Analysis

  • max time kernel
    145s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 23:44

General

  • Target

    8fd92e7ce8022865a74e4252de78a6b3_JaffaCakes118.html

  • Size

    28KB

  • MD5

    8fd92e7ce8022865a74e4252de78a6b3

  • SHA1

    fa23cfb306527addc44c795636c6aef06adb25c2

  • SHA256

    0cf7be614d6c25c1c1b4c7ca9cbfda0ad01f25cdaec141bae231cdf7198aab8c

  • SHA512

    58abd78ee94cc4e4c579116d9a1f99d3a9bb0a5dc4da985dba04cbf07b9ce3783aec00d892ac23dcfb60f1635ac3c33324bed70b7844a78791bf2e344aa2e9ca

  • SSDEEP

    768:S6M2GMS29idChChChChChChCRKbG2xb+Ml/ieW:SA9id222222I+bI

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8fd92e7ce8022865a74e4252de78a6b3_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2132
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2132 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2092

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          58858a521be18e84485b2154237016d9

          SHA1

          05d2c9053b0b3bd6409323eae5b886104b6bbd67

          SHA256

          3127a763c7994019b18e1fe6cfd569c5da24853a86367d08c643e310b3d717a0

          SHA512

          0baf1bd8a3fddbcae06d6b1c8e43579832378789355a25d7313ecedf0c3937e53d058f8a48429a1f55b4a53d4ea5bd06a60bd347badf30d515899f8bc1d47822

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b005651916a6819ac0aa9af071412f92

          SHA1

          0cccfc65fda54ed6cf38bfe19dbe831150bdf77a

          SHA256

          0e5d57ba8ad79e4d8dc015ebc4b6ce0a6397e489049d9b6da7f8dab04a47ae74

          SHA512

          e7ddc013d4f9924d7b67f1afe0c85c497f0e04c6806ffc5054ccf639b53a01e26c81a5c60996e76f83b5f6dc873a4e9be2f8136fbe68a3c52a9492c384db5a37

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6c47e1b9ce233aee2149108f3749df4d

          SHA1

          abc9a37e5810eb8bc1afac14b6b0bf5e77dec24b

          SHA256

          dcae052671a59f6f9b9bc0c0ac4635a558d51c743d15cab698d2edee79858e9f

          SHA512

          f543595fecb610ae66850cc03b2f7fd91a71279b47b5cb7a7c52d6f313d39c1f1b9609a61637e80776b84c5490c51e77d7c32d73a689ce85709671cad32eade6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          16464deb8b309490fa6660655da57836

          SHA1

          93fd98ab64ef980f130bff679c273243d4d24320

          SHA256

          695d3a04a77d31c465a5090fea8edf28728476d45adba90a35f2835fc6031b81

          SHA512

          0f18422a92b0db5bc461ea9ca928ec21809af674bed2113a1298f3dd0960f00ddddae4e7091fde9e1f33c162815555d96ded69901b1a057f6234ab860ee81f69

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          42cf6ec0b0f66b64241a34f6099702b3

          SHA1

          21113b55bd5b9e754c99b09592b02f833c134ffb

          SHA256

          23ba5f58c69b67771b6b7cf82a3c050813dd153197e70bc0d52d3d015a407cf6

          SHA512

          e97c631507b143a7fd452cab7f099dde8e7914b5f0e017abb7f166c3d79f09de9aa5d1cea91d94957826e313e807d2655134207b6d736ab307cc7904d6fb2ba1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6ed9281e68141d323a02420f2e66c328

          SHA1

          32daf71256090bd7d80970f8127ec4e5ad8cd34c

          SHA256

          1ee3d240377275cf6b3ea98fc1fb5db87377a87df79b6136589a2a32fdf19219

          SHA512

          b4065a85e3812981fe144aaedd86a4431f78dbe2b7c59979a89872124696e3bd05d18ab5a0779c693702a67951844d202be0ce1c04632b2e8fbff27fb7eb1cd1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0722e83d9e10407fe46fcf883889f363

          SHA1

          af38301b1e9ea835e66baa715b761b6aee43e4b4

          SHA256

          9de4810bdbabd5755e1fba845a16df92d6d6872a5036981c6cd905fab9227d65

          SHA512

          cb8623fe883b676fb6544bcd530bf6b38b037ccacd8a1548b439ee8f2a5994a88ffaf679a9012da3b74e16db6e0cc0f7ae242e44c11a25146d88efb10192d698

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          558b0de04115cb80d071eb3cf1b6e367

          SHA1

          1297b7de5c182a81f4f17e0143bad74a2df0d01e

          SHA256

          f27135db688f36e2d38f004b292f295a9879c69b7a67e3ec57eb816e433827db

          SHA512

          290fcf0d8d76745f5028e5cd55e3fcede4528a941cac3fcd964cd8525b7ae84a7addd32abe25274632d39dd29c0174623b957831ff5c05c3dd73a79abd667cf8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          db1b2d1ce5d311a1985efa34172ec1f4

          SHA1

          dd2f39d20b37cd76a84ae68c0e2c1b2c75548a2f

          SHA256

          843682d6b30ead169b5cccb54f8d4c30f037bf8fd5206752ff2527e6224d746b

          SHA512

          d74685738fc0454d8d6182c11909ab2a19939cb391e4a222144e8909d386ce254782c7a66088bb2caa597729438159e95e9656a87b22110af580ca8746b786a0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d73a2f232beb67a3f20024a9fb14118f

