Analysis

  • max time kernel
    138s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 01:35

General

  • Target

    8c7a831ea7be1fa96c0ab6f4b9c86b68_JaffaCakes118.html

  • Size

    46KB

  • MD5

    8c7a831ea7be1fa96c0ab6f4b9c86b68

  • SHA1

    8e5cfceeff776ff10b94de449f8a6d829d9e7164

  • SHA256

    2d33b89215f1c845476fe0e81570fc05535cc92e3c6c982546609f0bf5dc8dfd

  • SHA512

    6c1d6d06f702841ec1498051c44f372ab88973d3477e60e0a27fbb233c537ec3c13fb35c70eeb5020f0c28aaf227a39c9fce74e7f987cccc55fca29907d55ea5

  • SSDEEP

    384:m0XP9jf/DKejmdMhxczF5Joncic2XM13gYbF203DOs0XP9jf/DKejmdMp:m0NoFKcr13gsOs0N9

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8c7a831ea7be1fa96c0ab6f4b9c86b68_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2812
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2812 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2204

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          655a1f655c052d3838da270dc88edff7

          SHA1

          c996839d65a239e60f90c91477cda21be6ae3afe

          SHA256

          4e0fae86a250e23932ab6e35a11ea210e8ecf1dcfe46799e257b9bb18e63503a

          SHA512

          5b7c9d9cf48bdbcc72d3792261fc3c673ba3ad312e671ce909f5183610bbd06864e1df89078d0c658b54ef37fa3513d14f038d792c5ea51473565c3e631d5a55

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          50e7cf7d1434a1845b33d59ec478b8a1

          SHA1

          0b612fc374ce2ace074eed43bb9d6944095e2d34

          SHA256

          2353f1061f3cafe3c535956e72a81c1f13b35f5c460cec5bebf9c0a3a1fa9911

          SHA512

          42f29b77e34110b2546751c5bb7af88f8153d6528b3c434c079d172a2d9c2a86ed2e2aff7a02c9496b5b70a88536bf7259f294edd1a7dbe1e61e0e02676e4b5a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3186eb7dd0970642982b83692b1c492c

          SHA1

          d18cfa399b67aa9b11bffa580991255dfa1604a7

          SHA256

          a2cf22fb7c0dd66d905a750a86e1a7e9f754426e260c664967b4a2a0c34e134c

          SHA512

          3fb065efd9016da4d260831da22fe100c712db869ed5149b65f3c4b7140739f087e438146f8dc1e64da28c304021fb63c64d6b09ac4d506e3047a796d3795c6b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          497cb95a47d9de1dceab41708c177f19

          SHA1

          3b95bd3408b8bf9590750d7940b3b9e00c97b156

          SHA256

          dd030c08e8f0c6110f94b5b1a46d26598426e87169defc346fbb3e4c78cfcc8f

          SHA512

          75a733d2198280196a0a89935f5a9458e1331113ce19db83a68f4c72b0b81bf81352aa643263512318c101cbdb1a197ac6b0f5b3b0faad6e5eb8a8ef19cb70e3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1344393ff811aea86f63d9ddfde7adba

          SHA1

          22963450d2dc3dba1c23f14179066d6658b79292

          SHA256

          ab0e0c0af72d66b9e87dca7ab5b207812ae7043ee855ddc32adaf08788f2d0d7

          SHA512

          4ad298876b5ddce396d8abadd868cc67aace5ccb87c1436a651bd8c0db0d8cca0f9e1ed45cfcbbfa6d6082a4855feede83c7b3f616530c3c6c9d4db67a12088f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2418bc703f048c3869dc53fbe6bcff31

          SHA1

          2e4cb66b51e6f4111f8cd0b80fc85916787f90a6

          SHA256

          b5940e3714c233870dc8b6151fe2745e76e9fb9218af3cee1879feb5ad1d24b8

          SHA512

          96fecd2aaa04758c88ceb04f84ca739345c6cc020862fb8fbbbfe51c19a9bea698aabea1a90f3e1615659594a49c069a983c2213ac43da8172cf32c8e2fef6d2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2eff74be8c3a8c3c4d19dbf98a51dce7

          SHA1

          a65a41a72e3b9be18476b2968668c771ca4e997a

          SHA256

          272efe5b2f5d89627b6d284b7599428d0a2ba4da913a60f33c2a635160170f12

          SHA512

          90ebc981e49be15a29c3a8ee55194c240b659e7adb53d08881bf465d48ee2238419d8d077ee0d249441a1fa35cde6538ad227d5fe2c3e4e7a282384711b27ef6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4fdb69361f7ba9cb19c97c988f27ac36

          SHA1

          b778760cc623757046e87b635ef3e6b65a5e871d

          SHA256

          638ab184fc886090123515da46ad494b255f2120273082737384c7e993e03f50

          SHA512

          9e7e870a345a1716ad95bc1b969947b6d3d0f0c42961465e81ffbf324c3b3cf615c6582fb50e955fade4985f50e3e64cb9f11e838ec9aed22e35958d956ac1eb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e72278d285c7931755cb1d5548cbb25c

          SHA1

          c1e680f047e1488020f52e2c3f0b23a5b3e6cad7

          SHA256

          b7ca893c6dc2cec0442ffe125555e785ce8812257a6014fc8ad20aabbdf256e9

          SHA512

          759a8f726f52f75193811fb7fc6b98fb50b4d7274be4cd3f192f1a231c60a80cc82baee0bbac5b5392a624e4db96e768639306008afaa19a264f9dcfbf619af9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          eac59154b4389c3509e697ec0600e5e0

          SHA1

          feea119c2095707dac1acf95159d632b25474d5d

          SHA256

          68fc922f7f8effe5dffe0baa7f08c7fd697450cb171dd326527beb2f4ad7e4e0

          SHA512

          05b9f27bfcd5023ceafad29fb5c919c98dc5e6040acc3bdab287f21742d2fe6e85767e356636e54f59758aed41b54943d0fb88c61df059773da21671c33f8f63

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b0a8bf77deb721579b735985babd8cd9

          SHA1

          e94cf9838ab5e92c4c79993c637b50d09ac29724

          SHA256

          0683f7c8ea1394964c195df1c9bccd43eb226a2c69f9dc1aa13d8051e1a21066

          SHA512

          031eb8c20757860130bb707e7f2407cca2ad4c84ef1bf504839bc138628442016ef8a16dbd472c607dc028eaa71fb309a67fa25fcf7ef6883b2c402d4f5d54fe

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          87ad3a3fec43f5f337eae89187f409f0

          SHA1

          47488610026dd146f9fd12d3eba88ae9ab73ae49

          SHA256

          4551e82445b0691e9fd77ff8d85bf0654dfb1bdb2b373ef2b46216efff684ab8

          SHA512

          fc685f190a2a4d727ffb3a53a0d314bb50ad48c4edb2b349635e8841376324c0fda6a669e54c4a1666a8e8bf135db9ce866d7f5b6a01d921558c84c096c7f3db

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          12eea29161f7c2061a7f34f1b6ec3e0b

          SHA1

          84991c436975a164bc940c78427af9ed19392496

          SHA256

          376f9a23624cd36e6d65834aa0b85550282abe59fde672e1ae0177fc39be6fc8

          SHA512

          0b7aad3069ea0fb152e18af82dd2bc0cbcf7ef844a02b01a8b959a7f7f4cf4cb271dcd4915556c8d93edec3f767813303102597c230b65d63d6637e3383c590a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3a8bf8a28a1920a5300afdb6ff2553ea

          SHA1

          0abd551cbc87167b896c42b1f640e4b99bf7c338

          SHA256

          04ad4b1ae64b109865fa403d5be7902c18c065457f3a67395d3b83ed115dba9e

          SHA512

          498a11c59812e3956e246bc943ea33f07978c30462b68c0cc281890eeaecf6dfaea2b51b638a332c8c6937f23dfa954628a1bc5d92e7d6dd488efb6772a3d621

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          01d90f0d738ee515f014e2ef2370d1cd

          SHA1

          4d8eb55f878eb8a5b29361a1b1a95fd8e054a4d2

          SHA256

          f68382707c0cdc888a59b4989363333c110740db6e7abea7a5467ea307afd7c9

          SHA512

          b8c7d0b33c1f40e48f4b8b061ec7a46095a0bdb3f6ccce4a5d8b3c04e2f23d72330db2d1a75bd91093a7d06e08c3bfd0ee8909ad7538bcb0083091ba8dd82944

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7e1b217f77bcdecc3d084a8a8debdfa1

          SHA1

          83580bbcb9ea3b6b63213d3aee687b8c73649615

          SHA256

          1688fa5cefac7b821d8dad6c18ba7a6994aaba1fadefadaf97d877df8632a1e4

          SHA512

          239d08ea8110104b412a0a2854afe4760322e593c6a27de0c6350b50c38abc66f9df23b19aee0cfb073c42ea65b31a16c681b541bcf35bc9672d9653bd35f892

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e5b8091e2475dbc1df3d596497ac81c9

          SHA1

          e33945fffbc549c0728ca47a0c3df7f3112228da

          SHA256

          65597f781cfb220a0e17f0dfa56488151836a13c28f020ddcb92e43eaabe32ba

          SHA512

          bbfbf186cc5596ab614aea6b04cbabf88437e5c7163cff6b1039674e9a308e815a4ca4642f9cf334efa9005b2d1649119c86aee7cecb503f0e529635ac3bb217

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a64f94d274be9e32ac6118ccc0e9ea39

          SHA1

          5b0a9ff5ac373420c98131b916c7c5605b70b399

          SHA256

          9100ee33271deaa0e7efb1c4de0b1883cbdac3ccf0112c58cdc75118ecc8d8f8

          SHA512

          66bbf63101af7bc617093a1c7f8ba4c56fb231e25186b4d0888fff9dc0c8768518d87519205606adc4a4f02e3c2848db88da8a07c7480ecf1224b6be9edbcdad

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c2d992127188addc375ba6e43a2b82bb

          SHA1

          4f3f29f38df610d5ee6e2645efd8e278f5d9242d

          SHA256

          251344ea6d2e42f9c38c85aec1e4cf55982eea694736d91a68788fc001e5fee8

          SHA512

          f79c178d2b42379c863a2d0c5d9b69978bd024acc84a0df3a9a56fc80eb384d1ad6140e04fd994f378a851526bb7b2dc1caf045497e8c6b94c195c20cf4a4c95

        • C:\Users\Admin\AppData\Local\Temp\Cab7918.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar7A98.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b