Analysis

  • max time kernel
    133s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    31/05/2024, 15:52

General

  • Target

    878b4c379f71d09855e8387d3e8a1ae0_JaffaCakes118.html

  • Size

    14KB

  • MD5

    878b4c379f71d09855e8387d3e8a1ae0

  • SHA1

    46b7d070448b87c7fa594555d1b0d6c5bbe28afa

  • SHA256

    7e1a384e14bc5ed3380775494a5abaadcef0aa9b9f9b3a870de77f8e5b3224d1

  • SHA512

    b0e11d500b1467f910b1e10f29cb1d9c79571bed3627e03d71669f89fda0dcdd460e4db9db9f8433691596f23c1a9f324fe8d78083a0de5a72068870288a3dd0

  • SSDEEP

    384:SItPh/qXq2qMqLq8qrqjqrq9qvqeqyqMtp:SuPh/qXq2qMqLq8qrqjqrq9qvqeqyqMH

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\878b4c379f71d09855e8387d3e8a1ae0_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1712
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1712 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1388

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0ad8ec48f41857c3710ef48729d15be3

          SHA1

          0e90e4e0281e4ea43101b40a8a7193fe072f1200

          SHA256

          6eca01531181822d14812fb6ee57b2ea4814d7ddba2e08678d7d8996788420da

          SHA512

          e2a3be1a0ae4cfbc3721dc81d4bb70897a3388889f7db8dfa26b68e299716f1ab9ba9ab1216c838c69210d28d7da80c4cd22c884a76fd691eb3c146c45fe5752

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          027eb288e9ef49b96a17d6fcfd92ccc9

          SHA1

          2ded8717ffcb6728ef689fc26f35e44691f12589

          SHA256

          49af64f9e76e8b367e532e61969888df5dde0ab86d864c0b1a6d5b396e7d6603

          SHA512

          158456dc0c93febb6a06327c2aa6a6d0c64da58df0c1363ae9e7e04545e6fbbe8bdbe2db6ea7cb2cdad3b07c98a869dc561ba38986dfa2dcb316b22fa78056c0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0bc0ae0b20c4cf1f955607210e668e41

          SHA1

          387d92910aba4b43ccd6380d46989a67401301b6

          SHA256

          87e1ae473b23d1126ca5b97d7c9a9dcbb79028355d073caa73aebe1335bf013b

          SHA512

          ec0bae969591f1afed932562a3afb66951bbd7895a7caa932df257c3a595ef156d55074e48d4293a67412a0412736618e4ebaf38ce26efd719191459fc24e108

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          beb26faf6a6474ed6644933d3f6b09e7

          SHA1

          4344dec4d6acd9f95a02414a4dec608a7e84d2cc

          SHA256

          6dff24a1c7904fba81181f8e41ed2f50d914ecbd4f61ded9bee5b3f2ab38d866

          SHA512

          f195975b73159b2f0c8f85095f3ee7229925c78e58fe10d63ba09375fa726445c87eb6e9a8430f7723c7c6c64188a0fe90b1099f500482daa6b0c0ca72f01d3b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7a4958861dfacf951a12abe9072ba46c

          SHA1

          a5a0d5d245ad883c1b1dbb4f19c3e3a117467265

          SHA256

          b0162b63e1ac18d203f44a5727f72fa6bbe3e99a89e37b523e9aa66be3b32bca

          SHA512

          10bb1dbb4232f098f8b83ca3daf359dacc54d06e571162df27f91370c410cd34738cf294c3e37ef9dc590dbc09d8199e8288c4ac8c19abefca8b21927524c1b3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          76c6e6cc42185d4284702c96c81c8159

          SHA1

          2e9361ef4019b4064ce394d2107397dc680e95b6

          SHA256

          1504fbf7408db00fc4cd86200229560a1e66bf091f447aca953e1f238a42c7a8

          SHA512

          041caaf594cc4add9b66b71fc61c035da278c520ae6e40d80b4f4051089abef5e1472afed21703b37a4d84002532b38aba165dd1c1e73d5ebda43d6bfa8bdfd8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e222e80d3b30c897628b725cd2aca75e

          SHA1

          9d172046566c0d1e18d814282e37f11be107e0ef

          SHA256

          f0d4c0cbc74b0f078371e6b83ecb639b97110661b049b44d93716c51f7b4716c

          SHA512

          83b8eacf36a385c1649fe7603c446ee56066d90f47ffd2559d553ece8acf4b6ddbcf343d5ffe0efb81a39f7df2f2c137df1cc8c62054044120d76599f5481211

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e57d1a0d9abfb42462d6b9c73c40eb06

