Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

f5e238523e...8.html

windows7-x64

1

f5e238523e...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    17/04/2024, 13:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f5e238523e781005effdcb0e27218b8f_JaffaCakes118.html

  • Size

    53KB

  • MD5

    f5e238523e781005effdcb0e27218b8f

  • SHA1

    394aab32f80d6478076402f2b7d54d6f13aca7e9

  • SHA256

    e01b517c885b54227084ef2cbc60e72ec85a67e3c8c7a7eea1b8b71ef825b998

  • SHA512

    db998518e5d7cfa56cf23a7d076e42182865db1c9f8e84bccf209d7178317de1896d8d482252fe4393e42c407fa699bbb8067fc0672d976939cd8a8ec5b06bb1

  • SSDEEP

    1536:9kgUiIakTqGivi+PyUprunlY863Nj+q5VyvR0w2AzTICbbnoB/t9M/dNwIUTDmDi:9kgUiIakTqGivi+PyUprunlY863Nj+qx

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f5e238523e781005effdcb0e27218b8f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2904
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2904 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2100

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aaf972f5163f101d0777de46548f1728

    SHA1

    aa7bb4533e3dae03074012d22108b58150160e42

    SHA256

    f7d4c6e4a4d8f02a2d1bc32c5d59332b6352b5f4a5c5fb38cbfc89eaaea5e021

    SHA512

    aafdffe29dbdc9e9ca7f6745c4958bb1df8926db12c78cbacfa398fb7d375dd8ea63acbc88745f6c13e64cd9495f23ab1ea59d489fa497c9491ab2bdaaea1189

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f4c88d3708756f4973fb8effbe3d9e5d

    SHA1

    96a4b358eb8d1820d113e79d4b5f82df5659824f

    SHA256

    771c52202d438c20725e18a82705646f6078d8903bc7cebcfda78078f0ea5104

    SHA512

    6fbc65bc1cabd232a882bbd86f7812d170cdc25288119574f494037457ed8b0620d3b3e553a5cc49473196ee05bfae2c53349ed3aa7a0240d44dd041bc28eed8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5d4a9b9ee61c1de5d09595c192a63829

    SHA1

    13bf1cf423e7d1e224e34728bce86ec007f5c93b

    SHA256

    1c53ffd17a4106732e7c5fbdc71d3bbda201d1af11b2fdee35a948e0a860181a

    SHA512

    97bfaaa97cfda1f02448d7567c86c79fe4e0c222ef0c9bf01f9ccbed264a0e01cfc8d2ca8e9d9810381b83d8612d2207c46bd5f4a3c0626c730fc4271de597cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    658c1f566c9efaafd6bafb14d7daf609

    SHA1

    6fa606dec3db95304f895b0755853edd282e593c

    SHA256

    bbc3f16997730c2c96473c199d2070be56062d130e9b929aed30a32fd759ed34

    SHA512

    5142e6bd8811f75130835a18680657cd0a99165c0986c57a667b3ce3fcdcbca309f53bcb68cf333c8e5e901efa80e21765e821f91fb8ec7dfae67d4f293046cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c494fda25311686d16352f20535379cc

    SHA1

    46405702ecdec67eaad22cd1bea6530de918d201

    SHA256

    16f172ccf882c565a1d61847802d1839a72c9827450de72ad3f9210b75634c1e

    SHA512

    6f81c87d8b53191b344c172b3dad012e483806145d87402a7af5dc606490ea6dd42efc15a9fe8c831324fa1c519eca281ea6d0ff1a520cfbe727fb5bae129e7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8ef725d4f9c94739898f0a8da61f0585

    SHA1

    6a9b41ee40298fa86f42d2021a48c1de7ef89bd1

    SHA256

    bfbf42d6c2c1a721df107e9cd6cd453dee4c11b9a1e3abe2cc4fe962af1e3044

    SHA512

    f6e34ffce70901c1401aa6021d20e77b51b3e6659b172fcbf1d3c1e79c4e4ee71a7d2c0f3b8bbf0af226ca8c286451da40a5c25e13fa373d09dcd60b7000ba31

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    604ce59f15bb77bd0f33875a7780daa8

    SHA1

    7d5122bc7921425c1210862bf51a71b3b90d1d1d

    SHA256

    e42f418213c660a8feebfcdb1bbff43e33210d49bd380f18bf1cfd120efe5c4d

    SHA512

    ebd2cce8be1f9ea64c56b109e05575a6e4f0137158d3dc040421f23257e3e38f09f63c3eb791d03e7d0c0749544d541f38c55c803bb4265acb50b54912d8058a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3dc3c3024f3eb695cf259855b15d582b

    SHA1

    008d1aecdc4f6362e0d219a402e7026cda664d78

    SHA256

    0d8366ee596016e8e838f25ffb0a102f9e0f2bc0df3580c8e500023e1dd8731e

    SHA512

    d96c2060f715a7a3808beb41dfce596d660053d2256966310897c574d465e55c221a69407f1b76b453aac4cf557c1ee9f2b1fade4fced93ab9780824064586be

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I819HQXH\star[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1630.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar183B.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit