3d70dc3180f52617b9d7fab14924f82b8f4542ca9844980ad1c7aa6f3c375cd8

Analysis

max time kernel
117s
max time network
133s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
31/05/2024, 11:36

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

86dc7396f41651a5ce1c23482d33b7f1_JaffaCakes118.html
Size

254B
MD5

86dc7396f41651a5ce1c23482d33b7f1
SHA1

c12e406a7b66cf70b7e476d1fb0c339b5adfd896
SHA256

3d70dc3180f52617b9d7fab14924f82b8f4542ca9844980ad1c7aa6f3c375cd8
SHA512

1a07b6d015784ba621b3069c9610c20be14d0ecaa6c0a06c676e48aa5abbcdb4ff70ef4a39d33c97d2d9ca236dcaeb9b99ccaea88623534ace616def500e319a

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 34 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 701a90e84eb3da01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{134AF1E1-1F42-11EF-9F3E-D2EFD46A7D0E} = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000008c768f0bb4574244af78f20d16679a6c00000000020000000000106600000001000020000000444bc2c5eb4392cf95bc3546949f4e6ae0f8aac9f71ac6c37c3a059c04c67364000000000e80000000020000200000008c6649f128dea64351d73b111ab2302c8a7775eaa0bb6bec54d0e533b308ea3820000000a4892260b125cfb56b63c5afc5fe205671f92ac4d71af517618c67a5d11f5bc54000000038c33f3afc089a3f31c284d5e2eda33ebbd6c4577e60488cebc7fd32797e8205c775c682109470211e58197ed893f05b7141bfbefa6a987831471a8b44db509c	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "423317281"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-330940541-141609230-1670313778-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
1688	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
1688	iexplore.exe
1688	iexplore.exe
2856	IEXPLORE.EXE
2856	IEXPLORE.EXE
2856	IEXPLORE.EXE
2856	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 1688 wrote to memory of 2856	1688	iexplore.exe	28
PID 1688 wrote to memory of 2856	1688	iexplore.exe	28
PID 1688 wrote to memory of 2856	1688	iexplore.exe	28
PID 1688 wrote to memory of 2856	1688	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\86dc7396f41651a5ce1c23482d33b7f1_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:1688
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1688 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2856

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

Filesize
70KB

MD5
49aebf8cbd62d92ac215b2923fb1b9f5

SHA1
1723be06719828dda65ad804298d0431f6aff976

SHA256
b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

SHA512
bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
e69b77f1bad7990fb90e7c35ecaffa37

SHA1
711b0d24f6463d8d11f6d5170b272d286cf35e79

SHA256
9b97ac93f640145c21e4d81758bf524c08b735176dfbf0898b81f7f85a9545cd

SHA512
95f67d475df759265e386a16cc0e2706279e30d278f303315e4ed14c7177218d48d4c966e265b738f08b69c53585ecbdd97ec2933a05ab395b38da06dd16300b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
fc5d676bd8becfa88afc0b2996f7e50c

SHA1
2c35b35d0908950b861052100bd43936e2cb7a3a

SHA256
3815658607f09c2970bc47db6712c956c54b85644ad21fb71dcc202cd9789ff9

SHA512
bf579c300ed74ec7f028e0e1f26b11b95f5b5a8a95033788f6c3b64fc85d67ff762c0113bc3882c1fe17d2ca3550e2392e81ae769ed19ff7c996b216e201cfbe

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
2e16897566304891ca7511aa71881033

SHA1
93d96b3262b0bbded357e7324a39d69a4ad6e6ef

SHA256
494ccb0653f4039f65664f6404a9f77ce747183d172fd113e434b7c5dd2433da

SHA512
56adc967a82be1045ebbf6bea7dbc014c6c15a733a71dceee736301e9e1b2bdec903faf7ef97bc0038ebff08d658741e35a2073c2cdaf4cd3349fd26693dfcda

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
6d55979d75096f5f364de8491f06d1db

