Analysis

  • max time kernel
    119s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 01:05

General

  • Target

    8c678410cd7c90a4ef893a9702ff555a_JaffaCakes118.html

  • Size

    65KB

  • MD5

    8c678410cd7c90a4ef893a9702ff555a

  • SHA1

    f54076dbb59e99850e5f45b6346ebeda34844eef

  • SHA256

    904c043e00c61bd32b7d93d0100e7856dbdac870f0b99e19e5c12830a7f6f779

  • SHA512

    de4df8c8c24698d75370de796cb3e99975a413db289b7886f962fc3b4a0e8617b711702cdee7d01341d97db1daa6fde0c989281be773139734df2d493c81a81d

  • SSDEEP

    768:JirgcM8St8tN99OIsDCqgG4Jhl+oTymhCZkoTnMdtbBnfBgN8/oyo8QFVG8sG/IV:JrCFvTNgec0tbrgae+NnzAC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8c678410cd7c90a4ef893a9702ff555a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1540
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1540 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2884

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          b298208f54fd48b2945ff103df3d077c

          SHA1

          fbb11e3ab5811f5d2dc0074c08a095b0cccc0237

          SHA256

          50db086c47bcdc68f3e07795c77583e881252fc17e0f1ee8c3840ee8f43e472b

          SHA512

          8a2e0b64cac4cd3f173847908d944703ad1858092318d8891ff7d3fdddf1961702302ae5d7c2ca9dc07c45e88d5008c77ccc559a992f26b09fb5920a975495a1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9b2c4b3ebc1c1be1c02aae1dea5ef465

          SHA1

          d08f20d74a4b85dea5106fd6d39c7e6cf4b95d0e

          SHA256

          35b97772f85120f7390fe7d449cc5d7bf5875428c0c5ed8ea42c69d45380b2b9

          SHA512

          bcdf34b8c5f9f2a408f37a01089e7b74fbe0b34e07c7b53ae6e880260f853bc066e131b8034cb91327976c4382951fcbbd7be1e1defb4dbeab3ef8615b420f96

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          49ebe41bdd687c8f99b98d65f1d10d5b

          SHA1

          be7a9a9fca83330dd940ea42a9a2ef9ae8a0b2d5

          SHA256

          f30392368dbf6d2a5f3e785fe60482423e9346e53c237c2748b5b1811aded85f

          SHA512

          9a6fe5f0ade9f4fd1c29058053dbd9d5a25fb8075406c76fa9c56021c5d5bb73d5926b96147ca09f8169843f8c8105c0c42326d70bb6434b4a8cbd56955917e5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4d0c765aabfd53b9ce3b1e5ba3396037

          SHA1

          ee1139364f3b394c9bc5b8f8d52937392e077884

          SHA256

          e687a41e932d17024ad2e7f7641ad277fb09a7724a9e5c54e91974d973b3742e

          SHA512

          29b4244cecc97d642b77f5341103599c8169648a38e953cfcc1d82e0b576ecdd9e1e2f0a7364ef02246dc596fef1bff372de1e00f0793e0219c792d04f685fbe

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          06d2f9435f0c22a04904eed193fb17b9

          SHA1

          8b4eff6345da70a5c5f083bc4d9d592fcf76c979

          SHA256

          e67cf0478224da1f127cbe0d1e3b9a7589c293469059df7080296e519b7b2651

          SHA512

          f0b32f8e4473cc2a8c582a593d1e78f282b64877b98113e219f1f382a9006bc5553ee8d6e1467c0d3bfa57603abe04ba8a0b20c711fd304bec534c3e3a0117b3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4b90a3299ba66cca7335bb7d1cb60eb6

          SHA1

          d63cb593381b161394ab1f77209465d462110f07

          SHA256

          3863bd42c3fa038b681549a9e362467a7e4656353f858ed210d3d07074b879f4

          SHA512

          b4f4d8caac376a82aa1f8f5f9e547c2e2ce12eb741a66cfc0fd7dd47d84b1f6c847a1a0d6b8584df1fec11cc6bef151fc20c5e77aa880d6f4aff1290feec61bb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5db8778c49988cfc45a800fd63cbceb7

          SHA1

          9677358aa29cdf1038f7a68ba2abfcc4da80abe8

          SHA256

          fd07fd2a42be95d4020d556921f21d107eae56862bd4f7a78a8b052d6f7397c2

          SHA512

          7ed7720f32aa2ab8acd1e9ec8e04927a0ad77c8331e7964436dbef5f024b9a923eb260ccced15aacd8c904b020cff9bec8a9518690889daa37c78636589ce355

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cc1087e747a0c1f6c5d197626c53d5b2

          SHA1

          39032c3db711c80f367b323e18f80456845cc346

          SHA256

          6c1b25b72b37bac44f5e3379412a1eebdcf984e5779b3e04bed6b77438900777

          SHA512

          8588b7c5a5e7294ee72876154689684f4082bed7bf6d14a40bcab1eb919b0a8d56186416c2395be296bc419a43fbdc349dc790eb2fb4bc0a98d0c10fa3378f3b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b32a979095ac8876da14bbbf2a239c4b

          SHA1

          5c83a234646bee1cf8b48a80ab03cc144bef18dd

          SHA256

          847c03f12ab6154404df516e3f9ce85f88904d5b02949f33d6ce5511366811aa

          SHA512

          710c299de2c9c7c7dbe78e85a5c5f171f162fbdcab7d68ea902e6d1ca74525646bf62047f07c7e572febd0e8f743a0db6f2769874e665adfdf0deab3f9f5ea75

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3cb9adf6f6571c5ed216a558d318d691

          SHA1

          a5b7c378347e9524181824589bde1cfb82453f86

          SHA256

          0fdf66ac2c173f390c14261c13be42bf020f833a0f28140b1960ec0f93ff1c40

          SHA512

          b3d86bebaf7b2865a4e6ba9b35f21dcf29568bd4c0aea6f134f4db6aa8c2d75726c438acfe82120ca1efbf74cb71d583b95ec32f397a1c6692c0f43c3f79557e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          400de09e6bdb2d84c434cbe3c89c1bff

          SHA1

          d5f21f86000a96e91d402268776d19a610fe1856

          SHA256

          265d22c1aafe01ee16f21f40f57de21e5b430af9f4548edc46463acd40ce9208

          SHA512

          436264a1b2b85cfcda574fa6c76433d94b268df47342498d70d185a0c98a0dd53925b181a1cf721f0553b8878e7b1acd122e0c8156f411418e5a3d744a9b0dea

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          34648f5840e8f83a0f75134c601f5966

          SHA1

          567027bd0d733d05fa8e1b3d1ce6bcf12003c900

          SHA256

          fc6e4e689d4a5605e98e46a71aca5f5d6df9d28b6f2f73ee32b292187dc794be

          SHA512

          207b3275920f7085589e5130f1656d3fd752b385b71fc76858f6e2d069256c2c0dfaccb9f9db8efffa67d7b315c96dabd503c952b7d623cf12d3ab8821ac65b9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cc45668cfedddf38d306564431e942b1

          SHA1

          fce1d47251504c03622ea15584531ac284b1e9e5

          SHA256

          4cbcb8ae18c53e6184beda83be84d9709e718bc08808080eb695c413f4d97f7c

          SHA512

          d69d86f09725667feca56942cf47c88da088ea4bfac6e00b5658ebf75764d8050fa681e12c5c42160f70722e67177834f20d09f346aa2530060c51b52ebdd61e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          51fa4c45d95f9dcd7a49f898d8d0d612

          SHA1

          71718984f0e4e8bd38d31269d4a16af7a955c272

          SHA256

          6a8281d912e2ed3a62980e8e2c5be69fbc7f2940c94df9f598486ad92d391f94

          SHA512

          161f4c1f0a20b0d0c24b0ed313af6a749efb629d6cc6e6fb1274b6b2ac35d2464c131f9ab0fe1aca42af0ae0101ae8911efeb3ec62a49c6b9220172673f54397

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          310a3bfcbcc37f9fbf0aaef8ba881caa

          SHA1

          c09ffec47042b25337940770ef421eebe27c26f6

          SHA256

          9ced5635c12d8c69a593928b2eef757c2fb3af6c75a5765d4c6cff67f5550cfd

          SHA512

          5234a257123b4981d7e2576bf37bd87f9880d7514492a443828c644dd6da1c2b609f35c1490d2f5ec2faddc319fe68b1cbfc499135a6e72eea2a75c54486b574

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          51cbf56a238f9ea182e6efc985fc6228

          SHA1

          b43c00ae76b5644d25536635d5bb2feadd9cd9c2

          SHA256

          b9ceae959a3e4593e0d3535f8c83ae43593f802d3c0ed2d147aa07ec5a442c5b

          SHA512

          732aa17441b144055785ba9befcf471203be4c3aa1bc01739972ea25abc25ba8ac165fb4d2cfb444d3cee0bf1c4bcae29a45d1dba5f957eedd599c900c88d994

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          d00f6d002ae6851b12a9bb08d2776bf3

          SHA1

          18ec1d2b6ba14cd549afbd13425f84790104d4ce

          SHA256

          6229e7bd6f2de261169828178f2710fb6f6a4d1df93d584249864d5f9c6336d5

          SHA512

          cd3d5ac95f2c11e1c9842b0c4dc2fd84af3617d2d799022c9a2e96f5880e06c502e451ccd0ce99376f401788922081d501d0c2701234584151f2deaf3afd2727

        • C:\Users\Admin\AppData\Local\Temp\Cab4490.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar44A2.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

        • C:\Users\Admin\AppData\Local\Temp\Tar4718.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b