Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

03aaf0a3bd...8.html

windows7-x64

1

03aaf0a3bd...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    27/04/2024, 21:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    03aaf0a3bdcd8bff4c5cf209d876e2d1_JaffaCakes118.html

  • Size

    462KB

  • MD5

    03aaf0a3bdcd8bff4c5cf209d876e2d1

  • SHA1

    74e804dcaa467f700c7f8059d7e5c7450d02afbb

  • SHA256

    37d299c3c8435458b0f0b1863f1e4019a55cad05cd54da3de0115ee2fc0cb8f6

  • SHA512

    fb9005235601a62b49b806d44cf935a772484b10d11dc8b8e367c30c4d9dd8561c40e71407e640db474cd244cbf12fb97d0024dcd57cb456c4baab4ca3b209d1

  • SSDEEP

    6144:SJsMYod+X3oI+YNesMYod+X3oI+YasMYod+X3oI+YLsMYod+X3oI+YQ:c5d+X3w5d+X365d+X315d+X3+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\03aaf0a3bdcd8bff4c5cf209d876e2d1_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2028
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2028 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3040

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    5b32095bc86093694ec96874c00db213

    SHA1

    acafb4c6dd219d755b91f18948a4429fddf973b3

    SHA256

    ba5cbe74d166a758f7419bd31d2c9e4c863cd6938d8a4399637d79ab8a983343

    SHA512

    9b8cd48088cfaf2fe1893d4b8749a4b06ef3b935b6157e64ff5d085ac33aa5416fbcf25947a242a4afbda61dbb6a7eb2a9b18233afd95109ee0010a456ccbcff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0b668be4e8d2913d4af6c416a5ec46ae

    SHA1

    cf953aadfe8eade36ac8599bb0d05c40c0dd3682

    SHA256

    285e5cda6f4cf0b13626ff791dfbcb4426ca1e374013162dbc40d02c594f9bbc

    SHA512

    d7d3fdc2949493c531e51f89d99a721baf54e731ba6fc27177a0bc31f22e503936bf2a6d92837b53bc3a3ac77bf5306b410aee8bacb48ab3751414a861ad48d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e6a9ae2524c334dee308041165ba1f35

    SHA1

    74cc9cf008f477b0d4bc92cac34fd93d7abc50e1

    SHA256

    1b5d52eeebfb7dbeb7640fb5b0733813e9e38046d764bfccfebbf00f15158033

    SHA512

    e721a64a2ac4a284422d210c8ce200351989c4ffcb28615e7d0abbc4ac2bc38ae72d25c42713b53b1473d2854286e2c9d6b3c34ee23ae729da9a8056eed38aff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4818e7c3bc74449181b553e592a15df6

    SHA1

    3d898f18cb37279137d219b388bdd8775eb39ab0

    SHA256

    4d8073a8dee9733a27aa5d61d4e6074ddae7bd06b2036476850a4833e58a023b

    SHA512

    52e06b7bc70f32855d87a3a1f02209a32d8a9059b4890ab614cf447ec1dec02a4de2df44e5399d2ce8b18a2f3f906fb0b64677d7d0a7c9cbf28c09a4262dc087

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f04726e65d972af239f356a055d0a7e9

    SHA1

    de1acbd426f851a0419eaa93e553238c72a03e59

    SHA256

    2c446f30830d164909a2ccf2d171d2efbb99d1473b85706b3e08e583b3c5e113

    SHA512

    cc5306d8d7da6e03b70461ff09efecc3fbaffc2f18882ad69142014205957288f23d07b035e4eb047d89562635d2832a50e890e683a272c4c5968c1ca3c24ab4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    41d32ef0cc1d0565f7df5e3ddb1bff79

    SHA1

    2318fce05565fc935749fbcbfa75b2056518698e

    SHA256

    b104d7c4b4ea7934e0022e252c270da840fc80bf4254b06122c7d42178daf882

    SHA512

    576670aa3be1ff6221dc61bceba7dfb539a977af55d542af9f7c6e9dbe0d43c01d3e5c5c7954b83cc4c7817519ce5fc05ad6a4ece3bb96dbed2624e65ae950ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1aa5491d16213f47525d3021cb611443

    SHA1

    a7cb27bd6d1dd59bdaee21670f94121377f8a479

    SHA256

    d8ce42ab38642d3facf85beec001fa409854d13430e7b644c1fc84389618fe1d

    SHA512

    d4f1178064adb94b3dbc6459e6e7b9d3667e7218288472887d6496b575f74b0fdd1c9f19f8afaa31bc9fccb38fe99ac0063a281ec6e3b90614f0c15792d8fd12

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    64fb43b75008a153d252f5a6cbe165c1

    SHA1

    d33960b57af5bc1a8326b50e960b5dcc3832c8b7

    SHA256

    a727fff275db33061beba369e6e4eec83289e63113ce40368b498ac27345d180

    SHA512

    8a7f8a3bf7b4d4e35fc446f9bd162aa7667a0784e937068b39f10ba939801df71ff8a3a0c68ed50567e2fe9ad6b38ae7e863a950734a35ff43eeb8f5fa873fb8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e4975652cf8250c4b8ee3b6ab94159dc

    SHA1

    58bf3e8506efffd670dc8a53769a2f44c9bd23f8

    SHA256

    afed0a761736986189b936cae2fde6807d3161f35ae556b3b65f889edf555161

    SHA512

    d351a5d3c777ab833afa4f158cb5a2d39fe82eaaeda4fd6688119d60bf855e9dd85d484788297ee26a651082e48d6734d9d8caf73561eac95b1da2ea8bffac67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7e66ae784b68d49693de6311fbe4d2ea

    SHA1

    2f73bd3ead70a7ff37ee83ee96a488d5eb1a2729

    SHA256

    895a196535c9b7a9ec97b5dd133fee56df7b4312317668e6e7200b40441c98db

    SHA512

    2bcb2ddec623b110f66e01fe0ad4227d5126d5e59ca5e016c0f83f5a950829b5465ccd6f1381269d8ae1e3ffe2b7b7ed327d5f8cf67361a3e12f1dd8a6f8fc55

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    36bcb32367438585db72c2997fdeb301

    SHA1

    b1a54896224ab7752a382f4744b680d49cb5ab9c

    SHA256

    4f36510feb9f48100b57625aa7b8b1c13847fa8121131434c8ad57ab3c0820dd

    SHA512

    519d05116e7cad2c267454701e59c496cd63dbddc899b51202abe8465a192a98b3294a77254a362dd8e15e3012cf0524ab9f5cd734dd60dccb72380919ba328f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0aa74eacea1d9959602364eff3795a6d

    SHA1

    504231556fa40b3aaa7892f6df3463233714953b

    SHA256

    b08ffafed2d148617dfc157505431a5a52805dedaf74a01d82c167bd05ff65ad

    SHA512

    5d81b11cc425bc9bed1f2db2f80a9a415b6b419265f13eb762cd55831c7f283e8c9ab8b9f9598c8096b21924b027e7150a8fcf7476d06bd640d34d7ceaa610c0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    c6c5f3bb561c4cd04e421b507ca8b2ac

    SHA1

    ddf6604a90f1f8b2680e6770b15127dea92b5925

    SHA256

    9264300cffd6c46e47408cc10d8d418a7e42029d41597779a4d94c568f81f211

    SHA512

    2bddd7323820eb9362e35340fe5a90ffc902ea0123232a02b865e6a62fe5df76f4c19a30a3673d9da8bf5235ad05ad1ad1f2254cdb03ec9ed93e7d8e76e533ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3CBA.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit