Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

03b02b0417...8.html

windows7-x64

1

03b02b0417...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    153s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/04/2024, 21:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    03b02b041794ba1aa7a30467f616e1a1_JaffaCakes118.html

  • Size

    29KB

  • MD5

    03b02b041794ba1aa7a30467f616e1a1

  • SHA1

    97da0d61b3c402fc8ffa309d2fe063ff56d6816b

  • SHA256

    00d7a94cbe5330603a0e9ce88264d53764ab7919ec73ffac6a5d81a030547a25

  • SHA512

    aefcf450300debace91665bb9f8974aecece4ef6df7b21bd8cdea6f07fa29ef6d7ceacc15ad3b540fd54a08fdc3267a31f98a8b01b1a14e176a4e55fb83fe4cb

  • SSDEEP

    384:uNYlAtByY7zyOeu/rBpLcN6kUsQuIfqYSH9UUh8C5tK8X:mYyuOeCPLlkUsQffAHdV5jX

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\03b02b041794ba1aa7a30467f616e1a1_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2508
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2508 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2896

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    c87264820b2e3b991307299cda39c025

    SHA1

    6b717ae3af822b1fdadf5ac49beb9e29b931434e

    SHA256

    122b472924e3dada0e35e7d33871aa01f9006fdc68ed73113d9adba87d8830e7

    SHA512

    31ae741e6c534e80839f6372b8f767e6b1686ee8104b8939ee123c9dfcbfbc1dbdd2622751cdfd54b7edac620d46d1e90c230e4c96cef6be56fbc98fb5a2453d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8fa00b5dadf593603c9eca0f3acb12d9

    SHA1

    3c1dbea68d61accffbf32a1d06d911c38bc4a0dc

    SHA256

    be581e1e90c6aaa009d52db38105b0384ae85d0e5312229b4e4a164de5f42135

    SHA512

    52999688e1b53114b3a2bf15b391460267b068030e06f8a3e459aaff8204c968208e98fc0f8249aaf29423ec2d6011f9d7fd8e7616dd1fa81ae91a0f838f2bce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    144009d1f9a50d8dff9da8a5679c5856

    SHA1

    768f1a049d85b14048c4ec7c2868a115b9e2ed04

    SHA256

    a752d36ee51950e3dc62a9244d72bb4edf37036bbf1c6b096a11ffbf3fed1fe2

    SHA512

    b1aed570d20685027612518c16fd1768c5a98c9c3e534ab02431b5647948e229283789948ce77a06fb93c53e4c3236a02d0e69253013a87012ea2b6eb697c370

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dfbac229a80dc2a2510acb90ef148b4a

    SHA1

    bd67969de29e4d5ea36e392994b4ef55e10f455e

    SHA256

    ad94678c1d17349fb6bdca6726d29de6b534962e353162ea0990fbacbe2c3987

    SHA512

    347b7132e43210206c2062756cf3c0e647e5d9e2d90aa1b1deec4503c6a2bf95be1307d903b89d13ee6f583c7f2b6b60e9f3ef3a0e986ef353bb8e096f0342cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d7996cea7fdc37b062d2482bdd25a7c6

    SHA1

    3edd72eca3c2e3b2134e28b7bf139f7d1bacc500

    SHA256

    dbb329a09f0fb6a5570fc6c9ca8e27d3149744d2a8aaf9b7068252e5fd00b383

    SHA512

    a34085b45e12d62819597bada281f508c87b93f70f8e247deee69bc184a204318b34275d67b24a5ddbcbb460d8181e89fb203cc3363e5fe74c10767289dffc1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9aa5ebde0ab5a5c840a1cbb3a2023f65

    SHA1

    56ff9d7863273f20dd195cee09b07107aae8b7a6

    SHA256

    47cc19833ab4ec1e766f9051ad3536491801b736293a482f750f815cc6076720

    SHA512

    eb4d123944b941a1c3cb2f3c5db386c7e3e9a3a2009e73c1393c0df6eb22f1523852e4e4346872d24ca2929a85d02f27d0768fa4f0073102219bd598338b2d0d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7354749278557d8deacaec46c657b9b8

