Analysis

  • max time kernel
    135s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    31/05/2024, 15:49

General

  • Target

    87899c67921baa7fec230b1ddcaee37f_JaffaCakes118.html

  • Size

    68KB

  • MD5

    87899c67921baa7fec230b1ddcaee37f

  • SHA1

    3db9b6b6e9eddb3d274bec4e9ce8f07f29d853cb

  • SHA256

    53e2ca198783ec18082bc00f25ad8a891b7340056c62433540d89d49f5354eb6

  • SHA512

    08f7d6200e8a62e129495a1b631e25c790fd50070d1fc414c29efff7fb236770d8e2fb57ce2f21b198b6f859ebdee71d470eb5e130bc4a66b2f1658106ad5837

  • SSDEEP

    768:Ji5gcMiR3sI2PDDnX0g6nsJ33wP2TmTmAdoTyv1wCZkoTyMdtbBnfBgN8/lboi2h:JxVlACA6TcNen0tbrga94hcuNnQC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\87899c67921baa7fec230b1ddcaee37f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2216
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2216 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2348

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          1KB

          MD5

          50307dd5a05eb1be118dd601a701c942

          SHA1

          be4994717eda8765bc6bd57384b314dbb1b42866

          SHA256

          003b0019192cb0ad667e934ed3b6b76f68e95a62aab33f28049a919a52d6d608

          SHA512

          92e0a914dd04769499f889160e66f4db6b771ed8fb583e52c9b7dcba15a908f590098d233c3f483c9f8a3b0662d2c5b652bba81888dc9e6e1707ecb2c0cc3277

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          410B

          MD5

          33cb05d7d427ac4609c909e3c17027ef

          SHA1

          873d30763af29aa211369dd3751d9dcc3c516bb9

          SHA256

          5788fa9eac3b9370f3c791da0e250deeb4acc357993b3c69f9898047b6ebf091

          SHA512

          c7b29ac1e1e4e34d5cc4c9ffac8c8bfbf0eb9c5503133a1a0a1a1bfb66ea4ae20cb42cf8d709076a8f6eefdecd4339ba789958ea0bf2c25a4ac92a228e863827

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          ab5738b0d040536e778b635baac63d0f

          SHA1

          ed68af777aa2e0833070cc2cafcc943a6d321b2e

          SHA256

          ff0033e32c04b6534fa3361d9a0c7843dac4d9d89baa80c45096b4c5b4eb4979

          SHA512

          09a3e5128b807b1771cb15323dbc813bcb017536e13cdbc944d629953f2c2e53966f70c42fe3aec2aeab0f7909144b138576538cf157f30c6f5d6d937c8f8923

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          491d121e74601fe2ffb70b0d7f9bcf31

          SHA1

          1c89824d6d93262c179798be05540ff17d2acf96

          SHA256

          9dc9d5b8e83a6eebdc1d477516d0eba445d4c553c7cff0e9c736895ca88c8bdd

          SHA512

          2959a65e00bcc1111cd5c3fb58ad08f6c68c10c309ce730dfff62a68ba2bebda69ee6074b4b5a25c44d327f075d2a325e74648765c37d5cdd62cbf7053d40829

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          66c63d53df2b102affb3cec7ee2bb35a

          SHA1

          ae685319975d2f16bd650d6cf30f8edffa854546

          SHA256

          f45d5e1c4666a16bb8b859db8a562cb63ee7b25726e2e4bc51e2fb704e0a7192

          SHA512

          a580b866db32d2d89fc8770bd5164b36c452692d92fd8f44b2b2c60610437a97ddcd3f6089dbfb40a23e1970db73a2d187f4a9281f1994851f1e50f9a8a0dd4a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          03e57b9eb424f7bdfb54a0cc0e3d9630

          SHA1

          c851d1f684236c435c7eb0403ba24e6272d7ed85

          SHA256

          ba97137044c2387104c269ca84670073f2c15f4acd942142e821109d648dd950

          SHA512

          f09cbdbd852df4f2a0fb671d0465911bfcb592c61e071fabe7dabfb929f5ae6c4defb062768049f272e6b4b617d29e69692ae029ab6c1a77971c2a9b601b9c2a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f8f911938a9ae9e7c6f112066770e5cb

          SHA1

          3f3a4ceb3a2eb954843aee55b26cfec8db5a20aa

          SHA256

          a99e62524cba9c40614892fd033e68c14d8ed83192fef215dd202ed70cc15a02

          SHA512

          3243036522ec5947f42a0411f90dbf07c5b7f999434ba3b798b5de00e84bf79cb8324dfd3a311ba43fd3e60ce94f2daaf64148bf35b9de2eeda2691f97a35f62

