Analysis

  • max time kernel
    135s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 04:50

General

  • Target

    8ceecc6102bef8591a9f8d5217675753_JaffaCakes118.html

  • Size

    87KB

  • MD5

    8ceecc6102bef8591a9f8d5217675753

  • SHA1

    e2fd5eef7e65466bdd941cc9119ed4a19974efd1

  • SHA256

    debcf71b890ef4760849633214fbd8b33efb84eaed4cfde2c4282c853497b9d2

  • SHA512

    da7d95d31aa37a99fa73b85f23b4abfbb2d6e0efc2e423822d0b64839aae453b813defa64d2ce52efd98488802ba1f1051100376de0e0175ab973712b3d4cea3

  • SSDEEP

    1536:pWYEBeU0QjLHiyKTbmW7819ZlUqUNYTuNyG:pHEUQHiyKTbyuNp

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8ceecc6102bef8591a9f8d5217675753_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2700
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2700 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1064

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\103621DE9CD5414CC2538780B4B75751

          Filesize

          717B

          MD5

          822467b728b7a66b081c91795373789a

          SHA1

          d8f2f02e1eef62485a9feffd59ce837511749865

          SHA256

          af2343382b88335eea72251ad84949e244ff54b6995063e24459a7216e9576b9

          SHA512

          bacea07d92c32078ca6a0161549b4e18edab745dd44947e5f181d28cc24468e07769d6835816cdfb944fd3d0099bde5e21b48f4966824c5c16c1801712303eb6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          fabff728c834d99536c604095eacd3f2

          SHA1

          8db2ef4216ce00345949b2f7909bfdc9d4eb1036

          SHA256

          0d19824cffd8f6d975b31feede7e93c7af856b5c4edf9df99decace5df8adc1a

          SHA512

          b8097689b1cbcd39f35a6f87d904ad8904fb6deb7df2ad8895562ee676c391e018c7a433f503b897577856373b4a61207aba61a5ed0c38a7e5ab3f6086459199

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          797f922eea710769619f0597f9c6377d

          SHA1

          cf532cc5dc23ef02ff2afeb809415aefa5138f47

          SHA256

          92e575f0dc2bfad2fe54f6e9a1e03f7dd591393496a571d2a51fac4c09a781d1

          SHA512

          777824f1a38ba4cde663748c7e21d19a9396dd158bd5f9a4c8c7f030add7866df0c5fbfbdc664c164eab1328172f6e24234c4f198c3ebb21a3b10157f7bd7913

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4e2fc8d07473205f5f3a23c32a067357

          SHA1

          2128d94d5043fc3bf289ec0481d438e3773aafdb

          SHA256

          fd4b905c56b4d174b8a453338da2a24f33e2ae28aaf0cea6e76bc0d1f2537785

          SHA512

          347b83831c7f193053f2a13f91c40afa08a03d598c00e5a972c595744049a1e1ac68951e06a18eb29872a21eb4df085a7ca59e83c82d4a82d19ec6c40aa9218a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6d66cf42c9b651bf6f7fcf03b86ccfd7

          SHA1

          6516b8f436d4a040d4391af61e34c51cd5f863d3

          SHA256

          9b5be957e27798f1fab9cc8b5e7632f86b48ec215f1fca50a16534aecdebd84b

          SHA512

          243f92058e1158a1bac4fac544672169c0efb495ac8b51751551818b6d6f5f4acae30ed1fed96866df52d53d612565e63f8dc8574fb1d0f4f101f745f2a649e9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          af4a1408fcce55d83a4d8c49133e044b

          SHA1

          74374f4c08005bba518f1ec83526f2de3aeb13c1

          SHA256

          faf5102e4410a065f48640d09020eb06cafb18191f6e4ee78d78ec238f6876c5

          SHA512

          d10d07a09e74802c10ece2b58663092ce12b51980deb3f8f4be8ddc5eb54334d07c6fd6663ccc25627dd0b03a39bc07cd1a9c2e88830d40120798b084686d583

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9f01f9fc0347d27d603e0334d51ea375

