Analysis

  • max time kernel
    118s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    01/06/2024, 20:04

General

  • Target

    8b9d90fd4e5c8d38337fb89dcd456be5_JaffaCakes118.html

  • Size

    67KB

  • MD5

    8b9d90fd4e5c8d38337fb89dcd456be5

  • SHA1

    ddc436bd625c5bb154c1838bfda3dafa228bbcad

  • SHA256

    51a11b4204ff26ff58045297b1c6fa8352fd7591810804b56cf5a2530de6bf25

  • SHA512

    43460845ed2b15d5724aa6cf9f01a351ffd055829e3d498c9ce2ccce368ca9c1b3561321054653a0a93cd226c78284a17da910ffd5ebe362b7867758d00c4fc8

  • SSDEEP

    768:JixgcMiR3sI2PDDnX0g6R02loTyS1wCZkoTyMdtbBnfBgN8/lboi2hcpQFVG8s/k:JV3TzNen0tbrga94hcuNnQC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8b9d90fd4e5c8d38337fb89dcd456be5_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2160
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2160 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2544

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e1dd9c64a230263ba3d7856b100fde03

          SHA1

          ef146e14a6ac56f48b0b92c9170ff7164a3db197

          SHA256

          1f02d0876b63c04a4837b9f23fd1b1358d78130eb9111f10a480b8ce23623138

          SHA512

          5e3461257ff9685a253c0f7bdc6ebd5d29a2fd7feb41b45d1c677bd02ffb104ae6bfd47f905836f08741cdcc9947dbcc885bac0d3ba35f1e6a8d921e673449f0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9246dbcbcdfa79a89b5c5ab1fbcba741

          SHA1

          7c1d1a5ace4a87469773abccc45a996256bd0dda

          SHA256

          da7c6ed800dc01c0638a14763107adc3e9ad9f95f3b6a1f1ed872c865084d51a

          SHA512

          bc45107256d75f22c27def3da36775a8d3ef586bed93a9c6f6bef36e2a03473309bd3eedc64c8d951fb7535e3e9f33bade9b9a2301a5f28bc5a139acf3316f64

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0d2f6296c22073d4d635f038c270cd6a

          SHA1

          1725908cdcf8f4ee091b7a119f54452b747c879f

          SHA256

          8ba00711c3e30fd75f29a81622c61841f97673d51683851c25b7316f4563a955

          SHA512

          93f5358267920ad908a90ba4dbe0d790b47aa9d83d5746b727de4e4b2fcb19331d0bf64ccf149c63ea67d85eeaa561d5023a5cf40d78f5c8ffd7679f07f28355

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          17d5e30a98f4530c7e200805291b535a

          SHA1

          e491fa66c8e41f5bdbafc5cbde1a4787366f2956

          SHA256

          75a6a983e1fa149b175472c271d38a90f9626046eed468edb8ed019cf16a272f

          SHA512

          ab68c61601174aa71413403ea5271ae52f7f4de821eaf36e1b3d1d239dffc89b3a7a5d784776b6ee4cfe06905a43dd03f1cb12efb91ccc77ece675cd10c58a74

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          011527e51e8642fca3b8d00f301653a6

          SHA1

          ed8392b6787e7423fb83d0fd3061dfc1ad1aea7b

          SHA256

          7023f5a1d006d945f3537a0ab1d2e4270db75abc103a790b0b05d35213c36707

          SHA512

          20112ae65d8cd99e192afb359a4ea97c2336b064df042e2f1c0a82470a85364bf32a1453f6b0acb198ee6ccdde5263a2b386688ec38643d148a77ce266630355

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f3157dacc3436691bd67d5d205ba2e34

          SHA1

          0604153ab8b0b51b0666b1e86577b49c00ec6a5e

          SHA256

          ecec020e87597f33ea2ab04f75fa264c6b19d87015017e83bbfbc5428af3b143

          SHA512

          45633cd5a5e14c2d0503794079d7b33d69c54d29128c1ac6751adc5d169195df954f0d66b47a34501a556600a416a0c3e597a3d5ce0f44cfafaac5129cb3f894

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4fa98c62be8e9785107e4ba9099dfcb7

          SHA1

          afa4b50bc1ca87b91f249b4c9326de433cab26ed

          SHA256

          aa2fcc2dde8ca98ccec6a18dbb71f57847977223a3c3edf4abcb6b2e897e0f5a

          SHA512

          c32237723f2a275bca9c47407bc1e41e0f3bc0b3d1f7240810b69549df46d8b7f6549c576e7f625cc4784003a088fb4f9634dad5b49793beaccca0eeaedbfa23

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a352a63ecf03120ec824eadae889092e

          SHA1

          e719f691eb32c24270c588db32fec3398ee2516d

          SHA256

          f55ce2f622712130508f6033a5b4a4682aea7c255141175b5ade69ab36d16b1a

          SHA512

          655a560e3a90dcef17ef152c6544ca974d5b6e1bd039acc6e76d2c9df27f176322d859cfd47123654577abf96f27aaf4a4a476d795c2d532d3321d1236c2dcf5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c1c507edb3719e9ce37cf13c117e13fe

          SHA1

          6aac6636c2079f25f96f5b7633aa8bd04f2bc0d5

          SHA256

          aa092c780b229f8b3821e2bacf6e8c519bbec0a95fb7b52ecf3ed82a7939aab9

          SHA512

          76ab05cb6e0e71d9111236f1ba570b888213bed9b662b395c2af9a99e516db8f9f3dd25457b804609881dec5114b92c6e491d6d701703e3853aa9120c1cfb9d4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6ee630e056bc2a05ca1f9874be920d6f

          SHA1

          1c74f73a3c5583ca3664543750118ebb3a681c58

          SHA256

          a2fc4a4ebc7ca81621de55a2c66122e9521102efea7161223a6d3e0f82839a35

          SHA512

          1489cadb018ad44c6bc597738f17d877c8e149ac44c10ebc44f79984e610cb7f136200e6f08475575ebd7919717c9ed095793150dab7b5acd9d6b79bf197a5c0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9329b5b40674f31a0352a15c460ccab8

          SHA1

          45102551399a843f5aa00f86a83835f88d65750d

          SHA256

          522ce2852b09ad8754fb6ad74dad7264520d5f119e92ec879cc4791ccdd59d40

          SHA512

          4ecfd0c939a108f585c5d7e5211d7d66ccf58c90f8112559f7575be156a9c7ccf7f75ff7ec8bc7e1bc669273bb1d7bf1647e8479b1fd7dd7ba945558702e2140

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3b3c4f497751893982727d0af66d42cb

          SHA1

          548f9c51740126b286f1c4b3e54cb20b4b97b17c

          SHA256

          ae6565c120dda2970e4825a6fd4569ffc9cf2ce3f4daeed1743d7b055861204c

          SHA512

          ab430676faa64e8a8a6654ce28a6b1887bedd844cb6c8252e476587596cca01724c0e94132c1c48784f1273bdfdbb0bfdd9307784de3dca7fba601970bcb1c06

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ce606350db955f85d18f254a7036dbce

          SHA1

          3b81fbd45ee1cf3d3eae4da1040d1e1a04910ef8

          SHA256

          5adb9a2fbc26c147c21df6b4826dfabac1af8af49bc9b0a31891b1abe1cdbf4f

          SHA512

          5d1d9c79f2a9bfa77665c6d3902bf6ed9931e7a907ecb80db8ea5cb23bf8561d9c95fc4f4ee08d583780b0ac902ed0cc3da9916639513bc2c53919b4467fe10e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f3a7315f7ad9b272f03e913f93196bbf

          SHA1

          99ebe7452900d3cee9fd56f3dfa2cb228bdc4dcf

          SHA256

          f4a41fa749c51cf703311d6b27fa95d227f4c029a64e4c93099d3787b5d8da6a

          SHA512

          939c6944b8ce9bb16a15f1220143e5b2c098465cd4190e42e1e4bae2b0bee479aa0342fc1c0a044996c4813dbc10ec95e3c503e396c7fc45e69fe75f5ddbcf98

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8873b86e9257a2ed3641680a5fd0fb5a

          SHA1

          f8403bc9fd6f7fc9961ee17419e22da3188e01b1

          SHA256

          e9a8a82f234a256f94879e343528c5ae529c8e0415ad7e9c7007913c785fd861

          SHA512

          a1e61333fd730b2a1e2cb1f5a675e01d04aec7a3ed9cf4998f0c0ef8b744e5f10cbbc5f68e8f64a4302c4093d882e407bfeb7a0897a6a5747469c8ef4994ea9f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0a5f889f1a624f4591432c2dfa58ee8a

          SHA1

          001bd1606a5de0c0bffc03a7f6907d7bca8eef50

          SHA256

          6e014699b777b1e56aee0e1135db16c07245ed1cc280479e189bcee66dbd0ae8

          SHA512

          2ea2a6f1b5a2edbbdb0e55bde10a066c8ba2d8d407c42b45cda4035f76d9917d2817b341b7ff0b26134ca5ac9db046fde1325c861057bc88db087ed766ea9a0f

        • C:\Users\Admin\AppData\Local\Temp\Cab3A72.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar3B75.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b