Analysis

  • max time kernel
    143s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 01:02

General

  • Target

    8c664adf806f3198213ba7c33a630235_JaffaCakes118.html

  • Size

    136KB

  • MD5

    8c664adf806f3198213ba7c33a630235

  • SHA1

    9fd882280c9089c5eb307c23e412fffc2fa03283

  • SHA256

    1670ef7588b393d755174d5b166ae939aa9ae06541f1fda9dad5589161fb988c

  • SHA512

    d9ef84c82d83d2df58177c024b678f0de167a028e648ab0edec4436be5fc2a7c0323cf09bbdbf6d1686f6b772e885d653005da131baf27ac938cd2087f0d244e

  • SSDEEP

    3072:S4Idl0WBlqyfkMY+BES09JXAnyrZalI+YQ:S4PWDsMYod+X3oI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8c664adf806f3198213ba7c33a630235_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3068
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3068 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2460

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1cfa5d909d509a89f16e0ea2ed68d1b8

          SHA1

          70cf8d831f04dbebfb4fb4be3ecc91aad415f9e7

          SHA256

          34c65a82c83477ce73882f74ba24068a13386726047dee248fb4d187250a9c17

          SHA512

          eac453f7ce934758a16d0fa747cce57d670a31c525049213346bd1aa629927aaf2d6af6e53e7e3cd31c59eb0c5d01cc0c49d63ff9b0350d587bf46206fc1e90a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8139ad79a6e19215cee38986a89f9e43

          SHA1

          3a34e4c7c4d20860129926b11c0bdeba0c5ce425

          SHA256

          9696eaf92b4b3a808396fc70747d46f88b8c054d7497f24c74bd642276bdf65e

          SHA512

          18e3551052e2ff938a4b9fa468db1e87a1e0b14f7d44cbc5d6e7d5cef7cc035d8805d6d9783bd74d85903b719ff364b229ced2ef096430cbfbc787393897681b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          32b26c294bd33087e33933b2394c0931

          SHA1

          d9d7a0ff3e846f5df8f314f4e1c6e9e8b0706cf4

          SHA256

          a54e80c1515f0ceafeb0aabf9db7718f5c6dba8d7143f6e0739e676a0ad248c2

          SHA512

          aaab4547ea4dc1b6741f6637c1e2fbc7f12a31171612ba1ddf81c02c003a750d6279a2970597ef42581e52c92602c720db7ebe94687234950f92c796524c05fe

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          73d0fa411a65d347228ccbcd5e6ad6c1

          SHA1

          e4115475ecbe5240758028f5d34dd769bcd29d14

          SHA256

          95894b33ecdbad593e3ec55e741bb89d5421ace53ba78adce45db013c9ed4528

          SHA512

          ec1085b0bb0e24a4288ca7aad22b7a9a31c24b29684a1fb20cd15acae88219c102c2d7d5d8bc30d16d7c719c704a0017f02bcf4e440abf55e34622ae94cf270f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b276fc5aa4e25d19f01792d5302824a1

          SHA1

          b83d6f433e75414136055179b33541a70199d42f

          SHA256

          02bf690b354eb7e4acf3faab83e817d0c1e2531dce47ffd212de5cc443930c18

          SHA512

          9dd22915be44f90e35536d8bae25ae8674b4a6c451721e304fbc9c4ef998e57bcb41fe5d2eec795997ae4b4e8f1952349d5a3a6f636f0493bc4599a66286dea2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          accded1a94198018dd0f9878014a948d

          SHA1

          4a7640a33acfd4b346846659738f52d600c98625

          SHA256

          57b95c09d6efdef6609313366184d4966c72acb5387080b2c9a8219dbfb9be6a

          SHA512

          5ffeef03adb9b6e89383b006311881ba1702c4a07aa8116674f97c5a8dc9bbfd4821c91874407f7f76c0c2c600dfd40c064dd2d541577fc9651114d81b30c0f7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b8ce901f9da16ec1c0f01a86b9897994

          SHA1

          b27be4139dd8be6c0b1ee7f6e50b8188f93fc91f

          SHA256

          8739b99dd0487fa5121201ba328bcbb0069bbe143c29442c368e552f968c7c94

          SHA512

          78f6f8a02c5a98b774a0587c93b433bb4c178ac207a47e0cb363ae4f6614d61fc26e5ade71d3e930ab2ad16c85b4a5d88d9011fa90b737d14a361751a0e9f6cc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5d591cf6c15b34eb9d12056cf816455f

          SHA1

          215184cc56e3587145c1e1f6cbc9fb3f018e369e

          SHA256

          eb1b9cf0d4277bb638f87abe2e188f023abc161be8849e8ec87921cf1c0656e8

          SHA512

          30825a764d06ff9fc4708fb47920f4fdfb55f21663a90ea24b360f632adf3fba840a7ad7b21b3303669db82f0fe5f02bcbae1004237a9e9af56ccb88f8819581

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          626d4d9ba1b15305776292e3638f9017

          SHA1

          91e8295c566369ccc7f4f74caae6a06824ef93bb

          SHA256

          70ab5148fd563229e459b5342927f691b2a345dc4d0fa4aaa0d68f5b6bcdb66d

          SHA512

          6fdd8c1455e7c2b82df7f027e3ea3188f1f693c136f4abfaa3dd47a1f25d44a51c4a9fc1efb0c8ece7a9682c30db048625e5408748e7664e3aa4a4412ada87a2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d0076e6fd3582904b05aab1e7021b3c0

