Analysis

  • max time kernel
    144s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 01:55

General

  • Target

    8c87db9842a7174a48b57751065289d0_JaffaCakes118.html

  • Size

    45KB

  • MD5

    8c87db9842a7174a48b57751065289d0

  • SHA1

    11e348be82cf8b89a9da9140ac1e49a61f9ee087

  • SHA256

    630a99e6e04770af10f4a7bad52690ead21e8be7aeaf950760d13ad7910c8a47

  • SHA512

    8a0bbd6a8680354c696341f62bda4410d2dbf2c30971da06044a13a044bb5c05590b9ea8c19f9140b72912c3c07d43db87d641b2a6df68750308b27209ef6bb0

  • SSDEEP

    768:SSu0N+Xakq2s/o7HDmQ2wD+nuMpvj02xHQhUlQjj7BaR86JpX9798CtNjdETcyM9:SSRN+Xakq2s/o7HDmQ2wD+n3pvj04Hw8

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8c87db9842a7174a48b57751065289d0_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2416
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2416 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2360

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f8c4e40b41043af8c1a5b18bc59a8069

          SHA1

          17a3b14081bd034c1fb8528d29de1e810a000ea0

          SHA256

          531044878b11d43242e34c4d862b723995167bc8e5dc093dec0b7ba94c0357e7

          SHA512

          eff8ca9e6202485ed7ddc6bd0b9c25fd794b4a3dda69e5860dccb925257d7d7d9c0dabd387e05d0af1e4da25265cb000d5592ea3a729e8e0d8557d31d31c8122

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          bfaf3d539510705bdd11058b3edf921d

          SHA1

          bd78ea5fe880a4ce003e4fb0f8bf9970d37598b2

          SHA256

          145b7cab316c7b32d0157141366c4065c489a6ac69a09aad7a260cbcbfeeb958

          SHA512

          3bf3014c308823d576f1dfdee11177c8a8457d530c784221663c8c0f7e75d05ac3f7d7da5bfac9aa18a61a131b5cc2e721ab81b9305bcb74a136371060175e49

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          070f37d53a3329baeb1a034a8f93df94

          SHA1

          64c30816096599544f4379ba054317c034597396

          SHA256

          da7dcd3ab01103b2c60f2e82b34772644c0fa95f18df85d4cc9cd66c0f279b62

          SHA512

          06de4bc35b55caeae7a696148340ecc8baceead243b5e18e092da5b990db234f80870dca9bb8a5e6bb97e4222d5d6044b428381af5c3a084a3b29c52d5c275ba

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a796bf05dd1ec437db7cffb12bd24e5a

          SHA1

          e8bb17be1eeb6427037aa8e6ecece0820997ed61

          SHA256

          9fb3d6697c041f6884e36455157649c3f60cf69c08c93e47990a73f47634d187

          SHA512

          d4404120bc5922f195e09b33a32b9a455c1a8fc0db6595d6b337ff1b0421544f2ee2f889dcf01fe005d5f96be46de60ab5976f6dd56b59d47b1ee55d61d82a7f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c49d866270cccbb31236c56ef08bf3ef

          SHA1

          86c31cf52277133eb74309d99dd268098dfcf74d

          SHA256

          d1b80c3ca7bf7e81aaf8978ae1a8d824de86222461f75f28f6d34979b071f921

          SHA512

          68ecc466fe0119802d2c1126e9a0e39e1dbb1e9296fdc219678963a80f91738da1aefa0c19d5e1f64faa1b322cf35624863bf1ddf48b4d8e29137c9f3b151aa6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          546235f8f77e9456ec895f254c0305f4

          SHA1

          665d8f789f78c919adda2aec506b6a29efd9eaed

          SHA256

          9364df58fb14f61762c0a430debeef74f2dac16ec505accd49dc9d80973f1377

          SHA512

          2072a7ec3171b8ceb09e843dff219b1195658974c95ce8959c5902aef8c1221c500c6b07dbbb0b90f3b80737e6b29e7b5092317a7681cd15cbd56af242a45225

