Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

21f1ad2620...8.html

windows7-x64

1

21f1ad2620...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    07/05/2024, 22:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    21f1ad2620e5dcc9b3d921ec1c5bb24c_JaffaCakes118.html

  • Size

    67KB

  • MD5

    21f1ad2620e5dcc9b3d921ec1c5bb24c

  • SHA1

    a9793342b16fa5e4429b8b5d18fcafb86fc71088

  • SHA256

    9f450c582e0fdd9950b6ea10f82eba6da328e4545c374cf917359fc7bd6a77b1

  • SHA512

    f54f964f7fa5393de6928a1868059316ddf06bde6f29f1f013a93597f20f0c7b07164398f08ccb70ac993b9fc7ab336523e01ff1421fd306e3dc86158fd9968d

  • SSDEEP

    768:Ji/gcMiR3sI2PDDnX0g6sJ+62dRXpoTyS1wCZkoTyMdtbBnfBgN8/lboi2hcpQFf:JddKDX+TzNen0tbrga94hcuNnQC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\21f1ad2620e5dcc9b3d921ec1c5bb24c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1936
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1936 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2384

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    53cc07f3b5ca11119c3d2d0ee27b1b57

    SHA1

    1116ecff8c60814858c9ae1945b1f8743dcd3258

    SHA256

    932b7e292aa92a747811abe0d5b0d32ced64bd32055c805251c99086d13246ec

    SHA512

    67ff8e44544bcc57624e15c89bcf4faa22d66f6ba8a201ae563c0407ca55783014ddde45fd1bd446a4aab554283395726f7c3a1091a7fb2e38772847be339efa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2becdbe1e31d805abc20bb5dc29a5370

    SHA1

    bc24bc47509a35a411912123ca97335e385bb39c

    SHA256

    9790bf5728d4a25763eeab6d843617d9d7791e7b5dddb844aef2ce8c4e4ad19f

    SHA512

    77b5e1f189ccb0893adf2a2cb94af368d19695982c450b9991bdd21421f5a14d06c704ef19ef7cd4b1fc4631b2519d009c8150bf9b49432921c9cc662a6b3ca1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    39c01e97b2eaa8a7a1da63b305290b53

    SHA1

    1c3b32f87bfd629c464f6de151335cf01eb8b20f

    SHA256

    f696897f0843e88ada561d458b1a215a94de0eaa38dfcc04c285c992239e79a3

    SHA512

    b92ff83a499261e2f2cbe37c1b8f3d38d0ea4659e64788cde64ab0b6c1b128b1c68f4c8b3fe688a45fada451adeb572e640f30a5c6f6df19b47048844bcb44f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9909d91ae4d656a782f45aa1ca386af5

    SHA1

    fd2edb0c82e861d6d39537c0de3ad9e299b272aa

    SHA256

    a43dc96e083c3b6106c358a7b9f5a5356c0beb887a1f9f8d8edcbe74a7d3ef7a

    SHA512

    fa73fcc4b90b42cbc6044be92f65ac2e99c1e6e515eda4e228b1b0b2fb74cc4dbee59dd50276f894f07e59ab9ef7fa9e74f2acce7131510ec613a17383f118a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4eafe0bdeee9ebe4ec12bf37250f73b3

    SHA1

    5922c440c3e719a87727e8c703ea60226af997ee

    SHA256

    351e90485e313bfd1b0509d71cd7cf934c004b504993672c2655eaa445d4a4a0

    SHA512

    ef037fca17f0c753c5e0e3a9b82ff8c7f996ba3ad1a07aced1b9c102af20b171a45d8fb8c695ff9c2734a01dacaad8a5774841fc071c108634123d68dbe8d373

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    98af0b8e437afc89b1cd787cecd7ca73

    SHA1

    a36efe9396e5feadbb40d5d14e08f1764e93efb8

    SHA256

    6886aab53336fe6342c93ff5db5cce8cb3c8c3c730e3e7e7fe30711dcdae4ad0

    SHA512

    f10995dd677489a18509f4f7ad5f2d6ecccf162e3c2ca72c511adad8e117f0d48a7599d30f9bbf8422e93fb483f13624d1f1c26319b7af9f2b8320a39b612706

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e2c42a414f46817ee190b6d751ea3a25

    SHA1

    7a4b8fb33a97950443ce1032dd59218565e38662

    SHA256

    feb37fe838958741c03e9605f02688770676b21af71325d67c6aaf49d8542847

    SHA512

    de6b2f681d2b49ba57414e8e70c78dc0a9681b094e1ac8f14f99e758cf6656d8a23ef080802507d0bf8c3101952a18daee52da624447804f7224a70fefbce015

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4cfbb419a6c0be939cb402feb503c5e7

    SHA1

    de04847f2569fe88a8879f16277e6bddbc254dcf

    SHA256

    b2fc49e7263f08d5d7d1aa10e5b6059d00936cb557f9db8ea7163d949d769c07

    SHA512

    2e2282db9aa61f24a83eaeff2f93a91c351c237d846241eaecc102942f1a73507588273a05bf5a2577a779793800a362687349bbd07c80e355df009e9102efb2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0bdcf5fead17e04a005c7541080cecf8

    SHA1

    149b35f54ce712734837f403a54eed49ab024363

    SHA256

    e4ed34c292c13860f44f6a599d9bee8e6a96331d630c4d73522f68af5fdd2bfe

    SHA512

    418036921c9eec954df7b4c2fd5a79a02aec5799f57eb6e7aaa7317447fff63596397ab1ff64061b30f3597a91ca867e051483686dd5b75e96d8539af240a176

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fdaee537629d6aa358c1411ef09ee36b

    SHA1

    0c288d1a2fafd15ba0d971b04cb7b265e2321ed5

    SHA256

    d6559531150a345dc4074e9cd006eb733e85c49c48180e40abb17d186fe82e64

    SHA512

    bc48aface76ace31f815da8c7dcf5f65e8de0583b0f2e25af63b3855a6e788bc03af63389af3badd6b488e2c6845b42a5b15230104137c07bd46759d5503e663

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ef4bc45fb3930984d70eabf9407c0ffd

    SHA1

    7237d4be4d4e437b75802e53a4e9c40d7e23470a

    SHA256

    14d7584183e807b647934adee3a0c04c6e60134274ca66d5476a237323fcc850

    SHA512

    1293b14f313d017ab39a12b13591716c999ecdddb79f3039bc5eb85fb553e16817d14ec759af1bcde5830522848a313e55b993b579abee6712d8523301d80d5f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    4bb0da5452a31c2d75d7766ffb1905e1

    SHA1

    2b620ea75c190311bfd59a4aff2c7a4d188c5e78

    SHA256

    586f88ce7c9a69b5a2a4103125d81ca424f116472e8c56513768abf55b400cec

    SHA512

    ffc97783a1fd635649835fe97fa6d600b3ada5e306201e3c608e338da6b81e79346a6ffb53301400654a0af60fb88ff8784df1db50a9d57db350ffd4ac7787e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    4c72877425854c5114b71b374721c4bf

    SHA1

    5d0c4bd65e775b00eeae00955042d526d421df3d

    SHA256

    b6c47dbec41bf8de3800ebabe2a2c28049a052c677c4aa2d703b6afe7cce5261

    SHA512

    1d4b6b15855fd920b172b6573ecdc298d42f5e5046e882030dd2626574e6434a9d13f512d2bf0cfc7be80218be98741fba99cdcd20ce75fc64ef2877170c60a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3C1C.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit