cfb3dab4758b462f7c5b12d61102a5fe0d65ec668844520b9d4e8de783c1b935

Analysis

max time kernel
118s
max time network
127s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
05/05/2024, 01:43

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

156a9dca863add59e4ebadc983315a27_JaffaCakes118.html
Size

461KB
MD5

156a9dca863add59e4ebadc983315a27
SHA1

5fdbefaef12c177d4906e1221e63e495ff4cda8e
SHA256

cfb3dab4758b462f7c5b12d61102a5fe0d65ec668844520b9d4e8de783c1b935
SHA512

230b7501f36276a035c8c9d5539e69a29ecb96aaffb96edaf1a429eb79a0fa4cf26c21d156cdf55b979dfd6783024851638c3658f5c88f9f870b30b4ca261b88
SSDEEP

6144:SEsMYod+X3oI+YWsMYod+X3oI+YTsMYod+X3oI+YLsMYod+X3oI+YQ:v5d+X3e5d+X3B5d+X315d+X3+

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 90c56eba8d9eda01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{E1DF7B11-0A80-11EF-A8CB-6EAD7206CC74} = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000002dcc56832ee45b40af0f973e997a3e3e0000000002000000000010660000000100002000000095f8b065c4c3fdd701b8db97279b5ee138b8bd7a475735d11291bc829fe43b24000000000e8000000002000020000000fb2c843dc30f4b40c2e2998f57bebb98b4af88fa2c3fdd2c14b9b9bef21942a32000000048ec667ccf8e09b1d5c09674f68ee37b7f9f8d82061a0962be1b8fd14644e3f2400000004a679b8b4e01879a25c616d569bcf4c04499a84a635015162d7692dc1c9cf120c1230abe5c12a9615c5aedbc8e8928123abf15c89e774931c9194c6a70442c51	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "421035281"	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2336	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2336	iexplore.exe
2336	iexplore.exe
1160	IEXPLORE.EXE
1160	IEXPLORE.EXE
1160	IEXPLORE.EXE
1160	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2336 wrote to memory of 1160	2336	iexplore.exe	28
PID 2336 wrote to memory of 1160	2336	iexplore.exe	28
PID 2336 wrote to memory of 1160	2336	iexplore.exe	28
PID 2336 wrote to memory of 1160	2336	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\156a9dca863add59e4ebadc983315a27_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2336
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2336 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:1160

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
2535cfd1b58dfd2533ac71ffa62b7b1b

SHA1
ffba255769155eeb241622e2f6f521046f7a1fe3

SHA256
2936462d7e44427d833b23168240913141c3fa6840107c6ff4c4bca0968121f7

SHA512
29b564b3f393919485761cee552100640b2e96831dbc4da597f75cb8929bf95373eefe1229fa1eeb0e12a3cb2a6b6fc99801f5bb6edaeda5cd87f4024fae7239

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
5d34473080e9c6022887e3ec56401469

SHA1
8ea0a37cffc3e68309da1c13552d45acfe140b36

SHA256
f7b05efe9d9ce0cb26634a6442d100c44d217411c995508bad2bbbfff4c4a71e

SHA512
836f08a4288b2fab67c056eebebb553d4f22a31179a2e75d784669086559045e648c70a15a33e32f4990dfc4b113b01f10592f36dafcb5b170710448d08eb71c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
99d365ec7a862d99ac20a37411a66bf8

SHA1
bc0d647f0f0fbfa33303cc19c2b86d108494f0d9

SHA256
e4137977e1cc0f8968dd31fe3779f4a62a61249325778f640e82b6dd23b2aacc

SHA512
3474119e0b563f0b4edd6ab6f4bfe9e5e6c9ef1cd160cadf6bdd26f89b69701690479ac51a617e5bfd70760649808b88a80e6a4330006cb8073f956be60404c9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
5d6247b02b4fa058aba4bfb8a5fac2de

SHA1
e9bb968851d3e320650b96bb4fec56b4e2f25dd9

SHA256
e23cf9257d6e76b027a9b4fb839e98e804ff3ade1176a3c7f1bb2e64d8d9cc7e

SHA512
f6795a9eefe40b1556a11e38510bc57fe8f5efd9b1f06121b8e71277a6d9752371923ebada9e8c3136bf26e8259c89100b43c81ba9b3417edc737307b304fba2

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
f244da78668b4737362e976eab3ccd18

SHA1
489742988aee7a6e240eae547331a9c98a7df047

SHA256
1cb077f38dae8dfba8ba8f234120ec4a3262754f4f7604ab4abd0cdba883f1da

SHA512
f52f24c9f652d14f54fc1b119dd07e4c35f7f84f5922175483e750e3c2844b844a923af6088259c1c6413fbba175924274d9e3c60ca13a3bf28ca50f19a6de81

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
96614b697a551c39f507c8d28fbac916

SHA1
5b49280a1060de735adaed14651af9eeb4a1c978

SHA256
61143d4067ad0bd4582df54a4a65d92cd058d97b60b0fa851bd4cc08a5213272

SHA512
fb573bfbc67252d09eab4c55cc3ce73bf6d9665db59ed22e4839e64af6b603b610139c46cbe4a19ee29e5fef460cbfa20d33d8f47a19dd990f320ebc66d4b293

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
0fa4a74af292490c029d641a88aa5a3d

SHA1
a507dec6ab38b596b03107bcb219f27a708cb339

SHA256
cd5d87b344a470ac65089806c814d9da3401d87b1682dfe41443d2391a2121e8

SHA512
684493abe27726cbf1f4af43f05b3fd415539a949341dd8ec090202efc73b8a5c30e1f30618fea7fb647e5da65c9286dd9d53d1b032fb2158a186f372503121a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
9224906aebb42ec5baac8a4b2e3733e2

