Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    31/05/2024, 22:26

General

  • Target

    88910cd3eeb8fc18d3229b3843f1fd11_JaffaCakes118.html

  • Size

    70KB

  • MD5

    88910cd3eeb8fc18d3229b3843f1fd11

  • SHA1

    efc2e2b8c5f3c47c6593e24cab9222df0564625b

  • SHA256

    9fdfa047d095958aba4d9d22067bde0088a8c8b0075e370ddf81262256aba7f3

  • SHA512

    a33f9e0df368f14ad8c7837d7765adb491f156dba5a85a9df99210876ce404e6a9f8b08f13ce53003224e22cab4f42b0faa75e1f77f6e6d60b51721da3eec88b

  • SSDEEP

    1536:WPMvCP2KnOfPqnNfbLi3X1m2w0nmfI5ewJ:VCP2KOfL3X1m2w0nJ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\88910cd3eeb8fc18d3229b3843f1fd11_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2872
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2872 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2800

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          55aa34e933597cfed0117dddf69a7e0d

          SHA1

          dd295664f01914ebfce663a3212d0a34df279075

          SHA256

          17849bc2bea6f4ad38ef8b2d72dbe6e5d0f7005a5689e560b927cbedfc6132eb

          SHA512

          27c69371aac53efb9c69efda2b9f87a5e57cd39a6269d2646e6bab7955798a363c14a860f919e1ce0ed896afdb939f696c9e24def8ba0208d19d7d3d4f1dffb8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          959c58ba98bea5d3b7e7e488e8b9784c

          SHA1

          6b00cff4761fa3816094cceb2c253a4981582f5f

          SHA256

          ba9ce7adc09d0229ead4371e9227122ea4afe801bc3302b47b66c1489c6bcc96

          SHA512

          3eb10d294a80ecc7323237c08b98c13446bd0da733d8742ef392902529b91a8c0f51e29d1fd5ac1024321549879b88dabed0e4cb4a37e164b93ab606e10460d0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b4ab3434996c09e7c9b47a4e814c6ad7

          SHA1

          46ca17383af13bc49d8c8b22b69c9c518601a44b

          SHA256

          4804b59b2788fae860dcd7db8888d5279769dac346156333c8bd75908e8e5b93

          SHA512

          86569c375adb595756d4c326fd157b08402d8b4393a0dcc4cd6cb0a1a949fcb8d98fec35b7ae4ce16b9dfe10cdc47ce6e8a2ee1a1d5e9a9ba648c6401dc11f42

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          37cc970742eb842a0cdd8772449acfb9

          SHA1

          4d94da8f5a950b56622b67130f9bf74f20666f14

          SHA256

          497ac6ca13d76d2285530dd4344e82ae0bd39926d4d5ce3d36886963bc77db45

          SHA512

          2fa2d34d058a90d8231b6b55e7d9e8b62b6cf71b7539592c3af88e94c7383a2cab35cdbbaadb5390903d87f20738f81f736b0388be0f02e2c1ee06ef4c467e89

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4ff5ee52fe99db02520f137866fe7796

          SHA1

          7d2cf3c0eff66728cf475d763af81112c05eac9b

          SHA256

          62a70925ca5dee017c178cff35db236a2624eb55da29aa43e69d326a73b15894

          SHA512

          8e8e545e4be87ea08a8177ad6213bc34294292eebf302fb6deb40b341e2c8496d82f5225c8e669c7677f252fa407b0498d882570ea8dfeddcf98bed88e83be15

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          188468ac60bbfb1c00e6585c21b0d86d

          SHA1

          93d131ca0dfd79a1b121ebbacd02c28fcf9f150a

          SHA256

          88e546835047e856e4f0e31d5452bc07a57f28e3ae7800c777329bfb17782793

          SHA512

          bef2aa9c9eb2a3131368ec3b350d731f0f715aa2d173e8da1c6b5032488f01a47b9977c139dee29a1ed08caa4a5a37972059d5a41e26b3dde19304b1aa2e4a61

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9f75ec007f8260849e1400deb3169b52

          SHA1

          d50486cf784b64cc4428a971582c2fb46cda6975

          SHA256

          cd90dc5c2cab0c4e0004e877896d8f35cfe15d1816e4762a4e0646e4cf266a7a

          SHA512

          b73d4628526212f7181d73b6f1a294dcb6b6e8e76fc4bfc5c035c14a9082884e016251d0a176723df7bcc6c381c21cab2f95918e5938dffd19970f1d04533fe9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7aed5204a2948bdb4a73c65872569922

          SHA1

          90d81ce4ca17d1d1a916ec865394b7f603669727

          SHA256

          0d0256ac65f2de5b9feaed45c8b49bfb4abaf854a7ba2a3b24403cfc0a5534ab

          SHA512

          c852f292247cb28f105946d9c44978a78f6aa18afe9a9c6e845ecb7ce1d2d2f22eb0b2ed90eb62593e0e3e5f5ab3f317d5b49aba6d41a17a1d617baf326fc86d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f6d46a9a2097ddb29a0bd39472e9bf5c

          SHA1

          2fe5d5e80c8810a357d67dd94dee47402f14cbf5

          SHA256

          0fb16884f0543e2543612659cef6051751cc8705ae26260c7fce89931bb4ef06

          SHA512

          19c5f2edd5d0e48fa58ff52b4a247b7393090db4807ea1944f3d87fcc92a1f24a8bfb7ef5cce3df448913b8dc6d48e6e8032881abc43946bf600f3d06f893cad

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          52bba2ae30b41f64443c3d7e1111e013

          SHA1

          13c17d7d044562fe287bfbabd0cfaf11bcc8e0d7

          SHA256

          8f15aba153c63e8fb7437977df247fdf0635caafdafea3a56b209d45762e2d68

          SHA512

          25efe1b065533b9e06dc638bb521a0df37b2e7b42ae254cdebe9e208807a8be1272253c802de91230adee1170ad132e16396606d3ab9b073b918aa9c70989504

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0912a9874d3870558cd00192787fb0e1

          SHA1

          69a75f68484a0d5dab9233904e2333cb734e0513

          SHA256

          72898cc018f94266139b674ea81239770953c672755a8a82d825e99a7b2859e0

          SHA512

          6f6448413134032df8bd9807096834e75768f35d90751591e91023febaf9e56446096c8f4845249c5358c29e094e966b61267765a03736d8075563678f4ece9a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          381de691522f9d132278eac88ec74e36

          SHA1

          d725ca2119763bc5b22d054e35e8370a85ad734c

          SHA256

          398311b05ec1d4f0bb7b70cceb282af79c518132261c9b8e8677b3180dad1610

          SHA512

          7a99664196b99923af11580aa0c2d8c393a123468e1f7ae466cca297b34bb2bbae761b56e00fc31439e48a81fdd5a9b32006d47aab4ced7c895c83c3693d2be3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ddc9d7927efb06423f64c4f84bc6ec4d

          SHA1

          229505b18febd9ce2987dff3f917bada36f0eb9b

          SHA256

          df14c60b89ab07ee3c5e341105042eaa49f4ce59489edabb93c84b3236592e97

          SHA512

          93cb873ef2b9bf35791391116881c3bbb452f1b0d2472e4dff3feac22d0cc558f2c7aa85a590b2776d1c0e49f788324509dde62f03c14f2d2670c1befdb53860

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f86f32f4556163c5c3d42d34567f5977

          SHA1

          1864e440c186ae5eda48103f06b28b42b5db7698

          SHA256

          6dab6eb1503fd22c2d6ef7f7b638462d9bdee8b89f7d49aabdb459c49dbed4aa

          SHA512

          1e438237483c5df5a2594ff320535b547b4eab918a00d9e5f709c85d4aec35e51d39f57a50d4e78a8dd7b5dfb049d2d128c04536ab482bbfb9c93ea3d47fb998

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          645cf8f92b00b7551904fda4f07bdc12

