3fc2b82dc5f8cf3e8948342ad9eae870bc633924ec7ba780d116717d4d074675

Analysis

max time kernel
121s
max time network
127s
platform
windows7_x64
resource
win7-20240419-en
resource tags

arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
submitted
13-05-2024 08:34

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

3e969c7173a00599ea83e8fa248700cf_JaffaCakes118.html
Size

14KB
MD5

3e969c7173a00599ea83e8fa248700cf
SHA1

458fd55f741a6cb54e3c313ea2e27f0c5a0cf78f
SHA256

3fc2b82dc5f8cf3e8948342ad9eae870bc633924ec7ba780d116717d4d074675
SHA512

a7b43fb06e3c8a876da2cb3e52b7744eb8a50bb7e5aa57756727ca83b87021232d0e5be5e397373765ddab0da3aa912b43926a11de7d136048815633da31fd02
SSDEEP

192:1Y3dwvKBFPQ6NDF5ByBUSPBKNZ5rFV64oLK363k4sZOGCt:11Kf3SPBKNZ5f6LK363c4N

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = c0288e6010a5da01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000d7c7e73b934388418857a0db8be9c1d100000000020000000000106600000001000020000000933e996b312c0d4cf3c7307897ef40e3a6ef5b774d48ed0ead95814ceeff1072000000000e8000000002000020000000d60ad25cf114d4a2e80f7e47d24130ac9757ca5bc75fcc5d64e6cf2b79ae525d2000000081f1ef6756026cb71141b3150ca893c917bf0ce59bb5b519f788cf205ba98661400000007a01edf4e5b6e582d6c68748d135c19af6934a3a4051d22803108f6bc9da49bace2787f7bdfd0222beb89089554e803c20675d54ba8305366c0d5dc4746ae729	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{8C010D61-1103-11EF-AE77-52E4DF8A7807} = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "421751108"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2912	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2912	iexplore.exe
2912	iexplore.exe
1592	IEXPLORE.EXE
1592	IEXPLORE.EXE
1592	IEXPLORE.EXE
1592	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2912 wrote to memory of 1592	2912	iexplore.exe	28
PID 2912 wrote to memory of 1592	2912	iexplore.exe	28
PID 2912 wrote to memory of 1592	2912	iexplore.exe	28
PID 2912 wrote to memory of 1592	2912	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3e969c7173a00599ea83e8fa248700cf_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2912
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2912 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:1592

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
42c0fe2b3b26d08d2fbaa26261ba58ae

SHA1
5f99fa51bd0e51a356eee1e7fa134f70c5007b40

SHA256
85e3a401482e5c8d8a85b26e946c6dda120fb050904944382be186273e5254de

SHA512
dd186f8b7dd699fc4c1380ac037163c1d3bbcf59272f010530edd204140bb90eddb19cfd6767d1c62e2b739de1e1f41cd540e75c4817bbea5c264ca1745c7557

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
0aa2e19bf4ac961d2e77c9f676deb23c

SHA1
8ddc9919ebd019f6d49d87aec62280c2b024e3c3

SHA256
4734aa6dab59e3a40e6a062f789297109c137bf089a988f362647746636edf4e

SHA512
cb1eef0d1cce088811a8e6a1b5e43966a76d5cb8560db62075f897e713e733d2f3064dac41b153ea8787d1c958e4d09c2968e8fed5a73405bb7497fde31db439

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1d5fc43b8b7a69862ee643c4589f18a5

SHA1
77185340271398b33cabf2855290e18e1fc3e826

SHA256
5088b31625ee1d44150cb89709814dfda7e7014d4a9f268e42873afe61a1ad21

SHA512
1f8b7babe3189451783f457fd57a6012052db705d60f2e518cb064681e822359f07d20d59ea741cb89d20e67b9272e8adc587a584b1749e986fcdf2b18c6e4a5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
66e01fdfb6e3ec78f554dd93da3ebdfc

SHA1
7b6bccef5db78494215fd0a63c5582a9e63b7f01

SHA256
80af9167e111bbf00a566d1df3048ba574790355e17b0f643475267e9c44190a

SHA512
15eca4057da8c69ff1684e5fe4d24fc48a184b0f3b1364af394d1657d3066ff7c66909ac2a57f1d693ef20f6f81b5ec15ca78c4fa1463928c0a00e35bf13281f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c141949e15eb3f2c0470d50f61ab86f5

SHA1
68e124b46509944a789dc810d6273989e853f44a

SHA256
52c059d5877927e02a3859c4ab28d88df26477fa25474df6e4e9542b001584f9

SHA512
2eceb45d2f803fc402c2d27189cd891df9fb826aa4761a10b57e0075337483801350b80a454c064d0baee8574fcf8e6effac0c2b14a0fd968eca674d74da8c87

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
e7d2b49b13d8f34f727619e092774819

SHA1
c1b51ba9e35b691a3d263d148f799dd35bb725c1

SHA256
5120e21aabe5f7085650c2e863174b245cd7eadb96b00570a8448b5c65e763b5

SHA512
8d35d09a1c1e3546af1f5b3702a2750b7835368c6ebef07c8594aed2ce8bfc954a88de27ec617320338f7d406b12da5cf39c200bb99b96f6c07cff2388d30400

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
416c7d5aae96d136af3fd4e944b1f7fa

SHA1
f84079f251e856270b5e6c3d5cfe5d9904ca42f5

SHA256
48a2fac3fea807ad5bd1b31ec89ae274f4d7787786694e9d6c2030a4df64f52c

SHA512
fb3d9012018ba3dd7274a31196a22af5e7518aae02c95801dd271028ab48db806509ffa78d5d7e56db3655b21b3f7cfc19cb770dcf99dbcc7ce6e66c83ba91c5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
939ada91a33a16ee68e3ab8a939d7057

