Analysis

  • max time kernel
    138s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    21/07/2024, 18:39

General

  • Target

    60fb19441c67f6d58a52bb0c5a3bcde4_JaffaCakes118.html

  • Size

    57KB

  • MD5

    60fb19441c67f6d58a52bb0c5a3bcde4

  • SHA1

    070bb7d558df7fa0da2c3fba3328176ba6a13869

  • SHA256

    15b6714aa7a951f71e96feb0cd1ef1d1e20ab90d70ca0e1ba8fa461ccf0c3982

  • SHA512

    aa371c2088ef4fc1b7894e8fb6c6ed261b3c11e3572c73f962575a2ecd065354e39f76fb991dcf7d1e180b6dd6116fac05d6379f0acdc2ab8cb6c00bc93d57fe

  • SSDEEP

    1536:ijEQvK8OPHdyA5o2vgyHJv0owbd6zKD6CDK2RVro9mwpDK2RVy:ijnOPHdyz2vgyHJutDK2RVro9mwpDK2m

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\60fb19441c67f6d58a52bb0c5a3bcde4_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2524
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2524 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:628

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          1f228d2a63fecf34409f2679fee2df4d

          SHA1

          d270365fbbd83d24a81bbb101a83710d45a1b7bf

          SHA256

          ed3203541ab81085cf70125bede5bd5412ce50024b5dfecca914c9b153a1170a

          SHA512

          1c7d2eb593ae0c43a736e935c7de1a8b510414bbde700de39efece50f715237dc8cdb99172603e194cf61f319ad651b416f3a6749ea2013eb809ab16fc47a5c0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          ef4c147fd7f64e301a3e7f6f45b9d031

          SHA1

          b85cfd129b01acfff53dd0aa4fcca486b0c9012d

          SHA256

          9243e37051b760eae75703fe5017c4033dbfb9b4f2b87964de0543c89fa28555

          SHA512

          3aae4d9c72b8fa9efaa2b40cecd13b2ce0b2f068e9ac747d08a34ad7be19efe6b4b9ffbdd87dff0e9a70b78752b2ad30a788f517b432e5337a19c53b2f94c01e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          1526a986971bc09ef9db0edd69b3a650

          SHA1

          622c698adb615dc06b2a6de13f85e656c1a934f9

          SHA256

          4a03f0a624b56798f7eeaaa5e8275ed96dc03e65a38b008847201627fd81c9f8

          SHA512

          854b613c079144967131e88e4ff9d71b0040b02429c15d5175512aebeed85b0e27b39cfb613b255c6c461782017c25515e2a3438ba2ce180f5f000434c157f7e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          19b4fdbc2c290872208a8f4ee4fae999

          SHA1

          c48326f1fc079ce6c602014dfb2324458c7ffae0

          SHA256

          7fe8b88da3785b2843b416bac8bd62a8a7bd16cd3dc4269eb05a1f332e929981

          SHA512

          8dc05d83f93cfdf3fd74aa95dee6ab4a842d309a823cc0781f0cf482578a739328a8578dbbd92fceffd8d0f0528982269ec25ae3332a793d4719a9a902e2c421

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          1e1787d105b3d515272e6bc8824cb592

          SHA1

          fd87635339a0fbec2a08e633e18cc1a089ef39a5

          SHA256

          8c6476bd5b244556a558a14bb109a01698ea657f1a8ad7672babc10e20572728

          SHA512

          4c3c8f213d08fa1992752c6f266e7330fb80ffff3d471bc3917f8e9a18b3ca0120536a4abd0478aa3aaf2f0b597e4923d902de8a94fa7896bb9ec3e8565862e8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          b1e730d09f0312d9a47136de0126f0e0

          SHA1

          3f3f1123e0cf95ff31d66c23039d76bb8a42519c

          SHA256

          c76e5bc5e2e29337e1891f3bc860ab4b8f54a603ee7e63783791a065210dd7d0

          SHA512

          9cb734dd51785c023b31d6ad98adb20ac29190e8186597a5c901c8da08cc330e012fdabfb624f7a101b337841852eb616bbb5cf01e802cefd3e1eb48833d0d36

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          d644b9cc69530242db5dedfba2f23ebf

