22ccc904418f928ee698e1ed9fabcdd58560c78f445b01c311f91fa38f0f7e0d

Analysis

max time kernel
117s
max time network
130s
platform
windows7_x64
resource
win7-20240708-en
resource tags

arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
submitted
22/07/2024, 13:02

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

63473900c230cf2cf07bf08c1bf57b72_JaffaCakes118.html
Size

6KB
MD5

63473900c230cf2cf07bf08c1bf57b72
SHA1

64bcc6a85801c1b05b422b3a2460af49fd94ce86
SHA256

22ccc904418f928ee698e1ed9fabcdd58560c78f445b01c311f91fa38f0f7e0d
SHA512

ded99ebaf4594f0e921c987509b80ca6a9970b20d2fc902a6cc43d0c5764a41161d09ff54d73605164821dfc941b40391ab5e0f9ab2e214b5d619441ded29568
SSDEEP

96:uzVs+ux73VJLLY1k9o84d12ef7CSTUBZcEZ7ru7f:csz73VJAYS/8b76f

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = f0f0e37737dcda01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{A27A6FB1-482A-11EF-B170-4E66A3E0FBF8} = "0"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "427815210"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000003e1c4d4a7885794291b78de8e6dfadfd00000000020000000000106600000001000020000000d52d76ddebbbebdfb04ab0cf027fc59763874795e9155e28a7c18d859e3aab0b000000000e80000000020000200000002f783a440c4ad9c73f9ae388ebbc0c73f64315b1e3b12de63c34d38e1a65902e20000000fe1a88a629b91c941a2c7e6dc5f8adefbfe392e336954b56c4c1b1b1cfe1ab87400000000b88b38da0dac725ecf6f6c7516d973b458da33ffbf0a1b03c10b93d27854ac80da646634ae92bc9bc4dfdb645a2471323733782d6ebde7ac3aff9223a7cebb3	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-940600906-3464502421-4240639183-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2604	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2604	iexplore.exe
2604	iexplore.exe
2804	IEXPLORE.EXE
2804	IEXPLORE.EXE
2804	IEXPLORE.EXE
2804	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2604 wrote to memory of 2804	2604	iexplore.exe	30
PID 2604 wrote to memory of 2804	2604	iexplore.exe	30
PID 2604 wrote to memory of 2804	2604	iexplore.exe	30
PID 2604 wrote to memory of 2804	2604	iexplore.exe	30

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\63473900c230cf2cf07bf08c1bf57b72_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2604
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2604 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2804

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
b162f1bdd54eaf12fa1e52605d023464

SHA1
06846dfe3bacc27a74f7537b9d623501b20d68b0

SHA256
139bd54400c63f7e9ca81ea6885bc5a6f34e2752d65234e7154e47e558b5e6a0

SHA512
d4fcf80d209e256c67463451bafc57de340438d0591445e287f1cc470c2f96c8ae43beb64aaf15ff5c27bc8f5e67974064d4fb55561b3671d7fb24ae7e88f2b3

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
5a7004f2bc2aaea46a5347393dcb3152

SHA1
b16633efd51d5495f7af206453820e33418e1d6d

SHA256
41af557d062f0ff25f5198b37e3bb95f99157beda8b5c01fd1f408bb6bfac610

SHA512
1f28f6de930fe862cad56bc23151e95be17857f50d5ebaafedf972a1a7fe0c3ea39d7251a26b67b9f99ab7fe947ee5ecdee3fa743f022dabdf55539aaaf27545

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
d2770dbd2ecaed2ef2c0b1dc75646ec0

SHA1
c464a578edf5de9c6216ae7fdfc20097c2141f18

SHA256
52549c8f5b7ba6cdff86c97b1148f9a659099c58e287a3896c6aa51b88c8b058

SHA512
4484583de2c307b837084dfbb7a0e8174cb34d19167143ade3e19aa139d168b3ee6ec4f0e3d8ac55ced6f121d172020aa874cde9babb99fff3ff332aedb7a1aa

