Analysis

  • max time kernel
    132s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 23:44

General

  • Target

    8fd8c5f6933a59e9d29ef1bef1cb5294_JaffaCakes118.html

  • Size

    2KB

  • MD5

    8fd8c5f6933a59e9d29ef1bef1cb5294

  • SHA1

    7453102b1109831ffdab85b6897e6ea26e0af7ec

  • SHA256

    6bb53d75506543277a8697fb886428cfb0683accad2c371a2a1081cc402a69a0

  • SHA512

    6ac4bef9dadf9da6664d908bab8ec76ff2f34e38875184523ee26f612b2d1f569c463962d088ad0d5f15338073c3aa8f5283df678a30ce88dc6ce6945f821140

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8fd8c5f6933a59e9d29ef1bef1cb5294_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2400
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2400 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2616

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          a9d85e09e90c9a4403132a2f90801f63

          SHA1

          a7eb7ed092e239f47ccb73da9f4f3e6977ab06c3

          SHA256

          dfa10801ec5e50ee5e2b69499cabfdd80f00fd2105874fb83e34afcc3238108d

          SHA512

          aee2d7c6a7acb68f2d73c4955b3f8d0f902eaca8045e0f7e784f7ec3597153ced96e60d35a338ac0af86ed9799b5c57c80da4068e51188a2fde6abc571e7166f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          99ff92e3657c7e623da7e4810384d0bc

          SHA1

          b674a8c8ebd064016b34a10b72452b2bcab1163e

          SHA256

          cf90c4e5fba63948b15e9253825da7011e723455cc22d27433597d21256da2fc

          SHA512

          5444d768a6580f7e95537910a95e54c6e5397eb60ec1837bba0b1d528917b1195c9bf64027c96588817b2b874cc0f73e2e7d7568baccc6583d2a2a827ab967c4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          f8c751779017f738d2c61a9b2687702b

          SHA1

          bc85dcb33053d5b21cd24a27effa943436e45ae7

          SHA256

          09533f72b1abc3f5611868e6e561f9206967258f36764689fce3ee7f44585232

          SHA512

          69442b9eb2771f89574bca3529bae8fb925bd3fc32ebcdf2fdb0f66d134ffdae5155ee321a981a28eb9cade6cdeb67d1b234450252ff0016d755e5983e9a2970

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          8a0f0d681a5ee2bcc6943414c75089e2

          SHA1

          ea5948809d1dbb8b135d9815814be2e9a2070e3f

          SHA256

          629c990ae5e9c0d739ed8d469bd9f6e5376e787b337fc32b8ffc5c1bdf5d3e04

          SHA512

          ec95f3b930d65e58f10c84d6950f54841c2aa5d587807d893cf906d77a2a172232a48f4b5c25fc58ba0e4743d7f511fb6a70551befca506d39b6da04da8a69b0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          c616592be5f87e48e912382ec2ec657b

          SHA1

          b8de95f0635368745ba74ba38a925f4abd777296

          SHA256

          941b9e5b5ff14d26ad27657ab46f14562c04b933b80a8679d1342c5e38b82a55

          SHA512

          101193f54ae800900d91742f35a3fa2ec2dece6b154aca96959588c553ff95d47a3e672a412dbc5fc7c84666f39c7925c09204376c901c47def6adb481e7d214

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          bc7b87af7551cc8a9d6103ebfca2d2ed

          SHA1

          233d894207ff499d8fab62f1a9049b09fe2a31b1

          SHA256

          29bdb970ba4a60de367ed27c1940b9480e08924ad9783c703813a7bbd66754b9

          SHA512

          3d8e7d525bc37c42787c6a3b1ad8b1030cf9adb711aa4b1b5d529a519cede80de7be54522e3005df7973ac8bd42e7948141c6bcb3807ce196bb009e290a259e2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          f2832233bbbee92fad1e597d0f75bdce

          SHA1

          fbdf6fe22a48f9c6cb5c9e7ea77e7758bf19c908

          SHA256

          8a87484976a2fb0dc05fad149cae21b070932eef02eef64c7af0ea5ed8c3fed1

          SHA512

          4d543fe3a21ea13cda2fb853a9eecb5574bd1fa4139e5a981c8528691041e448a5c83e9861875c11d813e3c4ea1f2ec7d1c24bdbfe02a88cfa436f2a290ad7a8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          27fe4dbc41f1752ae47fbc531b9b2c7b

          SHA1

          00e97f152723cbbeb22dd659a509d14935c3a1cf

          SHA256

          d06f054e9beef64780ee7784b0f43f054e75a621276e9eda70697f01cbbf3948

          SHA512

          93f52f6710382da37f3cfbc23596d7c51a501b5c67ddb4b65c81576a466b64d810b32fd1682039e066bf5d85d089576e6f1e194b9134fc44b6ac0c189657ae20

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          ea6f71518b5af66eacec8d66c7d2a7d1

          SHA1

          92245312b4364ff2ee76db75360a7764613a6ee6

          SHA256

          f065480088c1ea515751b91a09d34ca8fe28c2bab38b77efb9220f75f0a355f4

          SHA512

          6a29b281eacf7bddae63524602c691723844deb43c14be2ae8cc615211f7e28913995d5983527d404139e81128cdf75bad5fef4f9050144d5a357bab475cb6ba

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          01aab625944a3547b1a7eff18d223a89

