Analysis

  • max time kernel
    150s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 07:59

General

  • Target

    9108bc36420068f5dbec6f7890037fee_JaffaCakes118.html

  • Size

    32KB

  • MD5

    9108bc36420068f5dbec6f7890037fee

  • SHA1

    c1833238b83082fdf897432d87e58dbfec61a891

  • SHA256

    cdab1908facf9207bd45c359c701f731f4d8d7fe869ac0a5a77e9bc4a7ded870

  • SHA512

    9399a4a0132014d82ee5aee126b6c53926e6f33a605d4085279af165cce2f4e11aea84d50cf87d56a94915195ba51aa6c1a1192104f6e00ad3cd3d072aa69ac3

  • SSDEEP

    384:EFnMQ+oXXCBni3oF/TjVii+zA+5D/BiA3dU9NKgwllZ5FiVt1t6SmOF/+JoTKwml:hQ+Wai4F/TjVODy9YgGMTbewmwaEzPjy

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\9108bc36420068f5dbec6f7890037fee_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:912
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:912 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3060

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    83fb5a3cf7ea60d27d248f519e5a7dce

    SHA1

    047b53f5e3b064914c2344a6d8b6c0c35ac8ec50

    SHA256

    c3c9636fbe54b3d4069ec785153ee300408f26a45263f4276e8fa0ea7aa658e3

    SHA512

    3a16cbf35ddc7a9158e790c17d7679b6c5bd278449e29b0567238f9dbbbd7582dd7f3b5593ed10edff0d57cfd3e1c1c612751a1c660e806577030cbbfa6f2fec

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    83120261a427523f933cf9e385bb8788

    SHA1

    69b5e1cd27d8389834ed383e4a0236cc0f3e6df1

    SHA256

    d7ceb582c107b1589d0343859fbf8b7023d527ec2ba60a2bcef42c2d73d8f522

    SHA512

    a49b787fadf8b1f867fbbe958cd704b10197d7c422b2f9a2a661be8d8262e63faa7121ff89d58dcbb2056db6bfac174fa47a96853bdea7d7270460678e9d440a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d90d162ed06fbc5a6435db72b6c935c7

    SHA1

    2ef27e6e401e15bf9203ad430969190a58d4d6c9

    SHA256

    1c69faf2c9c0fc2fcf47d150447d7bb3d7f8361bf11be423b13b29c17fa4ee15

    SHA512

    24e3a516c2e06c3eb6dbbe87e17dac5320a4f0b97757e2deb7d690261b1f0711407df6fd385e0a68934f6729eaf6ef0ff56a071331c9efbac011f04dc775285a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4e5df314f78928601a61e8b3f125605f

    SHA1

    3781bdfabea7265ff7dff4d521877651c1a6901d

    SHA256

    d37c6239fa3b7419b8aa5bdbe9c12486899b8142ca0d303a392bef39fc06f8a9

    SHA512

    7616c86507f58ab9867f85e4d35ed7d0d3dec446581b9237c0efa55812c02c05958a97ee46fb0eb9396c4d5dd11804841f1e6f49c135bb13b0b04a5ca24d49e6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    075bd86439b1bfd396cd9bcff0a8e48b

    SHA1

    4785766e9f8c8fab4ad17e0d3c61181e9dbc4d7d

    SHA256

    0b1d228b78a6c8015849db55426928fe79bdbf1ca262d928fa435d52bef3af18

    SHA512

    30d1a77a832e13c6516014281a12e8b8d66fdc27c7b60e75dcae595825755bd6d0ecf1bc2cb0761f2457c13d53fa56fd0d70247d9b6d47a4969a6ada6e1b0239

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f829a3ef58da73a3d9abd1e8d7896f6b

    SHA1

    b34191542a32bc82123148e1519a18ddd0278242

    SHA256

    ffb8c57385914bd644fcb80577c8288e6b31d1674630fcf33403c437ca044399

    SHA512

    4e0762becbdc83501aacc6c7819d423fa6d55af4170ff94d05895ef8e90aac706b6377b67ce14e6db69269ac5955970eebf1d6d577c34aa4f87cdee56e9553d7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b16f9cf43c6f3f9ebeb687a3f83af3a6

    SHA1

    8bb5f2bea08b39e9c4bcd7f29cb456ab8740c86a

    SHA256

    aba983bceea188915d38cff75cce4e2854706b752820618f9772f128bca26b21

    SHA512

    5e97c11f1c6cce870aa1a5aeb345539bee851c5fa587051e9cc8f59b2c93df3d385d087f511c0df35b8a06ea09fc29a082ed3fc0f335cb3d018f11d8b971f005

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a42336a1fab72a842519464fdf793016

    SHA1

    c89986e04e3eb9c11edc57f59420a509d3da1122

    SHA256

    fc78042a9c8fed41c52c9ee2a00b4d0957bf59e59abc57d38d3c71e0bbb309f6

    SHA512

    7b33d538ea860fc8ce5543cea83bf047bbe5f4d6d12e7691930007bf97291aa9b71920d4391a0cc06ab6bfd20377f6eeee2de78f1d52602190627aaa6e45dcbc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dabad666bab9852a2ddbfb93e6321602

    SHA1

    43cbeeccd71aa4cfb26f872d8534cf7cc202a763

    SHA256

    94093723f836eba36241b2db609533901a90116f05f313ce193b9529cb563bf2

    SHA512

    805491c6e61518c9bd40312f84a90224a62fdaf2a36cab28668ae816647b56d47bbd0ca2e46fe75dfee1cf89ef1ba382066fe0bce4d62058c2212379b0b02971

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2cad06aa773d58477dcdb18bd3d047bd

    SHA1

    1b31e20b9d7d9d1a65e7c47da28cb30ec5a1efbf

    SHA256

    57fa7d70605e7179902ad70a973dfb74158d62616cc70111ab89adfb50a7f42a

    SHA512

    96dea26eb627d33e04ac5957d197f653c11a1216314791230b1ab69652e538c55ed5157d4113af3f893d2d3ff8fe4d0f5905cc986ef859a29cfc8bd5e2597d01

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0fea80e06542ee82fc99625893752645

    SHA1

    8d51e892e238120329f7913ea8bdde39d3505c31

    SHA256

    b5caffd641c24cb2b9322692b60127092856b3571f7c9f316a7011b8d1f86652

    SHA512

    b6ffc52158a4c4d935fd797c604201ada9c6695215aab77f4c4b5b08d89c3c5bf7673cb311d670d073f5dc9b5c0c3961cb302666a86f41dc31c5eb927127c76b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0d65c4757089971b6fa5097d604618ad

    SHA1

    5b1eaa702ee5ccbc595a374c96bae66a8ae12b11

    SHA256

    4d08bee544781bfad2e4101405ad262ccf72f0d933f31f36d306c88e82b0a459

    SHA512

    0fc7e9216332eba894284394e3418918c0bea8e62deec839a07bd19085207e5c7a65652df87e1afa7b7cd90f62ab18f82748cc7751f5aa63aa4048a7ede514f9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b72a1f732ca5e42689ab592c51d111aa

    SHA1

    be931514e9b0460daf5260864fa8c299a65cda9a

    SHA256

    b7bda509f2b4b98ed8213fefacdccd709eb50a552d487c607b273765832db2ff

    SHA512

    094fb75e537f2f959b31ab17802cb805c73479a53d791425c00f68f106ed62a5fcfaab744d366a2558cfbb06fbc1ded1fbeea2fc18229b0ddb7768bcadad138a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    89116f5eb8e5f9f9aa9df80535ab402d

    SHA1

    c45b98b01037ee918058c65a8edc06fb2fcab78d

    SHA256

    33361e068760fdb4ff7e89b1196c5c0c31ae51be6f07b754a6e02cf92be971ba

    SHA512

    fbdf3ecfb42f26663e6fa9923a616f6eb9127fda5bad4c06f749d9d9f15824af36d6a05a23bc6b1b190d36cf76af206712fd14a8f4d95324f6db4af2e0f4663c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    70bd2f5bb93972e62b19a0eae19131be

    SHA1

    9884e332a328eb944a222726798bfb0bfe287073

    SHA256

    8b84607c9b422750cf58014727e71ae9a263c0cfc1ccb456769d57cf722622b5

    SHA512

    dc325dddab0d7877556bbda38f27eec432437a6b20e701b4dceed14c699e8f693ec4bc37fd9289468291ba728335eb0f49a198a94323bca66888cd7bacb2eca5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    935c6af343ebdc0168150eccc8809a2b

    SHA1

    0a05e6fde1d8165b83f34b61be31b47cf82008c3

    SHA256

    c14c619c043318607f6fe6e43cf6144725acce6594ad5507afd5406fa725cb73

    SHA512

    cc412e16fea1db829b932a8aa6c929f317e4f6f4eeed7e0c98bb80db8cb4548e32c2995400490cd8ca909245619bb920f63ac29909f34511eb990c8935642027

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    719fa6003e53fa14be4b47ea8946d3e5

    SHA1

    b3829cfd6894a357c36db49b35b016134dc55ef6

    SHA256

    9b51d798f47e7e682af3d1a46c851feea895e2446304ee5112b328d9ba4b539c

    SHA512

    c154c81471d642254e439390c9d1aa30de920c5c5d33a1a683ec2c0f759bcf6f68e8219bf407fa67fcd7e3a332e750496993938df52855b089391841615e6f21

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    107c8a3a5c0d1f25ac9abae98ee39fd3

    SHA1

    cec59683d36d5aecc73d0f7005dc6a3d3b8e0333

    SHA256

    fafa1d0766c554caba7da87d937a6381489ddce3e03585f1a8a19622708e756d

    SHA512

    1950a94fb7da19fe48272718b9bb4e7752153137eb74de8706b69ca91a924b0b9ff34473f5e1530ddb7917bdb11d99fa1c32f8daeb31346b2d1824948ef0c831

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    be882dac22653000f93d1c51a633276e

    SHA1

    fcbcdbbc925fe2e02873a07243b3d1c692ebfbd0

    SHA256

    580a61ae9d80d231b719c064bc2eddf25b59cc8ead85b5ee51015aac6216f104

    SHA512

    76b74f079b847d1aa03bb903d14243c24ba213f97c760d5a272e937674e5b77917d34c53522adcbbb980791fc6d4961edfaeba8213b89a47273529c5c9af7c3e

  • C:\Users\Admin\AppData\Local\Temp\Cab320B.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar32FC.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b