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5746b031367cfc67ef7ec2a0778b1b8d

          SHA1

          18bf1694750d6bf90799b7e03a08c9cbe2312880

          SHA256

          7e0bde6e9888d76ddba640e52031131a51b1efabb8c7c772c648aa9777396e14

          SHA512

          14c1b4dfee8d9aaadae762b9b3fbd9b702a3f3aef9af687842175c1cefc6b6a14d4c306f515c594053ca0752f818ad5895645e5aac3222c77a37b8c6958e62f5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6bcd52d90c6d30324adc6913b146fa3b

          SHA1

          b3e016b320ccb7f8806e89983345c2281425623d

          SHA256

          dedd2b52c8b38bd8ed295ed5ad7304643a4c7d1d5f173435701b1b2c7fee7b5e

          SHA512

          77c0ea23bf010e75d11b4325dcfd938140cfcac05c0441d6b517e82a5a1bfaf831ff57c6263b2f8bd85d76df12ca5a4695250deab9ab776a6c18037afc71eacb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          88e3c5eab5e6f941076064fccabe134a

          SHA1

          c5f0efe59a5bb99ea326bff406db4588a4293d3d

          SHA256

          f5c0661e8291d88299df263cd911dfeb6beff932584beeef7b983983b90e1158

          SHA512

          50503151f9c3ed5a369f95f9c439186e3381770bac08b8f5cdb9153896555269e62a4606d0b80d83e5afa5e68c524c99b07fba2ebfb6d329b0393bc9d070f01e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4b15b64225a816e629004b0cb8a37fdf

          SHA1

          92ff51ac25f70e5994e21b8e2719b1ab6c3d31f1

          SHA256

          88b90497ab71978a76ffe1d6312a242e920c630d69f78e37a4aea6d71415c401

          SHA512

          29aaa02c5c977f2440b845708d926313a313f59927d95834839be869f0b2eeb3ba8816b97958da6f39a7d428e8171cc093976796a5dc43c98cf9aee9768358f9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d15078ffc751ec7026371c83583f1f5b

          SHA1

          48aab58b3d5cbf8d957b8916b0e60c29a522406f

          SHA256

          e4fac2448355d91298c12fc395967ccab7a6ce13eb104a5a2c2985f46de01592

          SHA512

          9fc942a24255092f19091d1f9052041eb3c4de7b2568110afb690e2219b5376d52cb10ed6d477e7404218d3b88f6f4074f713259108ada2cb0e90f3fc33bdc13

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          eb6836f78456a1ddba9c3b16ea8d9b15

          SHA1

          eebda95f4b09729fd0d650f14c7997d3ebcc4b55

          SHA256

          678e42c3af83af82a7f8cba4a7ed0d8269f338375f4af371e859877a7a7c26f8

          SHA512

          4874eb0849dfa1c1147cc9194fc56bd39433ff1d7e895dbf52cec7746e2542cbffcb1a6d198b4e57e100326a6716ea5dc3199f48ab9e2d2f7ec12c8cc8d212b4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          11eed6027c7920c057f8c94faa5b6316

          SHA1

          ebf87ca29f74bc244da152f4663bbab5ba692b55

          SHA256

          bfb42a9475ac55fb77683807417ec1965fe66a330ded818b46aa6099493d0e2d

          SHA512

          3810464ffc75bf92a853b9634594d3f9154b6f201cca1704eff315fc944272a6f5567b3757e854c73c7ecb363ba4fa8f1049a306aee2c31484cc72c04516d9d8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          af7133f6fad181f5bf0483c5a70a9169

          SHA1

          960c414c404ad12148120852a352ec9c6b72364c

          SHA256

          63b4c6b42c9757c1e2464fc96d2fc2cb1bb42856a6221d2249de66765cff42db

          SHA512

          38ebd1d72db1a73c67d79fdc2548d8e458e338e1ac17f5f4a33676fcdf77d6e1b03aa1c7d702f07d02a46f977ddf01a826d2a1199417838beb69d128cea301ad

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          23c61ab524ac6b535f94f9d9da052a30

          SHA1

          32f12fee5aef14612d537fd5c1cbbf975927d857

          SHA256

          9ccf03dc5822cb0537d7ad30ec08f92b1f8d9ce946516ef90796484be96a2f53

          SHA512

          6b91d6cd1a0f2e0fafa61dddd66bd0fa524fde2b08c6f7a3fbc718755e4295e87014efeeabc7a66733720f589a4d61d78784d7ab8d42293d070384b888d79d72

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          bdd371fca1d9e2daeb9e14e75f179d5b

