Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    14/06/2024, 11:55

General

  • Target

    a98bf571cff4f7c5bacfb628739e87c3_JaffaCakes118.html

  • Size

    49KB

  • MD5

    a98bf571cff4f7c5bacfb628739e87c3

  • SHA1

    f087a5f625032e34ddc1b30f1ee5225c0088d03b

  • SHA256

    29bc2a78a1c139d05a46a737be5462bc1c7018b421d168e8ceafe1e6151a0ae7

  • SHA512

    39413e56d7acc5ed5265728c14da39eaa45673349f22cc482c424e1460a69e8626a4231147a0e28419be936fa5324292d4865a3c0fecd3aea5ca8a69e70db642

  • SSDEEP

    768:SN0noqQKOs14N1CzMPr/c2ZP6/oazp3hMl7HRBgPrIz6ST:SNSpQKlW1LPrE2ZkrIz6ST

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a98bf571cff4f7c5bacfb628739e87c3_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2332
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2332 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2840

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          116b9ec9233eea10315e8d70da2be40d

          SHA1

          d16fc5dd7f28e3c56b927a26d1ad2784910f5b68

          SHA256

          75c7461246c0ece5b942ddc8a256bf0c01ee533645f95d360da0ece83c70ef71

          SHA512

          395617bb4a0bacae61a587420350909461452721778c23ced49a69ead8baee4a6947c077a6a8a14f07240ba173310ceffcba76675e6378764fb0b0dbf4581c9f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          baba46f78ad7d5cd0b03f010f668c2a3

          SHA1

          c1c110dd3332f4a42c7131ce074f059c4c46b63b

          SHA256

          e7cb2ca24f27ad4ebae2c8b5423ddf6bb8739a2ba7526bf963a70d3771f870df

          SHA512

          67c5ee968748db627115bf712301f6a276475d150d1b29f9f0958bb30e31171cbf03bdb3bea1351060422c1920f331b3aa0386fbf46a255263cd9baf93931188

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          410055a1692268e5d5ced001314971a9

          SHA1

          0c7e2dd7e37996a3f9551bdc48ff1bb78db8cf50

          SHA256

          5cbd2860d86d153c407aee1dfd82dc86f69cb140b786cc3eb5013034a27b4919

          SHA512

          9c0a912db9a646501f2177d034448f139f199737cf155705ed8c313f47ad3b7d1d7c54edc441915564f341811437b3474e6cd5f5bb9987847d43f78f61ab348f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3d613058d0b71c0527c467037026ec38

          SHA1

          f1b88cbfbb2481404c3d3a5a1f03bb7807a3dada

          SHA256

          514d1d07101e043e0e272d85db25547b92784e3c9e7e991f64fdd8796caad59f

          SHA512

          06700183403d30dc1beac99daab9daf072163f374556b991f4f504e59f35d9472bf4c1f46f9b0331eb0a3a2321fe98f2cebc94f443bd56eb3e96492908ce64a7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          189fa955b8ff8c8b0587c80cb0293b72

          SHA1

          d1a32090bd64bb2843d8a89d40cade391a9f1ec0

          SHA256

          1727c74851ab09cfc5c66e66bbf4b1b2249845b9a8f64be65506d702fcf22601

          SHA512

          2e0215305e2ed08cc7194084dc68fd66e821a13c9a3c196d15e90df971086a01bfaffecb2700c2866a5555f1c9058c1d57062100b0a9fe71ce24e8e1a155d369

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          df639e2c290bf07a4a442f8e0ad3471f

          SHA1

          7c271eac42c687d0427b33861ca2c2c773599219

          SHA256

          5cd526562eb7c3eb3c6dd45e99286b77e60c22995132124ccd2dd13b0bb6775d

          SHA512

          2d01ce8bb17dc248dc439f821eda73f77d06ebf8d526de1d1d61df7a016de2b02cb023a0bb3d09afcfa6791b1e56911afc81aef291b83dc3ac990863e415ed54

