Analysis

  • max time kernel
    138s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03-06-2024 01:02

General

  • Target

    900b4337442470deac4a02a3d0ecdfb1_JaffaCakes118.html

  • Size

    139KB

  • MD5

    900b4337442470deac4a02a3d0ecdfb1

  • SHA1

    3cc8749fa3c1f7a58589bf85e5543dd825f06c45

  • SHA256

    d5a9209bc859d3adee54f7b151760b513a7c9550f9dba3937309553fc3c70f2a

  • SHA512

    2947e4ecc96ece760b6249402d0f6ef07f2a57905c9a78ea34b154f9bc4df7ad51a87b58d005b9bc12e79174df91adb8c3706e5608b6ae245f66d958d99e47be

  • SSDEEP

    1536:SSN7f/7qlZPyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBw:SSZ/7EPyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\900b4337442470deac4a02a3d0ecdfb1_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2876
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2876 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2564

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    45b400bece9f45b79865bc41ff4615e3

    SHA1

    863a3dca02e2d53befc3edc35cc171abe36e3e93

    SHA256

    3d92e7a78fecfba919daccb67885e5100ad54bcfa977cd50108fea01b7104780

    SHA512

    a47b80298dc0155083e660e4d9363f74bbdd3808c0744500befe0a3d418cd3676238a02f20071886b5d5032c749d571e6fd2c828c8712ff7bad90c8c6c276bce

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    16f9ace794cb20c806b4b1ece60525bc

    SHA1

    1fd46be9d95f3b69e2b7bcd8604e142de44abc27

    SHA256

    1809ac82dfea677a767f0b32a8ab72ebbdddba6cc3f501e5ad100c3332a1031f

    SHA512

    082c31cd8f520e47dc62021ef9d3644984acb4657b673040475efb1f869fb619d0e3db4b5b088229b6a8906ffeb06096e2f6deb9d70cfca000f2efd4ba3b6dc4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d94147b6c59d9bdd4e5a012ceda0ab5e

    SHA1

    75418d539a2e4ca37afbcba6140d592ff7978699

    SHA256

    77514f1a94aa1dcc0841e7341597b26bbfc460654aa5ea16429fa9c033b6461b

    SHA512

    0539cdfcf7b826d116cd9004ea7d3dc5e978c368fc193e73c8337241d06969c93834fca46e9a5aedf493a1321bcb9b22f1a1697c636eee552428b2b2bdf5a502

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    438e55b47a9bf0e7df697647ca6e5082

    SHA1

    d92bdb2de5694fdc75d6570980cb37c9303376d0

    SHA256

    36927fc27a22800532ee3ed4b4817a04fd32f065318ae52383f94e702cd3f174

    SHA512

    ba1e9bd6062f3f35e0370c0ec3a1e83d9e2d9d53cf45a52e1fe9d42e173651348e0c66653676c0aa9156408c0130579ef906d61ff449dfbc33462b63b806bba2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    439ee77b3f8d0aa6ee0cb94ad7a113b3

    SHA1

    8a8dc20f5c767fc511426100173c96266b0f1cf0

    SHA256

    be10e7f1f0ae02f41e122eeffdacd752c247e9798b1330a03c6af97999b36217

    SHA512

    febde7d21ea632e88326b36da640ec49c2b0cc270fc1a95dc6060251ed8edfa2f760e4da72c66b7c776392f2aa03bd1099ffa589405acb978c5e0a39886d672a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    231ac3b2f9459b6d1421e29f44212378

    SHA1

    75b77a020cdba6d5cf0cb56ef115dc8433b06b35

    SHA256

    3441b5820cf8d7bf1787fe2cdbe07b20f7484311c0626ab88abca47236f045eb

    SHA512

    cf89bc8c5bbe0533fdacad62a250129dd5801e4ff3cbd0151f635f172761df2de9d60ede6710155f9c638b68fe7a2c74c3ee80243158b5332eb2606a8e5e86e2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    33f7a63ff68266ec909df9749e415291

    SHA1

    956bd7e70ecc4dd6bf5cc47e647e4b280004c9d7

    SHA256

    690e8dbd5ab95e57e815480ed91612b1b2682acda2378297da7b23f5a54684e1

    SHA512

    0bde2b4d8c1aba972e261da229b22a3ddafc88627507f6493508afd1efeaa3cc89758f00fd170c00d362e59ba1b43ce4d4d0316872697b6e528fc10a2ba4a44e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c83c1c8ec67c22de754ab57c0cb6a990

    SHA1

    cc91551695f876659aaa2959a08ab946a15faafd

    SHA256

    399174ec12f90a074df21e41acd43f75cc943fd0035990a237fcf403428da3f0

    SHA512

    55751aa54c9bee21a23c0b28211072a7772bad3f3d5e8bc83b59f6b441863c0422f35cc9405856a0a5a16a5bc6ad83406669978f7d792f18fc8b08988bc8b9b3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d2e1fb9f4ffb15eeb558339ba0ce9301

    SHA1

    bd5ea70f4e0b9221d97fb1ce15ff4a6046852edd

    SHA256

    b03057321ccd6eedd446604fef628ee9d7a5e9705645943da320dfd338c25eeb

    SHA512

    75bfd058d9ee6534c7ab69989c42fc22c4cb5dd3a75c17b6cec73198dec08f9e4071cf33f288720920b1c2427cdbd9686eb0e36f5b304851f6acfbd493d3b9a2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a2bdd38733d4962cc8ef567097ee3d44

    SHA1

    f8934083e7317b14a8c63f2d411aef6c8829837c

    SHA256

    95708a3c571b214e5f6d1d0755247ba44f0bbbcab60f897feb6337edfd5e21e8

    SHA512

    56663c742c0841e5d32ef6d7f2a0f95b1e816108325578038f2d1020cedc8fda7902d9c290dc4b29f3a095730fd3606fd74edcf9477eabb541c0cd7f116c51b1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    44d61efbe12936fe63d8bdda826cc2ed

    SHA1

    25b6969d77ce8710da6d8110214ffa3c175e90c7

    SHA256

    d7be0cd83dc7ef4beda12e660e1ba0ed08bf861198b1747e00c53567f8033b77

    SHA512

    ec342a0c2d82e40fb5e796b4c7248de6565820cd9891089ef3ca768c54afda11bbc60e8f90c4b9602194cb4f10f5c062d96aae2740d6afbbd6b28b1f5a1d24e8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b8a9e60ce9c2d7c9111fccdf5554e721

    SHA1

    a625e0fb79b46a1ee22ddae41616f3ac051f8635

    SHA256

    8b86ca9fd485c8bb685b31bf4131ec9158f3453c2ac730e8854520635024d003

    SHA512

    cdb8da42b29d4d0fd12dd26fb94e51e4574c08f85591ef460628fff9500157ec17230af47d530156938bd81bcbe38ae9fc00d7ddb9971a42a54142ef19fdff66

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b2cb7b7468107ea3e9dfb7747ee93bbd

    SHA1

    796fd381ce1d936de27ecb91d6cbb926f88a013a

    SHA256

    8e8de225e54b2326d9b38ad68fade75758a3687e41f42a567bd190cbf7030938

    SHA512

    99571c051faeef78125cc38ada31515e805b716e8aae80a0ab324a52806cdd9fac3d2135f336eef07f4a1445fb806a1071ba002fd2f487d540fa6169b0c9b741

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    62e208b9fee6611eb39765c97199fdff

    SHA1

    760dfb863966b02f9e33610ae8a22b131e3c1d5a

    SHA256

    227be4368b3b8fad70867914ef847dc926faa29c9800f1ab54a09faea29cce6a

    SHA512

    b07e5cef45c65024ae605f7a7b705a2178e58d550a1babb3b2452c545e051964b7ba029fb23c9b9e2685d89cedf0ff383640cbff6ce9f7750f0ce329b01f69e2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7f0f58ce65104e6700ba8179f103b860

    SHA1

    cc289e38aef9d8e7e4b611cc37bdb9f9f1c96f3e

    SHA256

    a51812c0294cd3434bf5339634433eedc73eacc6934686ed8650a35effa43d9d

    SHA512

    72c580e4c3ec2053b322cc31ce9c738dcd7649203c99aeb39a75a5882944bd28624b07c387f4b8ae593b7d74ba524d89a0043807b2b52708a49aa19f7d395c65

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fb35b8dea3005ad8a34795b081f6dcc5

    SHA1

    6bef33f115652577389fc620d8a47eb291ab0562

    SHA256

    30dd46921badc6c1c484706ab0d299d791daacc7be7e13a2def3074ddcca48ea

    SHA512

    46d70b89a0847910e70f93f88d90c7e57521a15e8042624d0fb3bbbdb4361aa245509243b60b1e0c10ebeb4e6342b3343665803104814e7344992719b7a40176

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5af50d9104bd318349f278580cb2e61c

    SHA1

    281dc8b7c169acd7ec74cc6122162ff3cd901fbf

    SHA256

    95d50551803e37a3ea1dd03075bfc77f477536736a2b739cc277595767c3d756

    SHA512

    c4f68190202f643a31ec8aaaffa8e2699ea95963a77f82c6efb4a06b226a91afb2a0b474ad2f2a6658d4ce8edcb5b0598a4bc48d3bfdadafa8166f8687cb0094

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a4a12bd813be0c652f66d75be11064d7

    SHA1

    1744c3b202633c70843c0a2a4f60dad218a5ffd5

    SHA256

    7705953fd12e764ed415b759786d36e0e84305dcf03f9c88f573f7964bf593c8

    SHA512

    ac7d78f6e0de13617d4112ca5f86d9e35c88adc09bfe9f094216263b424587d311e4dc9b0787b59a4821e64ddb9a1c4f43ac7d7a1a85b7d3161abda0fe3fc872

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    74f69123a9e69b045ef08742fb5fbfac

    SHA1

    628a6800e73ac03fc1692b396c5abb83f8b74a9f

    SHA256

    169b520a8a157557961fa32983d8beceb2085ec2c67b8cfe36f19cc1f7071603

    SHA512

    01ae985b63e03ac0db19f43f2e49eb5f96f441fb2f9e0227b44b4fc5ba3210a147e8a6889ee3ec855f21df88ec67c0c2f24700c31cfc0bdba27c123cacb40401

  • C:\Users\Admin\AppData\Local\Temp\Cab9C8D.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar9DAF.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b