Analysis

  • max time kernel
    144s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 05:07

General

  • Target

    8cfa35de6360824286b5554b422b5378_JaffaCakes118.html

  • Size

    70KB

  • MD5

    8cfa35de6360824286b5554b422b5378

  • SHA1

    61e5365f0988d00d5e49d0703fc38c4eea196eb3

  • SHA256

    acaefc7b2d5e55c3f009dc0775f7ed3170b6a0d7a70be6614311de1f590f91ee

  • SHA512

    0f78fb602456cd7fd3f1b9174f70639b8c9a6a7890e5ec36441065243153d6500d620f749151070e3fa94c352c3bf5e826fb0d01ddccd77bb4dfbd47481a748d

  • SSDEEP

    768:SAjqM02YpFPDI1HoCvrv75J5zP9nPsrU/SJ/9sNiQpc:SAj10NE1IKV7/SJ/9Z1

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8cfa35de6360824286b5554b422b5378_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1908
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1908 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2564

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          1bb9a38af095231e2b6ee5d5825b1746

          SHA1

          3d086ded224d91dcfb7d74a39e05fc2a3628d08c

          SHA256

          ad08442945df653aa712a7142d92b1180abe40badad29e6ef2beef35241dbcb5

          SHA512

          dcb8fc2a2bef31b188037d27097c3b2773d0b2b58fd24bb03d897be59b5a00e402c7abf2365034db09de1644c727bcef6be10b9c989528c91d94eb6285750058

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a138109f7dac4a67561b322108876ee5

          SHA1

          9ca934cf447652370d0cdd28812b4217117c6cad

          SHA256

          d8935f51fe2fe92090f37087ec038f45a4456b6bfbea3f51034ff737390e7ece

          SHA512

          301c8bc3b74d720fda9ce28478b5d64ffa989e872eebdce60104bb22d7ec3be1e6935a2befa36dd21e1c1ca857419a88fcc86513f752043a51af7fa91c7b5785

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8e82c3af2d2f3dcb26c4dfa3336aa754

          SHA1

          9d394b24fd073dff7b44444e7ba42c2a59d546a4

          SHA256

          78c434065e981869938187323ab68cfdadbd0c271777181481391e50dec90c21

          SHA512

          7d018eb390b9d78113e8c72b422ef0295d6ecebf94a44ec4ce442ad3c4e675f53f54ae94e9dacec64cb07186a267d04142b2d930b0768f389bfba040551d076e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9f2c07e38c5aa72f13b3f52fc116e5c2

          SHA1

          99b0ca162eec7beb323e865e43ec729d8a0664f8

          SHA256

          c353f804de0c43e0507ea6984ab644c31863084913b8cd3d5ce5d8be349b91a9

          SHA512

          a69a62cdc640f30b3efd81d6356edf5297235404f4010a1b2341b37138b6ba1922a1f966fe62603b4b9059c4894f864405637780b8e084929526be60b31320c7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7241f4a15768c8d6d54eda80bda74d35

          SHA1

          35633ab7d472fca66dea4e057631925ad3d3e151

          SHA256

          bfe62b3a4ed3d7bec93b7a90b1140cad2e3f82ec3580a9021921118c705f1557

          SHA512

          7242d7505e77d6e8dfee21b56b159ef1086d2395a5dbec96d6e29dd7ce8422b0f193e8c123fc21a00be1c13f08e751e548732c9213f8cfeb1aea3ffb8f814ac4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          55a26a36f0f926567446bf464f0403ec

          SHA1

          2d848b3fb18a10ff9e61eb1cce8122eefc2de3fb

          SHA256

          8c95f4d033d89603836d84248a0d3455f4a460c28e1c1d032d0c4b29c1a88149

          SHA512

          dc34a6bbb15e339d30228f68a051dfc37afb1b96ee3e4042e000160e0a970edb339f0695c5bc4571e8c1729d5bf7fe091d84e8f965438278c5d27f23e9ebfd69

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ce640a0b8921868ba6c18a6cac5aa3b1

