Analysis

  • max time kernel
    141s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    01/06/2024, 18:26

General

  • Target

    8b5b3ed1a6fe0fdc267c26f7d2866215_JaffaCakes118.html

  • Size

    139KB

  • MD5

    8b5b3ed1a6fe0fdc267c26f7d2866215

  • SHA1

    a7ae910a1c7ffa438c18af8b33aa0e113e197a52

  • SHA256

    028dc60ae57e948d97d9257b6192b75a715c5755a1dff0bdfa84e290d60f9c79

  • SHA512

    363c233ad5822027689addcdb73499f615dbd329f38304b18ab5d4f61fbba504b8aaf2c305e16697e70a2f2fc796054300d84fcab0b2a38b15b009e6be4b065b

  • SSDEEP

    1536:S4bn/E4a1+lj6WSZyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3om:S4Y4j9SZyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8b5b3ed1a6fe0fdc267c26f7d2866215_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1200
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1200 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1540

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    70ae11e2ef788a5a98897a0f2840d3fc

    SHA1

    fd21e498268c0b82d238976d9de3642e1f617d9c

    SHA256

    a88a68fb826a7842e73d50ff7d2d810f302796b9259887d3fbfb6f68c79e828e

    SHA512

    ef62a25e5539ac6dd1500b896e2d3aef31b0a156795ba50c1806dda8110617c453c00c93cf7e1d6ad782e45c8dbead6ce9e1e477d5425d1d64e8dde3f6122dec

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    93d38e12e167d6c5b5fff27c6955c9a5

    SHA1

    0231acb028e9f5a62aac7c6ed1cdb5a35c8f699e

    SHA256

    0b63eea0e70376344af2e597855eefebe48e5a2f579f366cf1f5250679955ddc

    SHA512

    393f4155371a6f1d734d8b97c14d7af601200bb53e78ac835046cbbb22b5da6db837b594354e6252375860f0fb145f2606a99c3f8e9c62b001d29a6c31de65bb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c59279b8c77297bf7f79e8d69cf00d11

    SHA1

    1ebe425e71120401efcc3c87ba72d612aa3ae003

    SHA256

    4b2fc6d4a23d213ef3dbce9396e06a74c6969ebc30c97f4a7d2170b6bd183687

    SHA512

    6081e1c13b59b959586e583abdf6fca54b77f0480720becc81b58195243112136f0884ad3c1e39e269723b4d591605bc76904ab6e37101fb06ccbc488952bf3c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a4aca579d21fa7e0e74194a3eda6e61d

    SHA1

    8a49915b7ba6f677a04e3ff7bfb3f4a17c6c41f4

    SHA256

    9921ee728230e1e48da94558bef2fcfa58989f8913e93c9cb828ef6de797ced8

    SHA512

    05b8ff1c06014683f00c4db4c113990131a394e1bbc27a05b9942044031209f100abf4373c2127652d36f70a16b3375ff8bc2ab8420b4815dc66a281aa59b4da

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    48a3c88d1b26df39d67dc134603a777e

    SHA1

    deee7df23c346ade5a71b299c1b19c91cd73d7eb

    SHA256

    ed2fe3e55cb942b4da44293e7ec9b1ff8ba5b7336647e5c2927f99bf8a7a102d

    SHA512

    adbd667bc093df8fbec90db912d863a3ad2064eef8c3f2b5792cf6a44a429700b4cf40f34ef52535bffcb38cf2bfe8f6a75749afbb78177a7ce9a81abb4f9fce

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2eaa1a042dd857d3d63bed83e046a637

    SHA1

    8eeff544f858a322b17a6e9b8629d2b3d436230c

    SHA256

    f960b154e509790e9ab9b44691bb8e53deab4fd847b3ec8826d082a6ed4aec50

    SHA512

    9d16bcd5454a320214eb86d2f5db485483e0852e1d0327840933d5b5662a7e832766b25ffe87177adae160767875cbf472157c2e093583033e6b6a543e5e8290

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4deac957a87e68db9c869ee830293d1a

    SHA1

    0eaacd384b7d43c13fb6c30cceb95d1cc202a965

    SHA256

    b01d743b2a220cf666b1a0267e113825d9db25f70abb60b55b2b529e20ac156e

    SHA512

    5eefe33db55b8d28d1889b0ba5d11b1f31cce3f94b6e4cdbf3d6df36c6cd5d09f908c96a12960661958c073137b619b50c2d331d33db9b1caf5f4737c3898154

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7fba74829a6586a1e53ad552d3830e9d

    SHA1

    ae1f8e374fd0096a31f1691d24d5c4eaa18f34a8

    SHA256

    c0f36fe80196e80f9ef629eda6c0e40a2aad26454b3859e187a9846da2301c01

    SHA512

    6d718dcf153dc508f7322038e4ef02c5a3881f9eb614293e50573bc9f85390048d2bb2fec63e1dd4da505ccae8bd3bb114aa4e5fac60f84a5a73f4996458d9de

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cd21cf1064e675092f15136ba7b31df0

