Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 01:37

General

  • Target

    8c7b6583515767fcb5710b72b224f091_JaffaCakes118.html

  • Size

    116KB

  • MD5

    8c7b6583515767fcb5710b72b224f091

  • SHA1

    0509e2d73d86790e234d11124c23a1f0a4ec380a

  • SHA256

    924319824e4dc9749865f888984b02e33f43facfd7b760b5b3fd72b44539fdaa

  • SHA512

    85fbd7988e2894a0e995e5720d32e0aab4821e66474be963b2d0fed961cfd38e62880d10eada6064fdce84952261bd5537ffe44bde59223aca56b103753d69e2

  • SSDEEP

    1536:hun7oJ9CVGhVGhVGAIocj9wk91exalq1coGkFga5LYgWDuBH:4nLVGhVGhVG5L/vexZGk66LYgWDuBH

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8c7b6583515767fcb5710b72b224f091_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1712
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1712 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2604

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\E87CE99F124623F95572A696C80EFCAF_6B69C29B30EAF4FCF9E240B3D6A77FC9

          Filesize

          472B

          MD5

          5951f53315a62d4363c6ac0b74c9677c

          SHA1

          6f1c3aaf40573bf1b03a1745a06e03ef220260e7

          SHA256

          1ba41d81dac5267b2b15348aa2f1b64456226b8780a36084f8b756bb9cc5828e

          SHA512

          4564a10d054f5751af91e75206779fc12739fb910e6a601e6f1075aef197072fe796e2d54f47dd538f4c725885ae558e1ef643f570990b4523258e5213a1f9b1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e6f72d05f36d3bfe8857c286eecc2af4

          SHA1

          712c6d9069571da3f2c67de61b7e27c4f65b47eb

          SHA256

          49185f3097514610c578ff44bcfc8ca2a7d8a619827f86b09ae3111fa4165380

          SHA512

          ab696b71254518106757f02ff7478b92185271f7bfbb1d646bcda5e6b8b9d3ce866fb0a89ced7a9a6df47104c1f5cd94edf04d71c76940a624b55572431bcb7e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4018dd24528bb065c98cfd016bd32442

          SHA1

          6bce149d0ecca625d9dc215dfd9b0c6062996974

          SHA256

          43fcc6ff06b19132b68b03e870eb7d81d525fc4c93fc5a29d8a327e3eacc1bf7

          SHA512

          9e2134f8a89bc6e6595d7de55884087267e36979d969ccc89324ff7882bd9d4f6473091947292763c61eef20012c1cf1f21e59a0b897b133a5b3e8a8cdd733a4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          65ad69d6d49b6813ac55aa725238f805

          SHA1

          b92da8bf43bb88b48ccea9038a4032959521c827

          SHA256

          b2ff8dc12160f386302bf6ac71e3fdddaf4e87397dac7183b2c56c3560ed7485

          SHA512

          ae80920b258b1199300198444819b445244ac680e3b0ba6ecb66a2b821e38d242d4184ca5d9411520fb8a9b9872c436cb11e11cb886d9a519718d3eb54d1f254

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1450dde94ad1a53561e13251effa2ed3

          SHA1

          5e55cc9c2dbc4b624a0fc64f2e85e5f9bcea602c

          SHA256

          2555ec4b834adc30277ad695512da89cc4165d09ddca4e0a53bdcbe7cebe7d8d

          SHA512

          fcdfbc7303b1d1b690a8dcbaba4a93d366b65f77b692954d2b42033dbc0fa6b5a65d5b32d85c8b873a34697ceed5c93a9aeb31e3cb38c20fb2b0754c8bd77c43

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d5758084987eb307c200cc5c06990ed7

          SHA1

          163782293d3df8e5ef96b098b7ca5d6bba98e3b5

          SHA256

          46eecc4554bb940316933c2d37fcd37f07c248e1cd33c7005b59d792ca55d765

          SHA512

          8bf1b1a84dbe2e923a61b3530b96077c309fad6b26ef9316b5714d6ca83dd0ecf8b968d6133119125d42b7398ebd9b73ab0bd6f4ab8360504751c104a911ef6a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5e0deb56e436ec6d631c60afd922d907

          SHA1

          dda78641f1bf6e6fab8bb63fdda1398092a1f57b

          SHA256

          274ec1970ed532a7b08f2fdc02e121f76a3bbc21bd936dee8498d39eb70929f7

          SHA512

          d356dd6a4ad8a6fbf33b074a99be7603002253251e33123984b436c15745d6225fadfaeed0d0f7a4b2deb40a87741e985ed6e1a118bfccc133e91e04402b3a5a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5e72932f0c866a793316ebb17df73ded

          SHA1

          6e6a57b587934f0a2c8b0ebbc17969f55cbe8b00

          SHA256

          7b1a9550b8ba19c882f3126d5af3deb1943b858a4ee5ade5c1f1cf1f21dba8ba

          SHA512

          4e712945ef2dc38daa9116036779d82adf31bd9beaa7fb5e95eabb2facfb0b2b7ec0a106ff7e576267293b31d818e685792542829961f4829006a50bdd87cb09

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f1cc81ea1d30afe49e58186639303a63

          SHA1

          f94ace7b3c9bcdbb62fab3433735f32181117602

          SHA256

          cbdd584cf2a7091da4354e2effdf133a616b0a12539ffaadc46d7a37257cdd8b

          SHA512

          439b222250cdcb38e6d44c1897a3e1b0b949b7e68f2320e000539f6cdf81b9ca7bcffe140f4a9a9f9dcba0d6d343dbd36c39b6154ec1611983a93c6d933740ea

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          38c72021e16792e9ffb4a73a3cd3475d

          SHA1

          ced24b250ce062019a0181054a4fa5e93b803462

          SHA256

          4ff64b193c4ab64142e531a4218ce157290c6e22fb0ac84b1db109d14a2b26fe

          SHA512

          88635661b5e4dacd3ab455b773ebef654fd419bdfa42de4c2f8613a70d18714e242eae0835a60d7659b6f3576f51f519e056024f21c0b62cb68880b502423df6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b423a6b31c74e15a5e50a0d545904958

          SHA1

          d6202b15559d9e4e164400b123f9544ad567726b

          SHA256

          f784179bb7b920bae02298432ba08679d55280be2511165ff55f74d08f04c501

          SHA512

          af597293f7c86d13d02caabd2513415e285b33bd803d55654212e5821cbb2406e0de0030d9f817c80888840ec54a2c40a65e23d4218daa740e5ad3c3d831609d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          eb17237606c109cff1cd03d07fae0986

          SHA1

          c9191655889ebe0caf889e9811dd9cf036bdc76b

          SHA256

          d70ed78b6dedb412bc97922014fc7a464aa0f76528bc70404874dccaaee3750b

          SHA512

          94de01e693c38130ed7b3268393e0d177a958e8e918c4a3947054aa3dca76a99e3f5c40f0568192d1defe4ca6f3d0855e68935e0ebd40c6fad75c4a8c5f5201a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b7699a31da1a2feffef1a6affc09ccf8

          SHA1

          69f175f8abf6f0e1f3df704c6f9209b528f9cdf6

          SHA256

          686d5df152f1e62d542dc607bd8a717e46f2f0b541952c36d72913f77dec8f0f

          SHA512

          dadff4bb04296609660086e47b8e7f0f5e80cb0be3fc84e0efb6d3205bc283e71c01084f1fec22f836e8a629f423fdde4beb56e94ae7670c2b61f1d56fd2869c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f5bd815d53f0d12d20946e5a1d251309

          SHA1

          3fca3a4a9724e9f91e22af1068c0f621b0c469fd

          SHA256

          298b9df9babd108bf7cf2d0efe93e4047dd58acf16e845fac9f4a15ea74a3055

          SHA512

          361e29990eb3383fe1a30e91f5e6b400fe1bf5d43097b728c9bda35f0dd80fdee2510451919ae13173541b4011b2af48d99587ed3370a3151146f6323af82476

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a876f1bddc948217cf02417bf5aa54ac

          SHA1

          c63412b10bead538e56f9e2360ec8c8f2ed3faea

          SHA256

          3f74442407683aea9aa7d7cafd427bbecd1825965a61270924679d80bc1799c1

          SHA512

          02575af9b4d0f144e77b9197fe9392707ff690864aed2dcc873288df49f4fcad92f6493f3468476113e31eb51991839d30bffbc515c69eff299f8fab786f92de

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          89faa182fc20c65c54ac1c10ca07a3ad

          SHA1

          933a8204354b489021e3b3911328724aee8f99a5

          SHA256

          9a7f80697a3212c8e521b367c65cf592a4fc046be3e2c1136aa84e46d230907e

          SHA512

          38edb3bc10f7260f326e54f34d18b013198ee81b83ef006a63e8a423c92e28d4b170691cb0ab94ebd626a1536b74381695642f40cbb412e3195ebd1842b8482f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c886d4b8a664c54b51fb917f5fbcdf4d