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          33aa1f176b19218bb678499e4d9c343d

          SHA1

          4487f46eebbb6b3f474fa7ec989e85f2c023c31b

          SHA256

          fc4f0b1cf58cb99466ae7647b96f735bc2df10e325826482cc282ca63ef7ebde

          SHA512

          dfbe105899e5b473ed5962cd658e985f8d1e68169c88cab94906df88eabc1adc9294fbaef4e49c476c7805d56d6e86894168a0ffe9519cb482a1fe7169444b84

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f0d3eece5f4b51554d5566022f336b18

          SHA1

          3311944ed1c38ff8faab1e36afad2826ba0eb055

          SHA256

          4896af8a808268cfde41571bdc0bef9dd032ca2142fd6b26e6d380de35ed755c

          SHA512

          d229219a6b0458832b931b6a0e878ed0e9c8bd676b0800791cac3183579e7d948b19c0efd85c9c2e916f3ac529123bb34303b2a4ca71367794c1b10565e32107

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          40e1d8f2194c44697f26413624470d2c

          SHA1

          6f0ebb508b8a041663c0ae0184e65fd3fecd718f

          SHA256

          89a96477c572eddcaa73f84473c398a69c0af70cc35e6e1c659d2b91a67bd237

          SHA512

          13eb1b4e01566ca53df984de34f27429fa32fa4c2e01756adcac11d506c90c659d643dece4d9ceff850482f33c23ae7e6055041ff5bc5ab7b5334e33e7540550

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          991372366e22ecae2508b888f32278c9

          SHA1

          ff4a75edccea33f319a1b76cc934cf23a6dac6a0

          SHA256

          ebb721010d4f2665cf70a79e45188bc89c00c7eaf55ea6945cb800001c3d063b

          SHA512

          0a0eed3a4a5c775122bd8342ab33c37bf3d93cb98301eded8ed107d4cad0010c007f82e9550ecec14dec8897f5faa7bf4383093b779acd6691a49c6ffa4b5599

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          929c9c0ac1d1c451c79f752d822bf41b

          SHA1

          1adc2874d90b9171fbb453bea7d6d9fe2ab7dfa1

          SHA256

          056636e282160a8aa555d2e24185896b0b61236641c532d9900f8b504053c40c

          SHA512

          760e36c37fdc5e3f63fb81a0c891e22a1e0dd48af0d82159fb1a4710513c974bdb817fb33316eb026a10a351948e65d8c905c71ed5965e60ed0de2eb6c9cc064

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5535288ce733c620bdeaa7076dc32d8a

          SHA1

          70f7d8c181fb1d45bb55dfae7a03a576fddd662b

          SHA256

          0768fb3ae877235e031c7539917c88c13fc48181d5708104c37e0134c43891ee

          SHA512

          aeaa7f4751064152207c9174144d9c01a13b56f798d62fb09cb13cdb705e463e79159998b55adba76a911d566d8e4af5c104a419e41155501030e3cea4e5ad82

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          caac1efbc7250ab3c54db2ee789d80fc

          SHA1

          b7bfb00e6feb54d49491a6c4bfa22b0839dd2837

          SHA256

          e011c91ac26914ebbc2fbdd1a41f1269be8ffcc5ca63257ed8b8b083e0fa312c

          SHA512

          bb2f7799e7094bfae6de50f4e524dfbcbca7e8a602262bdb518f5a31d96ae7f64c91d283bf5d74ba89f9ab35f6be2bcfe0836c76a4a7b2f1cf07002e4f6bd04b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7bc0ac059edbe434eef4e624cdc3a1dd

          SHA1

          20999b32512bd529a771ebdbea557eb3556afd66

          SHA256

          d637e0e38ddd5c8fac93bd573b3f3f4c82a23ab1abd3eb67791d214ee46d7007

          SHA512

          88ca7d508acf2d864ba7c328170486cf107bf6eb4d6befd4a4a1c2e2f814b6d452e04e33b2dae6adc21a0112b2429b7ee6d7b4dd331d58fdba12e313c27ae9e8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          dc7724db6f947f3b161d171720b64510

          SHA1

          611bf8fb5de7b38c536ae26bd46a14033dbfa7ba

          SHA256

          9ced1f5738fec89513981e6f68e2947e62d6f524d7894d8b7a8d09ca0879f4f6

          SHA512

          c77a63938f4088b66b731301dbade066c8906f5fc59be3f7384122f1ad3711d991b4cb3bf41cd7c315a9b0535444f719a60ded9cf59c0f77b31e55169d0d6ce9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          433042e97714e45db5e1ff3bd0eca2fd

          SHA1

          43258655d305f297607e1a3d8e44a514b4fa5a6d

          SHA256

          a14e0f895293bd30733c1d170d01fabce06668a2badc79d87798d96aa48ca654

          SHA512

          57487db1d9cfa6cfb0230eb48fefe72fa6404bef0371db8d31e9a6e73cc0634b61732775a13b5560852a97b26b1783fbc3c97b57a478881f72e171b2736dc7c6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5828c7868d59b698d1e19d66c31fe964

          SHA1

          218b9d567a1b26487004652f587599c4af86298d

          SHA256

          faec3c72c6060f2b44d0263fff4a39f731c722072260282a33bccfa5a05fc21c

          SHA512

          d5eaeea0ceb5ad94a52d063e33f291edb50d69e621bdc6ce93ff6f4cda656a67dca9aeb3c0e72e86dda15b8a471e4e644ccc19977a0d76c77cd68a135ce2c8ef

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          750ef83ff60132b38e827acf786620d0

          SHA1

          4080c1c6ab0179a175124f9644614cb3c2a198eb

          SHA256

          85949ffd2bfe1d49bf76eb82fa9e44ffdcf64e2d318940c6df82b93dda968561

          SHA512

          0d7b75fd5b79ae8f82d94a3377448acf657f12eee4420126d37554de164d2343cea7a19b541d9ae534ee402aa6451703c8a32f86424e4f3bf71ccd2a8a6d00c9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0c52a2b54ec634a6d5082dba7fe79954

          SHA1

          782c8a65e496faaa5693a7b4c414b0e0a2cc5b4b

          SHA256

          89d99bc4b258dbfa0432555f35fecc59fca28f41831c45d1d480e155283f3e6d

          SHA512

          7e229a35ee769846fb3ec91e1b125d8e634e160225d43083b3b90169f6c715597947d8b87a19da4eb2e22b32001ffa2539c5f5d6f47cb21d44f78b1d60ad0f4e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d495566902aaaf150f3312eff03559d3

          SHA1

          18b3853cf5a6114c0fba4c0cdb136823b1827bbf

          SHA256

          3c51da5c9e0b4587867d041878b1038825d1ac48dcf8fe12317d27633e4dce9f

          SHA512

          be190fcfd3f1e3158013dea2e69b39759d36571e65874f23636b71b798fb8f8c80605a58fc1034dbdc2cf9829c9136c3096623ce87dcda0c20b3846d1ca09868

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          793ea42e98e767552a47f196b9897851

          SHA1

          a2482f2ea9b04792629de5414fed45e512bb149d

          SHA256

          e477ece51ff72e728c170a2a87c064635b05f3e0fe1d73711cc2b77544999336

          SHA512

          e9809a6f30d143b67e2936f6f4ca15308c58e28b71635a4b2f7f577abddfc0bbb8bfe15afa4764e9653563c3a37658a8a9db14b083f51b6989c53394130755c8

        • C:\Users\Admin\AppData\Local\Temp\Cab2D1B.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Tar2D2C.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

        • C:\Users\Admin\AppData\Local\Temp\Tar2DBF.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b