Analysis

  • max time kernel
    120s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    14/06/2024, 01:02

General

  • Target

    a771ef0df69a508798fe4a7fbf98a18b_JaffaCakes118.html

  • Size

    357KB

  • MD5

    a771ef0df69a508798fe4a7fbf98a18b

  • SHA1

    7dc44b00122aa0594be0f340ed3c7a3489e5e9d6

  • SHA256

    efe526484646a4980e317d78042717f5078a63ee5bc887fa23e9f3e77c17ad57

  • SHA512

    3a8885e76f5a1e9b862da3646bbeee6f964d541977b8abd074450aedf3c09a9f79e58ba929778ae5704720137e85baa8b68b092bb545c077d44d556682eb9655

  • SSDEEP

    1536:sFlM9CAEV8ZE/PwRIfeFqtOk9KCkcSdccttUVNiLtBErW3Etddd7NLdt9cltdBFZ:mlM9CAEV8ZE/PwRIfeGoQgOAeMt

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a771ef0df69a508798fe4a7fbf98a18b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2232
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2232 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2376

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          dfafa5de63ed7e6f29d75dc90e64ebfa

          SHA1

          0e69b7a41adabdbf5383cafad158211587f64bb1

          SHA256

          42bfa336a8d19c0fa43dd20911cc9417730006a47f8a43e976f63a026bd5aad5

          SHA512

          53bf6003ba76cb23726c8bbcb57fb5b6f78e9452b59397f6830ab614824b4eb655c717f80e5b28dcfcd54432190b694578cacf94ffb6929ff0790abd840219aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          dd84f8bc24f4a194fb1c6eda3df9d04c

          SHA1

          21a885cfcfb26502f6aa2e87c94aa4df52f422fd

          SHA256

          023a920582c853deba17620e05fe7250bd2955a25fa999d2bb5d0f55cc100004

          SHA512

          4dd01e2e407c3755bd790ac2bfda88ab3e42742d55be6c59fc6f6dbe7789a6fea9687fd83609d58dc536261798f57ef8771b2867554bab1e0eae70abb56bd058

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          54776120682f567773250f829fffc797

          SHA1

          9b32cd4405368c78337eeea9c6c0e7193ada8e8e

          SHA256

          1e710696171c4f021275c00abe07dc9f03ea3846df75042bf2f51663ebd5bee3

          SHA512

          89fed97e7a71d6dbd611b5e112048e4a0044703ec73b2d0b07b5542e46024b023f074de6d43a9f1141911a357fa0d9bf53ee426b2013f16e5f86226e1b55d0d6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4c689631389743c7ca0faf6be87e0a9d

          SHA1

          06d5ff128ea5751912a07cfda93d250e0227acf4

          SHA256

          363ad2fd2a38a5bfc0330ebeac29626a0d3b778b0acbdb097028dfbcb1b98ae4

          SHA512

          08da4f34367195c14d60014d94b220ee7865ae0a236e069c0e371e4a4a9daf4bc8c3705df2bee2d2dc5b2dc57dd4c26e925c2e3aaaa57697a7dab6b5dec91262

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c1f752b70511a40e96f7c06141da69de

          SHA1

          ff2578722557d2742eb36f384c9530c8eaebc098

          SHA256

          66de0ee0b33f02ad81d05394fc8bb69c62141b7649117c5b55ff17ed9238cad9

          SHA512

          26a57fcc68dafac068f5053ec5fd04674c114bfb6f9518e50b653623849c7f52505f90da6bfc4d688b3337288a077519d255bf0ce4f6015fed75fc1e06a9cf9d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          beb4fd9342fb5b327b1f0ea8351ce90c

          SHA1

          556c550992da6490d4346aad90d8cca37999fba5

          SHA256

          aeb20c7fd49b69014d3ee232cd4e9405d1ba424630b8486b34c7bb0fac73f428

          SHA512

          5d317bd2ce28e20d5d7ab466e7d2de728ca81d87382dbdc0fa24b8aa4e03b1966486de0b57907386038df4a93a61c57678c8882613e521f14f1441b5f048a8ae

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6e9b0f8812f694c55ec7ef5c84867495

          SHA1

          a56f8a492fc63098474e1c5005f5774c72d86b65

          SHA256

          77447efee5a3638eb9e2c62594ca30ba2d57170059d9c6196ecedb49aef33d67

          SHA512

          7ed38c00ec75b6fc70c7b9dc27f765f0c6c62319282251df9e9c75767a265c2b3cb61b3c2e7e004997e40c2e3a0a79b0041727d0e6299bcb33af6270b81ce9fd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          33a26edfd35136ed22127f62d528252a

          SHA1

          b25beb7c2775928723e44035ddbc2c6a5ca9cf55

          SHA256

          3bf2ecd3e718ed6e177e67423446a1a46aae2c85714152158893d82cff362fbf

          SHA512

          ed52a5e0797049134d7bf000a49c7f70e914599682c798e1db00cb2a31daf5ee6bcc860690cdfb1f7ee31dbc7c98eb7139e171c66f20cc2d87e7c051c1a9e92e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6433290af7009450895ee3b9fd302254

          SHA1

          366d9498e0ec6ba2a93b1948ec9043e98b4eb1ec

          SHA256

          6daba4aef080b1dcb2270dcf14d45f006b277b14a0335e2782793d845573ff3c

          SHA512

          66aead09e54a7bc468f6cd8e88022245c34e5550e091c1269dffc5059d857003f56eba703cf2397f689ad15493b05fa8671300a62cbb7c20e19eee395895c513

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cdf92f99964bb15387417d206f731099

          SHA1

          68a3437e3e7fd4bb334c122aaaa2cb2e08999176

          SHA256

          44bd987a90f6ef2aeb9cbdfe45eab310a00c4128db575645f57cf51ae782cdab

          SHA512

          467100ef4bd3d703c9f6a61e9f7ddffebb0bcbc39a248165a58b39f42041172e0866f77ba04dfea29ee2886c7353336575eb682e3ac7ca23a977a5732987597d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d81988ac1300d4899b86b508f631f8ed

          SHA1

          cef934b9465bd308a50fc6f03a9a96f950a05d03

          SHA256

          dd1e9017dc5710c9e2dc7be47eafc3370b4c047323e2f9a39d0ac70920b422a3

          SHA512

          a2aea85b0f1a9226e95e48ea1723b4346506e9f0d98435f3a9e9b572de0d3c13df86cf4c81dc88c996315b4090d1dcbd06e4cc793186c4911ee22ba0fa20d5ce

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d6d75d786738f2b092e1145789cb1d29

          SHA1

          b63bf28d61e396fddc523d380f160baace62aea0

          SHA256

          8080f730a06e3bf2135d76bf4ff38258f34b965977b8869476f6f836836abef6

          SHA512

          822c86136c8611464a7c2fcded3264d96c252b29afb328d68a81962bde5f8190c312e1c1b648ea5ebbee29c0ecbc336fe711855233f9cc0c455e2b19a62637db

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          999649a83eae828d9a53326e71be698c

          SHA1

          5741a1ef7341c1717561e1523f3518bc66becc7e

          SHA256

          c91a4470eaef07fe4f7b6e9a4f6b2c5dc6dc368a389e0431e80757490766b177

          SHA512

          c57dc3f98701f212083e30bc7e1b75b8c95eb136456d09ba46b31e0876733a86548c0c93563d68564b09a56fd54e215011c61ef527248612fd51506222fac889

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f19c95e12c5367c6eb529406364676db

          SHA1

          f5f32fca0f9ded6a69ba582c04b0b6aaa7120325

          SHA256

          ad271ece50f4a0d2673deed268d25986c51fa81824386e2fea6a00877511e957

          SHA512

          53e3245c90571a4689d993ec884db0b2abe781a3af8c488074245c0187bfa102fe277330099a9619f1f498a6549e0461537563c9ce668a498b94a21933bd7467

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          74581b23d0917c567b422daa63e3f11e

          SHA1

          ee53ef3c8c61e6f782cdb34d8ea30167443d8e82

          SHA256

          ea62f8f90f3af1c6acc9c5ad95c89cbf01b1508c223818a320f311a99b8d639a

          SHA512

          d456d9ab14297d07ddb2c809b6cebc8d3c5ff03e2620039c564c5a8f76bffe4b56865dcfa08d1071ca4beb013ab5ff7c16aaf1d4c4e9166ab2341cff2353c925

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          788a3d8b3b58be6789f76811894b9960

          SHA1

          cfb3d41dfb2845affcbb9c884218fed18003dc7a

          SHA256

          8acfe8e3c20dfb136670f9148631f3c1f691aa0ef2dc8dfdf4059cb2cf5a9d53

          SHA512

          db94c27a9dbeae684daf74409f50ef13451842226c53ea3ff868c41b9d22d8911a564c994c6f76cddf1b39b83732eb8e9a0abe5106c3d87aade96a4f166f9dbd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          fa1849ef79fb17be2d121c520a4d5d42

          SHA1

          aa1f02aca654019e8a1731cedcc9c6381a1a8ef2

          SHA256

          65b3ccd35b38bdf580150c6960f6b2bade3b1e9bba15127a767065064a205ef0

          SHA512

          f8453b7aaa16830d1a1708ee3c3b655d8d663eab5babd8694cac41c2f78e8cf300e0f84490ef36e62d715c2ab514ff8c7373f842c19841376f3a57c4d0f7e9a4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          383a70406971d9ad89e7cc6a780fc177

          SHA1

          e0d0f834e5e0f831175ff0f2390741d736ecc3b5

          SHA256

          9ca6686208aaee1121189fc35039109308ac43a2a7cc73e12461d4f9c960b186

          SHA512

          a4f2511560d7fd566cc48f7c4d97d05288a8d05b43e984c79bedef2c6ecb83b7044d710027efc3c24ace6304c28f73a37fdcd94766ace56e8b04ff32a4c86cba

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2557cde823f2d51fb23cc9b4e7190863

          SHA1

          b57ddfe204a44b32e1b4bdf43f671a42136c8ae0

          SHA256

          209e31ba00f0e81b35b3ef0de69a39b91085aac781f29bacc041b04960fc2d20

          SHA512

          11cd6fb84fdc69c9e0a3e7af5abfd1b70a56eb6cfd09bc18aeb43720f6f5538778bdf1e0f97e70a6451fc99a6f7f315a65ae56920c3d5fbf468bb136d67c3447

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          96236c515a62419a19f92e88f881e9c0

          SHA1

          115f9ebfb79a29d4fc44a059d912a8be180b50bc

          SHA256

          173e1852d137c9039a4e79aaf127f591df29b91f47298862b7e41a84df8ed740

          SHA512

          ab6d02ac7a1b25d5177563636a037ef55126976014003d85c15e25b52af97ee36c68955c59dd957a9e46353ebcf178d8058a56e2593112e2fd57224009531489

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6f5ff0739d58d4502d5ca420c68f3115

          SHA1

          c6c19092ed2cda6c374addf1f72f59835cfe8c2f

          SHA256

          f55fc0a2f48f976394bcc11b68c7bc8af76a117cc61082595a727432ef5d4d4b

          SHA512

          6ae689be9f98b93fde9dd3457d7327e86753d4cf6128df09035cd8384c78e321b7d78939bb74729dc8505826b93c636821585b2d7480f93e6c21017df477b943

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          42bf7b1cb0987b5b75ccb9d6eb9427fa

          SHA1

          1946f4f9fe5438e7a801362d9c357e5871f459ef

          SHA256

          2aaaea9915c7e8db3c0814213c75b7e3a48779d07a5eefc5254dc2c1e39c6021

          SHA512

          162ae35f437ef6d4ea34f6f0eb8a80f0874f0932008b8ae095841451f4551f9c7810689b1fe2568613cb4b1ffaf78a2e03e03f2fba2d58b341678306fc39a8cd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          63355d7feb55b7576c8d6fd3499e8cea

          SHA1

          767e600cb5550bc8d65f5c4025ef038086a13664

          SHA256

          b52623307e1fd864b2791c730fdba362f82e36089263033e728b5001eaa8b0a0

          SHA512

          0de1e9a966a4a9d4bedcf2e833a6870ff1c648e24a1fa158a5a9ce8a7c07c13a48bc31c7cf3c07388802e3ffb53cc2c0ad4c6c4ffd19893cb7cfa9b07e1cf0d2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          ec4462b4cf442e6275c69372e59eebba

          SHA1

          04d3488c1534c7a46537a113c941f702022e0844

          SHA256

          f5645dca1137b589965683073384ca5d2289ff9a37942b272f978283c2ddbbb3

          SHA512

          a4813893bf5857ca6a6401876ae83603dcdd84fe53051a68935fdf0ac4fef8ab8a3ad05e71cbaeeae9b73090a03db7f5631124f7437d0efaa928aa05a2532544

        • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

          Filesize

          4KB

          MD5

          da597791be3b6e732f0bc8b20e38ee62

          SHA1

          1125c45d285c360542027d7554a5c442288974de

          SHA256

          5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

          SHA512

          d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

        • C:\Users\Admin\AppData\Local\Temp\Tar4FAB.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b