3f185524061f8dd4350f2ac8421b15b47c76f1700fdd95f222957e5de7e6ed52

Analysis

max time kernel
137s
max time network
137s
platform
windows7_x64
resource
win7-20240419-en
resource tags

arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
submitted
14-05-2024 20:35

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

42f643795e0d6296a820f1b27e49301a_JaffaCakes118.html
Size

102KB
MD5

42f643795e0d6296a820f1b27e49301a
SHA1

cb4332c83c37bb3ff820f2956a04e3ae4251f696
SHA256

3f185524061f8dd4350f2ac8421b15b47c76f1700fdd95f222957e5de7e6ed52
SHA512

613e572915ce759926a87e95ba5dcd724a955b2596c27a0c0149ac16ffddcf81dcaed88b49b401680a5b4fbb957031646ff510a3dc3e9c6903f37bc595d104de
SSDEEP

3072:SzZBFWUzEgyVVOmNEBGWTmWDJhdq/E7iwAsQF:SrFWUzZyVVOmNEBGWTmWDJhdq/E7iwAR

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = f06c195840a6da01	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{43DEA701-1233-11EF-8004-DAAF2542C58D} = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "421881554"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000d7c7e73b934388418857a0db8be9c1d100000000020000000000106600000001000020000000bac060ac0c31d0056287729fefb5a31827ddbcd55b691915dbc2ded5d41abeff000000000e8000000002000020000000a670f2e8ecaa4432620821a70567e0c0c84c84fcd7477bf02bf9d38ed3d5e79820000000ba558a4928c61c8a307ea8998a381db518b5be887e4c52bf06f7e1502a2020d140000000573cd87c120aac766afd65d5c3c48fc8119112209c11a9f04b87d726026a098b83c097639fc9116fb3c151b075736f09a8b5a713fc158379d0a643feba2758a1	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
1148	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
1148	iexplore.exe
1148	iexplore.exe
632	IEXPLORE.EXE
632	IEXPLORE.EXE
632	IEXPLORE.EXE
632	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 1148 wrote to memory of 632	1148	iexplore.exe	28
PID 1148 wrote to memory of 632	1148	iexplore.exe	28
PID 1148 wrote to memory of 632	1148	iexplore.exe	28
PID 1148 wrote to memory of 632	1148	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\42f643795e0d6296a820f1b27e49301a_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:1148
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1148 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:632

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
3960602d671f553a1f2c9195b236d284

SHA1
4bc268bf147c86e9ff26b3dc4f7b261b85d75232

SHA256
011dc2fcdb1cebf9e1383fc6355d5525d3b8a57f66412c0e93eebd2adf9c7032

SHA512
1464408a2c8668651535f734f73ac97a52921a1c6168d26cd0d5d5934f8c46c74b8786ec2da191a8b178f8ea32f4360150e8de6982da5fae3c2cd2407305f3d6

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c25a7b91b7575c877b4be93d7ad5f279

SHA1
0f62ca0319b6cd52c913188f40d5f86600901a2e

SHA256
19b9d39d4cc382c600b6fb340216fdba4bcce00e0a73a04e1545c314ff847e13

SHA512
d13c1ba03b788359dcd928fce830b35d1b41b5b6acb98d05be326efeedd80d76bed8b18665773ffc15e7f0ee94c77249f58053c59aef3f3857d940ee06863caf

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c060c249f1af27b0079333054b7f283c

SHA1
162e92294bf90c2d70677ebc04fb69eb61de0d5b

SHA256
8663fc37195847b133ab30c040811a01a85f140cb2d72a0cae44e0b81e6629e9

SHA512
08a5fead0376c408380cbdd8297d75591f20c8a001ff9a1e163396abf8731983b0aa5edc15f306d821264fff84a48d9d35c0b0dffe813b4325d342469a79935b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
e2b6a6ffff0bb8a1628e61e9f8623e0e

