Analysis

  • max time kernel
    140s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    14/06/2024, 01:03

General

  • Target

    a7722fb6f1906bf6b3353e17a37802aa_JaffaCakes118.html

  • Size

    69KB

  • MD5

    a7722fb6f1906bf6b3353e17a37802aa

  • SHA1

    231f0a404c2ae9299f692c7ad8284e8f0f373681

  • SHA256

    3f450302af82771fe079688fe340ee3db56d7948e552ca7e6113cc6f11f38ab6

  • SHA512

    0057f36b40c0da44aa26b951416fa4efa55e98cef2da587b9090a814d9ee48f1f24e2030d3aabc4b9b91a0e82f8d964fd279981e86ca76a9a9d6b1995ce60346

  • SSDEEP

    768:Ji7gcMiR3sI2PDDnX0g6s+6BWPHioTyS1wCZkoTyMdtbBnfBgN8/lboi2hcpQFVh:J35kTzNen0tbrga94hcuNnQC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a7722fb6f1906bf6b3353e17a37802aa_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1704
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1704 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2904

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          bafbc555cfdeb5b9179292f98b0fcc4f

          SHA1

          1e2956ad30c66a17d830d43294a52b4e3cdd233e

          SHA256

          5e140371c0c7387ea1c7218f0728aa67a65c475ddb3ee381ad41b9cbef837f28

          SHA512

          7ec7929a35203287344bab74e8d1edd91c6fe84cd2eeea93e849f71bd6eb77050bb0b4bb6812c41a299896ad640f2363e8ee639a2e853ff372da7113eee20416

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c44b4152ea55aabe31a7acf1e1d5cadc

          SHA1

          df8eeaef15f9cc51a1cedc9d16bf3ecdb600c7f9

          SHA256

          ec735e3d850ea9d26f5a06d1551b868ec8d1322831a6aa16a248f493ca57a9db

          SHA512

          daf1c4efbc96ab2598930d6e2d5958286a3b4a8d5c8f1d0d95483aa570ded7a98abdd1b24099c70f25d1b5a8a1196b220c0d45dc9a88e936345fa5f9424b2b3c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4d860ec4052eeb2c2fb62600f7d402ce

          SHA1

          7c20798f1cd421d3f61edc5fb43c18bf956f6010

          SHA256

          47c8ee7334e836cb9e2bf11dca40c82be028038ea860e7b6ff9e54bcc960e8f8

          SHA512

          bfc89e01246d97791c1ba6c09754164580c2a0b3f33427723be9c5deb5a545566bef0c315608e6235959074ca1f37f9e8a25982d316ee2bf63525af2249f0e1e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f390393069d6b748010193cd0d568387

          SHA1

          c3c3b70f4fcf445dee0a4f47b175ab5157324a02

          SHA256

          b697129c426637c8cf14827e9ab82c4fd0ab37040c5f376597d6eadda9abba2a

          SHA512

          cf457dce9244f039e51aa3c4998bf7f9d5c21ada7cf88499071fb990f8b47b1a60121b0994f120f09e7b7c9e805bcc00b0dcdd9749551423bfb0b477885fbddf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f91cc8ec2054ee80b65cadc29f558be2

          SHA1

          a2d19fa9987de59df73a52d67ca47c2a7ab0e126

          SHA256

          b3393a68967001d31c95bf3c25a998dde48edb2ce47272a9f24eaf31969ea07b

          SHA512

          ae28ad42eb7eef64e2fec0c634dc2015b03bdc607cdb047d673c998921d4c7c78cb734b5188d9197ea8a90f331116d83730ad49c2dc831535da393c4958c72f7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ca008f6144f32a405e725521654c2162

          SHA1

          513dc4537850f8d110d6b4d26ffb90921c79fd46

          SHA256

          f4a013e8810d4b9a99a707f893239f4f13d159ae83e6e046f5ef0c6cad665d8f

          SHA512

          f703c3259ea086856919f995354a13bfc5666230d058006e63ce705a1be4e49ed9b4c7e9b08ed11a0b77f6fee102366dac4526ec84367d83f15b3081739ba7c3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f25ec5b4983cd049877e7aa7cdc83c38

          SHA1

          ba75d59f9ea6b492f317894f52c1a90ceff8f26c

          SHA256

          1b8656ecb8fa0cc8003e6efb0282aebcdd1da1a11acb991791b5853d25d17250

          SHA512

          6ea15e09f7b2e78f3ce14eba71d5bace92a18ed0bf79da2e604d263c967a53502b5258e778ceeffe19701d97fc00cb555b1035099f384fe8c7416e2a928b74cb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7992423fe2b2731ad32496878f7d2208

          SHA1

          579665fef5d21629d673a37669151cdf5e6e781c

          SHA256

          8c1c5c06abb17d281470db352b7c42cdb7ac3c0109fa5c72bbeead602e54c8cf

          SHA512

          c1d1de32629f39550fdc030592222327c2941e1763726a9c7352f797f6e3e2cb92816bd19133afefa1dd0eb3eb8ed6bd096223a35bf67d8639a9c11db09ed3cd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          da41910f0e7c6fad8813ba2fc58b2148

          SHA1

          4d3e0467931e67b1786982a516b6258e918851db

          SHA256

          d0a34240808c57281db908296ea70754da46c29372bc0a4a8ca0fc463339c195

          SHA512

          2f6ddd80fefd0b9b3eea7fb78e68b6e63563a1772d1b1740b899a11ac45aaf54da87eaca2c00dc9d510150633b85934d0c2db227b03f1aee2f9da128325e4514

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          478eff026a184321e1b9393152a4b38d

          SHA1

          7591e374a3a37c45830872bf038638ea260ce808

          SHA256

          2d757a295e1d89ec807f8c42a0f46369f009f3fa44bd1024c675e90250e0d820

          SHA512

          53496c3892a90e9a3595a0759cbe12e81050fa9f05d8cdf83f80eea1b91820ab8120b4c37022b578aa314ec161e19c5c5df44d85c2bd3dc1d7fe8e0ee6e5b983

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ed695e6005651de08544037f52b04765

          SHA1

          434b70683a5fb1d8469ea081907a5722eabd4ac2

          SHA256

          8e33fb7a79d123ef2e4cc18efa0c57289969397cd1c1600d243e65dd5ee1930f

          SHA512

          6c4b80255e9807534a9f01b22304001cde730448c2ef5cdebe8fa8a0a83dae25c559d980058ca5e99233d0bc37f82e805d704e2c3f9846832496c6c43141cd7f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          52ed452c2cff54885b2ba48df10a7779

          SHA1

          c3b1f795f4ea3c0c50efdb95925e02798a1ef6a5

          SHA256

          6ff10a536df63e0b77186dbc678cef9c2d8315456614137e929ee026c628366f

          SHA512

          5fb30682746ccf6b75990154f9c2f29ff0c198d6fe52b647e2d57e070c125cf22f5c77403487fe7212429f8c36ee68351b5b2b5a0fbeef9a8d5aa3ddbacd985d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          599223d2b31f8a2227ba86e3e434becc

          SHA1

          d1018f9bf432f446ed47d634fd5f3f9717d3e4ad

          SHA256

          cfb5ab630aa3498c81e5d91e5949fbda9c9af8668f356deb3512adac347d6686

          SHA512

          7b6b339f0ffce8c90d08f4949f41fd2ca51af0d588fbd0a0ae4630a2d54410ccbe056ecd968714737a45c326167a6fab5f7f14fa13b00e5c2fe00b351aaf0cd0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          efc50476ce783fab8b531e97a75ea027

          SHA1

          8d1a722e0e670cc18f854a0d8f36a8bd09adbfbb

          SHA256

          cecb012811f3f227e016acec0f6aa0d1f0d526253c096f5e0d153caaa10e73da

          SHA512

          37cc9f22bfd77813239d9ce8a8469b4567715245fab5499edb5235a056395bbe4619dc43de5d0d58289b4bea5851c67b0b70efc0e6e27076b28665934ea2e878

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f16154e87a5e23bb491e3667d6aa9aff

          SHA1

          915f5b10e352afd8b8a9950f5bba9db2ff734b5a

          SHA256

          5c6f9b264dff162f96b58e03e9d0090e376fc86731762ba5f084044a24922676

          SHA512

          9793f41e086dc739079249e1b2fa2c5790b3655069de5a2183d4de89f847ad66aa2f149ecb4c6979b51551db460e921315937c8ddc3712285ea32fe2d292502d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          032c422322f360f194b6760bbc722610

          SHA1

          f6bf6efefc9c71c36e9c9a06f7e44e2bfeec00af

          SHA256

          4c9ade30d8a483820fefa1e154c28026860b3c6884a226de15dbd83a5c377769

          SHA512

          54d975c9083d19e79e8e5ed88b44c6b55c15b3d69734fb32ca3eac11549b14c04735eaffbfacc7510be83ed4f93150fddab50d0f5891c99a5a70bdb5c77e82ad

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          089835a098b188fcb156b0f68f962478

          SHA1

          43c45a4326cce50a6ad79a4f8047a4fc5953e8b1

          SHA256

          76dd997d11e834510ffaedd0645cabb090f28b2b14ca87ae53136709bca56da9

          SHA512

          5d41820d2a296c9e826a42cd6ae1bdb91f19fafefc58700fa1e977553f499de9e37937e22449e3680a59ba160470c39ca0de066ff9158081c2418308e6c4c6c5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6e85cf13ef6b2e744c2afbc6d9cbbe90

          SHA1

          02cc89874621dd6f345ab5ca040fb784fde40671

          SHA256

          3478c1125b18467e874271565854b9f6dec42948ea7a529e795956441bf0a0e5

          SHA512

          f7d3c7c69cf6d037f4d4169428e49d5858cdf0460756e2237c9fec38e2b1ce7d9c25d3d07e399d53172e8e9f4ee0860ad39055865923af139e01014a295c38fb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a46225a1abd25ca90d83dc8e52f0d298

          SHA1

          9a3268fd5c32a3326f08700f1dd9d907f5283006

          SHA256

          03b895bc41715e1918232d99db4dba2d158168783a8e9ce09e39b3b6f26286c7

          SHA512

          8722165a14a84725f557c8503d2009b4b57c60d6f6f65eadc7f3f0c8de40bfdbf62c9b47aef837f7a42c88a192cc35952bdeed1e77f31f1897f867b511af2981

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          41d6a15b2487cb5b5f2585f5dcc7d493

          SHA1

          4e79e7e60159c4367d7ca46d1da4524796ae8ca6

          SHA256

          f02702a4e28c22e6ef651b239c248fb00641800d65c23a2cc3ae3e5f0425e918

          SHA512

          e53033a5bd4f8c27dfd932bc8c4571616316d8049d705b9206a16ea9425912a9d8895842b28521547d726b87b7eef3ff47ff21c14ae0b524969fc02bcfae0a06

        • C:\Users\Admin\AppData\Local\Temp\Cab5E0A.tmp

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\Local\Temp\Tar5F55.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b