          SHA1

          a238232f1f23a5548bf5d3b570e32cc7c9023c6e

          SHA256

          dd8a050bfeba1caa09134b9227c0d3d08fcaae81889848e88de2d4c73827177c

          SHA512

          dc9cbbb0e04e8317f5ba42df2cb3e5082499655e6120f9f9e61a914afdd4a49a0aaf7de0993fb1613be956ac276073015b7684bf612031193fe527c970e65937

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          400b3d4efb95332496d77f9e57f74893

          SHA1

          b0e9e97ab128c306ac37b829789c020b0a1d0777

          SHA256

          2847716493c814b344f98bd39d42e67af85ead7e9e9cbc7c98dfb3cb9667a92b

          SHA512

          f15af4363a181220bbe64544811cddf3878bac41b55d15e0c04367aa57f0fb4866aeb59d10c90562a20e4f814c1338ba1af47e3d2da4e0c264d1ec34de9d1600

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          10ab28205fd5c67387b957bc06eb0806

          SHA1

          82990afecb1dfa729552ec4a9f0da16fdd03e578

          SHA256

          626af92ab32151d70a84e0045b84fe80f02df92696336d5a5d04605541a892c3

          SHA512

          8ddf1d370519ca981778146145719bff5f2b8757fcc9ae47ca0c006f2a6af67585722597765d5bd0b34beb6ab82ddb8ffd808f66d69315ce86d184825b2510cf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b96b2c4e14320bd7d42d2aeeeb8cdccc

          SHA1

          bab83529d1e4f54a54caacf8be7392fa5db3008a

          SHA256

          2affb2c464270520b18a5d5cd31cd571394d1f3fa62b36eed7c3b8d81a96a652

          SHA512

          0af9a03bd063b1ae10a6fc8abdfd19596c1eef75e28dd516ca7ce82320f7dc89e251c8bc609dd86de68745c82ae6503311bcfa9393e9ea8ac0e34af4d80aa767

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5783805c1e7acda546ffc83eafe74ccf

          SHA1

          0652698fbb32f693ec4c7f1f38f342a73fd28f60

          SHA256

          874d0f6ceb55fc8a2d786eb6b41a55a5b94f3f788f7d04366bedf420adeef73e

          SHA512

          694f42b498e8a0b32067593ef5e6999c94d7c50c61ff06acac27d229b1bb5b0784697a9988eaff9c353c673384385271b4159afef8d1ef94858bd667a4fdd472

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ce5d35ef46890262fbe06f83710a5145

          SHA1

          ae96864df4f4094669338c0ded4458705635d2dd

          SHA256

          c7a51f3e364366a57979c2e640e47d7e10fa619e0e88e12453c885a7fc316244

          SHA512

          ec931dc6041c388986b116053e38f55492fa50316270695f022cbc024f3aa46d0cef627fd9bca8a0bf3e96a62673a493c0d272644e055d7cae4b2a09796111a3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          16f8a83c3a09b9278d4a6c36e0e4633a

          SHA1

          88c84d1381069971236615799626df34afeb55bf

          SHA256

          599f65bf011db59b2d69b1a2b171a52fcc3b79002e53e4bb8462865ac674f9a0

          SHA512

          cb66b3377ea68b06417bbfaef41bc7b3340f6a6e228dddb3617c57abe6d939fe23a4f5542b7a5f3e9a85a23dbbaa7f2f53bbe445a4cb8db1be4a4f82912a2aaa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          466ac59f323393646bdcda26f0f04a9f

          SHA1

          353d93638ee7feaf1c75f738385ed1d0252d97e8

          SHA256

          e5db98810ab58fbc1b5d34a7ff6a3bd8ff2ba25a9a77bd9d94022e1f3f713a15

          SHA512

          18e71b257594cf0c1783c0ef107087765b03f5691b310eef61394d53c6154f8bec1bd279fc5c5ef5036a1afe54b1a1894e965b505ab8b2f4f020dd9c3a9a712f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          72a5bfb2ddd5c7b2e13a2244ec82ed29

          SHA1

          f4a2451fe5dbf8f04e8b76d701d3e609958a43d6

          SHA256

          2a837873de12d7f4a5557ebbea62a697a45178a05596ecdd44ab509d157ec171

          SHA512

          88a660fac21d4fe45017824c55a62e049b4b6e40096e2d4195ac65172d0c03fc43a400d022119370180462ac1e86c3e3432e8f680cb0822e6d7ab670b5e323f4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          95dc69edff41158b4ad58ff133a358a9

          SHA1

          85006c1902f30063531d0f970c31db27de8ae453

          SHA256

          83af44495c97bc2d1a7d50e79cee279f16e63e9a0cd9994e85cbfa3c8f67e3c4

          SHA512

          9eb690eceffab6ee01bcd1f94a20b6691d6f87f2cdfaf84edda617bc787da6892c068d406f7921b2f290f2feab8495b6bf908777d5b1341a166cb7350add9132

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e5c89734b4a9ddf2d3c5cf373ebe31d8

          SHA1

          25c29b55da8cd02312f6639e1fc22c0e4c70b5ff

          SHA256

          ca5e7c6a175ba5a33a847a9e104a698e36aa8f62fb158263c7636be60fb28406

          SHA512

          73cb451a31dea01ea7a363b0cf618f116d7e3f84a5e8efffb6eed38ecef2cef267d4d5f25df6c9f5bdc28d055c11adf0c6396eef6d52f8c1cdd9943fcf38bcd6

        • C:\Users\Admin\AppData\Local\Temp\Cab227F.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar2280.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

        • C:\Users\Admin\AppData\Local\Temp\Tar2314.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b