Analysis

  • max time kernel
    143s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 22:36

General

  • Target

    8fad45102c1691815b87fe2f70467d4a_JaffaCakes118.html

  • Size

    139KB

  • MD5

    8fad45102c1691815b87fe2f70467d4a

  • SHA1

    d86a0a350922b7d33eabeafc45567119509f4e6c

  • SHA256

    3973864c28c515db1916772f0e29f3ce3b07dfb1482d01a49f77acaaf4b7c0c3

  • SHA512

    1907fc706b8e564dc52e387ba28aa4054d0534bbad3ccbc47f54454dae353e7d39497a7fad017a08e9b50334c30b7bfdfb5b362cf4044df030e36c6e7b09e886

  • SSDEEP

    1536:S0Ev+h1ybtUwi3l70tByLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXu:S0EZX7yfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8fad45102c1691815b87fe2f70467d4a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1940
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1940 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2840

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    73c0ec0e03cf769c314d766400440188

    SHA1

    ea24c142e9dad3dbb107492fe165d5ad0e19e777

    SHA256

    b7b4d472c507917eb6dd974ada4e8181a61e4245fa0272f6d83f0a72c40a7f5d

    SHA512

    438692c82d9f5ea40fc1db011f0c8a3e77635f819829b50de8dacab8714830bad6ff24201105fe5f2f10508ca763af9a9e4449e3806240c20e8fb2b1195c483e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0385f6dd99a7415be249ec28b98081d4

    SHA1

    7ea9aa125ae24f7e924048361f6205748b84ae79

    SHA256

    14835ab24677c4e5a88044ed61e08c67ab828a2bfe2eb03b3d006ef1d0124712

    SHA512

    1732db3d6f97bc22c9bfa20b93862dd2b334ebb625751d2e9cfa1ea44c14bd818bba7737fac1a8fdab5f8eed15ede3f12b207ed996f9638bb4787b7b96aecbf7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b4403c0d3e91f26dd6c1ea0531a7ee61

    SHA1

    72cfc24a568502f3a74e5c604415d7060539ca95

    SHA256

    7604d910690f9f8ce4d3b67813d99e664f9bd9e77e99b0e1f765665baa5e250c

    SHA512

    9fd80fa2fa2fc508f2592d45bb9eda5fe2d78ec8917168fc5fb4995015622bc145108422f67a09c429fff26a8c63f6ff9c46ba924bcdaf592f58565642b145e0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ab2d3579f64a9a147352003c05a86819

    SHA1

    5b09a3854bbbcf6f4d540dce6fd17778cfda8bba

    SHA256

    99323d7f97d901f11520d1b8e10e3d706be56b34faa522f6deff3af12d8e87ca

    SHA512

    9c9219f7347040e4d12e948e8e4fcc651b94ed4db53ea2d9b62b29641ca124e45bee6e023e145035af4188b55080290b24d756612fcd5587ce22c1f6d926b9b6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fa8626ab0a91f68964bb28be43537dbf

    SHA1

    4cb2cc416f6d1fb7294a3a6743f2870d8913c5dd

    SHA256

    90f13dbcce4a06dc417127a7f66f04bee48d13bf6f0b58ae9f16a1cf269bfca4

    SHA512

    c05b16ddccb65f11f9f2bb423d4e378377ce1b110156e6bedb5ff9bd07754983df3c71d4365dcd0dc57d62832ace78b05a65becf4495d6a9ebda5d141941bc2e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5020efb60a5dc853fd54e5c49ff51ba5

    SHA1

    73733bb2709294c3c4135ad61e904a3a8d2962e4

    SHA256

    f4aa03f682bc63ab500d631b6e9cbee469d0b8f7a7408c444ff20d204263fcbb

    SHA512

    d59b616f7d342309c5ab037d3cb56137300820e39fb377562fda49e8d6118f44d90a20bf0e0c61cbfbb599fb76888d78ed1190ad08fa142c23ca9a7d40baaef1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0083f3b963916d1b39ab1d1a7828687e

    SHA1

    6a8352b746adcd8a8d0c7cb291e0a57e23edf228

    SHA256

    b0935be7b1580075f5628d78a63cabd0bd245a2cd4c12677d545b45e99c8d71a

    SHA512

    965a24d795c0d104ed8831179dd8fdedd370a9792be4c713561961a89f3702fc9dc497cbca2aa67d0b880c7f3dce353c1799fecfe2c14756c0e96e952d39526d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    90eeec05dcfbc83a4bcf41b61059739c

    SHA1

    81b771f381dcf9d00f46859fe4c62d12a24b349c

    SHA256

    eb2541b229bbe6ab27641cdeeb05160e9b40534b4d3f89ea2a4cef314b1d8cd7

    SHA512

    4bbb20b9f63a61ef18788cf489ab1a9bda96fdd1ff0fec27d91b45ed45690e5cf95dcc7d3117cc60ebe1fb1a163781e344181afe72dbf7b42d50a2170e18d5e6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aff26a3fbdb3a1d549d4309179584959

