Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 17:20

General

  • Target

    8ed6bd65504a52c20c78ee85cffacf4f_JaffaCakes118.html

  • Size

    4KB

  • MD5

    8ed6bd65504a52c20c78ee85cffacf4f

  • SHA1

    8e0f52f6cf250210450c43945e46e00f0f281cf9

  • SHA256

    e1d0b1b29b37ee4d58906e012e02b4b4425f35076cd498618cba3ffb57316b26

  • SHA512

    4c9781975c4260b0fffad7f388cfbe6742e9a1f7a21505921706a58747468e24480f9b1677be093f486cf1f75f742fce45457d4bd6f0c193021dbe4cea532142

  • SSDEEP

    96:Pk7yJozTGknaEFHVKDZTBJl7sNjtXATIQFMA5e3fhrvDJUgwa71D5iJ8oqecegd:Pk7yY1aEFHVKtF37sNjtXATIQFM93pDL

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8ed6bd65504a52c20c78ee85cffacf4f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2104
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2104 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2624

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          db3a61a449353a301130f32d4bee2833

          SHA1

          6cf3bf9a722d766f75c8025bb9b1e1fa2cb4a3d9

          SHA256

          95626ad1bc37115977cff4cfc195018341a98946f1a5ea64cd5a8341a3a0c36b

          SHA512

          40f94d15e5e912efaaee7a39e29ef25e552471d2c4b2b7b7ae7bf4e2683585abb61ba17d08dbd3399cfa4ccbc1f3a5d48f498fda2fc1d5c3d90ddafa24941dda

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a51c5854dbb59cbd62c8386946eb416f

          SHA1

          32f46a40aca2511e6ab6a06aba74120dfb6409f8

          SHA256

          2c2b0398a0c3e1ca8478c71e5e0205e2e17f9fbd8213188c3d5bcc4f848b982e

          SHA512

          e5395d2d2723ed44f052c55335766c600e4b731e709b162c29f5d2449264c8ba85c15609fb1a43d2b4fb9f2f7e49964ffc74cf79871d97185f7bc1f2e441b87a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          374057fa1e2b16df151e825786c357b8

          SHA1

          a543e29ba1cc5b33ba5f0a6099faf8d5e57e242f

          SHA256

          35a52b0e755cb3ee4995ce28293f844b81be309d796504be3b9975ac3048fbfe

          SHA512

          483909bd748ef907d9b2602552657fb6deacee71c6464bd03c8e1973064c140792a7594b4ac705bf15c5d5af0af5fb91f7880587ab31489f2f93f76d19590cd8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a2eb5f58b11b7ce18f7fe41f4b4ec7d9

          SHA1

          0ad0ae002c68694241f961b976fd0a782b93957b

          SHA256

          c154c197c0f131338b17738a947a587ba68e57e2a704decabcac899f8e22b71a

          SHA512

          94f5b5f9b17fedcc2614229014ad200d3436be1c863edcbd6588bbd4049538f2e1439f4739ce3c7ceda7848cfc9efb5cd99789ed977d06dc61f7ea4e6337802c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          559d7377ea5c72fa3cc71bbe142252b0

          SHA1

          b27b5eef4c8e501aa6e5f40b6678ec3145a4fabc

          SHA256

          d9a73268ebe30c7fd66db80db0eb863426fcdc32e1d77565dc34f8d1fb774e0a

          SHA512

          7e6e8d3f1637947c3f9bcf90ffe26ca86621a360148a7eba7a2ed4943c97a2a0b2ec70da1e5c3e9a09e2865599a1140b9911e46c5e1db014c0bd625310ef53a1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          555f2d5c1cdc26e85d45bec1fb3ce497

          SHA1

          91728d4b8269df5292d4b3ac3eca3ee64452b901

          SHA256

          15f7dbad0fc5b209b84ddbddf608cdfa701bcb0bf1c76a102c47fe5fcb8df00b

          SHA512

          6ab54a6055f868dd6070d62b380f616bafb20c4964fa549fcd2c63ee84c7534c320830f98d4c16514b3e47ce445dffe1146a9865c2b5ff75dd73550ef7bd4f57

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c785ab0bc50b90c234aff65967abb30d

          SHA1

          92eec93d312979da67c6f7287f8c92672b242794

          SHA256

          5a2f18e909cfc53f6a22b2bf3f38159e10e65e49a33f2153ccc933c76a27a81b

          SHA512

          fd13908bd83db9c35ff8c0455af628e3991f145df97aa6ec7b8c0a21bb957df291e67b4a3ae91d6590b0c329bf1facd43a655c310643255ad1ea1187014b1585

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          eb26ce77e7ca99c99341a004d196364a

          SHA1

          795e53db37a4ef8106da1cdaf9b6e8a20cb8ff76

          SHA256

          529593b6eb37ef23f11a9d89e8626a582db65fcae906c45510b026c58cca3129

          SHA512

          03064904cab20b4c79ad21c931595cb95f879097ed79bb332a88aa646f7d2601f8dce24a87b53c21f153be2dcc095edf6447b155a66f6228360aac956089c04e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          80e2d23d83fff7519a087ff85e71f598

          SHA1

          b4ee0ff5755fa6f9e98f26ee6a81e6315572a2ad

          SHA256

          58af785beb803bef05697074487423fa61739ec8944088fdd89ce2d43decff63

          SHA512

          2c794c1e1cf11a42683a9e06035f97b626f4533ead27b78df432682d7b22a09576686e0205c720c639e0448dd8dc6dbcb9e8b03daac13d55bd10a2f886bede08

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          57dee18113ba8e89f7c95f1695d5ad96

          SHA1

          79352544c78d2fb53ca3fe94c250ca33c2787b3e

          SHA256

          77b4c2b479a8a59b087b77c6ca29d403919f0fdb7e9b9465bd626b11d4b07ec1

          SHA512

          2fd0060930ff2185e9a48f6738b812ed368eba420f47ccfca9b87fc2577ff64b009c4bf1a9c0cbcc2c9be0542a25ccefb252f3c4b0ada71e135c65a293a6b863

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4893960d7e46e21d3f3a6080668affad

          SHA1

          a7ff88b5bda7162530d86fe7b04d82008bf76489

          SHA256

          135e9df3fb04374e847a91c1d43529dc7ab112919016556f48a13405dd3fa19f

          SHA512

          530e21573260b0df320dfb800f519023bc6a544d6403f50db57aa1cd45c11a17a7b6343d72f56feff730497737c658bf814b990d4daf69981344f79ac6dfd3de

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d8b8ff27967eb97e0d70790fe5064865

          SHA1

          c882727a0ceb760396c49279ca42b639d89fa5d0

          SHA256

          3dc935b190cf1b82c04c31daae5d1904c83ff9beebf835f686428dff53f42352

          SHA512

          b684cd2a1335582719d00a8747bd5bd925fd0909563ca23329cf43712798e59e51b8130a422f9b77e12e157bbc3c8351271b633db42c0e442b3c8d827903c2e1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c1d079bbb5c458b63acd9947716440f1

          SHA1

          4c97dbd181e85311136f05dba43bb5bbb903e8ce

          SHA256

          33b812e4d1ac74a862372a7579e75450a4a473959a66f351433fece8784bd228

          SHA512

          37db6828864ab22296173b017054334a97b4297692468d719bc4184c3e57b44c365e2c464c575b7591061f0c791a7d056cc650b1dec30a70fe7bedbd67d5cbec

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          533c804c762983456f5d13ce1c035489

          SHA1

          7fcbc4ec3a7e8c2832400dd812ec15ae26d6b438

          SHA256

          d0def011cf094ba7d0171e96f7e47442602baa40e5b46c0273f445f0aec91b6a

          SHA512

          9c02928a01565e71acdda985521f5feafa5b15cf258578d21be433de23ae1780e79e08f201c3cb81e2d5d4e621b5fcd338a8e272765d33c992c721897beb12fd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f297e44dc4fc0a714db7d98e3db6e003

          SHA1

          55df5a0e37bb061afedf20eba9e26fa067ae09a7

          SHA256

          adc353d5cb7801cdedbc3b09505338eb72c87fb3bdbe9fb44b567320b48ab3f2

          SHA512

          dba5329ad614d78a534b997e6e1ff75fe19644086f258d36019156d21ff6085d3818e9b0e01bd0a434565eeb1076cd0b5fd6b8c3fada35cc47a84c9592596825

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7e70bb0eac5056d6e36dfddae2a3c621

          SHA1

          cac7375cbf58d72af1ffd05d454a0ec27a0729cb

          SHA256

          ec5fff2cc266d18b155af5930ef8d16b130b8890e6c64e9d50174f31b9433176

          SHA512

          4bc4400f7a133f7a0735fc0a84e688d1d541441b67977b76ec019aa8d03c986c55ee7c8a6c0673c9c7744ccb1d9cea16ac405ca234ba6d3bddb8c646ff26d97b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3495634bdf67da1ce1f888d6fa977250

          SHA1

          8c2dd34fc32828305c98854f12263f87d43dee5a

          SHA256

          bb72eb98f375bcaae1346b1681522a4cf4c9de5f851c21b596d34e0d6ee49fe1

          SHA512

          9156c0b22454da25f0b8865c2cd175c3c1b4c6223ce2c05118f897318ca4397c4bba9f1018b035e7a4721d495d4ce321d5fcc45b9ad5b72f70b2200a4ced46d1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          92327a913b4daa40d8f018e086c4a275

          SHA1

          7464223fe666ee16311f623f9336599226225bed

          SHA256

          7cd4647030c90f91d3973e32fde7bd92da18cfeba2d4ce7889979639b5b13dfd

          SHA512

          f08b3c1a857295a1b7faed9cf9fc6e4b86a57d8b75198008f9e01a712a9dda78238f1723e558b636169b641f978fea7b1d09b8126b09ea38335fe71de021f8a5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2f5f63d03433d12f52f0bc8bdc3a6863

          SHA1

          fc300ad5b26aec27ccd43c03e2d7e744095a3845

          SHA256

          8ec894b51c4598cc3e8e5c295a61038fd928fbe7b92e2a19a2207c0a26755ae6

          SHA512

          0b032e40b6a09530c65841d669eacdd63fcfc260150c48b3935b107349a2cd4ef77e82f74e0a1b53c73c876f7ee118da5312dd8d302f5774c5bc9d8389bb8cdb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ca66cbb4b620d6ddc897ed241c7f77b5

          SHA1

          3515225adaaba5d50e18bdc7729cecb69723de6d

          SHA256

          b96ab3fc70c8fb714a30b89084dcd3dd25528195c596255f9a287b9b8166a57c

          SHA512

          687c47ce7df4e1faaaf0d82d161f8a8078c902cf0b25acae746d6cff4e142f50df5df71dcc6416a64c580d32c563acae94e80b1de664f8a1bca012c971ba2970

        • C:\Users\Admin\AppData\Local\Temp\Cab37E5.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar38C6.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b