71becf953bd17542dc7c60abdf3583eb0744c0f55be50a46bceef42b7ae4dca5

Analysis

max time kernel
120s
max time network
133s
platform
windows7_x64
resource
win7-20240611-en
resource tags

arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
submitted
15-06-2024 14:55

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

aef8dc5d816cb21a96793c56b91e05eb_JaffaCakes118.html
Size

9KB
MD5

aef8dc5d816cb21a96793c56b91e05eb
SHA1

032349efcbacb4076861aa6389c26cedfb16562e
SHA256

71becf953bd17542dc7c60abdf3583eb0744c0f55be50a46bceef42b7ae4dca5
SHA512

5033a28f60e5770f520dfd555f62f4bf606847b39e2fc364b7e4cf9ed5d47bea0002a0a2ff19ac1afc71f3f555846120d9c004fea87a4114b5a2b50a79ec8509
SSDEEP

192:jm9f98tgbW2ZWEMJNj8TsHfE7Nhnii7vD+glhorNMP34njqpm0U2K7hhHmW9lPM:jm9fyr2ZajsNhnii7vBhUNMP3J7ohhHA

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "424625203"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = d0b4522634bfda01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{5153BD01-2B27-11EF-AF9B-7E1039193522} = "0"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000005ec80cf279b2564c91633e21940a80760000000002000000000010660000000100002000000044c010471e42c29a4dd24a39da26420026eebd5b9bcd42f9149056ca9c4dbdae000000000e8000000002000020000000d4f11641e0f41fb09c3799a2641b8233a87d8f4beb3ae5f06b8b84176b35fbc320000000fb43daeb0efbf3f228e3bf51c8677e85332b34299ca9422ac2cea256eff613eb400000005c0e2248255b5f89f5166ed6b12f4169b6c57c0876e34fd60b4ce8a5805d091c120cd3bbb1fbae797af0ed25e0275caefac4dabed8208a6e8f4365ef3d20c759	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2"	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2012	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2012	iexplore.exe
2012	iexplore.exe
2744	IEXPLORE.EXE
2744	IEXPLORE.EXE
2744	IEXPLORE.EXE
2744	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2012 wrote to memory of 2744	2012	iexplore.exe	28
PID 2012 wrote to memory of 2744	2012	iexplore.exe	28
PID 2012 wrote to memory of 2744	2012	iexplore.exe	28
PID 2012 wrote to memory of 2744	2012	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\aef8dc5d816cb21a96793c56b91e05eb_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2012
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2012 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2744

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
4f31dd26870c8a6186f6b6e521b40f06

SHA1
3282ad1cfe4c110e844a727ba0ad839b88778667

SHA256
3e59a48501c49a502319d1db52520b5f9e3292360d4d8489edce065d7ca84cbc

SHA512
0813d59fd77993ac2b8f0fc1241982d780bfc9545e4fc6eac0521290b035a800f0f0e3eeb8d82c5d25c643a074d1fc1ae626caa9d5d36dd33b4fa7d6c0a2bac7

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
7b860a466ffacfa13d33d5c4d4aad39c

SHA1
f7bc8f1ce372a0b6a80dab51d8e2fd4e163da0c8

SHA256
f9174b5bad240e2182dd5f17510461e24d6b91c7ccd827564cc6e6ac7e566b73

SHA512
443863fc309fc4c7e5c498dac2b954ca40dc0702f24c4f7a436139bf98decc7732875962ef693c67845c0c3d4d073d5e8fd6979e18e43afa6320e32ef6345c59

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
12fcc2754b8660e7c67f33224bdb587d

SHA1
583982561af0e158a93fbc722fad6f6ca6f0c96b

SHA256
cdd9800afe46fe5573311434a6c2949e24a9182d5b5543238d359e812a8b6067

SHA512
7aeb1438951170cc4c78e55c40bc0895b005f3729d50a4d722bcbb9ebff863508ef8d9511805676c230f9688dabc415338d81caaa78b2604775dbd6178580974

