Analysis

  • max time kernel
    138s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    31/05/2024, 15:30

General

  • Target

    877c47df35033e23c676bc6ad6686a81_JaffaCakes118.html

  • Size

    80KB

  • MD5

    877c47df35033e23c676bc6ad6686a81

  • SHA1

    a4d4ace6d59374edb5c4d3355e249447e4fc4758

  • SHA256

    00a7013042dac16b895e6d8762e893f1353b6b2f80b96f8f4471b211d5ef5788

  • SHA512

    06a2af2651476b4feaf3bdccaebe132acc33a2045ed29d44b7488c2114f704411f5fa12fc002ddea59e5d1b5e5fd6b784bc025f6eac9b05e16a3a264dfbed67d

  • SSDEEP

    1536:dw5GAzqzL3CkUMxd6mukYcNB+BT0bMc/5eanx4PPPxUQ+FvnHCLQuJuWn0qymEE/:dw5tqXrzfFLGQAmoQxkXSpFiLQguSimp

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 30 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\877c47df35033e23c676bc6ad6686a81_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2944
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2944 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3040

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          1KB

          MD5

          50307dd5a05eb1be118dd601a701c942

          SHA1

          be4994717eda8765bc6bd57384b314dbb1b42866

          SHA256

          003b0019192cb0ad667e934ed3b6b76f68e95a62aab33f28049a919a52d6d608

          SHA512

          92e0a914dd04769499f889160e66f4db6b771ed8fb583e52c9b7dcba15a908f590098d233c3f483c9f8a3b0662d2c5b652bba81888dc9e6e1707ecb2c0cc3277

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          648b836ac48ab8ebd60765049572b413

          SHA1

          4aaf790feda71d609336afd8ccf870627f2928d4

          SHA256

          ba1c06e2bbbee6a9ab63b6650bde4d6ec9ffc3fc196907205a79f067a03555a0

          SHA512

          87cf8148ce30bc6ad4e016245dbc3de2556ccfd62329c9631062f682930df52874c209bdbed35df09891bb3038ef0c5a207b377a1680a43ef0e1d9fec310631f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9e4201565177f2b84bed3d1a1f235456

          SHA1

          e3a3bf109655e64c5a5e8e97ce54fe72fb6dcefa

          SHA256

          639e68b86c70e0ab0079cb508c6bd7c203632cb3bf4e5dfdd46e1726c16f52b5

          SHA512

          f2a33d6ad902b60ee993b854b6137e13d7701e9d1e93b49b116475632a26ccf86760601cf8ce88b83e328a18a1bb1a043ddb99c85c860c2f97f1c5c89f85b2de

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          76dc8580954cd508d0030164a4167c21

          SHA1

          f19e9d6cd8f7f5ae0392bc7781d0019cc5a5c5c4

          SHA256

          770d34b99271b3b357de5d592ae5603d8554194899458f991c0215077d724fb9

          SHA512

          f40f90f6cbcd22726f3e84dd0b8b7a43fe9e93420446765004d806e21fe63dcfea22f7b88590b3f2cc707950d0c379247c7fdb75dd26d16edd5be704561f7428

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ab9e5f9d3e095ea69e0c1b1854564c6f

          SHA1

          cec4c3939327e2613d4008953b9b0237439bfddf

          SHA256

          c495b527aaa30b06fdeb62722cd5101e29234db00c603d512e0897367ad1b3c2

          SHA512

          f9cd9e86ef1dd86724d812629fbdfdf1cc367f8c96db1aa5558603103ea9ed2c267f7022d72657133d79606c3808b0ad8dfe08a0d9dfa0cc451847b73a58b5b6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3d7a8322f7caa8a3567e1b3e049229e5

          SHA1

          dbf22f5888c21ac444066263a7bb25906b33e454

          SHA256

          2e21420c7647bae4d2304382cf19d3408df447da4b9936ad1cc6ed85fe666be5

          SHA512

          25a7c903b42b37aa4da45bd529b9676840482bc39c14836e405d42476dddfabe6ef46e7c14025e8235054586e9ebade57826939d8ceb5c9a7d44b4b3e4afffd0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6cc2df497204b3d6ec9bc86f88e35c73

