cdacf9d841c107f694e95eea74355addd42ccd13c68adf0c4bcb77cc301ca31f

Analysis

max time kernel
142s
max time network
145s
platform
windows7_x64
resource
win7-20240419-en
resource tags

arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
submitted
14/05/2024, 23:44

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

439e0cf0ecfd96426f712765a928178a_JaffaCakes118.html
Size

19KB
MD5

439e0cf0ecfd96426f712765a928178a
SHA1

1299a3393d90672ceec0c18685a0f56683b8e4fa
SHA256

cdacf9d841c107f694e95eea74355addd42ccd13c68adf0c4bcb77cc301ca31f
SHA512

9bba16d746e15b61014e7f3200d3ddac9b4f72a368b5d50ac9dd4379e49a8f7a78d3028253fe3b54b4006af8e1fbbdd4cdce941feeee6041b9e0d638db9bf16b
SSDEEP

384:mW+zi6aRty6CBLTwGYTj4BTsHMPGb3DTsndVDFFFemB0rw+A6+hmZ4AXL:5qhaHQLTwGYTj4BTsHMcTTyNnhW4o

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{F88314D1-124B-11EF-9486-4AD8236FB259} = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = d0569ecd58a6da01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000d7c7e73b934388418857a0db8be9c1d100000000020000000000106600000001000020000000426c86a34b1a1e631051fa1d49e855863078c772b3b376c58ace434f0c8d66e8000000000e800000000200002000000014e89572bf1a594e6c41d72644be145abf98a31f5dab1e68c50ceca1ecd425da2000000065e78eedc4017bb17af73c14de9b1405fe8e7102ca2c7a030169466bab69a6e940000000092b6f0e4290d07186504e58e17d7d0fa130b0a221349f474d0fb8840eb41fd1b545e8a60f53ff79f5b282f4a4cf53bb9dc288eb7a2d5f922cae6115eaac9c97	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "421892164"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
1028	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
1028	iexplore.exe
1028	iexplore.exe
2760	IEXPLORE.EXE
2760	IEXPLORE.EXE
2760	IEXPLORE.EXE
2760	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 1028 wrote to memory of 2760	1028	iexplore.exe	28
PID 1028 wrote to memory of 2760	1028	iexplore.exe	28
PID 1028 wrote to memory of 2760	1028	iexplore.exe	28
PID 1028 wrote to memory of 2760	1028	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\439e0cf0ecfd96426f712765a928178a_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:1028
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1028 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2760

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a44baf06d56b8e5a5a8cdd377ae7b5e0

SHA1
c3c47751b015dc8d8b028f8c6253fcd8b2f257f7

SHA256
f23e77c399545470ee4b91da80dacb6be9a7a88b96477dd0736f559ec289570b

SHA512
7ccaa73c845c60a79da170dd3ba2ebac1a2128057f6ad9647c2d8abc5d284b6c2a68bdf77e3e7a72414ab3732397779875336cfbcaec0b64b000c2ea87203817

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
60f047a67f0741f31634efcdb329eee2

SHA1
d8ac80fe027834ecda617b3db7e291ac9121ac3f

SHA256
823695de7e01b811eefc2a2c01307c9a3758d4bfe641c3ee78189390cdc34513

SHA512
0822350ffa279d369e4c8beda934fd35c4de5f1d06bbc9badd49cc3d100befa26c21029c9ed6dd1907f71c8a039c6b00c50097760cb104790b0179956aec370e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c10adfbe79304daf2af520629cb45246

SHA1
b6b9d04f1a06ff431cbdb44442d1c0e91dcd1155

SHA256
e59527d51f8c781bbd636bdd218d87055f7f51d6d98a94c5b3209c11b75bd6d0

SHA512
03d970760010e78d5c6289373e8ffa84fc6ef506fed96140007fb9b81620fa382f68b92f5395d949b8a26d7943e3b34ef2342ca28d5012e5ffb7374db28d5781

