2ffe9dcb77b636fc4346b24a0b7ad430705a2e6693c5aebde37d7b97ae1c6b63

Analysis

max time kernel
117s
max time network
135s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
16/05/2024, 12:47

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

4b2594fb4ce669d4160c4f17c80ceb80_JaffaCakes118.html
Size

849B
MD5

4b2594fb4ce669d4160c4f17c80ceb80
SHA1

c9b60f1fff0e6e169e06c24277c97acdf48a4bad
SHA256

2ffe9dcb77b636fc4346b24a0b7ad430705a2e6693c5aebde37d7b97ae1c6b63
SHA512

07618e4a77118bec77c63430c3aa7e8bd69abfff3f50fd72b59843784e0a23bb69450a6c782f6a35fa61571ca3bb3f0c0e0b7112cee7e31f0d126ad59f9671bb

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 34 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Set value (data)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = f0e1ea5c8fa7da01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000112dd71d930ff24b8b2b71a2c228122b0000000002000000000010660000000100002000000078dc9db384ad0a387f5122e49ca749e09bb2bf28c28b42be44ecc11b2e25e361000000000e8000000002000020000000d1de20b90fdc3bcb99c310f815189c776079a0a9c3edee7583806d54d064721b20000000658cea280a1cd6416cb1b92bd547364f3be4e701c59374307b1d93ef2d1dd0a64000000052104b17b556e5c537078b441e6c6d6a8893724789c33971522b9056d2d5bf158c449053f1fe6aeccabf4775488345725fdae59a46aae946d7d21ce4d746bf9a	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "422025552"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{882C2771-1382-11EF-BF06-56D57A935C49} = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
612	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
612	iexplore.exe
612	iexplore.exe
1904	IEXPLORE.EXE
1904	IEXPLORE.EXE
1904	IEXPLORE.EXE
1904	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 612 wrote to memory of 1904	612	iexplore.exe	28
PID 612 wrote to memory of 1904	612	iexplore.exe	28
PID 612 wrote to memory of 1904	612	iexplore.exe	28
PID 612 wrote to memory of 1904	612	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4b2594fb4ce669d4160c4f17c80ceb80_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:612
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:612 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:1904

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
36eccf11ff6a2cd2cf68729001ea2ddb

SHA1
8b4233c8fa44266bb22f557e91e5e0ef1c1b310f

SHA256
7af5f39a30915da7fb98e06a9e706bba137819281a93e443c4897f2c2230b050

SHA512
c8c69866e27e3768cb83ef1e578ca7d5b9f2965c8c81633b6c34a68c89ebcb45658fa314f821196bb6d66a736fb4356fbeb4b4894e0dd783d52f4cc1881ae8f9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
5be9db8e53ed5ca014d0e5c7c40865c7

SHA1
a3dfc0df2dc7bdf89319fa54d1f2d59a65552cc4

SHA256
d4ef232246e91462bf799b80703d6865d1eeefc7d5ff12d93dd9693a9733c8fe

SHA512
31c9e8a8ba5046135e6e06cb571dd8a1ff17682c0a1b79cca0a47e88c24718c6af7f0ed6c018726cfcf1711bf8c4278bff13e9d05e044ef1ddb046295f56d597

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
cdac726305f29edeb1ceae50f1ef2131

SHA1
da2ffa9b5992fae5ff719704730035c33e05a1ca

SHA256
e4a391c0d1e11f5732015c90613bc8c536003440649ca4f8579b930bd6f13242

SHA512
2abf1bdfb358b261d06eace20229b01cdf287617bbf1ad3c7324aa372ccf55afc839ace3490fbb0f0de5926668d1b3829d90090b51fdd094bc276faa70e98f53

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
07a327998bbb7ebc614d75f59f7a30f6

SHA1
4803359bd1b65f4000401f043fd2ba8eb9fce71e

SHA256
63fff13b059513995d9c8bae89736dc279f9a868edd47895d2aa6765c65a8618

SHA512
9206b9321837629a5b428a71047b602ae83f6dc6527a15d7aeda4fbe40bb726040e903f7b71b89df777268eb0b8ac3c9dfc0bc96b4d43593197e4e36c1ee5991

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
4ff0724319086dadf1d9874c06f43813

SHA1
4b7459a298e8a89e6985095233cc966c8918aff5

SHA256
2f02180fbcc20d4025e0b6b2c2ca3661914bb02ca4f50f6f8b8841046b9311ae

SHA512
94ce734217ad735c75ed6fdd97e816092be64491089f0941156177bfafad849ebffc9db1d7192f7d026396ef979dd9d1c55650225100a3a6265736da33bc9e7d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
5f8304ed093f9ecbd2f53835ddd31449

SHA1
46e6575a0d088dacd0056240304b9c73d70378fd

SHA256
4cc3fa11d9560d52f7e9244527a927e31cdd9c3dd8b0bc20ebab589ca4d9adef

SHA512
9033d8cf609c4c1b75eee987e6da6c90027e6d561ba3264d91dbd60811e78141db35ea417175debffe7acc15027e13b8c0edcec2374c9d68b24f4fb1bf2ea41f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
31fed855eaf6f5b22196f3a8743eeaa7

SHA1
71b909cd40e0b025f961221a4f8ddd6cca0f9ee0

SHA256
f19c6e0c88a801018a8fc0bd8a4ab56c0765767bb89bcba63a10bb915c91b631

SHA512
e07580413a6740891f71abd00768536f02426d646893b4cce949590171f84d4fc060b8005561a92812a468e48206290f4aeb3a0bd25e798852947fb5af9f04f0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
ae4555c09e9ec52cf8ae6cb087e0009b