          SHA1

          18f9982c6c573e61872ff0a56cd22ddafc42298b

          SHA256

          70d042363cfdb7afe5d6777dc6758642bfc917113f6b655aae483a7f9f53136f

          SHA512

          ffd57ff089eee0987ed0af5412ce64f14d5258221c88c4c3925e4974cf701cd9924f35254ae887af3828b98c369eb6bb19eaa025347c561cb62441698e420cd4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4e7ef9a934c380c9bf7dfd295ec937b0

          SHA1

          b6a5873d3db16ecc47b10e3f3d56f259d5ff305b

          SHA256

          acae9f6a008a81332b718d823416f8216fe7f6ccf23988c81afc2e48143bc949

          SHA512

          89ce3c169f767d0297ef2b7bdf3f21486c8cb50a91d2e262e06f17eb11246bdaea6618d40b644530376330bd1e958e6fc26b98a9efa5ca3969dd9b1a1fa19d49

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c56438fe2a8e06ceade21275e6d3187a

          SHA1

          13dc6205aa8e601610059be924f4d78e5292a6ae

          SHA256

          cd12659969c78d64e97e2a156720ff0db82c55dff540dd0d2d030d8d51f6ba53

          SHA512

          5f091cab93caa427c7dbf8e465003e464d3b8b29e58f7fc3aed1ac86d45681bca9b4f65f87d33cad032c5bbe1617108023cc8098dc1e0949b7f7c5b5952935be

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          08be68c94fa4106f8ea2c4ae804760e5

          SHA1

          812e521f243baca88405b6479bee60e1ce6e8d80

          SHA256

          5419d2ccbf188a0fcf8dbec2e51b62d5f5cc38c038bb573133f3699da73fd864

          SHA512

          3a5a2db4f426dfce80333bdbdc24693a64272e1a3408c30d5d52ebd7c14b9c068a4891f08d4660a6b5df8694716ea39a42bdc259c01c0fdaf58c9f894c780e1b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d5a3c4979efeb067de091d846a728c12

          SHA1

          3a12cc11eafc80c5fc57c76919d4bd3ca8ee183c

          SHA256

          317dbd4c0ed5d12429f952438a38e154eb39c6b929b03a321588d841ea3fbc18

          SHA512

          88d882a1c1d47bce9c928241e761e64bc5b7d971b8e809bb7e599045057ef0dcce2fda7baf871b24ce35ee9ce29e53dc3b9721ce30e2768fea46ab61f6ed7693

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          935962fcdb89dc63a397a765fa1d0019

          SHA1

          4302d7d0b2b640c212bee6817d32f6506564e8ea

          SHA256

          d4296740def85168cd179370b48f026300d3d390269b09344dabd49a2dc38641

          SHA512

          8d6b9264b96a4d06ab19fc314f94a7309ac23b09a9b307ef067a78e4d63478874edca03db058323c97b2c8c355f5f905c98115f6d79cf25a2dd5c9e6d7f1eb0f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1476376299eb48090843b4a6585cb000

          SHA1

          19e3e9f2b3bb0a89bbe103cfff6f4a6b6ade4d97

          SHA256

          56660559e47b839b41fd56208c62a5003901c2f274a4a5e63ef3360fb6e02fe5

          SHA512

          af6d9c979e0f62e6a9bfbff039306fc03a2f6ada339f263b454f4ba93c91a1619522d22fe637e7e4ef72f383e469cce15e4546866fb851f7fb3266df18b95e6c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b454e3cc354ca24446858e24de1e0214

          SHA1

          f723d3cfaf220c6f1b61096d622936be12991074

          SHA256

          9e5071fedc71abe12ff26a1c2d456236b341d011fbcc2277f1c850d47e95c993

          SHA512

          2853b02ee7fa76f0914e30fa0ce453dc07a0f4b1df7678a0af8310fdb077b210a0e97166d66411c6933b6986ee9802bff5cff58a451eb8eb0ff6bf744f9b2e46

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e80b9f5775d26d2f4efa3c06a7814076

          SHA1

          e1cde30a6ff868355a222c30ffd594c368d0f16a

          SHA256

          b9234a4e66fa885d3945ca69ed60243e8f705690708b5445636ef0d3ab927141

          SHA512

          8daf1097eece5cd7f52a8d6fc8d47a31d4a3a5bb59e7752bb340fe42e5408678d05ee7daa37c71e1d8ca2631b8aaaaa58395905ba7198883d2d33d315785bd32