SHA1
f69436e8faab6696418bde62de6424b8cf39ad07

SHA256
8f3632664602dc63108713b70f0e7845d48de65a28b0819102125461c613f4f7

SHA512
c188cdb93bb19400fb39c23b191c8143f798947b5098e9fff027d779fe2e87e5385bd7e029f9f09a964838e6122ed9ad88ffa48e97e088e0b0ca3345b53fadb0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1d68b39687954ba1505e3bf7a5af1e73

SHA1
af3aa1ab8a1ed0160eda35ac1988b2b2e2b30b1c

SHA256
9b7a14d886c4c178fc1a1b73098bcd085bfd7ad391f3a2a4385f461c3edf14b7

SHA512
3b46871a334b1abf084758c47b8f0075a3e194dfea0c2e8045170e7ed4864f0ceb84ec711b5f937f809e577dea9c271dd8fa6a68b1bb4372dbb4bc615ad3e9f7

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
16e7d51d3587951fb652703aa3520626

SHA1
82459e01de69861624c83fa5de0da437d8c4fc11

SHA256
a9219a5329933ccc5fc1934634be107ef85b61d32affed22d21d3590d14d9775

SHA512
2243584bf654ebea9c540f181780d16dcc6ddf88bda85ee1c3413f4cf2b804aa0975857b6190ee3c2518eeb210fd56bd097790ecfd35c0761c4f38c39db780e8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
de9e5b5c3f09dbba40935955b152b4b2

SHA1
36f5866586d6f2a8dfe7d4b1678504fdcb87d89f

SHA256
3db3533f5ed0bd540a7406d4bcb018f9008e3c85941b20070e00a35f3b01616f

SHA512
fd85c6300bec843d3d966b443baa0ada6459506269d02c83a5c16e36c8135b2f9aca1fb3b4f50d84a047eb676748174ebdd7015ff4f197b1979443018dcd65c0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
d4b4f4bf79fb201b127ee9a73bf78130

SHA1
7d4de3a1fce8f95f9ba6e8a3577e3fdc2b051c60

SHA256
ac76cb3ee8f6bea28dda121ed88cdebf04c0c1b0b1d8320414a2b2285f516b81

SHA512
64dfa344c46123343d76f1b9d0317fa0771e41506ecd94ba748f11f20c1f121cb2f44e86ce2f3df74f1df9f81a7fcf12a316c726330459f2d198754fc96071a5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
76ac5013fc378d9a78366f1a1529a6d5

SHA1
5cf54109f518cdef869c93b688ece946dee2a40a

SHA256
c3872ce01704bd11ba72f313e1148b178414fa4f83fe588eba849f3135196993

SHA512
6b0a0b406511e576b796e1e603e3d441e2017a67707bef0d9ea9026baa570f3c8b3c845bfbf73047837e56485ea80ca0107c3002181724b2142754411904e58b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
26e6469aa07d7b09e55c530a961a7909

SHA1
6ae6a3a4768e0d681f6d3fc08ebdeb7fdd298fe0

SHA256
c682813e474eadf776c8fc5799cb49a0c67d9f74d2b7edb9c4602a54e43fe0b7

SHA512
c80916a8076f3f4aa1062ec67212454b3c520b5a5709d3d986b7a33ecdbe406b5f01931b32ad5962ccfc4e54300df1fa3911afba49659b41e1ea82e9851f303b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
ff7c6cdc0cb34d2b744e4df4c6c30bcc

SHA1
216fdbf7e080579d38a1e9a9bfae5cc00e451476

SHA256
60053d7713c5af5b847c580b0bb207726758a9895d2cf6aecac391099757b18b

SHA512
9558362f4ee720e789ecfc950c6bbffc12c1b8c8d41bb87a1d8711242667d1c51d3c5fc089d78e2efd7af398a7e936febb9881b895ac4e8b1a83cbbf5ae7d0eb

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
65ba72ec6acf0adcae4a07f22b2e9a38