    SHA1

    c9de9a7088b3ac2235d18ac29de6612ad435b17d

    SHA256

    400038654fd662eabe013bc009a8e475491df6603e26d185f8fcc18009e86411

    SHA512

    a334a1eaca8002497f1edee24d7c577b7f9cb2ef3cafc05c5fa5701b51837fcee10b42154e86cf849115b9daf7a54b1bf9807bab05fe5b735c151941bd4f4731

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4b057f89be6deaba0ad6ab47233f9290

    SHA1

    7815609a4ecec3f2d3807c089cf92714f295e161

    SHA256

    2c962fa32fde76cb38e9d7fd4fd4cb38554b3854515497ed7ded15582522d23d

    SHA512

    4704fff708dd934c5e1733c3476bd147396ac949a99548502ac44d2cb5b22ed0d5eaba2dc3359591926f737ecf462473d12164af9e1d25f945c189819c50453e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f8d7d0f7632930549e02659d10689451

    SHA1

    68729789c0eb21a972d55e1a563e3202466a343d

    SHA256

    80166149cbd960e7dd2606abbd6e2589e36cef4112b8460515da77bd0d2be988

    SHA512

    17e82e595cbfcf3a7e5139fbcc07eb5e6d7a016e7791879c96d6ac4c1f1547b56f643f6b0339a54cf4048304779c7121c0628d66bef046f4a72779f75c2eaf43

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e202e4f4221ef8116bdc6792c2253beb

    SHA1

    eac4ff8b6673af18251749f8bb7da138eaa770a1

    SHA256

    d0aac847dbaaf53a078338e87c587f28d50f3b03b58b7de6c964934fdbf8cf95

    SHA512

    6e20f425f4fa066ae909260d688bbc0a2226bdb45a713d640bd2bd45a10433f862ff6cf98344792b5f832f35505eda25bde1e51d5898e58dcf284118fb90f6c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7340f2d6afaf3337767d85af30cf4504

    SHA1

    8a9751fb3891d948dec53e6e085b62510fc8f236

    SHA256

    681224c20c068b026b124360b62ccd8857a20e4ef626fd2d897e786aae7b5c98

    SHA512

    dd2a7193c757afdaaa896afac627e1bacd573b6a10c8cdf92d4b24b092b07ca42eaac8e8ea0e29a2cb17ecb1ad1ca96153a3b00861a6e1bcccfc6dd0867fd890

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f020af9c48f5b63113fe05d0d3533003

    SHA1

    7df967b183ad541d5d1e4695e8eaae9583dac7f0

    SHA256

    5ac88b793ecbc0f7013fb3400ad704323a2291b425da874d2e1d577fb1a09c8b

    SHA512

    e089abfcb56ebf8a615bd3ba6d8e95661cf90b591b5f0b77851516219b6ca6a58a20101c4dc1c451a08133d5cf0f0c8a768ff5f9a5c3c9d23a78a669ca703c4b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    11346e63d61b91b2aa3ff0a6c340cf05

    SHA1

    bb86c9aced52d21ac4aa8ceba127328fb16899bf

    SHA256

    eaeed377ecc954c008cc80fe296afa6ee0dec70b6f9f7c504d4fe38308e4a953

    SHA512

    218da059bf64e500d8549108182ab7a0a23575ff039ecdcbe81e0730fb0c1f312904e825d0487c7a32e61c67f8de0dfd13b42bbf6e7f78ebc56c9ed192d8e070

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0f6558e4d16eb8acfe01382b267ba994

    SHA1

    a556933235fa74cf6929fd771bb896184fe61efd

    SHA256

    0fe1905404eb419d280b85b8449b33db963a7f2414d153985c8b0bd6ebf57b1a

    SHA512

    1d4b11af9e53c108d2572da354a4f18128cede0ec6238f714633a3c1a41c9bb350b174f8263486ebcd16de01626cb50c5fe582c84c65574a2c9d092d7d4a6672

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    96d3dc153cffd06fcfac17b56196beca

    SHA1

    f512ab71cb22db293dce57d3987ab24cf2f31615

    SHA256

    345f9ba18f6b4254f2f882c17b8e35d1f22843a6c8c78a47fcbb21418e04234a

    SHA512

    10f90ef79b1e56657309993b7c75197d26b8a01e606250d12149da4e9119d91bf33fb03240754d37dbf74efafb4d7221bd812bebf72ff37cfd6a2dab540f5007

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    49b717551182e681873f37b5071264a0

    SHA1

    089f4097ebc10a58131328cb6e8b4cc035b94a51

    SHA256

    18e7ee8e2f7897eff2b5d4003b20bf84c9da88a80c17a10e1fbd73458b6afcd4

    SHA512

    1664b630ad7402d2dcd8a136c47b9f7b7bc65a7ee97dfbc0b371bfa67b149abfa0dc465f0f8cc0141e687bd427077c70bf9bc11f1382261308d83777551abe52

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e491145236d17ef2dd23a650a884813f

    SHA1

    48cdbdb709979ebf0a4cd8ba894d25e037a8e449

    SHA256

    d1579e92bdd562573b50c50d36a8afad4b4212233099fb6e8ac6d66f03889f49

    SHA512

    fefbdc72314b8e0fc4839036bd17d417722343ff322e1dc7d72a1de44865a15e8751b6b3226e4de325a12bd4ef1691692c766f36dc4a07ac7643d0546fbd78ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6168e5d382c1650f227d98bf3ede2f6c

    SHA1

    77c2e1612e092e5926768ca8ca8b6e1faad7ae3e

    SHA256

    07567ea1113e7fe80a91d5290e926870423a95f5375a2b2d92bc16d4c4120357

    SHA512

    d3817089675c55e7bb53e3be061753f37ffbc2a5777333cfdc2d451e271947486bcb225085ce3bc6239618ddae4b03d4fdbeed0bfc269651d79302dabea70292

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    9c3e8853de95b4d4976d6ba8205a8f3c

    SHA1

    cd52f27b789bf89a2929cda3ce8763646cada990

    SHA256

    81df075e4781418cc777cad026cb005a8e3a1b3dd0d133917f073b730ab00414

    SHA512

    077b6d4f131bfa375ecbefb791906b6fdefa2ef02cc3803f6c4d6ef6894496a7d00341dae23cfc25af28200bd2b964029169689e235d4551e7d7387787c1fe97

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5DKX8QD5\3604799710-postmessagerelay[1].js
    Filesize

    11KB

    MD5

    40aaadf2a7451d276b940cddefb2d0ed

    SHA1

    b2fc8129a4f5e5a0c8cb631218f40a4230444d9e

    SHA256

    4b515a19e688085b55f51f1eda7bc3e51404e8f59b64652e094994baf7be28f2

    SHA512

    6f66544481257ff36cda85da81960a848ebcf86c2eb7bbe685c9b6a0e91bca9fc9879c4844315c90afd9158f1d54398f0f1d650d50204e77692e48b39a038d50

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U8A9A2DI\cb=gapi[1].js
    Filesize

    64KB

    MD5

    63e5a0b45632b3dde3694ffcaf0e3f7a

    SHA1

    923736d0cdc308331d5cfaa0ea159bfedc83d53f

    SHA256

    889109910477919b3457416e7764bcd0add19fd959848253026125c7c35c43db

    SHA512

    5b886c4b5122d61f0209ede748aa84445c9388cf38813316c41b3dbd2308216e88394d9a45cfc27113c0cf3bc93b9c37d808f6d3c67888244c176ee095d42259

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U8A9A2DI\rpc_shindig_random[1].js
    Filesize

    14KB

    MD5

    23a7ab8d8ba33d255e61be9fc36b1d16

    SHA1

    042d8431d552c81f4e504644ac88adce7bf2b76f

    SHA256

    127ffe5850ed564a98f7ac65c81f0d71c163ea45df74f130841f78d4ac5afad5

    SHA512

    e7c5314731e0b8a54ab1459d7199b36fc25cd0367bc146f5287d3850bd9fe67ba60017d79c97ea8d9a91cd639f2bc2253096ce826277e7088f8abfe6f0534b63

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9704.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar98B0.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit