Analysis

  • max time kernel
    135s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    31/05/2024, 22:26

General

  • Target

    88916490126595f6c5bdc43795b4f1f7_JaffaCakes118.html

  • Size

    460KB

  • MD5

    88916490126595f6c5bdc43795b4f1f7

  • SHA1

    be7dc5bf431d7dbb5592693b673c59b65a14cb15

  • SHA256

    03da3097ba5d58d80782685117f403a736d8050891b9e29c2b47b5166463ad08

  • SHA512

    fe4d42fd00cbb3db4815aaa8901b4d5cbf37794e2878a50aa80f9c393b08d68dae07c75bf4e10a4b4068ec7800d58605ba49aca737bf31a180edc818e4527d02

  • SSDEEP

    6144:S0sMYod+X3oI+YSQ+sMYod+X3oI+YosMYod+X3oI+YLsMYod+X3oI+YQ:l5d+X3E5d+X3Y5d+X315d+X3+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\88916490126595f6c5bdc43795b4f1f7_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2236
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2236 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2680

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9c9791dfd943a70c0f5bf00c1ca8387d

          SHA1

          15c16505d402ff378d69bbc4b3ae305609cb0e66

          SHA256

          b49c4dde83d082b4a37ab3c76083be28f13bc0626b672bcf27ca44a22b7ead46

          SHA512

          b09d416c619d44c7ab3ec56356584b323fdb90a0036ccb8a20be7aa16ddfcacae35b2aa6ca55293cc4332f553f4cb60fcf1a8bd11263020a183f69ba87d0bfa3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8c55f7afc20c3359464421f3dc49ef19

          SHA1

          d50112d37605ca0ba71228f4c0e9a4e5a2f83b4b

          SHA256

          c941d376f8c7752e03c20741b25188eac6fbde72990ef4a7ce5c60287c83f1ac

          SHA512

          f0a13fa3f507cea5fa1baf87c7ecf8beb403daf27d20f415553acc5e0c3688e659109f9279081872a2d898e2a9d5a800de40c204a26f4186a088d1febc188d07

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1646d14e7a1d556a04ad614bf5ff4c4f

          SHA1

          3ef0df73d019facc49ee5bd89437023ffb76ede2

          SHA256

          6253f34e303139278e130125cea9cae2088324916a593133746acb095a367305

          SHA512

          ec950a148cea8d7f213b104150a7dc9076a2b2d60d080d570873347b482224d893d82e08a47b2fa73e1c21ff847af87efe0d496ed4904d3b73f553e1ed187c42

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f2e85e82a0d2f8523d2e536618fd6538

          SHA1

          956fc8f7cd2eba3ead508a2c54aa6790f690a874

          SHA256

          990a19a196f013fc5424a68c12446ce4f423749a3d365642ac47f1f80a727f9d

          SHA512

          7e783bf9d6e5624b8dbdcb08d5c4b5923caa1649a65a05e44a063f9698b521be71c3e44651ed49b425d73b78b497de4acc7d2f7e9b93c97c49b2571ea565a30b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f2add1aafbe7ee357326027e085ca283

          SHA1

          54402e15508bee61aa9baa68f933fd2f7c334480

          SHA256

          92fe8f668bcc93825a1ef1f819040028de6127eaa349cdf11bc68fa377661476

          SHA512

          0bf559d1a0c75ee162eef5678ed957a56cce416a47a26dd11aca2cbf75c1fae49a7e29e697fb52e802ea4389ff74bc15c3ea8a195af9a41bc04325161a0674e1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f59db9bbba5fdd38b4694e350f601334

          SHA1

          a31aea27216cb05cd2dd427743722bf5e7aecaec

          SHA256

          0d3994ff606b0d70555a64ad22bd29417a90e0d33cd833a7886ac3ef9e1251a0

          SHA512

          e0ff4611863b5946c79813b24e5271b84ba181d3d99efd78a9717e400001d5e70b454b0b15f376f8e0d7ce21504e3c1d6305857cbd613d01847180c2fbafd928

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b1b44dd74e7ea16ba482e954dbef9fd0

          SHA1

          b75f9cd83082134e6a22476d090a8a9959a44b85

          SHA256

          be9c4146752b8b757ee09e004230718ab7a07b43a625a319773ea72403d90bb2

          SHA512

          ae63bd32b0aae4a5e1d4e4032e0147889436ed0f5692d6a8ae818605dde36e0a50f9a71650987b182ad9e709173c87a7917bb4acfe683c9a8ab09fe0867bef5c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          600a03bd460060f6d0997338af4f64a2

          SHA1

          48eadc20326e20bd4b09d81f57bc7b570a02bdd6

          SHA256

          1f8eed041e6aa2cbc403fd453028a9392d0ce586db15122db28ff2758edb687f

          SHA512

          c740945d949efa8e97a8dfbe1b92104880827627957d6cd9fb5c11eebecb8694357322415ca5e94669c8e0cbf533fec73e65c5d3ab9986282e71ef7b4a87bd22

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9ac373d45d42c4843bf39c56895e710e

          SHA1

          43c2ab0302de49adf91edf6e38ca720cefd14f8f

          SHA256

          e7a2264bb6c209cb623a49bc35727d52f89f59c16c6beafc50a8685e3afbd306

          SHA512

          414dbd4d53f919dd304cf514f1929cfc78988eff828bdcaedc5c410a9a57fa89627412d459ae6a50bb4b39f449587af323cbfe841f2fede8fb35d779992e4c4a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d7e5624a60f73d5f3d2faa4545f3b3e2

          SHA1

          0c5d1cbab68d1b50a550bbb813d507957c996a37

          SHA256

          38f45eeb4e7f63f46456a131799dca5b52a0ca27937e6c7a7a015b082a3d7060

          SHA512

          6fed014df8b3f22cd7b9796e5ac63dfebcb580f51b784692d491da5ffb2b0bb560ec934fc786da78dc81db4c43380586163a0687ef400937f59c8f5ae381f260

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8c82e23b982ed5ecfd7cba0acb78fbe9

          SHA1

          3c34f5fffe7c3ed01d504cf8f02caba5a9d1c7bf

          SHA256

          ba93a9ceca5fa76ed0ef6acb477cbd87b20d490e382b3eefcb638d281140b2d4

          SHA512

          6442244681e48933d1fb8ffe4b8af1d6343cceedad012b5c8dbbd1ca6b417782a62ebe73f059566d4ef122f78f078c564f73603a3edf65435095c3d3139e997c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d6bba54b550b6677258fdf1ed5738437

          SHA1

          cff4d3e2fdcd7e56427569dbb8bc157626b910e8

          SHA256

          23fbd0e5dfee8843b402b37a29367bda1501403e3bd1fa9181be59ed7d2faac7

          SHA512

          22a1d9fe03d8ed9bc7047b8754f0ee67e428f7797d80006185ec2eb36b0c5cb162597cc2c1eb22b138ea02288565b333d152309d127fb8ad553049267f64abb4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c3b8f950690ac322500fe21ec2a2ced1

          SHA1

          b28c24bffca43630a6cb96404d312c17978d2f6d

          SHA256

          4fab2ad01706527dcdd4549ff11d8d30954c7e9963b53cfe611e966ed13a0636

          SHA512

          4a598c6393cfd8c220dacf78eba62a35a8d215886cd8342dfe229099a0ec1caca495f6cad84f8e4a0cafbde9cd8ecdb185571a1423bfb36a67c4dbb342d1803c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8266f7a5196cbb3f4e0fbb1eab3b2fcd

          SHA1

          c02792cc5be8154bd14e9b2bb8e26409f39dc2f5

          SHA256

          1b02e517696b05a2446bd890a5a4f9726bd51c04469b2619a47bffb43743fc58

          SHA512

          58e2ba790bc49b99c8bf85462a0036a5986b6fae1a870a3651df7d630cf09616f87d051bcbfbaff766368849b5f79073c3121b120c21b64b2bb1c05b201b92b4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          342bfb241644929f9786f92deb68a08d

          SHA1

          a3a14679a8a212c1b444840cec809a9b7276935d

          SHA256

          ea358c53a14b7e3960c04d4ee4133c4b804f14faf289cac8d5fd67c7ae866e8a

          SHA512

          0cc70742f30c37228aa448d97b0d6b2455a80f51f20da2b1fe8ae3a809770fed88dcaaf31a505c81d00493334ce21c88ce489658efd7baca0fea5b3e754bcfdd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7b5aa01ebeda5628d576eb261d09f41d

          SHA1

          750394bbf365781c7abd7d8b3aa184da17c64785

          SHA256

          08a2a9efa92e616d853fd54d8bb6d368002d765e5f6c1970457b9594aa2c81e8

          SHA512

          836a8152351ba79dd0a2f0a28faa89afee8e159c50d69d12c9d4efe21854c2b397654454c928957b1eccf4250eef44fbd0a5778b5e2137787776f489e553b8f4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          104e717e4c006ca14a6299e07c01de0d

          SHA1

          6103db139ade6731f7009af983e34366368fe6f3

          SHA256

          27bbddccefe785aafd56f68c5bacdfecd2e558edd1fe5a18c5cae50f6e3c7bb5

          SHA512

          5e881f402dcfa7b3c3263b56cae954b1938d48030fce51c4f63916cbf63171f6029510194881e9cc58798cadc0d37d9455cde577aa15d36ab6ec3513254c4335

        • C:\Users\Admin\AppData\Local\Temp\Cab4359.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar443B.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b