ddf8b2b47cf1c57016470dae95bcbc3cf760e4fe5c5727e3d8e155a64de55044

Analysis

max time kernel
120s
max time network
128s
platform
windows7_x64
resource
win7-20240508-en
resource tags

arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
submitted
21-05-2024 16:12

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

63ea85ab9ce09410b8a70900c0145ff0_JaffaCakes118.html
Size

27KB
MD5

63ea85ab9ce09410b8a70900c0145ff0
SHA1

f1f50643e77778e920ebbaaf2cf0b2edf8d32938
SHA256

ddf8b2b47cf1c57016470dae95bcbc3cf760e4fe5c5727e3d8e155a64de55044
SHA512

d4253270809d5621c129c2ec6c90d5ac37a609b95d6ab7684498a079d0f018bbd099ea2bf00d18acebdd99e16ffa3de94d83334161151382a6064a0838f29a5c
SSDEEP

192:uw3eYfZhqDtNb5ncDW4aq16HRhe3zsWnQjxn5Q/yxnQieWINn3KknQOkEntodNGD:SQ/VgfSXASbMq

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 41 IoCs

adware spyware

Modify Registry

T1112

Processes:

iexplore.exeIEXPLORE.EXE

description	ioc	process
Set value (data)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000bd2a7708e9798e4fa0b20f3efd8e936100000000020000000000106600000001000020000000f89f24f8d4dd26b8c1ad57e5fea785a07378892e50fa9afa33a9ba4b9f7a9d5d000000000e8000000002000020000000074602a07586ffeee2a0474cd05a397e418a54b9ff0b1c5847561adc8ea85a53200000001cf8eb6745d4e21b47712fbc986d10538d1f9058ae3695d1411a2efb0272392b40000000636d165adb7b9ad99963ec255fa857401c8eeabbba96184fb03e488003f56ea44f3210ba6d6540395731f08b427f5b73b61c04f554c1ad2573c892cc101830f9	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "422469827"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\International\CpMRU\InitHits = "100"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = a048f8c599abda01	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{F1540391-178C-11EF-A585-5A451966104F} = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Enable = "1"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\International\CpMRU	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Size = "10"	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Factor = "20"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3691908287-3775019229-3534252667-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes:

IEXPLORE.EXE

pid process

2608 IEXPLORE.EXE
Suspicious use of FindShellTrayWindow 1 IoCs

Processes:

iexplore.exe

pid process

2740 iexplore.exe
Suspicious use of SetWindowsHookEx 6 IoCs

Processes:

iexplore.exeIEXPLORE.EXE

pid process

2740 iexplore.exe
2740 iexplore.exe
2608 IEXPLORE.EXE
2608 IEXPLORE.EXE
2608 IEXPLORE.EXE
2608 IEXPLORE.EXE

pid	process
2608	IEXPLORE.EXE

pid	process
2740	iexplore.exe

pid	process
2740	iexplore.exe
2740	iexplore.exe
2608	IEXPLORE.EXE
2608	IEXPLORE.EXE
2608	IEXPLORE.EXE
2608	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

Processes:

iexplore.exe

description	pid	process	target process
PID 2740 wrote to memory of 2608	2740	iexplore.exe	IEXPLORE.EXE
PID 2740 wrote to memory of 2608	2740	iexplore.exe	IEXPLORE.EXE
PID 2740 wrote to memory of 2608	2740	iexplore.exe	IEXPLORE.EXE
PID 2740 wrote to memory of 2608	2740	iexplore.exe	IEXPLORE.EXE

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\63ea85ab9ce09410b8a70900c0145ff0_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2740

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2740 CREDAT:275457 /prefetch:2
2⤵
- Modifies Internet Explorer settings
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2608

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
6ba064d5f52e308c1f8f7481dd5ac6e0

SHA1
c4a7952105f8dd443740623c377121eb5d6f081d

SHA256
bbb0012322988d3f58ea54648b3c1c551d994e831bd5b51231314f711f1b8f6a

SHA512
9a4f94f8dd0e4cea1a03e00c3e76139bca7625f571a2bcb6f1a165c35861e5adbcde3a439e754736ff0650eac848de6287ad3ea3fb85807f8cbeba253eae55f0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1120b92e370b17af502e4c4c2c905475

SHA1
4e2b1f5b58716b014f5e7173e13259b8579507c5

SHA256
4679d6332c91084f5c08bee72d9439a3efc8a9bf9df2ade4c5ea819b7908e311

SHA512
86b6b27458ceee8a0c2a13c336a244e2c043d87e8d237dbc116ab7fd5aa4d26ff7f579b53f49d81c901f9404a811e842a908bdae592ffcb92ee7d1abbdd849b6

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1b3fdef62ec093ea04dfd9fb9e87d6b0

SHA1
22d6b4f065d8b638a8eba0ba069696f765382cff

SHA256
014010d0bd1500b01ccbca5e9ca8a930724f0d27edb1e8e6357311a9654522c1

SHA512
c09a65209fef3b4913680ee2b9394e64654fbb417e7ac57d04d6d48fac830469eac0d18e671651d221397fb4c8dfa52eb9289af90c77727d95e8e2e74efde00c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
2ae3465ad5f64498a927be78cdb130d8

SHA1
db7a6ef29212ccab5dceef4a8cfbecf8fb1ad621

SHA256
e7d9ffb3953a5cbf4948b266e46c2b5b07b6bbbea810ac1d5c740eee374f824e

SHA512
15dae28b6aa7766f013cd5e1883e06d3f5d66c341f451e39fed89e85e550fc460673d3aa93498da8e1426451417e6e1505cdeb82e0595e6dde28bbc9d7e16cb1

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1ed4624dc3d49fb18b69d6a41aa9ab1f