          SHA1

          f59718f1905ee4b15f5bf70d3126c2e1be4909ef

          SHA256

          c18ec9deb8501aa391aedd4128fac6b5148b41a3c7c2907797c72c113eea10b1

          SHA512

          21ce0d986fcdb0553141cdf76abe6647bf08f9a1094e81241295c75194d6aba442abe206308811094317093a876cf4b3a64e66dd84941d0059a1fed890fd4d9a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          16855bd59458a3e13b13b901881a6dfc

          SHA1

          97673899f75477454dfda9f2557353a523b71b99

          SHA256

          c40148241898aa2843812f51109423dd506255c8b03151940cb565565f5d7401

          SHA512

          a66477b5871ba3b29df0a6a014edf644e2d7ea9662c2055023402dbcc3f50d1392721c2d18586c16d562d78ebab59cacc0667413830cd57051ec4dcaea3f9beb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e14d3cd434160d0a41dc1696bdd84487

          SHA1

          fa1e81a5c3d238fce9f95909f4235ddb3a96d022

          SHA256

          ffd0db4b48efedd8f7a2d7771e912a9190d10287cc5e4c9019840c80a9dc21cc

          SHA512

          479b2325d8d9d7ec2fa632bf9cb2d42ab73c1e0e7f1f2b1d8a5b33fc1684732357eb9357796b2286234577d21c35eb438c8e6e74554afa4ccf85657c79ff1886

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          227856400503dc5f9d3801b3a993f06f

          SHA1

          388d0aa9f2f91bf3e2623c61c8dca996d00a2585

          SHA256

          d9f175f28ab7e1567298af8d0093eac4dfa04e008c5570f0f611e7978b4f8d67

          SHA512

          ab7f56898eb9e2ca574dcaa4fdcd066026ae1c032c01d914e211ffae63c5f93b7b2a694ff25e8d0299e2d69331369c79a5e26a9dd401c18af270c46cf8b2a3ac

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1e6809e6e5eda1331a5a59fc8810b115

          SHA1

          875cd77dc2a13fd045bd21122d60f1197f4ea6f1

          SHA256

          436fc20dbfd2085177cea16820762acc8d5a0de8d228d4235bf7a2fdb2337df4

          SHA512

          99675c8fdcf1faaa5dda4e793c53e122fdbf1449e686c9a5b39db545dee690c94e0a50857a2695582308882280990abe620a9a6a0c2819d245403fa147893825

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\E87CE99F124623F95572A696C80EFCAF_6B69C29B30EAF4FCF9E240B3D6A77FC9

          Filesize

          402B

          MD5

          e66b74827565715c3b1a85e776b880c7

          SHA1

          10ee8535a4f84540bf9a49fb514b6e739922f39f

          SHA256

          7fb5c257a60f994c82252518f2c6a61764978d4935a57f71a7c6920fbfd44813

          SHA512

          3617b5316fcbd5077e903c97595adef64b2dd021d40ea9e47eab51913caae62099c68bd3a161731786ccf8ea708619f9d31920e1f77cd54422903825b160030c

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2XHJXO3H\errorPageStrings[1]

          Filesize

          2KB

          MD5

          e3e4a98353f119b80b323302f26b78fa

          SHA1

          20ee35a370cdd3a8a7d04b506410300fd0a6a864

          SHA256

          9466d620dc57835a2475f8f71e304f54aee7160e134ba160baae0f19e5e71e66

          SHA512

          d8e4d73c76804a5abebd5dbc3a86dcdb6e73107b873175a8de67332c113fb7c4899890bf7972e467866fa4cd100a7e2a10a770e5a9c41cbf23b54351b771dcee

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H09CVCL3\httpErrorPagesScripts[1]

          Filesize

          8KB

          MD5

          3f57b781cb3ef114dd0b665151571b7b

          SHA1

          ce6a63f996df3a1cccb81720e21204b825e0238c

          SHA256

          46e019fa34465f4ed096a9665d1827b54553931ad82e98be01edb1ddbc94d3ad

          SHA512

          8cbf4ef582332ae7ea605f910ad6f8a4bc28513482409fa84f08943a72cac2cf0fa32b6af4c20c697e1fac2c5ba16b5a64a23af0c11eefbf69625b8f9f90c8fa

        • C:\Users\Admin\AppData\Local\Temp\Cab4A0D.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Cab4A7D.tmp

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\Local\Temp\Tar4A0E.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

        • C:\Users\Admin\AppData\Local\Temp\Tar4A92.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b