          SHA1

          8c904ee9e5e82c088bcf092a421503dc98a9aaa0

          SHA256

          a47b3f0d78c68074384ac628cdfc606f434b10846702dd4551d8c37dd7e31ab4

          SHA512

          03f428a8e45b44d414d39845b47799d6cb1c602b5cea36b5abd5a93fd8aa9681994fe403edf9e8f7e38c0863c49397261fae12cf2523d7357588f260dfe39432

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          16d5464d108aed6bd9751382b7a27687

          SHA1

          a7c77832549f3bc8145c815c53b2d179ba9d0075

          SHA256

          5beeb059d8482f1075316366bba0f21badf61aa12b70dde59f4da9cdbac444ce

          SHA512

          f40e60cbae8e4afcda6abaddabc6da72746c1320dd07ea2d7f69e7a843440e1460dbda895e08d618570df7c8b5a512817f178a70751e436471f770d621a90504

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7f21b411438cb1e3f19c9d41fa7c8383

          SHA1

          3df0cbf7def4a3ad52506ba80491275644b33ec7

          SHA256

          6253d87ffb766514ccb478f596e750a8d902e7cc29bc9fbf735cb6e8b6406ff9

          SHA512

          0a47d04c21f2f6be7917f97c50c2f4ba3e7b85b222efd8fd25096511cb78a97ffd2635f2769f1063e0a49b1c57e3d2d800fdc03a411eec98cd2a4001c5c01c78

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f86e20d6fa05bb635c5486d5b16000b0

          SHA1

          4648101b3cac05c3e8b6902253d4b1dd4e9ce284

          SHA256

          ef93f002ac0986486d99932a6eb25679997922b271eb8072cb03c6a1637c37fa

          SHA512

          e74b4ca75af33320589a0a9fe80e99ae5cbae6e57b2140ad3c8095efed3081b7156f38d8a13be7be7bd0728859f3f33248391c7b52e591c3cd6ac8ab3d22e69a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e3a3fd85fb4c2321ae0a4cc29756935d

          SHA1

          c6041919b22c3922efd98fc6a4fefc985f095c2f

          SHA256

          25993387b5d30b0211cb7929784ab71bc2b9990b0fdcc3a1bf811d0ffe289f32

          SHA512

          2a649f4b959ca1b5a891676f7e9ecdea279a04af3aaa6229e29326498c2363edfebbf411bf7b7a43a7f9ccc6a8cce94fb8ac800fa5ec77e1d7c7702bc70c0ac6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0547acad989119132e838c9af7303a70

          SHA1

          be85a7528a98a4f3abb6c25ad5d68c98c5f04ec1

          SHA256

          ed3dd7ff7235c2f73eba8c3c1e06d45906f53551b9301f9816a186e3ae945da7

          SHA512

          9c210211860a3feb87d16331da0d251201312879de5e3a72aab2fad0508f84a6bbde77032e5b664f3957cf0cf0f9e6a32744425753dfe66df309d836448e50ad

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6c8b8602cb2eb1712af9a5949218ff11

          SHA1

          e83eff5eb65dba65cefc2e7f4ba77f2689055db2

          SHA256

          04d4c95527fe9dbafd0476c97adbf711e856503437fd671457a6a864703431b7

          SHA512

          9e7c696a1623c77b27c2859d6453a7bbf6d99beabbc2029a9446456273fbf7ac0940e24da8028f5aee8581df1b467b0cd8779d132eb03cc1c107a9070336d2f8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0f9bd2b960fbafcec4f0cf5e402aeb75

          SHA1

          732e8c8afe72fed56ba15a8af85c51fd0d42e847

          SHA256

          c1211cbacc7223b23b1eb833704cb2aaf3014af6ca0fad47eb84054d2dde6220

          SHA512

          2fd8381f79682a81d31ed201c011207f645b2d139b653c341c38e24caa50e48c3787d76aadaa97aee5e56604d7d7c95de9756146bef87e2680534ecf8ae0346a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          fa81e536b97bbee5589bdbaa76071eaf