SHA1
e37b6a74b6a9aebb715fe4dee8dcc304a644f256

SHA256
9b0756afef391bab24cced37c532d22581781a7cdca42029459262aa25a7d8ad

SHA512
eabfb52530e9dec6dd8e9ab9e954cb26aa96b4428ad0350834bdc8dca7faa0609aa65ad2004e2c1547948267c87cc0b6db43889edabd8350a5e05e001d0e6548

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
9cdd4620b64eef5fa1af4dd0e5b52362

SHA1
446ab6725d5c02542f5772c99831aaac97066e30

SHA256
8f8f76fb9cc6e209de169f8d521d6f5fc3dbe0b3eae14f56bf0c8c6b3f10958d

SHA512
9f53d2213666f85f0555239e463536b60ac8844b35adbbc082853a204e1973c39a22e4aa72d96fc3c3d584885780aaf6c4971443939b37d04b8a8681e8cec2e4

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
6fc3632fa750b14066cd47a808ef3858

SHA1
1b080edf1e10d7501e99b3c83d13e2e7c4327a45

SHA256
09a216bc20f3cb780f48b85fbeaeb2b26885aee57d0506664f0f155bfb187102

SHA512
6d72f0a936f40403b584fc9a5db7075afe51a4924b7243408fa3f9fbfb593d5e00b722aaf52daabf9b770cbbb3599a7551a6e2ee3a1dd62f8d519d5b3c18a391

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
a1ddcfe9d5029af9dfe18b89c8bfeb22

SHA1
7cd9369769f2bda0747f8171d6a8bb7568ed5ac5

SHA256
e6f7a9d67fc63c95a6ee268272df1e72fa73bb38fb34f1f116c487dd8b0c070b

SHA512
8bf200363d7dc3970c79c38967813bfc3eeb2cea7165dd61f4e9001d971a3a5476bef4fd84c87bc0c03948a66cade085d3e5a8e368ba30b0f15c376e5f73e358

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
d24c512c55128ef529242fa9ba8c2709

SHA1
5abee63881f2ceb56e3010ba9b530c28cbf48aba

SHA256
9a36b433436c0beec4696bf498a9505bbbbac246cf45c1546bb8d5cdf1674509

SHA512
e4fdc9f9e6d9b0d8f92f76ebfe98a284cd51200a7b7fa9bce8bbadfd79e6e2d98632f7a266640431f84870374c6feb86cfa0a91cfcdadd818670a5746e3ecfcc

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
0f8e390ddd483a7a1858286f473e87b9

SHA1
4883080aa6adaa7175416f55d1574eaaa9912760

SHA256
85345029308d6fa0b1f8f6b0dbe151134b2745e7d1c36a19a6b8e4d001a9239f

SHA512
fb5c2ae0641504cd6f80d08e7d296f0e4f0bd4774303634c96b10d619cdec94bdbcdb163ec430a61a0aac1153e69a08b63cbad7e33fa09488e25ddb41d7e214a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
1f6f3b07bbbb4c0d1a3854e98a322f97

SHA1
70b36d127118659eb2640492a3883947cc50c914

SHA256
4cec7f84341cedfb7ed5dd5390f963a887e63dbc06c55d1ce7faa5092b2d15ca

SHA512
d8f94323dddc4fe7dbd258a14dd13684fbc121a2fef6d623a3067b69d316d1fb03a27d1fc3d76a9b251d0e7829850591b0a6a99bd2631cd7af06417cfd813d9c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
7a303f7c1479dc237c77a0daf911dd56

SHA1
ba32009ec957d1719d1fc062bac15c186a307cbd

SHA256
5a1166f76f4ff0af18efc374e34ee120ceed885198e25d14caf41ad4b157af27

SHA512
c4ed274e52d0d56dedc2a6b821b8124d871f5fbe3e7418bf403ca7863384d2c4daf58533fdda24ed96c6fa24a2a602fa324c4a1f8635391e3928b17cac6c1231

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
8b8f8fe530e23a79cdfa7f7aa76b2242

