596ab2f3869eb972890207da4d6befd1e9a492538afa700f3ff22092f6d03389

Analysis

max time kernel
67s
max time network
128s
platform
windows7_x64
resource
win7-20240705-en
resource tags

arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
submitted
19/07/2024, 08:03

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

5b17195c064ff317018f0d1bb9e81c99_JaffaCakes118.html
Size

6KB
MD5

5b17195c064ff317018f0d1bb9e81c99
SHA1

5c8ead64c8159b8824179486388403f90898ec45
SHA256

596ab2f3869eb972890207da4d6befd1e9a492538afa700f3ff22092f6d03389
SHA512

005aa6277dbe47c718cafd352b05c49b238cc04ae592bc3676f05a77a75bc7f2bffa1a3dd6fc6860a4b190371b3158946dda3aeb8b768f4fc097d69ebceef25f
SSDEEP

96:uzVs+ux7VrxLLY1k9o84d12ef7CSTU6ZcEZ7ru7f:csz7JxAYS/Jb76f

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 30656b2db2d9da01	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "427538059"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000003125cc29be9a0e41b44a3d73dc8faf7100000000020000000000106600000001000020000000bb00f61dfb262dc9471849aa37f38436aef27a8d1b8bc4e669c697d34ad17b6c000000000e800000000200002000000007dd4b9df2dc019170ed2229215df4459aab4f0eb02cf8b9f9d46f072f7f4a8e20000000edd5312d0849b7730184990a9ed56ac06af261aebb93649a2b8a5c05a5422423400000002778956ed7cb34be37fb420230d7e8ac492ad26aaab829baee3cf18ac75028e1f2a3eac913da310a5cc511ec17b8ad52a173788ca0a08dae869702ac1b584641	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{579B2B11-45A5-11EF-BB93-DE81EF03C4D2} = "0"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2172136094-3310281978-782691160-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
1736	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
1736	iexplore.exe
1736	iexplore.exe
1572	IEXPLORE.EXE
1572	IEXPLORE.EXE
1572	IEXPLORE.EXE
1572	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 1736 wrote to memory of 1572	1736	iexplore.exe	29
PID 1736 wrote to memory of 1572	1736	iexplore.exe	29
PID 1736 wrote to memory of 1572	1736	iexplore.exe	29
PID 1736 wrote to memory of 1572	1736	iexplore.exe	29

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\5b17195c064ff317018f0d1bb9e81c99_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:1736
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1736 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:1572

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
61009dc6ff39573e6482b568af75fc08

SHA1
3b8a33f83edf037bbf6a165e3951bd84f6291a29

SHA256
0e328d095efced21fa4a86c58944bfb8fc6cd1a620097d884083878f742ebfa1

SHA512
9ab0dcdd0a71dc832e617b5f287a42689af406f6967ecd92b2b086d7df1119e4367dcae8b9688fb73721da4bfa66d69efd377ffba7316b0a64c92b49224f1c19

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
11c5942ddf752c9ff574a80bfda57dd0

SHA1
6463e6f4b2f8c9ee7fa11a1f620ae7f7a915ec30

SHA256
680f8377fe7dc3a9f61c9057a1402b4f94a43ea5c85466fd44f2b08f896e6f32

SHA512
113fcbba930a86a614a606d7f8c76f18f921766b39e2f41412cbc61d69a097bb8d6c85af0b5b2cf6d97f842d9d4359f26eab51011e8ecc33dd47bb3e69fefc4e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
dd6497695500a98897cd615d64dd76fc

SHA1
533ac82c88861eb151dfaf2c8a01e953e6117235

SHA256
1c0b15d9499c72b648b72f071374275de0a405e022cecbf1b1752299749cdef6

SHA512
2d895324eee6c49cc054a8cd6c617d718878f1fb69e6c3cdc34d62c57188523031922b43a40f43acb09342dc9f6788811429fc246f22d8a90f6e7bcc0f275a2f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
29f4fd1b1920ddf7f5e57cd36648008c

