Analysis

  • max time kernel
    119s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 23:09

General

  • Target

    8fc1898b7a288b8969b3f271d7b8e52d_JaffaCakes118.html

  • Size

    462KB

  • MD5

    8fc1898b7a288b8969b3f271d7b8e52d

  • SHA1

    5fe7915244eb1272bb182b4d6c3da8815daece54

  • SHA256

    852774d25d11ef90cd8ce659d6db4d09701c21d0399720a036c84ac02f74ec3b

  • SHA512

    88bee0b1d419be16b6006fb5f81dcbe676df4ccbdb94345f1ae7e6c77ab5fd15a30564a31ab6cfd46c8534bfd5648e12b0f9f256e72a09fc0aa7935516e750b1

  • SSDEEP

    6144:SfsMYod+X3oI+YnIsMYod+X3oI+YIsMYod+X3oI+YLsMYod+X3oI+YQ:o5d+X305d+X3Q5d+X315d+X3+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8fc1898b7a288b8969b3f271d7b8e52d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1320
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1320 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2824

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          69778c2ff79886997461656c3919545c

          SHA1

          593e96d4cf073ac914c84cef8a85fbd063716214

          SHA256

          d882745230e40fe81282bc3888e56a3ff557ef9e04e517711f740a3d611b12fa

          SHA512

          6825272465cf0a1c060748fafad1a2ee425331d03a92d19578db4bebda031b19d8aecbe4f770a95476abe5cab81608be21de044f03899f0ef417d027ddb76eaf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d5a74107302e61b2dea721a1caa85d86

          SHA1

          db8f4885cfd170d7626a5aac4ea8e7684ef524c3

          SHA256

          2fc49344304a29d49249fb034f2546ce1857ef734048bc531499ebcb7b8c9517

          SHA512

          aeb378e81f9a6ef40764755645c8c0742737360a232dca6b86a30d07d472bbefcc93ef5a53395324b08d2be20335050157d8af545ea2da53b92f5866c76acea3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          992975e9a91581098822864f1561bc1a

          SHA1

          a0c27c072f7b4a4c175127a1edc764c6e073d490

          SHA256

          d507045b2eb3c49bcc46cfac67835834850e1dccc9871a3ded2cea2638cbfdfb

          SHA512

          ae890f6eea22e1b83e2c16c9849055d94166061fe847d9066bbd84a9870739b522d7a643fad3104fe078586484c6044f2ec4f6e44693a8597fc0bbc175f8c7c9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          dd6ad9a93a6ef0d897c5a427ed5d16f3

          SHA1

          19f296598b2418cbbed7a9a6f398a922637db885

          SHA256

          daf96eb90decefffed67b38dcf9ef016ec6bee98766d4b817818334a61f4bb43

          SHA512

          dc5ab298ca0d570d98adade2a3987f0c2c28b7e723f2213ac620174d5958a348e275b6ed240d1d7252af92d70cebce6c6add32873f4f2f3963be6fcf69928411

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          64388fa606c55b56850badd9f9c82cdb

          SHA1

          b9bdbffa1ffb1afb6ce879d6ad40c0640c53d35c

          SHA256

          be2bd514cda18c2fb789a71fb64be37809c401482031a1003cb6fb2b5629b227

          SHA512

          a0530438cdc76715f05e78a9c8745bd68bef6da5fce936573012b1127fb22febd845097755aad531068f80d5b435f02f1f9d4c4d0da4d3ee4e9229cb0a3aaede

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          762fa115a61d0a9702bcad90965f7690

          SHA1

          fe6a22693755e49f06b75ca7c24cd3954e34b31c

          SHA256

          d17996040e2b3b920690a1ff6ce93e11c6622f37dd76ea790a615e3acb1f290a

          SHA512

          4fed474f327896d7727de505e3a86cb8ab994700ba5f3cc7153e2630f31da76f160a35b98b159d28524fd87b7ed983276607838483293d60016fa0f6372fe7ed

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          17520c18b2e29c3ebad788b57af27faa

          SHA1

          9435081716991140a0306dbfa307dec236d1e5d5

          SHA256

          ebb8174173fa994260cc73f172172a302e18e4c1f647a3f2426977aa4dcf3041

          SHA512

          51a04d0776f5a347492ba1b54ad353e9e2f29026c0902e21628b9239b700b578d2dbe32a6ca2b601f1fcb64d1a5dbb50fd3086e557da507adb456256f84a9694

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          17a5a29c571036678c39ebd96769d92f

          SHA1

          22f4d7b9e37a9f7a8d85b7743e2507c91af17d55

          SHA256

          751e46dd88fe3baf125a5ae73c1fa51de0386ca882de93defc4eb2ea76fcb95d

          SHA512

          7484219b9512237455c02ac040d3bdb7998ba8b318fc85a4cf26ded4aead41ce88655232c8de71b92e1a1390cba766419c751602228f10f782eaf2972cf0c718

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d648d55714a2c9dee44d521428dd5f24

          SHA1

          47e94b9913c86605f0eba3c3b8240c60363bc4fb

          SHA256

          e15792f60d43913498a5b067e8b7cc5a4777f0340b44da989a38ed4a2a516577

          SHA512

          b52d62a1b92f481ffcfe821e9874c371573a1d3169501f8ed377c739eb38158ffabce58480864321b36be95ed0b06ef0021027d186a320cdbe42b17bfe647725

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f107049f8b47d884325d57f6a1cc1a8f

          SHA1

          837dd82fc856f624597fc211b2226c7e6b76ac78

          SHA256

          fe789aac6e36cc2635a74c6ecf943b907169a20427522eff51b140fb12479795

          SHA512

          d9b085a87df84f18fedefebd25ff8dc49483f741aca10f6fb4f6fa9891d559082b9fd2da787d89c324ff9cf78085f54d5fe6a36108fccc82495ab8e7e8c00eaa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          56a7a8761392c859744b9501a2265147

          SHA1

          aead74d4a51220123ab9251a116b44b7b65511ef

          SHA256

          7f1ab4c54e531c8445835e801c28e1b8986e191c3cc142c389d9d244fd4df57c

          SHA512

          36fc126310fb14089fca911dc985cf03c1ddbf0344b10494ee159ccb5135accd9682a1e0dfdd905e76459a701409962c02889429872569af9f4288c6bdf9556a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1ec6d2d9793256adfa9615b6fcee068f

          SHA1

          9c8e2f01a32d30b9ea0033ff4e1c5fcc4a1e1279

          SHA256

          37387790d6431d90723de3af27de956b2ed6726e3315352847a9f020a3c0f336

          SHA512

          a4cb331a87b4a1390cdfde097e19b08ba56c4b91c6f0fae522310d31da5679df4ffd4791455a56c2b88aacd6f724e65034e8ebb67aa5d6aca4b73dab3484245e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9fccc4174f0bbfde314c4c9176a26e9d

          SHA1

          8431ec66b977cfcfba2da76ad897cbbded230cbc

          SHA256

          822ee13d2e0ed24a1b3a9dbe130c983045b1aa49beb22a94c17e7d42e57da59a

          SHA512

          f80290d872653976d7791bdfd187469bebd8c489801d0f25aa9b84d48b19ed5e7ee32acd5ad46a9c6647e780897cd845a9f72bb5315d579a98a0b95e8f9e3a8c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a1b2a04e445a55746e98a827ca037097

          SHA1

          a24a7efb466418d9286cb7342e87a96dd72bd103

          SHA256

          ee605ae6e53b305afd26c453ad918f7044d9cebab1261709074ec3ea7e992169

          SHA512

          de9a00a6ee1ae6346fd893caa118e37541aad273d252b10ec77947e83378bfd3ea7088734bb0d7bc970e1ace0df8895e9ce3f476f8dd8f9709b188944e16e409

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          78789cfffaed5100b11266a6d0de0a0f

          SHA1

          5933634136ef4a3eb2e37fe9e95826001701e9f5

          SHA256

          17250732f81ea014d47e12892db805118f1e943f55fc4d1f5eddebf1bdac63db

          SHA512

          94db1d83ad4396ea0f51cf477aa2434e8217cf6a7b4ccd31777a849f8f41f23062f0ba6545ffe0b6190c68af1c3910c4cd2c36503ee70be727d8e3b98fd96f93

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          db29bce12adf15874bb3ee8a7a318029

          SHA1

          4cf053623536bdbfdd477c52f09e284d2b945271

          SHA256

          c3a464e58811ccdebee1fc75688f3bec78e884a18ff58a5fa530133901ee16ee

          SHA512

          411aee87baf726e6fc089a4e08773f768034516ae3b0c160a3b95a9e5385f27155123f72e6590d3c8f1345c0ac28a1db8c4d4622921895fa9abeb5fc9ac1de40

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2e2bd18f967b8c1de9dce16a7ac4e7d4

          SHA1

          ade2d4b9e668b19cc1ce065b7838744145ec3ff3

          SHA256

          25c6635f8d02a82fd111c82cd452bab58535d2c0f4d4f07f886790ea28d2812c

          SHA512

          5384891ff795924e0c35784c7312a842959f6fd159bdfff0760305e35c7b56c92e4afce3528ef220895d029e41d2c507da342666da84e5501d3feefb5ae488e0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          26564e0b3b7f50d77cb0cf2be363e07f

          SHA1

          3561c82e9f03ed7b99040eb2612a1b408f5409cd

          SHA256

          76dbf98b57753644ddb1973532cdca821dc5e6e9350187ad8d7c46a0c37e8ec2

          SHA512

          82290a9263177a1bf3e256ba545bd2801574dd802e5300fd56aad534de8d7485551e0e5b8d3f1cf91d65b5e3c62e8188d5ed5547c4e30e21c382022b980ec790

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          82f4d946362ea7442173490fa5dbad93

          SHA1

          7e2c35f78b710bd15be4606eea90af785dcb338c

          SHA256

          976c8ea0c44ae24db6baf9ff11a39e463548e70c59e5715616c9fcd86eced3b7

          SHA512

          63ee0f0e3c853bb84072421a0904f9da6ca7313f6c55d326cf43279fda512ec16647fec9e64ea9a179820c521065f52ae351eabc8fbf40bb5ef511af708c93ed

        • C:\Users\Admin\AppData\Local\Temp\Cab5209.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar52AC.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b