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6de3252e71591dd9cde6f3e05b66c732

          SHA1

          1b99f1c770f333b18c4f5be059b17554ef1d0887

          SHA256

          8ab8fc45b5b1018394bbbfa02bfd891f1bc688d56e221b18dd8a96f4acf952f3

          SHA512

          6fa6f2c945652d36571adef5edc678e52261e4c6a7f20d5fb5d66b4f162fddecabe3e0556385c78abb73c699b9fae81042d11dc98b7a6a998770aac933d10fa5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0964bb1998f3a8b0258ee5d75541afc8

          SHA1

          b93d278f80973c614ec8b8ed4f7f024282b3a204

          SHA256

          8b054a797898cca35897d912616b198a04cb20e46b6e010e72364f83194ee3e3

          SHA512

          f6348952696e0b565685f4d4d2ad29b6bbc47935e5e32486aabfd78c8b3fdc3d2c0937fd3ec9d42e918c5ce797bd86eee3ac70f09b1ed5f60262031855e72e7c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9bd4b03e66b8461afd8ab88e5441242b

          SHA1

          7115e6207c278792217689f4a022aed40fde866f

          SHA256

          3790a4f3b0d92bb62acbdf94fff4445567081a536cebfff0bf46409380e7356a

          SHA512

          f90c006a8d58be787e5c5374fabdafec4a99fad60b91278d054a4c175dddd8b42561f6d16ed97095306a4f9fb9b2dad6194a337ebe830c7992ab939991131642

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          28a0e7ee291a3da7536844a49b1162ff

          SHA1

          6421bb4bc313780ba4a23f7fea4a6b0c78ab3a59

          SHA256

          497b850e82dd66fe47f6b8293f0a44804e9b98ce3d1ff69c7274e1439e35cb47

          SHA512

          0f86c52ad837baec4671f2eb8ed8d750ab404a876d44acc873b80446fd0ee162c3bc81c48eddac2c809540d1c8f07385395135bb17e26612251ad2e273ac6b81

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7085ef5b324ba43ce1cb63b030de08f8

          SHA1

          8b14e000b39b4b63a3aa8dbcf7da39d2cfcd420f

          SHA256

          00f4243355e93743e0daf2c0d8ea13eca67607c888536af76fed35f577cc51af

          SHA512

          f63fd536340c6ac6a1e2754076a106f682e46d93507789fc46267f1a369868ef8ac215e44b853b4a5a957a1ae147c967a6cd8380c27c38e69c4a0834207b390a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b7ad6327056a461a3e21890de4f6cfdd

          SHA1

          ea619c9e49764420241538bc840486ba964bf27c

          SHA256

          6dfb3c0df3542c395819895ccc25abc4893008a50f35923b0345605b704d6d4d

          SHA512

          e4b7e577df933e01a38ea005e8e573f43da4874ba124e6e9b1b32b9bc0222d2213f9c54c7b4eb206ebb5758ab5e2bf212c229b99941b0baad2d50742e386325a

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H09CVCL3\capcha[1].htm

          Filesize

          64B

          MD5

          f1b98b4b21b505f3c97a94b30218e26d

          SHA1

          dc78db861db16ddc3db9779b8f13a33876f9f3af

          SHA256

          a1e319b2b07694e26389e7837caadf313f897aa4f1ec159686eb23da7a21a806

          SHA512

          a4ed34b37eb5e653cf429774908faf43451ef9d76597553e8b1c9057abbd5e467a55894407e60a93a23d3f3f68c5d5768d1cdbbad85144e25d7db7bb2d83388c

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IW68H88T\jquery-1.7.2.min[1].js

          Filesize

          49B

          MD5

          186d86b12ef82ec067ef688d14baffed

          SHA1

          a936cfbd349e2d45e352bc3e0b24a0973e8ab407

          SHA256

          105e1b4db63c43261ea5123232f6504b7c152be51f1398019fa8d7de7554ba38

          SHA512

          d46e450b22a61f62b8042f89ff117f94804fe07b99698b226141fa90aecd64ece93343fd6fff4eb4f4fe25308a978a69e080586f9677ae2e915c5e4db4df27a9

        • C:\Users\Admin\AppData\Local\Temp\Cab163F.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar1642.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

        • C:\Users\Admin\AppData\Local\Temp\Tar1703.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b