Analysis

  • max time kernel
    136s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    31/05/2024, 15:45

General

  • Target

    8786f5480317cbabf4489f00e15ae859_JaffaCakes118.html

  • Size

    9KB

  • MD5

    8786f5480317cbabf4489f00e15ae859

  • SHA1

    f205c8ceb78be5aad29e92c6ccfbc72d4c1784da

  • SHA256

    5c61ecb2805f69a2a3aee89212488125480fce105115836f90d87621237b5426

  • SHA512

    735cf2cadc3d97e6e7a030c5a2bae542ad9a2b4d555e96ce63b099044243f6a9e80c0cbf6700dd96838f56b395dfe63b53652d0b0624ec53cd847611b08840a7

  • SSDEEP

    192:TMpGuf8JVw26r58HiiEsfHNRQOyGgy6qX5tsLUIQkHg3kWWnPN+9ZA:TsZ/r58CiEsfNGODHUQg6cPY9i

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8786f5480317cbabf4489f00e15ae859_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2824
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2824 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2064

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0faf287746b227085105507cb6153d4b

          SHA1

          9b0f26e1af8a2811a9c48bbaeaa87c00ae9c68f2

          SHA256

          6b970964d40cc6a082e55a47f6bee3fb3ab00dd2f17f08d6188497eb2de7860b

          SHA512

          a04e8c36d3e006e584df88eeee570e6106ee1c901b8bc9215dc85360db8c4ed4267f8d2165ae10e1a75b951fee81e6d2bbc11ad885132bb71f812455c54738b4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8737c86429562cadb852e382a36a8f15

          SHA1

          677aa1447956a30265c322df85212803b6b3827d

          SHA256

          4b014351f35a9f6dbf57d742bf5cb0e27774f6ca0e6c205236e1e30a23ef8569

          SHA512

          6b55823374ce2eba7dcd3e5d22a19bb57ff4f032b81fc62148c4039134fb983f64d9c47081e2d20b5a64f37474f209aeb1bba85cc7c2db0eea5e1095dc3472f9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          feb974e6a871d41a669864517bee5b02

          SHA1

          e8d5c15232e7f44af4a88cd031c7f51295671e59

          SHA256

          6f201b2695a5547747f7d68f6bbc0b6d42d0744c038fec04e1faf31c00bf5fc3

          SHA512

          34e7b42a62eea68e7cea7a034d21dde07269f49b8060a4fd39e4d090d8972d693ccfba6dc5b8c7ea8803842060a956fa10306ff87442ddd6776e3b47f92f0012

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c16752f2d47acc3d71be3aa1a491e4c1

          SHA1

          f6a8f0473ac0b5e99c8a855f36f40c50d31a2cd2

          SHA256

          24ef5fdd9769cfe2b860a471649f38f30888bb49a223264b876e10f9e410b2fb

          SHA512

          16bcd882e4b37a0fe2d8d0fbf3de50f1d3ed9dfd659ff53c0692079fc6d369f683dd11acadda1cbd42fb6f099dad5cf08251a0abe15c6bdf7b7047cfe16acb62

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0a3be8797db041fa964b4e4072f994c7

          SHA1

          a58e8d5d3c8f851ff532fe731563760b6757bcf5

          SHA256

          53e04a9f5d556482bb025e34ed1bfae70869234443d3cd88aa064cde448bf2bd

          SHA512

          41c94d6ae907cee3ab9bb5b0d6c7d73f7714877dd218e89e7183eb1ce91296bb573e3486d6971b5b53151d6bf3c0284d15c948fd0fa10aebc354d8036782be89

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a367fcbc46b780fbe6f551a0f970ecc4