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1c090436d3ad043271a5413a66f6d585

          SHA1

          9d015f23c844f54bef3e647640e08764f30b975d

          SHA256

          56bac12acad344ac15b2227d5ceb56ecf27b9a3d2a96a211e31cdce1ffd2962e

          SHA512

          32f0347a9b85b6918d16963ed79e638185389a7c2990fffe87c29877133e64e8751bea2d5819c1131d6522b265ff435fb1110db466e6c8f8b570b6b8027013fe

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2b7641a0315d065a426f38f1fdf2012a

          SHA1

          502ac57bb55bd775c4f7b312705a066a32f49432

          SHA256

          c80f0392e11c93fe4871205f8b90b00c539455ca33f8c71338d0b262330b0490

          SHA512

          3bc75a70f79c07c21b58946d6d9615619a32756ca7c3375caad6eead7dd6285b25096bec25ee234fcc2fc6eec9bff29caecde5bc1ca5aba78876d71db3f453cf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c6f669bcbf17a680a3d9888950188130

          SHA1

          b4c25a06f3c906361ddb1471d41587e266e6dc46

          SHA256

          56bd25ca0009e4dd8614acad0b4496bce1b9c7004d5cd9620cab999ed380b59e

          SHA512

          548c80f498a33ac70b8032dd349956cec7b25b170871c24c9075a26175ca9b27c70f89f41d96a2e924d95391f0e445c491f49dc6d0529a46009c37fa3f8fbc95

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          04141c2d340c0a77791454496b8cf0ac

          SHA1

          5ee30c383ae8fdd2fbc354572395b12b62509357

          SHA256

          e57903864f26c47f46774f6feb0cbf1db587b09f35556b46287e9c407e09ef00

          SHA512

          2cf1ea5179375e54e8b29819a0ac487a996b3da2816b7732dced601e15258cba935af1e3ed314174b6570afde77feb606775830a198f2cbd1a82b192c2f6473f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4e481b3b29387503d7dfd735ec4ee9c5

          SHA1

          a82e7706941cc34e31601829eba20046b50b106a

          SHA256

          c604334c39790bfc9e62f1a775f3044725680f9f2867166a2dce8ab1fd358ebd

          SHA512

          1cbf1ee83cfbace4ae7025e70a48b76785ff2608a1ae9a13c70832419122b402110f8f238c1313fec158a2595e2d0a0122321004d79d445e60bebecd3aeb206f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9f7f574ea6103d78b5de608129eb9ee7

          SHA1

          e0e830f7d5b7e4173ffe4412949df3ff18563a95

          SHA256

          2c5fc63b23046433753a02adf5cc5fac2168832241c56cd02617b8e41ae64a59

          SHA512

          7b69601ffa063a67b979b56db55c56f8c77ab1743e48a2f1527082dc48b64a889d8576057f4531ecf58d099036764aa2947443197bb198b8ab3f21d0b9cccdd8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5856ef7638e71fdfc264e4a4a3a60ad1

          SHA1

          2634800498edeab2643fd6e5fecef7b71b5dfe45

          SHA256

          4a9f37ac610606f0959958496eb1070b1f6286ce1a7147e9d1388ed3ee305895

          SHA512

          611a4655e13ee136aa49773a2e8c9e7f5e12f3af2a0ea2162f0cd33a049bcfb1080596eb0fa77e41749c9f4eebe02e3cd6c5460359d0e58b72acad01f3b2a4c8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c5421c4b3bae8c7ea210d3f8b1a46747

          SHA1

          9f3a97e44eb543764e1633ae04efa0ca93ebc091

          SHA256

          9ffee8ea8e41aad84fef91383e032adf4bfbab18f183623f5f47ea6a6bf2c971

          SHA512

          de50547c3e41c40eac361f0a6094b135a159031e70f6ce56e67d94e39f50fe3670430b12e45d8aa421f07aaf59c21d099bfa3c57af9439150ba00a14c8a205ec

