d212a8ed4fed84c5455c71840596cc796540c779d1f809202a0bd61213765434

Analysis

max time kernel
143s
max time network
152s
platform
windows7_x64
resource
win7-20240704-en
resource tags

arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
submitted
09-07-2024 04:11

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

2ef390b426a3ebf5673257b37d95f1d1_JaffaCakes118.html
Size

57KB
MD5

2ef390b426a3ebf5673257b37d95f1d1
SHA1

f201fccbc2ee830759f856b93fe54e9274df91e8
SHA256

d212a8ed4fed84c5455c71840596cc796540c779d1f809202a0bd61213765434
SHA512

99b203c7741c5a13b16464b785aa40d1fe3606cc66822d55d41fb432f9236c8cb8d1113e57ca47a5acd857629a44ce6a695b560618a1b1cdc1539c8c667632ec
SSDEEP

1536:gQZBCCOdM0IxCKPa7fuf+fyfYfEfifsf7fOfgf/fhfufifhfBfCf5fsf5f/fDfuS:gk2a0Ix2Gm6QcKET2YH5W6JZKRUxnbGS

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = a02d6c00e0d1da01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb0100000043174f1aa2314a47aa677ebd5ad1f6c70000000002000000000010660000000100002000000067db184a6b6d5fc6cefc9ac16fbc45b05827f2049e1d48a17ae7418639a13abb000000000e800000000200002000000054e74c94b76bb2c0c81964fb2b95fdbaace03098a119be2b5935743c448a61ac20000000eabb508d9baade9b9a0877a098ca1b8de0f4c9dabf05d701de1fb6ce47cccaf440000000bb2e0373ddfa5645662f25f3b75b81d884473ec83583d75b72aae71bef8cb114aaff695463b084a7e30870830bc0a58ba52c714b7f619821b29375aae6007509	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{29693FE1-3DD3-11EF-85CF-667598992E52} = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "426678129"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2992	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2992	iexplore.exe
2992	iexplore.exe
2864	IEXPLORE.EXE
2864	IEXPLORE.EXE
2864	IEXPLORE.EXE
2864	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2992 wrote to memory of 2864	2992	iexplore.exe	31
PID 2992 wrote to memory of 2864	2992	iexplore.exe	31
PID 2992 wrote to memory of 2864	2992	iexplore.exe	31
PID 2992 wrote to memory of 2864	2992	iexplore.exe	31

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2ef390b426a3ebf5673257b37d95f1d1_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2992
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2992 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2864

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
fef789586476a3ee0247cabd40a203a4

SHA1
c113f79d12d27b6cd968b228e883d507921bbb6b

SHA256
2007a4c2841bea66cdcb673a1b8956682693f035c05c4aecb842963969b3ee2f

SHA512
3fb5ab8f242c08999e87bb3f7fbdac08699d1676c797298e03e92fbde308c7daf8c7c3abf47cc82953882bb61a90d5e939ce587c6cc5a4a6da2adad8b2ce421f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
d8e786a563d50a304298647f0e6b61dc

SHA1
218f546be49437d6b57d32fa04e939d6cdb92005

SHA256
b11dfbb03bac80396a26bcf2bb964335f77c3c9712ab69d1bd7848ad41e3ad2a

SHA512
2b6e909991e793034329a063b14e9678027e00c06c4646d276c7e12b62293747fe43d98282372b88f45d5607fa447b1295385ea46444cf59cfbb4e3b939b1a4c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
75502aa374780ec4b87c29eb66eb0cce

SHA1
f0b10ff0223d263e686b9aeb37ec218f53f7360d

SHA256
de19235458ed3445051f95fc65ca3e4f65a86be6a0374b610a37c7d154423650

SHA512
dde1996c7bc9d50b2f4a3cf7a563fe621ad7dc1568defc370a08a85bff1d18df3b34b052165155728200db4c56a50ddc27d2905fd6ca0651d191472219c3f037

