Analysis

  • max time kernel
    117s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 22:29

General

  • Target

    8fa7deff9a218365bd2d95147a5ebf8f_JaffaCakes118.html

  • Size

    204B

  • MD5

    8fa7deff9a218365bd2d95147a5ebf8f

  • SHA1

    419e42981d070c5765a2edc28b9337c1e26a9da2

  • SHA256

    2a3ae83989c33c3a1bf6da9ba06b66422982a473edfbdc0f0fc76663471242c5

  • SHA512

    531e7c0ef0c393c357bc881fd30021b1e951e6217a35d662933209431819e20d6022145a9fb46a2b51bc6291256402ca840b14d30627ca5bad45ff11a3f99e87

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8fa7deff9a218365bd2d95147a5ebf8f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1624
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1624 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1616

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cd9ffc0fe8639cc20813031428a0b4f7

    SHA1

    20ec660bfc67201d828cbe1581eea486fe8f5f6a

    SHA256

    f6033d5ff1906689c24e625e59278a5dd55020e2c6f2f525348f07c6bc48ca26

    SHA512

    2625f6b17f127ad4d915950126516a9af1032cd5abcfd212c4f7d43c94dccb6a84e8b4a71312cd3d18dbfa523c0572c7d0514221d698bd6d072db38237f01d6e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bcdd7e5ffe145ecae1391773d6f46673

    SHA1

    2effdb930de99aaade522829c31197cf6e30dc03

    SHA256

    bb12152421428dfbfc3d2d26942a6b8ec468c9f9e8768b3dcc6509ec56266bb5

    SHA512

    0722d264424786abfa2943372b6ece38eef1a148abbb3fb6f461ffce7b8f7762882d17dbe2e78d769a3c2d39718ba7739d02832e18ffea7fbe80fec1aa3784f8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    51ac352e562717d67780584f2b18a8b2

    SHA1

    504d488b6c3a07e6375d5535ab1c52e8a7dd3667

    SHA256

    28a17ca3e71076d2fe2b886c149df6e09f913dbbc4694e1796aed80475050328

    SHA512

    7f8fd0f1bba1071272994052b9f89bd36f3c1e443b362ac6afaa7eb74daf0c6dd9c036abc536498c7a57e8e4e3ffaa0dbdb22f9b2cd50020b74d49269bd24f93

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5f364735294de6107dfe192985806026

    SHA1

    d97886800042058d8010555a188f6cd5431fbd16

    SHA256

    83f356a9c7f8bf5549ab2e412b06e7e0a3b9a44bd7911ea2cbf4c2c0e85abf2f

    SHA512

    d8ebf0c2162c40807e65af9bf1b655c96a571bb8fcca8f88e3af2631842014857a5656c1bc3f9cf24607d468aa6926ba920717dc686b736316bccdc7c95b0b2c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c36c42a92b877312febdb7d3db6c3dbe

    SHA1

    903462961836e69a65077c0390a2481f4f72aca4

    SHA256

    3d7f8c4538b9a2e134893aac95966a218a8906e846728b3588ac536a3d73e550

    SHA512

    3ab79b304011713daa03b2db3b592ddd2849c93dad953ebddaf05e9daba895bbf7964123521e53c6734d3ee51c0b391083b92a79c3e2828bc2e9501cff7b48e6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    25b8a62139fbfc25f4b7ded50b343226

    SHA1

    14d78efaf6f69e1546f55f0445991453e044d5c3

    SHA256

    fdfd21aa0b87292856ab57b6be47b63b3c0501f99f8eb6abb418cee44c9477fb

    SHA512

    e950ba2fe1ea9337387ecdfe79afa0900a34f621dea788ef00ccb28feb184b9decab96f8d8c1205b61f1fa7116ccc9b67894d4c4e940f7a2b88de448dac21315

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e1fe0017e2c22ee9b87abc6c154c3ea5

    SHA1

    4bee8369b5791cb9fe3bc93eb2a1476ebaa732eb

    SHA256

    e8b37d205cd4ace5185f18010fa856b97627a018e3054b29ddaf40c0bff95378

    SHA512

    fbb2ee9ef2893a8aa163e73b0950d51cb574c8976a94d0d63511b9802ccb62e8cf30f2a72fdee0a9d18f43eb0b52f92297910a4d6610b266a352fcfca14ae8fa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ba7d739e4707b60b68f95655eb0c35df

    SHA1

    def43e3d40dd8b5d50d5b01cdf5295793149795b

    SHA256

    a221e5e89221cb9fd24c9be7880dd4959941166a3eb00fea21bb291e1939de60

    SHA512

    92a3defac40383d3d821e685755c08f423d78b9ca28937323b8166276f5690273e57c6d2278d4a12336c99ad062dd11283d9f591e992749f074be4c76c6730b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    765449ba275e30a02fd18b63f50b5646

    SHA1

    b004d06a9328a30dee4220bd2582b67ad1b714a7

    SHA256

    02dcbb7b6736ba925c8d6dcd268c09c5dc2c664c4b620e747342cc6044926f61

    SHA512

    d633683b1d03cd4554a6f6abfca87df7b9b23125a450331f21551fdb139429ef886ec9b9ec082df28e0faa32b680260fd3563e14f0b0903a87ee340403e2de57

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    60965d5ca5a7e4c663f34cdc1525dc2c

    SHA1

    df39082a65160c691f0051ca50c61357c17925a9

    SHA256

    7bfe9ce6088b27ea8859b9260a6ee828d24ef340be0c8eabe5f7617c0ea7b742

    SHA512

    9179d5518506790904423de19afbccd3ce198f96bb50b77f7f73bc9e88e2d1b5d298445b0a18fb309f09c57e4ac143b5c22710c3d942d96f847e307a714c460d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1e585a7a8f685b2bc8166ea5dc7923a7

    SHA1

    187904517d9201da480ac13c4904d86c3fa0743d

    SHA256

    7c05fe8cd0873af773f8ecaf891cfc16cbc12f8d38c33c34f462c1599175768f

    SHA512

    476cc49d621345d26d79b2c184952772a4600606490d2a8d1dda4b345600b3738e51ab54c1ad190be47d66de767757b0864cd0fa05f8a9e832fdb986ffc9bf4d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8b559f87ec9d04ac75e70c0a80512447

    SHA1

    9a7d7332cd2c879e97939ae32e7752c38ac49382

    SHA256

    d8792bcb33871d4c805dd35a8e9958157a484a96ba5f26bdd6b5547d37c14a4a

    SHA512

    50b7e6b926324469741668f8dc0e363ac9daf6b81445863be215eced74c6a8d0cc6d4875b772eb371519e1fe5e91814f29b33d4840a1c32219d94ae2a8ee7b1e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4d3a4c915b5d0043abff64ca0bd75673

    SHA1

    ec414049e2290fb0b9a84729926eaefeb16055c2

    SHA256

    900a97f114d2301612c7e91f8b3c594d9cd2f8c25a31c5763c97c35d24180c07

    SHA512

    e6e65fb8d21f01a3b2d08901c683f47c72a9b461dc2dd500d6cd7a7f62befe614c19e2b491ee1b150133def9b84d4c39152729c6af2ebe9552e177627e121980

  • C:\Users\Admin\AppData\Local\Temp\CabA2A8.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\TarA3B9.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b