Analysis

  • max time kernel
    136s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 04:53

General

  • Target

    8cf090891405482eca46ad3312cfba5d_JaffaCakes118.html

  • Size

    68KB

  • MD5

    8cf090891405482eca46ad3312cfba5d

  • SHA1

    b1ec6d85cf4aa7b8e4e921b6d391dcccb920a197

  • SHA256

    bc1ef926f0058edf31242912806f7af661bb63dfe40f0d6520601563c38364a6

  • SHA512

    a889b55d55f72867f8a56305f3ecb842e579f1cd3175c47cf762c3f5349b9a2c66c881bc8f3671e8da4b6bfe00017e184902f94d9fed9f1f5de6c3e7b42fd1ea

  • SSDEEP

    768:JiXgcMiR3sI2PDDnX0g6kWDJn9yyJ9JyOyJaCoTyv1wCZkoTyMdtbBnfBgN8/lb8:Jn8J9yDOXLTcNen0tbrga94hcuNnQC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8cf090891405482eca46ad3312cfba5d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1908
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1908 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2636

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          1KB

          MD5

          e45e619e897e3e3fb040001c59f1492a

          SHA1

          192c331e72c5e85908b2518c9fddc45bc0d79fac

          SHA256

          159933a20be82cac22c71e112cce4a3e7394cbc1dce3d1d8461b9ac689173594

          SHA512

          b30b8299082c4c78dc6652ddfe9026d26a1a0d7e1492011447a1a21259a8932e3ee6888700fb6e5ab92418dc11a4dc9dfc632bba55bb9edf3047681446d5aa84

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

          Filesize

          724B

          MD5

          ac89a852c2aaa3d389b2d2dd312ad367

          SHA1

          8f421dd6493c61dbda6b839e2debb7b50a20c930

          SHA256

          0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

          SHA512

          c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          07eadd50a5ec558da658f7d1257ba1aa

          SHA1

          a91ba5ff28bb30d1eabb1d9d3df5b4219ec6645f

          SHA256

          bc13d7ccc530ee0df4258aaee39101139e392496c1d22d1f73d42ffa835de45b

          SHA512

          52175a88657b29d8fb38694d158173d7d25f4379991f81708ba3ac5f22b72cedc901c13994e974171c06be752d709cc5f9de5877f48855aa0b194715aa723e44

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ca8b13babdba9e8454332f0f19b6c0fb

          SHA1

          7996f49e61c9e70e8d160c312ce515569b0d6bb5

          SHA256

          908762c3ab3eb429715ce5c92ca8c367790d713c0dcd78e61b282a01ff89125f

          SHA512

          e543f49fa1080009265a75ebf26b5f23d211e8ca33b3e2d7ae33dfbfe13dc9188931f8d930eb51522e555646cfa234c5ee44ca77f94c54a1c2858d25a0982331

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f3f090ef2fa5311e1e700601a508280f

          SHA1

          6859fa1c56ff8f489ce39664d35ca1959d04f59e

          SHA256

          7151ec3ef3824860737f8632681a32e74bfdddbdc13161942e0261db803d789f

          SHA512

          6c1b8c699b558c955f12dab945658086c3fe05e22230add4149a0dcc8c0ed5643ec6f55f2b5037a1a5ad4b812c452d40bf925a19a55e372f1e842a100d57543b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4818940baa2e097d8a5dbd34c5542a2f

          SHA1

          e3d3a0a956c354abc5a8eb56be20669d2b6378cb

          SHA256

          c9a21dc0c83d50257c292dbd0b89716d67d8f6e0a0d399f85ef75526b163d158

          SHA512

          6ccde5233b41cd3371c68fa07b4cc02e5a7672415635fbe902ab881dc6659ff3df8913a22d94e95da8d97ef8adc29871d9c5c2db8f9df09fc4d1afb178b0fad9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6121a0816f411998e54cf6597618d1df

          SHA1

          f4c85ae941f2eb5d49d21a456ecafb2995daa466

          SHA256

          e5e1b85115d9b350568a88563aa388498f4eb9e83a25401d106f2d932f0b35db

          SHA512

          64392a488253229c796ec8a9f1ed74fa4167e95dcc0c493f6ff28a02189aaec097439abc30a8ff87d6ff50c4088120ce9a639421399550960025411124ea692e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          01caddddaff8f854904d2c985edbf8d3