SHA1
12416717d59160d9d9693686226b14df5cdffbf4

SHA256
9d49a774ddd5da08a1101ad13d99806686a529f73aebb2c48cfb5dd20edd6a70

SHA512
68bccd51d8b14e4388ac2b3fc2f1101c0b30f2e2132fc559949aae3287fe3d2b22a54167fdf96668febf7d86b721232c6b93939ead4964bc1acccc7af2b83fe4

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
4dfc91ea3b2b5d41fef443bb24592982

SHA1
da0507fe8c59bf9df22467143bc556a17a553460

SHA256
1a23aae1790be91baaba8f444e64168041e264348d2a8279acd54f6b96ff2a70

SHA512
039b328c705651d574f5e8f55ca44c356987521831ba0b7bef1a2d8bea7dfefbd05e70bfd18b9b9cd2ba868b874295a2bb05e310ddb53ebdc766f3e33d7b44ce

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
1c7ea21162af524ef1756a669d97e3a5

SHA1
4dfc10cac86a17678af2f19661021eefe138b994

SHA256
a0fc47bafe6c891a8764c77a8cced1f5969a117fbcaf726b860b8878d9afb9ee

SHA512
195f77e8a4e69ecb0384a20cb4448a9156095b1d6dbfcb1aac57e8a970871214386ef14cb041c1404b72a3caf677cddc43fa27887d7fb2eccad584501413395f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
cc142211d87104aeb03b58e07ee1f93e

SHA1
83a9bc462a6d4779b6a99324c673bcb7e3b1d65c

SHA256
af64d60bbb32cb9d77d7c9f5e16b373c39d9e24549d76778b59011375682f905

SHA512
ff112de835ed69f78966cbeffeab783a9d96e0a9b8d6e40027abeedec785cefde2344946a58829d5811fff3a74e6f086f315888e5346322328bf268b33bf51c1

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
1c22414f76eb58261d6af005a8790bec

SHA1
7883043047bcd451893b7fa7c6f4dbe55448a66a

SHA256
0840bf788f5a747a3d4229fd680ac4df9d69193b1cd49303762ee0395c04d445

SHA512
269a4732ea7c55730cbf89e6b6bfae83d88b1a8e9010e917daeffe9db0f7a158b1078db958c1dbfa9be3076f78a06cdb180f62a09c9a7768517e5617ee7f6177

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
9da4ea54d5c82d3fdc901f8996b63565

SHA1
555f2ae013c8bb3eadb25d7f74b594f1fa629472

SHA256
d616f0ab294afab0b04423981ca57896eaa40ad3001ad73f616b2c9bcbeeae75

SHA512
337438709426aaa0c3f49192ae5ab63e246470c136f2b71956640fb6be91cf17a2248f32ae60e47b7cce4637e70fd52dd5b75239d2fc1aeab01bbb8b750b49b8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
b4df58c757aed6c1b732647d79eb45e0

SHA1
645045b47873d179644eb24a12a773e02aae19b2

SHA256
a1fbd3651f792a6461234b784566d1c98a55ed92482fd33c07f19a98854e8198

SHA512
a2d3253497d1e1b241308d05f78835c1d0dabce1c27e71437fa2dad5b4aafc46215159e3c566376eb7f8377687166e57fde837b016eaf9b8f464f405a01538cc

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
a17630dde7b09e325a32e5f672864db0

SHA1
c5db386434e9ae48821e2f01126aed2dc425c116

SHA256
ce928eb37d79efe9b3ad5402f377f867ec42004d0383868585d75562b4d56244

SHA512
4dad82189a4f1a8316408924c0db7afc80dda8f395e109e7987b6dc5c7e2955b9bf722bfad088e547cf0a0c62915435a794f5c1120a693f8ec0a61b0f7426d3f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
a7450330598cb5fdd1b314ea0d927634

