f1da01222f4fc39355a78c3627ce9945835adafb413c415e2339af56c099b0ae

Analysis

max time kernel
118s
max time network
127s
platform
windows7_x64
resource
win7-20240419-en
resource tags

arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
submitted
09-05-2024 03:46

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

28293b38033cf392c9d8846c81c407f9_JaffaCakes118.html
Size

460KB
MD5

28293b38033cf392c9d8846c81c407f9
SHA1

7e968c80c872ad4e20ed59419103802b1c974ced
SHA256

f1da01222f4fc39355a78c3627ce9945835adafb413c415e2339af56c099b0ae
SHA512

8cb453015d61b47a44160191007b030cb399d8017230456d51c003d9d471c8d9db77ce1a0092273c01b7bf3f9e62ef88d4fb25ff7353fb59acf56d80da84ac3e
SSDEEP

6144:S2sMYod+X3oI+YDsMYod+X3oI+YhsMYod+X3oI+YLsMYod+X3oI+YQ:V5d+X3l5d+X3L5d+X315d+X3+

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{AF053DE1-0DB6-11EF-9A67-52FD63057C4C} = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 103c9587c3a1da01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "421388242"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000d7c7e73b934388418857a0db8be9c1d100000000020000000000106600000001000020000000d8f0d86e25d21c67ab239f7ab695529f079264ad06673be8d6b9cb965e5bfd5e000000000e8000000002000020000000b6e8ad6dc9b9a9d8fcc49fa13215d707ebe8ee880db53c79f92f1bc6cd11cabd200000006e9f4366b4665820174eed4bbac2b098974f1dffcf77b514809e85c835c0acff4000000061d35f219f31ec4d2ee8aa31624c2b36b82796b368325c51da79c5d7cf045a39f2749f6350a236c9d086466d550e40db0416d5ae591bd1f0955824a3650bf5cf	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2484	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2484	iexplore.exe
2484	iexplore.exe
3028	IEXPLORE.EXE
3028	IEXPLORE.EXE
3028	IEXPLORE.EXE
3028	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2484 wrote to memory of 3028	2484	iexplore.exe	28
PID 2484 wrote to memory of 3028	2484	iexplore.exe	28
PID 2484 wrote to memory of 3028	2484	iexplore.exe	28
PID 2484 wrote to memory of 3028	2484	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\28293b38033cf392c9d8846c81c407f9_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2484
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2484 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:3028

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
2c4f7866939f2f9b8e258bf4c070b923

SHA1
1bdb13bc5a82cd62e908d3fec8d02b141bfda32e

SHA256
5aacec116e7a0042abbebf99c519fad0a6056678d8fac782be9cb296f0ad134f

SHA512
553d9b2c21cc4a628b9899894069b3221248ddb6230b4d9ddcdb3229de1e3c560d16d8a6eae6e108f0e13515c9db606eee46409c704113e753e8c212ec3ea980

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
bb5bc939bac3c832f11cfd849a3cf72b

SHA1
dc261d990dda373a8d02b953f13a5f94dae8865f

SHA256
0ba43c2475b02da2b7076507e0292522e9d939981118e97404310c12b876ef5b

SHA512
ca4517d0378c53da7880254f51ca37471d40cdbf75982e1a7548022edc97f2cf8f975ef7d2ca67bddf0a039ddb6c95a7540288bd0b628882925b6292f2c808d7

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
d95833d93ea8b6ecb646d9a0f7ded0d7

SHA1
993a7d64440d8eb757b73cbbcc2147ea5a8c408c

SHA256
9dc0b5d8ee18c4964decc67693052d0286190dc91479d51040f5f0ad7c851831

SHA512
9c4693c90763c12574b2c3f1ec2c26570a503ae7401fa3acd2422ac8b67576f3294d00973486541566756c83040958e996d12395bef75dad9d9d79ff0c01d419

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
956dfd3624d476eb7259e7fb1a5fc478

SHA1
f45ffafeb8946d2471136e14f256847af49e66e0

SHA256
ed92a494634c653a4e47da3b73f4112232e2928bbcf2297e7df369c04fcbc6bc

SHA512
aa627562ffbdf31fa688ac66bf969fb519fe00013bc6ccb9e5c0679e26457f4690bbd84304847e8ecc7d503e4798e7ad3aa292a702bf80c0a061501573b5474a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1f41e7db2221bf5ac0cd3792d43be255

SHA1
1cd61fadf4ee7923a3a032f18788c9ae54da19b5

SHA256
e30662e4543fb79664aa12defa3dc45baf86cfc0a2d7dee6800fc8455e3422b9

SHA512
11d55a649c2603b29f6f2e46da6da79a001b34c75771a373aa9caa10a4637c14b9ce1377da8e21a6fb0e08bcb8a6728c708a2eebcb01bdb590399067cd581e4c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
e8521d5bea6843d7b5dc6696963d2081

SHA1
9066967d57cecddcf9f7e19951f118f2bb022854

SHA256
e31f7a2f98f562afe914b96fb4181ad748e997944387b5c86f1b816f789c7a37

SHA512
8a332b1661892057bbb1368b3152fa21fbb4f4f7b48cc403c020f97d0728b90d0236f63bd21ef1b14b3192ea669f5cd3460c7f1f5609bcfd7674e49b7d48f246

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
b2cbab0b0e82a75f310a88e2232f6e73

SHA1
693b568c2fb095fc29ae08fa3be8adef80231c1d

SHA256
091cc5db923e3de1ff1e6598197b68b0112d1e8cc1decb448df6cf5707b61c1b

SHA512
4afa4fc2472c03e0d196a79f6bc9d02a45d8b2c70ddda0ab2d8b55655b2692e534b180088943168d1d97c15ad049d71b41d0387671eaf3ef206c1ba73b36e1d9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
80f0cda5ae8016c2be5ee10b909ae15c

SHA1
add41c6456d10b77ef6080c5a5d28174684a72a3

SHA256
f3076c018afd8de065002715a7cc9ee55b5646194144d8050bd476ac7da366a8

SHA512
f0273c3fb7f7629a520a2c855c6726f5fd93f6a0a60d776ffecdaae747fe9629a219724bcd915eee9bd7456a59f946255af222b30cb6f250e02ed2b5fe58e41c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
08086b5a70a490f710b2dbcda03488a1

SHA1
41b088e2cfd313948b2273d1c7a9376e67049b3f

SHA256
36eecdf629b1f9df52b283d8c242a9d55752e26e12f70cada63509b2d91615d8

SHA512
b67ae1e1a633701c485bddb39890f6cb23444522348e3db2dbf5ae02f83ba7226bb4f31c47f84273b46b3fd09eafb011669235c5f3dffd680ccebe5c0dd41d24

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
95720f04ecc4b06c6816852056eb1651

SHA1
e0d5b953de3e688030740c7c1daa297fd066e851

SHA256
79ea4ccbc9ba9440f288eb0d7bb17ad3d0f5001bf4e50fdf606866737d5887af

SHA512
36e861e110af24327186cdfc64ea5e1e26ccb4f00590a1b239e4c3538df90e742819f30694463460af1558bfc96ef72b3d1f5fd910bfa0cc7d5698116502c5b0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
06ead335369f1520f7f3221968d0bce0

SHA1
7c07591d697f7d978629d3e5406540e0968c4147

SHA256
93668f4b83bc00cf31cd98b4106f9ead4e79cb89c3505309d74cbcbf0a997a60

SHA512
0e026e6502b22a7cb2e02cae6488d61ff768f75f194ef7b0d520b36f6b28ed4856d1cbfc7a8619d73f1661c77b267e8e7d9206f45dd4011ee0d7f5de85114f47