          SHA1

          7377dd20edb3b6b5ac4d62567dcafea3e5f9176f

          SHA256

          9f2747f59f105a322b66cfbcabdc912e9baa357eb472ab068701797e64219458

          SHA512

          40b959c10ea9cfb751697ebc4003eea998a3c29ab9ac8ffcae4f7f729afb23621b7ba8c5537ad20a4679025799bd373988e34691e11a2e34c34bf83c14b474be

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          1ee4690977b7b29846db0a83c008c2a2

          SHA1

          6c829b23d681be37757f6119e65d2e6c4b17c8f4

          SHA256

          ad9f92eeacb86901ab12a6733b0fb538f428f87cb42378f9abfe2c28fdc246b4

          SHA512

          8b69e4c881f9df70aeeaa4a94f8cadba7c672b0934cf74b3e8e01382ec09edcc527b5ee426d13262f39b3044d9d4a638b3a27280b7ee0b6fade61a67ed2744cd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          4eb7f26af8f6192a42fe10ffd2b7e480

          SHA1

          3a82a2cd0c47428490c4ce4d94e37a2ca4ef2964

          SHA256

          c6e7eca88f35b60654c44ef5c2744d3c01ec05bb82357c1fc04f097d173e3b97

          SHA512

          d575cd37f72220916db3eeb9c64a33a610795668cdfe015e0a5a2f55122013939922f67ce29325c0ff6c66596f725fc989bf1142dc0f56e998ff843a748fb4b9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          c5d7a1ec2d9c7291ac5e53f5275c445a

          SHA1

          253802506e1077449937bce61e7762ede5100290

          SHA256

          f54e4a7e122024196987dff7490a328a43baa8d08a6e56bb66e798e9befea189

          SHA512

          621a32e9ba25ec5df78b23d33e4d86bb78ae8d1812402b558e42981a10550305c248036e3bc1dcb82db02b2515e437894728b16e2f5ee464d532076576735b69

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          c5162bfd4cd2a224ddee3572f2b7450d

          SHA1

          3b10deeb36f4303340604542b84b61b0fe51c0bc

          SHA256

          921f795f683d7d64c21d32397d73ffc1efabe2f34f0710d4c768a533ec86c430

          SHA512

          4a57bc1aebd9ffe78e91fc2273c6520129ed1225b6cb15d1d69517627921a65215106ae93d8498546e8343a4a2e8304242936067abe0e23cfe0e285db03e03ec

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          cee8507e8ea0164bf7075a2f8d2aa6ca

          SHA1

          d27c48f5030e245ac4b3826c342e0bd63c626233

          SHA256

          2cd88d09e2c75c151a7bdc27c52ed7912f7a9d6617dff2709f89178aab8be9b4

          SHA512

          628b8577686ec69f598d2cf4b1e4ce62318fb2839769ec00966bbcf72c049fdbe513443d337106bd94fd98a36e7bf01c0120697789ff1bf49dae2f4572f33100

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          58c357b47feeda7308a70ed6bb9d8098

          SHA1

          e3c80b62b3eec1528519d1c3bdb02e429202a983

          SHA256

          bd1bfdbde59f55da8ce89b7229c72c2dbe1c60f63ce8b1f8b4717f06bc3df9c4

          SHA512

          0c1c6277794c9a8ba5e2cc67c9d781a9ece6700e8f4e37a528f4fa6eac27e0d5bc79241f872090ae4eb12938ad09b20638761b4f72e13f4396d6e88a851474be

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          8c16a1b03c5c5e79ae9614fe52c80070

          SHA1

          e17dd222b39fd68fcf911cbe74f5d3e3a25e62d6

          SHA256

          d276e09b34abac3dd29cd1b3539719213ca668cbaae72a4dd3205146906e801f

          SHA512

          2731b87cc4c78a6ecdf2b743cc57e3a55639d8eb4a6fa4993d15b4a316548e55f9904f90dfabcb7ba429ab7e60aa0a5be2f1f37b25702a638be25a608658ef77

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          aed4c92ba42e201fb3cda5ea128a7fcc

          SHA1

          9d720d824f76686f09ee8ad8c3c0ef6ab4ad0dcd

          SHA256

          aef22542c2b9a78dfc5b970279510f083d759f5c58c7470f8d3763138fa498c4

          SHA512

          4d0056b4f9aeb4d6dd0799b2e6f1c132add884c0a034b85abe9d1e9c7f073037f96238bc4a2d953b99091b02f524b34d02c7728a6ed1f54057e1b884f9af2a24

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          90032964bc0bcfdb6ccaea211553aadf

          SHA1

          9349b3360403378c58c666464fb724342bdd7c6b

          SHA256

          af89fe333a45a8bc8691ee7d90f1bb5b0db19c5953eb32122c4552e1bfff5f76

          SHA512

          05766229e0620914d2414ea461ae0cef350f14ee32905611b8855267d97e985315571c178ffe00bc953430d3935aa78a87557d63bc75071e12403f13894497a6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          13cb04c57ab3d4ac379d990f83123ecd

          SHA1

          a06c3df9fc585dd34a955f85e40635667bc9f09d

          SHA256

          84cba48160c8d29003620904d90bcb007aca479c2f17e7dc03ff0f86da0c8894

          SHA512

          7c0bacbf920d76ee4dcf097ea73c80fad93d48146ee94894990bbbfa1854e73c8f7ecb63902d49e633ce5cf93fcd8f6129dc7dbed43b0a271187076fc74339d4

        • C:\Users\Admin\AppData\Local\Temp\Cab3DFD.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar3E8F.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b