          SHA1

          8aa6abdcdbec65ba55af7a38aa1a148f5635b8fc

          SHA256

          008e8445b692c9ee20adb94511e7eb48aefd84c777d8ebfe18da0c3f0d74582f

          SHA512

          217b13be879dc8fbe224a487f6daff7a505b496c5b4a28fe101ef97b37dd365011c307f14ab01272b8f72a418179e813ef228887bf2532981b827c81b8f9cc67

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0290296ee5a63daf4ead7b20c2810589

          SHA1

          bd72c94a66630e207c3784b1f57371a4b02dc60b

          SHA256

          c289542941aba53fbfad28e9720799189b6cf604e89e5a84e7dd8c8c1d869f34

          SHA512

          79c700b105a92ebc42eca34109180cbb6bea4a658ade25ace63410ecf8b0c54dc801e455192a6a19266af59c1ce19dd5aa2f10ba529083daac06eb5151155b20

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          64e8f582b9deae9651efe24fc726b723

          SHA1

          2146468fe607909d8f20e841d0616fb6a1a17bd4

          SHA256

          d54f6ac554664b6a97aa7d884e4a6bea07246552a384b79880c534ce788a68e6

          SHA512

          7fbec95547eee8c27bea2f87c72f5d411237434305d58563ec73bcc263522f03979249661935e35026df117a79d53e80298ac0c133b6c592e00c6cfad4034f7c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d9a86b332c4d19af7ce981831a1cef94

          SHA1

          1aa3d45239a1204c446ce19d944279aad0ed673d

          SHA256

          e27286d5dbe7492e96fd2fc4cf297447eae5aa89d79c0858739876c4ad6b938c

          SHA512

          4d388b4e7f897a00051c0cd1864ad844dfb7c403eea82e54ec32f5ae8129f2aa1b78b31afba6cd4320b76f89fdf49b8a73242a26ef7cc28c3fad08e9fd963fe1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e5db8439dcf801482d9c91ca24adee91

          SHA1

          820eb8a72e9a1b9fb696c6a91188180ef837a250

          SHA256

          124c5a235ac6027a4c7a7309e0e23fc2acd4eef4543eb9b5dfcba6adfc3acbfc

          SHA512

          ab2eff756d3c742b9ded66c36c7abe1f5b67194295883edfe49cbdad016e56749ef90332de7eefe714fa509fc778c100fdb21b7a9eb77ccf8b622f28b2b311d2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b5e588206f96353e7ff48b76668f27f6

          SHA1

          14d6afe20c9640aef18e857eec3454952997559a

          SHA256

          a56641fee0ad8b4b831b2d61f1a3869942361fb5d4fa67dc6f1213723ba80a5e

          SHA512

          29340b331ba5aa811c09f912823a0de18bdcb85d62d24b8048995d13fce084ec83f56f6c452d9c3626866f3d1fa1d2fe064343beecf275f589e805f8d9d76422

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          989dcfc90d724ec3ef89d9726c5df30b

          SHA1

          9970e4a29d1526803282e0a4e23329fdf3b3e837

          SHA256

          c6f15615803203c5c3a428c6dcdfb071154bea58d8a0a4941a8dc75fd69c6529

          SHA512

          09e7c4dcfaa8f8c9c02efdd93cf6525fd58870f1f7f04a86afb5e16abe9eb93f0fb4b5bd3e72de56c17923e36decd19df84d86b50a42bc6a75287ef833806b5f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          8cc1cac973a14ddfd9c9b8abf2abf431

          SHA1

          06425c78fc7b2ee13cdf8db90fe7f7bc66cb17f5

          SHA256

          e1e7cfa5d3c7c8fb0fb1422e5c56dc2b5d2c5b19305511cd73684161d67b42a1

          SHA512

          2fb2a8e490b70b8710005a817e98feea09531767fa2d928ff211dc89ce991b5d60f956ba3a78edcff83a1ba498297824898d7da06eed14ec99715e641362f020

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F2DDCD2B5F37625B82E81F4976CEE400_E37F650C7C62919AD1A050357EA5E69F

          Filesize

          402B

          MD5

          e51807a1ecb7375012fe7e5122503a3c

          SHA1

          b01591706e02f55079c6d12cb9455c3f8f667b66

          SHA256

          b331536c0e4247a0ac840bdd6c519d83d2d9667e6320c34a7afc4801ad353d2f

          SHA512

          d74c0629c1d1fca63ab77e72c705e11eeed279c44ff2610f895cb72321dbd174c821b07a350ca923c488e8c6b9f830c682387fddb9172d4510848c74a8bcef47

        • C:\Users\Admin\AppData\Local\Temp\Cab7957.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar7978.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

        • C:\Users\Admin\AppData\Local\Temp\Tar7B43.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b