          SHA1

          d19384b845c93f094a886d45f9dc45948bd7943e

          SHA256

          fec1469d4ea3238c1e5f644d3807dfd4430ea7adfbbda911f623979506704b44

          SHA512

          4556669d55f843fb0b8ee335c19c7df4c8e16cf1ca07e6c92a6578aadc61fca94d72d23dedc3c118fd050145ebb25ce70644c4e9852ae1e147b9627025859d64

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f5f01638a205f574710f69b69a2f4b14

          SHA1

          bb00fcd0265a2b2835b851d4af9a491d0642634c

          SHA256

          4a7f213839ae23ea1899893d084dfbcd21190627dd51401558bf961f5e65118e

          SHA512

          397aa91f0461d6a4ae22a603de8f30526f2c5da9b84a778d4510c1f118643a32311c7aa251b96114ecbd407a24f9bd128e694475232e03ac178bfaf5b99010be

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          960305820d5590fb21cb65a9ec13035b

          SHA1

          fcfe1771ca535d5b9b34292123a2cbf20fac4ccd

          SHA256

          9ce070647089d67408602eca93dc57036d70c8dfd6a4732167e01adc923e785a

          SHA512

          9c6800411081b5d1f2dd8bfa1fab1996d226e1670033a2ecc9ba952745e56dca92e6dca9ed4030218e91eca5dada8f815fecc040f0ac864c9cca1be827947c2d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e76d223a4a340e7f7cedeae6b23bb94d

          SHA1

          0d466ea3fc2f2c5d1b8f71e5fe3f37dd54b73be4

          SHA256

          371396291f285b16c000363d9201664a47f80f35c6ee98fde9e2e2f692de7889

          SHA512

          c011f684642a5d07bca57842461ded0a728a981c190b41a9379c28819e563ffe68a50827355f7219987766c766ce433effb2fa28cfc74c7a10d02a411569571d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          aee24182305847a4dc4d11a3bd7564f2

          SHA1

          5591ebb514029097072a88bf610417dab413e9ff

          SHA256

          7aaf22a2f81c73bd4c9d9878ba550055eb934e1525a709ec2d0ef44af65e34c3

          SHA512

          d8cb078877c8760e1482dcb54e8881f62de2e0940dd0a13a545dfaaeea33d66bb12cc5c58a043c2a294188371efa8cfc6bd9a75035341ec3f1f6d9ca3d4794da

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          aa2529299b58c35a89dd34ae90b47313

          SHA1

          c385aec5d5cff93f285583ac9fd30c27a7badee2

          SHA256

          cb46b6bd516466a3949a50796cd2b89cf2647476361c25aa4ca9412adb440409

          SHA512

          778cfc0acb1593e07ce9f6339e18004e8d0ef573609cd6ee5557370498eb15458d4e05842e87ea9fca66614a542ee077e89da064299834c71c936d12dd82c276

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MPR7YYBV\jquery-migrate.min[1].htm

          Filesize

          167B

          MD5

          0104c301c5e02bd6148b8703d19b3a73

          SHA1

          7436e0b4b1f8c222c38069890b75fa2baf9ca620

          SHA256

          446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f

          SHA512

          84427b656a6234a651a6d8285c103645b861a18a6c5af4abb5cb4f3beb5a4f0df4a74603a0896c7608790fbb886dc40508e92d5709f44dca05dd46c8316d15bf

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VIF0OH2A\domains[5].htm

          Filesize

          108KB

          MD5

          d8b7fbaede6d67ee6c1475f3d3e717f7

          SHA1

          e711a3585e31978b17ce4545ccaab227739ce6dd

          SHA256

          7970c14089a6bcb20b51602278f802f761856236c1b9a5d5816e3e1681f863ba

          SHA512

          ccfcff10154d4ae06cb9aa8a26d01806e39a280ecbb9207e835c65b9b36f9ff257e593ea024f95de4eea28560514e22b0a7d25f5dc2997001c827023916c07f7

        • C:\Users\Admin\AppData\Local\Temp\Cab16AE.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar178F.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b