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
4d2691d74177db2ab82285aece14bf86

SHA1
717997514e6ede737054f0114bc5c1e58383a66f

SHA256
0b2e9b953a084eab2fbb0f25345b6801116fdb072f6e9f622df2ac161cee46d4

SHA512
c4738e52c5362a6b15b8f56a071c69f3ff95129f0cb4293c9821bead5b4c078a4115584ba2840eabbaf3374a5aba1fb80c181bb97f41a776a744f2cd01d92af9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
b54ac2aaf4e09090dbce514b6f5acfe0

SHA1
2a9d4b699e5127f7f9ccc3e804115b71d014c3ea

SHA256
3f87afb4a6da1903d185c3f1a832633a39f308c51fde710924adeb4e83a4ca35

SHA512
b66790f520a6f713158c815dac5e865d9a0c4d135744ce0d965ea67b2876328b37af16176a9c5f93ce6ac792eade1358fd5df3a95ad12fee00cf4674b598d104

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
fa997b42c4425bf8d83609a3e067d057

SHA1
23a24e34e3cc294faad2510ae2d7b9e4c63943ed

SHA256
d614c8a1178155acfbc8830ea1c886f4e6b2b1c4a0c3b83e8b1548a5b0d6ac1c

SHA512
96018ac3ef3e8aec93805fab7e8c2102ccfee6ce5318043b25b5d18950cfdf2fb0a05d0936df177137461e712838d31da9a15fbf9451006ac24f4de9a0f61ac9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
828cc7c3e906946606ca1effda89b5db

SHA1
6739acfc44b18feb4f046c77a04d5434a41fc417

SHA256
b083bc80a7c3333c1222881587c410d0c65b747a2d471dff0d64aba21f1d2e6b

SHA512
50ec1491f974ebdeb2b67f7fa6f5fefc636299c436d255bae3e4e5e32c96138f4757bf154b28a1ae3a59186a269407d90fccb3ef03f5fefc099067a4dd945ca1

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
cdf7e754b42f615930e1dd66ded747a4

SHA1
e9ea336453909403c727bf2441a5e5bc8fb678e6

SHA256
59e2847f82086e85a686e9d075d2f3cd0fac4d49aebde8de907276a8421aaab0

SHA512
336be24478f0a181cdf60e91e5cf30c862f6060ce0583d2a77bf2f1fa35a79b53e129b316789d7e0c5856d42e0d8b06cf4f065870da8009d4963736e7cbefd34

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
94780dc370fc57a6882314119d86b23f

SHA1
815d3bbb178cf06739be80d5a0d1190b5cdbc357

SHA256
99b53c04295f4ec8587048e808bebc9fc210953e1fa9096b6f74a89147557e30

SHA512
5551e8f22371c32ac6fd6c75852b4ef33ed8c169b2173117959a2f919174f71bff2c807f9d262c89ef7d247417dd9236df5bfb64a7d80a47647475c3e13914ed

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
33e43b6cd2da6fbe258bea7087968483

SHA1
8404711f852e0e702ee877a62c41c014a504a157

SHA256
d10f546607dd3a3b58686be94b677169b40fac866fff4038d06ffeb7ca602ea1

SHA512
0f71e253c0c92f269f919d0bdc74bc62c4e792a179ef6768807bfc87cc539e2cb2a8176d5bf48fdd06835b75b0fc7ad8803fccc5d5b291a36241ea7176381a50

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
11dd70914276ae896bd8f0d09ba037bc

SHA1
09abaa15c97558981211b275dd6c7da64b7bf997

SHA256
100d386f1564bad6df9adb056267cdf90cf46b80b8c561650459207d3bc3ac15

SHA512
c2d53aa9e5c605b2312c01926cb96fbdbf98b683f1f699acb152eb298b0a293838343989dcfa3213674c65306c175ab5e43a872ba7a4d70966e0f587a1772ecb

