Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

0cf0fa4877...8.html

windows7-x64

1

0cf0fa4877...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    137s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    02/05/2024, 00:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0cf0fa487729d197930ad6b6cf6c1159_JaffaCakes118.html

  • Size

    27KB

  • MD5

    0cf0fa487729d197930ad6b6cf6c1159

  • SHA1

    5dcc4f02e77744414f55a6cdd6ccab91dc3e3964

  • SHA256

    0f74945516f83125c441c02acc9a3ef355259ad1ad8281821474c0ef9001a251

  • SHA512

    2783c5a57318ef0898dde8c8ccae43926b2ac5ef387eed8e774675bdf5f52f2e88371c82acb926df517a9d880b641d7fae5bae3d5441bf78538c584a9fce4274

  • SSDEEP

    192:uwbEb5nIT7mnQjxn5Q/pnQiesNn2ApnQOkEntnLnQTbnxnQ9eSwm60NAqQl7MBMw:bTTQ/AAVno6ANSWpG

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 43 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0cf0fa487729d197930ad6b6cf6c1159_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1960
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1960 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2988

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    f19bf54d7fc6b0de254c33a619a269f6

    SHA1

    b26d38ff9bd7dbbe86af9d6c951943f3e47162a9

    SHA256

    0ad3d030207439dd08680a292e3c1ebf1822750af0db3d1bbaf68b5cc346157b

    SHA512

    435ffc407a9dbbb2e1aa1c69510fff25663c6a795cfe521437ead1d03179565ceb20a4d49eb999c141e903b55a9a8824a3744213033da6446b9e33c6636b1f07

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    54d5415c04a9a18f343f1dd325fddd9f

    SHA1

    eea5bbd7555da0b5d41d5b0a79548067d1b31344

    SHA256

    4af58b87da74f8b8877a07d4e7762151ae083074f2d899c82ed99ac7c2630670

    SHA512

    574a2b1ca8d3c2a4ec8e2d58681015f8a1047a9c138feb861f605620eba04c913458f13c2f44b520f0a10ac51733a078f29f20f900409185805df249227ad69b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    927a7949accb648d0819b488429996fe

    SHA1

    aac19eabaec0969f5aa77279150662457b6457f5

    SHA256

    433a038204a53a1889592a0ee1a65d441d4dfe7f77fae08ef82afa0ab5a7d16d

    SHA512

    8dcda06fb954b6cdac90bca2ffb8ea45b5d7f26e5d7aedf50b27477343e1ba95f29e5e04e28e987fec0be70485822785f61acc6f6b63ce6551004cf05167f447

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    862cf976f789d79c4e7e941a6dc10e7a

    SHA1

    859ed011e489a6b7809cc4da2f2376da8cb3d2ce

    SHA256

    3dff1145ce57c1e66b8daf48bfccf7700666cddef6faf0d39095ff2310db51a6

    SHA512

    9b0769876f5b31f2915fab613353f462e2a683715d80a50232e3e319c0fde69407c33d8d1515979fcfa827350da33ca0c4724b45816db7d877cb4115a82e6db0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    91a528d62f5cd5e81c13e0e079654ab3

    SHA1

    c05602b1b1fade350b64f2972a531a3dd6b0ce17

    SHA256

    78c2b4b15e5d3a1bb6f107cf0e81999d5cea3914e5ad66c089989a3a7218c2bf

    SHA512

    9617d3e2513e4721cb1e3344c57c26e0d952b6963e23303f3cf421b6c6ee5229fe8cc7484a5199caf71e6001a21bed1289ddda52c77e94834390b9ac246da3d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fbd18bd202fc0d6bf599bc2349595473

    SHA1

    f15e565471e352e81c5de7c7406bf442fe874d73

    SHA256

    a0d62422d18fccfa9727a56f1763263ea1a319d76d703e1be171d7923b7284a7

    SHA512

    d69420a3649859aa7d389cc74644e7a5c8395b383a91f94425d3395ef3ff40bb094cacc733011dfd73c096726d31dae7d984d3b92b7be1fe40c535c2087d744e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9273297f96744bce82d92bd71ab5f4f9

    SHA1

    59b6d638d98e17611adbc0abaf645dbb94413109

    SHA256

    2d83198f018c907282129375341bd41e30da93512e7d4afa4fd596ff6f71be3d

    SHA512

    f03de3955e30f3fdab371b382d3b93e78d391ecea1f5770ee5899622b7acbcbe8840e9cb26c55477052a25a06aeb9d4b03f2da7cc2079907513697a295ac870b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    06dd51210986c52b5eff03f0f8c09de6

    SHA1

    ca70359aa0891189b11ac01004ee5d4b20bf7feb

    SHA256

    777227c9d0b7d7113dc9d6d319ed6766b62cf97caab887a3317bc6596396dc20

    SHA512

    51571fcf1b82479757144bf326cf4405314b3ec6ce48b0908f343d291077bfc270def272d69905ea6f10a333718666c59d0a5805f732b91561b8df1d78d46da3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5d64eef5ab26c6dd1b97f8b59e5346ef

