Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    31/05/2024, 15:53

General

  • Target

    878b89560483e574aa869c5ffdb9a96a_JaffaCakes118.html

  • Size

    6KB

  • MD5

    878b89560483e574aa869c5ffdb9a96a

  • SHA1

    1e75e0727b3e6994d9bcf2e1ef74b7816ef4d588

  • SHA256

    95608f3203c840f6ae9ab2a83a5d97f0c588da27cd7ba5d429daceb8fc485f41

  • SHA512

    3ae608cb6ef4540cd92a936cf9af2e54e9f32b01571dcb69c34b33d89ea02053c88beacc6b612cd8d0d1a67e6d62bba2c6431f6783dff54f57548087ebccefac

  • SSDEEP

    96:+IVub4Tsuxe5nLlQ63wZUWRwHW1ugm9BI/M69jPUwp9v+/DLp:+Isbyo5hQiPWRw2lm9BI/M6hPUwPS

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\878b89560483e574aa869c5ffdb9a96a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1792
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1792 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2440

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b33296610cd7f58b614fd1756b9e1a62

          SHA1

          24a17c474d58ecd5830685dc22634c956faf232a

          SHA256

          bcc143d133e905d21303d8687e1fbccb8cd017b2df6c83e686c831750d1b3db9

          SHA512

          a18e577f23dd58f4fc46e06f0dc04541fbd8bbea31ea87f0b9e94ae01730d62506453daf01a777bad2ba4c91273fd4c5b0855c2e9708c6dbcc1696a3c1e6d3cb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          389a4e6073140b9f04a459da1663280f

          SHA1

          9ee213114949b014a6b99698c373b440552f9f5e

          SHA256

          cbd928f176069b7bd54947832f83c9993d741e2f9933cf4bb64bc7ea1c0cdcc6

          SHA512

          e719b2e82fb68b1c1a1871fbe3fa82524e0f131ea72db6e47459ac20688a72c4100d13c29835cbf05a0e7338f329d69919e769b061ff6e00c4a6df86ca131334

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2d4d5206e9edffc36e5e259b4160df82

          SHA1

          7355ebc91c54c7f07d287e1fb4a222b95c8560a1

          SHA256

          21b2d1504f9df3e053e3c32feb9c1133c19e7ced18968d8bc3304d031fc4f38e

          SHA512

          5fd03068b6ab1093291871997aa0e6c56fa87accf268c6274b87f08476f3013640b97a6343def820b83a0c4ddeecd35eebd41684863a75c393dcd9da6d1b7120

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0d3433af65f9fca4cdb9e3f122ec071a

          SHA1

          6e0faad1195e1aaf36b934460d17f30f8af90a50

          SHA256

          8f4191bcc0c77442f5712af8b1526190e9ce5491022a00c46e84181f3ba476d9

          SHA512

          055c61fae9420378e51a0fa562fbc48de35806b657072f8a8515785cfb1cae3e6e02e9b31ef01412b31afddbfd8ad330fc2b990f8dcc7ef25f51e0666dd0a38e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2bc8b5533271fcee7da7c67bb3ff7865

          SHA1

          4b1f2b2c693462c822c96deab3895f0c68945900

          SHA256

          3df6c02f6c8e8c4471412a76ba6c12d3a940b3a8bb61e5d788759341a7e3bb7d

          SHA512

          e7094ed55ee81664b37ea8dd91870a8b74173bcef39e49fb8c3ba7c1caf332459ab44beaf6b057af5185bc7ecc10a9e338ac07fd896f5f33df3f1c4aa1fe8d19

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4c68163ac8a85de04a56620d66241b88

          SHA1

          7d2aa33770ac268c129c5d1b6374067ef0050837

          SHA256

          611515edcdfba15bb88398cc0fd177fc54ff986f9c11cfeeb7330d358419f3e9

          SHA512

          66256bdf79e8e60c3195a97b71601328113ce7aa30b1b841d7c25a59efaf2f255b14aff3ffba630ba0e904e8011573c8af412cd9c78a35e63232044ff589a3fa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          15704e025163e6bdf1ffa894463b5280

          SHA1

          139a78e9a04c7c80915b706bc85babf3ca5eae54

          SHA256

          385baef9ea8dd6ddea14d950b5cad3db35642916e1541afa66cfefba5258500a

          SHA512

          f433d538dc39802720529eca4647f74bb3601cb80fb1aef7b0bb0b797a0ae0cb3aedbdfb43fcbe19ee5cb9d55d37e260a92ebca4782168325ec527c467771649

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          34de1d353a6093f912adcd179cb1003f

          SHA1

          4796ea84b69c54eabc14696a845ab67832aed96e

          SHA256

          974a111bdb19fc4fcf8ce19d6a3f657bfe5522a89f43eafef42f8a123e18b439

          SHA512

          113143f2722048c6e392bc6def7f3edf341cb8b67df85b222b6be9cc8d2f1e8b9d0be1ae1295448d5a4f68833f73840d0fc5986f3627e06afd39b30b7204a203

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1356fcc4b5c4dc6b0477937f9e4f0dd0

          SHA1

          e57c5c25d466fe6e898079db7a9792af1e7b451c

          SHA256

          cbc08f0160c9427db8ed4aeb95d9ba7da52e03f288ab71fb7061d18fcd94ee01

          SHA512

          e8860dbbf34e110ee8f6572ab2fdd5af161152b129a875afc0efd43c8e3884b6f11e6a8137968c7fd9599b1e09ed78056b4668d982d1ebb0b30429557542614a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a50ac6d359a0e0088e70fb7e37b5e153

          SHA1

          8e7aa73593947080fc3830d60fc452af51e18cf1

          SHA256

          b57285d33a872c3a97f35f4ca68e53ee1931f48c8b10f010cd1a16506d94fd92

          SHA512

          08283adb7bf4c4365e5306e2207f96e444592d38df4906fb6ad0d82761accc126e865b6ac23ec942139518609da569d54ca3d8caa73e253b3db331bed114451c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d1e7e6faec70b03fc8397942d33802ec

          SHA1

          e2355725a026fcc67cfeada1bbf9b452e93ffe8a

          SHA256

          e436f45799eb29da07927a2e160ed74a98574b657c1ae76c9f276429dd736fb1

          SHA512

          15637a712112e6632b97c542b64abe584f1b4123dd608d7c7270f953ffc107d3f26a5b4a4b66bbd2c254ae94b009c8987e84f4c2b7a218f9e8dba4f97d017a74

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5af869f45338b7472db9b15a55df625f

          SHA1

          3da0045c4ab4e4d58c2d8a8563dc45e102c87079

          SHA256

          3e17e4fbfcf05e2149a0435583f6fb472d0950c87c8aa315c5034673c843aec5

          SHA512

          e0901c1df6c0bd8b61c1d91cccc451e65ea2010fca5b78fd68b4769a23a22412295afc858d14bdd21823c3b563890b4ec6fae5e9702d71d50d0b95fe089e7201

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8d0e2273830483bbe6c5965f610c2874

          SHA1

          840a63d486593509f5228f931c836894c6f02719

          SHA256

          9138a27261dc6d2dd1e9dfbee5f87d05b534e7d40679a02195ecd7722dbb0f90

          SHA512

          601507f9f9fb2ae1d09c1148720e47ed78c9c027430ee46b4a1043e9da66916fb639e8446c40ca779e20b6efbba4464c9bf349c01b2b1c877b1a2c9f39a65ded

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          89307fa591d81980bc06b498d425b207

          SHA1

          59c4ac59a842f535f14d81d5d09fc78fbbc52cd9

          SHA256

          0c375027c665b698fd5a62d013f1ad76521c0a172344b9865192603e2a3d28f5

          SHA512

          93d19b84f863c4bd0302adb6c709fc815cf5fd02385d29266e4e6c030f843e35ad00eb5c4fe39ab705ebcac3c38b4f85dbecd36c653d5cbf5c8e3af5e23e9834

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c49c394b09329010c582a0e71870b87f

          SHA1

          9dbbfb5eb69d6aa35e2ec14c18ad119226de1158

          SHA256

          6e060c4ae927e23c5a844e5f9d456250f8cbbe39c8436eef02819f97d7e40625

          SHA512

          eb93231b1ab50ebf6826f862aab35ddfbcb3e7af65d7e9350a694bf8c7d0b8a6e041675bce752f1e260cbf1cdb72bdc4beddf3e8c327b5c1197439f66060440b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d2d22888327ac2898dd2e6f7e6536510

          SHA1

          9cc05957b802dfe48badcb4229054d8cbb05ead7

          SHA256

          f3e89edc46375d0a5496e1b130b8cf3cf67e4636d77ab198350d5351201e6bd2

          SHA512

          07c13c2580141b07e12ec75788395d2e95f06afefd384a5204167a67bfcd57019751831a676598d2eaab17b42c53960bee8247bd98e32e7e05d912fd9b17f2f8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          45d3438c01e1f51407b17c0ed27a8e76

          SHA1

          dd5e3c9d9e6254e4af5f5fc792fece07d3bd4b71

          SHA256

          7b3b4f813f9986ab1fe05e6a8a51495763b7f820e611fce23552d7aa27e5459b

          SHA512

          8fbc4add2b345c4aa106dcb7140682e756387726f5ef8b81d0be871f1add154a9e7c5052c54d0766f25f7bbcb060a3394991f9954df46a5edc1606f8fc8e78bf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3d4bb7fcb467d295ad737ca5c1bd3059

          SHA1

          52bbb57e4c545c3bc6d26e511798b32f35d0fb16

          SHA256

          63edf792bbe4ce6e3301319ec2a250aea8f214d8c508b5f86c98bbd5995d2c95

          SHA512

          38276d29d4c5b320ec9d09848137a6f60a9e32c12ed6b17072b6d3d3ed67432c5e1bf49a63b2fd9acb7a802fceba7ce7d81f801110180b713c85ec93ea4be9b0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          04f22202b2c4840c4006c3d571ff2ef1

          SHA1

          89d9f1b3b8b471b32f9eebc125835905002dc7ea

          SHA256

          34ef5ac519894d613bafb4b314e25bde28007d4fddea1068d211a6e9890ec177

          SHA512

          17c8810ceee2f4a5f7f0bbb3b6f500940ee7a703c3723a82ee506d7dbaa48866e1c81d2e52611313ef19574ac45caa0c3ad6d13999d1ce66b20a6b5b269fdf83

        • C:\Users\Admin\AppData\Local\Temp\Cab2C50.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar2CD5.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b