SHA1
b00e9948e2f3147366bf1b5d57edcf9338b15854

SHA256
eaa6d55b9f484f73fc54211db97e9b91deefb928ce3a7ac92c6cfd7aa9f29f91

SHA512
23da43c0ab28300499f18069b31cd8ccbec08a642e1759894478718ed98b05f68e9f85e626833a1e4784245b8e6f16a90f1dcd7429a3a8ca2a6885f4b21a7ba1

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
466a0bf2cd6b4e904f01a5c25b367828

SHA1
ea5717b833c51130186d2e44870d3164f975e3e7

SHA256
003105087b6fa50c42015b48c183c688da38f85b33268825177b50f7fc441305

SHA512
0d0410d351468dc0966479a3a82116b21f979bda05c4a9283bfbde7521a8e047cca78484153cc66f547ac1239373dadc5da8d92b76ab70c1ee92ede0cb65a00b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
863164d2dc4787b767dab623a7f95644

SHA1
22ca05a936b72de519edafb07ae48ebf2a01889c

SHA256
735e1c861f25f97e2b5d7f5e4fb27e5bd83c958445c22f8906554f47b1507ee0

SHA512
f0d11aba49cfbab4d14d6406cec2ea874a0463750b78058714cb9ac2ed767008118b230898786410868fbc3b6cc48c9009020451da6385f57d1cac9dcc1f2f19

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
313994e881271225b21b90a45cbb4ebc

SHA1
e97aeb9a4afef2f6e209b04e568c8058023a2dc0

SHA256
e5242171680358803cd95bc2c2e17cb1220ac99eafbbe3b0e23aad095ff95845

SHA512
cdc23a9dda6013482ac20ebf3050f44ce3f308994660e21f7e98dd1f9d63e0250851c8dc061c4dfe86d5e9136cffcb62cf24e290ab46b575173e996459608e9d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
b7af9bad0c0ec9277facbf2a43d8b3d6

SHA1
a739ff8de2e14e88c7414aa68b806a8e054fa59b

SHA256
8a597d011b866cb6d32bdad03ef1ac4b74e03b01c2164c7746185e3793798666

SHA512
5e9a70cc4bba63695fa257ca2cad3b2b53fbd862c6ad9887a4eb0e6f5c05c7dcb7aaddc472075121379d0005574dab12ca10cfa0b8b92fcaa7d4f27aa0dee0ca

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
86548f29fce552438fffe764827b84fb

SHA1
62a7607680af22ca2ae9cf484f2d05f2c47e1a45

SHA256
0c73d96288086e9f7e29d8c666f7bbfe2f1352bd8a11aca64d1b026a7eff881a

SHA512
7003a3715eba952c0bc3d2438f1e32e181afcab52f5bbac38094dea9e3b0fb5ace07f2fa285395f6499d52d77f2ffb555ddffd3ce7d977d70db19dde5340218f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
73f7dfdb765d04c7a7b7275ca849cad0

SHA1
ba4e213688a8c776cae09ce97d30596c38a49292

SHA256
d34144178b4dd1179ecb0014124d45a6dc2e8144d31ea06e6691321a1db1f5ba

SHA512
e3a84343f9c1ec88b82476cf821a58dc3553921f2a8792a0102dfeb17344293a02596fb110370f5f382d3eb17b6920ed76a51b2515561e40d488d0827780635b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
468de4ce6f42a3f7e1f963bc060e9974

SHA1
cdca7d76496d504aec2ba5f62b578c4115a87211

SHA256
0216ea0d4fccf10dcc9006682d40fcc241649f1be93908962b925ee420e5e9aa

SHA512
12033556418a1dd27147464906a8583b7c52136d85f2081a300c1fa41d118c0dcb9798bfbd4804bb14e13cae4603fd287d6fd02d21c5cfe9458534bcf43abaf3

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c78ec85eca06dabef691691ea13e7f08

SHA1
2b2350fa6315d13504c0e9e51df671a4c4b5559f

SHA256
f7beacbf077c39aacde95479c5ae81030fed4211b1c01baac4bcaba05d7b7fa1

SHA512
e01caff38961cac8dae495a27ac51643c82cc6249baedaf02f04570b6e9fbd18bc78b4603e658f0b655d5acc50aaafc9cb722168664d2ac0a1b044f350f6a6b5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
910128f39a4908e45ef7e0e522025a35

SHA1
d76b9fec5363974f2e2e0065e21f81da3365637e

SHA256
d7c91b5833252d31c9b6df17481cc60651bfb58982a9197bf74ae2f394fabb32

SHA512
a314aa441a7107bc35c36ffbd6066155b9f50dac0ab3f5e5271434a448cab8dcca5e3273f3f83f3cc7e23ed50b44b08088176ed193321e4f6bf24d437bc13a18

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
47fca8a7550ac11bb0c89cecc07d2da7

SHA1
e562137eb04d774a602c5e706ba85f6ebfd1b797

SHA256
2b0dbdc25a9f7450446052c742415bfbe65a055d3ec82c989b39a5a34129bfae

SHA512
6b64f4a0e1069a4b9634af0bac54204b04815e1d60e4875fe3e1144797187c8f7120da5a0f369abc782a8115aae5e5ccf3ed0012c303905e9f5ff18a9eafa653

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab314E.tmp

Filesize
68KB

MD5
29f65ba8e88c063813cc50a4ea544e93

SHA1
05a7040d5c127e68c25d81cc51271ffb8bef3568

SHA256
1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

SHA512
e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar31C0.tmp

Filesize
177KB

MD5
435a9ac180383f9fa094131b173a2f7b

SHA1
76944ea657a9db94f9a4bef38f88c46ed4166983

SHA256
67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

SHA512
1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

Download Submit