Analysis

  • max time kernel
    138s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    31/05/2024, 15:53

General

  • Target

    878b9c2d9f8cc5c02fa01847fc720d09_JaffaCakes118.html

  • Size

    123KB

  • MD5

    878b9c2d9f8cc5c02fa01847fc720d09

  • SHA1

    ed259361ce3e20bf13d6efab164bb045f53367f4

  • SHA256

    8826f48608025a3f45429e502a5646b37e5393b296ab19e198163ed579e8e8d6

  • SHA512

    7aaba24b4f3e9cee8712d3a9fd968cecee7ac3dc0a43824c8ac7ed0b638e4e2ee6c3c350ba4d036d6462fc666d8dad3638e3f0f5d7ea94d4f369f6425d61d01e

  • SSDEEP

    1536:SZ12CaBHCzasaayLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrk:SbasaayfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\878b9c2d9f8cc5c02fa01847fc720d09_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2784
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2784 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2900

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ae45a7ee72201c7ca13ffca83c469195

          SHA1

          1090b06bd809a793ccdb0bb2d47bddd72456cad0

          SHA256

          33d4e25a60e5f8c881cfc2778c1aca99839f46e222d09b92146b8d6ef0dccb37

          SHA512

          9e4bc1a36ce4d00287c9e4ecdc7ce38951be0d036bb9f84dcc594345210ef7bfa7fca124ba17949a9e9374158599971dbfabf444e402f0c1a4c494432cc4f043

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c89134b39ee9049f2b58a748f6b432e9

          SHA1

          3769b387f90c258b3b6d2e15f4655faf8ae2a9fd

          SHA256

          a790b226a67ac0084cacd050db62c41972def27ca1af68531dd53c6291cb8a0c

          SHA512

          6e508b2a40eb88d9c12c241ea4ea041e208f94af8981d517ea4dd7a1ac91c0f6d3b5652bcf8ebadc521d907363e64ec32900341f5066de214f08c2023931494f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f7cfa222e0b4d041386c223b5be43faf

          SHA1

          72643892f6aabc9e1e176e7b600c8f5e1cc2085b

          SHA256

          4742e2fad65a29fc24b98b1c341c188125378d3ef4aaeaf8a6b7b46286fd0497

          SHA512

          67279728334c81172424a2033fff795309fafd1091061b4ba8bd0be7747946cebcb7908e41b94c12ea55fcb490379eb490f6414e983e9ed7e2d511db5f9d862f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          274b003ebc5a5bc665fabf5ab7feafc4

          SHA1

          1722e3d84ab5f34b97f75f4add6415539472895a

          SHA256

          92e3a44db2e2005acf6b9c9df631b65973490e1b8ed02943d5b47735a29490a1

          SHA512

          272098f9680f87278449eb46f928c0bcccbe2b7385d681fd8a429a56e5d25556a421ef37b69d0b9f2478e802a7f2dd791c652b89a3c6a48bd24cd9798478be3f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cded1c82c81d39f9668c8f464210f1a5

          SHA1

          d8502b3af26d773f55698cdbd6d7f46a6c5d52f0

          SHA256

          dbb5c792650fb6b016dca9860fb499ddbffa11d6a4eb085e7a0cad7e9976d1f6

          SHA512

          5700060d5b2f1c665d25892b1f0c713492fe81486385ba740f77fc58b1dfafd04905dd2d4925f4bb4d01daf2aad918d3384ce22acdcef2720e70a7eb1688587f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          419c3f0410498bf9a90f86f1887c64c7

          SHA1

          fd628cb84a3b827ef196ad6b65b345aeec398a8d

          SHA256

          e001ff8282faf094cad6036bdde3b2450dfaeca4d0a6f092bbb6f5e54a5190d9

          SHA512

          6076f2721c46409a29221e985bb503e1717016078c6ed02620ad37a3d7b3871a2063ea2fac4d43651b22ffb87a265d7f5242a4e4e8d5050327467e2a4b6f7903

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          25ac9bc886699275e80e2b4d3d4dc939

          SHA1

          24fe12e2e966dc729fb5c973ab029dfbec190fd4

          SHA256

          e6e12fab75534d2d075141f2f7387625e5a6e7f6e9a44e5b6eb6556ed729af49

          SHA512

          8018439573451741c7f2c6386b9e49a60951227ae137acf39527ba13c8b47fcc0a79f6a6a62e5b354fdbf45fcde16d71ceeb80705859840d647a8dce8e5b6634

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          33c98cf9e06d2bf36390a0eb7326ca04

          SHA1

          4ee6215da42abde4edb8455994881d97924b4f95

          SHA256

          ea6e861a77a8f723a987dfced944db34d5dc8e57539557e8923a5fffcce88cdb

          SHA512

          f6a40d35912a00d48a1cfaf7b7d400833efa1989be4d3149bdbe7c6abe196f8a5ebd5f34b544d28dd604634042a06b0a7fdce93572ea179560ce7da89c3c7b17

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c428d077577e42f63cc970bf038f3409

          SHA1

          c8c13c4f1bbdc467304a4e9d22c92e1ccbdf915a

          SHA256

          44f9f71d485dab0e6e883def42c52d02c2b932df2f4ef67c56186aa055c1b213

          SHA512

          23abc8ddfabb803b621f0ceb30e87b7009614949e3750977cb83d38d13b8b4f2e00430bdf88da8f3767a200344ed4548dbb9ce7b0030c5440b522229be3a37a3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ec301a02e31cd87c0911662d04d90d22

          SHA1

          c8329300deb3235e2d576e307bbb972d2fd16c0f

          SHA256

          af77706ea1d5cd0a4e6d90c0bdc2f65e18da68af8f9a17380682c45f5e486690

          SHA512

          663703a2148a00c3c8d24799f67c300d033d8bbb9d819549436c25b625f55d5a7a8df14ed1a3543bb986acaa5e63a9d893c960cf558a1dfacb9a9cae48d9ae86