    SHA1

    a2e6ee6a28f318c069f3a7d16614a2732ba09aa1

    SHA256

    8e9ee2ee63f24f2e8d37f712c89338421d837caed1128106c6bdd3b25ecd8227

    SHA512

    bb58a2bcfe447b91937b0e90ac949be25848051443fb6e48a97c1fd4a4d59d3b52d82647bdc9bf12d2303ab373dc9b8fe0a2b15b9a1900cc8f763aa1486a6f44

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c09e8d43b0003d7ae9fd0f84964fd5f8

    SHA1

    873ae3c1827752fb13b4905ef07703329393ba13

    SHA256

    41d09b10566f9693d1ebfd5f7514fd6b4786d4d6bfd0f41726df63eef052d581

    SHA512

    9a8b8385feb8b2d3b120d4d1830c500c670a5f9f422fc8a3dfa8ff7ee935bfc67fcf751343d66a9bd7a45a86dbe00475807b083cf492ec14b97a9d6e276346dd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ab092b0c106270f9f94b2c7b9c15f5fe

    SHA1

    522ed959355a3dbdc467c73cd74345c865ebd1c0

    SHA256

    d885c2f18fa526a72b3aeabbfc5153238d05873b7676a84ad2e01c68a7faf132

    SHA512

    75beee7b51a1fb286593b50054ba075f6128231104d07e3568431fab8c84ceda3486f4fe66ce51160190edc52fc5698869003dc1e35b463ccee0022b3fe74c96

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5637ec86667bc1f34e530a6fe21a6215

    SHA1

    5469ef49a96374ed3726a78a614d9b4026179302

    SHA256

    08f82082c11e13266485ae73ea938edacdbb58d580277521829986192c0f8bef

    SHA512

    dc37546b1e4c8d825e89859082157e7c36e1747510eecc4238a4842449cee3c3303cae3e917e9d1fd3ad01f758b796ade478b6dfee0c158913e3a1e0f1c9ecb4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8e7869804403ba9362bba54d7d6b2a23

    SHA1

    936830e1fdbf6c9bb815f32c69b11172311c04d4

    SHA256

    86ad6b1e277929b09d55745994235e32269fd9d869eaeade43ec4fc7c7b6c1ad

    SHA512

    81d35610dd65848e3ab4697b3fbaeda2974b49254af4c2fce756707eed7df9e412830acdcf0833b5b83b8aa0cf74e2a7c0c75d0943bfddc81ca08e81abb24439

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1f1351417f8be53a4120e4f732f30b4a

    SHA1

    bc2dbb624c3dfc033c097419d0eb67a45feca909

    SHA256

    c7aabfcd876b0bbeda2467e1f5a38d3edc7db95e316ac354fc4357318d0896aa

    SHA512

    96159884660511d082a66ff54224a97ddd2f6670ac422cb56790fed2c849306d1804a4a4cfa9614f82221a040882c046b180f9efe31571623c67a32b3e4e539a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    59e1f889fa773a77604ee5740f4ce193

    SHA1

    9ec2cce9a21a89ee0ac7928061a56bf7489ecff6

    SHA256

    997ccb19a2564283435dca2f975d89618de8116c86ffe940130c78cac4485e5a

    SHA512

    b7ef503286890af288648d139dbd6467f3de7a212a454188ba0b8f64ef78c3168e2f930a5eb8227ab75212dfdff267cd43335747815661a618bfde9f9be64c4c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2bc6c4bbdeef27053457af08a95b21bc

    SHA1

    52e0459cc798face130468314db18b1b90669a0e

    SHA256

    317f8e8a160605479c05cb754b37585e3a1983e67353824cc5f98ebd2308ab3e

    SHA512

    73eed2c4b2603a911b9a46e2f8c69b3fcc84430101cf7632d450ec40e277c6e2a480d4ba61e044a82842dcd561959592902968c5f785dd1153d280417c5706a4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bd8d8f70183e4062a9b2677b9bb8768d

    SHA1

    99005c8781309179cb5563a5c83fc21e4a94aeb0

    SHA256

    9f1071618f39d182ad717ac17accf067d12faa7ea26e6408ed2bafcff85a3da3

    SHA512

    ecfc17b09e5a84757b935740478bf2d8d4ecafbbc902749de20a7485107a9949b9fc2fffc7c069d20eb7c4c40d81a6b75e7b3103a2364be963d60b9f16835d92

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    901ca59624563126a60abb2e806f9d64

    SHA1

    2e666eabdc7d49bdfaceea2e6188ae7612210cd0

    SHA256

    6c2b140b02afe0019c89238028cbb5c393b4faafd240df05dad3bb83e486d070

    SHA512

    0f79891ac4a7f59d4058476368692a04b936f3cc14ac1ca36f73270c7e5b0f87f93811432842138d730e64d3d832b1d13a01bc0d41442f173f9251e8d4f03527

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ad56a29833fcac36376447b61854f812

    SHA1

    855fdbebd1f58023d07ca5d1ddc682a4e96ca9ea

    SHA256

    8bbb8ec5b473b7a4f21f81892424cd1c15e74947d0bc871e3c707ac2fb9a4407

    SHA512

    5151150284b1b4e9a38b3e98c8a9540272c3c61535f9848e1c09ac8b5cdbe8c5b419d1cc9d1df65cb874c58044b2723817981d32b43ea81b0b282f3733604d1b

  • C:\Users\Admin\AppData\Local\Temp\Cab1344.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar1445.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b