          SHA1

          8b584f8948161c02bfe1bed833235bd471d4fba0

          SHA256

          61d013ebc1d1a8a5c1e3bbc857b5aae71bd8b45ae6f7e4eced54f7d8e36a139b

          SHA512

          08952458ade8270d3c2923135c2629e9ce3122ffbc6b493c42d3ab878c6426733c0f8e73c7c0ae8abb5f9e536a2864f861efa3a78c7a6192f0380a9d3f528cf5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b5ae94a556e2cd572f87c27173cdc519

          SHA1

          b4590e641a6deec912809f1d2078804b26555b2f

          SHA256

          0dce46c5daf360a1eabddde50521da178fb4e07364d487f65654e1addb351709

          SHA512

          9315fd0a3f4e1a799e8587b90ca85082660b79e3886f4f408a72620e3e6534d39b0447f14a47b7cd58666a8e3613e7864245b5ca56e3fcb39bd175df38ebdce9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          35086cf004177e51c6073bfcf01caf21

          SHA1

          6f0fa295c2c8fa2620888d9ccb535141c51a1c37

          SHA256

          49585b43a5cd719862602b3780962817fc3e9fcdb030a7a1473d907c43ecf5e0

          SHA512

          2a00144b911ec53443fd3893d0de460a973145971dfe4f7cbe13c3e1ef5d5057616e4ea6748c4017d287ee6b07dffd9261a68cf75c60f3410263fe1454374ea7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7447b70f0b355b0f48edfde25ef265f5

          SHA1

          1a4c15d262d66e457faba144c79280488d6579bd

          SHA256

          91fc3cb1012d87e876d75135a03f6a64278f17c18d50801e368e755af61e4d03

          SHA512

          173b45d1bbdb9eaf534a951c7012400606e91f492702bcc4a6c034f070cba80935884959920ecd953753c4df563ec2188aa6fef25addf79b85bbbf985a45b518

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          62e55e9610491c576153c10daeefc563

          SHA1

          9fb33d1b426bc7276ef622cb05708f4568d72dc0

          SHA256

          72689f82ef650d4b635db9c55621dfef755540096a0853b91b011a22c006d773

          SHA512

          7c54f731fa06fe691799a47e8db3fe79ddd6f0f6da0ac2dac367caf07d2a59e5afc614be5b7f1a68e21ef1d62c84673fa4c121d2979236879cf6c1023d6d3000

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          67f68663dd82d7b55a22991fb0081c2b

          SHA1

          134a3609369bb5cb8c930087fcd32052948cef2e

          SHA256

          5c333c560ee04eec06e25ba8ad7a015c6577bc615360cb31cad3447086188cf1

          SHA512

          e8a3e6ff84714496e77fa8ce80d467c4aa1282c33e2db7df9dc5c369bc6b671873fd55f534290a48429115434fbe0e7960b5136d79f7e3442d0bc5656d9ba209

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          242ce3801560a55e07d2dd55d77e2a57

          SHA1

          92848ce4f48e87f178b58117c387732ef87c1c37

          SHA256

          02dc1216cd96289323f661c5fecc2b0f7bc8513effd743b70644e8e385be8a4f

          SHA512

          c99350a0175458f576df081392ff4d0aef734609958a96bcd4f10e8d1a5579ec98e30e079a4bb953b70a5e2c51aa61c78055569e2571cef39500082e22c49f01

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2bd385b6bca815041fa66520683df352

          SHA1

          b66961bca73d606ea15bced6f81c46301315b186

          SHA256

          eaf8c8882c0554d8802e64e759b00353e7bfe93ab03f96c97b9449bc3942e627

          SHA512

          36bc2bf8b68f58482b4e94070b6e9b62beb90b9184e79045b89415ee8004fb3c2d8c4f954f0495486ff7dae66a53cdbf20afefdeae3aebd72d67faed0a86cbfb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e287f70ed3b384a01427bb52e8c8c81b