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
307083b7698fcad20ce5de55a8231158

SHA1
d7ce8f16235182b727ef9dfafba088496eabd56f

SHA256
7bef869480e12116051f3f92d6fb74335bee5dbcc9105595bd4cfe962342ad37

SHA512
44f946eca1d5f3da9ec708044ac937ac8def064e02f8c9b711a2b3fc8a81e262dd4dd5390fa88ec0bbdefa5ce62e78819966db4a6b050c3c616a5961277ac31a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
f35a3de3904028d003ca5dca88cf49cb

SHA1
e50a7fd586fdb5b56f4eb220fd8a7e9c13fe8daa

SHA256
09b9348c00e601827660f2c54f43288d86c01ebbed82a255c2e82b7ab6172972

SHA512
6f4c289e248550dd25b730e2f139752e949c46b0c4f3340d800b4c70411a8d6ba9d3bca4537cf64a047ebfa3d70a82f04a902056d30e43e97960b432664653b7

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
3f46bb35a80a610e9d850788a75db68d

SHA1
8d6fee623e0620cffc65abe846768a29e98527d4

SHA256
5e66481a006cd2582dbdad9ee5b49756262efe639603c6aec4867fa43914aeff

SHA512
edadc6e0f21091d5e3c84e8818d23819fb17e64d5fa8f7eab42dee241af873debb6c541093f2ccf071495345b0b94e9b3917bdca274348e05869d5f99fd87663

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
cbce2fb0f30f4bfec52fa427064526c4

SHA1
6aee942cc21b1a0eefba6727ef562610b677414b

SHA256
a6ba1befa9ec6d34d70c24816716dc9a564b71a5742c6f8146b24a9f661e04c6

SHA512
90fa35758c2ca559979fbfd2aa3cb08ef52ea8f414148295e78e0862fb8d57e0ea11c430d85f70175c5f031c830e48c613b620a26e8f09c7df096a44e4590c1d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
cb82b7cba45d76e044cbadf2815b01e7

SHA1
eab3953d5e6106a8a13c95e5d7c282e20ff0b2b8

SHA256
6355211d8cd709783d94555f3f9eb6d85fe5cdc169fc293aafedd92f6cd19dec

SHA512
58e94915e03ee579f2e341c901890e33df79acc58445e4ba180d7a21b31b96e8c55b821923c33d376c9ad38211610760af68322d3827013ff565aa6b8dbac9ff

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
6bcc973d3d071cd18a55bfa92d7ea0d5

SHA1
4ff98c66f39c0604eff7f854727b396d86ee0d01

SHA256
c793a486d85f59ea3af1e656b7ce6f4c3ff524e6f5780359e051512981a9e256

SHA512
1d9687301c4b6e60908bf0ae15b4cb29d49fc4f2f74016ea1a6ea0802d57027a413f505c78143e2ddcc32eedcddc04b40519f434a4900411128cde3f5e51d331

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
5d687782c523e74c425ad4249a24f1cd

SHA1
a281eea8f78509dcec1597488dcdadf495cd9c9c

SHA256
de42f3c741caabde4326a5e6adb71384e6497fb068e01837bff42d9d6a77d9dd

SHA512
ae1ba1b4bbf85243036af04e223ab733fdbe65681d64aebf808abfa4c1a5f7c73e411600b90a80de350f319734742c6492a4f82b73367f9bf8fb09e2a288b018

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
e0bf57d0230d72509e73da705469d5ff

SHA1
6721d3e0fe279f2439eda497ff0e5c4dc19b557e

SHA256
da7e4b557454cd914e06f96b075e01e289784596873e1513e4972648a6bb0b87

SHA512
42557f581fcb29ba9eff5d3214e1b5811ad0057517fe65507d40a81e3f02b425986c0b41e0d96a9774af78d2b7f0dfa6591da3641a02ac36588268e14c05cf4b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a19e65f516bd3f0025f08eb6215cf977

