Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 01:36

General

  • Target

    8c7ab73125ce759686d8a1e0222e2050_JaffaCakes118.html

  • Size

    52KB

  • MD5

    8c7ab73125ce759686d8a1e0222e2050

  • SHA1

    fcecb5494d129e7b375c6317c24e8f31c97b6028

  • SHA256

    88240d56562c63bf811d9b9f73362e860a9627e840da9c52a8c81c7f20dd13f5

  • SHA512

    01a60a8bb5f76ec08e8d95c7510f059c0a4e53c059fe42a7cea29d04b65a9ce65187dc29849bafc62facc23979af3ea88416f9419904b591432df9c3f2118c11

  • SSDEEP

    1536:SExP+F68ABWejBCPLxpM/WeeL67JNFocUoAMU7z3IMEoYkcZFfPIDFwe3Ov:Sw+p67JNFocUoAMU7z3IMEoYkcZrv

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8c7ab73125ce759686d8a1e0222e2050_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2084
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2084 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2560

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          826a174c154a3138b405aa37e2bdf561

          SHA1

          14193facb66b26ce5a1d5219b1b698ff76bf44dc

          SHA256

          343f4c0a6a7c51a74666688edeb06f2e21ffb834e62c2b93f23bd0635aa42b31

          SHA512

          cc1a3b695b7674521fbd420066cfdc60905cdf8251550302ac34e59bd021d75a48d83a4261fa972e7d0ef289c767acc29c7366a4776511d1b692ec34fee33b3e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6a1ffdcf972a006d4160bae62a373a8f

          SHA1

          4116cdbfcd68f25c7e05a8223accbb8c006d1f64

          SHA256

          bdc32c5b097b68543647b99ff40a91b6b75ab5a6dcbce098712f0e8df47e6135

          SHA512

          d8306fd96b70b0a8d70d79d227bc6efa163a93fd4cf12411c5178d59cd1b5bfb6854a5bb3ac295c726b69484a2bbd70de1505dacf2e5acc3a799bca49702ae09

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2afbbe2dbc734e75ff58552e61303d9d

          SHA1

          61d043c01304b2347230326cda99709bf2ea85b4

          SHA256

          681f78593d2f1c692ec3f76ca4e820e9f8e0c2181ecd3f6f932d21fd5ac56dcf

          SHA512

          935d8ace230e261b9398a046762dbb8a8674ebb4d8f1988388d0ba1f6a4840ee479fcb574c02d03e181cf298fe474b75aae81c191db7b0643dde740f8b63ab45

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a0be87f012a78e6b4c8b042bd522b55e

          SHA1

          4085f457698a7ea79acd3e50a58fc697d718f601

          SHA256

          2a0d47d1f613557e3658d1c92eeceb1777bf0c2a7cdcf574110e9665436586cf

          SHA512

          3db576519fcabda172e16ac2d4a91a8001278d38b7adc7bc901b2e5da199dec3e959e657a977a5166ee97a2f9dbb304b3338491754c2f9bf95ce27782eac4093

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f2aabc098a1f0b2f256ccb5f0198e564

          SHA1

          f14b56ff06286d9200742e96845380ed2fb57f47

          SHA256

          e1718ff77354c59938d4155cd3da57d06bc43093d180f17e009c8309105df90e

          SHA512

          173ff0ebce5d101c560f513c285ae85e046502db775d3fe6abffe4d2f9a059b8358a0385bd6509cb4f9c11a6d395857f200f3c6b0ddb704d9ef01b4f7ebb7c1b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          430abaed52251f68f670d080b4aa1a31

          SHA1

          51fb2d4081b7fd283013e1f96d27dc74366a98c3

          SHA256

          a41cd6f3c8e51551c78da1510a9440fd27fe5af7f7a649ba792d679ccb8f10ba

          SHA512

          528cf032d8921a2179dcaf5c657aeeec2cc88f4e36af8a8db28b43eead88b0b2b569d6db48ee7fd2e6d42ca581fd12ea4b6bfaebc5ba060d48349c0f031b4c39

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          53ee43f891656244f7bba665208def3f

          SHA1

          4bfae0fce1c8ee4e172fe3fc09312f0710a03f4b

          SHA256

          77306e98b2f4f1cc627b8a9bb8bd247cba41839de75bb4fb4d50b901fe91dd42

          SHA512

          0807015c13a9f7700a276b93d3f206dadf13d7bd4785f7be3583d9c4025d147cb09e93d2c45beeeac59a6760bd8cd44cae311431db91a64fb175ba3be4209a69

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a0dbd09beec90613b5ebe4997022ba8a

          SHA1

          a01fd66b4ebb35ac656873675ccadb596b6d0baa

          SHA256

          aa56b8833152661e5ed5520b92abc39e387c07d94b7ca0c5874513842dd9acbf

          SHA512

          a26db116c1802fdbb1063be4cf6004b8591bfd69779c17304ee35515660366b733599ae1b876ec74df1883d38416e24b573427824da8979d27b5b061ee1b76af

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7753a0d20a93cdd7e6860969353edbb2

          SHA1

          25b8fa209464b3f737dd27103f63b246fc4d293b

          SHA256

          38dfba888c83a566fca3c8d3c086cb581f459f49ea68f955a584e5884aa62e7d

          SHA512

          42cd563cdf64700b476422c6244e95edd89defe87529bb0111e74b18bae5d0445271a308b89aea9a230755e379418ed0f9c0e9d54bdffc83a73269ba0a96eba5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          43b9f95effbc77d5e0080d97a1cbbdbf

          SHA1

          c4a15ccec001f62720d87505d20afa4629e1b2b1

          SHA256

          efaa4833be356ba822f9ef15ce43b59f0b1f661334f793132e13f76e25606d79

          SHA512

          14137dfdfdebc6f052edf05320d533d9abe1341975b10903797327e1fc1dacdefee3beb53e2332d3a5f64b384c7ad1f58f04f5acf99797b50137e2c30174d6e9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e638e3490d69dc6c30d81592fc58e8a9

          SHA1

          2854f582d0f3fc3565436f7d3b36bb56d6c8c01f

          SHA256

          aad8b3562e36d3793224c901ac478bd30533565a7cf0ffca75bd3791b7299925

          SHA512

          5ea718c56aaaadc2139dce60ff5ed6969c7a27a0ca0202e0bbf1631fb0e6147c30554c3773f4409a522e4acf47107c5fb1400be42ef52007ddda34a9f71fc74e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7c70d79f01f10f0b64b8569fac75fe89

          SHA1

          614b03d60038f47faac7ec163b744d5a84679d3e

          SHA256

          6ca55dbfa41b9a56704389ceafe171fd8dc32fcb0b3c61f92ac5faac0a8cfac6

          SHA512

          ac1d8331a3e146fc80d7f211f2a8c5a414e87c7369598ecbd3892779912a1e3b8c96710dcb1fcb5172eee721d3cc69f0a3da1d629accea1b5dcd13eaaf3e1b75

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6faba853d1bf682f961eb48437a91112

          SHA1

          4ec6fb75c75b0ce1c58a5fbf99538e7803c4aeb8

          SHA256

          1f4d9cd40842744a7c755e4d3228c78558921e45b5bc7c222ceace799a8031b3

          SHA512

          a396e4ae258ccde3ab2437e163219cce67f454dc28cd06855b3e0c9597e62062c352594b962ad7742ffb8cb7efbff771f0b7521c2c06d2fdafb0cf13d00e85a8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8475d4e82eba5be1adb8e3629834fe4c

          SHA1

          d1258333fc6e286bd160c48dc506e01aca087910

          SHA256

          0ed6dfa050bd9be9e2597a4b4072459a18947a17192a2188d751c0c8aa3bd401

          SHA512

          1a2af7b1a21470764af92cbc9d578aa159fd5d39aa441b4445a6c85fd90236ca9e859dd5f50a93316adc06e5251ec7257055bccd5376cb767ca412977464b6b3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f7403891bfde3037e7a53ce7cbd121a1