          SHA1

          94e1d7bf377f9cccb10bb3661201a33a54ae55f2

          SHA256

          358b0eef70ac6f530b12ef8cf3ce307c3b1c29af60d7241c0529c04cc5ea29a2

          SHA512

          8563c26d128ee2d49bbd895118649f5c9be8763110e5e56cf24cdb59590804a13724c698b288d004051d597d1223b5a5b5d1d266a5e8aee87961ab5041d37bec

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          573023282c74f1f5a7515e5507e7b3cf

          SHA1

          53ba9e65f92668b123e0a86a5b2cd46f78ce1654

          SHA256

          84423fc25e40e091e88bf979756ce7758e77487845a0ae30a7d25507284fcf2e

          SHA512

          2a1dac8492b691deb0ebbc71cfe1d63fa7c217ddc7665a49da8ea01617babf7f6c61fece8d543aadb95de733b42743a558116178c9234565714fc1ff185b285c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d64d05ecdfd4e95a653f4b7e91b44a15

          SHA1

          46a04c6cbcf3e20f319f9fad24c93fe47f6d14ae

          SHA256

          c065b03d96e37ab59b190814b79b8451b3ac02541e28123f1d5c3b2bb5617cfa

          SHA512

          5a7926212f07532a18684b1ed7b83b0da8fb2e2a594ccc949ea0c9e740ca63a45ac8a9b0a7d0fd67f5a58e05f2f15d953f5b3cbf3c2d99830df5857182d1750e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          807495df4daa169ab8dac98d76d0ea60

          SHA1

          91b4660ccb706c80cc10319e51bd6b25e3760e8b

          SHA256

          f82cd7ac3ab51e6d1cdc302c655b4e37d9e502bfdfa55c111b5677f8b9db0521

          SHA512

          2bc97469b22bba6129145a066f35e500d1db39ecb254822bccfd6d60eeb750d300d50172d5bff58456c476096d71130e6f3ed1c7c3a35bee2e7519d4d1a59648

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e542b3c4b9e2d23ddc19550319caee63

          SHA1

          cdc50d1e5a087def7b6acfd89735bf2649756c9b

          SHA256

          765c9dd9ecb984451b3e62065b4f87e7ef1beb28496eca1dc731a85ef8ec92f2

          SHA512

          1c894fc70f0d3f6b58edc765f598123292c66c550ad47e95388e9e3282adf2f0f2fb7cdc81a370246b70a39e39ba2db3eeb16f9d9c0145ff6866cf10bd6f2c6d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0825596aae75a621d109f5bf3c38501f

          SHA1

          6ffe93b24d949fbd7ddf8bccc77925b6c2b6ae00

          SHA256

          8f1297af224dd15f440e39b30527237532dbe59f93ff49a1fdf56776d9b420e4

          SHA512

          f12f82fc51a583c9d92005145bb8f1faaa6876ae7062a9ea7111475aa78210a9e632c9459d9344758b94cc9ee916b1604b2991795985e96f090d9b72503b7d33

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ba22336a3563100f7e61cd5e94e99d11

          SHA1

          5447f8952bbaa6499fbce8ce31bfe10290188a0d

          SHA256

          5b4200777f265b6605c00dcff8775b2af1255a0e2e82b642f6e3557f1d0be1e0

          SHA512

          190b7dbad9c646e0559bd56c92197f23835669d4040aa9ceddbfc693eeca39c89ed5c8bbe1b94c50937cde845be372f34522e57dd6c98938ad545d76b29dbc31

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5cbc877bf76d5eac292ac1e88ccc31b8

          SHA1

          4b25a998ae81005010f3cd691d537d601420c848

          SHA256

          7c8aa97c5bb3304f255e9d9a867d859aba179188b23daae58f0c0928839d116f

          SHA512

          fefe73bdfb06f06f5a78cc1e2f4b3788b99354cf8d8cd57b69db5e04deb29d7b8c9dee961a0754c5360109596ff4b354bb90f148bbf50998c008406a6154a2e0

        • C:\Users\Admin\AppData\Local\Temp\Cab3537.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar35DA.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b