8a9cbaa75f6abf9a54af273ee98945b286989cb2b93b8a61e56b735111e9e5fa

Analysis

max time kernel
118s
max time network
135s
platform
windows7_x64
resource
win7-20240611-en
resource tags

arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
submitted
16/06/2024, 04:05

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

b1a7cdcd3986103c977168ec26e624fd_JaffaCakes118.html
Size

16KB
MD5

b1a7cdcd3986103c977168ec26e624fd
SHA1

1ab31a8f4e1c7d2d856b08a0fb5c476aee443e05
SHA256

8a9cbaa75f6abf9a54af273ee98945b286989cb2b93b8a61e56b735111e9e5fa
SHA512

faa611ce7809e36905fd98efd8d6ecbaf5ba1d9968c1ebb9982a74ba0871b18034a3c3cfafd6e53b23ea131020a13af358fcbf71f5a042382dfbbec7e67e92c2
SSDEEP

384:fqC4imoEf6jIBfydPEfIEcIENO1nEGIEM1Eb6EAIU/iVT0857n5whFbBYh:yERbjIjH7n5whFbBYh

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "424672606"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000005ec80cf279b2564c91633e21940a807600000000020000000000106600000001000020000000356a1a41dc73ba14319916de542f055486888c3fb3b13dd7aab9431d22e1bb19000000000e800000000200002000000005b85c24a7acd0074badc9ec3fc19c3820555657090d2efdbd38b534c37bc1ac2000000073dc757bc8e97079f32f4241d13c60bc3adfe76ccf0ba9d42ba7fea316a5792c400000002f670fc8a72f4576061b414ab6f3281e2f46aa2754cd4ca11624a96bb310772b613a39328149953ea8bc84d3bf7181a7dd5e7f720dd6e41100a9f2fcbc3c9931	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 20d8a285a2bfda01	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{B03C73C1-2B95-11EF-AB87-5E4DB530A215} = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-39690363-730359138-1046745555-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2984	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2984	iexplore.exe
2984	iexplore.exe
2960	IEXPLORE.EXE
2960	IEXPLORE.EXE
2960	IEXPLORE.EXE
2960	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2984 wrote to memory of 2960	2984	iexplore.exe	28
PID 2984 wrote to memory of 2960	2984	iexplore.exe	28
PID 2984 wrote to memory of 2960	2984	iexplore.exe	28
PID 2984 wrote to memory of 2960	2984	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b1a7cdcd3986103c977168ec26e624fd_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2984
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2984 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2960

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
c35d7978ff6807fcc2153f71abc0a77e

SHA1
aa287c9d175b7386a00ef7f48e126dbca36d657a

SHA256
f4371d832ab91cac1bf2bcdc6a230bdf3e99162f4d96cc96e48abdecd6d045f9

SHA512
7daf0f0561af62637e8bff863383ceb265d279ad3b9df39dd76960954fdf076bc93133e60819e8f8daaa4fd6e0a44a5e8930c0133221697eb8b3c2510b3a2b89

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
6c6f1c3613b4a0de3814ec7e06993f31

SHA1
7724fd0fb07f26e40fd97735f1a1605aa0c0652b

SHA256
334733245d745aa969d1af9010994a49efde12e62ca9a801f535b4f5e44c4baf

SHA512
a53836d41538e89f5e5071a135e35e73413a74e6823509f9ab7c7b6ffa68a4f5b954e17fc5c0e461e230d984bc314f9e03e1ce8b1fe37f8c889029484e9a4fda

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
aad109c6f02842a20b353ed2fce22781

SHA1
4e850f2c5e8692e53aa849cedd8e1341e41dc26f

SHA256
dcd78f2119ca88bd3e515a5d34dbad9da400e908d2088ef62abf79f2f1e1c874

SHA512
78d9a95493ecbb45cbf822fab5027f3cdb529f3e21daf00def1f66c280ae9000e5f8c7b3b0e04315a0dbf99749568afae986fc0150151895a46d3173f6a8d47b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
c4a603a04c49207efec5f5dbc69efdcd

SHA1
0838efa73f242ae52e7b91f4142488b4e9a51f3e

SHA256
511a5c5cbed4fcc7b9a6cd6e3bd5511c39b61fc8d59b072b382f5b5955ba77e3

SHA512
4dfb5275d63a80786680577c6adcc0ee13b39fe534f1da882da131f350c4a334525ea6c4f7a464bdbd5be056113003c93f135ba9130055fdb0546128bc577fd6

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
6bf966d82877c2a1d5b36cf64ebe3211

SHA1
4c84d0854f41c0a4e51af213caefad12fbd49084

SHA256
a743571bb1be559d343574fb4e3939b74aee9f5d989cbdca565c9d899f64a2a2

SHA512
12f2a9e5ac18f6acb81cb4121795841cf1b5f1aafc92670f2396eb55d07c80b6d47c7b9ad6c7bec5c055aa9654389be25365e54040a6adc75b41d27177d8c9ba

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
ec26ce39b9efc3c1e30d3c5e157420c7

SHA1
6cf7008a234bfa695eeeeee86915813b65b26f16

SHA256
d6f0b71f2bc858eb4f4d8b76bdbeb2245f6b00dbbff6fa13089aca675770406f

SHA512
2819fea1c71ac626e371ed8630b0bc199c8ad453ce032e2073998cf994b7d9ab31c8502b90a3311b821fc5ed557ce848f6bc5654169a7babdbf4eeb84cfbeca8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
e4cddf542d5a1033921a2817ecc08dcb

SHA1
7e1bbb20958d0e75c9b279455337b434b65e8d5f

SHA256
847d34517fa907bd7e7d6a298ab85339e239736c00f565a881ec9170642187ca

SHA512
183fd17da5e3f933a1a81b223810a5e53c1be6ab13494551fa52e3735046337afa7b93be64b804851693b13411896c448e359c2b508c877a0591ba0441ee73c5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
04158640ddd00df1ea87bd32c283f666

SHA1
63782444e788be9415f52e165bd5d52fec924020

SHA256
fa0fd9dabd19d022e0bb34a3dba75befa44a8a67583d3b3930ef83e884e94fc0

SHA512
5354b9dce5be9fb5fcf81bae335bff4bc3074d59575cd3d17ff6fb887c0921f5fe751b408ca84683656ec3845691304d9200ee3dfd4208eb52d5367c98f64e1f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
b24e250dc918475935a71df4471f2461

SHA1
4f7b17607cba97824c1468e8ed77614c332757e5

SHA256
d053f90bcf25e8ddbcb5b7d99285c1166bf2fe01dbfb76bc388b73d44d8aec51

SHA512
4f5083ece03d4d507d499e21e13a5ee9ada9c9500701de88d0d952d18b212496e5c67fe99f81f6aad605e41d813a32f211d46d8e92789710dc233320ea76625c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
e11a744512e00c494e1c25d33f75af65

SHA1
9f2582b786a3f47ddcae3c1605f12dcf3eca514d

SHA256
830380bce78fb12b1d92c7c03e6b878312e785a3d028db98c9d4c49b73577cd3

SHA512
9d1da50ff41ee53f29416a0c4c2faba4f48c2f6429c477876cac675718d6eece9de600e77f8fa0142267934c7d80f7a52bb78e1c931351e00d888097fbe8147a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
519865912918b1a4def8a55bf9f43bc1

SHA1
fab9efc688c2e419db82093d770be4554f14afb3

SHA256
843629ed26f1a0dbf438b9c28f18d4b24c812fb6ae9754b4a0bb2d524a316b36

SHA512
97fbcc5f47a0009583bd9a474a0b8c76c90bb7ec82a42fcfafeeacf0a744572eb54649217944010fd487072e6ca86d8f16b9284c5280bc4af37a9eb7b3117d19