SHA1
a0d90bbe8655a14366a3646818961c7c0ce80d3f

SHA256
5efc565f2acc138dda099e781921c187462ffe0f4461a90d8f8ddee4489dc875

SHA512
14ece5d63ec66640e2d3a76ecf11e0f740af33a997f3988b80b9c4019d614fa8563dde92745f755056beae3866e7aad66538f4c8da42458612a792758e621812

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
5dee48f62d01972070357b58cfa2824e

SHA1
ec60e3f78fe52ed37a158f6b45c1fcb8d7be13bb

SHA256
a096a9b731101e6cbde94165a4deaa286edca71d14c1bb4d03504430153ac885

SHA512
ac0b2585150f63c415882a7d2e03818470b5d5ba23747152dbe3e3798db9fbb17dc71738b2540a4455a0891d63e2b837c2be05b2c9e3b287438d362046f7e3df

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
eabe1d4bd6ecfae60b44c5072dae72cd

SHA1
4cd6095d0511327f1ee7d2eab2b9cde6ab63859a

SHA256
54d6735e0e239c64be10f55d5c02c036e3ddab86be22c94dd643d2bab2c0f488

SHA512
a84bc5c4ff8e82b2fc7cdfee17711a84675750886c416cea868909eee293786945913a0b9d82ec71c1ac9c9d4eced46eac748abcc03fde8d98ba2e5f3cf84b0b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
341db142a78cf8cce0e59f7f7eeaa930

SHA1
f21aae79d9b0f8a9c69970d3a59e0440e3f88b0f

SHA256
cf856f258c3197db3f15d6c494a9064fe10885adc69917e1f2edea938005787a

SHA512
887ab77c20e85e1a698f25f852fc72d6d6047615fbdd0768fb3c06b2eb45b9a1807eb33708df013be6cfee119317ee93c8ab95df2e64af71f77c8dc91cfcd93a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
035a850340ad654548ffb32ea3635c7e

SHA1
89a346208afebb87a0fb94e087b81ce436a60033

SHA256
15c39c6ae3a5e7e4b2b65f22ec0082ab48e51f6938bfe2d2bb2da5fe4b4d3f1f

SHA512
f89c0cf66d85d454f11ad62372a92f269bd2a9c181dd43197ad6314f31778becf50b07e3962111e2232b42c99af5036e7966120522439cd1124740cb11aff4cf

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1ed57ec47a63ee84d961c9ba3f68abc1

SHA1
7cc91ac28a6056d2a5524d5622bc2394cd2f7058

SHA256
566c45bc5db6bff2fae0830d3085c440eee8209625ceb32b7f6db0de37848778

SHA512
cbd10952341e928e00110618fea63e7a6ea43496a3c11335b2371f541aa7f9f7e387346b4cd88a550042286fbcf751eb1ad2edc9a677f5cd960911a631a5e250

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1c4cfa2f095da85eb041d3b8d0318cd2

SHA1
7cf2885f6d1f43a3d5bf81f0880a8bd2c11f4433

SHA256
b2a876d4c8acc43cc44aa927e0017fb3d5569e3e09d9c48ace370c9e4ce626b4

SHA512
e634b1c1e2d0a863f13d5e161a2606cd07b93982a5421ea9174270c89267a98b9a6a2d2c0fbb14a13b7d90c1570212caf98f025562bcc63bcf369ce1043c66d5

Download Submit
C:\Users\Admin\AppData\Local\Temp\CabACA.tmp

Filesize
68KB

MD5
29f65ba8e88c063813cc50a4ea544e93

SHA1
05a7040d5c127e68c25d81cc51271ffb8bef3568

SHA256
1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

SHA512
e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

Download Submit
C:\Users\Admin\AppData\Local\Temp\TarACD.tmp

Filesize
177KB

MD5
435a9ac180383f9fa094131b173a2f7b

SHA1
76944ea657a9db94f9a4bef38f88c46ed4166983

SHA256
67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

SHA512
1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

Download Submit