90a7c895fc09e13fa2ad992dc09837145d7bb5b829891e04e55392c2b295b88e

Analysis

max time kernel
132s
max time network
128s
platform
windows7_x64
resource
win7-20240220-en
resource tags

arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
submitted
09/05/2024, 23:01

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

2c21e6e2a808fe17cffefa05580dcf15_JaffaCakes118.html
Size

461KB
MD5

2c21e6e2a808fe17cffefa05580dcf15
SHA1

6eadcede02186ec0210428d4d388b7ecfa8dd2d6
SHA256

90a7c895fc09e13fa2ad992dc09837145d7bb5b829891e04e55392c2b295b88e
SHA512

965de8833c4c3e770315756992b32312c691d1d03b079c0dc924af5c91b2dac9b2cf1cd01d580d08694ddfeb32a123e8e68a2bfed1bcfc5c3c0aa8f83c0caed2
SSDEEP

6144:SusMYod+X3oI+YssMYod+X3oI+Y+sMYod+X3oI+YLsMYod+X3oI+YQ:X5d+X3k5d+X3W5d+X315d+X3+

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "421457532"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 302f87db64a2da01	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000abb8596cc50c0546bfda6658dcffc23300000000020000000000106600000001000020000000650e9847418456c4bf38725d4d862a3c4bf9dc084d7157e80ae8fcddd541ff25000000000e800000000200002000000070194aee55e4f76b39c23eaa1971001ca14e15274c53ae7bf905869a5011e74620000000dac9348a96e84d4ff23a84e2d0c4aa97b3263bb1b9459047a1be6ab219cdbb16400000006e27737a54b97f73c4f7eb6c0310750944c41720c737b54a5a3da992ef90a2f773c8b66c2e1c602c79cba0dad7a5a3c5e959fa366f20c8a09377072ae0fea61d	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2721934792-624042501-2768869379-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{0317B151-0E58-11EF-9680-DA96D1126947} = "0"	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2976	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2976	iexplore.exe
2976	iexplore.exe
2556	IEXPLORE.EXE
2556	IEXPLORE.EXE
2556	IEXPLORE.EXE
2556	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2976 wrote to memory of 2556	2976	iexplore.exe	28
PID 2976 wrote to memory of 2556	2976	iexplore.exe	28
PID 2976 wrote to memory of 2556	2976	iexplore.exe	28
PID 2976 wrote to memory of 2556	2976	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2c21e6e2a808fe17cffefa05580dcf15_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2976
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2976 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2556

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

Filesize
68KB

MD5
29f65ba8e88c063813cc50a4ea544e93

SHA1
05a7040d5c127e68c25d81cc51271ffb8bef3568

SHA256
1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

SHA512
e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
e73f34db5d39daec2e8274d4aa04a9a1

SHA1
0ea41364042f0f755128c07dba6508c342f77ace

SHA256
95856315fb9848143eea7da5e7e213a665867c2c16f9af89f646145b0080f351

SHA512
de172814bc3d5e13f12f39c6a71cdd96b6692e00824d3b710d586ee709ed4808bb5c05c692b0fb83ef88ecf90c554470a66f954042068ff692c9f58c7eb8c970

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
4fc1f39b7d8cb5bb18882ff61f044272

SHA1
e6938d3ca29638014ca4179a1f18fc3088f297b0

SHA256
f24180fe3f0d01068e1f150b4602e2de675303126a0aab1ef5a1a84e88549ca4

SHA512
c2b118b9e9f63b677b875f6c4d7081045616ffb48024ead6987df35905fdc18dea2739f063928ea082043d79403f1ab1303d994ddca88ef094e2225395f67eaf

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
d2b091d87421060ac0725fdd041d88ca

SHA1
b5e9e1180ac850ef621414a0a3081b60df9d3964

SHA256
e73a5baf6996908cab6710be555b037404c5c5ede0a24e62af9c7bdb4a4bd32a

SHA512
a275b57e9023e80e366caab812c0f3af950b6185087e2c701709477c60f9eca38faa2e19a6aa2bdc1fc7e17f456de4d0ed127851fcc14a11e069831732becb6d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
9a960e0a723cc87ca9a1033f6c16fe11

SHA1
d70bb88bf328b92e743b549b12a59b623bde4075

SHA256
657368e0c83e44e15d28a2fdcf9810b2426e72b7a8057b8c746b9a989aa4aa6c

SHA512
d11426274afa81aac6fd571f1c028f7616228b5f240a31843989d145859a8955fff0c548794a716a1a28bd52e650fcc35acdfa72852b42c6b40967c42e8f4dce

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
0c3cc1fc9b90cdc44ee7ae4e035162bf

SHA1
a2fb8498f22c6da002119a91322ac9c4a5451c77

SHA256
69840ce630fcf3c81a0185545a65ace6d59c1b757110396336f46892879b91d9

SHA512
cdf12f54ba92042ae38d324ad2a7898526733cb5196c94a4164f3a286ad649cf96b5b10239fd15d89751a8f2190ae21c41255fd0f7e78ab7a1afbcbb100c923e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
7f9e50dc9da83e7c0541a9596642ac09

SHA1
4400c6c622d2c04fc954d106ea9975581feb5d89

SHA256
7a8c800d8d6b252a9b2505a1da48218eae181b60fbb71e67223db23590e38d18

SHA512
85340ce4bfc213a1a3c980b13d8a1a3e48890ff4cf3cd5cfb1080d601e6466df1108ff8f5fd8f52ca8ce735806c42f80c5e09d5a8730a945d5b196d2a82470bf

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a32800c93a194895df9ef623c48e4d91

