Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 01:36

General

  • Target

    8c7b477de998de7349cf43dc07a58e22_JaffaCakes118.html

  • Size

    36KB

  • MD5

    8c7b477de998de7349cf43dc07a58e22

  • SHA1

    2f0e1480321d2a8568492dd2713f72bba9b6b5b1

  • SHA256

    684c11a4faa6fab528623027a053b3f3cf5e63220c18c9319318faa284d16f1d

  • SHA512

    adbe43d2123adc6f868386c99a6dc212d9611d04d170a0d58d6d45dc36d19cb383ea0b71d2dad6c9d2245eaf96056c6ba298b4027499cd8cc1f072fc78ad80ff

  • SSDEEP

    768:SFGb31bt6Db2vbqDOX4/d9b4fYz0UToGeA01Ji4J9YAX2VIlqP:SFGpZ6DSWDOX4bMfYz0UTUSoZG6oP

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8c7b477de998de7349cf43dc07a58e22_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2696
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2696 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2224

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          909a897e20abe5573c60738c96d45be5

          SHA1

          3e22a56c6b5a41eaeb82e1a0991c1dc08e0942cc

          SHA256

          e4a4e9e7cdd94d1795734626766e18cd9c01ee39456a6a3834476ea20c062d2a

          SHA512

          e63f161ed901c083a451b0f3736cce6644b058ffb55246a576136a2051bd261f7b7beb16dad61daa4fa61f83a5ba79042e85a45811f27708b9e73a52fbce0592

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          413f0923fd2bb481a8d8c7459e2bf873

          SHA1

          694b4445404a6214fe6a646cfd8c77a7d307cbb1

          SHA256

          a03fac17cd73d32a006079239ff3ee6f73d05122763b65ac31f5eb9a15aa34c0

          SHA512

          1073b0da51daa74996c717a2106014b4644b599b34f8696efffb46be7f049a84ef09fe58c334452823a697f7b97bc1782a28c873838312264a2664066be8ceea

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          98d93852ad0df39a918a8050134394be

          SHA1

          d6dcdce00426afe1a6d361e55111e6048d233ecd

          SHA256

          f14f29f613de679e2c78bd7c07651b72815f634e05221aa377604c2a9e78ff97

          SHA512

          e3ab7c6e0bc7791687802b09c458c314af7722ead037ed233ee5dd68b743f14c028265c67246a5598c02ebb1764b1a5057fbdb34f96b2fde9bab2b794fec7e95

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0cae3f5c65d1a43b7952c97f404b5a53

          SHA1

          eaf2314fe75f90081ffb218065dcd06c6b772ea6

          SHA256

          220fae7057d5be645beef289ce17f0558711e831a93aa67d93414848cce3f07f

          SHA512

          f98eeeb95f2c230a24f9cacf90b06e1bf67e960936c841508868d8a53691576e65b9823ca53b105cf662c2226c667b3962bb2dd1e1a61b935727b266725c5f2f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ad2ec4d524f27db99aa2d8282248bb92

          SHA1

          1fec3999aa7c5409d8c7b57a1e370152bf7b4726

          SHA256

          fa75154d7433d1d8134472659dd7d4b3e388197c5a35936d2b71362ab6e3e3c8

          SHA512

          814342a31fa4fd60f0b8343cf9f0e92b991d678ea9faa5c6265a4350ca0b278235ba7964c224a1854db43d74b1a1e03bd7f536268c73b92de1f3b94cc15c5377

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          958f50962bb6a92b4ea215e9ea1f8e6b

          SHA1

          585a8c4f8768df1e82fb109c4d83d0c6ca1fc17d

          SHA256

          1742e73cb9928d5356478c38cfc3af83151f8b1dbb7a9e45462779050635ad6e

          SHA512

          c531d9d3f686e23e0067018403036d51e68247642f9a1b6e0f7b46d44964407f22713c350b0e95ec8fcf5d8469ca861a63b738a0381d24eb7d641c1f41acd0b3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          10fdb93f466010c2cd609e7b9bb33c1c

          SHA1

          517288902c57fca79766362c68d49a23c6f62e68

          SHA256

          eadb8773232a1bef7c5b19d0696bb66a7d34ff17135884d9580453354119924c

          SHA512

          a725429426e834b3360a8dd4c8836fcb2cad47a4845800272893f32b16de7d0cdc814f91d5aa6700d24a4b6de72faf0435579bbec0542167c8da4ed4314278a3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          04b6ebc62122787495413e772cdf684f

          SHA1

          161be4166460aa836c05d75b8820d913a90be181

          SHA256

          b7b7bf2bdf4ea60e27cf50c6a0198d3f54456de046ee38210975ba1721f8fef0

          SHA512

          e19abfc96d5f8d4673f6dff0d61ecb851078eba367252517019bb4c99b35345c94932572ba4c32f784da3be86aa1f3eae734f0896def80a80d78bb4f463b57dc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ec348fc23c54613c4562cb645512ac51

          SHA1

          0bc54ae89ea83954953240ed398aeb596597b65a

          SHA256

          9a15000421ce4cc4a049f8b2955f4a65eede12cfa51350bcee0348e58602af15

          SHA512

          85767f46e8b7a8d09b180aed47a542850412f61dc17e6762694d890a704094938796dc8359f7a67a800649616639d95277ff0efed9423be7796aa4d3ebcbeff3

        • C:\Users\Admin\AppData\Local\Temp\Cab1872.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar19E0.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b