Analysis

  • max time kernel
    141s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 23:09

General

  • Target

    8fc1aed0de8149b51f1c02d779a01449_JaffaCakes118.html

  • Size

    139KB

  • MD5

    8fc1aed0de8149b51f1c02d779a01449

  • SHA1

    2e607bacb4a4b83c9dca4eca2a0afd27267605c5

  • SHA256

    950e1614d24f79f19130e0932fa15f423e52fc30745a05df8167119495eb26af

  • SHA512

    6288b488b093a4321853dce071d507bbae5efd3f7803b23d1ce6517dc76257152ac65be4739af05cf57cfecdfbf0a701a76f81008ee9480a068e9cea42bcd9ef

  • SSDEEP

    1536:SKRoKqFVlsyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTs:SKTqFEyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8fc1aed0de8149b51f1c02d779a01449_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2080
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2080 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1216

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b50763bd528edfc65ecfd72e53986dd5

          SHA1

          0068d47a56bff83671af4a4dc2e5d11d96f36470

          SHA256

          8a59bb53ac41be981134fc36510f24cf29d703a359a2b6e0da53e437ac36f9e5

          SHA512

          4715a8af143f8b9e9cf8904f314c958db0c2a7c2812f888cc6ca74fd0ea9ffa1d4cfc8f466bb4db7db9296a5d8fafe499e30ef6d703e516edd4e3b7143d9aab7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d1f60ff0fffd81a50b74303a27531a0e

          SHA1

          627a853280bf78f7e0f655734e0f19233d08c146

          SHA256

          39d13a7f5bee3f7df735dd294f3082e28842fe7b07a818621c6fbb04d88229b1

          SHA512

          e9744e7038e852cfc1e5407f9ace887e19106d5362679ccd29368d684a7610c9f23c2cb6c3e9d82f602f560b0695ac3432db70605336b00f688d63a3c20fc5b0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8ab2d558a16dce38685f224c4efa3d46

          SHA1

          d7121acfcada6afd0955f25c87ecde81b97ccb79

          SHA256

          ca04bcbccd449b9285559e422fb93f2ec75c7f63baac890e254af6d73ed31668

          SHA512

          a036c506f16790a4622101205c598009884885802e227fa276e42240e012408206340b48b71d57a1f3d18869331b0e730393f97482952ed5e3487915ad3a94c1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5df5aa85f27869350cb96411c798b1d8

          SHA1

          569aad2046e98b25003b7d269043bb2d2b162d36

          SHA256

          37b9835ce8ce23c5c8762df2962d68f2650cf24f2c949db8e19ee4913efa80d2

          SHA512

          8a1b4e510d5c698a0cb64dc714a998faca644a6073a565f3e781029c9ea39ebae69ba0d08c6439897b5ed8495bd7c394a15d39d3748041eb6a07c580c5581558

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1f48c9efaaf4644d8d312ae44c7b85b5

          SHA1

          51818cb6c2ad74dee7251a166aa2640b9f74ee38

          SHA256

          c9855b4d62b70f18ac91f1b34ca8544da116b51c10040c0f7fdf8bc7686f12c1

          SHA512

          7037337b6ef0e042449f13028b16b1886b27c68224b9f65c0dce3d852d1ef7e2a4e064e355903670ec9ac37ae4dc1c61312b263127aacba20d7b2c3bd443eda7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          39331965070c8a728d57a984a5f66044

          SHA1

          beb879ae29edc9254ae22ec086f148283ddcdfe8

          SHA256

          beeb66734291dbff19ff367f095b3f5cb22b48dc9e0dce90b65bea47af371fa0

          SHA512

          a2014673911e4a2b566eb845594500724c5400c05bff421537cc377b7cb0bbf2246b17911991df90c093e03173dea0732b805da178d72c71eea69d84804c5190

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2a210dd3f4f203887c0979ad817afae4

          SHA1

          762439b9d122e13e6544bdbfbb6f339f2542cbe0

          SHA256

          58937b95e04f293549f76ce7cd3e9c27136241329ac5ed9b8721fd0d35a263b2

          SHA512

          6a58c5db51e3850c234700a4c4f4f3a19b33f3a0b5f3b73c47dc1f10405446cae6367062d6443e209b3f4be2e0a060e904a2855675475e5b0548ced65cd2f486

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6d7ff0fc13cb213366a45b888bb22162

          SHA1

          fe0cc8b27e2abbc5a841e75a965fd4144f5f6e62

          SHA256

          4eabb449952d54a988981824305a970829eec8d0ba3dfec16d53c9f4d598fe14

          SHA512

          b1dacd4e0c6f05114de9ba84036117864b040f5cabc85211f7b6404ab2f2a700795b2d4991e394d7f6bfd0a519097c11ff427f87607a739c3041461be10a4b5d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9fc5666d0f6894d7e18589ebd3896699

          SHA1

          872c485b10017c3947589c71e2f6fea548fc3e74

          SHA256

          3aa88ec60f4e33c7724582f40fa09b0c1a4105422eedc3fdf0c057663ed1f43c

          SHA512

          b431ff92e99d1061b232cae4a02dbc0477b0ec668b772c642d582175bd61bc3683bc59176f1f9746d69ddbf277aa20cd3f7eb968f8546891b3f8a6fb2c05bf4d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8064aa3270d45a9320e3978fafefcd6d

          SHA1

          d12090b70be9723222627bcdca7a93c6589ebd75

          SHA256

          16260c3db2d351b33438d8cfa56ca633c356dd94a39bd9391f6dc9316fe44f58

          SHA512

          1a97bed771995dcf28727c49c2d8a02b371f4ec187a7a84ca9c828cc255db53e77e1a0b6464ffb0293e5c18de5d7cf7a9ed36e7766c8923c8e1b3cfd9fd752e5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d597ae48406ab3d8bcc2d5da518471e2

          SHA1

          324088239d9be56c7eea3fd2227f118153f3c895

          SHA256

          fc59f0b7d4d28d654e2dec2af024f75262466b93eba8744eccf850f1109b11dd

          SHA512

          7bf3d2aec341b94f30426b6c9cc51187eb05533a17571bf2424abf78fe03030c11337445e36ef45fbdb3becd31c41b62ded0ae1d47ed139751596b98743c849b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2ac5eb237b0ad4b9030eaf921c8b98fc

          SHA1

          75559cbb92bfc16dbc78bec703b411286a912ef1

          SHA256

          45609d8c53176ba305e6906d84a1c4141deea5dcd1a39d7f923f67ed8e87ec12

          SHA512

          b306a3cb2a99ed47665633f752993d3f77b107e85cc7c9f0965dfb27e07e194352d602eb483eaa137b609ca0103485dd24d8d39fb81bd20e62fe930c5ccdcc64

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          71336919a9fa8512ddb0e599f139e3ac

          SHA1

          5199ed9c3b05fab78a6475056c3509a4bf43415a

          SHA256

          6e9b7463935e258d703b3d39bf63159069c2a43da094668a02b00e413c404afa

          SHA512

          3df665dd25f96fcf0aa437e9d926de742d2bbb9a5652317ae1a329019018c72c928ee5be63a930956cfbdf73113a08aa2825671a0a1bf2c6a37c95b34d1a99ed

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5b5583dd212bec557d8316783d061800

          SHA1

          d9a7d3e7a6af8938c324508c9d8336bb941c6146

          SHA256

          f168be4f571737b9dc33130ba936b6826b0a87750166308b699a9ea5a0004e03

          SHA512

          6d2e6c23948417db26b13ad7155a108efdf662ceb73e94dab331020652fd52f18b17c56a8dfeed5774f8fb2ebbff2421be492ead65ba6ede5c09b6f2b196a63a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e61604eb3772767bdfb1e0730db80682

          SHA1

          635f2eab6b7458dee8bb50c106ad183045caef06

          SHA256

          909432f837b2cafc2e71aaa5b2792e2a728518f77a3cc4e9ff5bd0b5765c4a5c

          SHA512

          653b3bab14eb477a5cc369b881ec8ab72d388a8bf77dff379287f4eb597f77b9d97fb4e05ed2663bde7dd349172e9203bc67a5c1e7885dfcb04e707b3b0eb4b8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          32ca4c0588fdf47b4dd5298929b81bbc

          SHA1

          aef20702787f2927e7427659a707bfff8a8379d1

          SHA256

          ffe93bb067789b2f6790bffb464ba9de2934cb5c4bd92566b93f44847eff9c5e

          SHA512

          f9aa7090653053e9429cd87f72cb09e49ff4e521dbdc37e63ef46718d09b0d4210b0b25f056aebea7ad8a09825413c907faa1384c755fa4d0f7f8d3416ba8a6c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          22082e16a08433fb059c03c861412364

          SHA1

          ec3a79f55b4105e4bf93a18dcca12adcb9efd9f5

          SHA256

          d6f237a8a0d32e4a0ef909260a36ed207e225d724ccb65979467db14224d945f

          SHA512

          c39042d384b36d44bc3d12e11e774a95f7e5abef0fc32ff8760c686704d6a6c235b5d886f6746575f39465305304b4c0cfa6ad1c464a5a34a8290b05a4b93476

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1da0afec851149f89558450b2f3d674b

          SHA1

          60f09f692d81a055be678fca6a28c9c20c734edf

          SHA256

          dd6fe122a3a0133c6886e8bfe7bc28b6eee88c7cb65ab357d7a0c4af9a9be018

          SHA512

          bb392768b136b9711dd8666520c59d1412c4fcf675835521456df1df63b3defddfccc38b8f487ba9a50f411085db291c5555a3b6611807f4aeb80b6ba1d69009

        • C:\Users\Admin\AppData\Local\Temp\Cab168E.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Cab178A.tmp

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\Local\Temp\Tar179F.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b