SHA1
76e46815cf771d8aadd71940f34cc080d0247667

SHA256
d9362f6105bd86f1186fae96bca6c62e712f8f7ac5ac1c2f572f34e1b3800951

SHA512
8829bd08859439527945f1a75b0cd12a2157b9ad9ee45b745c1e381d5fbd2f0f111e5bf645dbbfa8584394a1179d16c5f90b6b634a43ba0d86de4d6de56a419a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
24ecf577ab3950884079b3b30de269e9

SHA1
6fa8f244e668b8f79c3efc11665872e2a7f147b5

SHA256
63aa26ed43a945bfec0bb795d3382280a6a7329a18cb083ba4c39d25d8859f27

SHA512
320395c0a350bf6699e4822a48d4ff085b46c403698964b9965c5d9cb2e95fbffade1c33beb32852cb0b36d1716ddf0e97d0423217fd5c49faf400462fbde7a4

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
d696ef0e96dd22ba1fddf3983e9f6538

SHA1
152b3c8544387e3a20449164528292d850dacdd7

SHA256
67d52b2043a688d5e1b5ae5a4429fae03141f8fbff7c99b85ad1852b2a53f3ab

SHA512
452473a21f194eb79044c784442ee06f4d0952f84969ed4e6f92c40a0ac613f446d3210e488a8d04966cb8072337dc3c6ed23f7feb3ec4a99e36d8f5ba6ded8b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
b2fed493ac8760e76a2adc5f08c02af4

SHA1
69802dc19315c1724a99d1301ea3562e696c1545

SHA256
daa89c0b6b887e13b98ad2491e3b050ab24068d3f58a877a3b6a98f589fe478d

SHA512
48f986cb1aa5644a3003de4b42cb32a4875538968e418c7fe30dd21eab837ac01f2672ce58104361a15b99a25c1462b5341a6e79c5595e167474b6bc391227ba

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c81739f610e1d751251ab968a2593b2d

SHA1
aec40207ce29ec8ca08d2fc5c3e18856d4be8250

SHA256
2b7556ef782ee6ead5cfaadee5d2a6c6b5b9cd0dd2f15506c222f679851fcc9a

SHA512
afb00fa84dea3c3db3264e45f08e96016afbcc2853d106d5194517940092ded3494c9b96aaa28252bbf9fd652525527dc97a044a26640d608d8a6e86da2f3aae

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
0785138db03fdacc711750986a75f308

SHA1
0e3114cdb31fbc1d9b2e5f4e07b33f3152ab0a41

SHA256
9b8d1ab5d215863a7e68ed0e87fe0d363d3a1ae1f2436635911fdd50fc62dd97

SHA512
18897a08e2d476b66ed827a86a7c5e646f38506c9f75f26dc3e7330f038e3c2326009ff15fbf8dab7c7d6ab446fb03aa33f0f289b36ea27fe7c3bd0b8d2fc179

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a45108f3156aeb7ca53d12ea534307b9

SHA1
fcd87b922ae69c7cb47b429ab052cce0d195f471

SHA256
f4efe69e998887bbb8cce917f699131ca77473021f33ed899c4653cabc2b448a

SHA512
f60edff77bdcc90ece062689d5a85c205d5e9dee2acfae94694898d0ac226a518b7db29b847c4ad56274e66cf5eac29dd0ecfca2aad83360ec28879c0893fabb

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
5ae4a29ddebb6d186f3daeaf82e6fd4a

SHA1
a1456f0c21052af2c98b34ee440524adab8b8887

SHA256
66b9c1aa5a09cb1d865af5b0e98dd0c4a4a5dfc815dff19f7461e6a28a8221d1

SHA512
6dbf43865061bf5d9151adc126c4d69809ee68ea88f9b22bd3def6cd7d0be8f54c0877f6b6f84f88402477d94d54f3d1712f31a10e0c8265df123bca4eba3bf2

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
4cdd548e155db00c69b95edb820ec33c

SHA1
13629776978a6e1ce411664473fb6d5707bfdc2c

SHA256
30b2a381a9475ac4efea4d59db92728642d3df5230c3a21cd6b949d0c86811a3

SHA512
0b8283715db7a0dbbff0dc1bf6a67d864d79c1817dda790af1cdedd7c9c52e541702259e69d89881333859b6474427d6c36fdb09b397b86f0f9b6d64a78f564d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
30166ca05694415bcab884695becc22f

SHA1
46ed38a1beb3a3f19f9dc606a9965da04b4dd58d

SHA256
a428b7e553368d55ec79220d5c3bb98f9430b34faee8f8296926801e529dde50

SHA512
1970e48ec0f8f0f0ec004540fbd461a0cc728d460e83aaf522c29ed7810ed1d33dd9cd5cd1b2404eb3abb5179ec666c867d0b619723f339412a5162d11b0a67b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a85e2f3760390c3b649afe607c172bff

SHA1
560ee3ac4cc964753f7f699852cb467dff3c300a

SHA256
4a3ca9c370002c4474438e2c90c533c3dae801e97c54df98cc2ceefa86c7ee23

SHA512
ae7f34d84145167069ef310b7b34dfdf932347f1e0c4bb6d457745289932fd536c9a0a1533d8a4fd9ca3f7a619feb783ae9e69549147fa0e41a5b296ba989f98

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab26C5.tmp

Filesize
68KB

MD5
29f65ba8e88c063813cc50a4ea544e93

SHA1
05a7040d5c127e68c25d81cc51271ffb8bef3568

SHA256
1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

SHA512
e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar2736.tmp

Filesize
177KB

MD5
435a9ac180383f9fa094131b173a2f7b

SHA1
76944ea657a9db94f9a4bef38f88c46ed4166983

SHA256
67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

SHA512
1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

Download Submit