SHA1
c2d7a81d0007230c22085f4eb401f6756e658768

SHA256
51a16248383a45e9f8250d90f0347da20056a028a22fd1884680ddc889b043c9

SHA512
d2f1c0462001802c9f2fa94c7ce9c2f18254c11ee8d3e98e55455f4ac0067e614525e95fb2f879a75b7fdf5460998dfb8db38c94ca0063e957f8e7d2c82c4cea

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
98dea0bbbff8994364d083d069da306d

SHA1
dc592e525c419398842ac6e777ebc6c551c4e7f1

SHA256
30deb1b49c45325427d295840802efdb55e8d99435d8891c6b2559aa1f74909a

SHA512
75bb19aea8b7e5a6e1ebbb18c229581cf264d65cfda0a1a1f74107b76a935d0a6547811f5fdcce207fed3f41bdc49bd260c8e6f36e39aa7bce0bdac1aba44aef

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
70cc9d13a1c3f6ffde37f820e525d081

SHA1
5647b3f88e69750fdb0cc0fa9e85338e39d58dd3

SHA256
c8fb5ee7d4199e518e1a465fee50bfd2d4245a488252dc65d88721de2653f37b

SHA512
655582e944c776740738c36dbc905f4005386c65ac1b3d9aef704bd06e39698f8d1947f18ff35824b526b014e68b6cae81001219c45348d45f0907eb0703955e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
f8f0b8ca64b4d0c628ebef35ed797dc6

SHA1
8f75b443b0d122fec0876549893e2f028ea8441e

SHA256
a8ddfad8322e1d24ad48d1a234913e34627896b6e51e37a82873aa27f5a5a4ff

SHA512
a85a86db1e2bf0e42774a7d98ca7da8d23661fe74bf1dbd1b2a4d094868bfdabc725cdcb12437b25e258370ce7f401552dc5e7fc5f6c7973cd9ca2446fe4acd6

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
ecbbae823eb3367d7ebe11c84f52d4e7

SHA1
f5040e1e81ee07957ef104e8891d96011d7a303c

SHA256
a7066cfe9bb5589370b7f3f7b5d1cc1cb45c876643a17b84c66967f1cba5ae6b

SHA512
9186faddd298ed5013d9c71482abd398974f04f1057b80686dbc5e941276b66ff8f0719e0d466b92907b65a7fcb8e0fe7bbddf3ff59b89f075ddc855261eb98e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
369ade928dc1fd3671519aedfa6d7d55

SHA1
ca34c0c528c86dd2cbb95ff4eb8e151a1e9476e8

SHA256
e9f92346ec34627dce3fda917c8359b6b65ec12c9807b1348c4dce5d07c95782

SHA512
9d382c79079d60a6301e47855982001402b181d6691161abb293b7d7bf6ce227f169872f982bc53e116fec2e73accd5d720d62309b4c432593ade3d692dd38c8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
c1be988698a63317ace465c709f452b0

SHA1
d25f842f97803efd01d536fa74c865a7038c95ab

SHA256
4eeff8644c7f2b8e116498446b930cb08d934eb2f062b088359019fbb3d5493e

SHA512
83680d9cdbc5913cfc35f3120f24a8575adf15fef35f7f02460d34f136ebeb8074e68754136000c3d65f200d122ce4f68e6038c22cd61d830ab3f72798277d74

Download Submit
C:\Users\Admin\AppData\Local\Temp\CabBC3F.tmp

Filesize
70KB

MD5
49aebf8cbd62d92ac215b2923fb1b9f5

SHA1
1723be06719828dda65ad804298d0431f6aff976

SHA256
b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

SHA512
bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

Download Submit
C:\Users\Admin\AppData\Local\Temp\TarBCFF.tmp

Filesize
181KB

MD5
4ea6026cf93ec6338144661bf1202cd1

SHA1
a1dec9044f750ad887935a01430bf49322fbdcb7

SHA256
8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

SHA512
6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

Download Submit