Analysis

  • max time kernel
    121s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    31/05/2024, 15:45

General

  • Target

    8786cf7a6e9842b3f299b0d6157d8150_JaffaCakes118.html

  • Size

    12KB

  • MD5

    8786cf7a6e9842b3f299b0d6157d8150

  • SHA1

    9dd1e51d2eae69fa1dd930e98c826481ac4058d7

  • SHA256

    902a8a0a415fc0fe2eca43c3fdcd445677c5e8a2c7feddd9dfa71aa847c3c8f9

  • SHA512

    eb88479292bd1ab63f5e48ec0b279ef479c933f67281d71d9878710bdea4bcb7d6ad05b1083e0c912aaa1c8bf8c971ac8aadab54227aa463e2316e1318d16ab4

  • SSDEEP

    192:pGq8tzYdJJd+0HKEYFrE12u/GnkYVAp7kGdoHAXIuWz:Iq80dgRBnkf7L0a6

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8786cf7a6e9842b3f299b0d6157d8150_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1924
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1924 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2560

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ddfb0e427f409b2904d50780e46d6141

          SHA1

          df5c848a7d1df6ac35b41fd87ad457e8b7ef5fda

          SHA256

          3c3d6e2941bfe05abe99a3a36c34ebb6a141a5fe877a8e92169381ae5aed7710

          SHA512

          35e7716d55dd1b2c292540fa1dd7dd34afcf9792d400e6a2043d92a162c1f9cee376363a403c02264fd24753b6c94cdf2ed8241e5f0bea1f3ddc2a267991ce3b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          abdf7bf5eef843def3e65346ede279a9

          SHA1

          ef33ad2d0d5ca88045a0dc319dee67b5e07e7f44

          SHA256

          b1bf1f873bae882d489aa48895a766f56fc1deeee121f3f1f884b71336c0a1d8

          SHA512

          aaa1c5ddad8734f182c7afcd98c0a8a4baed0fb7de97fb9c6a0e99222a8f99811f4fe919e553149e1dc8b77e817d3421f1e6af029a9e138c526577d0221327e7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5716d97cb02646986b16bf5005ff35e1

          SHA1

          0d610dda3fd01159fad89d95d262a9a420c5e82e

          SHA256

          623ab507fb574ed1e076ee451d78729b0d40f450e66ae69e34e80927d7e23eff

          SHA512

          309a50b5bfcdfdd4e162f1ba2b036a906fb9e35766faf221419bff3fb449ac352d14e85e532bfd7ac2c93a663cc67a47d7cc2870aff0b5e11cde80e0a0d64192

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ab30da963e0756dd66d0482f2bd290ca

          SHA1

          059dd85ebb3945c2c072fc5c24912c6cf0d3d150

          SHA256

          ae1afb61636d6a87ab781d4988b985f24ace76e479fda94161f676e315a2e5bd

          SHA512

          00928c7ff045059b27a8c300a1cf40cd8f64b98a11b539f359f932119ee36fb0508a8c585311042af32d57853d46a6187595a2d563caad0793a48aaacbe874aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          bc56d9c634ccf8a55b823d8c692d77ba

          SHA1

          ca187f8fba1ea9bec8be1e439d4ab881bebbb0ef

          SHA256

          2a05669a8cfd7b29ec7cc5ab6daaa0606e1009592a44615ca91cbb7157570e92

          SHA512

          1cdf6e9c08a7c59c81e643d14546f4e55eaa0afa17b48f0ad9598158a440b2474fceccab9f0db40b5f99f9a2da6e56548f8aecfd5d8d19ceec348f0feaa4c555

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8b8fe4d2e53681c0afccf7a1a8ac217f

          SHA1

          f1502482ad745c2976c877662561a055707eb1ec

          SHA256

          cf3d1d6ba93e7ca8d0c915a0634edd676c49e41431d288d45f425b5943bc4cb7

          SHA512

          c1ebeed712dd58d18cff4082987cfa280f370c5374bbd01b3aa723fcb9f0225a6777183ba1d4ad0f3340d189ccd7cdd0c972cca744d5a9c8a9eaf478b9010b62

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b2fc0bbb1cffea09ee8738f37b0fdb8a

          SHA1

          21c78cbaa34f7b7d76447a97e8da7bb87d225e7f

          SHA256

          558c67ad56abdec8a147294c06081778401bcca478841b15aa5c6aace4742483

          SHA512

          3b8901d7174e1e15dc945b24dfd37ead4883ca6c5ed6c8c8d81f8d40b226f30d0534252b33dba7125beb9fee0ff9b50724d446f7852e155630a04bfdcd846e54

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4e31f65b487cddf6006fc3f221af9234

          SHA1

          b96cdc83c75d8f0cc7de7b4c5fce8c60066c0468

          SHA256

          cbfc7861bfba4d762eefb99dd67599384df5cfbd3b99d0556c8680cb15d44916

          SHA512

          6dd950d8a58818398765a3422189a1270dac8ea61fc805bbb974a0859875d941a25cfa36cedd8c54daa79cec7096241dbb686cbb40a15e2aa6610846b210a20b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7f82fdcdb6bc6e0f4f18d2034674f369