          SHA1

          0c198356f28755b1b65c57ea6128b0ec65fe093b

          SHA256

          cafeee58e3036d78c2445a948133d732970c8b1a3feb2d38f7fea82d64175eb0

          SHA512

          02714da4619e70ca052dce934895c8eb6dd966f89054cda7830dd65c9b43134cec7ec8b32a9b9286c7b89cd30ffe9c1d5488a2d7895f8ee4c67573789ae21416

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ddeabbb2733921408fdd66e6cfd590a4

          SHA1

          1bda9e5725dc4db8bf624a7805b9cbf499db4f67

          SHA256

          12b27c13d77c280e1e393b19d5b07844ca68be28fce6369cb8e86994aec73afd

          SHA512

          41da66954cf3e8ae077753a1a3cb85c092c4bed1d651def89e58231ccdd49e4aaeb794cf219730b955a9660b80e03414eb32a66f32db6d50e4a019714692d2df

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7d8552d70cfd976e94ee782307ab5088

          SHA1

          94c926129a2f2350bcbe4a4a66cbc6e0968e16d2

          SHA256

          b67c06bf699bca0f6b5e89be580936656e82f514d21ce3e777217b9b5bc3e14d

          SHA512

          75ae9695d7fe62843c2a0cb577c4244358cec3a8cf72a01c6c66a9f87d5d60a48f742254f801d1aab75ef9fd2a45423dfdd3a4954b6b414fdf0713537dcf1bf9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4664748bb18d29c562955144ebd0f526

          SHA1

          2a5d5df8fdf73fe6a4f46308a56c11dd37669ab4

          SHA256

          6c9c7e5302c343cfe2e76a4cc8b90721442c7a180121e3f55db0d71823637999

          SHA512

          4a56949c35a7226028cee0a468c4420525ed722d3bec98acc4b4554c4a4e71f21d9859d44c4ba74705cab4bbb74baf637b4fdc7813adf3cc4e2cecc93a35c06d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2805ee21f5610113d25521103c97a2e5

          SHA1

          677db2fb3e9d732d586f8135888de929e99f7c8d

          SHA256

          263eb5e48941187ef18381a1c570540b672d2051a62e18f2b8514dd870cf5dd5

          SHA512

          2ac48aa749f9e245b7fef30ea2c23e1191f48d6a119d7af7cebad545a488a53e5bcc3ae42ca5606a9e2094b09dcd2e05328df2a9227fe6d9e8dab8c6bf36a457

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          72f819f25114d7f28d31554f4f0881e4

          SHA1

          171f8d2645a3ef55d6401217d74740a3c6f79f1c

          SHA256

          c0e93fe50a4d5d6cb10c2d2576c547b9a9e7cd55545e28546b0ef72429f154c5

          SHA512

          1dc0242dd2f6b71707b570e655d8a58f23fa9a2930e38cb9e39811b1e11a56df8c1982e3f21f9bb22429936314bb86c04eb7cf05c707d73e32738aac8917a61c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a2314bd4ba52d8a8bbcdf4771667fa8a

          SHA1

          649495dcc2a23a7bb66c8a1ff7c4c1b599bc9c1d

          SHA256

          54ea0fa48400d805d9dcfefc5cf4312a389d69159fb58fd344d4113629900d30

          SHA512

          a8668efdb201035b06b4aa40502d1cb4b04b2bec93459062ae1a5335a7e035e6f0bdc0aa5fd1b212def49d655db8be2c6ab4f23eb888b1e42f5361327ba179d3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d9968c0c1ac28734894e7f7c81f272c5

          SHA1

          a07a4b1ab423cfb20f82ffbeb494f9c815f957e9

          SHA256

          9c98ce737455c8187632865bf245074df2e6bf14649925f9fca46022960ff2ba

          SHA512

          b7f59698f09c8c1c538af425d0c66830e24ed3c6d3f7186774f623d1e5fa4f49adf3ed007b646064d212d0f2bfbf1d78cec9976f45ebe474b4bab01381a93a3d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9301ec3be0c7c93c6d8ed2dfd71bddc0

          SHA1

          a07b7a02eff45b6103cf7451ba5485565bc4cfec

          SHA256

          96396aa892b59fcbeb1ea1e60a57de785486e1e4dc7e33ba15d37dc7d63ba7db

          SHA512

          c2cc5f7dad5eb64cd0849a04b1f048e92b5f8c9df1e7eeba9494468d2310f94376ee8c91a8e27563413a3da78987259f10126e111397df5004c4d56297e6190b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          17d19cb9d820da9425a10b30ab9ab856