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
da00935f5e5ae1d00550fc8c8bdb29fe

SHA1
a72457b8f4f466829355dfb0db02dc5072f22136

SHA256
62669b5ddc7b727f5ec878fd823f347f573a761b33641f1b7959be51871478bc

SHA512
2bed1a525cb426413de1f3701320f01fe8f4523460c2388267cee5cc8c98c973d8b448f52df201031c0e1d5ef624e2782d22e5ea3d213f30787f43ad06299cb9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
7cdeb513359da33a247d81f29e5df7e0

SHA1
2feec179f0230ae31c2fed6762d34f74eebbba1f

SHA256
f686d7e2ca130d7d1c6383626a3ea3e4a26c0c2c43c426b652981bd4628f9649

SHA512
1d6a8aa8613ded5d8283c972f380d99496cf263c7ebb23f2dc85db4e7737c132b8c6b4a7ecc6ac34377bb46e880c0d2e33ae3178baf8bc5574a9023a8bba486a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
a5f5ebc1638d3cfa7daa72407493ca1f

SHA1
dc0b7267ede6382830ff4eb3ac4faee0eddcb311

SHA256
f313bc514bf5f6a11ce1cac09e025bad3c36e764c3da899f30d82e3f1c6a1a8f

SHA512
dd795aa8ed3bdc61ee436faba42639a4a794b8df130dc32367d8eb577a809d044c280d01b14cc3b31f1e3812db29db4172d61f998f816b04ee7832b5a707ca71

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
9ab22ee4396d16348095c5ec19d2ed36

SHA1
fecdfbd30cd401709bd16832158c0b3c6517996d

SHA256
b05ce0dcba64bc3fb639843bd45bd9875ed33fc4f92c718b46075078634ca850

SHA512
9ffdaafca9606eebd8e3b18c4c458bbdd5e249f2cba4085280476ffc4c3ced88818f54df7a33b6fe1cf5b4ea3eae3bc0de86197f9c95282d24451f8a441ef5b8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
2410e215bf6fe6bb16bccbd4931ee297

SHA1
2c02fc2cef1ce123c6a3a98687f74faff1e7dfbe

SHA256
2f313bbdd9ed6740ab0d2ec60b8517bea039e670f0c0f174ccbd234ba8b2584e

SHA512
02ea0ddfb4bbddd723ea598c5119912c28665cb8113ece8c616d16fa0e8da3280b1338e92efa47016a25c9b0b3621a38fb7601b814438872745b6c6e98f24eba

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
5b94f40eaf30f1c5a1dc8e15df8d054d

SHA1
192d62e65cd9dd5fda7d37164ad2470cccbcb31c

SHA256
c7efc94a328a6077a9b07bdda43bf74f7215fc662e01733ab661e53bc7a1352b

SHA512
124d24b12bca61dd23fcd778d24121222b7c88b32af73e4030abb1694fe3e87f261d0392cbcd446c2cf302933e360cf4730d2139d9dafeaa20e030d311bc08ac

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
219953340114f9043e0a2df04960e8d9

SHA1
1cbcc08b18408161216a0c44c8b04d91ec326bc0

SHA256
eb9e8decb214ea83f97e4cbdf6622d7800f3e8a80d8dbe72de47f4fc1c102e37

SHA512
d0e4bb96099c6b3c323f8d56776ccb88147decad5504d47419f46e80c4a24683dbe4812254b7ab959406fa58328d2182148d26b0d68fa2837878c5fbdc1693c1

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
6d385375aede95a2209dd0627945e522

SHA1
db515a686a46d51497e122db13a3287e10ffc928

SHA256
94d16e7e7d5443b3ce2166b6a8cdfc937cabe5bd404e04fb763986d98f295afc

SHA512
bd127c470a26e51dc1b0332f815577cbcb56e5dfca3f0cfab6cd47b876f99140c15ffca1bc0cd0f633190ddbca0a55024e8fbcaf9be060a2791a0e6e3e65b4cc

