Analysis

  • max time kernel
    149s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 01:02

General

  • Target

    8c663a8c4a80f79c64f5e0a604de4294_JaffaCakes118.html

  • Size

    72KB

  • MD5

    8c663a8c4a80f79c64f5e0a604de4294

  • SHA1

    47dae38945d5908ad11dbd6482681eaa7b908cf1

  • SHA256

    d77a3bbf121467ad2feee80ef5c6fd14646cd017c13d323652eb542804f5c133

  • SHA512

    d921b598570076144e75c2c732b299b5976ca2712807b1260746e62bf31f0f6d4034bae86cf9332649b2829103be547bbffe539edd0509580de5aae7de40117e

  • SSDEEP

    1536:brbEW+4cfsUxTGgEbyKahsuwU1CNwq62Ua6haABXRY:3bEWDcfsATNEbyKah7wU1CNJ62cDXRY

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8c663a8c4a80f79c64f5e0a604de4294_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2292
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2292 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2744

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\103621DE9CD5414CC2538780B4B75751

          Filesize

          717B

          MD5

          822467b728b7a66b081c91795373789a

          SHA1

          d8f2f02e1eef62485a9feffd59ce837511749865

          SHA256

          af2343382b88335eea72251ad84949e244ff54b6995063e24459a7216e9576b9

          SHA512

          bacea07d92c32078ca6a0161549b4e18edab745dd44947e5f181d28cc24468e07769d6835816cdfb944fd3d0099bde5e21b48f4966824c5c16c1801712303eb6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6F743D78881F1BB3C3CA563EB7AB7CA4

          Filesize

          503B

          MD5

          29810c2c1c71e079b3928fb12b538aca

          SHA1

          bfd02e43cec31441208f8e423ebc4765f65fd27f

          SHA256

          bbe299a52184e70fe9d3c8a42fc11c11c33c2dbf68f31204db6af8378c7047cc

          SHA512

          67a4013ee2c2d11f6313dad9eb3332a3d6d900b53433965b62e2f46f0f25de7a109850b71b9108c70ca33afb2c1614c8f8967799110fbeb8018d5cba50a8b274

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\103621DE9CD5414CC2538780B4B75751

          Filesize

          192B

          MD5

          23696aac0d0d4a0f15d45c727783e035

          SHA1

          00d0d3e9146cccb07dcce5b77477d2dc1f127362

          SHA256

          c44ae82d68e62c4272ad5a2fb0626655eba1926bd991bed6d23acfa57e5ed720

          SHA512

          c442563f6ac17752d2feaf813aaf1067f2a69a1da8a51f3027c4674c36458dd3077e3ef744ee624b45c13c192747bd70987d893310e7d8441e5557a3c2be41ee

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          9988a19d73a850697d3bf0527d09bb41

          SHA1

          7d9a2b154f92c2ba3dec724367126ebafd6f4a87

          SHA256

          6a3f080e963f305e99ff9a8370ff0c17619503cb78db15cf3fc4bcc79c1ec856

          SHA512

          b41395b00ca645b888359b26a604a595fca75f5ea7fd24bac628321829210cf43d5ba328b6262732560004db9eac7a9551ea179958f73c7eb8fe605732b76b03

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6F743D78881F1BB3C3CA563EB7AB7CA4

          Filesize

          552B

          MD5

          f00a76e19219ee5e6b8bec0f817e3fa0

          SHA1

          04f4e8f1aa19c6b19013f8788bb15cb8edc3c44b

          SHA256

          cfabc2d0aa1a6ea2c024bde5e8eeb260fd2795f6abab6bbca7af2e44d08455a5

          SHA512

          6502a729be4074acbf7ea431a3d6143ac01790d23fc8e023fc18da792f9460a9a73660e99380c4a9972dde157228e043b00d3ddb7c6674b2e5b1a3a6c83b54f2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8275f75efe8362c7f3358f03b9d941e4

          SHA1

          f0d901c845c788eff3d79118e00565d9a953803c

          SHA256

          ac6c48b926cb7ffe4812fdf6b58c18c02d4aa6504974f8874889e0db1343d023

          SHA512

          5d5c220e502914e35e46d686e9ccb06f52c8a949e51cae57a920681ba12db722b5e9986e280811b834f4f6cb8edcc464de9ae3ce49412c54caea96dea8540a0b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          28962670fcde137a2bb3c85a7381ce1a

          SHA1

          79b645786e6cb27e50811d5a5223520e05295972

          SHA256

          c0972536dd54673db00a117a6b2d000eda2819136891e8276bd0fabadda1dd92

          SHA512

          4cfb67eb5ccf7b7ea7ddbfd0d01c77a632b37aab052b1149ef8b80de08d1399d3609e49f4b435015e6e0e61cd7bc1b7d8fee6c246282c6ed92ad4d8cadae02bc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8aa90200755a85b2afb73fbeb3d9bb88

          SHA1

          62e3a81ff2a85c078651e788309aa2df9a9ded27

          SHA256

          8c23c36278a199970ee145d288e62594b43676d8f122daa3b7e6a334b3cc7e6e

          SHA512

          d62e8f6bc6c26403befdc0dda987907c4653ccb3a98d0082eb12bbcd70e57fe56b849db66f8604198413d00b695cd42bc503a9349e25d0fef7ff5cc4577a7bae

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c273aef872b922cab0a2fcd805fb29be

          SHA1

          988468a9e3c1a13fdc76371ae0bd2186a5ef2b5b

          SHA256

          2ffbd9bfd8478eb731baed3dcc7a1d93be584ac4137f9d0277685abc69775cca

          SHA512

          e7086fb8ba93a7921d3af481242db1ec6e5151cdd39a625594c4f9c5bec8a929bcccee90170ff08f6b9525ed9f13be50109caf25d32217f3b02913e1bad61a71