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
b4f886b2c2c7c481a614e4d730ebe880

SHA1
084634c7333efadfa0b32b0eefb525ce6a36e377

SHA256
57bc5ae1c1fa3b0490cfee611d61d5a5b04ec5f03ada937d05a441c7f3e89735

SHA512
d013de33a66a2d9fb923692d29ce13b81abfa0446dfaf98db5116e61bf8e2b8c936cdfd5153575d900264395bf94871e4988e093f1e18cb6a1e30d5ce9b275d0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
59a30299525e24e956cbc9ee2f0057d9

SHA1
a3bccc0d2ea055c196ce4b26a4932e39eaa17a6c

SHA256
2fec74f94fdcd5594824bd57b5777171d1f01e55b17e9904e675a894ce3966f1

SHA512
d040d0af5f63fb4c370f2eb612a7bd87c761cf9e4602324ecfe3bd66e9430d660e9e2e052e51c525ead2b601d62906cd644f41ffe18dfbba6bd9250758c7ee9c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
454ba6b7e654eec2d2c35eccaafd26ae

SHA1
84f8049495d8163ee5d9a18d7d665b70a929b904

SHA256
c1cec78905940f67f32b62bb2d941f67819ff8c15fefbc7eeba79f0e0ad39534

SHA512
34b60491235a44c65f22e79a3d31ee7c212530aaece8cf5d7065df4f792bc6290772899a23276a27e1d7018a577f3b46037e4c1bda49e411dc918b5d2acafdc5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
e6f81dc39746fb4113591ec1b9717f06

SHA1
b711b2c029969c51d7363c019f2e6a25febd31be

SHA256
00fd19ca4a181968b0ed89ab0bee380120456c7abee31407560e52fb3c0728a1

SHA512
67d5faa6b9d487fcfa5b0d0b81206e74238c5ea2d48ea873b637a83c756fc6ff8684a726172a5aa33575f27179f63cface9cf0c8095a8b133c6dd0780e210bad

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
3939fe0b631168a184a07373b849fe33

SHA1
0b9b4fd97f598f9b9eeaf69bfd424f2f88df19e8

SHA256
72f9a9e96278d54e936a64e4709d8450a46719d4a64a3d812114319450e36c49

SHA512
f034e313a2ad8672aaab769a1cefaf9c228438a5d9e0c9a245866e25e69132c51b66c92d67c7154d7298412397697eb2b5fe7e87167529596ced31e779318e24

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
3efd1c92a75af2f0c74ab98804e7e103

SHA1
9067c4f81137d643097cd42c178a4661c388e584

SHA256
14f1f28cec283155cb0f6c30913a9724307ac452e375d09de5357aa36e555a89

SHA512
62a69b9a7c02a428415d265ff2a60441260258dc9ed7bceb0bc69cc324d5b1b43a712bd86b7344693ee4000fd016f74955b2492630e47b3ac46dbb66d5cb83b8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
360ced2f70c9c86bde550cf7b7cc7e50

SHA1
57c4a777fd3f07db0763a9516efcbe0a40ed3d8a

SHA256
cc24e51a6a7057e0038ca479aafe855d60e07bd0dbe7803c86b0e8ee57115362

SHA512
507db116b2447446355e1cb9daff1189682bb2e3859c92f2b88edd7ad76841e1d3ff948d1fc0724fcf21ada5143152d2664202ba6d74ab8e30ce9743c1781d3c

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab3563.tmp

Filesize
68KB

MD5
29f65ba8e88c063813cc50a4ea544e93

SHA1
05a7040d5c127e68c25d81cc51271ffb8bef3568

SHA256
1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

SHA512
e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar35B6.tmp

Filesize
177KB

MD5
435a9ac180383f9fa094131b173a2f7b

SHA1
76944ea657a9db94f9a4bef38f88c46ed4166983

SHA256
67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

SHA512
1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

Download Submit