SHA1
98fd7d845834257056163efe3eb89a221129b1e9

SHA256
0f4860370d506a4a4459c43fe32d5d9ba8d973bc41185f795e48275759cfaa3f

SHA512
9bfcc7d4d7052f19cad841fb9269eae0675d43eb2f863d9dd013ddefe490cf6f1272a1937577affb5b7bee3f3ba05095186a6518814f0d45ea87980620d12fbb

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
12e3ec55affd1454c901f2604fac0b5d

SHA1
3883d069b0259004609c6277da2268d2dea0fb8e

SHA256
9aa15238fa37b791f6aff7a8708ab9c63aeea31a90d95d51c530cf1f1f431e99

SHA512
2f91a697985288a952ea7689505539269459a465ea4d3fdde508fc5d7ab05bfa683490d7857791afdc077c31dfbee94e7cd6db8cbdb999665960edb84c386afc

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
5352648e219ab9aeb80d36c1084e2892

SHA1
9fb63ff27567541fdfb0e709d6da0ef2a584e175

SHA256
62f0bc8cbcb8a32b555db3f3759ef8d225caf723f80b1e6d0d7f858460eb446e

SHA512
60fcf78b85d3a6c377f789557c5f1b05873f9fb291d047e40a1db41cc26fc57ab8b398f298f6a14cbfe63e1dfe3e856524739c29340823757d5562afba76fb02

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
5988a8c90a421f574a03b258e5c00966

SHA1
752b38f90ddcbd3f38001bbef5a82420a7cb3feb

SHA256
ab9a4ee3e6f1a1618f6b312e0a24a2a584e045d965040c5ee75f817d6c0471ae

SHA512
d209938b5d5724fd26b7a84a557a2ab6418d54eb814d8541e9509eb213349ae8129774e838e15ddb667a81f465d0389be8362566a7aa39411b767f8e3677fa4e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
5d680c7071f30dde834693cdc9be376b

SHA1
e0cbc8aa99230d9c49c4322ba9e7a5461fa68397

SHA256
0b5e7c76491479e1731ddf3d9b9c7ef2ec0403874662a5aeeeb04a86322c13a2

SHA512
61db622e76fa8b10705590069f4dd23cfe1ef2e99f3edbf1f7d315e41262170b927891cfb43b48c07545cbfb1e9ea5d1a0353315a654ab8dfb527b2453ad91db

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
3f16c5b405046e965bca529d6a513033

SHA1
d189b35a8e06413e41d4ee227f58a6e198b3eb00

SHA256
c9bbd31c1b51e7903b6b3605aa17631a2659bb0c95410d97848c6377b3729844

SHA512
c53bd58c0c59c9a7e6e9882ce5bdba1f166e1d19066ba1fa02a6bb09b9c1304d8eaf8e7ff3dee64d2506296341aa5b3f7a7792c372f6077ad38e96e153c9ede1

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c7cdd0d43dc9edf117db0e881fe490d4

SHA1
21dae7d44c60b1450783fa708fa64cbfc12dbe13

SHA256
f6b0227745ebe372827dacb38a84b3ab69718970f9cbc8bc4a4a49c4ea2798e4

SHA512
85218a7310a1d4e979bf1a06d9aa13760a5f973ce72b7410ebcdb2fd043fb015dfb66c3aabf62f3765bf6933f34c2e5037309deca355cf1bccc7be9d728b12a5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
fdbfba3b55193d32899c6a263d24538a

SHA1
1c2a4c1d795bfdfb4f96b18c0e98ccaf693aa459

SHA256
4863a67677c48175a0e088d4afe943508c0f3eb524bda466afc3d83ca69b8553

SHA512
e448cf23bbe1decd3e87ba0ac3a25519428b1c4e4018d29f3ae07a4c677b3a4f6e4a5d185bb7922150e73e364c2aeef7511b86a4d6b5ae3876edb24c96145f5c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
89b8a03db19ed40160ed12ad66f468a9

SHA1
6fc58d00833a527711d1e5a434ee81730762426f

SHA256
078354ecddffe207cd76926b3c6284fdd46cb2e4a71421fa6482b66614a83eb5

SHA512
8a054c7adadd42311c7f7ea3115e7f8de30b442a2af034633f0b13195313f87bf6a81da96415f505e339df7cdef9e4057f4ebe4224c9149b41f8a631ce61324c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
591313e1cd1314652aac95c00f5ac854

SHA1
328d7ca8354e30fb42e103ba625fe1b101354c08

SHA256
964892b69105a26942d1562ed0cba72094fe13e669b4ceea9d580f2022ebd6db

SHA512
64a62f095292513418da8c26e517a78cf0ab2e5501adad905da5ab06d8bd5658f33429b441fd04a1c4dcacd32aaa387f905e54fab4a2e69339273f5f77cc7c9b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
9f3244964801870ef5600d8883658821

SHA1
d0e38e185cb5d21577d69dcf2c733de31c777203

SHA256
e69643a00c41ffac6bc0a3d74131dfa130669d0b492a8fa99d9320cc3aca73c5

SHA512
f586308a56ad4c17f93cd8734e2f9c0031ab86af7260612d32f00d9fb8da3bd53f48e8f324db8c9cb6f822f0072c5f5e921fc1689efbd9e04bce399bafd21884

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab5A41.tmp

Filesize
65KB

MD5
ac05d27423a85adc1622c714f2cb6184

SHA1
b0fe2b1abddb97837ea0195be70ab2ff14d43198

SHA256
c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

SHA512
6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar5B44.tmp

Filesize
177KB

MD5
435a9ac180383f9fa094131b173a2f7b

SHA1
76944ea657a9db94f9a4bef38f88c46ed4166983

SHA256
67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

SHA512
1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

Download Submit