          SHA1

          ab4ed80f73c334d823423ea76e1523610cf288c8

          SHA256

          5e04a5b48d09b05d84e1a2716364a1b227fad39fa4fd335a185de400d7f0376c

          SHA512

          22323052d90a36834848c72145961884a28860c9efb21dd0e158f9e40dcc596174c5a980b23fb3c99372ef6c92b0fb2bffaee581fbc41a92614ad3ce82d1748a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          fa5e5cbcfe13945d8621b9e71a006b85

          SHA1

          f63bb74806754a3ba5dba83c45892398df1f056f

          SHA256

          ddf49bd9101bdc8aa47d2244a6f7871b3b25f2690bea8e9ede522cd8b3ffeef5

          SHA512

          8f8ae8e137c9950952152f89b2dc8d2d9099fcbcf2897fd217bd48394dfe86da7cc92bc7a448e82b945b98ba0906a66a77169f78b49565ada7a8b4592853ec2e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b0c4ff7cdc11ee218a9c621a188215ea

          SHA1

          63720b44c9f00a7b45d9ce1d64504b36d101a70b

          SHA256

          604e079ff362ef4e3ff0053c23e96045800f97c994c2a29f99e8fe618fd963a4

          SHA512

          5feb275456192c40957391de3390f657a4da30ce306a9ec6535f705a3affef89fc0553e00280e5aabbd4c5f14324e1b5bfd45f77b30b4d694b66638723654d11

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4efd7ceaf821a277b26530e60806f524

          SHA1

          2c4f46059ce3123208b4a81e376ade55ae37204c

          SHA256

          c6830a980436a4eec4098d6b49edd2f7d19d48212045d81bc184d0874b8590cf

          SHA512

          0da522340b3d12eef09143dcb09836be1608b4191a8b000fdd54baf2327a223ba29dcb0fc9a8d75724d1b8b677c766f2760ba00b2c4373e83c34b8ed93b6c59b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8b12006e453c916be819034b8f5d659d

          SHA1

          eec6b308705e8bd1ebf8c3b4289a69c3da152516

          SHA256

          36b766c274076df6a980058e1984121b347dffb0c60ed4df9ccb8a8bc65a437e

          SHA512

          854e5dae16880ab57ac177569bdeebebbc4361f43874e92391697370f84ccb936cb003adead41965a004fb1369f28ef03c7a4075a00633bf9ac09d3a96490233

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f0cd100549e4fdfb1cc42ef59b93d4ac

          SHA1

          efc5a73110dfe5614d3e529d6bdabeea6b717a19

          SHA256

          f01a721d429335133ec8dd07c69ae1d833ef0150a8e96f91d48c99078cf9af50

          SHA512

          f1c17fa45a7f4c86c66afbf47c0bf7657e8e9ef3c9f2a796d74be12e85e64e724e512ee85663690736461b9e903f593921298a8ece4bc3347b067f50b30b292f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cdbcaaccd0f1dc915e80dad70bdf6602

          SHA1

          6355970a4a330a386a05f0ec86018c32ae9eb71f

          SHA256

          29b9ccf74e00d3905a983bb8d4d3e3a3b5a6fdcb1024231b36b7d8a00a5500a4

          SHA512

          485d39f052ab3b74bc2f610c9a076feba2f63f9e347c909b7420813be7edd47845707472779c65907737495b469e2561dcf1f32465c9adc1e2efb1fce1a75b25

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2e94563228cf4c13040c9c2bc6d17575

          SHA1

          e4190bdcbcf6388d2a7b22d69eb04f29941d5bd2

          SHA256

          36ebcfb915ed37fae2b789e1a55870458f68189c4b38b7d750e21414ac8aa5ae

          SHA512

          86a4f8bacac110724e1369e79fbb3310bb6dcb6da536059c4302fad30476bd7352bed770ba9b747976e519cfc7525aa6279aafd98ab61f425ccd9262ad56b37d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6e756237539c2e1e94d6f87a5d38fa38

          SHA1

          d60982d51189e4b452c7ece45e751c41358db420

          SHA256

          a69e2388f605a901fb59d8f8370daf5e25313d4cbf1a9f8054931e7b49f6089b

          SHA512

          5ecc64a3ddd8d5f52ba4e8a070c5e0bfa2582b17f606916c1d4f6d01c016e38de21e8543403010c0e7b0b8d9e9459ad82f29e77ac7b02ab9d6643793998593e1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f2475cf69f2308c20a1de6da2776ae9e

          SHA1

          8dad83d89eeb2d459d891f638e54cc6996b47ebe

          SHA256

          898f1d4fe2c2141596bc92397397a1842042afb3e9e6d7921ad28ce5d23a444c

          SHA512

          51b25a17cae282a524260a448a88b3441ffdebd7949c85983ee3505b867ca1a50cc66987ceff5f0a356a2670d6f739c185bede3fa370a7ca45f327748115f490

        • C:\Users\Admin\AppData\Local\Temp\Cab190E.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar19F0.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b