SHA1
3a2a79f42f899e4d5e101b5d042d607a47dc2010

SHA256
b9d9126a576eb02ba17c7904f05503e8d45ca32bff5c2dd5738e250872b2c32e

SHA512
b5503a3709ce4f3579abc5449dfe9a84e482b39cbb3c8260a2611684d7ec5073d5ad393206f2bf7f48a24a7fc55273beb77ecc24752a46bbed30192ecf80f984

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
190847a8d53cb029e5129ecd8e2cd7b6

SHA1
c2c66440ac9c366555e53b7cf85a746264883180

SHA256
7062d74f414e62fa7e1ce0bffe4ad8e7c85a0850641bc4258c6e6b66b204d3be

SHA512
e640bf58a4bf8d9afad7cfc7ee552624cabe2a703a85bdf251cb7985dc87d429fe998fdcd86a57866840c8ba43915eaf58fdfb51b677498898def5c51d9830d9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
bc954613cdce5476295ff58981e58e95

SHA1
c4a30dfca61808dcc11d9da69d1c7b965d624cb2

SHA256
8547c071472da3683a4f6ff0bb8aeaa00c43f21ae6ae238214fd63d972185fe7

SHA512
bd130cc1f68ab4305205bdc73803be7c44dff078e4795d4005dc7189108afb7490dd4304f064db29f886967183fb94332106d9127f4d181d6d2db16edbcfe44e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
2785a0efac19c121badaac1f0eb190d0

SHA1
84dfaf7031a7d62f34c7ea700837feeb08a0e84f

SHA256
568a4c399325e604237763cb8dfb6140d7b0e04975dcf3d360f22bb1ccc0f20d

SHA512
5343a47c8520d618a01c59f9beea9bdd89476e24a6bd71b61354ed66563b6e4e7f17d7752f0e53991b02b7d8b718f9ba97a40b3f74c5f803bc2ccb44a0c71ff5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
35cbfd708c8ae04c2f98d5992504b777

SHA1
816815fa56f8dfc768a7ceec54c208bdb9f26879

SHA256
52453daf1bf05215abfd22c5527fa2edf66df8ab5112f0c93bdc0acbc846cce4

SHA512
a542e32e7d50f5aa845312a270d479296e8f4ca0ca0a31e6b8c7c762f0ec6a549bb31eee9cc8b1bc1f973eb73e68446db187c89ef373644f48cbcc63f76e8a47

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
5f7a61a0902301824d1bae4b82e53da5

SHA1
0e27a94261ff30d0bcd1aa5157ac4af0f08561bb

SHA256
41e99824588b60ddb5d1bce01c8819d2703379303765fb2b55dd21073f4a8712

SHA512
53a9c2cf8507ef8fea9746219afff2c9344f50287e3c8cc649a3df217a6bd7c2f12441782812b0846cc1648e70a4110335162569b34fe8a8ba7f6a0e3c087369

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
d8665a3b1f8e0b9f71c6e3823cbff700

SHA1
ff5142934e27e63d94c75f981b8e21ab0cd3a45c

SHA256
0b4917c66b58d1c9ffd0d286c9f233d937ebf631d679a9e03220d8e3667f8085

SHA512
247e95369466036ffbbb421b8b630e85e964a357c0198aff5b8f1e15cf0076d113e3979daa652cc39ac6468c035e5dad852d0756f31c51210b5c7a7b0ac1d9c0

Download Submit
C:\Users\Admin\AppData\Local\Temp\CabA601.tmp

Filesize
65KB

MD5
ac05d27423a85adc1622c714f2cb6184

SHA1
b0fe2b1abddb97837ea0195be70ab2ff14d43198

SHA256
c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

SHA512
6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

Download Submit
C:\Users\Admin\AppData\Local\Temp\TarA722.tmp

Filesize
181KB

MD5
4ea6026cf93ec6338144661bf1202cd1

SHA1
a1dec9044f750ad887935a01430bf49322fbdcb7

SHA256
8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

SHA512
6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

Download Submit