          SHA1

          00148809cbbfb01835675f378d3bbd82db10553a

          SHA256

          19b074078bed76a6bac42543a6a48c06688b91d3f9423e3ba2ef22f95e1af175

          SHA512

          fefebe4db158d0e704146e32b2d3db73ef499b6ea15fada956e845bb875476b9d78bc11ddf1d1ee92800ab233e57af18ce1115b37fb9c2058098c4615f89d130

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4545c01d6e720a60ccb449ced99edf4f

          SHA1

          e3032f37e798b96e96c4b9fddf1a3fcbcb271ed6

          SHA256

          047030aad55c52a8acebfc235cdabd8d5bbc87d6184e4f65286b974d81f75ae7

          SHA512

          0d3f3f259998d353ae6cf5205a78a1201e66be01a4965167e2b860c2b0d2a01b284a1b12d555617034ef25dfe8fe7c35d53442253290730868d297cdb080917e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          44a5405583404e30869766c85d6b9eff

          SHA1

          f2cf0ec30dc1fb2fe708d36caf6e8d9fc1660b24

          SHA256

          4891c457980b7b4ea987bfc508a8c7da6f71fd6c9b88ffefe3229df75755f904

          SHA512

          529429e202b84c87fa0bd4dbb73a228341c0ee980bb7a61ed9423f3cde3993bd1dc5a35d64ba98fa9c60b7b8c4ed016eba39abb136226ab333f84492496645e4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d1dbd63dcc0dd10713c9e7eab776d186

          SHA1

          e78699419c6b1d4cf27c062c27ee943d4c61a80e

          SHA256

          3f76f697343e08c4c96d07cd46336111af4b3380a70f7ba4b92b709babd5965b

          SHA512

          fa05c10d1efa541482751386dbc69159bf9c6fdb8cb84a962cbf9ff7c62ca74ed75f9c0246d277caa4879756a51a2f6ff8cf4d1ff9f02d143ff4ab7f2825a3ca

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ee848bf4255809a0b428152e09cc283e

          SHA1

          1a91b1105d6505edbc3f37122c266020997c69aa

          SHA256

          adba6dca49cdd2c4bb14eb2a97b6134ac48369eea84c8473d400f4b0f25120a9

          SHA512

          38bb511282f8a17446507512368f89c431f6ba9c058944541f87ea9f34e5ea071b417d0bc22baf7bbc47559c06773b91fbfb1ebee2a770953f300e751821f037

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2cdf76e893233cfa50bd8ad8b0d1e335

          SHA1

          1dae39fb2572f0eda8baebacac1b46bb7bb170bb

          SHA256

          86af7ab1766cf35c5fdfc7ff2e375d2aa4908373ec664181354104897c249ccd

          SHA512

          fb34dbc7230d81f659ed04a92ed65f157458f8c4536ec5aa7db63fd96cadefd0d1b3257d54203a81ba21b821e9243cbea190f697b93e45b8f2eddcf79778283e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          889f79beaa10103205871a6f949dd731

          SHA1

          fca510556af200518dfd8d428d1d9bf65455d5ae

          SHA256

          34943519836e579311970b718233de5bde89d4f2d19e76bb50816a82bd3c4eb1

          SHA512

          641aa18b44d4b64eb2da99d90ec6eb84f51199d71661a31ec64b8bc012db097fd73ac8908ee486cf903216dcafdd02c5698d8fd062367bc8264662bd8a77506f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          af54104cbd2dbbbcbfaaa557a5a1fc4c

          SHA1

          5f3a662628a58747e477262a540671b26436fa5c

          SHA256

          7075274479d2feff0bbd7198ea8ade73822af1ba85821b3c534351b29570dae0

          SHA512

          e5d06937ca5c48e253a36accf3c5dccd6f23db4d386b6eb3f60fdee8081e0681b79b845419bcdb1169fa47a2bb5800ef0d3373e92889ae98072510442fac8dff

        • C:\Users\Admin\AppData\Local\Temp\Cab3AA2.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar3AA3.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

        • C:\Users\Admin\AppData\Local\Temp\Tar3B75.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b