Analysis

  • max time kernel
    144s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03/06/2024, 08:03

General

  • Target

    910b777e87eacb4f1500185cf0de08c0_JaffaCakes118.html

  • Size

    217KB

  • MD5

    910b777e87eacb4f1500185cf0de08c0

  • SHA1

    7184bec1beac1334a07e4f6b018b2dbb84187b19

  • SHA256

    c5c5a8136fbee8a72e39910651158a27695bd8b81195b7d9869c8dd3b6ff6549

  • SHA512

    51b40a2bb68d351b067a2f8de95ee974c11f7070db62f74d39f7f0bda69528ceca149721539185fd361632b60c3054f0d8ae583d88c966f5ba0f3985b44ed31c

  • SSDEEP

    3072:SVKojJ406OoHBqyfkMY+BES09JXAnyrZalI+YQ:S8ojinjBPsMYod+X3oI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\910b777e87eacb4f1500185cf0de08c0_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1100
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1100 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2256

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a0735ecd532a64e405e2ccf2a7c5d9a8

    SHA1

    e0649b333956c900ade0163d2e51e80b175ffdc9

    SHA256

    1b1f8eb93cf819603916e4b39d9dd6715c3ad90e5fd2f5296781c59797df4211

    SHA512

    74ed71cbbe3b1792d4ee282dd65f1121999936a324542040a8575732ca0203fa218b3115ca46cb87094d4d8ff194cb42988933ea80c54eb2e8e11ad6f07f0935

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5221f5594cbddc5dfc1f65fe384d88e0

    SHA1

    7030394abe6ea4db49aa380953c9698169d5ccc1

    SHA256

    3c94e57ffd222fd72171f747a498aadb63a8553df567a7b81fbb717fe689b6bf

    SHA512

    0129df55616df980faada198e7b0a4e6dc9af243e1ce6a23b489bdbebc253b584dad9d5fd6b116a2a258e4c0be4ae3b0051c1bc83faaf3ad83500d1fca5fdad1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    237f2630d1ecb59f0af4e1af05e4a338

    SHA1

    f3e598c27173affd22394314478ab7fe414d43e2

    SHA256

    23d22a8ef560f7987ffa81ca3772e401a158108c8922c0f2d1ee9b6947f30f86

    SHA512

    21d0d88919b94b224a09c80c6668a938fc08d360d04b9d89c912c6dd50ed7ed0fecbfa2b4e4da4e4d1778d558af1273d7092875ec3cf8d644d474c8ccf1361c5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4f758493d18e351cc04eb0206d977e7b

    SHA1

    55f89cf8317f661671928f02a00e1a37a414c3a3

    SHA256

    6575be377579f71595bd1d606966593396fd55b86bb34ae2a3639712c685176e

    SHA512

    bb538bcde76a22ae31a77d86e8ff6d74aef30f8f7af802a49f5069c79c637a69c1252e0ef76de4ae5924977eedb6cc4f95021322a37a700f0606aa2a6cc0ada3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3b15ebae2931c36409590fc9aab96723

    SHA1

    20f97b6f4d42d1281ad4ab12ae5f79bd8b4ba88e

    SHA256

    c6c3bd9352e19a483c0e5bbbad09c2e74e95b808673a6d8c2a236e01f76ef885

    SHA512

    2c62603c0a964ad177a7323e89a41bed626d5ffccb9703c3d67ec67ae53ff019edea332f7e76dbbe67fc71cc72446a60c59c3353d3c5bb63679d4134ff9e983f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    895b2de7a8fc271de72ab72638c9d80b

    SHA1

    b76f10051bff803646c3f90c25b3809333f98e84

    SHA256

    023a0cb702d94a24cdf28044423170cc14a947e543e14cd376491fba38abd647

    SHA512

    411b302dcc5895fef7f5f224825ada672e76351ef00f0b0bc1db564d541db137a7127ec17305c9ff5f217e0c64b97ca4579cc811c1068e5380ec7037791cd3f8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4cce44b7e3f6da0c83f3d3411e5320b8

    SHA1

    b2d67d7ea2c739995e5b786dd910a8ee7c643089

    SHA256

    ef172438fbfe2c66fcf37ca0edf6601a63ce89d0484dcc27436a3751ba1546bb

    SHA512

    c254d67a9d4f229f6009e139046c18c583d72a629f2d9276fc8973cad3a9924232b0d414e5b1b8cfe4736f2fb64e819d00c8fc6cd28cf2596559e6c4f52b8fb3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6f84b31f3d42e509d139f1cbe3ab547d

    SHA1

    b0a1173fbfeafa10ade895bd5b0350fe5387e85d

    SHA256

    87ba73dce336ec05e574decbe813ad591286a2fc81c6d32f2933b009287b4f3f

    SHA512

    65a66eff6a235f28a1402be20ceec836e3025e72db1023aab01715e4d68571b4f0226c833eaad945fbdc349abd28067d0dc92ed2a5789b718fe04d189eea6f13

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6025cb7b7ba2bbe90264ed98e02fd59a

    SHA1

    1568744f158bdeae447cbca22eca99599b48d06e

    SHA256

    5aa91a2702702faf1c6e2da0bdf59122ab8cee16a05abc90e8e2844db1fdbb0c

    SHA512

    3757e173cbe8330a5755ff0164065d73933fc1ae7b6dfa048bf60345beb04eae09c1fade5434f5b784e40051ceed413df91306241b12e3d37ba4177ffa7c2e73

