Analysis

  • max time kernel
    143s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 06:45

General

  • Target

    8d3325a29549837787a05a871d975b4a_JaffaCakes118.html

  • Size

    218KB

  • MD5

    8d3325a29549837787a05a871d975b4a

  • SHA1

    01452f3302f93f24a74d794d31b07d2dc718d399

  • SHA256

    b92361782879415e1078464ce21014559eed761e19d68e009aa9444162ad7070

  • SHA512

    01ca135f0618a9791324369e4918c2f860c99fd14c200e6fc59c3efecdc0c459c46d381fc3643f7a92c30ed8dba5674137b6055e4a1551a890a16614949f96b3

  • SSDEEP

    3072:S7AYMQjR6VHyfkMY+BES09JXAnyrZalI+YQ:S739jRgSsMYod+X3oI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8d3325a29549837787a05a871d975b4a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2216
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2216 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2388

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fb102a85fc492a9e9395cfcbd47a4636

    SHA1

    428b3e49f6061298e0003be8b1b91a14da6f3b68

    SHA256

    dd260a2c7f9da548e00ef67fcd17d47e97c80c0d5d62e4a08ae27de959dbfc8e

    SHA512

    9f4a93a89932b8787f768c362003a8ae9711702fa3927bdd0acd4ea1325f2f9f69111ef5efcd76d3b55dd3aaba301ee238a496e26ff65044b0eefb662dda1ead

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c808a88ebeb33f4ff1a1ed40b6661de9

    SHA1

    048b07c3e263cdcdb08db86080ea946576f6d062

    SHA256

    2e31e367f425fa0e462a2e0e258cb0701d949717490e56a0da5c11300249bef6

    SHA512

    88d8930c8ebd672fb80133fbd2ed01b57cddfd8983a4fd5f0c93af94eb4641919790f57672d9632e20bf6433552b728ff386670ba283a39339b2833594f95c2d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b5a488acb762ab1acac67e8ad155f7d7

    SHA1

    eec5878672937ca31e37f03f42aee141872acb01

    SHA256

    61177e3f5107b964a890d438e6a6d721f56ab21064d573ee2a0813a7127d4a0a

    SHA512

    c5e0a51dca325b9ae59d4cfd81e7f08cf84e43225e04e3fd5642d4a18da1f2118b978d967eef9b9bf365a5c95ef5b46db1ab9857bf0e42a86d8880832970ae71

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3daeeb3ff42dd90dd59ab52815c3f7ee

    SHA1

    705a0f71fc10743339ba4e60196f9234112f1740

    SHA256

    e13fdf17f6eec03a482b8dea50d365cd5add2e4fa47642fffbd56f24297b79bf

    SHA512

    f2e52d28a6666c877f245d8367f4190cae978091c1c7a9166726960de3768c9c6d55b2481ddf3a8cce61106c7e107212823075810cf90348875f0bcea8852a87

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a317a0bb8f89b09a5ed5d455d841fc5e

    SHA1

    d3a67524bf01f0a4667a621ef039d0863f1dc13b

    SHA256

    0ed21b8d079aa8475046c7e2213f3cb5ed66fb27ac783ec07eefd73c2fd0cff1

    SHA512

    43ae1545c8cacb27c381aca992bedc74039fffcd53dd84b65ab61db2f5ed30be91dae0b91728d8f9f396ef5dbad67adb9a069445f4c89a8ceea6b5a81cd732ee

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b2ca35f86d73fa09752d2c5f3dfb33da

    SHA1

    c30ee5f740e1f5d4c0777c3b523a678cecdca5c4

    SHA256

    82f38353719e67e5bef8099f50815d0234909243bb00a94b63f8925a67bd6b76

    SHA512

    5e6c37d63975266631d24b1b929427ceaa1e5bf644c89130e09b81ba95e0b67fc65553062ef62c00d5d5a90085047d67345177cb10127f4975b1513aae46422e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e6b8b4345da488772e9eb78cec056fdc

    SHA1

    c7eddde3b4530fae8cf0b7467309c5bace775e08

    SHA256

    eded1b7ff5509006864a311fde649f9495783d697d86ee9d0065ab25b38c071a

    SHA512

    8355a53bdde0f3927a427d0405e5cb259fa917090dfffe53a2c40919697c74d6bf93ad3b188c3d3abfb1684187e5ad05adf84678e51bb6d9fda6b15ce4dd11ed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7cbdbc6c94b0acc37b8e1cad6529c16c

    SHA1

    6371cf94c041653f61ce9b6d8369cfb438ed6600

    SHA256

    8e15a6229fbdfbcaa35af990ea43f694c284dc947e48ed7ed5560f503c61cea7

    SHA512

    6922c76bf6fbb37cc42527c163a712544ac8bcf2e986c78a6bb3d5347f6712985f4945f5ca65cdd5ffbac6dbc105b0e76ec78bbb6247f7b91769f5c892904736

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2c8322c6e3b4ade2a5825ed886e1cd72

    SHA1

    2920b79f05600ca8d728b884a51fae35ef90dbd4

    SHA256

    f1a6cb12b95695e20c7431a21c168c5cbc6e507bdda8c4c912d2fcd2d47e7743

    SHA512

    aa8004ccc6e937702259c0294295d30947b0b2e49d3bdea432dce300bde9f0c783098ccffaf209ddc67c3dad5e021ec994bf6d3028beed30344a309d6ad81da6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f3bf8d9460c55149723f7a49455791ae

    SHA1

    e42f7078e00cf532670bbe5f22c17b08342e89ae

    SHA256

    8f5a2dcc905aa56ab9000c2ac8758bf75b65792875d0e74ffe3056404e32678a

    SHA512

    3446aacfbb758e4064d7303801dad4455d0163cd149f9938b882e93167396f0eedf6df684fe9bd64d54f02110351d306d6099c88ae093bac9384a41d68e28d44

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    85847e8eda0e5427030eae0281e35cf8

    SHA1

    769a5d0a6059a494c85e0b353664f7fd1127b0b0

    SHA256

    58c9aee43a5cfd444522f2aa0c28afe11cb903c0af6cd4ca1acc2828c22b7d3e

    SHA512

    2659287efd3e5e5f1544975b7b002b5e4282bbbc94eb3d864066f9ef9b24b632423139ceb3575b44cfe767eff05e885a486e59e44f355f7ca9583171b29e50e0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dcc912ad0387f14b86b1ebb40dc2414a

    SHA1

    7887ffe16f2da756fc920c63f431c23700aa0d3e

    SHA256

    7b603737429e3822caaaed7b68e5c1f1d18f6393e3897e79bd5447c74b193f30

    SHA512

    cc6e83d753ce00c9cb67402d64175b706d2f14442122887995d24f15db00be484e3543cd18c986616d9f970a5b9e0ff995c0e858a377f015231ba1315d263dda

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bcaebf1b7885af7b29db6692c1982099

    SHA1

    9ab1d4ccbfc4a627422527af23f05919b3f09566

    SHA256

    052689875733f4676c1d0d6a1bc5f9ff8bb90467a26df5ca1c4f5ede17e0a408

    SHA512

    3082dcdb20cea37b55964d7e4af6a5f00c25d4cf0a6cd95249e3c5949cb99246479ece6f4f0b72cb597640c8d11388f1734153e70eba6ce0b95dee607ab4c661

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f5c87d203adcea811b29ccb33045ac4f

    SHA1

    f12d53d7895327caad31067bea4c17f828ae7fbe

    SHA256

    e553382fd681cf8ca862c19be68181f69446411a827bab5b2d3bb466d8ab38e6

    SHA512

    c3aa9b1cee87b0d4e3b32cefd67d2bc605116c75f60b0aa131a159ed65efbf77fd4d7a7b1df9f6a8b1db43a1da00ef12129588e6cca1be7858d6cfd252d341aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    86c2359b00571f1cec63970ebcbd7eb2

    SHA1

    4c1ef340a6e939d7c9a5f11983c81608f1763b1e

    SHA256

    21225c0668012a8510eb657c9507414e889a8b6b59233db5ba2dfceb2dc3e0c3

    SHA512

    15d8fce755157ad743fcefaf66898369118a89619774d610714f046fc68ace0e5bb9e80f7391edd39a5367594dbd31b30419a3b476898111c6da4d5ae645f173

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f4e9630e4aeb6dcfa7fd083accb27975

    SHA1

    8491670f9aaafd693bdb57fcfd0698eba75cf801

    SHA256

    a0d2e826a69d5b3001b9440263459f7019af5487c918907982a98f052d7ab20c

    SHA512

    086c4317cf1acaf1467b4864e4d65873f667e111e3dfbe49c7500ad8ae11aafbfa613a1c8babbaadffcb3fcaa82fd563a8d65aa4d21cf0a35fec8f5d07300cc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6bcc9227d6209bd706e39550934fa466

    SHA1

    905aa7a85ff398ac459cd3b4acb3e01622f65d33

    SHA256

    0b3e044f1bba5ee2b885ea9788587cf70ff57390fd4eb85055ac069fad7d08de

    SHA512

    d795ce60eefe651b98ceee14b8d2dbab778b126deef75779f8be7c84696fc7fe5ec32078fba3e70589582213604de5fe98eb3c1665f1fc7677cc2b88d19d61f0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5dd5e909813bb602008436d3806350cc

    SHA1

    4622de58e915574c165712bc600397bbc17cec34

    SHA256

    d0c4579c9e0fa6881b13620b5d5c4202c268888beda0421fdcd992296d9ad935

    SHA512

    3cfaae0fee1a58d47bad9e89898a894cfe10327f3f015777948189d59b996d7c846b99728d1ac60cc513bcd2d69e1f96671f9061262bdcba2e1e61565f7cc59b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e45e7578526ee177fb16d59e19a78ab1

    SHA1

    d0f3f13629e7c6567d2f4307cd2e8fe64c74ab1f

    SHA256

    a2b02830f95d8806a9d389e5f7001fa94adfd4b0c5b5e3b558180b8949cdf472

    SHA512

    db37346e1cb727b04940e1fd539917aca0d71ee40c3f5295556e4690ea804c99551914d02b4d6db14581324474e46bf4e0ec3a6b23c021dce7c1ea81f7518059

  • C:\Users\Admin\AppData\Local\Temp\Cab1528.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Cab15F5.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar1619.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b