SHA1
a168fb94d54fb5d966b12cff2c51bf9611ac796e

SHA256
e6b297f1b4c37c841a8d37b36eb0ca449186bd88ee57a6ae0f7d8e99af81c812

SHA512
c8e38d2c7e537bfd4ec97e6624d3c7aac8674b6e432b2036b8071170c621e73c1bca1106262269ea2ff63e9d782324b29f5a99fdd45775955b75690c86a7274d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
067aa11afbf56387bda9ca4ef6b8f2b5

SHA1
55d8071bb0fe0f5fcb4490435bc3d7299f29e3a8

SHA256
feb8f884f987ef6c3971adce1c0d8afafe15de654f6a4f624377d9ee434805e1

SHA512
e3fa6217fcd648fc8e8aa248daca51f9fe08b06edda3065b883fb07cae25f9c88db823a5837164cd88367a43fc4adcd485420d822428e6f9842bc142db5c1108

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
d14ba55983205010557302ef9a71a654

SHA1
ad3a5c1222bced2fe9504ca37cabaf8fa0f0da6a

SHA256
d57de35ec0f65e26204d2d3b2162896b25af977002bec8e09f14bd4fd2f7ed4e

SHA512
24ff73f5e38b6a7d8f243685a9cc112c589a4e4a5a0a71b28a375eecc43006e49258f71b2b40557ccd6543b5e619f0dcc4d00eeb5f65b0725b4b803462609cd8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
1c3a06c65f479869408b7fe7df63f696

SHA1
e4bdd88212c9dc056749eb5975e9042e17999aa1

SHA256
3bb48aa31da547d74c502629b0e1c189da7ba4a3aa5c1c6be6f246b41fa8b44c

SHA512
42c32d2190cf7e3da30ddcce8af6f8f6b86adb8f900b6283c2e8efe84c2a32d1853047731483ac0bfc625b98856c2e773bf53534288adab2e5d684ab373fec2c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
65117f63b2523764d04f87a88fcd2967

SHA1
b437779083b55e040f4d6eb14483e81aefb5c910

SHA256
510e9fc827d271d1fa50dc5a17418329bde8656ab7920ff861264480d99227f7

SHA512
c16cab47403560c786d96e1e8c6879910399f4acea6fd9d24c7e2c5c0af9edd4d496d76723759b2eca93d17f2f89b1d4d24d925a64f197758554b7f16cd7552a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
136e9ba3257404044e53df8808eacfab

SHA1
e2c5eec8e09400c6fa6abde63ecaab2735f48c6a

SHA256
bd59a69ec623e49fb1f0a350091b83d7056ec266c4da51839054cae277c63dcb

SHA512
d93eb46d8ea529f69df93b38484e749df0c0abd42aed5c2e9a848909af9948f253c08e48f3c57ff493f8a5769fca3569d3029c45bc280705381208349b99980d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
4e081320b7d8363e9c34bc621dd9df39

SHA1
9842fdc85aa55e8ce80266b7fdc9c6e092781cdf

SHA256
fbc5fb9439cf31716cd8b3c6e8281cf7c21e50ed8a094dda9601d44b01842e88

SHA512
027542fc7760b05861b0d5f1c37fd882f50128512912d01a13720d170eab0e2ad53152682bf31415123ef8c32b2bb81ed9f615d44a460b5e9e3c1286d582c7d9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
e70ad1fc0f162a3235ea8ac5b452239b

SHA1
6a160ba0cdc1d806d00389d3567b5f1e88d0d16b

SHA256
aebba40d1221060719bb17d245849c8b61d11c8ad0ea5b77895dd70c4cc55c36

SHA512
e9f09fc59bcf47e4607db9852e313b529c9f884829e21b75f294c04dc428e0cccb5637c9f6e5bac868adb00479c63faa6e59627927de77a4413067b8b7125887

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
5573debe0b188243cc4e0285d32653ef

SHA1
6b7e29163025815c6275cc92c673be9edd0fe666

SHA256
c888a631196b93ff38b8ef8519b46a5288d608e9ff29f37e1ab29a3c95936887

SHA512
7335af433fc1593d8f9702fc8f65d3313fbf4ac3dc4c61c6e6ce0582ce7a3ca53c57fdc76da4cdb7fff6639d9b6c5910d351ca6aca5e8354c9983590772b9cc2

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
e187aad732a99b77f7cbc204ce363358

SHA1
5bc12e113f483d079014b652eccd459384edf8c7

SHA256
b81a2f7f51e31ee75a7c6806a231e17ef9d7a1fecab3b04d0638e983dc788348

SHA512
02a0ad6da14c3b0254f874f36cbdf4bdf42e15f45d7651d0592175cd5cb50ae9eb48942798a8a28b6dc6c412a61809503964986a6b92a1ec5930b7e6f41ecd27

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab4E52.tmp

Filesize
65KB

MD5
ac05d27423a85adc1622c714f2cb6184

SHA1
b0fe2b1abddb97837ea0195be70ab2ff14d43198

SHA256
c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

SHA512
6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab4F2E.tmp

Filesize
68KB

MD5
29f65ba8e88c063813cc50a4ea544e93

SHA1
05a7040d5c127e68c25d81cc51271ffb8bef3568

SHA256
1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

SHA512
e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar4F43.tmp

Filesize
177KB

MD5
435a9ac180383f9fa094131b173a2f7b

SHA1
76944ea657a9db94f9a4bef38f88c46ed4166983

SHA256
67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

SHA512
1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

Download Submit