    SHA1

    e6aab0402f818760db68b31edb21de98bb4087bc

    SHA256

    544d833e9398806b32d5a7600f1614cb8d53dae4593f9918205d21f2cda946e0

    SHA512

    987a9c792fe2478030ba3ec2a94e0ba1022524cfa983a18187ea99247c27646efa7793233bb604d1ab272c7526610d0618a2c38b34a25562d10b3aae1ce9bf05

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1ad7f6547b7136d3ee41123c79531215

    SHA1

    430a2e97d0698284c70eb24bd10ff9111c692fae

    SHA256

    3c6a9d75fb56cd446204823e4060700f0ed1a222b0e37b58e6b0183ce97a898b

    SHA512

    d7a8b67281592365bae45eab13804a4caecdcc1563ef3137c13e0703ef25e1f2d0e0fd0a4f97eae3bd49ac1ba47033be91e3a38cefb15713974cae99337eae43

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    52e773c13133ebcca6c3069d54b3d19e

    SHA1

    28f10b2838f624517021ff162e5e5db779ae23a7

    SHA256

    97ba6a65436f9722b5dedecaa9801043ca38ab0caccb723dbb9b2574bdb6f61a

    SHA512

    0b7c7c0d1cf23dcfc10f7061f17d3cbd75f984a65afa660410ed25cacfad53130925b488d601651de241659ed3f183fae5f2619b6ae7ab806e6f1b1da0952ba2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    27cb5a1bde1899a3b7bfb4e71c6988f0

    SHA1

    7b0b23b2dfa999703b8be69699d22b740b3345b4

    SHA256

    184e781c9a1afa661030e2654c63976e1825e4ab8044d7c4fc0bfeeaa044c758

    SHA512

    905c074f285e9937f98edc994a0d74a4416030c26b05ea7dff453803cd92ff52f828a8f0b0e11fb0251349277bbf510945655fcc951b7e3c3d1efd620ced46be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    429853afbf7689e7bba34d5a2f679bf9

    SHA1

    26c3836c65950733019a67b73bdabb08fa12331f

    SHA256

    0719ed009159756bb41bb469aa80cfec40e4de8218d29a771fb53ea87c439c0a

    SHA512

    9b9c668b7292740e80a171af21be736d30d579a039ec18f08895e5b6fbfbc511ba5a4f8f28291221c10751b02246d7c11233c7668b78b2ad4d5ad78828c026a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9a3060d93efa0f5f6217eee949c4a907

    SHA1

    fd03879914960d19728b2376fbf8a3e8da413c1e

    SHA256

    c7925cb54975551358b03e644455668772c1ab9faebf9c04a79acf9b8ecd06d5

    SHA512

    58556321ad7357414bed77adc9a607db4d09e3420d61143cfea394d227ed4216fde8d4172bd3ce312f230963d85f49a23588a532c62ad2286469413780e2eab4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4d476301acf770e41704b9ad3530785d

    SHA1

    1c3593b8c90e87648bf56f41c576a7cf92d66194

    SHA256

    19725f8561df7f38bd9c2a5c5b414888311bd45d92f83a6d2eea678ec94f4041

    SHA512

    bc33fc76bc934e5740c1e327b3660800abc48eb0af4699336fba38fdc4b8502ecd89a1f918285468c6757ff9ac9f5d8ee763080aa587c7720e58f0afe5f2b7db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5e614d9b143dbd1058dc66fb6c8dcaa4

    SHA1

    8748fe4910ec8d4f6d81e219fc2c0a701119cfa8

    SHA256

    2f47451f188478583350d66be2de767c8e60c3fb82a790f021b78ab734d6f5ac

    SHA512

    ab10cefb55b728b99f5a6e6cf05fcee47890acd4fe1cdaee95bc3934c7caf01e7e6d597f3d01d4b68402945e02377d98da53a88dacbe4da68be1da87844db53f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    95fdb757afd5f8c144baa4ed948aeed3

    SHA1

    02ce82ac6aec92b876139a7ca9ce683672aaf576

    SHA256

    717479e0905167d149e6a88c4a7abb8a584a8ba113ba04f4c0c3fbdaa2476564

    SHA512

    a16d52d878db430b378f053a792a51771971aa47c5b612271639fe6d5f431cff7748d21e6a5854ca3b8ff6dfbd036e15134b25b197c762cf2f467cb809af886b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    23352b0a3938e974804f499d73e0e1c1

    SHA1

    56a17e2fabff38665cd6659596e7b093c7992026

    SHA256

    15955205714c34e9fc64cc80bb00c3f1e68dffa99bfffee60d03d37fb7bbb463

    SHA512

    d143955520c2a8d9d71c44a419dda8bfbc13fe8a9e0004b32054ae9eacd7408867dfc63a6024e3445ede426b6b74f51d8e02b9102cccb8f3991d0256def44346

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab197B.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1AB8.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit