Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 01:35

General

  • Target

    8c79ebaf99040ac8f572bec9082f01ae_JaffaCakes118.html

  • Size

    70KB

  • MD5

    8c79ebaf99040ac8f572bec9082f01ae

  • SHA1

    b8de9753e655a25dff35e4c37da333a71ac6ef45

  • SHA256

    1abafecb311fc105c88818ede0f92a1b1d4a69f66b59a79b0d157431f4ac6245

  • SHA512

    ffbdee29496639e89a56a6356e145ade92fa8d0a4cbb17ffb69cc9579ae5d1e158ec86d9374c2568ac1bbee20e0c507f828d8fa88d876c808eeb13e273c51c52

  • SSDEEP

    768:JiVngcMWR3sI2PDDnd0g6jX2soT2e1wCZkoTyMdtbBnfBgN8/lboiGhcRfQFVG8F:JUgAUTTNen0tbrga90hc+NnhVJ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8c79ebaf99040ac8f572bec9082f01ae_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1772
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1772 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2660

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          1KB

          MD5

          e45e619e897e3e3fb040001c59f1492a

          SHA1

          192c331e72c5e85908b2518c9fddc45bc0d79fac

          SHA256

          159933a20be82cac22c71e112cce4a3e7394cbc1dce3d1d8461b9ac689173594

          SHA512

          b30b8299082c4c78dc6652ddfe9026d26a1a0d7e1492011447a1a21259a8932e3ee6888700fb6e5ab92418dc11a4dc9dfc632bba55bb9edf3047681446d5aa84

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

          Filesize

          724B

          MD5

          ac89a852c2aaa3d389b2d2dd312ad367

          SHA1

          8f421dd6493c61dbda6b839e2debb7b50a20c930

          SHA256

          0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

          SHA512

          c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          410B

          MD5

          a6e466ae2100de1fee98158a9675e15a

          SHA1

          1fd56ca64dc94c1575d3489df5e71c2681fbae0a

          SHA256

          3ec0dee7741e09c59679c91662247354fd27b146b7e6f9e3b1476f43a09f7f0a

          SHA512

          ebd2d4eb468a622ca6a9c07f1c462b4a81a708a81ab9eb0b2a457367c5466906da5868db091f14cc4f9666b6ed768e29b029a68ba188d4cb77d5f01391a6c524

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          cf7a90dd5acc9588dd7652b3c4ac1fc8

          SHA1

          c20eec99aef89634b21822883521709aa9e92838

          SHA256

          2eea48ad1167d7d1cb70c13e0b2518fbb33cccfff1fa767d8e2ff8a77d3ee649

          SHA512

          9c6e30fa976f9fd23f0aa545ec984b74876dd09247a9d27cc91f29f7c9c874644def858ba3f232dc07c45e68a46c147ca701f03b0d69887676179bef01499079

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d43070ba90ef98329a467d0e7a4d4cc2

          SHA1

          be006300c1a6efe2fb65eff3b5af9b14ef85fb98

          SHA256

          f8c9577b5f75eb5de1b6d7aa4125a51f818995dfb7dd858a1a53d774a0b4a94f

          SHA512

          dae7ad7e51adf3cc9ee60868af94dd0d3771c55a25b75016b1b24ab0517efedfeb87da8b1844f14509e9f2539032e4ad6190dfc0a017466b75bdbf6a92cf831e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9dc6386e1e4914e3773f60536a709a7e

          SHA1

          0780b09f75cb0ba5450b233f0841fea69833b1a2

          SHA256

          ac0adfd341844cea14db6ac7429799cbd77b18ef99ea6998475807841a0a4b6d

          SHA512

          f49d28274d38ff0e0dfe823fccd58ac862d77db39c220a1012fb07a2882a014c29c1a518b1f4bca2a1440b3b994d4d3b374ef06252c70177c889912076ad5a69

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          880db36df4225e4318060657983bcd39

          SHA1

          8f8f8010d6ceb6ac2acefe75d918ada87bf8a446

          SHA256

          b9d7d5b01310c5b3b2b1fd44ca636ef1eac9b9fee477e52ccebd4791f320bc47

          SHA512

          63e595e9aad1a51aab7e99e620069a38b396e717c55429d2f7232c8fad4a0310282c4f599f4c49a56a35fdd5c29a5f6483a0e7e50857cd1bb292834701976d34

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7403241a4d3b8ae32ccb7598e70ddf98