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
ae4866317af08e2b249ca93c13f04d13

SHA1
d7d492f0e9d62de569d55dbf5018049493d7c764

SHA256
105b7783001c6d5fa9be851e610493dff278a8b775fc1774e35b78d971824375

SHA512
58133029b3a2e50edb63f247ad1f92d9680f6af5c7b2f3191910a74ca032221fc6573632a3bc5c62790ba9b9cce6808033e6576f69a90cbdf851fd4598508355

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
f74f0fde7c3396a78d7c5db867860046

SHA1
034afb4302d37b3cf9904da53b921cc83ca3a79f

SHA256
4e36e5e89e398ee571b15a1c3eab8c34df5ff7d8583bede972db5c6948943bdb

SHA512
43f20220f7ac570553f456018b93b451a0e834a337656bd2a3d578a5de87d54f3a89f1e2cbb54306a669ad89af681d1db5884f296bbf00d6577d80ab640070d4

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
afda3f795d75cbab32438354d72af491

SHA1
382bc80ec0d8a363ccdc935955b72943563a6872

SHA256
1d4b620a0dfd6e98ea4ed6550e6f819a6b368f0287847b6bea41ab6cf06eab59

SHA512
86a8f35e1e2850b7e5630a7e6c3bd20c9e9a6218608ba294b949f0330897fa8ce0897c8079f338c4ee39f105c34b24141c8f56410bb0232c6fbc7e7c60240460

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
be74952fb760d2714e8ce28c082039a9

SHA1
6df3976ed5af400aae9c0fe9a17db9de696c18d4

SHA256
4a49b15c9854cbb2e381cdc1332669df475aaa465277f252858df15618d93935

SHA512
9bedc34269d794c3ce81233c3ec3ba6c3e9ca31b900c2625a711b0f0d34dbfeaac12455c96b1bf9df1792fcdd05402bbdd4077ceba5ac9678781e9b37ae35345

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
40b8f83be567a2adf08fb3204fabea7a

SHA1
4a353a25bc0f51ecbb77bd96c4cae397770b5170

SHA256
6532f2fc6470c8251efea482277425c821a79e010a8aa577a10cf250e8475628

SHA512
d6650d89fd2adb1a1c7a4399b267491c206021a4bb2d49f92971e23f9412121741706a747adb0ccae43867e6bbcb9f75c55d08746198ef6540fab31e47104928

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
8650fd020887da8081b572d2d9ba7999

SHA1
5441d28ae902e00bee02807d5aa380ae49361532

SHA256
cd1b7b7eb93a5accf766ddc7ae2cc601018c0b9618b2f2353d41f80b8e29bc0f

SHA512
64c19d4bffca42f12dfcb53c181beac1c3b50d4251e3c99004767e5d6de9aed7bbcb19ede99bfa609700f75ecb5706fb7437be567c77d1eedb1cde69488eafa4

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
4276813d84413d891ffdd9df4d328664

SHA1
a115c1855fe3d53c4a50253a6a6d93e82438341a

SHA256
a47d542d399f9b3ef38e1ab8a1301a8d560e8f0648a7837b857837524b6b35df

SHA512
6540d98f6b76a523eff9d6e6355673c75ebd99c89e1b86c002226831d4ea525052158f774b4312857f5cb584d5d4234cc70401b7df62379770e1ba0019000ba6

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab6BEF.tmp

Filesize
70KB

MD5
49aebf8cbd62d92ac215b2923fb1b9f5

SHA1
1723be06719828dda65ad804298d0431f6aff976

SHA256
b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

SHA512
bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar6C60.tmp

Filesize
181KB

MD5
4ea6026cf93ec6338144661bf1202cd1

SHA1
a1dec9044f750ad887935a01430bf49322fbdcb7

SHA256
8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

SHA512
6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

Download Submit