Analysis

  • max time kernel
    133s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    01-07-2024 20:55

General

  • Target

    1c773ff46c61f5cf27fc6dd665a5b255_JaffaCakes118.html

  • Size

    53KB

  • MD5

    1c773ff46c61f5cf27fc6dd665a5b255

  • SHA1

    5e7e4e682c2f8f81b58dd2eb66a3b3d90ec2fb01

  • SHA256

    1d891821280cf4dad7fa18cf546de38cf773e248435323df1788bc43d37dec85

  • SHA512

    80c29c8b8cd48a8f9584bc8af674ba4155fa8238562118148fe0f2c6e372b8e4384704f2538e01caab1ff5f7bb43bd12bb59c8d41ffb7faebfe2ad8c4e07af9e

  • SSDEEP

    1536:CkgUiIakTqGivi+PyUK5runlYK63Nj+q5VyvR0w2AzTICbbGof/t9M/dNwIUEDmD:CkgUiIakTqGivi+PyUYrunlYK63Nj+qM

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1c773ff46c61f5cf27fc6dd665a5b255_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2188
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2188 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2184

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3d867c91c5f9c579bcd926999bb79121

    SHA1

    5910c89fd1e34e4fb78788ba0c630df712fd244a

    SHA256

    aab1e53c30a8f3f6e16b02202ce4baff40a286395e2107258cdd02596a5dac18

    SHA512

    825a4790dfb6cc53c1ab8a1b353c3e36eae59dd9996b33a680e06b6bf2fcf85c0de510a2fa12691e282b421437c074e89e293bf85567069996c3b41c90340351

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    273abb7f65f45b624655ab9f7c48c39c

    SHA1

    05a74c49e7627a1aed26e0f68ed5ee57b823dc58

    SHA256

    07c3a32f2b1dfb7052e15d672aa3d37176536d6e3809d660066c10a7c7867623

    SHA512

    f3cc7b927b8b7dfb1df9f9dc4a1cef50dba18b7c7221adf89905b749d0c1ff208ea07922a4cc1ea976bc58381c16b41b4422e4e25874da5c7e520d318746dbf6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8259c78690f05f62eb0262c0e8dbd88f

    SHA1

    6385de2bd7820f712e340ef0ca99e611ad3da386

    SHA256

    bbe4f6c5d58110c989ea33d5236baf001262e734af591f9e4da8ec2f83b7ac25

    SHA512

    1a1986f7cc768c1c5da77aa5030d517e8cf4d2cb86a7f2cff21f8f7cd74b7ec18d10a3d80fef284d57f9ede7fd867c530f5dd42fc0c9592d6ff1df021e505bbd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0d726fa412ed87251d18fecbb1a48fc1

    SHA1

    bc88a5f264f424594b80289971fa3ce9eb6f7a10

    SHA256

    a10efc7a940bfc74de69ec64593a1ade2ea363aa597c91df1dfae5fa3eb75a52

    SHA512

    23425dbf4d38278315d4d017e737c5b4b5952f71e13b35b162ab86cfe0987d2fec0a988dfa7fbcf1b6785f70aa17f91f1fa723f1b5264d5c2802ae23427e1565

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    617160d92f98649f3e3da500cc83fc52

    SHA1

    a5e2ed9cc7d6e7ca0562f44cd62c6be96bee3f67

    SHA256

    d3e4ed7c741cadd6d96a85fe52ff5635dffd532605c4844746a0a01922aa4aa1

    SHA512

    c04da2f3b5afabcfe5b8eec7a0f280afd57575d87708e7134482c713df162e3d4152a13c0c925a7997e5527c8d80ee68b043fe61ead17a552f8912fa62a6e0a9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e99a5d066d9831c413143f5d6d671101

    SHA1

    fd9eb16a7d8736cf295d03763d4656587de95805

    SHA256

    579716f5eab11cb65c7f7ef228a975ee8537a293241030347ddb486b0ae3a044

    SHA512

    6ebd60e5ab48fbf7e1b2345d8e809b562f936875477154de0aa45e3ed35388549b1d3c710b71490e1c9df1f3363c717e283130f0c433692738f143d3eb9f9726