          SHA1

          4fc9af2fc7e98bae9d59bd3d9baea9e50314308c

          SHA256

          61b53643481bbb61ff9cdc037a92879cc7b04905b5ff64038748f206265daa04

          SHA512

          962d3b48d49bdd3bd4124b30c2b5564cf345900f1e43c207ae5a1847887ccd7ced98754bb4b0530fb6de42ca52e876237f24aa60b5b3736a97de25d265e909e5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          eb00812ac4f534200b4da1fcd4252610

          SHA1

          226d2cc9a114da5d9a83d2d9aec10575d990daa2

          SHA256

          39b063ecd03168282a5d6bb493298b3cf9ee3675c95d55b222f3fc5fc6dbe9d9

          SHA512

          282108c7051336ffc0fc2e81faa623c13584dac1ba214699b67575780b167f18cbd9ee8429ef90ef3cd2022af385cebbc66406d5f8e33eb2a82257be58a507bd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8f9943a6705fc001ec14e67360e12175

          SHA1

          6545386cf94e3caa0d636138b944710091cf1410

          SHA256

          e898b9905a6c49f36f76cc7134ce1e3155e5950f362f38da067edd8bdd534db5

          SHA512

          12d19639d77a97b71ae915a48156ac93b3c2b0e274c6da5e0dbdefc485985086345bdaafc2bf086e266dcb26c996eba1355cfa4c6e7e75dbb50e9fbf99209963

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          590753f48120140a75c8670f03f7ee42

          SHA1

          687285dcbc2e31b040988fe39a2aea0bf4353cff

          SHA256

          d54d8fcaa70b96ca71a53bf000debdc125d3872753114fe166fd94a99e778ada

          SHA512

          5a67b4767b9f77f9ae506bb9b3883379a4fbacfe226b57a611f8186bb050df4e87a4d06c31e219e75c5171cf9a19933e99839f9694f012ec798d7c8eac4cb648

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0f44915245fd0d3d8cb4a0583bfe9dcd

          SHA1

          7c2c341c2597be99ad45d80efdcc0055fe73c8db

          SHA256

          0ebecc6183efcb07e9af8d93e601b92e6dc115bbcf9176d18be74d9ab7bb4183

          SHA512

          1cf03c3c5945a0c7aae8e58bf1e05e2a3d6ee820b79e9cb368d89313e024dc584fd309aaf1492a97245be55974d6157be3397844b60fc43e6d2f5949d6a07baf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          66c69021563cacc552ded7fc63fc028d

          SHA1

          e544154d336076f811541652b46815a70bf33f00

          SHA256

          120db96f86355ed1fbf0d7463589b99e7d21355bca81bddbe3f30e0e3b7451a7

          SHA512

          139b79eca07488660658a0b55bb9fb9e40e718461952faef46c4d5ca32b6b6304fac3f9e0bce2f9cc02877beb0ad50aaf2aef10785e3286abf5212de7d2c7bc2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cbc407a8dd8be4ae1b3cab6f0a51eba6

          SHA1

          f4270500032aab9b7b5a18a6efd2f61ab6afcba6

          SHA256

          98411cc6a54904c6faa1c7dd312aee051d5758fa4f31c99d6f2eee3dd0891e53

          SHA512

          4f974c62b7b3027359a732ef527866123704bb6c6233683c456f740f7b79451a21553f3367ee5a2eb4652a68a53154db1b617eab254fb376b259eb553613eee9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b6913fe047aedf24a90fa119b439673b

          SHA1

          da6774b5efc2740bebdad54f74f9a085b7973ae9

          SHA256

          73368a37844aea9968fbe739551b3f5449244a82e26a04f11d953c0b31c40cc8

          SHA512

          db8e1131fee523f8382146b0f26b96a59de42dcdb04a5fc715a95af4ab5686340d036462172b7271bcb8df2418a91411dfc97850c5e160809151e9a963d98b7b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          10226d2a3c0c9eeb5958931631830872

          SHA1

          e2a3ca45d470d7434659c23f6bd33bc50983ea8c

          SHA256

          a74f1d190f8f48327a2ba810fa828a5c43f76ecef54f17c014555b9393e701ae

          SHA512

          a50cba8d93e3bb61d0544ba2982f5adcf09ba59926e9887f5b541bc0357b25b48320100d9c4aeb9d5af3d38031b1b59bd69b098a888661c77ae54dc4786b0e4a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          43da75f24489378d067caf06d968fc8c

          SHA1

          8c8e2ece21bfb5e7c45c2a0faa015ca108a02c47

          SHA256

          2f797177e1c0db27a13a4706f586ef31947c8132850eaaf5de00b35e238f33b2

          SHA512

          ef65fe2e5a9020996c27ef138c7d5deae089d57a2648dcc485e660bc7ba2f703b762d4d08ab40cde9b00a8a274f41840771b8eb09a6162cf973b62e43bbb28b8

        • C:\Users\Admin\AppData\Local\Temp\CabDD08.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\TarDD8D.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b