Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    06/07/2024, 09:27

General

  • Target

    280c8d50bfe8116d4e47e504d69eee90_JaffaCakes118.html

  • Size

    53KB

  • MD5

    280c8d50bfe8116d4e47e504d69eee90

  • SHA1

    594888b23b8aad5bc94ab153468b2ac4103db4c6

  • SHA256

    c19d63694cdd2149e71380ba4c567c42d273963943bfe4537378000781ff536b

  • SHA512

    605eba20af4e672740d3b9b77b2974f6e6b9925a92d87affdc2fb657e1b8f9ef9252d6e8dbda9ea197d2cf5ed33db0903747392e7d8bd775c90f7b00f414a0ea

  • SSDEEP

    1536:CkgUiIakTqGivi+PyU5runlYJ63Nj+q5VyvR0w2AzTICbbvoy/t9M/dNwIUEDmDe:CkgUiIakTqGivi+PyU5runlYJ63Nj+qL

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\280c8d50bfe8116d4e47e504d69eee90_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1912
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1912 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2504

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          74e41e5b61e37dfb8dae9ac852317512

          SHA1

          84f960792a2a32ce8cc08c5d5821331e33fd47b3

          SHA256

          4a0495e583292547966f6751fb730872d2dcb12f30f3771bbd0515db3172d623

          SHA512

          d06da2f62800c21cddbfc07a238510d3e6cb49f7b2714b6f30bc4f21cc19b045a8ecff6987a32db7cbd9eb9addeb07c422157b658f5598054401444b0160a143

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2a894f8c1733688368f6d9817ab3f056

          SHA1

          3b1d2853f4cc48f3a0f58f2297a4ac25884de5d8

          SHA256

          c06b49d622c0497eea846679abc48a5aef5d99b55ac7a2a4f93b252ab97815fb

          SHA512

          10a22aacc7e52836a3ea44bed6e1ca7e333f407380e720d592887765e867713455bbbd2b5bb91a345284696b5186f6413e998a091f69188b715a50e0b5b8078b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          dc57bcd561e13bf27300bc1e1401fb5d

          SHA1

          fcecdb9a6abe6df3e4b16424322a9377e738a55e

          SHA256

          ac4fc233efaeef0717abc01bd2550482a67ba0342c383819bdebd7af17da00ee

          SHA512

          08bd13f7cc44939cddc2620b1410ea008c2ef7c3a348cc8ab716c5e887ba0c791bb2ae24c75b3d383421cd9ac56a86afefe525d7e963c8e6d6fa2daeda04cdb2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          582e59b5af0c957e7d5b1743295380ae

          SHA1

          c8b7032c413ccd12d024df08d90ca0bc7ab2ebd4

          SHA256

          3b18199bde939ac29b1bd10ec689a3d2cce7f58f58f25b61a071f0ed606c9f8d

          SHA512

          5963ac7059a06d092ce5cde3c7d1484912b8121e83a8eb04bfd3bc2232b080b5df25ad7fc22b582a02741f1740302bcab6d41ff86e4ac75ac65da05b07cdfe5f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ca2d944b5dec60e5a890fc5e5e976084

          SHA1

          704ff8090dde842ba73236695141bb809c786912

          SHA256

          f21afa6830d67f90ada6a08f046ec26bb45abe6bcf4b0e8d8656985c16280f4e

          SHA512

          7505cb96d5886435818eb2a3e323134088891bdfab697aa52076ba0a918fe63792703760c5312d03a516dd89c1f3959c7a7c6500d9214ef395623f9da726e262

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ee3c42aaee21529826864cd630f4df7d

          SHA1

          d8172ad545c726cabfa2a3c7c408fee9a087b2e8

          SHA256

          f2610e232dd9c1492e69d1fd020edef5579d820a40a52ddd079ff90416c5b9d0

          SHA512

          c7a0c79f73c6d1432599c59e988428bc0a039964be282689ec6b541e1363799407a8837b3266fc29462f2f7f3676438c872cf80131afb2a6ea29d21695ea1cd6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          369a138f38b4062696a5a8f3766a84a8

          SHA1

          b2d1526819ab459263c04370d0b8d1b159bd0d0d

          SHA256

          037a5ff47deab803bb4e2148707cb021066a6eb276dcb25fdeb97d51a185a166

          SHA512

          cc444d68e9ef7e4d8f84bc3b1f92396808682a914317778406aa9a1e43cff817dd1db618d64b11ebb586653bb1f04f465b1dd8ff253361b0445734684f35c60e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          561e7b185401aeca8434688dd776535e

          SHA1

          dd6a64858a4bad76c1e7091c9e4ce6375537ef7d

          SHA256

          bcc2a709900690fc4f26c13e189d8e43cbed71b700d4c3c14d3db82de9123b3a

          SHA512

          5b4b97c26a7d2bc724b610ed145c65562643154f9ae63eeca5d791dc8d3e48fe8cc71af7d495f4248484b35717e2f39da107ff8795864b2d15d64e3c6114d4c7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          69720f801b7bb62666eae9e9ebd32f2d

          SHA1

          9d25ccf0532761eed36715f0e6103354d1aedcb9

          SHA256

          81b2fc5e351cb0b8bfc68bbb7b9eb1fcbd194eb46fedc7dd4e53b80bacd3085f

          SHA512

          16d90c4320b89f34b853258583b8793de69597a0bfd752680aad36a2a2f5656f18910034e2a6a7e1bdeb5b13dda9378d0e9d1bc9f9ad4b2b67a73371cb6319bc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d4e2dd5d94e53252e6ee91ca66b23156

          SHA1

          1bc18eca34ab2a280d109a36cc0ca5037f7acec1

          SHA256

          929b4285598f310a086a993cff14a940665622da9b84c89dade80626ef147887

          SHA512

          4dba6f97198dd2f06b2a78d39be2d3aa3a1219969dbec01b22122c4c6d7cc55a1a412ae056516cd3ef0bc5a5b2ca9ce0d7bb7b18b951239b813c6c37daaf54cb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          1173723c0f0fe25a9c203332b2103495

          SHA1

          c57fdb09e47b033feb3a4036024d403f23392449

          SHA256

          1b4cac89ef32afba48750c1a3d67bf707bb5a0fd7b6bb1c5324c2a0eff6a2e8f

          SHA512

          5400e44a4f756b4511581de3764adce3a2703269f206dd3976428c891ebbc1fc8f3d8a0f7de1f7b77b2809d57a230a30874551acf6cbc5bead1e37e17487123f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a8f879f8cb8695e8af353abe5b14b9da

          SHA1

          3925c4f7a70ebd2c72688a6136921747b72c724c

          SHA256

          1a6cc4940d91726c84a4c8c7c5e7c7004c753f6d24db02136c3f2f5195cf0dcf

          SHA512

          a7b8ed21ac52c85c5ce56301821937ec010258e640e9f0cb17766163ad47b2e168a79b3b9c5644197e379ecba4ffe49c41cb19f6fe452f460f77f1a26fbf3a2c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          95958606b49e3d5d60677b002fb74ab0

          SHA1

          48171fff34b77e6960342c655b9f6391430fb23d

          SHA256

          2ef47371635e3f9076aa2701d4ea5854e9b64eea31b4ac4b039c2e4de69c3f5f

          SHA512

          41184b70bbb71ad5dd3ee56e242182b150e9a34c8502269009b1bc5541b91e6558663036630436e7dd2be2ec77fcd55a363c2df47402d10ff97433d63e4fdc32

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          255a80e11355c631e96ddf7507bd811f

          SHA1

          325cf4cd760393d1ac16e0de5550c3a548cbf148

          SHA256

          6519fb1ff9ab07fccab34960c36bc87098077afbff9d4874d61f8db7df042deb

          SHA512

          20f5f6845809f193d58fb30624d3660ad50fd39af2d9240298f086ea99f6156ecf53fa4996094cd68caf6d0825e3e6e8b17255da4e9ad9022a1ba834ca94588d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6801338fb1d6c971ef3dac3b074ba8d8

          SHA1

          4bd4d3e9c9c425dcd0aa88f49fe74478f3a9689b

          SHA256

          5a281ecf3667c3b1d00a52051b2ab90c813b618f1a6a52f8c7845b07770fbb5f

          SHA512

          b69df45f1f62e50c58d9856e5a41ff6f07052f18299a4dae2050a53b2a40ca83ebf2c0c1be842bc2fc8192f2571a733d9235b0aaa308c38a3536860256a624c7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          32f95add2f77bcb916b31a7d87f0ce48

          SHA1

          2008b1facff5c384120ae25584a3fc7888fca95e

          SHA256

          106653103ec49b7ac0cb4a5777fa615a487f7a2a187e12a8c7ea1f8bb2776261

          SHA512

          e7d595d5f0d18c8bc92919e8e2e48323b0ee5e046b0dcce84ea6809ac181f58c2bfaea8916bc8c1df8c86ff4250f043ee8051ecf4d5802b5eb04709156b5997c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e308c6ae6365c87456e05c7e876e30c1

          SHA1

          42d5825dc4b9a53caf469a0d1d1b854b07aadb8b

          SHA256

          6fa38910ab1509f531bbb441f3a6dcc98c4c848a41f38329478a8090a623d162

          SHA512

          121bd3f92bbe1685714f4cd480edcc0a1c40b6068faa3363ce770ab2296481b99328e4e0c59406ba342a28d2653a97da5737a2e87a85cd646c82af40e0b105ab

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          bf9d5e74f206cb633e0ad827db475dbd

          SHA1

          a42ad767a9f8aa38a023accfbb7e64fd461a38a6

          SHA256

          add0254422f028756fb264c6c72a7111e25f9d442e6d28298ab25ecc5bcb59fe

          SHA512

          450e66ad4a5ff89d9d778ee79fe7c46e2d937d2c8c899ea97ecb746030d43913eeac9addc8e2da0b3c8dcbc8b60d5f7aeb8bdda25c470b0cab310884f272667e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          d8769eca623154a3e3857b54bb6ee3b7

          SHA1

          862c319eea3914aab674c80e0a4e457c9796003a

          SHA256

          90392878532ae1982d241761f4e55dddfe1101995cd68c53f7de7a064b776088

          SHA512

          19795458ad56e627f3a7ac09d81130a8e562a43ffe8a371c8bab99668508ca2b0e5fbdb37a6bf091bd564db9a6687db80830405528bcef033b721ba54312a377

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6716bd8e8a30839e0d2fa203d83ff419

          SHA1

          5d52f2d68733c2c09fbe7df2a74cc34bbd46b311

          SHA256

          634c49b2bce3ef18fe8e99f8346e1bd6c00194c5bcacb8fac285b42b92c993e4

          SHA512

          544e13eb0e399a9fbb63c4a6bb2a894d1fdc38cb6c7cf2faddaef9fc063f454af96e1a1cf525fd115e38e08bdcac061e4fe024b5b88e314cb74839b5bbeecf54

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EDQW9R5V\upshrink[1].htm

          Filesize

          706B

          MD5

          67f3a5933c17b3ab044826d3927d0ba9

          SHA1

          5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

          SHA256

          97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

          SHA512

          03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

        • C:\Users\Admin\AppData\Local\Temp\Cab2982.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar2A65.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b