d420e839751e514d31eb6c9eb8b0aa2b108c358a058b390983cdee97fa28abe6

Analysis

max time kernel
140s
max time network
141s
platform
windows7_x64
resource
win7-20240704-en
resource tags

arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
submitted
08/07/2024, 15:58

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

2cf002d72c7e965f200b33b160a7413d_JaffaCakes118.html
Size

10KB
MD5

2cf002d72c7e965f200b33b160a7413d
SHA1

eaa01e4f055e5794617ada68dfceac7fc6dd2667
SHA256

d420e839751e514d31eb6c9eb8b0aa2b108c358a058b390983cdee97fa28abe6
SHA512

9809fa419ec70e76dc7c1fb8df44b3436fb914f6e09fe69291643bccd072cedebccbd6ca3509b95bbd7878949e30d9346c62520a2ad30c3d5de12f45d79945f2
SSDEEP

192:7WXK1sBi1ewSTuT6u14/wSTCkQNFsrFu9h7G4FS7x1x94A/vXhWYoV47nMK:7Wa1sk1ewSTuT6u14/wST/9rFu9hbS71

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000002aec918cb9fa9248b7812ac80df2e74c00000000020000000000106600000001000020000000a017582b701d657967d2e0d09624c823104dba1435d59881457f8bf301e8296f000000000e800000000200002000000003c6f053d3b7a7640b4edbb236fb32bebfb76a27c4d7615a65053ad160492f0120000000888838c8217e9a32acd694298e67d71d0ab48821a48d69b7e59614ab3f327a2f40000000aecb5c58875be7cfac39d484c721a7965b1916c9381e5fae5472cb3893f2cd00923bc65784a99e46dd31587399d82d87aea69b8b675818551a52a1bc972e6ed7	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "426644912"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{D1D91401-3D85-11EF-9225-4E18907FF899} = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 000fd3aa92d1da01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3450744190-3404161390-554719085-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2052	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2052	iexplore.exe
2052	iexplore.exe
1992	IEXPLORE.EXE
1992	IEXPLORE.EXE
1992	IEXPLORE.EXE
1992	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2052 wrote to memory of 1992	2052	iexplore.exe	30
PID 2052 wrote to memory of 1992	2052	iexplore.exe	30
PID 2052 wrote to memory of 1992	2052	iexplore.exe	30
PID 2052 wrote to memory of 1992	2052	iexplore.exe	30

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2cf002d72c7e965f200b33b160a7413d_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2052
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2052 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:1992

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
450f5d7106ab846bc44dea2a2d36512c

SHA1
ba6e6c0c7b7a7e570d2d1db3a5497fd676506ae3

SHA256
d690987ed366da565504b8b7d3ef61586717a84129ea7a50f92a98b5819097a7

SHA512
591f7cace302e4b41316bdce14e03e5c230e8a7dee73034e7ff2ceb73ff534899ccf4361ec08ef6da08c2d226f4464f412bb9c242e2f5eaffc78003cf93a91f3

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
780fa0133ad2fbe534095068113c468b

SHA1
73659f639963ed9641e0d1be6702962e9bef8dc4

SHA256
08c990d24218aefbc00eba25cc6ed13e43fda777deac4032fe01dfae55269f0d

SHA512
73e1bbd127bec5cfbbaf9b46c5825cf3e42eee3fa131f096af3f20b4e1169dfe13005ff66d64080afdab195c324ad373478752236930a3874e1e454ba8ef6700

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
1813d89aba25d2f3b067d370c6e3ad34

SHA1
3c8bb935a6826d274fc7b9a03e3b82ebc18bb23d

SHA256
7eeba0409d8245c8f5de964eaeeafc8e74f1e68682b05bcf6eae676a70c013e0

SHA512
1c6c097e6c091ca589fae6295abec187323d357fa215a87e099827cedd2f0f2ff60f1142be0d0b0e7b7d9ff95202363936f7d29b8c71419a940d68e8a1c41240

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
bed47e607eb2fa11f36e501cde2125a1

