Analysis

  • max time kernel
    150s
  • max time network
    154s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 01:02

General

  • Target

    8c6635c9f0d5f3c7b7b01864ad0b3524_JaffaCakes118.html

  • Size

    127KB

  • MD5

    8c6635c9f0d5f3c7b7b01864ad0b3524

  • SHA1

    8bb7e4506402e56165aeb75332d0b24fb8f2ec71

  • SHA256

    00e8bdae831e0075c9dca60083543b35206d43b3c954649c70d2edf7fabd23b6

  • SHA512

    5e1c65eed16e615097c5971f8572835274e5f071b73e172971e34123827b85b073a1b976111ff60a34392b7b941696bd53cde0320eb571bcb5251cdc0cdd947b

  • SSDEEP

    1536:SN6HzD1RiUkXbArGGsOOUbokvSuPka2zBGdo:k6HzD1RiPcr9vSuPka2zT

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8c6635c9f0d5f3c7b7b01864ad0b3524_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1300
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1300 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1760

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          752253aedef1d09e74e1d7e8d126c6fd

          SHA1

          e8d747f86b5e0f353a3e202e6f2f88d2449715b5

          SHA256

          cf19e480911e3e12587f804391786d85eb2fb53e6cc0fca8b8d752621cea2541

          SHA512

          3d1451a101d66a716980e36f20775daf49715bfddc5af03edab0551f9a36389ff351b2b54e604f4fabb711579d86488e06ed6d3d78d00e353f0ef16c9c5198cf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7354a20c94835d2c52162e4f815ba227

          SHA1

          e10af28f83cfd5556f1b1480240ed061567bc2b3

          SHA256

          a5bc706831f2d50351906b91dea3d866d75989d7013d291a43c5596e8c6250c8

          SHA512

          db643138b0cd9280a445a0108923cc44ae9aaffc9e3fd4634bf315dd83bca1dc739eaaeaf15b25d5c89a211ebccb3e1223e8c55f74fb24604f18ef0eb746f5cf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ac6c6336568c78c1ba5bc2b136a308ae

          SHA1

          8739fc92b7cd699cc2872ff927f6bbf33b2bd3f1

          SHA256

          5711297cced849102abe2f930f485c2df6fb80480e4699089f71bc79628ba22d

          SHA512

          b722d5e82a7f22126ecc59d5f1d71f1b76a81b57e907fd7978d5da1a86b5bfdbb158fa02c5ef3cb2f5e4404e23a41685ffab9f62efd7ff619d740db4d7e02339

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b638944c5a5a29affa69d24939cd83bd

          SHA1

          0a5da434d3c00b2d19860fb4ad432bee144dbe65

          SHA256

          71a860907fda1ad8e72a0cb3cc55f092127afd6eb1fd1261fbb6f5545a4e2ed9

          SHA512

          3821fbd37135b9d45e1ec8b717fc5fea400a5db69823b3d759e680dd0950f33421b4232457842b2cb912ac453e0f31adf171e4720468f890bed375574b2d6b11

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a8c8a687eb81bbc2ab7b050b4bd49582

          SHA1

          2ef784b1f41bd292a3f923586eaffd1a31f3513e

          SHA256

          dedae318fe157d513012688b440be013a0dae58633d8774c0b0eef12ced8f824

          SHA512

          92e80f34df52e35a3efcb57bfe6c11394bc6753dce41150d3d2e1eac5e17ec23b0accff7cb9d2cd8c14bc1d7a0030f92eb0c13f302b5a769a5e34dce84dd9e1e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d293b6207598b455d882c25b754316f3

          SHA1

          db08985936576a7575b09c11f8245c08fb96a64f

          SHA256

          0faeeb25aafb352a919684944a9195e1b013f7ca1b0efc551ae053395e80c088

          SHA512

          1218f6c4f80d4017defdd8e24aa8f310174a49227d4a110184708a9c379e520c89968b5afe7e192945f4d89a3f023f5a8398a6c0a7eebeca61a761280f31f0fc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          93fac7d4c0f8fd03191cf3bc3fd6c518

          SHA1

          d71cae61bedc5ebb22fc2ea413a3f0ec4ba6285b

          SHA256

          dc87712e55e3b4eff3a1fcd5985355d29d61d3b1276eb3436d0a20d9e2d8cb90

          SHA512

          206d065997a3a874a8118687ef42c4ad06b859e8a2ba7d73b98507a1e051221ab953a9be941297419eca076c8b73be460216b4f60c92a96d7e55ff293395b3c7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          34ff4c8beb72e787d2c7596aaa1cae57

          SHA1

          669a3deeb56f15d4f93d8968508781b4f56ba987

          SHA256

          9e22916bd11af61c7fcb65c70f381439860be504fab539e023051409b5e81f2a

          SHA512

          fd23549fe54698b602a494a5412ad8603270520015b27bf45d30d490ce1e7c37d410d9e561b3a9630e8c3ca469b114d2506ffeaa43b1cfeb4f7b7367d7dbc02c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c6156a81bff6bcab07c50844edbf5f77

          SHA1

          19f0e47447fc1a80d6a3b7a6be50c6312463b69c

          SHA256

          bcfa320a799d2d77675de8fa438490af82fd82d358da2efc7b0119059c364679

          SHA512

          f71d59a582ca980446d1907168b9946c404b4b0f3ac91778478be501934d54812f380b99358df65c1b4fcf8241d4db025abdf5f7262d0eb27bcf4d7de9b0430f

        • C:\Users\Admin\AppData\Local\Temp\TarE92E.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b