Analysis

  • max time kernel
    117s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    14/06/2024, 01:14

General

  • Target

    a77be928cc88ec190e25afb2f6fd8a22_JaffaCakes118.html

  • Size

    461KB

  • MD5

    a77be928cc88ec190e25afb2f6fd8a22

  • SHA1

    05026a24b6fed680241d927e5be5343c3e45cdce

  • SHA256

    a125c3ad540daa0794c13138ffff7236668dac0d67d4643e9d88cb18cfa3d33c

  • SHA512

    2d221dc9c9e5515512c9561d254a45b6b505bbd80adb94efccadb4c4b62ac2ac82a12555fc47a2af917f8cbe46f895563a748d45fc187648a84618cc1aade863

  • SSDEEP

    6144:SYsMYod+X3oI+YRsMYod+X3oI+Y6sMYod+X3oI+YLsMYod+X3oI+YQ:55d+X3X5d+X3y5d+X315d+X3+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a77be928cc88ec190e25afb2f6fd8a22_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1244
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1244 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2896

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d4a95f3e67603511acda6ebd993a3d35

          SHA1

          f89d40b468f954d879c2f967ba4a591e1325e09a

          SHA256

          587a96c6bf76c6f69620b3cc8703a9f70ab934c2d593e263582596f75f2993b2

          SHA512

          49d325da7ed5dada4db1e4f9c22f0cede4ad4a7ec90a61362a7b65f4d25799bccc53bd09e091234e6b007b4ff1f45401bad4fa0bfca99b9d8a41ea2608c1c054

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          26fdb46d47c2a13a9de965f5b94ba17c

          SHA1

          287e7be60ee82694f6c0e60579961c7d6a7480c5

          SHA256

          5e3193ed6a3d1954c3abe10afbbc77aff56fee3b5e1d0e3b63d1fadaeb18bda0

          SHA512

          b6da662ae299d96a053b083e4b7d450cddc2b1af80b7ae666a6ce724cbd02b5dd3d0a570a63f0eaef884b4771804dfc496bb3b30281fbad6a81a6b5bfc40d41c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          da8eae80da02b15f67847c51682c75e4

          SHA1

          8bef2c28d0121d33716a8b061c19049dfa514da4

          SHA256

          415cbdcf2ce3aed1ae1b0f89574a7ad8624c3c4e78392a748bb3e21734352d2b

          SHA512

          66ad2c302f62fdf19db3bf98e7be942a2afa13faf45f497c1de74b19ae45ac74005d6343f0395f1338d4dce62ac49316da8c1e1cb261b56d9a81e5c540c3e408

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e1d08192821b56f0a652821a8f5e1a0d

          SHA1

          9c6363caa6c9dcfb183df26b71b370aefe7ad2cb

          SHA256

          1764678c004601a34a9c683e5dec9dc1f2b94911e75d10ca8d34ba479c9cc9bc

          SHA512

          6addc7f3f6ae78626a1076c10001a34f381e50766cff3b1bc6f49b60d1c39e56135abe2eea4419f2f38fb50f974fe09f1700eefae9d8c2ed3a104be6330d8792

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          328565ac317352c19eaed45b2e041f0c

          SHA1

          eda0b23682def1b768ae67b156bee38f55a3875c

          SHA256

          8be63fe1077a81b38ded9e5321214dd3cd923204fea91deba3697609304845c3

          SHA512

          7fed2fc5b77350809513c8c60ad09ecb84383319bd2d81b2728ef4a069e75b59fbbf29c31cc49fb1f5896246cd86ed4a6e03af1be50e834e3f3ab0a3bd6310a8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f4d84597699d720cbe05da1d76f5bcad

          SHA1

          3099736ad4c49a071299883d0165797d2c2f3ecb

          SHA256

          dc112efc6d0f8d846a8214fc5822742cee16b4029a91a626baba9c00ebfb8bfd

          SHA512

          dfc4e05bf82669262e7252b79dae8a4443911412d68e99a02cfd3253895b5dff7e27532360986f86997110baea07a6c0719fc5c0df30589de32b76b428e8d0e6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          31feab4bb832ccdfbc6d93b37e043b5e

          SHA1

          3e4b00253a573df2be831f37387e89beb4d7c7e2

          SHA256

          25cf515e65126c78ee4310c6e58bcbbb5d99b8898e85bf19263b901e607bdfa3

          SHA512

          3a16be06c1a6e1c16c539766a7d1dba003daba1fce8de5cb84457edc800b777a8bdc6799741f1540fcd86ba2e50ec4d254a705455a0371421a1e886f7476b4f8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          801d550c87b28620398c4767ed65ea0d

          SHA1

          7df29186df864f0872b20f5e0a56f5e00f5f9243

          SHA256

          585b8510e942e2d2d858372f9f12da0fafa46c5c771cc76f82ab6983618ad85f

          SHA512

          49fc9ecc94afd355ededbe6471d8841a07e87da6d41bc22cb03694700ef16be811d785c6fc3e3c35fa535f0a06c17fbf9274daa32f95ac4c8867fe6c62686e95

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9f3f1a10f61cf4f38e3309e4731be5b1

          SHA1

          38b894dc7b179bc27a2e931d4c0da5e15c50436b

          SHA256

          ee410054b01e0b9492ec3bf3661a3bc1fa975701b6adf64a5f6e53962622698a

          SHA512

          d34bbb78c7edc050949d882c7450380d1569d8cb986d47c8298eb6d912e4db3fcdcbcb3003783ce5243aa9e4a121ec77bed34416ea7625355d792030af5603b1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          83c9931dd0051bef3e68b3bbba952fd6

          SHA1

          0bd80f6e47e4cee0b84447b26a77e98b9d9ceabc

          SHA256

          9d2dcc023d5d7df318a2f6c8cf66c356182781102564e12a6579c54d8316b4cf

          SHA512

          28470328d55c787e210fd18ae7e570f2dccf0ec88ab8de7d4f5f2a3a70dbd12bcb0f902b23641f4c569eb3618345bf4ddec39d889236af91e1e116a5d0466357

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e8989acd5a10660b6c62098638f0382c

          SHA1

          9a4884741d15892c6b5e1ac2f2ecba21f5dd45fb

          SHA256

          81fdc6964d9d6cedeb306a433f4b56a86bc8963e4e69b75c79b5436d19e1a34b

          SHA512

          63827860d83822444ac334e95ce95edf93beab9d806aa27b4f0df58bc2749d04d90338738ed693d2602d4b021e8d0f96517973c2ab35db50fa1b62803e7bb138

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1ffe18555877322e225123ffbfd0807f

          SHA1

          fe6a444ffa7d99b6342ce1498cf2dc1812b6b686

          SHA256

          c5e55d333c18f969f608014c20c89de3f574764f96f3c36e3c1ee7ce97d53258

          SHA512

          fec82f63b7878294900d6008fe7ee289a42e24f5e4b46291ce433fa81589c36dfd4bae890da7d1e038dcc6d47aa4feb31f1d66ee8111ac2caf3e19018192fa87

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cfbce7b08698d803098a92477fea562d

          SHA1

          c195d3b4c827acaaf76b80b5ae3831ab7a620d03

          SHA256

          284c8eb46bd2f405d49d76d19aabc0c9c14d15550bb5e116a30d65a88e9717d1

          SHA512

          52dc84d9ed3783386e4e18b8739150fb68ac758b008cb1b0c26b49d7fca47a0ec282a04a13cb63bb47a67c30cdfb43e60f93ace7ed953a8d224877283d747138

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          62c32da9dec66f27d27b797b227651b6

          SHA1

          91c3c75d7ec6dde244ce5024b08abff4f2ee8aa9

          SHA256

          6a1a9fdaf496248621d75bfbebc1ae5d4ccf6e4abcc4788e16f244cda329e9c0

          SHA512

          6255bbb5607f52f9c5fbc0032f864a82ab50a302b797cff01a45b8aae68032eae526921f8797ca69d756a7ae38d5dd9ff5370252de4e26f6201b86f828aab18d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          dd87b2896741bdd9e45f55cedbf80bbc

          SHA1

          c24a9359c451e0c777b223c8060ffda11fd0ce99

          SHA256

          d8842fbc31d37a3e024807d96beb66325489a58cd73e369077038035a6155f0f

          SHA512

          e15cfa5cb1c2553d6ff7a5693f6f8954b6f91cecf717759aeb7db8d66c2550eba5dd10081f6149556894a3d626aafe50aec41a068fdbee7f42c545db6743a883

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b6ab7248d3e6b49b3c1091037eb22d0e

          SHA1

          1bacfae609c22ffbdfeb60779d6353f621a73b3d

          SHA256

          e1e54a480477397abd27df18d8f5af899ac18873c8b740c6bdbbe287bdd7d6d7

          SHA512

          d64297ced95c20a410048b63d6bebf68808099bece4674e489230647408551b13eae3655ef826c82b982d4f392bcd0e4040c677119016f06a252c105d063fedf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          67c2ee01ac970ab9981ddbbca587b79b

          SHA1

          ec11cdd39e5d36d812aadc99ffc18f122d8e4f1f

          SHA256

          c11b3b5e540c30090f7e233d4d936dfff5d76122d0858aa62e75619ce03e1c62

          SHA512

          54f1f9eb18c0037793e639d8cbd01f9a3d32d277f547c3980c7b377cedfaecdbd2c725eded07c691cec9b9a60cd8f0b76235069ad2b7cbd0cfb2ef7b92df99f7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          760b62e26e0f19145786cf5ad9728753

          SHA1

          87c1748b1f4a0000d93b6dc58a2e06d945e1a46a

          SHA256

          7272e7b348fed89a9e8592509fee13f8836198488aca293a2a676d3eceb93c46

          SHA512

          d107386bfa4227d867697226a675568ebc0152b703172bb46fdae29219b3c3a4a1afd9df3f1c70c724f7b879f3c00ce84afcb38a75404d5434a8ce7e39478fac

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5cd89dd31e08f48934a5305e58b94998

          SHA1

          eeea033d4458406f4bde1eaa09a92ec1ddddca51

          SHA256

          8a2e744ec3e567670e1b5c0b1de2fd284dc7f7ba052e1a981585ced73f230d67

          SHA512

          c66693637e1b49c684ae3afb50a5a741cdd45436f5adf316e1a074cbf5c0e5cb1cf2a7a9e9e62d64ff3f878d382f412c96bbdb083e7c0dfe00a28d68321bbf38

        • C:\Users\Admin\AppData\Local\Temp\Cab4453.tmp

          Filesize

          67KB

          MD5

          2d3dcf90f6c99f47e7593ea250c9e749

          SHA1

          51be82be4a272669983313565b4940d4b1385237

          SHA256

          8714e7be9f9b6de26673d9d09bd4c9f41b1b27ae10b1d56a7ad83abd7430ebd4

          SHA512

          9c11dd7d448ffebe2167acde37be77d42175edacf5aaf6fb31d3bdfe6bb1f63f5fdbc9a0a2125ed9d5ce0529b6b548818c8021532e1ea6b324717cc9bec0aaa5

        • C:\Users\Admin\AppData\Local\Temp\Tar4525.tmp

          Filesize

          160KB

          MD5

          7186ad693b8ad9444401bd9bcd2217c2

          SHA1

          5c28ca10a650f6026b0df4737078fa4197f3bac1

          SHA256

          9a71fa0cb44aa51412b16a0bf83a275977ba4e807d022f78364338b99b3a3eed

          SHA512

          135be0e6370fd057762c56149526f46bf6a62fb65ef5b3b26ae01fa07b4c4e37188e203bd3812f31e260ec5cccff5924633dd55ab17e9fa106479783c2fb212b