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    38211e16d9fbec13560ae6163e4f3e10

    SHA1

    f69a7ed86fcfc2b6c2c939f2a8ff5f6d926588f7

    SHA256

    2cc351857e14a5615ae9583504a142012974251f0f2989252fd9a1e2686c74c4

    SHA512

    34a2f299d99bd78fb93005a71c774b24ef1a4058f33e7d7db910952403a4f1bbee9341e7843c649acd84082fa33cf46aadc3a257080a23469800c79001767493

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a0fb25a77bb4d00e7909106f40a8a4bb

    SHA1

    71301f18ddf1ab868abbda5f7fff439f357e8692

    SHA256

    aff7e1a53ac9e09e489852bd95271c12bc453d8c1d472c6441608e48d8f5232a

    SHA512

    985c1c6cb6c7fe8994b6f36a6586af9298019d9077c47a4b2d517df00c132192c73354c9e07bac2ac359ec0fe2930fc54d2fa8cf81c5880a417e90fab926bbc4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ce5481bd5755c419aa68d208611c88e9

    SHA1

    d43a220c123923c6031af9dcf05b9be4017dae06

    SHA256

    ddc453c492c265e0fe7f6454ec01b1db52d20c98bb0b03804dfbc97d2e835ae9

    SHA512

    51af4dbd041d0e963e2c8e7ed41ba34116af0617573eecfdb8416a98ebebc38ed2f8ec003ee350edf4147a62f54512a53d71d6b49de1a510be2ee782311ad3ae

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e6d5d9d0635b42075f16c59e6362be97

    SHA1

    0d0671e7b6faeead7206f031ae9df6870b97d622

    SHA256

    301384eee77dad85fc94a263477a5206f08e7aba525b225ce426dc0e7244de9c

    SHA512

    8e94bb7f576c9d16cc9f5cecba8fa05596134b8da2dd1d8526533425d210bfa8f3d38b33fb9b6d53163b0b91968c16d5db4ce773e03e153b39d228ca7bb0ec33

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    530617fba9734cbcf6ebe687daa3c5f9

    SHA1

    33a83841a897fb58bba20ec40f37cb662c2451ac

    SHA256

    7ed24941120630446de8e84b861152a6e8e48879dd1f1038da9f4960632de741

    SHA512

    9630cf11e97a09f799431d6af62ad3a2d6231a640eb8d8e6fb4ca28845a54d64d50e6891c5437b2610abd21066604afb7d50ff0c8dc44a3d0e2eecd75d96a15e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4db0a02c172a58842fa4ba4f7d7b625d

    SHA1

    abc85db518b71c39c47035e204d05d0eb2885017

    SHA256

    1f270305660252f10a303cab328ca3929e78b46a1cae6774b5e27b5fa6de54e7

    SHA512

    60d08ba40ce3103636114681eab74727e5129538a17ab6cdd2bc97ac94743327b2947661fc594f6556ff4d8fa18b3deac51e2d831a772db4f9bc0178d1358dc0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a9af48f20e9b81190b828df5bd95df85

    SHA1

    94a8f55b91dc8f160179dee60a6eb3d2e5502473

    SHA256

    781b71029a9e3f677400184a3bf326cc337dcf094dea82b1ed7f1536c26e0f1e

    SHA512

    a6719b054e659f23bdde9cccf59254536f76ebd78a6a892c3c5e424a99527a4e03e323cddc138deea17cf658bad237c29281597551c3a11635334632a19fdb18

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2030e18046e1ef87dc8ad3de48cf9c00

    SHA1

    cb410556bc48d86fd7a7b8dc539566f3142f94a6

    SHA256

    8cd0ddd1d6a608a4d825a983a9025bf9f77d5c9d57b39445ebc7ca880d3489e7

    SHA512

    b1911fa5aa6a4a4aa6c807b181ed54c0f0f3483313bc9e1cde3916a88bf97de01bf3ae4ae6b280027105841c70e334e62b767e9d51d2b8d4c79faa51223d68e6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1a3dd20cb93e3ed3427666a6b0017f45

    SHA1

    e6973424bf65a5984dc54bd5cb1ab3e4796e2545

    SHA256

    13798c101fecd048c980a0b5a40b686f15cbc5b8448358bd229418a5bce1e6eb

    SHA512

    27577f9ccd2fce0d5a132be87c3972b51d3ba1a42da70e52ddec724c7a0be1be83da1c06ebc2418bd806e86b48105038f60c02b250f820a157b4ba4bd7f312a0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1efd8824816044481ec656e53fbe0acb

    SHA1

    4f9ed0754abb5d7615453bd904a1da7fd87d6e10

    SHA256

    7766e174eaf4b5df2fb0f1f940e3a058ed4df851dd7eed3caf31c852b6e61e6b

    SHA512

    402ba2bbc1be3e3effebfd00bba653cf661b576bab921bae3fdc0ca4a42ebf7527f9e9bfaac6ed1119a8878b88e98316634853c3b9c962b94aea7c101a8b2637

  • C:\Users\Admin\AppData\Local\Temp\Cab912A.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar922B.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b