          SHA1

          233f81b868fa97d8e159118291a22a3e873ac4ff

          SHA256

          1c642242ed334ed2b9dccdc2d2032540937f99df966e9b55f8ef5a440849045a

          SHA512

          ca4cb8864be1780f8ab0d1b81d921c3a407f0d1f01e3f706aa110fd081634ea1424f5e5168be917e565ea9bfdff3cb3d0f41abb22cccafe68deb4da5bfb39d6b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2fcbbfbc992c63903bfdf41e55597b1a

          SHA1

          5e6a08a23c98dab78bfaa29df5ad8c33b989d4af

          SHA256

          33fc368e8fe3546198845314c4deb7c23b0970da91c35496526d13361fd1243e

          SHA512

          0b6d3f108aa618d3a1af6a6e25815305eebf01389ac722270323af69bed09c13bb43843e38e4745b9a617e3324fc9936e06fcfe36c34a2bf1bb620e27a33a450

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          97f951d52a610597c9776dde4bf8899a

          SHA1

          d8c5c75f63cb26d8a595360df38c8be60a39f93d

          SHA256

          f4c8feb9d372ace7ed4b532dbe25659815a60484aad93b7245404c23125e05e2

          SHA512

          6dee36f21601f82ec02f9f770012cefe0ab9bac9c7c519938ebc000e04d0825ed80e36a01f89fd770999d4c8eae842f8b986e7debf57a637a155f15ecff2f9b0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d14adb2047f5daf5c5c0ecbeba1f5281

          SHA1

          bc26ee22269f4cdb53d1a2af8ff4abb1dfeeca4c

          SHA256

          c562b34680312311bd9fb53dec14e6c24005ba39de493b3f3a4b44973c9cd86c

          SHA512

          4c168b40c9149e58b245f2b7f91e0049544259cfee7c8dc072736c1bd88dddf2b1fd93a4f04fdf7f016e9cdd6d0126817ccceaa948cd8af9ca8a1881b727f5fc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2179edd0b3879d0025030489a3b3c297

          SHA1

          7ea42980fa10cf625588c067968d1cb4d12c2c20

          SHA256

          c21186ae86d534bba1ef2a4863da358e84949f93979e4e9bbc3c550abf284dcb

          SHA512

          a49f78a0037022f5956b7b7bfe94cbf0c9ee1b571b7f0f8b5b0801f46183e883de3d2376374a9e19ea7be3d26463c1956f813feabab1002aac05b8a9c7682998

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1023b61aa1614f19208f3d6d8890f6e0

          SHA1

          e712dd4f223f77ee5270686760d715d2900a3e98

          SHA256

          adb5573bde583e6787dd36b8e8ade26b6b5ed31f70b16f4c0d50eace2833b70b

          SHA512

          4ad8444d74e0a0b89d32748daa00e1b10e1d4aed6d7babbc77591073245f84f91b975a6fc476535c9c207f9efcb259279a277468cc1056c0c1fe826e0b247dc7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          64ca0a9507adf1a29389a53459d04373

          SHA1

          9a036a2cf977aca2ebeffaea7ad3e3d492ff52aa

          SHA256

          1327206cf884a7fca83e16f6061b563b90a47120be1f54cbc327ec8b84bd6a49

          SHA512

          38f6cccca9ccfb3b99682cb090f7c8cd761060094aafe36ea605f1a9566d302b2ebd738daded9227e3b903e6e95b432d5ef1ce2ec5d2954bf3cf0f2c5226e97f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          36f1a7d878097f782e52ff5eeb753b05

          SHA1

          665023f43581306c13de4029aa64632d0e7f2dee

          SHA256

          1b93edeeb76c331b9f0846a9e1ae190b408a3ae7ba99531642b84c54ef81bfac

          SHA512

          4fcf56989e203e188689797654767da298353f212f09fbf26d5302950a59fcf904d683398d4fe52fed9aad6c4da13417424b3a1b8b2c8fbf44701440f8498447

        • C:\Users\Admin\AppData\Local\Temp\Cab1601.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Cab16E1.tmp

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\Local\Temp\Tar1715.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b