    SHA1

    9881c3c1d36ee9f763d203cfa8d6c235bb5a2b82

    SHA256

    7a97f74fdad613154383c01815ddd484f297764945af433e10d32f1921473fb0

    SHA512

    3cc2d03f28940b121ae21ee565dfff24ff4cca8a52b62d5c06011e43b1675825ca74b7293f2df72d39235dfadef0f30d222bc321e6790347cfe049a6ce3673b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4e805fcd015928b5c6a122639eee461e

    SHA1

    e547d2a3d14fe97459e26a69e07302c28b572447

    SHA256

    bd57ac9f9cf91db39be5750d4d0df9e5cac2bc223dd67cdaaa804809736ffad9

    SHA512

    3ca94dde474fab9456c6d1abf73e9e690951f5f71589af30c12d50711382524141585d66f4396258868db8c5b4e4e8f8d4336824ff098f0bc05c831fee91c8b5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b46692042ba1efd4360a84b71ce42411

    SHA1

    7b677748325db1786fcd6e4445c4a22f143f2be9

    SHA256

    8affbe631f57b057ee5059b81969786748c09372bce251072d1a66a871f8cc25

    SHA512

    5972c8d3373ce74eba8bc505eb2c853384e0856109d829d26fb9b6b0ac46bfe59199ceacee60c307ac8fa5f3b2e98b5fb9496880ad83968b46bcadd40b6bbca2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2b41941b134adc19bc05326e7a2b2855

    SHA1

    91ca84b2b12257bf01317e22c2349a2197ea7a5f

    SHA256

    61eb11b7be4d51ebb25d07b05a70dad03f9315694edbef91bd4bea2729449745

    SHA512

    878ce96484c255c73de96ada63b66feb109bc6b0c4919991af3e2503046be1c6eed02152e9de6019fa89aee7cd87517c7d163a3d4b4ec5006cf1db195926e4c5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    122d6626d2de8a1ab306734b5d12c91b

    SHA1

    143fc22ea356eb8573d71262e6c2318c242f7e49

    SHA256

    45cdf1cfb7cdaa9fb07948981140d696ed44cd2c8ac335f617e9ddef2fcb96dd

    SHA512

    ced4d484b5a8949a0b02786f9ca72a98bc2605e35bb3ac7280ccd391e9ab230d181c5e618a9eeb825647c94eaeaac5c57158d47e3479f82a85b5f4048c23ea01

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    00568c06cd255049f8df91b7694ce0e9

    SHA1

    37b544d51fae211885bd46ee7d7eef4f913e61c6

    SHA256

    32a5949fe2cf2c7dd47d395ceb07528471fe55fee46b29514f89acf51d67c559

    SHA512

    06bfa1b65ec911464ee7fa8ea8f531a80ae728bb3a5238816515ded73ae0c5da3895b7b2b2f4f37a32daa734563893ba029084df40e688ad12531afaf06cf28c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a05b74d1466b9a202418717b40c5093f

    SHA1

    4dd43ca640e1dec9ca380b60f6efaca7a3b08f87

    SHA256

    2a346443827967b9adf4f5e684ffec76d29b8df45b275923cd73b46f01c0af4c

    SHA512

    69893b7a02dc2e02b844996afce392599348ac210b85b158bf0b8aaf8336d87aa8b9d2f515acb9e73fcb09e4f8e548231ab2bfc073d436c10d185504d387e711

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    88bf75b9875d9a29afeb9be96bbb35dc

    SHA1

    2aefb0d1f9b629a0cf0a52b9409b132aefe6a597

    SHA256

    a05ec46814481e04f805d7986b6f36eef2a449957054e5eaddc1e6f0795802b7

    SHA512

    750c356480e935d2a9a7d6c51bb27c96ab30f08f8a7a28a3b2859ce83c11a8510e156c4bb190e0b2b81688c7100720a487f6463a2a05ed058bead4863bad5855

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b4610eb681de165bd231731c788c04a6

    SHA1

    1537f0e9082a81033131b7f6430439d9f2817137

    SHA256

    370696734d1895ead91d1812024ce0c1b0f474957c43bfadbb09114915394f1b

    SHA512

    5646cd4d375e030c3f259ae015dc0b92e01e00e5a98b0bba8123c0f4ae78df26e683f6dcc9b4fdd048f207dfbe876efefb943626a630bc4ba6c6eb32cbb3731d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    961b4b49038f8edeb238078949055af2

    SHA1

    58f8db0f0336add2841a288c9ffa0f0ef67b13c5

    SHA256

    185a517feb2bd90c49220059b3bb828ff41e9c006d40acbdd1bfe1c2b35d09a1

    SHA512

    50fe038cd0913e9e33f532b087e78b05ebee3bdfae4b01182098caec875a791964cf2205e84badf08b50e79f01d67549e97fd9964e394c78c13d436c55e3eec5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f8808d3febb380848cfd6e3b1ecb0032

    SHA1

    72870ee0907a8dc790fce42174c627c485b0da9a

    SHA256

    c523c9cef041eb4f28d901d9fef8b0b0aa0a78652574024a386266614d0ec36c

    SHA512

    9d04632a14cbd854ee9bbe39cbeda2dfd6198564df6b5d31d695cccfb91b69fc58254562d47024f10b1317ae399d0dd8de95264c42ebf68b9522f809b0324754

  • C:\Users\Admin\AppData\Local\Temp\Cab118E.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar1281.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b