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
747f92f21e2ba8d583365a40b16dcae5

SHA1
1adaa869636fc9c12d8ad5465e9dcae89001e10f

SHA256
42fbf71b2394dbb520319b2ccf262304a864c5698bb01b0e58e5544585818f28

SHA512
9ad0641bb6444c41415b29dcd0df40c3f9302eaa7ebb5998d7e3cfe9b83535afd7e4e70cb9e02ea9eb3cb913a97b55062aee2afe0229d40a576986aeae479bbe

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
f2ddc57ee979cfe681225b298279701a

SHA1
4ce5091d6b26f14cfe457135eb7f701420f669c5

SHA256
a638478b627f37daa7ccb2c642103a3538746a1497fe5f5d36d8f885a60cd550

SHA512
04a1ab5b5a359da473c2bb138e1161ca0712c88567dff1191ef7936ccfc1a458a1e35faff15f21ce7308af701861f2854c55448c16d84a9f36734876ccc027f3

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
150aca7686352d4ca7b8f095325487cc

SHA1
75f4cfadec1d48d589d8f2c9618acafcfb765eb3

SHA256
214c94e9e74d147b3ffc4f90403fc5b1a22ce31178ec6d4874c5a3d738241843

SHA512
4982f38b98c8f57dd3757f79e43ba4133981be38aa649aeb60cd58fbe42287aa01c407577080556f9c8fb405b2751b84aa0a7dd00b61e6ff8a9caa6a3c115ecc

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
b95d45b1e259a0c2d60b92d45d5d7b44

SHA1
746cca1516f59c2f4e4a0b0db0a43de4603794c7

SHA256
f5b400a2f8609486a09fc7971985e640a14b44a26bc69cdde8215d5802036d7f

SHA512
8cecbf09c3fc473ea8e1f5105310f4bdeb1b92822f8d2ba66dd17ad4973e736acce326dfa0cd546915d1faa901486d34edc7228470b49689d66637314f79ca73

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
586ae0c0c2e9a46327d178c718b560a2

SHA1
74f53dd94de6e9e162a040ee8acf23f5b4d9578b

SHA256
193a4ac2e816337b5657a3569b6507bbe5c2def4ec5e3ea9116858bd45ffdefe

SHA512
fa5e0bd701339945172aeb3496d7c5b52d53988c7055fa122a107977ae08f75516be7c3b43c7da009c949fe120af70781311fb32f3fb41d0146c078c34c0c6d6

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
8c6e8b4cb01b16cb5c1fe53f8e93f8dc

SHA1
84e7ab19e0320c345efaead6227f48432db4efc6

SHA256
1498a91ced0cbefa41485a796e188b1f6b8ccf3ecb6c99bd17d9152f8762e6df

SHA512
d37b950a40a5fe52965b67fdb5cb780e62658a281bdcaff44e991578350a278fc9b6da63f2a1996828f540df5a2f923531e66200c50e6025b8a97c165952f119

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
23e38d01188b0e12f42e93869ebd66cd

SHA1
9b69b4ba54552097ba4100d4865880b543120349

SHA256
6821e9ffc78234f9a2f1376c965514c6044a69258894ffa520d64f0608eae238

SHA512
7bff7e28786d01766e8dfdd14d46574bd4861ec584109e3633360e140531852f65fbeeae34b120929c111520b42ecd4c51ef103f1bc1c07f7ca31ccf0faf1e61

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab3E9.tmp

Filesize
70KB

MD5
49aebf8cbd62d92ac215b2923fb1b9f5

SHA1
1723be06719828dda65ad804298d0431f6aff976

SHA256
b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

SHA512
bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar3FA.tmp

Filesize
181KB

MD5
4ea6026cf93ec6338144661bf1202cd1

SHA1
a1dec9044f750ad887935a01430bf49322fbdcb7

SHA256
8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

SHA512
6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

Download Submit