935a1613a964c29bedbca2422d4b858b850dc2ff9b621afee28a34db3627c1d2

Analysis

max time kernel
118s
max time network
133s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
03/07/2024, 03:52

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

20fd577ee63fefaa4ab76f43d9511d7f_JaffaCakes118.html
Size

6KB
MD5

20fd577ee63fefaa4ab76f43d9511d7f
SHA1

2efebc188e319e8d50a19fcc0d238758d72fa266
SHA256

935a1613a964c29bedbca2422d4b858b850dc2ff9b621afee28a34db3627c1d2
SHA512

813f7c5e265da1c332c5d7393ba0f57028a1e2a66964e6e8a7793227bb1d467a0865e060e5e71fe25af60eb63ba6a35167e640dba88ddf5d8028e3b6f1e2c282
SSDEEP

96:uzVs+ux7KOLLY1k9o84d12ef7CSTUEN/6/NcEZ7ru7f:csz7KOAYS/T4Nb76f

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 80a5a9a3fcccda01	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{B60181D1-38EF-11EF-9966-EA483E0BCDAF} = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000bab13787719c9e42a09367b6a1e3cb210000000002000000000010660000000100002000000095176c0290e06699feec8e4fed63f0d20fd5b2d1c35f226e4be211e339b6c58e000000000e8000000002000020000000bbc4917e11857c420c0234c4a9833f794855a8184cde1c86e73c4836705d57392000000081ca6a2d11378a59fb83281d919f2d355647470100d0d7c7bef0029b111f869f4000000007c36b5aa4905c6e7837571cc310c41b79170ace9a6fd10cbc4605181ad225601eacc9fa09027c01e9af12ff585af18e159fe3f1b7e22982f6a7039e618da6b6	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "426140639"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1298544033-3225604241-2703760938-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2156	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2156	iexplore.exe
2156	iexplore.exe
2516	IEXPLORE.EXE
2516	IEXPLORE.EXE
2516	IEXPLORE.EXE
2516	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2156 wrote to memory of 2516	2156	iexplore.exe	28
PID 2156 wrote to memory of 2516	2156	iexplore.exe	28
PID 2156 wrote to memory of 2516	2156	iexplore.exe	28
PID 2156 wrote to memory of 2516	2156	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\20fd577ee63fefaa4ab76f43d9511d7f_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2156
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2156 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2516

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
d275c58c8f2d0623587720beb45c0b00

SHA1
48137afaca99cc09f0231a8cb9363326fe7ab7ad

SHA256
a638013f364d6a2b67146f1a55c9b74f6e828a4a80c6d034de6b588d6fc9cd80

SHA512
b0c20107812a1536187aff71403aded9c783952c5ec5d5805625d4f4eb24d5497e3f8da0801aaead64b7c2b4013d91d20aea6ac306b7adef7fa9049bdbaf6960

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
ecddd06b66933a089d38ef1bb4c6023c

SHA1
0f06254a4790f4caf013c25186f5abb65855fd0b

SHA256
c2c53b1a3ffba5fc67d5ca4eec05d9780f5348e9e2c81e89085b370c92224e48

SHA512
6f3aab8f710f086896d444c904c1269aec139d2e1132003feef54d2b9115313194bde23c15b3cec73ddab3f9898dd2b2176adc05417478e48c5ad4504a01060a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
60c337be81fd209dba023deb0ce35321

SHA1
fabdb8d220d711e54d395f02d3a0fc249ff1d3d5

SHA256
30b99733521fe6ed6ab486a5a799271050b43ef75aa05afa4370e3df468a9797

SHA512
e283007fe12afdd89f65a4ed47a9f6bea78ec97576dbb45ff2abb4cd1dc3a01391c58c019df3c84879a9948f91ecb6121493fe00862f6c6b8c7b6b7f3aaa453e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
75273fb9e440a0d906b8cb04c1acbb52

SHA1
bf24da2ffce456a1582be785702631a9a687d9be

SHA256
e07471244bce1ec128781e1110a386a2a61bad23a7ea45576c1e9faed1a28a6b

SHA512
f43a642c8c670556391e68a0b92bc555609f0c275faac5100f2724836257a72a2a58032944a61d6d09e9ccd4a508a6e0f41bcf7185303652452a4e3fcacdeb68

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
52466819ae7c88fca760d4396e2b507f

SHA1
76a27d65752f300541609e51e8d1419054c65d5f

SHA256
ba575883f8684fd4e096c7c3b15164a1e7697ec94596772bdfd268fb6cf7a8f9

SHA512
a4ef104ec4f910b6a2e91b90786c78fd99122a447f25990f8289382a7c29a6fcbe3019bc0956e5f19ef4441da4bc8963a0b0ea565a065f7f28e4a4293b9f16e4

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
f32ba75e5d37ef098b77ee642a4e60e4

SHA1
e436d278ed42ae8baf7be66aa96a53927ee236a9

SHA256
39d17de31a49710767a3ff66909b64856d9d99a552a0d1b40727dd594ca0873a

SHA512
6f7dbc27d1deb899da9738673792ee50bf41e9f1b2267469d324176561f9b51dbc5ce41789cb9a41db97afedb262284bbbb3489a908dfcd9abd0966036a636f6

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
70e4092b0ce41c9b87bb916670b3a077

SHA1
925990dfcc92559f62d45c1cca3af2e166dfd5c4

SHA256
1964e45c75fc427e537413ae6afd49b4d3f439ddad9a250f3a4fc6c54546c8d0

SHA512
16f0844b90c7708f68f532ef9111a8468f93e6613b359c44b271b70a3360ef66552a507f7aa17b66f03cf6f70fee7c991d33c2507af8417b276ba517be701d6c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
07d9afe8aa67edc762a75d946995ea91

