1030d441ec656eafe811166866d3940341899ff313c98baaad46ab65ffb062b6

Analysis

max time kernel
143s
max time network
148s
platform
windows7_x64
resource
win7-20240704-en
resource tags

arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
submitted
12/07/2024, 01:08

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

3b6f8bb25939ac119a212e9f1525446c_JaffaCakes118.html
Size

103KB
MD5

3b6f8bb25939ac119a212e9f1525446c
SHA1

4627e9957204fbfd0c442cfa676157f37dc44515
SHA256

1030d441ec656eafe811166866d3940341899ff313c98baaad46ab65ffb062b6
SHA512

34ddb6a1d805f8d64a4c53b864090340010bf8853513d2ed6c8fd401e98381ca97e70a083651aa93c4e2e86016ee49a89a6a4defbc32485e9667af29147f31e3
SSDEEP

1536:pbMjw2fMk1D3O9Pj2fcLPTHAjlSLXt1utcZUHbXxp:sIikLOtB

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{4C4E7791-3FEB-11EF-B39C-C278C12D1CB0} = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "426908398"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000bb7c5835718279428690b074aa627b7000000000020000000000106600000001000020000000a60e20872dff93629641c6c74c0394aa3156ee9223c7be607ea343d77ccc0a2f000000000e8000000002000020000000341f10412f535ce93567519b43a8242d5dd10e52d1eb008baee3981479e7f29920000000eac66421c3c5b2707146a280d336f3f1cfb58f9298bf89d9c40bcbc67a267dde400000009d690f55137a8d637336df6dcdb9bc4e50267af0ce23b92b2ad86bff6746a90d4376986c4ca4267a607fa11bc2f8dbe38e601beb7d6c666402ae3f21f8b1a543	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 80a9613af8d3da01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2212144002-1172735686-1556890956-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2296	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2296	iexplore.exe
2296	iexplore.exe
2312	IEXPLORE.EXE
2312	IEXPLORE.EXE
2312	IEXPLORE.EXE
2312	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2296 wrote to memory of 2312	2296	iexplore.exe	29
PID 2296 wrote to memory of 2312	2296	iexplore.exe	29
PID 2296 wrote to memory of 2312	2296	iexplore.exe	29
PID 2296 wrote to memory of 2312	2296	iexplore.exe	29

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3b6f8bb25939ac119a212e9f1525446c_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2296
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2296 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2312

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
6d449dfd7a2395ca61cd7619ec3996ac

SHA1
236fbfd64dc498713c201dd5d18fa9c5e08261e5

SHA256
b9d317866135a5b61aa71ca90ad8da570c7245b150ff18278e27f13406383b7e

SHA512
09f35a3d82790576e3c8bb6f79794027a52ec04e2c64acf8930ef1acbee3f13ff87c1d65f6a3858ff4825fade99aa30892e3af2cfe18653fcd7885a11543c676

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
1633412c87f735689b2eb361fa95f380

SHA1
215fc839dbdae23ee2edc210f33733e8a285e081

SHA256
2464337b0d8e628d1bcb3af263702c1d64b196fa1f722b2645ca74431a420887

SHA512
274cbaa53b878b5dd9fd8e671ff829d2d951473efd1a0cbaf0b10db9d0380317dd9997638fe5b2be318cdf7e39899eeb3aecb526f10dba12fc2daeef71aedb55

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
1da3988475cfa4030f24fd8f1f2ded6e

SHA1
b70f0fe626850e792e29fcaf03a4768fb581cc57

SHA256
908d73c2183f73cbc7a4336774f59ec9154fc981a0542d03341c7b78fe954714

SHA512
cfc11f4d213e85de323cf0061cadeb2f5e7bcc3f07698b9a8eb93b5ffeb0579378edd7af0224f9a9b83d90e5b2240bb864e1682d879ba238a7160d245ca86bbb

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
ddb3dc1ad178cf867015e2fda99abbb9

