Analysis

  • max time kernel
    118s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 04:47

General

  • Target

    8cedb6658c589aaf6483512e9f3c00e2_JaffaCakes118.html

  • Size

    68KB

  • MD5

    8cedb6658c589aaf6483512e9f3c00e2

  • SHA1

    1d105c991cda1ce153221d0d95f2c3c3b45b37dc

  • SHA256

    dc037df74ce14e4e7931e91a1ce2ea36fffc21d4ef13805e7c52d4ac882c017b

  • SHA512

    be3d8c74f265c7ee4a0c2e8a5246bc69d59e85b29ee8a76a2d35306773f6fe6d0b6552b06e4f94990172f1648f656bbea0df23fed3ac46100b4dc0735117fb0e

  • SSDEEP

    768:JiHgcMiR3sI2PDDnX0g6wNP8DP5T8uCiTjPGoTyv1wCZkoTyMdtbBnfBgN8/lboz:JlNs5ZnXTcNen0tbrga94hcuNnQC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8cedb6658c589aaf6483512e9f3c00e2_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2136
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2136 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1296

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          1KB

          MD5

          e45e619e897e3e3fb040001c59f1492a

          SHA1

          192c331e72c5e85908b2518c9fddc45bc0d79fac

          SHA256

          159933a20be82cac22c71e112cce4a3e7394cbc1dce3d1d8461b9ac689173594

          SHA512

          b30b8299082c4c78dc6652ddfe9026d26a1a0d7e1492011447a1a21259a8932e3ee6888700fb6e5ab92418dc11a4dc9dfc632bba55bb9edf3047681446d5aa84

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

          Filesize

          724B

          MD5

          ac89a852c2aaa3d389b2d2dd312ad367

          SHA1

          8f421dd6493c61dbda6b839e2debb7b50a20c930

          SHA256

          0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

          SHA512

          c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          410B

          MD5

          a150e4805dc050b409e15ea7232eefd1

          SHA1

          4666a1e0678949ed0da0a42e122c9f1324760551

          SHA256

          0e981481e1eb9213ad16891eade21bcde214876096ba2edcf4cd3e0f74e9ac03

          SHA512

          f7737598f856d4bd8c26863f462b09514defa1d4d26aaad7a7e96928d7f4dae0150009dd0285841e2601fd42d77d1e1fc6da76ddb03916000781acd8a0f2b091

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          83d82dddda0dfcef42ee1acf3ff1dba4

          SHA1

          c89602720fd7f6dfc80497142c26e0dfc4c9473b

          SHA256

          61cfcecb59d923556c1519f425651944df0b67458efd0696d88e9bf42f85b5ab

          SHA512

          4b6f85ecd2b9924901f41ee8160764549b8f849a43b8bc9487c6561bd6f7ea3535bdd46fd97701cd4728877a2f4f36cb5d0be2767e075a06f372b5550ac90406

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          bba2e1f353a6b4bd7f9a410cb47c7095

          SHA1

          7c9a0c83b7d52ff03b7600e7f9851da440b265c3

          SHA256

          51b3fb5cfe43dd181adc40760f2d9ab0be9de8127b2a896a533a59bdc40dade0

          SHA512

          45afcd7715e2f6208e90cee7929fc0ec9ae66d7051c789540a3ef1f827d1f1d3aa37fb941ed9438058725674053736d204fafe8d03b2ac80df672411eaf80437

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b50991f3ab563868f5829622d0eeefd7

          SHA1

          7f4cfc4a11d31962bdb002a46fe29eaead7865ad

          SHA256

          467128579d78b3b47a96a19c4ee25534e4936bb7796f80dffe7167c0e68dbd7f

          SHA512

          c9d94e58e308dd9b7dfc9b6307ac6e7cad14d28738ddd495a9ee2f1f4e958c795a97850275cf0c8f283e0767eb0a27a77643c4052e7b25ff6e551db59a786710

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          44e860bc64d0b96c4999f4d0573f41a5

          SHA1

          8df49ba0f97001ea82490ed011f81850382d0e52

          SHA256

          e33752970543f7656676d8b2391b2cc03974d4bd42a8c9dcc081b53b9e22bb54

          SHA512

          694b7b9023cbd69265952debd6bc8b7a5b9e68a883fc7d73bede6d770477db120ab0544bf857595b11d8f9106930931b1c6691ed51fc5309190608e82b02ac8b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9e1f154c0e2ab2304f69ff104d60863b

          SHA1

          6975fb9418203ff55a993f1a5b5aeee6123f7070

          SHA256

          09bd9a663c257faec66646e83233fcb68d6bcf15cbe14ac10fba0cf8d8e05a58

          SHA512

          37d82c9ccbc86a545bd9af7b243de3517df2d96278b3f0dcad14c51840ef47ee2b574bd2a8b179e66e11915264c373982abb4df9dcf3688fc47c96c0742380f1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          900963cacffc765eb2632582c9cf1f4b