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          44624aeacb7fcefa7a8d206b74397be2

          SHA1

          9347d2fcc3fc007338ecd660860746396a693b73

          SHA256

          c85edb6f75430784329caf78a9dbe66bed84a8c595d421d345b975741fdd0a64

          SHA512

          230f075a9d380a0d4d032b7e8059a173d54d864e595b1849c3a0078ae65ca05f964e4e1510667253b6014c6880b82595dd264cee04e6655d3f9b56ebe1512b17

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e93b9605f8619476095442254f35c0d0

          SHA1

          0c7357286b9ab4e35349c769cdbc806a70a774b3

          SHA256

          9c2b98ef0213d9a0716140717e82d8327355fa4fcc77312bd6bda11d8d24f29b

          SHA512

          57622b8938af0ce3ee5622b1de40ddb99c848f2d120ce462446a2204d2066055a98937a14c3dc9e5bc4127b7ec9556ade310f882497257fc702ab00a86706210

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0159258deca7d436a9df4cf4999f9836

          SHA1

          3fdd7b7a1c51ba88f4f55e787d96d8ea432b30d1

          SHA256

          1f3be93abfc6adb1addb655b14938100b553e17858fbd460dd6db04d9c3b91f9

          SHA512

          9b5bff9561c6f5cfde52e8852ad254b696d28a1b323a66f135b4f9de6ec40f2fd26215525c84756a851c9a5c22b9f8d7f24a96b99da7ca5b97161b98719fb35e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3cdafd59f0f1606fabacab95cb5fd8bf

          SHA1

          0299cc27d5ce1d51b0c4bf012578e8a942100cd2

          SHA256

          8e7e80da4f3f46b9f6dbf8c179a73e5ee3a901d42962fa38b190d4d5beb14e27

          SHA512

          36f5ebdfb42e161908bd4968ff7c57ae19b2524207c61e89b256617e294887649f568dc81bc5e0b34589056aa57adb1927442faabd26a6e9bb014cf6810e2b69

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3cc59183a6678059a21f18b8a16935b6

          SHA1

          a17028902f3230e82118887214e13f7ac16b726a

          SHA256

          e4f6af5bdb37df28be192766d3307f9ad06dce848689713d2570d22a890725e5

          SHA512

          d51f529b407220a285f7d881674a30a74fb7822c234203033791990e3d26d64f729e1bc33742d6530a76a6897bfc164b50eca2c8ae34971bc2699f91097dadd1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0aaf9fc49fa74623026ec81b40a89e65

          SHA1

          94218509d7ed4d0e36973d9e5f1854e1baf61f00

          SHA256

          ff8ccfb6177314adaa28dcaa8d64631e83cf1861e8769e9dd99a92ac1e10228b

          SHA512

          2ce814a91d4269568c81d01a771ac1615e560d99e359a94c443ba3dc5fa93f120afba987bf44b96cf2a31d65729ae67022f5d126b2d0bc6ae02b0bed9ebb7477

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5241464a88778f71518cef57e5fcde64

          SHA1

          4ec119f3882cb03a0677a74b077e1de9fa46384a

          SHA256

          5e9b128448075133e0b249a9f9faccd38dd2a1ee1a60365a3d5c06db69a00a3f

          SHA512

          9cd70456560ae9a08ccda6e0dd1f8c9d0683dfc2ce79215a675e78e32d2b3db41c11ec7454621fcfcdd5ab1a7d406291355472359d4ff62df438019b8be19479

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e19faae9f6c1b3c3afabdf36b9fee093

          SHA1

          77404587f6a512a1a553f502aa5289d9605d4dae

          SHA256

          c5be7ae9270326d8fbcf77fba5d7022c8ae1272e3164bcfeec13059e5e1d58e4

          SHA512

          22c3af370ee4f63b2b0b306b68de4d18f0b92247bf19cc2b11c4e3b66c6668c85e77221dec8eec4561241c22a45bea7c6c7486c9a378ed29109fe2b6ef13665e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4f8265ca8cad1a000e84568ee668a396

          SHA1

          43b11825648081d4ab9b31c70a2ae26d4ba2eaa5

          SHA256

          7f6baa4851c31c097074c27029a5bdedc23c324dddc732d2f70d5c46724d3b1f

          SHA512

          8f2dd99873685744d8ba12f24badf3533c591e231f7d1e2951f07c3f5ac12b929294ebb9281779447c176db72cf52fb093a366b8d3dd581ccea9140130abec02

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d3bcd8f94337623869f89caca157d6ea

          SHA1

          c6f174d05c849539fcef07eea7ab298b527a087d

          SHA256

          1f2f071275b6b5e80d657dc50472fe6419e374ed3e0afd90384f4e1a62d35cfd

          SHA512

          9f25b755bda5e6d610549a628629a2376fb223be13ce54a87143b05940493fab6d5f1b30275f9198f4d08a511287256f5dea5fe40a3636eec92f30031f9d8a3f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          122a260551eac5b05ba96db8f4a69d91

          SHA1

          1cb60936c74d1283ea21ed0d6b6de9d7e2b7d4f4

          SHA256

          8bf507c6061db2e0c2ec11e4c83faca125530c22adb0575c8da510c3b0f26cfb

          SHA512

          c2f6bceefcb2de2df56a147c61ae6f2338303054410ad97f851725e258fbb56ac2ac15c28769a32f72e3b2e1e5540ce67aea12b179a3f3f72e88071cec2651dc

        • C:\Users\Admin\AppData\Local\Temp\Cab9CDC.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar9E0D.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b