SHA1
f2e6184f1f8c5e4ea701177b684c023818fd2316

SHA256
4bfd2b9fb17a5e336fe8a824267c2bc5847374833ba2d6ba78b08f2627c86f8c

SHA512
2e49278af1fbe86ee4911a96711c716adf82c15cc125ae598a94bd2575a41ad55124df7a904ff244af8056a1f6a0d182eae3b26a07a9b5e4906917087df18b24

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
bd4752a52264baa3bc738b6ee111a9c5

SHA1
e77e64ea763e7fc4433baee0339066da79ff7620

SHA256
5d210d979503a63688433aac36c4551fc250aa99cfbe91acaf1eb5000df0ff39

SHA512
477c058ae343369f5181eacdb76ca5aad902668ebade48ac9be438f8797ce4c5c17af59e752926915c0f4df293956b01c484efc6a2c984e56f88af6ff073aca5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
5afe0216e186cf795742698de9797240

SHA1
3651bc6f1d4e588998f4c0e5787deb704cdb1c04

SHA256
2a5b8b71b1b18850791777ca78d1587742f802da4393f14dfb19afb0a927e635

SHA512
e474133607bad0602ad0d3e7beb297fd11d0de8ed245bbde2e87588a38afa70460bae5451aeafeacdec98da872443abe12449826ad080aa0edce645d7e302f80

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
f43b8333202059ad9dea001bf74cc71a

SHA1
79190350ba2cd2ead532a6a9ceb2c106ecb947b9

SHA256
26073ec6e6436cc892dc4927bcf3d87a08ab4775837766e8f22dd95adb4bae97

SHA512
3db8ca31d56d68de379af2429a59e9d14587ceb1d6b4c7718a23421c5d772d7dea66a56e5ffd73c9b3a3b0e39d654aa2eca1b210afe79cda0c9ce215eb8d4946

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
d764471881190389a4be32e01f5bdca6

SHA1
ea6456ebcaf3b2d4c4bf41804a0b90ebe8d93611

SHA256
01bf0f91cc1dc60f61a4386aebb51eb529b23a5cf2cb973bb191658e534e0e2a

SHA512
3ced88235d0faf34591c33a1f02aa421e60201667b97b0f1c4d68dfa023922970e0ae61085d99dc4b0fae0e5843aa127c2b6e3b37a834c1f5daf4c75e4246fd7

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
d230f629283a40922d69b2f0f4a9600e

SHA1
c2b5a634024383d14a201b41ed602a34f2ad81b6

SHA256
d1744db293130763e512054f786ae7dbc41b0d3417588ccfdf3018221fda4ca8

SHA512
9a589b2b7b3c461c37cdf9e2d2cdf7c86e45be0bfbb9d51dbbfea2381ae02510df2d530b1f11b9e37c28a7c633c8fc60d0fa3c8ce4dc852961f90988b2ae465b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
9ff7990b99c0278e22b7342a5f5c66b3

SHA1
f45b00237489653aefd15bf024990db9e1a5d587

SHA256
d99cee307bb045d9b6cdcce9a306ad676296924a082a08d636457a79381985da

SHA512
9876a2a98e026097b115d187f45aa0bec5b9a8fcd524cadd2891affb041fc529a636acdd623d30f0c2299fd99729becd4bee5248a775b1360681ecc16aec0e09

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
2eee7c96f3266a39285c7907026fe0c1

SHA1
4100b72a674fb21c0a4f88728f7965375fb4b7a1

SHA256
5708bde14722a47b4a057f7be326946affad7aff9957d77726010612908f1f86

SHA512
31c92697758e0d1ccdd3a9b3fbf20cd1def478069d19343e01327e2c1c1c76f7ac95e74beddb24bf258772932f1771c5acea45b63aaa1076b22250478faa68fa

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
2157a3b3504cbb490be39bc8f26c5847

SHA1
aa8c2421d3a8c01b2dee010941429913e4186614

SHA256
7e7d67f4eccb0b2301cf8c10b4de8cab45bbab4e67b620b8a65144113fce895d

SHA512
433f3db4ce3d4572924dfb17e0933417d777142ab2006f034a84cab650aec91da8d8b39c64a70ba45a12ba9f085f05aaeaec378e0b6eae8ec3a279b77e167bbc

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
0e2f67bf942c7ff7a4e3056e96052400

SHA1
5d571c49a0b90c03962796803931b030877efd04

SHA256
a27a624bb3394921eaea315528aaeed3265573783c3c0585a3cec13de723de38

SHA512
8dcc0f96e00767cd69cccaa6162fcabc2e1d9812e47ecadd160a5b3ee4752183ade83dc3d6d16a665644da2103ad086dbcee7fc6df7531a6dbccd097193d99f2

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
4d33d17f3087184122bfd115cb3693a3

SHA1
b44e1edbda990d5e3c7dc289cd9a3f69d6b768d1

SHA256
8a80b7a3f12c94522627670952e75734f2c4e059642263c60e7002feb0a23d6a

SHA512
838afb765c43e3880f687ba2769c744cc275fdc8be75f5ee05f5664b26b037df8381d68a726c8996c0163728eb350dffff503ada038ab088149edafc3aa6e61a

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab93F7.tmp

Filesize
65KB

MD5
ac05d27423a85adc1622c714f2cb6184

SHA1
b0fe2b1abddb97837ea0195be70ab2ff14d43198

SHA256
c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

SHA512
6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab9533.tmp

Filesize
68KB

MD5
29f65ba8e88c063813cc50a4ea544e93

SHA1
05a7040d5c127e68c25d81cc51271ffb8bef3568

SHA256
1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

SHA512
e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar9586.tmp

Filesize
177KB

MD5
435a9ac180383f9fa094131b173a2f7b

SHA1
76944ea657a9db94f9a4bef38f88c46ed4166983

SHA256
67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

SHA512
1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

Download Submit