          SHA1

          4c605e80dfde1d6c15afd5a1bb42bca708a4f376

          SHA256

          993be81db96eb876ee25a8f6d1c28fdb384c0c0cf95ff116cc35f2f0a5ba0417

          SHA512

          6a925063b075c7963a8700b4d46ec56c5e6cc6f31dbec6d2345ee153f814f869b6bde52483b5f04418f8acac444cf6713bd6fa331d0e9cfc53c9ad54fd03ba2f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5a4293f78af323edee430cbcb3e5e2e3

          SHA1

          9be65a28532b2d938e7c3458b17dfd8d72b92da4

          SHA256

          27965fec2ab6fc12fccced664315065989dc92db6288c6a9b234026c6266f167

          SHA512

          29e6f5b6b4a74ec2e398d30e94c1f87c9107b4e95df96a1c074146219dc784eb0ae70b2f26f1d44cbb692d4b6ba68292c9a92225b6f7475691a2c4aa648a45b1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          04118bc4862b3b40b079864e372953a2

          SHA1

          46a48a8a0f6b16729951701580cd2fd82bf25d3e

          SHA256

          4e8b0a4eecd8d5ec5b4d532cbcb16bf28652d48e2b585a8b93ec958ec99f1e08

          SHA512

          4336d41d24443250c6013e4d7f79819296f49d3f2649a648aebd1056fb0f4625cff4043ed4ebded9f96cedd705c71fca2e77f7c199b3395ee0685e43d362f022

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          bbedfd603ce13666b7179501307e0bea

          SHA1

          c5d668c610e83c07e533fdb3786bc9e98582b9e7

          SHA256

          4c926b724f66b6fb88e0c710070e8745652acc47a1ce7eadbb27e80e2a3abf20

          SHA512

          14bbd662885b16492705aa9cd27610455997f55799ad199635d2bf18eba54a719128363f8668c2d5432163db8979dba30ea0428c5e744c62a6fe78170da5be3a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          876f28fa15b1894868d5b09cc05ab7ca

          SHA1

          e174cdbd9695c703e05f6f72d98dd15bef7bfdc4

          SHA256

          e3d7ab7654f8425f4ba0ffa79556786977a7880b9a2b4acff45923b213675b81

          SHA512

          17b25288b7cac6265d942e073d72f0b44c3d43f6473c719e52027d521fb9886097ebc1e7403e3fda3c142369c09cd35f35cf79b8207bfe7c73393d06ea098b27

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          56cef9845c6dc89b6e388b3ff799ea2f

          SHA1

          6137f790bdb83881fce482eea1e5df41dd5d3539

          SHA256

          aef98a903882dc0832d32963b7e182ad3d68ea189ac66b733eea760756273bad

          SHA512

          ee18a591a78592eb0486d2996120fb5fc669d417a6eb5b59562ba0a817b504b88c2d8318e34d40cdb4346f0030ef44b0421bfa1ac0a0f9a872475f6d954cf177

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0a3647404e5908380ca9ba36ff9b1c82

          SHA1

          f5d5549315b26367a3c8dfd269925871ffe1ef9e

          SHA256

          646cdf94cd7186cf82f394f2c66e9b1e4fb0e75a8f52cafa1faa95044de5900f

          SHA512

          d84ca9aa4b6bddd6fbf63fcbe18952e3c9810fd8b49b66d0c19b8a6f8f95211220447de3e02e86b3af6953dba1fa289c1190d72e42eb806c044f8b0ede14b1ed

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f684f1ebaa40173c9b5a17842d9261e0

          SHA1

          1629921791a74f56664bb38a1aab0adb09baa430

          SHA256

          1297bae5eefa79075b781ac5dcf8777e4c29a4e9f544c449a7e7ebf18f709b0a

          SHA512

          e5e64aa0309bb5557388c698d40f97cb73235ddac3b407a5f5105a2c30f25be9cb2f33445eff1a0dd4b8aff4d8ebb1b388f36d8129762327c75e8b384e11f28e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d0dfb6c7c97600b7945ec17dcb5919bf

          SHA1

          173d511660fd30dae9055fc0de65372094589d90

          SHA256

          6000d1ce18feaf57b69c262ad10638bf9661bff28efe1c495f45e41e9ca41ea1

          SHA512

          01b1b591be46d3e45ad8873b63eed7d59f89517a79730a277e5617371491b1c1a015c11a3945a13bab96baa9fcb17354d507ba2001462fb573c7b72a3678f2af

