Analysis

  • max time kernel
    117s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    01/06/2024, 18:27

General

  • Target

    8b5bb86d9117cac12eca922bb7ebbbb8_JaffaCakes118.html

  • Size

    2KB

  • MD5

    8b5bb86d9117cac12eca922bb7ebbbb8

  • SHA1

    79ce28f39f5ff43b3ba06000c3210636f6d960d5

  • SHA256

    7c0bd27203fd73606d59d7f926a10e408b2964f67c701c3a3f98a2e780e6d069

  • SHA512

    f57ddc404b4b900c33a822cc866b2d9ae93af896ec6ce66bfd8720aca4cef4307b2c80a91c5cf67241e8319052b556a53b8ba2c22784ef25ba448418dbd3bb0a

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8b5bb86d9117cac12eca922bb7ebbbb8_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3016
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3016 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:940

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1b7e1ea537f12192eafc60955c1395e2

    SHA1

    c2f775d902244a27ff79f8952ab2b2dab81ec535

    SHA256

    630c7b146b9cdf1b818ac2e6897ac429b49bde0cd3377d17b79c833763e36d97

    SHA512

    a736866351b1fbb5af6e8e3b1b2eed158236f6d157266839c3ebed49a37de0fb870cd6b449d18727ef56f8ce1e87eb33f77b5e4c0f8445dd5a720dff66c864e6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bbb5ceb154848bc07cbff964a808fbd0

    SHA1

    d6a44d388d9d0b5c723bbea704cefd5f5dbc0ec5

    SHA256

    7cddb33d1d27c3f92263054fc5433d72c4e5786e30e3c436f024d4fd5596021e

    SHA512

    03859e64e894a2e728c377e45d2f5ba4b6e058e936418491c8d8bdd43fe3adb17378853bbeecc5f117999f4cc445945aa8a31debd06f0a28cb84ab0211457d21

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c84846a0ba38139589b46cb9bdf1fa1e

    SHA1

    2c9809d99f9b98abecc53b37d81cf67015d817ab

    SHA256

    579966bed693754f745a34bbb58bc72acd526eeaa6b64c56db4cd6e916e2fda1

    SHA512

    1d9099a6536b909f45a433659e11518615a23df6594e030cf853fcb01d6c230933007b249b2a209b9d6e4274cbbcda48f01b4471eef8b2a8ee2df8961d17edae

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c90ec88eccf79d5be8d5fab7df6092dd

    SHA1

    8bfd327f840aec61d18578cb12278b44fe6061fc

    SHA256

    a5a2a8cf5fe2a7cb6e5a8a61e1ff4208fd731eea60379b1843c6909e543deb1a

    SHA512

    1ce92fed9f64e2eeeadaf6c3d33daf5fa8e143aeeb1d8e7ff3a61e68349e4d8e635b0ea0b09f765db103d26ecfe3903093aa2692e445ebcf1e072d54826ac8e5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6f5990e3a9e09a416f678c8017f82530

    SHA1

    cd1cd39a47f55f35effffb7bd7a48a0e22ebdb7c

    SHA256

    3752ce1188a72b221313f16b348d06558cee381d2da8118841945ad2ebb5592a

    SHA512

    614134e8eb940523502ed3dd94431c56166dc4bc82516d02c304839dac7b7d5fe3bfe266c9f373234c88294975d3365b6fa46704729d8fecc6694738a2863774

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c5f6d13589a83c2559ea5373b051cfc0

    SHA1

    6bcb4e9ac25475749c083e87284457d3b0b5e02f

    SHA256

    5b679f438f3035e4fcfd32201bf92cb5372dc2657160dee6dbcc10204f843330

    SHA512

    081b2c16243db3b9dd94c13b1e892aa9350004a2c386e3689eba2fd162954a52049488b50fb2df1b59bfbcceb4f57a26960ea85ff249ea89d0c5f6bd8308b06e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    382ee97f7f7a1cac26d684f1d1398c3b

    SHA1

    16d66c9c8e9f5573b001d79857bc16a6a6f7923e

    SHA256

    3cbd55f8092e21105864fd24590c070a6e91fb7f89cf70a473a453ab85d67993

    SHA512

    4c3eda8ab2af2f5b742ab91fbedb50fe760e6c5fce269082443d18e0e298fcdbddb3b3714ff0ceff46979e2955c744698ef596ba954dca026bb12a165c5b47d5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2fc07305efa7763c7357b2b5739033cb

    SHA1

    b8966f794e0be56780e22a46df6cdfab2eae270c

    SHA256

    828cb98010e3716cfe6575d4b202317452b8779433b84175c0a72114805029f1

    SHA512

    733a8f8477934c03beedba85f9626ee63112f5f52baca1bf4b687c5aa744784f23c265c311a73ae399add4a3da7cd6c325cd967ec752f7e613770b77ec0b2138

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    98627703f76a1fbfd51e4f9c4deeb2ca

    SHA1

    b0da7a47a06cb905de418b62a0f3c8a1cde4261f

    SHA256

    91c8fac1bcd39bb8ef91c6d64b516a682a8eec8c83d2424b6154a7141a33234a

    SHA512

    e80a0b235405ba2348e7aa52dd4bc9f958f0c3220b6a0dfa4314bd65335db3e19ce28bac7af2e39dbaa04b6299cedf781a7d5d9853733c81c3bacc37b9c8ce65

