d0ebc74031d5b46dd476d7d914bfec79a16e8868694cabe16803d08fbed07434

Analysis

max time kernel
122s
max time network
128s
platform
windows7_x64
resource
win7-20240708-en
resource tags

arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
submitted
23/07/2024, 09:50

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6715d195b669a9321a637a2dae29689e_JaffaCakes118.html
Size

10KB
MD5

6715d195b669a9321a637a2dae29689e
SHA1

1f5eb33f1b2d701e8eb42f59439e5110d9902d3f
SHA256

d0ebc74031d5b46dd476d7d914bfec79a16e8868694cabe16803d08fbed07434
SHA512

b3c3b1ad65942ad181e64819b148801b50c67adac45739b1d316b1ab6d2047f10a4ec36148db5609e383d0c5bb62b9f4c02f6cf4ea96cfaf663fbc3614d5f749
SSDEEP

192:2V+lIsr03/s8k/w1wvqVkZaBCZnXKA+l801SZauBuLbdU8d:s+lIcu/U/gYaBCZnXKA+l80kaguLZ

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Set value (data)	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{80DAF161-48DC-11EF-9BC7-EEF6AC92610E} = "0"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000a3d5a058b71c4645a1a6b8b9d2c7fb47000000000200000000001066000000010000200000003e64c5fc37cf99781a7a54c5dd13185b31c6964df73991a64b2b8ac566e589c2000000000e8000000002000020000000c9d5d2c94c8366371a1aef86f89e7d4785c60acda5612033bed589a56cc895fa2000000004b6ffec714d33717e4a12ac1da18b96a5692a6867e27a75fcff5e73e907174a40000000e96450c18b5bb4bedf752bb41868bb838d1e97da997ed48b6c886f4d26e88f0cfa87e95cb07af2bfee889e24ef567b343fa8c9ee0c45fbe023dd2c279e78ee4d	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 20326d6be9dcda01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3551809350-4263495960-1443967649-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "427891604"	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2572	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2572	iexplore.exe
2572	iexplore.exe
2148	IEXPLORE.EXE
2148	IEXPLORE.EXE
2148	IEXPLORE.EXE
2148	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2572 wrote to memory of 2148	2572	iexplore.exe	30
PID 2572 wrote to memory of 2148	2572	iexplore.exe	30
PID 2572 wrote to memory of 2148	2572	iexplore.exe	30
PID 2572 wrote to memory of 2148	2572	iexplore.exe	30

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\6715d195b669a9321a637a2dae29689e_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2572
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2572 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2148

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
ffefc6c4416556bc4ce7de862cdf36a9

SHA1
bc68e39171a3885f4f33fbdf852349b3061bf545

SHA256
1887bed710acd06a19c4c627aa36698eca3b180372225a021847128418be8aca

SHA512
65614bc5b6b078f4fb1f300a0e13b2f7013f7704db470e73a877456de14e6e9e641e8ff6cacdc6f5e3fbc71e06ce6ea11fde755c60b55089520c79f0fe92e0db

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
1cdf761a4332105a3d4cd43d7aef34be

SHA1
eff6c984a09a302a4cebc81700f5a09589ecd895

SHA256
cd9bfec956b135fb6c8dfa8f6bc0ab081830bd285f362f54efaa8cdb55759d7d

SHA512
95bf24d876c73592f9b2758e050fd807d93b3c1583855328fb03d9e1b6f2685d0389b4b4987b722973fd768ce7ffa1ff68b005a9b3b6737f34590a653c2f1da7

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
8e3401fed5c9fa263955d9a4eb0bf6cb

SHA1
fe0cb76fc095e6f0acdde03363d9ac656554d194

SHA256
02aa599261a900fea35f5b99b26c3476138f98506189b7746bdaa775d1d7337e

SHA512
8c1d124d3d80c41179ac174c6a811ae6dd4f64a7908c5aa8aca6c89b3780aa477c41615a9bb06e295e3b61f2bd7f907592daeb23927c892a106b3d84c62b63ba

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
ce83dc8c289f2e67a3ccdfac16c69ae2

SHA1
83569cdd566568f6ded1c053d6498d94181e26cc

SHA256
d9f7e58232f934144fbf08f7cebd65254ec168dbffcbaa0887107180f2cd0932

SHA512
cca5913c8bbecbc4aa02047b26f8fe06c8551e0600b46e7c1d376d7175bd1319d9bdc61aad57be61f7c4f641c8832e69006f181f70e1fb0bd8507db9a1dfdcd7

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
37e84657a5ae9310f9d70452a4e10b8d

SHA1
69f8d8d943a1ddac2f436a7e1171d4eb0a902fa8

SHA256
81726ad3f31ec7c742d13b642cc5171173483652e1a4348fcd1679674eb6a078

SHA512
b68cc434d8e2aef73d6128c7922bdafc6d4ca3ae99ebbbdd2856fcbb1f1ed8d62c5617fd2eaaf7b00582100b8033448af4101d8a89504f07a4baa15d1b12a363

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
753f33be4ef54fc6a3873ca0ebc6d2d8

SHA1
ba077f23da61fa8e6e4383e969520b075df57f5c

SHA256
617ff87996f1407a831fe9f611f33a67d4a98a5b9f082e06f3d89e344877fa00

SHA512
0ba39f5c3480074f5252b99aa6f27f006225060b06ba9daf7b8c2328cda8b99ce0610c6c51d0d093f0cc72810cc4198e239cbe776ef616560e1c1748dc1ae244

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
0b22dce0835a59decb0bf67137ddbfb0

SHA1
c3ba145e8b1d110ec14f5bac19112e80c36e4df8

SHA256
42b841d5968ddc280992b87adbf11761559cc248fa63c266ae30ac9865c5af90

SHA512
734ecc351d1880c5a431a9bdbb7883825a563bdcb965313e30ae3cfc32fb1b28dc362f20edb4df822b1db376628140061cd09ef97e130febb25a6c985febe4fe

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
1c4735798b2c1d3546b67338e13de2f7

SHA1
68ec80048ef33bacc84359c93c5fcf2497d5cdee

SHA256
0e8334b1684ca665ba45de39922cbbed9f7c56d5977ef985924ba070dee2d719

SHA512
268dbfeceeeb8ef4fb59b3c4767825eb76a2cefff1345348bae9675945135ce86d0f958948df63863c3d9c1c877bfb4e668ca3c76a3dc267ae2ffb37e0ede04e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
1775ea2571120e70264df553250aa900

SHA1
a5550fb3fd98fd3477f575b368d61ad6f7197cdc

SHA256
5bfa35aef4d768dc142c08986feba5319c67c7bf35596e80637b2b40b58e9054

SHA512
8eefcb523fb6ea0a55fca5e64903fbb121b5b56906ea514e45ede02641037232705e40737fde9e4ee825d3dfdbc17e48fa566397047f3cd8abef2704ff1ff0ed

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
c974f437c89c788208be7f7dbc218aaa

SHA1
61c78394dc753cc8ef52146435463ab08cad1028

SHA256
bfe9e2a962797ae2de23bfee4b80a11a7f9673dc8dc4eeac9ad7f5232bcc5c80

SHA512
2c3bc807689550c0051a15878198794cd14918db9c49651b5263a2d86a2a9b4d75ba1d270420ad9d20409d22bad76b01f2b8d604e577f57b8eca408adf2478cd

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
49d75167f6f39ab1357b4623fb092a27

SHA1
ec45f57c46a2847defd90d83c82f9202d435a3be

SHA256
139a097309f5cd8fe182210fda94f08d507834e6f4d1c80c371775e74ff40fc3

SHA512
2e394979695716c0f0113378a4dc76a6b55e2d98daa4934c58783e58bc91f2a29b559ff5687986ffa8ac3e70b7582430d5fa592182c26b250f93d5fe69b377ba

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
48c6489435b3e91481bc09b0e205169d

SHA1
6a6300e4bf1b275e1aee4d6aa282cbb5e996bb38

SHA256
28259aab1b8fcd27cfcd35e6f372925afa862f6aee5d9e912c259672ada074f5

SHA512
db9428547172318a58336f7d3746c57f35f1b44d73a1121f3cfede9360d09c6f88e298981182d9f6c577816e035cc399ee788cc85abf1a99254d38b8b52afadd

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
81218c5499c3f4a7cf79a7e643f75398

SHA1
64d0cc10836de29bcad9f327a5f037899acb513e

SHA256
361e6d8cb83d81749090161e0a4c7a3dd981cd57fd6b704e8b96cb0d80e857d5

SHA512
981254e9b000a30cbe4986019474ae232cb7da408ce0535608ffa02d0d139b1b0965bd36defb0565f2e684a83a61379d7f641800538417f7f67157b2a4235e3c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
86cf15eadf3b6d7f979ddca608eb6399

SHA1
80e27e385f39fa917320d2cee101ccb96767b12f

SHA256
98f056813292c928c6666e54121a757f6250cd367e673d539f070e47e14a9a0b

SHA512
af2ca675813f1c312c0cd14f03cabb595b29e4038ec66c20afd00e96cd50e0d2b8fda4b1336d2d58d28ad1424e7b3051aca2483208c8e4de221742ef4db0f037

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
9a8908343a96824dabb928bfa8d99dd1

SHA1
1e00c012a02b8fa90ee443d4d88f2d992503fb6a

SHA256
5b61b2a08742aee3af6be3f6cd261153e9f3babdc1195da5f0625c77a439d138

SHA512
ebcc0e0f3e82378d90d73f3758cf302c5ee91181d53b4244ac088d3f8190cf5128a2266a8e29600a33a9353d5931a678f2b315a803b2f39007611419c514787e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
3d4eb1ee1e77239e456b1d86f125bb1e

SHA1
8916289e8626f742a85335662323c69a5d0a09cc

SHA256
8b38569c972a6d34850e06f0656779de731209bf4c899cf17c35df5a927e955f

SHA512
ae28948aac619bb0a76cde5b1d7df05b2898cb5f3ae5c9c074ddcb99d77a444d44c6bebb6d501d65c48a23cf5286fcedf91e4a6c4f3be061474e042c0770ed7c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
069563d92cf5d07343719a5c3c866eec

SHA1
4e175539d0de91a59b1d5138a1c91de97b254cad

SHA256
9b3a83e2897be74ec708aa4a678a9c9336479e7751571009f2ed5be4fd722225

SHA512
473e4ee7c184bef9278d81fd961a0e9209c07e65557cef0c878afa64c510894d88579db0fa046c42da3eec1309de9e2c1c73dcb4bc8b902ac46808a9ad8459b7

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
db901337523d3c5feea192de3adf7653

SHA1
130d4b41083859a39bf4b1519f8af64c25759d44

SHA256
5134798a2e42800164380bf438708b8836f1ef376dbe1c07f57b8cbc08b65141

SHA512
7f6bdf6dd32cca54cb07d717cd410a3d41a1adfda7bfcbabe84e70134cb4fb1c3c7e5e79a06e3753b6fa2c7e4a976a3f7c6e8931982c9c434b2f54d58a384b7d

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab68D2.tmp

Filesize
70KB

MD5
49aebf8cbd62d92ac215b2923fb1b9f5

SHA1
1723be06719828dda65ad804298d0431f6aff976

SHA256
b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

SHA512
bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar6983.tmp

Filesize
181KB

MD5
4ea6026cf93ec6338144661bf1202cd1

SHA1
a1dec9044f750ad887935a01430bf49322fbdcb7

SHA256
8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

SHA512
6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

Download Submit