          SHA1

          d930adf32286538651b3e0af1b610f311b8a95dc

          SHA256

          d75c3b27a0f73ffeedf922c91f6cf1bc4fee4792b4d6a05479e48bf9bedb2448

          SHA512

          5865a868ec0b1b74041d901c60b134b1924e834a3ff0353c0ada5aa9d6c5f9dd287f982cacd4fd92b2bae3709de557b21f68934deefd312db03f3c170778b309

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7c4215a8e8c59e437c3a1df98c51557a

          SHA1

          5c39936873159f4f59127b36c50ae1d53685228a

          SHA256

          3965987064236305d2b8a567ad6f81684f52b82ce62310416ac996564ffcd0be

          SHA512

          269e989cffac66a334be5bcc3f35cfac4d9d5869b2d574524e61b0d3114c0b9f04526b49ca96627f022aac7f46be35843158e86a3987bd0983861ceebb289eb0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6d7939e2dfd2c4e53193a5a041c67b45

          SHA1

          cce18d755134eeb52e98441443f8ce4b4b1662fa

          SHA256

          ab4d149b1515fa4a5f36923d415af656520454a3f8bf7da60558a673269f3dde

          SHA512

          637d25dd4040c9e40eaf9a95acee50bdfce7c4c4ce7895630730da36915dccd2313a9cf2ebc8bad07603efa0c0283cbceff0071acb22686ae18dfa1514e16209

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          118f58e607c7e6e67c424d76d4eacb82

          SHA1

          2d66d64b5c572de808aeb4d6e5f35d8be38dad2f

          SHA256

          da4e75f16978aac9dffa352316ffe000595bf1d96095ffb059a825669f76b64a

          SHA512

          3b64b1a71d01ecb0a22fe96a74825c8e65f12cb20fe4222ec2411f81d1bf25da5d97635802c6b38d2d2b3187bb8b17f67595f2176518041c9e99fe5b0f8bd861

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c1639782d1e5d3610636bff5fbb928c3

          SHA1

          1bcde5725ef1cce23f2150dfdcb121481d60cf1b

          SHA256

          786cdc335ae4519e778771c31a70d610c218edd43fd58069cc4cd139ab2edd93

          SHA512

          c657a6793567c7b982f283e2a7f7a19e0b9ad9494c769f900d32c2e08ae13f8f2a3d09cfa44fd40460291c73061749c73f1d8f9e2e64435e6f4f2da367456679

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          37baa76a0c0d1f099f8fd11ee0a8bee4

          SHA1

          35d5f940cea3be652c00dedaea3007d2fd343ef3

          SHA256

          0119de8c27bf2811686d05df74e26fbb2747ec3955beff719e03eba786013667

          SHA512

          c53200cddb5cb5e2bd639f8d07b3b8e68c08c715d3149d646ff8513f2bde71f299bb7657d17ecfa1c8000379995840fffc7d55d36f9836dccbb1f70ccfbfb9b5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a7b14b4ffd4df7d1025f9fefd97217e3

          SHA1

          76a929a535868591b8ec0ba164fa0e8289792556

          SHA256

          951c1df242830ae168a9d49e062277369dac8e7fc4f8432b42ef424c5e8afa19

          SHA512

          70030577bd652ff67ea7124acfa51a21fd7d36cd8164207f283d01f5cf95acc3f1ae71d1450589919b255c6b69b4927cf4ca7beccb02b00834063bd39dd319b4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          50ebf6f97b00340269114731418d06e8

          SHA1

          f480f28457da2f06b754439f34b250a6906a06f9

          SHA256

          53dfbb8d17c9a7143a2963464ab5e011fcc3774d9841cd1346ddca6ea1ba15dd

          SHA512

          bff5c99daa56beaf0366a19230abf4706cf8b113ffd0cc70b1dee57ea92eda45ebbf93559924a42cd13786e54a1da03dfa0ae58972a139124ad2750089261b30

        • C:\Users\Admin\AppData\Local\Temp\Cab4731.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Cab48C8.tmp

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\Local\Temp\Tar4741.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

        • C:\Users\Admin\AppData\Local\Temp\Tar48EC.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b