          SHA1

          bb932d2ea7f2e4c41601a8eed863a215ccbe929d

          SHA256

          69da56f40c955d32b075762a9207e59e489128bb82a94364fb13ccaf07d76ed6

          SHA512

          414530b60d8a4b44c2f02384bc6261f2d43614aa7167d98ebe01338583e46436ac883c19e083d28e5e3b0b35fa7e8a8289d59b7b385b964ead00e6d9aa16c730

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          66ba4d2aabc97dff97f700749eeebfb4

          SHA1

          bf0e4ae6f10cfba3c1667eb672a8196dba522710

          SHA256

          05e63123737dfc87209d797fc32a125870522ed7eb529e1fadd63ab38f28ec8c

          SHA512

          e9232ea8cfd0904389d21d7afc56a985bc1d155511c5a902057f66b8da42ff1a2021e3b059ea0e256922692893c18339ced2f2f01a17c8a3df0163deb0e957e2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8a9c9af6c96c80ef727cc510ebc58067

          SHA1

          d9b65286dfe851f3b2f99b965370a1aeaf15e83b

          SHA256

          fe23e51dad53eddca116fa2ef03e6aedbdf040baed860fb5a3f59d40729dc88e

          SHA512

          0a843be0226571245edabee4c35ee471f2846fdb689e085761478571545fda1c976fe0cbc4953676abbd1fd1fdf7f4b6487bbba6b2195c7ab848d5aa2cc75fd8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7f65ce993d1fb37e2cb19e4a8efb61aa

          SHA1

          ce24a1cb816247cee6f6293c6b59c60e9dc49259

          SHA256

          c5a0ebb8c8c445b42e4badf36f4b1c3e7d7107698c63897fe79508393a118955

          SHA512

          97d3309e61ba612706e35fdf35ad2755d11393e0041e423b2645c4a7462bb5c815ab00510d8841dda64e34707355a62bc86dc51895d8744ce16190bf7df75083

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          eed789d1da64074d7716b8cbe6c58f40

          SHA1

          733b5465e968f9ad9360e1b17b2a2da700c84155

          SHA256

          a7fd1dab403ce21952ddff27e582fbfcfbd87700f10a143128afb23d94d39fd9

          SHA512

          378856e3793a0d9556c3f77a3304bea568b57a3c3e2afb9c12c7746f3011999f41c56aefb59bbe93684df6cd72cf9126b4c1f6adb35d2640651cccc182046807

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c4c74a9be28f606b4a250b734b51ed4e

          SHA1

          4468d4b5c6fc9184e42f2a1ffc568bc24aa85ceb

          SHA256

          4b139ece404eec43a4e5f08e4edc753d3d267c71b183c884be1a0f6efc41fad7

          SHA512

          0257b0a69225384e6b807406e97124a974bb5ca65d279bbf1ad73e71fd6a3f51ea0d90e4d999421419a0c2bbc408cc3c960cab1b0c3ba78b5746332d3d4b2c9a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          be65137a34240b064ae5fc31a73537a0

          SHA1

          8fae93bb94035f9ea5e38e5aa29de9231ea6656a

          SHA256

          16bdcf4deee3ef6e36ca855dbb6fa715f5ebdf54cce37abc71de7f49cac77795

          SHA512

          ecab2e8e7b017948a72715ffa460aa3440b526547a4a362623d0caa356e0063008c4cd4e000a14ff7e3acc9d48a338d3348e75ec88fe5fd2939a7b28f36d435c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          21a3661408b2e5a7e16ebea507ced085

          SHA1

          dcefd137054f9eaba603fd87abcc1a5d0aa1fdfa

          SHA256

          8f68c586e1f0a3ee74718973c42d84465a62357a310567f69fc8ea15caf6bdaf

          SHA512

          398bc1b1c601a98fe8bec6239ff18ead316f954ca068b50f1d3fa76c4c21409f788d6c928dbd473312a42c87340e3f16e78121e5630f9d254c788ef19eea0d58

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f5f93c3c995a5e2cf3c69504a017f88c

          SHA1

          7d7474f4fa6a48384b6435eaa912cdc9c6529468

          SHA256

          53b8a9a6ba9c3d976ac6a184b08bae425d9593ffa648f2375051e6d22a992830

          SHA512

          1f2cf7bf4a6c1000f2af7663e89ce99576218908d09b6049e709292a27b29b341add695f2d9f208c9b9afc217677519d857dcf21b1265b05198c56c25c52de94

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          53ea63c9f548ed32af66e7074adafed9

          SHA1

          43f5da7b1ca3da9a118ee34d4f0f99a9f623e701

          SHA256

          24f19d2ae8cc3ad3464d82f47c3a219d3da671e1a020e8a004788fef0a90d37b

          SHA512

          bd6d7af6a6d3312a710dedfe7a55bd186ff6d47b1c2ce38abf90df3729bf12dd27bc75cb0159a7c46331555f49092cf3747b370a4016726b2ff3417f3f5acc95

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6f3104e395b111ce7f341b1e13a4546f

          SHA1

          741c1bf3c16a4bb29f1c0248b8aa8308eb7faf7e

          SHA256

          05370ae5c716b0b94928ab28ae1cd653644ba6abada05045f59af31965e413ed

          SHA512

          59c369367957a1f9e3d0de5078781af0242a6569afa2e0f0967e7fbb73d37b76dbe88a7e6052cbc5562b2d6f8c4dda8de1c8d2c7d7d8a4195bd184cfbfbbc913

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a305bcccde7181212839565b6c6fb6f4

          SHA1

          c247cf6618db3023f79c68b6ed7e8652c01ee998

          SHA256

          6775406740cbb58def120861103ce0d64aba52fe455a7b3026bb98db86fc4eb8

          SHA512

          3e5e2568d46c35db25ab0d342effa1816f076aaea20efb7d00192ba9ee668b16fe8601df76dd52a38e1d5ac8e811c2a3827af035860932c3dae25f3af7d7492b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3849b4e6076c896382a7dfa4ac78dc14

          SHA1

          58847f42b2f5fd5be64c7c118d425f8307cdc307

          SHA256

          80a3e9e2cdd331ccbafe1343a12e7ef6e6247cc9355ab924a630316ce0035609

          SHA512

          49b462cc9ba0e0d5b3804d8a291c6ccaedc4362aebc02ed7df1a2ce044231e76142c79c86add4f2194ad20fb9e9db83f94f4eb782cfdb81963001c1f104d27df

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          66c05d50a882a8bdd08b43af8b349bba

          SHA1

          679e855290f74dfac31919874acf76c915073f44

          SHA256

          28ffd54d153dfefd77c3c88009997492271b672d258adac50baf71e8982edf66

          SHA512

          1b54d389f204289444fef9d8fd9862264449930918b479d42a092394f4ca383599e5f4007f1cd806160544364867144c87659b105ed673e3fc4b4232440140a8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0de407ebbf473df5f8a97e312b9c738c

          SHA1

          3c8f97d6ae6fe8f00110d090b99681e8a9e23ec0

          SHA256

          e7a819764922ac9869c803e0fe2cacf3275dd892df41e60a7dc6c83465ba7d53

          SHA512

          5974d51aef118aa7da8a9d755640d086c2ef2f1a1f2da6ffc1ee31c80e1d6d9bbec3b1af36d00f79f44b6e5bcfbbc72f6d70b028f05aab1832c8fac4b97d2137

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6f5fdf9623bb44bb408ac7c789a9d637

          SHA1

          3b9e653d8c8f7de6db8e020048865baf5023cc23

          SHA256

          d1cfaa501ec2f2643118030aeffe8a56c72f6edcd1dadb760fc192592b86f401

          SHA512

          f13dea0a985737f2c4cc6dbd46b4a08e07d062b9d04878277d5a7831204c3d1f4d541fb328b37ea31e5c4ef264c111d0430088731b470aad0f5260064f5be0e7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          51286731fe65ff931f792b24f89f4ff4

          SHA1

          59e52925c0615ebb8dd5a34dd039dfb681d21537

          SHA256

          68ee30257134ad2c9908e1e9bb815e6a87f4bd6801d569d9bd63cbf45bf114dd

          SHA512

          36eeaca228bffc20a61b73690e4541b86a97cc6a3aab2d4f7020d56be3693b397334156146b0c7edd130945a8a6231e3366dd87097de91a5abac2f26670114e9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

          Filesize

          392B

          MD5

          26e2c954a4fa5dda24697da848f0ab2e

          SHA1

          b34fafe80b9446123bc22d674ca19e2e2ad02f0d

          SHA256

          01510a3d84a275d0c2c07d2aa09787286da145bb349cccaaa8cf5c89a8aa6218

          SHA512

          633e9dfa8e8fc02680eed051e5599e5e334f584f3d25edadecf9a54deb6cebdea228709c98245e31cc1855c352e110700a349269998835c341bf5b3aabaf893c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          1fab062d9a11b4ad09da1ba9b16bfff0

          SHA1

          1de78cd6ec6c248a581d81a74aee4e20abcc7b2b

          SHA256

          355b4fce68c09907033cb1278589080c56fa704ca6e84c914e748805e68e129a

          SHA512

          29c552c6a556f7b17e7dd4923ea981b974ead39e249afb6d95c21b08f3cb39282990e8f95f87c3c64bcead3ba06fd2db8377bcc64d59750c7e141ff26b5e394d

        • C:\Users\Admin\AppData\Local\Temp\Cab3141.tmp

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\Local\Temp\Cab31CF.tmp

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\Local\Temp\Tar3140.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

        • C:\Users\Admin\AppData\Local\Temp\Tar31E4.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b