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
7d27767c0ed2487480739853d44a1024

SHA1
fb112318e5a4eb48fd7d4580dbc593bb4a6e0d62

SHA256
986afaabd2f38c28bf4cd7b45715f874e6cc35d2f32513e44c98bf7231f83394

SHA512
04f3b3db2390bdace72e4833d7594b876466702e990b17513c21af330b86259e31ac99d25c65bcf0fecf25cc8bec69bac95763d5e1ac114f5af5c708598097b8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
986ad26ac26aef470c1dcc67b05fb78e

SHA1
a0f884b3a8b2e4ef5c2261a25188eb820e6d2bbd

SHA256
83db8497349748d405342f2cb5c00d89e3dae8b027a8158e568561d41fc7ff3e

SHA512
aa26f820cd00977d2ff83cebdd8e26c45c3ddc242a0b796b8be9a832df79457a95084267a8a0dff5d1d75a0174a9c1d87fd8b68f2ffa93e69080c08f2fc1821d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
d775463176819932d546e9e3e68060fd

SHA1
452c89fdb86cca450cf79cad85af92680575bf3f

SHA256
2f73dd51e6e641486f5de2564e8d2cd6b014de1017a3b4a0b4ab321835568412

SHA512
e8f253c2ce39fa3b41109a7463095288a490398c3cafc1fbd4426c9368d81ac12e6b536fea44b17019fdbbca5460ebc01214036fb48d33fa5d22779021213dab

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
17688750cb339fb9cf955792b34fe81a

SHA1
d4ca01ccffb31d0ed11fe95e9eb41143057985a6

SHA256
e014c36dda21aab6abf63386027b88476c47fd8c1ee47a7e14a080f62285e64b

SHA512
680370c1b6527ff89799d6fc057094efd24414effe69715d4fc1fa01bc4d491bb22a7343eb3b867b308d187aeb4a48a9f23069330b225e24b90b45bcf6b99f6e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
09b7a53338bf8da5250505ef92e03cde

SHA1
1194d8fedbb60465348d23d444ff45363b3c5604

SHA256
e68c5e2099326ce4e26d0f051e433b2cfc898629d2bdfc84cda18d6b023e07d7

SHA512
a15a525f36dd65ff3bf1d3e72eec2e4c2950efc39fca85a7c0fadbed1ce63ef9d1204d81584b399368d87ec0b61da6bbe0d84655dccff3c235184dfdb4108a7d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
c3f947aa73afb587d115adef929c16d5

SHA1
7c1a62935e4045022826f9211f41a1c62dc00f4c

SHA256
17c67fafb591b152efb01cbe272a847de6c71d919af28d69968565cf356ca772

SHA512
6a8d24c4c2f9f991e50f24de89369c7308a1d46d2aa0c32fbd0e52b8a4419a517ff7b38e18c27724db1a49f80e2c79c13c8f55f7c5b217c3fb7b60d7477a0e1c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
31d0a8b4502c76efc1633f96493356a5

SHA1
5b89f58e2a4af5cbf3c32d718ba84217a5cac925

SHA256
cfa67fc7d889b65a4d2276c5c545e73fce10e66eec26b179b0f51816cddc96c6

SHA512
a9e4b5e624a5253dca1199abb2dbf15585b5c18a98767231dd60561f8003db72d7fe0d3acd7c629cc616baf552a65bf7ab240ffaa00c8c2c42edbb173f1f2eb8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
5c6647dd9264cc5994d3b7b69be2ca06

SHA1
c69ccba6c0e3eeffc64531357e19ad837e18d92f

SHA256
7095c47f18cf3e6070c0c513695ffaca9705c4c17164c9e9f4a3eb6c09b1e2c0

SHA512
a5a77f59ff831e9ca44765399c09532ed8bed536b2f05e6397a3d7ae3902906a5c446e32da1adf2965f1de617bff18796ca3eaa50429c5ec60404d856aad49b3