SHA1
995875bf28c772a17e77c8e52177932f765f8ad2

SHA256
c63c1a768be55e28b44716756bcd32de92f09720059ccb4ecbb337d5b00839cd

SHA512
5d1ce9eb8964e82699c8f69c52e1e36a2cee217cfdbd02a081abbb3faac20d38ba2da3ee462d64ac2f5cebeaf3ae91551a53056b254043b95a1e3d0470e96b24

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
80cb6806b828fa0355631cc82b6e6afe

SHA1
db892fb71be163a6d08c73f92d77ca0b1b8cddb4

SHA256
0fda5cbcd88c1b7ea4cbef5bda164442371ca8241f57c672e694a83dbf039c07

SHA512
c5ad0819def2f3e96c880333de61182333602510607ee470faee03a8014f1de6d1fa7e7c7323b88ea5dbb163406c16daf1f4448d3542982566932dfaee0ae2c2

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
ce54a440bc0c50b694e8f8b67ba7a7c5

SHA1
345eb502287ff1c1131f4a3f19be7b3f79d26b52

SHA256
4857dc625a8a8d018701ad83f322d4ebfa5b51f2e02aefcb77717cb678676a3c

SHA512
24778b04d2cd8cb58676e9679d5a77dd19ead6727fe9a3ef62e0b95fb2bf6e6f574dbccd973427bd9c650e008d4b065bdfd8a656e97e3d0a2f03f8e43aea0c2f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
f37cdb723c8f4d4b596084e49e38727d

SHA1
45278fea707410ae223f75297cf563a754b498ef

SHA256
0d3104e714d3fb0719451912eb846d2e2adde4edb1ba0c987c960e871e161a0d

SHA512
42382dc63337353ecfc8af90ea5d5ab44cba9baf52d04ce07cc1d55a908adb3f6ea1901cea3d1edd4e6c2d7bba5112dd5ca3440b7a9d3d60c8c32f3a06b17e83

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
88356335698118698da63a6d9a7c7609

SHA1
a55d8ed5e20a87cfc55584bf36096716d9eb0613

SHA256
b3c9e8f2bb0113318d48465d0fab4753d96577867316079d9592f369148a25a5

SHA512
87f7158df6bb01717587afb3fb71855138d2ade2b4cfd65566734fdb92bff18c519053dbe6c58fa2234e725ff78b798a548b2bdaf7c847b599efd9e654bc5a8e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c1d0ebbf83f3c7b71f360ece618de1c1

SHA1
a5bbb95d00b0d9a33df8be7821f208ba171977bf

SHA256
9a43452506c91acd07ea1c8a3b762a6e9a6b0e84ba4bb094b7cebbd885c6674f

SHA512
c4ea3627e5c9c5473b6b57b74dd659a2678cfe7b0b9533d1ed107c9e77410c02744b152198e967a2e88297aeece9a5c4c4f5064eb77db6cbb4616363eb40acb0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c812138889b23feecf5a1129146b148c

SHA1
7e1196fe15f7c2f896436ce5a80c65134f2778ff

SHA256
af653b5d6c48445cb6d1913eaf667a0e5ba810e04752c9f918136142c51c56bf

SHA512
989bf09de3063a2ba7ff494467f841631bf7c49ddc6348e5d7a0830ffa5bdb03fd3758a61caafc0358dfd6517377aef35dc2c7f0f20188aae8536246b079f520

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab38A0.tmp

Filesize
68KB

MD5
29f65ba8e88c063813cc50a4ea544e93

SHA1
05a7040d5c127e68c25d81cc51271ffb8bef3568

SHA256
1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

SHA512
e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar3901.tmp

Filesize
177KB

MD5
435a9ac180383f9fa094131b173a2f7b

SHA1
76944ea657a9db94f9a4bef38f88c46ed4166983

SHA256
67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

SHA512
1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

Download Submit