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
fe4462bf01740f4e35f45f6900e571b7

SHA1
c6890ead0c2abcb15c8b895a3ccb2e665d448954

SHA256
b7924696cedf07cd2545f5d230f50c7b54765ee95b0b4e2dddef0665e53217ea

SHA512
0e5c42f9a5429412f0f5edd7279078fb60df24f04133e8c8a4dc982bc7d57a313ffd302de7c3466522c1301c76e00788065d28dafe5de33c635bc76268d4cb24

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
b6e80bd27523bdef5fa90b8703e4c0c1

SHA1
89af35572d1aa7242bfe4fa35335e29128177c50

SHA256
a41158d231b2b1a6fb781a1ccff555eebb9937c904d9068471294fe47d09a807

SHA512
ccdc6e48601b89fdcdf7ea191d28d85e26f52ff1a4afde1a7c2ae2450c265211138b7fd217144e10b1ceee5a960b4c2c5e0613a1fbaa0efdd406c71c0b72b24d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
e71225246f4adb6155a1e83088935361

SHA1
d7bf2700dae928bdd940543719902e2af534beeb

SHA256
285045a8d3671e288e7f6fecb61a0fd2a6bc9d572f2a0a6cc00aceb15a8119ef

SHA512
3ec5b41f2e2b2972f61e343e1823d7e7f11679d1adcc8f94dc68246864b2b7df401e986a9e98f07f1e4a77fa337cd0d2ef0b80093f0d7e7b28f06031b9e96d2f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
87ceca68ed3a02640bd568f13f1f2633

SHA1
b9c44c7654f484dcebfa1bd66883594d870675d0

SHA256
633f0032a40ffa36701a43b470eafbe77becc928adb556a7dba64624add19d26

SHA512
e02ddc1d213a64de014dd4b96d78103c08978ca0618355eb1daddc28d00e98721781aa413120b2d3442dc752682306c39a94da7456a550d283de5005b632cf7d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
d6b784ce317bc5fb9ea941df5f974929

SHA1
f397a42c262d4d419505a7a6436bcee92bca76ec

SHA256
3615e5a7a2e234197631c08fd1bace62c98b650d7d49760856b7b69bb1255b78

SHA512
1b3c15ee5963c16f6c460bd594d200f58338084c6e75aed4d654a973656d6ebbb35327a516a67d5fe941cdb542f374403cd97be6ce2fc0a49d21dded8fdda124

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
fbf10980bfb40fdf38d2d893bf99eab4

SHA1
a4eadff16386d55777477509a8daa3f63245319b

SHA256
613aa4645bbcf6317fcb7e937f84a725885571b7c6fa0ee7a57a5dab2ff1d60e

SHA512
e6809cdeb5b3042b84cbd2451a84baae59fb9234e97ccdc662c240b1b111c16d68b3311389889351bd9cbbf1d20e2a282cbc958f2ce88ef845b72e909845737d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
e28863dcf176aae121631030aafe5ffa

SHA1
3a0dd7f38f0c098bec1389d7193efef49b4f9d52

SHA256
15bb68fa99d8a6f9419875f606bf0534225ea629e5aa5b77f95ea2e5c1538c69

SHA512
b750d739fedbbbdfe05a590826831194d57e369974be5acb8319e32c812d2d7277d5b7dc8c044857cb76d00eb2875af9439d0dae293263bbf796722a299ba6d1

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab7B99.tmp

Filesize
70KB

MD5
49aebf8cbd62d92ac215b2923fb1b9f5

SHA1
1723be06719828dda65ad804298d0431f6aff976

SHA256
b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

SHA512
bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar7C38.tmp

Filesize
181KB

MD5
4ea6026cf93ec6338144661bf1202cd1

SHA1
a1dec9044f750ad887935a01430bf49322fbdcb7

SHA256
8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

SHA512
6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

Download Submit