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d519e051c204708726ad09ab98be769a

          SHA1

          e1634bb81e05a2a98b23e489170564e274a6d897

          SHA256

          2b95b8d340f471d54d96d79256d50ca6faea83a0ba5c53f826c1e3f8430b9f72

          SHA512

          48ba8bc79cbb8f60fcb1f7c2b4418d7eeccc2f62a45542a06649573dc077de67a594fbed1b41cb39574a7c9222eb3745b6eafbaba17e7baf549d18e514851af9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1595c65953a6e6712d4ad4f102a0c20a

          SHA1

          8e2bb30ec23f56bd28df18d933368f532985ba37

          SHA256

          35d83b9626aac364e6dbf93704a728a2564fbfa85dee2220429f096e968ebeee

          SHA512

          1caa0729ee1ccddcbee727e827cafa7c1b9212dd0a9b6cbd0c4576a89b38c1906d075382454c916c643f7a3a15791d5d04265765455132e97c0c9ce0a5cf9e7f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5b74690c9d2af3593370d25a2b9c8507

          SHA1

          887cec472113dc47391d0408d9f06c483b7effc8

          SHA256

          90182efefbef47a49ab1b8f16e06c4c84102e13db628568ce593f7c9846013b8

          SHA512

          c8169c3539c0a8652a5f152bb1a5e5f63a1ce92517471b9b69a54ed508110124ec52ac136ca3b4d1ff902237531f3e62235fa252185ec2129caa85fc34ba40b3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3bb53931c959377f32cdaafa459df068

          SHA1

          334b4e067fd384423b233415271423afc01b6d60

          SHA256

          93c76d6af9785a597d09ffcf10c21ac7f6850cb61cb29b6240d671da5c4a512c

          SHA512

          06b4c943a8874234273a03cd760b681e98fc5a3aa176338d94707472bb77f12f2a872d8e40fe582e1ab481e781a3a87affeee57a41eab5784e21e49a7d563b96

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2d24641ab84785a61eb435ba32a69971

          SHA1

          4a22bbf06c0f8af4634a904cc00d4a79833ee214

          SHA256

          70b2f048f6dac0f206eb2ced670b0a3d5d35390bd5bc8a53da2a7dce69183f2c

          SHA512

          8d9df32e1d3ff453c0b0c199dcdeb0f7f08e0bcdc071ba8a2a62feaeacdb9a1646c7c9dbeee7115c20eed6ac84f6315a0dde6f8b2c8c1100a1c07b4bb5ed6c10

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e2f346c354a5b7a19903426c64b500c0

          SHA1

          8de18a5363c0b0a0d6125f0dcd8cf1d5443915c3

          SHA256

          a33d3a8685f8e707f5d927204b9f17491d0ab224183e7af7c5cbe65317b55e1b

          SHA512

          c96beb8586fdec676a158d82f2006921d54d0dddebd72420afcf8e2b0d9e8e037121e727fe4d4da8b5c7d8a463f7d7fa8e327a90b02756a50d5afbf83186260f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b92850122afee74a32c58096d41fcf0c

          SHA1

          08819087b7b6ca2b33cb6ec5b15e8653261b1fb5

          SHA256

          c8bb76e6ce0d78ba6b39cd034a9dd612ef6d278456b31797b58d0fec9415acb4

          SHA512

          039477a0e895b53fc3eca62ce74f8abe53d7eeca14cdd156e01ff75d36423e11ad5a97cf803435d49a06064360acc417379261b38f5226bb40b35ab7861b6230

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          09122085c343bfac357c9e88ba33bc44

          SHA1

          1c168885a43eb40f6aebc9b0d212bf7e461cbe2a

          SHA256

          17615d2678c63036daa9c313de9e26e2fa70b010371dcc19f4e3e131cb4777ec

          SHA512

          1f86c370da5aa8cee1a3b65f17bfd354ea225215e3aaaef242cf32c5730ef6451daa93f29f3d60b9561b2d9205bddfb01037f3975241a198b6a171adf0de63cd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ebf912adbc6c3ed34c7890ecb88cc99a

          SHA1

          ce228955ca7469801765c4770fc4be0995ed099c

          SHA256

          58390300c86503f84bc4e6a0218903a3c0687aad7cab6042d9535c3bc42eef51

          SHA512

          63ad4ff169d44ed035fb197e3398d33514aad9b28c8fef64353adb3b26cc71a03bfd0949582358cb87ba937e563fe54f3eb0ca6288a3734a69fc604acf1b0640

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          97dbd18a0e775455800711588c793bc2

          SHA1

          2f7a8a37e25f4177bff3d4bc213a7ff8facbfb95

          SHA256

          dc83d4d90aa19f7189092834255853307e93591b55c2efed116d55af86d5c2ff

          SHA512

          e00df378a0260514b0ca4c1a5cb592d907918672e472b14adc1f1c2bf06e8f7e1bd33653f9d6d5726590d4677cbc9a2a12466e177b4c6960e6cdf66d35b14a73

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          f1456a8132878fbb4603c6f643c0264a

          SHA1

          bd60374c9b77bc61172b75afadc1c03fb2d0aeee

          SHA256

          ccba0e8f8dfbe83ecbdf4dd8d837ce6e84626b1ae654e84c5c7bf011ab8929be

          SHA512

          70d88678909916a97a99f666725bc55b958147e30454b5ca5a76355e0466281470c445e4a7f1ba4ea2f817ba70836aa17dc54bd589c6d148a434068009b635a5

        • C:\Users\Admin\AppData\Local\Temp\Cab8C2B.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar8DF6.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b