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7e76c6af18b75d9c266a18aa53a57f12

          SHA1

          2a70f1e92bcd2a463f078d74ab7136ffdea73c5e

          SHA256

          50633af7bd4cf895cec6b3ad6cf6c729ea49c579ee53fd218bc947ae19771cab

          SHA512

          fe87125414d995ce9e23362f2a61ca8f92d53f2bb1e055b6f0c7b8bf0179ebd566823ad3137530b70d89772164cfda077189dcbe6766f6dd4e1832a24231e67a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          957b1453de8a343e55c5151b3c3274d9

          SHA1

          bb0fe83bb9310983bc5e31d9ae489b109dd3e23d

          SHA256

          7bfa84c90bf9882354679d359a0441270121f8568e7fbb75ef977084a30e3471

          SHA512

          d88e3ea47f934412b2e41e1c49fee908a63c43ab395f910c8bd5cf780710e53686f36ffb88713b4e408c1ec8945b0bba47a509dd5289e3982fdf7662f0b42d6b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d70c9da479742d205718ab5a6ce6f5cb

          SHA1

          3ca791cc854583dd5170869a59f4bc4013000404

          SHA256

          75d284f3d3b4e7ebfa9cf38d0f449a8bdf3f6bc575b308219b79380a7551a555

          SHA512

          b57fb1389d68fdfde1800c6e87c9f7935be37a89e53230b85bdae8c935a6e7113b204de07a9e85c3318726b576e3ec40856401292885ce87a8139e3dd83fc8de

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          20727c561bd869b83cde5a174ff52c3f

          SHA1

          3e811700286878eb84678fc4c467a5b4fd3a62b1

          SHA256

          b652bdbd88e40f5fc3dbdb3a3c0617e03f9913319fec5f8890cfb8b11593d83b

          SHA512

          720022c253a40c66d08ae5a04aa0249fc5f9c4b1b0b3222d25093cfbfb0d4c6ff91fb4ca3867f9ff5755fcb120fcc6dbfd8c60cfc4885c950fce0b14cc98f269

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c3036196ed32f8220179a8753432c229

          SHA1

          66f71779527abb29ffb067bad4a7135895dfb592

          SHA256

          2d6487a5add1e965a00dd6dd1d946fcf588bddb50e730bc8079c57986093a755

          SHA512

          1bb73e8e7642833af3fe9731b2dcd6f94fa64643868d4e96631262eaa03b03cfcdc8d14de5e223039f43386314053c72e135245a1afb77413162dd69619c8dfa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          42b7885ba2514937678c47b18f3e9f8e

          SHA1

          2276b927e078b3c673486a33f474755b515bea23

          SHA256

          5dbff8c65642ff080f93b4e06ce53387bf8c40111bdf75f887aacb3d3d3f1b10

          SHA512

          e1d04c7e7172257312837b9a017f90f2ad2778088709abb9621b6f2ddd29a3b8c45a772078606551e1622ddae28b74391badf3c3c6058f797d7049dc2327b15f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

          Filesize

          392B

          MD5

          5d5af7bde015de911bd502bc0ee80927

          SHA1

          f2d35678a897c95debf350f687315cca48397826

          SHA256

          e85c74f251ee52469c69b03564d2824ec3a0883aec5627045bc3597bc9c1764d

          SHA512

          0111b324becb01a7d5f3d8715711ca1af0c74bb3bf0b1d0b7484f1d25b548ab2bd31fdec9ed42aaf63258291f34b5e2ad6c4a661726feabd08f39d5b374a9ba6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          61f2f16804b2363b391dec7e878a03c4

          SHA1

          ddd13f45aa63c1a4f5cb2369bc14f77c7c255f40

          SHA256

          52f4ff2472491b6aca1d23ff366cf97483d73b9559bbbd88575033d245fc9bd3

          SHA512

          0acccc1475d247ed51d7d714298a6db3b9252f5c6297ff6212a81b7ca32b5fab603279b3cb9d34de958f9a57a0478425b8720061bf6de0be54d359a304f3fa4d

        • C:\Users\Admin\AppData\Local\Temp\CabBA6A.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\TarBA6C.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

        • C:\Users\Admin\AppData\Local\Temp\TarBB9C.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b