          SHA1

          5b845a46003ac733d8445a4e03412c55349c3bf1

          SHA256

          554460f1a017d54f3ec43c7a03023ac9b3bef088062d1fef2ff7b5978d3d98a9

          SHA512

          0c483e9e999595b0e0430d6a74776a83e2fd1e6927707995036dd40397ae9f82a67fa910a59d0655e59f5dd40e4b24b513b94f480863a47ed5a8fda0432b0fa4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          47cd4e3a8bf7ad72c36034aa81775219

          SHA1

          d60c5bc1b4998d1d392c26a54cfbe66ffda08e14

          SHA256

          e47605602ab7341fad9940b4c284a4d253de48f821891874bac7420be1bb23f4

          SHA512

          9aa760b07b43b130d6b9782cac926ba25427327b7440e5ab737817ef3d19419e2082390c4d0553f6c42e6151512dc3834647b8fc5613fab9e27e098127c3a161

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6d38baae055abeb1d11d564f85668390

          SHA1

          722e7b249b33725ef5882ec045d80bf6585ea087

          SHA256

          eb72e36a0372fb5070afa42a2955d7b9e9e1f6e6811a9186e1d425830bba6de9

          SHA512

          8c0eeb09e0e11f7157e8309d2d465ee135ac3658f25981d9865dfbc4cedfde4d1889c23196aac71f29e2c3896a5316697ff556d52f7c06710b51d65f7acbbe52

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e3d2f4bd351d1985d3d98430c34e4db9

          SHA1

          37aee459a966bcd9f945189d8781a147cf3dd4a9

          SHA256

          916ef3e964affb4b1c804904ab1dc2c8fd491206adc7d50ec3fec9868f321de9

          SHA512

          a3d600629c27901bb82d8658911229cd6acd3ebbe074ee93896e80df969e993371ce58b69c059698245f152dea66bf166ea1a6b4774d181ca9804b496e408cff

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          61ae64fab08219921d9857594313dca9

          SHA1

          4fbcfaa462543aa4434cb20fc49cfa8e1455dfd0

          SHA256

          f29b25382cad54c6193e6f09fe6c3c23721bc1f2a4639961d39e3ae9c727ea81

          SHA512

          bb9c7381b727b4b3d0fc0a657158077e675f8ecb4c8bf96dcca78d0cce7572d4e3f4d4c2ed7542fe1ae92b9469a57d27757d5cfb94aabada54bbc3cff8184706

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4e2afef4a59bac262ea866bde08b0447

          SHA1

          66e0abf83d37b073f2d6b30e31e51e1dc3ba865c

          SHA256

          12977564213bf5efe585fa5c0bfd4b463376d2af00cdd214597fba59c5fe648a

          SHA512

          0edea5268d8ad7239ebb6bbd9adc90f4ab4cc34af4bebf6eaa4e3d2bc3e4603743c747b3ae894d29257901254155fdaa7d1027d6295e6139092ddd6e37beb823

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b5bd7c17c72ffcbdfed5ee75ee2228fb

          SHA1

          8b06390066e4ea86dd2738866953a123b72b6bd4

          SHA256

          af2cec37f592d2b290ef1f4fe884649fd233d68f208d040954c9ad9051ed59b7

          SHA512

          48c39223d51049db539896bfa9bf7336ef4b04b2ee9fa964848f7c71ae88ca3ddd615bfdbc0d767f493ecb16bc4baf4707b8bd3b83084985323e4976a6169f84

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          48bfaded3e75366f29c015e563eb1160

          SHA1

          36fa6d3927ebcddf1e542aaeda51444d786a371f

          SHA256

          3d003acb623a25c5eb58a754b7491e864b575835d15303b9dc52a8486f71ee08

          SHA512

          66a77225bc80028f5dad04aee77de83d2e8f6a51d4a42092a9559098696d549e1cc534c99857b4147bd6106fec733df418637e6e435aac861d2b96faa420b429

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          827e2f756ceb06aec70ac2b746d148ea

          SHA1

          526f1d1f7dd24f74ceab269897ff1bbd8fabad59

          SHA256

          13ef14146c545eb9a66e914d87a8c14cc92635a464bb791a15b35cfca7ce7fcc

          SHA512

          e58fe74deab46eb115d9d3e19762ea419fbff20633f753fb68e97d9fbeca69c640dddc0b752b5a62020f89d4f16310de9a7c1cb5fc5ecc111018695a3bcb1a49

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e88d9ef391a36d8c406a617b28abafea

          SHA1

          d31239d17d7da8ee5ab6fb0b02338ff63c667dfe

          SHA256

          2186f32bbb5038edb3c3b7c088c06cc97560c74d46c303e466e12fd2f66e8e69

          SHA512

          394623b903bcbce31c694cfbd6a281df3a287b9f7f6015e7404a8447bbb3774b3e9e38473601674124c759aeb55977d0d484bfcd3a64ddfcf06eae2604592f60

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          929c6b52915327098f029fae3a657dfa

          SHA1

          e387b753d915e8aae191c7a49edc5b7180ddba0f

          SHA256

          dc41d426f23942e4e3d6eedc31cffbd4ddc5928b788a9c59163168b6f2b9380f

          SHA512

          f5bfaa188b08bc8101e1cb84488784888e452148d09480d5b729cfb1c6d0eceec4d072692f1f36c2a43a8f154c796f2fdae7a2f22cf4eee819bc017cd848df39

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5cf7d22870548d8a05957288daf8e648

          SHA1

          925722a2a6d43c7217d274035febc9ba01e8a55f

          SHA256

          71447f2d49f8955af293df9ead35ebd2e21a755bfdd41d3e433323a6c89d0e03

          SHA512

          3dc9e4da331add2cd3d47452aa93286cf83b3cc4d138ef1597f09c3a0822a3f2999def9c47e35017949c3e1c595bd98b0c99f92cb2fc4cf23f371b4ff25797b6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          71be34c2834401c90c6bfb6a2d01c312

          SHA1

          38d3c79b6949a662578afb3b0eb4667b1a320ab3

          SHA256

          26af37050255cbc82f4139786440728ce865ec76f983fa8d445faa7d07478fc8

          SHA512

          072b5f5b4db25b968f21caece3d7ac01160a31efeb994c0c1629a7a1ec0a24dcb89fe6a520b9ae4260f78742153e90a2636f0c09e58ee37b43f4a31f310d3b1c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ed4036873b1127e86416e763879c054e

          SHA1

          42aa81d1a80359712937fe283109dd0f696cfb6a

          SHA256

          5c4c2b44252df86be79192697a14787ff6ca7d89ee35a570522ca32477837882

          SHA512

          19a3f0f5c24bc310bbff6dca9bffbfc1b07f599a493ee6e338f1320a12872af896ca3ac4dd8b88ca8e6a1260a12f6bb2259237d5f412ded581875983bdd9f819

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e1c8e80282f175104fcb3aeabc82ef0a

          SHA1

          e0ee813fa99d272cf5a363894c8fc421f1721a1c

          SHA256

          65cbcb2360ad4cc1ef928f694844330ace4422fb9d0a50b27379745f73039ef3

          SHA512

          80da3850b1a0df6386a975c5079bf72b70b9b12a4d0a9f32d2bc974307684650e1c016bd7789ad22c7c3bf717842062ebdf5f73d3d52ddabe23ce7b28bd95562

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          94a7b1550ae763907f0c1bc7c8cc5930

          SHA1

          693f6b957e6be60e54c3d008ab3020ec0e554a62

          SHA256

          f83701d000a0644842efaf71657b38af6f530643783ab97674b57ad7e3860964

          SHA512

          56851e75dcec93a891ee74cad1f121a1594521d405237e8e87600fb7dcd21bc07037d9c14eb6662de28d54d90a61dcc38918c1177b14e6a8d552b0be9ea5738f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1c0abb89141f8963839b63917eb1335a

          SHA1

          f757c995b9f1a90f2adf732964653dfec4da115a

          SHA256

          f8ffee064da01528a564ff8733a427229e80d3850671e94cce68a32cf9bdf091

          SHA512

          afdcf88ec5717549cf6571f495a0d82fc0b2da5b6480150ddf9a759f27ef41ca8aaac399a4940d0ba095b9caebd5931e383b6864044557e68bbc9f18d44c7f22

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          997aa68c357fc8803a46427a9de5a997

          SHA1

          22e7b22f04e3a4a790021ceeb04fa1172b2dfa5e

          SHA256

          4e4333756ae6f305e5dba49df02cac7ef94bee3c4a4f02bea09681205ab4c635

          SHA512

          12023f25fb8d6e75b495c4f17107ecb56d9609eebacf18a2dd1b8dc9236017d7145ab123e3068a0ed124ba532d54339ff75c802201ff407fe09cef8fd667895f

        • C:\Users\Admin\AppData\Local\Temp\Cab258C.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar258E.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

        • C:\Users\Admin\AppData\Local\Temp\Tar268E.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b