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
c50194fd9967a20c8b5226cb0001c02b

SHA1
eacd11ae16fd6f30f2340db4eb2ee2d8b7963792

SHA256
bf50fdcdc91ed3fda4f1ae6d33c6a7f6316425b491c8c540419c45c29c75df7c

SHA512
52286145c4a7d375c4a138d1e01459faf4e36246d62308e0342048978a02f4b28fb565cfa9d8cc9e659af0c343bb454385666a79f5117f9d90cab6cfa1abe248

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
93d3bcd02ba102a9d08734d1e8134175

SHA1
f856eee8004919ccceacfb7240b5fe3c39816e6c

SHA256
5061e07ea451de2a36134eb47f87c211dda178ad95ce6959532fa62b27c89796

SHA512
e370a94c8186776b019a1b16ee6997c23655096ff46f95c5d78c1e2b03dadc32f0114f3da6c97019a2a09c4c14472962784321ea78a946808749f345d3bd5025

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
05ba3e6be4f97df3f74acf8764b45192

SHA1
3b2c2474b1b633d6c5e99d3ceaf4d5912242d6a4

SHA256
010a4556e0a182118e509abed326e01b3b3c88f2f96dd9b3705917ea4d814763

SHA512
17c59013fff9f9530cb0b89d5917b8614ead4ebba426715d6f098949e90210763eb5f98e6844e2630fda58d0bde938d12db2fd00ee977d21ecb5f15b0a5fbaee

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
e88d691f450123c3b8b0060f7595d6d7

SHA1
8193e4f1fb38fa1069e5e3216c7adca6de777cee

SHA256
ea591fc5ce922df7d0e333bfcf860b80e4f24127749dce8d52d0e69a61cdf894

SHA512
4ce8bc2de39946525514d6462f4971c92b36aecc4b09662c45bfdb6a359755648bf8fccf92c786dc8949a36c4f4eb37e739720b8cd036a7d9b182f8c801eb5d7

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
27f275474c1aedc702f882997ddc58ad

SHA1
c7cb696b551958c5e6975682879be99c8b58f522

SHA256
04240690deefbbf8d3db74e65493cc90ff23a3818925997aeb10f8ba039ab1cf

SHA512
85fe81f38d82c8363d7764e446c270aba4d36ceead6a3d1a7313324ec394c78e3790ab3a8853e2d72d7f339cad5d9fe3a21c92610214323b712fcdb99611a9ea

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
7054d26734be3c62d1fc478a2674e1b1

SHA1
7471c219cfea843cf500e1d2d99627324f821cdd

SHA256
b8bb7632982c0672416e11d5847f2f55d821a8a46444fe38a92081068f2d3f95

SHA512
3902374bb405918b74389c75662941b2ad7e899524177760ecadd58e27e43cbcb8353b124b64faefb4fb4eddee79d1e0d24d71d9e3d3539a7549f36ddda5aea5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
100e4bc15b343799971e0b8eadd08189

SHA1
fddd1f3e7b498b7908b4af79f0304b18fd0be185

SHA256
42c079d2b90301592b822b6d7effeb6325d60114a666c72d6379dd356a8b7160

SHA512
741c9417868ac040d5a0b4366931908cb4723f8607a416586b1a8a8ae23f15c422bf62cc111972de68cc05fd0730b467d585c33190898fd470c55bf68e9d9d2f

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab6C6A.tmp

Filesize
70KB

MD5
49aebf8cbd62d92ac215b2923fb1b9f5

SHA1
1723be06719828dda65ad804298d0431f6aff976

SHA256
b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

SHA512
bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar6D1B.tmp

Filesize
181KB

MD5
4ea6026cf93ec6338144661bf1202cd1

SHA1
a1dec9044f750ad887935a01430bf49322fbdcb7

SHA256
8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

SHA512
6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

Download Submit