SHA1
f354dfacdd47eb6d5f15c20e9cb89927a04b4b5b

SHA256
036d51b356165706a9c5deb9a95062e7a403a90cd0a8c82fa06677dfb004e29a

SHA512
e5159f9bf35200826f93327da198e104fe85920f96ef6cf0951aa9e27193db308eab978b9e1c0b880f91dae01ffd3fac7c622111fd619e56a6dd7e630b90885e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
3aad1604261c023be6b5f8367fba3068

SHA1
8326828efe8da6ef604f59469641ec591361c70f

SHA256
ee25a9c6e02f197490beb22fe2e8610a4e4bdf40bd949e0b54454903b97d773a

SHA512
c26b1ff974f23e6af6b5fbfa997f90d3260b582414e781c9543dbd2e13840067564997dae212134412bef921840dfc4f7cbe18d1081e28cf1b8d21b345f95b31

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
20424fd354d7538ecf710eac4e8fc260

SHA1
befc5f6fa3ca6e98cd03938a76e420f8ca94a130

SHA256
bd465860e4bea2861f041e9b2776192fe04853c612ce98ed1e4f511bbeb43bc0

SHA512
242fef7ef4585305572542818ed8aeab6ee81a0ee91dd63a7fc1badb90966ebf13b592fedead779cc76f1623ea15032d6ef1174267c43e6e713ef3c6b37aa68d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
914839b3352594aa4c1910c1aab9eb1f

SHA1
f4a692343e49da55b3661af9f659ce2f8b980fd7

SHA256
014e79502eb0bbf8bec210f5e69eb39189c1e9ba5d4b55b0609b40bbd2d2c0ed

SHA512
ced5415223833f9eb6c42cc0af62b179d14c9864706555acfde78eace0c9bb440088631bef6ccfb20844b9c4c4ba3e226c1d2c23e2403faddb6005b873e8a1c6

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
23d9f04590662c3f06517ddbf3739f04

SHA1
20b7b4d907c18bcd5a9be86ae71dbdee96dd7ef1

SHA256
39b16eaf9a6e34028776ff6bbd929e2777dc7971d503d23bf8c928eb168d4746

SHA512
f88cc61bc6cc2a061e4a90e31a33889dd94f55598b0c3f95eff45a0dd6c7773baef1df2fa346e7337415379b8e7e7947baf8988c60e88c0f629e642d601f81a3

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
e59f9889ae66cece3c8c653432767f76

SHA1
af9339f0f7da28f6340e811102942c29b029ee20

SHA256
f7a1020f2e8e0f19d80f25aeeef413231be95ab00f033c501d6f15fbf770f351

SHA512
3a2c8b942c51e080ec4ddc7635a6d7a379f8c4e55c73a8de4f5501cf9ecb7cf785ad5a0e09e50d01075d2b853a4d005f80f5aa32683716df285dd4f7237b5831

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
d5579abae2a0c32891ecef83bf7a2738

SHA1
3c5b260fb836ec795589c1fb67756d743b9962eb

SHA256
69c1862c57f42f0634e523867e3c8c8a16593008f8ee18fdbc56c1e0fe517331

SHA512
9902e773ff82f73c58675521bafc3105eb4d9a366b91b21e1877c4ffb60c5068ccd019265b0e8b9b717481a681bbf0082e68be271acdde832da12f9dcce45008

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
e7937d3d91f3301c44890adc750157d6

SHA1
dfea6c1e34b4edc4dc97cb522b750d606590a2b9

SHA256
9d3d4b48c8c398bea2e2f513913a85723cdecd1b7b206222b6525285cf756d81

SHA512
b5e6b9c4f698903e408126b68d7bc3c0bea2b82d358b2aaea9f20e96455be78dea77c215e551278e30f28d4e97eb11155ecb0bdeba70e961f329ff8cebce4113

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
9f7b0f6973b35a13fbe389104289963f

SHA1
b736dfc94692e95ad009bc52d7e1093976d6399e

SHA256
8d103cbd4de7997f9d42a514ca79c16d8ff806cf6765ffdd03d077480bf13265

SHA512
d9eb26d37bafea84cda1ff9a1926a6c7f61540ee4bf6c9a11bc18748459d8b3a157a6fef73666f6d80bcd0d6902ee3162b7c7bac6eabde8280d28e87fee2ad4b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
c139aae58ff218d5e69b5fefbfe0a9fb

SHA1
fe5e242e4b489f33374ac6a3e17180ebc645fd03

SHA256
45e2fa7bac19208e4d0ae71964d27856a534d8011082498568cfea38964613d8

SHA512
62180908c4c81b653819e12072113a58d0e80e05cdbc7c57cb83854eae49729a7ededdd8878feb565b2504f2d8a25b9210dc1288f269dfbf8011ddb35fe08611

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
dbf6417b85d15b552e05e96168c81a60

SHA1
25a9bcdd4e3e4ad6aa86dc85e2206a5c76436bdd

SHA256
c3535eb6b91cf2beee90c341f5085cbe5200292a114f3b7736aca85804f28a19

SHA512
e43cb5e642374d3fd45617602b7232ea57da196be5c48b57f0c33afe6fd601d0f5faf629df9c9070dada87a5f7b7a2a98a3a8893c16d1d861be44df460ab05da

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
6b958dcc78853ec8dd0a6aec8cf1e40b

SHA1
8e30a06ae6324ee880979aeb63a66d985e0adf5c

SHA256
3f4994b9df2130e25c614f7fbf7314a1acc9da3744618ff11899fb6acf5a1026

SHA512
423f955597c782833f1e7e6346664d1a4d63a0ef541584ad5ea08f6c2585b0b74603962930f53aeae696c4a1bb50324765896dd879f17b7eca5431adb3533336

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
8c61517b500bc23cb9085e104c5c3fc7

SHA1
195f0ffa3c371b48ff2b12c74286697d0d43e6f4

SHA256
aade9c2f84f5b2fa4d26405c80b6e3845da4bbdc4c4d4cb78b3d5c74ad372213

SHA512
92c66bf075a85ec64878144044573f4a770ee35eae9d29285b585e13e61b55de29397d62c176b277e21641f7482853a3827feee35d5670a21bf92f63e9714f9b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
07eb2cfa1bafb7d18c86e8e26f41895f

SHA1
49e3670cf938e90b3327cca1ef7061448cffb426

SHA256
f98aec1919e5418f3d43551a6db7354d9de6ab7f322f8e5faf4f0e9631fe8bb0

SHA512
7570224618fe86c246897db2256ad85fba3d69352324209426c916f8deb33482cb0be0bbafd46f7c86865ba1d62ea346dece7d28202abc3ca06cefcca2d1e6cf

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
4ecb894830baa2011591f97ac474f749

SHA1
82302c2d08fb9e18dc598a8165bd24111509dc1a

SHA256
72f6179042dc7f5080f7e924cb70e0f2c1b9f28f3fdeefb4947b1da101e7349f

SHA512
209fa67ded5e367c7444086fa888d04ada03d6570fe7ed9178f6a4904adc29ab81acd222ce5612baf1f6d4eb650d3516c2b203c37026fa0957d67825a7078fab

Download Submit
C:\Users\Admin\AppData\Local\Temp\CabFA58.tmp

Filesize
70KB

MD5
49aebf8cbd62d92ac215b2923fb1b9f5

SHA1
1723be06719828dda65ad804298d0431f6aff976

SHA256
b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

SHA512
bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

Download Submit
C:\Users\Admin\AppData\Local\Temp\TarFC1F.tmp

Filesize
181KB

MD5
4ea6026cf93ec6338144661bf1202cd1

SHA1
a1dec9044f750ad887935a01430bf49322fbdcb7

SHA256
8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

SHA512
6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

Download Submit