Analysis

  • max time kernel
    120s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 01:05

General

  • Target

    8c67b9c505945acc2439908fd3d87a82_JaffaCakes118.html

  • Size

    4KB

  • MD5

    8c67b9c505945acc2439908fd3d87a82

  • SHA1

    812784e7d3a0e74947f87f8347323cb673721d0c

  • SHA256

    219d31e9d9a192e1549add3bad910614602347d6b9ab3294cd2c160086289ec1

  • SHA512

    186e8861766831e5c2bdded30d08ae8a98961aea05235610e9f1564043e3a62b017bd94323f52d5c04670a1080be118a2d9576df6d41cf54623e31f1157127e6

  • SSDEEP

    96:Pk7yJozTGknaEFHVKDZTBJl7sNjtXATIQFMA5e3fhrvDJUgwa71D5iJ8owSFY2fd:Pk7yY1aEFHVKtF37sNjtXATIQFM93pD6

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8c67b9c505945acc2439908fd3d87a82_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1936
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1936 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2204

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e16de1ad4026317ee4032d0996d5f968

          SHA1

          45b99db914dfbf749cf17aa50d67448ff59ad548

          SHA256

          fcb709361e2d465d0089ee2f5f6d5ace6b4e7bf703d8129e853e16c7ea63973c

          SHA512

          7ddf8142e74e075ac75bbe10d061f5663792b7d9acf0e9848571a7096a4f25185b4fe1d9354c61a90dc24c6bc11acccc3f99d995c44d29eb2d560c93199b1bf9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d4d4a7a75ae89c8f456cfe9babc0474c

          SHA1

          4056ffdeaa47f8d601add7e09f127d00ef0a7368

          SHA256

          bbca1acbf7b592e1e3a792e7bc236a5517cd96e6872342bbd177979b18653603

          SHA512

          d64bee4137f98568a97ec6005b8a5b9c4b8e9635f5b700fac1abccba13beade0fb5848ab0382c906f88aead480b5bcd05b289e8e9b9d91c0e6a86e2fe23cd274

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          770e9bdd39fcf909cdcb7434a594f50d

          SHA1

          673ad61690b357a7175a3b09993e7a5831d7a545

          SHA256

          f7f7cfab0b6063f98d54b1bac439205c6144edf7d1e9e0fb2ebfc24e602667fe

          SHA512

          6289955bb639538ea2a1938376e996018f2d7e602b4fefa9161f619f53f611a976908dfd8726417d3374726b51fc6532624536c8d36ea9c212671139056844c3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f095ef1a222a597f769ca05f239a8f8f

          SHA1

          7fc9e5ff226acf5ca166e32a46357d2eda84a944

          SHA256

          0467679e8e139b853a0df0e6a4dc8f3267195770426b6943a661479be094d20d

          SHA512

          bfdb726a06d7f55375684cd2f29cc6a5c3aee6085772508e4d3c8dfb2990f53b187dc58a0c9e4eed316e1afdb37ed2ada26fa668f88211eea2b914f28697afb4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5aaeaa8b01e27f725090bde5e9550b78

          SHA1

          ce334c5c1e133325040e670550d73544a6820477

          SHA256

          d9adf48762002234a261a8845d89eaabda7e23281fadfbe12b056369a9d69996

          SHA512

          c73254c3878e91512eceeeff01fff53f52985e218f5531daa530dfbfc1e0cd9364067e928db72f85e5de5b684d36387c9faaf88264d3ff04d843b088e047f320

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          64db4261a2818b4c5eaacf81245f1c83

          SHA1

          f5f5f5710e8b2dfe6e5bc64cdaa8236805f2145c

          SHA256

          3ed0531b5e31b043bfe38d6c5218a42bc7f3e88fbd5bc960fc3126e1d7f8fc08

          SHA512

          e7493f0eab9293ac5f42a6171f280867b12616d5be7435465f461315111f5a8437d6749566a9e25aa9c824a61c903ce41acee96da98fa6c871f3f15384c6e2d9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ee05b1616ce85848139cf393a5ebff9a

          SHA1

          fa7c1152d0424f856c387489e260e1039c1cb484

          SHA256

          a7953a8cf767f89e35a13065a036647f6eec7775d13becd0a0ac33e7fb875521

          SHA512

          faae0fef43f09f3e19103836035b38b6c3832c06d4f1e3ec4a4499c1f0f4502000b1570153a3143e5b8bfc070e7d3aee318184152a1d548f7f67b9867ea9fd57

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cb63e878c86db53ff32f37324c1ba754

          SHA1

          45081828d06c99a197a5e73baa41e60e015ffd6d

          SHA256

          d1b6e1d359dac3c2b7bde5405b284387f685151435a8f3721c55305cbb1de3ad

          SHA512

          ecac2debd771b59d28a4607ee161675e74529057ed1b44a0d1c1d86f8bb4c3b66d60cf129300cb274cdbbe0cf5104ad7cb63728b5d900432e061315a2e392b79

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0b5d4f81bec1f19a0c5683a22aac42d3

          SHA1

          83be4e84328855dacee36147897047b7360d58ea

          SHA256

          6d1d53f9b7e3054344bcc4a6a4ca3d353a7513227602668185f3c017c8c86190

          SHA512

          b2201e9317450035f2b69863f2a2e3634dca360c7a659ee382de2b92cf22e3315e14fb7eece62eb3002cb4d217594ec2049692a62a4aab5f2e74db5744f286dc

        • C:\Users\Admin\AppData\Local\Temp\Cab257E.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar269E.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b