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f03a52a2347e7fab108c027d60fe7a75

          SHA1

          0a701ad55350ae8ec80184b977afd1c915005981

          SHA256

          fd2d6481792503fddb29d72e0b0db7d2a55bc3a09e73243c02599397c3464b5d

          SHA512

          19cb6091fd575e5d3159422affef5cb9e23fe54ce2f8318412c2022574a0fd10633ceb91b4fc0f1d6c28c9e8854b61efc66974d9a6727640b9ca8f9d731c42d7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d04ce3831439513b0725f18a9468d944

          SHA1

          9dfb270d13f10d0fec78b701548c3ab711dd7e6e

          SHA256

          b032f7d76907d6fe5e0e89c1aa6791749dc6c1b0650198488e0d45fed86cdbea

          SHA512

          89a7c66c6a62a03946bf88efc059838aefefe7086f9a639b68403b2c9d9e5de7e1d68156e1e60a5bde2c01019f8227b500e66ae7deb956adea7b04c824f60da2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1e8133760e6405e462b198b843c1689d

          SHA1

          b4cc3b710a1e4f5c0fc2027cc136238b7f7a4ae6

          SHA256

          acb016df7ac0eb95be8967ad9bb2739ec79939c61a7a76298db3911f681eb779

          SHA512

          c33ff94328badaf8464efb51d2f34aca6b0224e250602c41cd2737539f6c46b9649e134c01790645b0207c0dbb21365289c297199c74de950b8309368a3b56b1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          fd1d86df6b7cebe5a1f7e20e36cd88ec

          SHA1

          19c47cf7577a089c741ff6f4fa986a75c17875ff

          SHA256

          bb05669aa177aeb54a00b70dc99d13e3d7fddd8569de04f4392effbe97b9037f

          SHA512

          a466e21138b97230625d5fb8bf169268cf85cfbca91513b65a251f3d2dce4352ab8056dfaa35c8a1262687856acc9185ee27c03e930368624d0cceafe0f6b091

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c31730621035be0cf309acbe184031fe

          SHA1

          22cc674a3c1f1afa0812fb7f7f313801ebd96f05

          SHA256

          96a2a5f89127892615b54df42bbc624d15a050cdd98092c136788025f15659e8

          SHA512

          c395d3db456fdcc882fe062feb64a780e02f07662a88931b3d532b827e238395fa0151b5e4af712a879a283e7b5bfe2f2abe067106dde4ffbef41ad56a3d1ee8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9451eef92973fb44045393864db30270

          SHA1

          1ccbefc0b50f326176c11694c30d369b85f08e95

          SHA256

          5e6cd37f4e6a0a346d181886affbd7e7d7b0cd2708af96319f473a3f9421df33

          SHA512

          3533cb176a532a9b2222e93f0c9a8a92315ea7313d20f890e4da15dfeb382b28236f5351c8a1e28016b183415074915177b52a26cd177e1bf76192ac9ae4daf2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          e614e72ace1fe3afdd587b1955b5de24

          SHA1

          d5c63309751bd35e014086ddf4fb6630b2c5492c

          SHA256

          43af08e875c6ceff7f8ee46616d337a303452611befff49e03d697d1c3b0c097

          SHA512

          6a54d218e915708b87495812898b165650d4162a823d73483f4a3165c59f214d903f57c440a730fd314143ebf8ea7c7a5acd669bf1cc21da63f216ee19f5be28

        • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

          Filesize

          4KB

          MD5

          da597791be3b6e732f0bc8b20e38ee62

          SHA1

          1125c45d285c360542027d7554a5c442288974de

          SHA256

          5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

          SHA512

          d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

        • C:\Users\Admin\AppData\Local\Temp\CabC39E.tmp

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\Local\Temp\TarC529.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b