SHA1
0304b2bb3f8c7a5339202f4880f8b0f8db15a474

SHA256
d68d4ad5772151a7359fecdd9754908556823c5ea9d4b5ac217021fa4c40a2d9

SHA512
18d809baf229e2a7b581c6a5ca4d225376f1bd321d68638ad6025cab0acf4efa453fa324b0f416d5c86234c83f53fca975b7bd76907558d5d395c40fda9c9765

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
e4e3ac4710367aaf1d0201038c4a06be

SHA1
39adccab0280e48f6fd967ef5048f3b861a5e46d

SHA256
fd96a78e98c9ff85dd90d9b4495b86225dc7b15b792f91b01d919674b90f817a

SHA512
ae6bd172dd58902b3f01d03fcb6b0cbed46bcb19f35f7945569551dc5cc181b601599ed838fb13a829ad80fea23e3a84fb92af08fbef68c613eed140544a814f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
601a3700477af2cd4b71d0047f4d4e36

SHA1
819518e9f94d984611a2565ec0774b8b4f901d26

SHA256
f8511b67a20daaf495a082e116cd2fd3115d0627e0e18ae0f08b6a457180d64b

SHA512
f87ff420b94720a446c5003e5888abf3555c354f099a41c4ba0023d7192ffb3bf3421ad5970e9c08ba5048c837e30f8254b41efbcd33e320a5b2fe9c3eca958d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
b9bf9ebb59958b5431fe84d1e3c80cc6

SHA1
e7f7fdf62d748ffa095993f20ed7b229d4c45e20

SHA256
f8d593f282600e49dfb6b09d95c66a34f4f5f430297e74897771abc7408caa6a

SHA512
2802e8c88edd539b2f3b17dd5ba12f0789978687ac0e13bb2d913e2c3a5c36cefc88c02234efa0b1dcdc9859eb6d66bf4adc97b7cca427903aa3ddb110bb6790

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
e454e9cad0f2ff5d34a37b205b392850

SHA1
d4a369945648c338af14f8c28c68c49da64f89a6

SHA256
ca5dce66500f46f632574a2838502454bf3e25d8a73cba1bff4e6a9a9f1a49e9

SHA512
ca6d4142a9e62d1df910d084e889965c43599c31dd26e99905de64e49feec19819f2212a7eb76413657b12b572de880010f44d9034202d8ce2d5968ad1d605df

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
d5bb1df74ceb7111117520374cf1f71b

SHA1
5cd0240bf4bda926c058758b64002470a8e3b1ed

SHA256
e4606c2d71d354e7635bdd07cd3cff62616825e25207c0b880df189b605d42e5

SHA512
b9c344a3a685c217feeae39377354b237ac072fd688214c67320ecc9a380f4ad18dea1498149e1f5add37ae47a881044decb2f904ada61b639e55b91456e51aa

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
2cd89647c5a671e2fea2ec19c2247eaf

SHA1
241f9aa11773f080eb6306c03fecb67ac0b5819d

SHA256
cbaca80d9beb744df9a493ba9366d82bc835530d0d6dd54fb28f6efcce22484a

SHA512
eaebe938d083529ef5cf1bd76b443eb07cc823d6f8a618983ae94f243b0ca89f24feb36c7f18f1d11fb525e3e7f7dacf62fca260c88b2e2111574c6438f88152

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
c5894926550fa14402e2a60242d48b3a

SHA1
21b44fffd2939b63c947f56a2a9b0d23ed101ae0

SHA256
d486968836a8c6de8ca0ebe78f706ab36cfa0017ef93528810b2bc4dbf38e479

SHA512
3c0e4daf84e7b7822cb8f0e4a21f1286afbecf82760665cf89c269c166004dbf26d4b1454b1598a02285bfc98b6b0aa21b5c6e94991348756826ada0f3600512

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
17aa3aeb36ac66153937b4482b313e1e

SHA1
4e22b63695938962cef97a35bc243ba394cd5b16

SHA256
1b24a902a425a1a2d52cd7437048fa724634ac7148840f66fb48253b9a4ed708

SHA512
bd09c1a7892464d82519066037e53a82057e179322a3c520af790f5d3aa21d3c49a98187716fdcbdb587b6635b7abb498c48baa02c010b446f546c766e24ccb3

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
cb419aa8eed73297d67f589a56fd62e3

SHA1
674053b1dab631f8771524eaf2d110c0abf62451

SHA256
8f18aaefa3ee61059de389e4ba3ac063a3aa0d99bb304b6cbc495818688ab864

SHA512
3175175bb798c4a79c659d05866e99b5fa7a8862d121dc0d3753a158961749d350563de6abba03b7e2b578c562c662ae94e94bb85c3b3d4ec760bb5e282a43b6

Download Submit
C:\Users\Admin\AppData\Local\Temp\CabDF2A.tmp

Filesize
65KB

MD5
ac05d27423a85adc1622c714f2cb6184

SHA1
b0fe2b1abddb97837ea0195be70ab2ff14d43198

SHA256
c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

SHA512
6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

Download Submit
C:\Users\Admin\AppData\Local\Temp\CabE00A.tmp

Filesize
70KB

MD5
49aebf8cbd62d92ac215b2923fb1b9f5

SHA1
1723be06719828dda65ad804298d0431f6aff976

SHA256
b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

SHA512
bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

Download Submit
C:\Users\Admin\AppData\Local\Temp\TarE01C.tmp

Filesize
181KB

MD5
4ea6026cf93ec6338144661bf1202cd1

SHA1
a1dec9044f750ad887935a01430bf49322fbdcb7

SHA256
8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

SHA512
6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

Download Submit