SHA1
f38c3234edb85194a9681b9375b1d4bf3d08d931

SHA256
8e6df5a79dcc429c08091f76960a9ef5d0adba5d7ab4abdc1f26b75e1c025c16

SHA512
2f089d31e2d351c97203930a0fe27aeaa418c35800ba26717c29200d9ef3e5ed7aeccd4347e4e2648e41d1af951d592e52f46090020279ebff63d325e3de0e72

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
0620dee09e99d1f249ecce1dd5934ecc

SHA1
f954090e641cf2fad001162e45929ab90a8bf911

SHA256
33a04f567cb526f29c9ab7773d74434d3d140cea3215f2a360a1dd04a7a4e8c1

SHA512
c74a344b3477fa3979bd601673dfd88e652e9f31e01d7ea57fdecbce5cf21c4077f110a0601a9e0cf52e85d2aac1564082cf4b0972a328a5d3650e53cdc68cd3

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
3205e3f7c373d205d4c577d319bd4977

SHA1
31d470b6b8bad1ea048782e2925caf95dd1e9080

SHA256
2125e9bf87d44e37ebf161f0927b248f66b7e6c33f54676126d079cb80e70bee

SHA512
8137f92d594fd92e4da7227d0462d47578ff08108d2763b7f1a1c302faf154a92379d1660fadf2fd468c63ff00a99a04a6123dbf9a874c32dbd981cd9d7871f3

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
af876143adfe796c6c7fb22fd870057c

SHA1
361cced76f4325a1bc2cd0648c0b13bb29942352

SHA256
280399c078c8f94aed22825e0a924e09606121ef95cfdb68d9a78fd9d79a85e9

SHA512
e953e5f2c4c6b07bffb5dc865a2f186f4bdc01d45252ee83387faefcdc974cd8feebdef4e0e0b287fe1d81f616f1cf051c25837bf0666c0ff9505b9c76fb41c9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
7dd7a79b05035b1b10a2fe8fab66054e

SHA1
97598caf70416e7c89960560a888ed5d233825a6

SHA256
bae97025a0c48f63f1158e27b19cd19b98ee0c9c8596a12bf0368a3012efdf8b

SHA512
17b1432b1f16250166606bd05fac7acfe8a733940b335e737849af24885742aa32f545e78e37c22ddd8f1610a1c338e6453d0718781a3e5adc88e1d840a58b23

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
04d759c1172fd7057ba04a1964b595ed

SHA1
6e9497fbc1f3327f6fb05ec466d9d1e79d920849

SHA256
2af38b7226a3d57c6dd4c646d1699d34886b50388b4f8308d3f330493f71b6cf

SHA512
ffe52175e359a7a2ca82ce18cc0bdfc2c0ef8da23e6c4d50341c689e405901fad8aabebbef4743473b47c9a6ea2bec76dd4c91c910bfeb399f25b64140eb1336

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
5b769aed295d24ff1f5a78e223b045d0

SHA1
3bb4aa3e53c3ecabc122210562bc6ddd10c639d9

SHA256
83fb3e6c192ca9061a88baf9fa0623f59855fca33273979b27dd5d551fd9b8e7

SHA512
ddfab70fc1c600ab2e7891592e64186a5c751a5dd6aa51c64a2cf9c6e5a5f3cd6306c816b9cc51985972ef8148b1f09e167e80c4c57309ec76b19bd357fc3c47

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
af7688091e8e314dabca60bc74b98d8b

SHA1
d2427f40e0413e68572d55b77b6ab1af77c35168

SHA256
41d05ccd4abdce574bfe7a24997b2e0bb173281eeebced60d5f269381e3e0ea0

SHA512
1015a2869948490595c2c5084aee7e030654c3ee5c53888a826dd9556a746b3d191224a3fbe96028aacd95019141e8d8a69cad281a523a8c6677f0a13f78a692

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
2a80d452f3c81d1efac289333a3128b3

SHA1
0226ec1a577c4c73e6aceb00866e97a67bd21216

SHA256
e5919673df568e00957b264e7ab5b5ad4fc4aa25cf70908f3e779b1044e502c3

SHA512
821361e1b7be474b222de0ef1df2f8a39d449a2a9f99456be78f672cf6ef1e3a67198c02e9006f7c625e41df321c9e222de473821844daa9fe4ee1d306c32c9a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
cb7e0a9e79e24c66fab7b22feecae2cd

SHA1
95d4ce8dbcf3c8dd1de63d00772ae6ecf206ca23

SHA256
ce7fba2153d0b2b61a5d24c60b03ed398c2133f755c98c4b32998df150809408

SHA512
e43b7e9f7c31c6866d4cdd919e7f097968adf89600d8c653b29cc6117764209a98ba3f3df89edabfc868ba35da313f13faff44580a05b52a3aefc3e91f12815a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
80a6e50ad4b49f7d5bcd4f2d51dd8f9c

SHA1
d6dd75ff538400acfb36e566725849dcaddf559b

SHA256
f7239a9d93e01620de9a2f6b2b78fd9e5bba7c18432e9d82bfa8052d2e3b1d8c

SHA512
a4b75408cfdb458cdade6cc4990af26413a72b3d7f0bca5a16ca2e642b7c49c48af8fa2c58e75ddcd1c496828a9bc59197dabf45f8cffd1be1da3f75190b25cb

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
1e9186e4055ce1d6b00b01b69b40e93f

SHA1
d5578b75dcb732d055bce3a954dd39f3ba84362b

SHA256
1c748114e5cd7ac79139f3053b0cef19b9ae5f79e4a554c90a7a5bd8fa9501e0

SHA512
db2546b39e5f3723a2ce02c1febf0504bcd7d8df97be2d1a454ed45db5c5494fdcfc7f352b2cc43c5812591580b5d3b022eba1067637a524076f5b5b2e110f43

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
555e245b101943794590f9c4ef112b0b

SHA1
b4338093682b8a071770971f02baed5e6a45dff8

SHA256
65994505f2a845b37f080936cf132474dea64c2be8199cb096b7f31ad5754fcd

SHA512
308b1ee69b65c1fd3ac7879619e218004edbcea80cceed1bfaaa0e33d1956b6056751b9e184e4b9dab0208eac1945bf67cd10fca46e93e5c4f573e0bfdececc8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
1de1ecea3bbf1b1096a528e3337859db

SHA1
4049576a0f54f25153169cc696442000f431d4f7

SHA256
9bc283d1cdbf4c177bcd62bc51bd5af0f3509928f6ab4246dbc4440bd65701f4

SHA512
b75e004e314e9450903bd83b25c3c4dc3d84e68fdf3aaa3ff198a1d5e8b6c9d6808bc703904ae28f71b5edcb92dc2e2f22544c1bfc91945ca2c204fc95657f3f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
304B

MD5
a64b0a15b2dcdbf5980661720d73ec37

SHA1
f385ce3a20792e68533c8f1446fbc9559db747b0

SHA256
378173358699df5d7dbd4b163dde3d0b47b8dd501b99a6d879eb15cc3af13603

SHA512
80c5667b246ff6252cd01085c91243565468719b46b5676313c324220c9bef79fbfcab72c404a53b3c75d062390ca9de09ce1f2e6d1d63ac6b85c0dca8f6393e

Download Submit
C:\Users\Admin\AppData\Local\Temp\CabAAE1.tmp

Filesize
70KB

MD5
49aebf8cbd62d92ac215b2923fb1b9f5

SHA1
1723be06719828dda65ad804298d0431f6aff976

SHA256
b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

SHA512
bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

Download Submit
C:\Users\Admin\AppData\Local\Temp\TarAB04.tmp

Filesize
181KB

MD5
4ea6026cf93ec6338144661bf1202cd1

SHA1
a1dec9044f750ad887935a01430bf49322fbdcb7

SHA256
8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

SHA512
6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

Download Submit