          SHA1

          7121856f984cc08763af29ea4d8ce6f81c423f61

          SHA256

          4fb55c48ee90fe5add72152d5576faf74bb3fc8a7240fd0980aa045dd41f81b2

          SHA512

          6f2c160ea176c7e4a218cc3cf8433f96ffedef908b3f763d7cb078d5837f2df1a327e2938c19bb12e9fe91afbbafe9ce4f8438f16dfbf4b6342901e868a890c0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          12cf27b990d8bce2658e59b620e9462a

          SHA1

          c4fe1cb81a7efc34b3d3aa7e0e8cd073eb0559c9

          SHA256

          ffb2e1453d895bef33c369d6aaacf0e690e975157635a0d63d2c16a2ca55a936

          SHA512

          e955bef4c298d46d5f9c8dee82b3b2a2afcc0944ac53053146dc7f6c3fb0f02319c377243d46c4bfcbcf7947fddef8210bc7a00833ea37077df898e6c2466900

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          12f05752f19775f59fbbf734facc6ec4

          SHA1

          0239770eddda5941367d351a5907d46aa5ae79eb

          SHA256

          5fe3babf35a71a3541a31864e218146f641b34c90057513e5c305aab9a7c39a8

          SHA512

          41fbf7361f6ca256c9beb44f6cc0944de52743a36f0c633db994f98321b1e6e1520b8c5dc8f3e6ad43e97872066f5bfaf0014a073ef371d3e66c84932405dc8b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          c343d75219d1ba23f0dc1e7c0a5202ca

          SHA1

          6d1a5ab13886d9c2cdfc7e5ba2da94b915c8a619

          SHA256

          3a7e68baa78420f481a1ce73906443a27b9e5c842ccfdb2f5fc54238ccec6e23

          SHA512

          421ff2323875bf3367d143b343c107df348e0ca0975bb05076e38dca8e3e8b2d50e6e5ea42074faf90cd237a9c2980088d5c817ee9ba2ac6a4b0dc9c9c6691d2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          e90c440604676325643efc8bfe6d1cc4

          SHA1

          6ec3bc14c17087c7a2c0edfdc56abf1d103ccbc0

          SHA256

          d779de2b10a4e1b27f65f8e5c5a0ae15a61efe9e4471820c78a1199eef039e48

          SHA512

          6e75fea94b1f9b3b30e4db32ab6c0a8fadd3f55ec561bac51c251cdf62aa3df140a92a0b0ba561acc888cd260c1042c55a2cdc81d5062e217e3be75afc0f7083

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          b548114e18fec8e27785e8f2bfe35687

          SHA1

          02298483a0d5b74dc00b976f1686a75f6d407f0c

          SHA256

          d30f3f4adf08fc480b470e57bf7e1e5ab2646eabcc340b3715deab20e11bf970

          SHA512

          61dc32d49f0ed6686e95173db62860faa1471aa5011ad25cb5b93b0771d8894e0fa3e0adadef4aa6832885570540243e304e138684370b7c549dc89685fcfa1d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          e032786e15d83344c82978d4ebf9fd10

          SHA1

          2e766ac6aea61c10d58eb31c9c8bc1d5726d798f

          SHA256

          0275be8b08d78a94674303c7830c6d9d5f8c21aa3279f0cf9ce09cdadd68d125

          SHA512

          40cbc89b1c945dc065a7027ce2e40b65b3ad9ea2c531d7676202bb501ec535813c768ae344ba1227b4c380320dbb978f90b59c03ce1681f484d09204aa90d2d1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          0b2aee72709e89a556bb4ca255c53df1

          SHA1

          c0aa5e0443767cb7b31ab1ac8cef67fb334856a4

          SHA256

          a983466648a8efc886fd4a94b75bb828f8a6843c51f42cdac3d3746b6e31b81b

          SHA512

          7ce210df1ce5bee5c4f506e26828abab4e555753bc0f588b7ca57b214a197a7c86890fd6555df09ccc569bfeb7bf2b90b1044a4209f46a52f2718c38d7808b0b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          e6815828197a37ddcb60eb4cee8606f4

          SHA1

          9eb1d20149e9eccd06201de81da7457628ab4f2d

          SHA256

          fa644355703f426e6690d1adb6574e34125052dadd4dd56826c0ae1679693bd2

          SHA512

          847b5a62d7cfdad088027c4bee255330ec7ffdd897a5b17b3157b8e597dd133f299a70766dada79a5a26d7999cc5bfbf0f61609b5e136a1e09d5b4f1dc66eef6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          04aa2e856c6303506158a9c03fef02a9