          SHA1

          92a0770f36cfe97530c0478bdf2cb3ba2d0a98bf

          SHA256

          78db0fc4284dea3e79dcdace6186cdf8b89367a9fa191fa0005b4b7dab7ed878

          SHA512

          cb446c41e4bc660dbe7d05c69f49fe154bdcde474cb0cdac17adccc16b224d788fa5f816af6baa718bc7da30e40b9b904bd348cfcfd403469939309952cea575

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b53e6333a8180c13d8be959fddfbc93f

          SHA1

          a493c0babd37be703ffea8c6d937d015b11a1561

          SHA256

          6df15cef99baa9303a08e638c7a5ee03f51bf2dc61de0327c2e4a13476e35d49

          SHA512

          3f19c327c2d2875699cf892c3826c8dca8b5168e0dbda61a4caf5cee458bac516e36fa39db04fc6906baf3dae692a88349e4b177b994a748b5d2bc41c03c3ed6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9872f4d3a7f6cefcf846e4ed3ed0f788

          SHA1

          e33492637ffca584fce237e85b66f898142ceb65

          SHA256

          656adad8b4bdfdd8f1b73effd5cd2b7e2008841fa582f873efaf1ad5a2531dce

          SHA512

          924debf470bc3f7bc24fb2df8e40ac2438aca5b7f1fefae9aac706216ac923213abfb8200ed14b9287153f7a6e057dd4d438a5ebbb3b1be5d4114968c0183cdb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          fb6ca3af99f68d8f01704fb5fe9915db

          SHA1

          1f08026362f70c764d095ab3d8b2d90d0cbe87db

          SHA256

          73d6bc295be2aa4d899643ddc1100178a9d80b9c67c93ae343cdeacd73b3b2e5

          SHA512

          6600db7555bbe4268366b2246a978733e6f4d584cfd5976b039247b8f74027daccb5aac43b0ef534f14846151d8cbbc0c02148ea3c1814b4ae92bcbcace9f19b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          290b7229e42d977fc1252ccbb3da6120

          SHA1

          de8512a1f3fe072213e184632c5d99137980f26a

          SHA256

          9c904baba51ab4e1241065ecd82f9648c96a2a6250f4f81d0d9a60109116c967

          SHA512

          9564e59f1e2ac275fa27a44cf689ea11e86a9dfe141161b70fc15cc666d98221ece2077d6a2bb887f7676100421fb070b7019aa2fbd4b497ab09351ebf731786

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b054c5f4be03e1876da2245ededc7646

          SHA1

          3fc6267104f2354dbaaeaf944bbc9d2058d8e1ae

          SHA256

          fc557064dcc39d7bb5330cf0e66d853b6534908689e241abc60bd72092854ddd

          SHA512

          e639ab29a3ced6e630f404c215b341ca0bf5d1689001930fa0027f8eb9eca64f3868b51ee0cf8c9acad05a4e37a0fc4981b0a17db0dd14253d85f6e0bc9a8b96

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          16c4c2ef1d0ccb76c30e440ebdc433d5

          SHA1

          199b8f186a156b6fcae1550e0a03e5e2594f41bd

          SHA256

          a61a43491fb0f5b16455fde57fbb21d0ed974c16815235bf9d2d428286e5b8cc

          SHA512

          499be9a81b7cc13abe14932be214d1814e64b1d43ab996ced765355920c5112a018c2c5b91759ea57af23295e73e7f9dc69b611c6cb52d0f55e7773e5bcac6cc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a2c1ee558d3cb0c9ad2e61be4cba5644

          SHA1

          feafd849a75d56192a359cd737e650014777cab5

          SHA256

          73ee4e9569d82b984bd79c467bde13a75b5f97c2daeb9ea6b20334a27dfb6935

          SHA512

          937e9580aa6c867fb0d24248b70c8e99aefef1878b59ff6f0cb0c3df8e1f3d8b391573bb4eca5009dbb420da7023cb933851e353020a766892da5873aa9d1b08

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          41a7664a468a0dc37b4cdaa420322782

          SHA1

          a88ff2e862cc7cee0b0834ac3d5e043a8a331342

          SHA256

          e5c3ee081fdfbee740e0f46d7c8dd3ab47f57367378ddab7c87ffba3adcad38d

          SHA512

          200246ae17bd25870d838cffa374d2a8e9259db7579a9e4570626aba1a13a2807aacac13017ab6067b5951522d794b6d984186526692f3c0164c38955310a92a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          dbe427ce590aaad695632b72c8c0fae2

          SHA1

          bb4d571ce882b830c58f064fba32d9a39823f176

          SHA256

          f2e845fc29ef5eb3e283ff8de41e9a0ed4bdc69e5bd52b186130266d113fe9a1

          SHA512

          6aee78aaa32330e3007cf5dab48e424a37d0abf9ec4505808be43bbc8677247ff836a24a2b9d006f5c737a64dbeb76e129d40514a9a71de127967da96144c4ad

        • C:\Users\Admin\AppData\Local\Temp\Cab3832.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar38B2.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

        • C:\Users\Admin\AppData\Local\Temp\Tar3915.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b