          SHA1

          09282f31230a7f499d2527fa354befe4369e4913

          SHA256

          d4b9ffc02dfa81d1d6ab87b3e5ff004dcacc7debbd4f88c732de0e134465f74b

          SHA512

          33791aca9014f036dc0679a16689acaef29011b50b125eaa7d23b10712f18684791be0abfb8b736a20705f7519ea6ab46a1fbcfd273720a122525e0f889677d5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cff9541923e0978cdd35b1497fd5fee4

          SHA1

          6c0581dbe766cf109721d006546844ce6c7bc6e5

          SHA256

          9e44cbd5a2472fc9c05ed44e374157fa5d60678ea8cfaea9211b7b10c7c8fa40

          SHA512

          bd9d78164a5a9c5ab14436e475f0cef1150e831beb4d9a53c780adb55c546c1374703e650659c6d54993983622b4d79c85599771d18498a85c28c4c151789c48

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f399325e6e071f3fda8a75afe1aabcd7

          SHA1

          b887e4ce92159aedae565cd7e29ba999d80ca94b

          SHA256

          352d72182895ff77d32f39636423f1232ea2427dac8c5969764e7485bc448ebd

          SHA512

          65a3a52dc098ff6f3b6839f1ebc3d518b435a8c38a6cb46c9b629ff728730eeefeb8b00d1c2fa70d493154dca71d6994ee46b1264af8475823faf991678b9d5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          12126bcc7609027c8958905eeac8fe31

          SHA1

          9e1bd401f34ee87600aa2f6b71fc6f7bee122e1e

          SHA256

          49341772cb51f4429b3d013a17e115e9868578dd6f5175b345aa970cbc75168f

          SHA512

          170c89550f23900243567109c8aa072ffd1f11a48b7c5993bfcd07e8f4d4cbcce53f188ac07d0d5f5680346239c002124439ca30a20f81b3b0cf7394fe5a1f93

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          abfdd6ab1458fc4fb107b05b1fb6cb62

          SHA1

          cec3169b197b47b53ac16aaaecc291c72ab62b2e

          SHA256

          fa4326e35d5dc0c1f89c89cdce0e94413d4cccb64bfe79d554e1f7da7e9b7148

          SHA512

          4ad74a5850b154f976e9f4d6b17d29dc241738b90a51fb9837f4437e2921bdabdaf8fff0cb30e62f8591aac455f6d76131a0dfd288f4b762dfb0223bef0efc07

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b3a594c1f016195ba3d817fedea32421

          SHA1

          7bbd8f5d3f56fb58600b3af9bff56beb13635b2b

          SHA256

          0972b58d0febc66d95c35c5df42be898b9d415897750931988b311c9e47dce70

          SHA512

          0c13aee347ad7f7c3830a30128934b7477ad796332e8c860315bce3a2adf85b0effc881847842538651eb2101c1f01968148bae017910ad3bf52076c2a5349d1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6d717bdc03bbbb6c32b9a179a8504f89

          SHA1

          9b115d5c98611b06c1f84c44db050f13c5577f8b

          SHA256

          8004373a03aec257774188240ba9a203400124db3e02404987ec18a9bdf0da76

          SHA512

          a7b37d6a8260f2d29ed477533cc379452138e5cb649ff89d7ea100a1f34661d8f971307314ac70562e208f089b8deb9e33360e0710d345e80b25792107d3a51b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          b67f88032d1f4e9e1404f6dec63aaae4

          SHA1

          a0cc3a3e5a075af58639ffafe2616e2d679cabc8

          SHA256

          80bd6e731f64d1f480e3352335c918d621def8328e02b2acaa8ea67934ccd41d

          SHA512

          38cb3b108eb7a862ce350ddb5f01f81c091026b461b25b16ae4863a1c7fae8a7a1a537bec3173d5cc141f27781ec62d8f89f2a67e64141b81906b877a0f8b0cc

        • C:\Users\Admin\AppData\Local\Temp\CabBC10.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\TarBC12.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

        • C:\Users\Admin\AppData\Local\Temp\TarBD31.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b