Analysis

  • max time kernel
    136s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    02-06-2024 12:09

General

  • Target

    8e07a83a11d84fab3114adb31dd3921c_JaffaCakes118.html

  • Size

    214KB

  • MD5

    8e07a83a11d84fab3114adb31dd3921c

  • SHA1

    c55fbe1f71f97e30ffb53bd6439400ec25b7ebe4

  • SHA256

    a2e87d193a21858ecddf7c7c64dc62fcdedbab4ab303e153d186e318788bff98

  • SHA512

    ca1ae8288a14db8902c2baae1865d5f902000759c0aceaf7293893ba0f9a57310473b5a9e851b7b8b4c5e9104926390c0642de2b4bef4e3942b5761286320766

  • SSDEEP

    3072:wrhB9CyHxX7Be7iAvtLPbAwuBNKifXTJ2:oz9VxLY7iAVLTBQJl2

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8e07a83a11d84fab3114adb31dd3921c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1804
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1804 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2752

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c3d4392132cfa20c61d3e6b7ba5a52b3

    SHA1

    b7cf6c5462cb6fb49d499df2ed56f5531c81fff8

    SHA256

    fe97dd6a309264d61584f01e33ba3e97a6bcabf0626714fc18d860c1ea6dee1c

    SHA512

    891f4f52160b9d758db148cd313219357054e7ff60223ab5267eeeec8a7b6f0ae9b9a978a55817a5c14a0f08feb787587540e687519439864aa7d51e00011042

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4b214975b2886caed3407a8e2bc589b9

    SHA1

    554f11908a069cac42dcdd160ebae534232bf80b

    SHA256

    262735e7e53c0f0fb88f4571156e02e8dfcb6f8f911ea9693138bbdcf357c4d6

    SHA512

    29d431a84b0f857a30600aca4ec22c66ac84126e6034db264850c2a710ed776b1e2a3af1d21b1a1984211c3fcb7a6fb2c7ffc4d2a5c73ede8b071a79ccbd463b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ea2a648d3408f2c287f8e0d7cdb3ef99

    SHA1

    a2a5afc6a4589c21ebe0e2fc06ad93e28ed1f0e6

    SHA256

    6f4dfd13f939e5def26108ffe143b964f7260d46f47def5de942e16ce4f935d8

    SHA512

    a7d0c14d9369e7826659f4c20839f6f4d264e6271e1bf63162fa2279cf535ce3515690bdc3c361dad7f1bab8495771f4ac409c3484c74cf9835a98ae25553eb5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d3722c497e3d38973561f4d146057317

    SHA1

    c44af1bb0f6e71b03ccdf90fbcf711feab0aaf5a

    SHA256

    18d88fd9d17da61c67be597a9b9bb3504e67da5b107e45f0c3886502c323a7d6

    SHA512

    aeeba13059c27a83ff646c1f7827da52836bc4596b55fa5108a2794f4059fc868cfc38ea92e6be269c4d4d1a00b191da0a995b23ff337b61d37a1db77e5d5400

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4e257a97a4bdc3b10250b4a6773583d4

    SHA1

    a7683785bc6191b5e248de9afeae899f6974e4f1

    SHA256

    2bfb9c348630d75fddd8e35f79e894a280cc26bef1c9ddd1dd8f429863427c07

    SHA512

    fecaa1e6f3c2f76dbdd956ab587fa778113b5924f0677a681a6bf689a87dfcbf1443d30455147b70f1674d2661317329b569e1c9ce39bb041721c3f1860edbdb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    007a405f9cf6838b0b8d5008498ee10f

    SHA1

    3bb186705c924d6c0d2aa7cc15d2f6861822e503

    SHA256

    620e18be9db2f3eeb7b2b5ada546b5f69ef9d311e9c79365def90195e52e79e3

    SHA512

    248c210bd98e849c3be72efc3cab3aee9622506957e75a89b0e73f6bef399c7a0847287293635fb9b6589f7085ea915139cf285a8179136467d53b893da3c29a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    582110101ae2d47f2ca1ce71c6dd996a

    SHA1

    bbad7fd2665c0960cdceb6dc285c6891cf52f2c1

    SHA256

    082bef2d443eceab5369a1769cdfd3d4d7c286dedbcd8774f16137da0f8dc97a

    SHA512

    565f6dc7b4756bd5e7b2c80c77ec56b1ec3f29d81cae2d3e1f65833a614be098031e5f25f3a7df61c76f7e1c07658862d5fa456881f137509bd1d0bfb6f31896

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e086fc5e33b4dee705eea079a6116589

    SHA1

    0ae85d4ed2c57328aed2bd73723a72ae42d2ae51

    SHA256

    8890a3ccd5f237dcb779e9fab3f3f827a3587510e34257bfefb9183510c9dff7

    SHA512

    e459e4d16980b9e6723222c3d8777a1a9f6d9434cf5c40961e65cb207de979328a6343f34c00edf2bcaac75c6023255f2ed3e9a0b7c11070a343d3acf22dcbd0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e6464c006d07dfb0cb0aed6959203c1a

    SHA1

    572e87dfee39cca25d4fbf9f8b98a0e3d89dd9b4

    SHA256

    4486605da3c32a16ac945316fffa6219c37d8449f45220c52603f8c8f85db5b8

    SHA512

    ac1369bbc17127d279fe0d773e18b68018d62e2678d0f7be7969c80c5a345549af417b9f318a01d8ad396edf40d59c0503bf91df4ebbf2fd22210fae2d13e0c5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8128633b9c2f687b46feb9da7c300312

    SHA1

    b58a2c0522c0a4e14bed095157b542116f470087

    SHA256

    0eec78f50071b8b92de38676763ab87bca41014e705e9ac85f8bc2f700f6aef9

    SHA512

    84f7208dd0b68bd19f0b9733a4656792d26c33ff4162ddc5aba5f89f88faea165dcc2d39d9dcc9f9045b67d06e8040253d9f0a3c618e802554618c19df40ca33

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c34f682f082381b6cf778ae1b10c9335

    SHA1

    badf49e9c14049acc7d34fd75ca3673ab512b6f4

    SHA256

    04997ff1dcd25f111df3c16f99e87986f5eadd7fa072a0c9d42dffe1dd49f60a

    SHA512

    027edcc511d2518b183f43f21ab07a0ade505ced4168bf3f4e0b44dbd3a0440adc5ef61884bad69477ef7c0218c578c4691c45e2ffa9f376b4b883b9b55d35cd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e87b0f3b1ec882b4b8e76a5542599bfa

    SHA1

    f80b95ffb380de32df1e960b5bb21c23df95e0a7

    SHA256

    c3b937c46fc1174c54a4d75a02df8e07971e06e2b00b0f217fe1acb2c30f0635

    SHA512

    7db2e64ab3f2a91e09d3e1ea018b726ef04fc75c6ca1399b62cea9f512d0689a8644535c3c7668e02a0ee56405cda173558ba6343233e32b4c1f40141286c4f5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d15ec75632a3268ee4f54204d183f1f2

    SHA1

    ebf767b31296862d548322ab8399919e677d75d6

    SHA256

    99ed49f9147e7ff5ff198132599c5eb7c94ab0d69f6318681c3201ef95890105

    SHA512

    dd1a63f77217c99cf81e5c49421fd2cc78deef2101568029f48b47c6090793ad3cd48ff457bff94c3a7bbba30510539b49d59fdfba10e5d0c8a8bc62115c507d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b1f3c1b70afd430366cc435b43ca0fc9

    SHA1

    5defdc38974e022714fd4bdd7f351c8f1e02d8e9

    SHA256

    b7f4d1f4a07d811ee1b190cca5a3e0c4f7f02ef74f678c678648557d91a14454

    SHA512

    78020539f1266cd979aac04dc0ed7e298fd8ecef7a78ef59845de3ea7afda715755da7ef78169f843b3c4c8159adadd52c747935f1e9458b8d9e82af6a72bc20

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    57a8705584e2e9cea323c4aba8a48724

    SHA1

    aea164321798b335dbb2b349bea68703f9ba4aa8

    SHA256

    8dbc7fe5febf7ea15d7dcaeb9e5641b9a4a22c2ebf792bb939f3f5cc286adf87

    SHA512

    3bd1950ca175d4eea1f206ef0433b31b71219a5e5fd8c72561e8b06b9547e17dd93caf4ec61c39e3f8376a9d7dabb42b6a6ac6953b0f60b2fd942110c9d6bd4f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ca74b7da9e9e3fc2656f75a45400706e

    SHA1

    a56adfb2d9a6ddd1e16aff5bc36debbf83d97ade

    SHA256

    edb1cb9a6db36a5b0f6dc57cd7dcdac88edcd508608c5f2edc7e11f301cd5945

    SHA512

    7c4f7c6987f570dd72fedd173c2b2183abe1ed18f02cae75c256b363a27560d9d7c146cfcab15ae3a703fd93296bfa581d61c2070e71401cd39643647d08a6fe

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cdc651a83b88a9f3af6c326c3e920c6f

    SHA1

    dc8775d2eb03199eecf5150e3ac7cf1269e945b2

    SHA256

    eeeb04387182cf07449d2d6a8c48a6ddea78b7aa86dd723488e5d3445651d8e7

    SHA512

    ab57a137a6eb5bf9b70b635340d717bf8289963b4b49841fd63fec5496d0160ed0792cbc759f97cbca88bec26b8123bffddf4cddb3c2872f1560177f652ac1a8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dd2dddfb89302be7ecff4da9d0760213

    SHA1

    48e430e1d6279caec4c95e2a91684567925d44bc

    SHA256

    123825f73338ff28e31f935c97f0218cf74595fd689388e6e93afdae502866b1

    SHA512

    0c4c2e4884c32eccd48ecc09fbe3d9bc00e7d5ad0476441ce386dd3dd44b36a2a6c7eb309337a5d8a6e24cf3f80dd1c00ae8cf2555c7dfb22112a99098c5dc36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    431cecc186cbbca14ed916d4a3649069

    SHA1

    5bb6271e12f55ca6888901ce1679dd5e5f9b06a8

    SHA256

    94e541a60b7bcaba6cada7cc60209c52860b0e9d421f8b8ed7242722cd51b7e4

    SHA512

    d4a3590162e66d31d4638fbfb47085f02cc1f164ee131d6454c8ed0401fbd18bdf137e981174d6979c406ee20bb87b62f181e29a668ebb75903ffae52a446419

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    24f22e36efc8cfefcfe2fbea047e25a9

    SHA1

    37e1efbb16388239310db4b5abb92f19fa3ddabb

    SHA256

    3679061c1bbcda8d92548f700829096e412d9114659a5d1ac906f809eceb9191

    SHA512

    88a6fdcab8c920c47ba40c286b45217f0cc80bd11a7dab57a5f6edbbd44d06d1ce36c5f1dab7aedc27abe466c99554bb6b02d6be27539b115b151f984a036ac9

  • C:\Users\Admin\AppData\Local\Temp\Cab944.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\TarA37.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b