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f6c6afe0dcc068705c09b54ce5a6199a

    SHA1

    7197f272e093a62ec997c0548f84219f95483820

    SHA256

    d8c722d2782ab881fd5381ec3d877768a36c02c776965a97519717eca811e593

    SHA512

    1b206f741e740faadd8af9252f6d5008ff1b626349fdf20142c5293061a9fffd9c6c3523bdd2cee262a626d6c445d9d8b5e29cc7af2e1993de58ff910cb78317

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fb8d0f31fa88f8f0c6a626e4e7858f28

    SHA1

    76f251e5774b789383bd8c542ed3c317e2a1390b

    SHA256

    46db33568fa1ef4a87ca0337e4264c6d617172d19c0d91b295ef023defb93eba

    SHA512

    ab8e89f7c17532e8e625085a02229185f1eb0d2e42e79fbdda2a221262a154f1796cc0cf94859b4bbaec01e9379f82433eb7029f5db2bda0fb20508e4d55256e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    628edc29a3a973b48e24b3a67b501f9d

    SHA1

    5d56f9311ea0a683ed45cd8591b50f4ee8ebc259

    SHA256

    eed8441914a86c37ebaf7b62b15c6a8ce2655ebd5cbc51380c3839ba1aa2e7de

    SHA512

    37ea5af66cd4432f18cd05cd10472688903ca8e56d9667e47633ae9613214cac8794fe3773d35387aecf21388f431d9969486ddce5f353555435f982816d1e3a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    83ba375a16010ed62572bb005cb2b159

    SHA1

    c016c2837680f5807b05fd5a59d3531ba0055b86

    SHA256

    911e537c84bc74c427477920c3094986a9f03e42c2f2eb8ebfb3c7647313a64b

    SHA512

    be6ad890616479b829ac9ee3a39937a48b615f9b256f2dc40f7dcbc862572209b4372b99ff08e96ae8335a2aee449068a7fdb95c13e32765eac1755a5c0d8056

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    05af04486e8ef20728cc0ac6c3ce806a

    SHA1

    4280f5657ef969055b01e6f8cd0fc4a3b2bd7545

    SHA256

    dbe1a79fff84e51e4f008272e9361dd81e95d674ffa23390e88fc01141772959

    SHA512

    4733d555e07a501f066cc46691f39c23eddf2ec3fb315b76aa1f2ee69ace4fee8438799758c80f04819b8aa135d2df33704a8b5528849b2f7bbab05ecc509a11

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4750da16bdbd0d3736c8e9ec446a8d57

    SHA1

    43dce0d693d339ecac1dd69553b7e8c5e370ce2e

    SHA256

    9c1fd6267eda0ca975004d316aa0c769ed39a7c213bcd563b8e98761eefd35f5

    SHA512

    a1caede06e53ce524e0eb7aac909ad46da443b75f2a0b32b0504ad08a456b074a88c9f9a78c7f06de3ea21772b4217c27e1e49f2d8995ec83ff60db9121a73d4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6a5fb3f207ca4a52789ddce0aeeee3a8

    SHA1

    d8d9ff7162aa6b2ed0a0c15154663a30c7f8dbff

    SHA256

    55cef1613bcac16f10edf014a170540b86a84feffdb8c9a77dd92799a626ac00

    SHA512

    5bc266ca2786624a2567bd422ff068949dbb9d196d5d36f729139da4070daf088f74c25dbe41d18cb50bebaeb6121c06405ed87176b34fe36384d300fc44ad39

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    945e00dd032962f1dbb9f8401f575e54

    SHA1

    b204dc139fc4ee6ec95d9882b38ac0a4f1483822

    SHA256

    cf796df5183b9996aaabeff69c35ceffb968ff29eeae461b50bb160689c5b6d7

    SHA512

    edf904a9b323e0cebac55b92482774a91063e2b389b46b6ce2b162d2a065dda2a4248452ce4d90345de9cd67f572edba8e69ff42afb3c90a2578b0bd6ba572f4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c452067ce24183892db9013a72676f38

    SHA1

    2aca6a686a9e0f9045e7d5c72661caeb9b3fafbe

    SHA256

    13d5f4fc078f1afa4fc61d2df74af4e6a0038327723559458f2d0cc14ed23d85

    SHA512

    24d571cdd75f7fadd29b00e8837ef7e48015360caccf24d4b47468e75a891edd888411ed2dc1b3c9682309c708a38e8986ddaef948b9c9e710d1a64bfc4c9ccc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6cd9e4b358072c069c8a02cdf383364d

    SHA1

    8b1de197bda5567d7586f6aa6fe47e7f17da4a8d

    SHA256

    c04040c6c5f7697a0fe67a7d177195313fedb78584d828d965130496b9f6c8e1

    SHA512

    871cd59f0657a25a2e38b4832553627bde34ba50eebd3e31665d251ebc7ee1904eb1b59922c06ac37d1e91d265820d1d1c136a5fa5779814cf5169427221155c

  • C:\Users\Admin\AppData\Local\Temp\CabA72A.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\TarA83B.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b