          SHA1

          2b1765028cd3e3b3836ac76fc9695ddcf2db70b8

          SHA256

          c136807342b7bfe30802369c9469273561257a626b5255474a9fea4ea5f2702f

          SHA512

          677f298e3462e2f76f4fb1080ce404369d473758f6c521ff61ebe405592b3e7743df85699a4d3ac0afdbba6fc700f98885c0c1b9189d39fb6efbc91f86436ffc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          5f18fbc33c146c8b5887b3c7e96d963e

          SHA1

          c8f2ff59cd907993e3f1710bfd95c494b71b1910

          SHA256

          c6f784fa983343ad4884b1daea97ab82c5088b25094006be3aedf3a42ae1429d

          SHA512

          1cd5ae0aa6a0d1a47d226c4ccefe6f63c5f556a0aaec127be2b78e586884b45bf3bae05b81be5204ef3b258ff3e13fc68820ee028a3207f03c08541ed9cb733b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          03fb7bc408cff3a2e2e6deb0a2db7d0c

          SHA1

          d658884fffa1e36b01cfff79b857438f6bee4915

          SHA256

          2c18907e3a473684e87517a06884f6a78b9a5898ad3675ec4618df0f09cf52c1

          SHA512

          efd99502efe69833ac2ad92127f22139a7022c71b5c3d25dec7b802f26f26ceac480381aeceaf84896189e8888fcc06723f3952f36ea8095cec540799805df2b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          c49a5f45b8d979453a5630958356ba54

          SHA1

          c37d6c8cf9a1dc14a89ea8b243314f32a730a5b0

          SHA256

          f10784e99eb4c87aff9578438c3a6f4b4392abdae5c69df242eb4bc1b58b0c7e

          SHA512

          021b79f0ce6077538d8a75c1fb6c16d2fedeef666fc534684c09192ed75e54f0b54bd71423a01ab8a0450a5a4257f7b67dae34b15a3ad3dfea105bc32dbdda49

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          1477e960475e0ccc5a5b97a49d5a5b19

          SHA1

          343c5390b2c78b34ddf3eab2e99251643dcceebf

          SHA256

          561d203f4b36ff55d28001d71e8034eb0722220eb13441cab62bd671d8d72f95

          SHA512

          5b53843d2e504a558a981daa034b8e35d0565303e6ad3b0da7430664ef40b59ae36c323a744ca65b185f556bc7f6f6a960feb0473ec313c4e504c5e478c15515

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          4da817c184d22944048e66565e6bcb0a

          SHA1

          0aa8639c7c66e2597fbb0e04b09e73d81057c7e3

          SHA256

          6efcfe1c6572f59e93b9d096c6832b54aea4fc0ff83ab9ad3aeae7844acb8999

          SHA512

          9b11500be2800780acaf02d54d1f291e2a00a222fac5e2274015cc37336c283a0ef44a6fd154263760d1ac98b31e2f8ddd3e9ba9427e9b9d6d3f927fbf7ba9fa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          304B

          MD5

          02c1d2cd7893ac0a6fe17d4e4f16378c

          SHA1

          1ac5f9e0c1ab3dd783e9203aee6b9aa4370bc332

          SHA256

          59fe95f393677c777de483128fe1b0c8bc0dbfb44746e37b39cf01615c752f68

          SHA512

          f43b582753501361b526859d01e9d4ed19e1f6f905b7fe90804a5de2a24d3de79c93db50fc065fc4e50ade7f4b7b67d63be9ac0a2ca36a23832e0fa47b6bde4b

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2LF9I1AK\f[1].txt

          Filesize

          40KB

          MD5

          3f1aef6166cc70ab042de1772dde0de3

          SHA1

          df8183981aafdd712c1a9a7b6393050f15923e4c

          SHA256

          968e7f84731ded414cc09a6f0b6b71f44b195a7d14e6fbdefc7f8a47b37352fa

          SHA512

          9e74fa3b45861dd6ed7e0d12a86b170eb56a50a13b88e48f3edeeb27e100ea3ec3acf56c713200c8a3bc8ca5d9369b554c0a920ad8772000c75a398359c6f4f5

        • C:\Users\Admin\AppData\Local\Temp\CabADBF.tmp

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\Local\Temp\TarAE00.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b