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7463a6410cfd3ab3dc7b7ec833dcf638

    SHA1

    bfe73575eae1f2abb60b116306ea5232e0460093

    SHA256

    4957bad232d5f914f13fdadf6bfde60c852d27f96ab72dbad7657e76f13e3590

    SHA512

    5ce5a098af2dab06e9257c7c65abfdc7c6c25879207be4af54f42cdd71d1e922dc4642a833e3ca5bb6f787842a56935cc12f2d602b1ab1afd213ef603f7273ea

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a45867d9fb21b627fca1f8cd1d503e3b

    SHA1

    ffa946b0cb13ebc25a734559005ed996dbad50ed

    SHA256

    983ebb2b774261b75a7715d840a68af32d19dec8d9ea93bd6b88d837710d3528

    SHA512

    a83397c3d3128f42ba2dec058e998c21fae9ea51eb6872ec54890c5a13658f172575efb1ebd2f13af1e4bb360564ca9a98afd51f3754fbddcee86fdd696096e2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cfb6351b59c068c51cee3aacf006ba4a

    SHA1

    51d530ad76a283b4927f29a84e37927288eb8601

    SHA256

    ae7882a98567b60185ac6ca9f0b3522b99cc4ed0f867d3e0d10c85c353c069fb

    SHA512

    72e72a9fb556ca06c129349b98a9e59baea41f516486b81ae2b1c3162d94ebda9dbecf8a398227e6ea3a728beeafa23213d08f1fa4a52f4679df71e0ebd83d3b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8cdc8a43bc3d6b5b4ac3d273a0c56ff7

    SHA1

    0acb0ee5d4407862f8fca9753826bc9bae444b99

    SHA256

    9c313b070c2cfe51cbeb0dc91b5642c264da7edc0ad43ac23d73c103c74ca16c

    SHA512

    4f40734d716eddd5d38f66839ea56e8d608dbf48f26a94bddce6a5568c4cce3ab11783a255461a8bbd58b0e27843641169fda39136e8d1b91acd224ff4c0016a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    130427e0ed2c151cec3e9c7008f3ac8a

    SHA1

    c52c914be90bab38c5c009f97aeae7a94ef24e75

    SHA256

    5131af639692577cafddf42d49a502cfd73727115bf2df9d13d67d4143abab20

    SHA512

    caf1149ad74331b2cd950c1847385033913acbca6e8654f20c955159d3cfe017b0ae03076b0b894a674ba3bd963f6ba035de3915d57e1562fdaaf98eb75fa4b3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4537ef80f6b534b7605b4885258017eb

    SHA1

    710d520a84b7e5fc7e95177ad45704d6ddc0658d

    SHA256

    362db3294865b7223e9eb0b993b95963295c38ed011d0c42c860cce3fa6a57d3

    SHA512

    f39e55ce030bc22cb14c947e4139d1a470c41c11ccbb5f8a52aaa45676fe2270e3fe49a32c72d97260b81c10cb70f629d2b18361af96cbe283aebcdd2261d793

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e79f731e3a6168f95e6c8742ce9e136f

    SHA1

    a3c662cf5927dcffa8c7a37fcfc5061481075dfc

    SHA256

    30fb177b3dd31d2a4e4515794c300d6ab4636ba1c0a910c3e30c265d113021ba

    SHA512

    2c84dffdf6b61e79fc97098eeaf79f8017c21696a22dabfcaecd74fcd546b35c7860fb1c8bf47066e036f5b7b27217cb60e716cee1b6690af75c394f94c1a8aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e8e8eecd7259323a8f2fef5165f265e4

    SHA1

    5cdeb891eed151fa313020b9456f49dca75fcb39

    SHA256

    9a2b37566f26f07bf6d851ad6e0f6050f555225d89c44fecc83386bf132219bd

    SHA512

    5aea585bf4917ec16730cfc5b130b7f4c0ce8a4df858819849c6c056414f466e2dc53cb4d7a61b6d3c08efcea88a3a5c358ae2dcfa1e3ba3cb8db39f49f9dcab

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2XHJXO3H\glossar-js[1].htm

    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

  • C:\Users\Admin\AppData\Local\Temp\Cab53EC.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar54A0.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b