Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

20f3f7b8ac...8.html

windows7-x64

1

20f3f7b8ac...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    147s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    07/05/2024, 15:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    20f3f7b8ac861686b2525bb7a6a2072b_JaffaCakes118.html

  • Size

    27KB

  • MD5

    20f3f7b8ac861686b2525bb7a6a2072b

  • SHA1

    845f982803a14468e4597fd422eaa1ae0b1b6bad

  • SHA256

    7a9a24f57fb904ca2cd7882ed71566a874e295ff893b060650b8b14e59fe4263

  • SHA512

    73f3389ede49ef14badce16a8807ae00f282f75db9f746324c245369569b891ec44f3ad05cee4ba015c0a3ea06057b3ba1801b835585d235d71d7b350c3c2a10

  • SSDEEP

    384:V8YDwW3Vpmweurs1IQLmN6cQsQuIfPvqq4uXCPmlK3X:OYDwW3VpmweaslLPcQsQffPCzuXCPm4X

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\20f3f7b8ac861686b2525bb7a6a2072b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1656
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1656 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2536

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    48bbfa3f8ffb7a5795682968978ca153

    SHA1

    4b6a907fff8bd5777c056a88d6035a129bfac33a

    SHA256

    e039f8169c691721d36c2a25a61639de22e0f60c8d17f4441840219146c67c1e

    SHA512

    dfebe0bae027427996ee088fcdd9b8aad42a4d93d93713dd500bc43cb21768e1c7bd9963b40e65f4026a2bfe97588e43b66465dd541064e3b48f5aabf6bef59f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    26f261a3955b560d1f903ba9db7a1452

    SHA1

    c4018a86f52a5e1f5b715e175001262b5b2ed168

    SHA256

    1de3f6f4ca1bf33485977b60b81b49e795f5b73a8e13a5b7944297437dbdf92a

    SHA512

    bfe3aaa98334106df35929100e4ab99ddc88089c3724a31df61431da3f2c46663c7eb2c04ecef0f297189463fb1d112039f33d50bdbd64c9f5527d687be12bd0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ac47b58f29944b3eb78cc77559eab828

    SHA1

    7e2ff423c60f91e5a539471196b820aa0176c4b4

    SHA256

    c3e20e6548f00a3199d11051dbb77e74cf96fa0e69649d1c9cc1c5f0de497160

    SHA512

    c82c912a1cfafe72785fa6090b7786f897ad4fb460e55eebb4ba297f591827525ff779643ae12ea1e39e9a4df56bbc64e1bafb22c6afb92332eab5f6601b8fa0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3a9638be55f96e19f1b40e7f2d068825

    SHA1

    b9619e188eaf5a2b5c72af557fce5e2b0746bfc2

    SHA256

    a8f5e45200a6ae78f5e9aaaa8de9b622b6fda89aee204cb93abd12fff96cfe0a

    SHA512

    5f2986b13da1ca6155031ac8be1a0ba6c7a74bd07ff5d52465efe84872481c2e5de9774383b81d8a8c397e80b26adf2853f8d44ea2c6bd70003bc394a09ff878

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0081190d0355cd65a71581c81d8e2483

    SHA1

    ff0c505202adb808ef997acbf6d73c20570ecb0e

    SHA256

    aceec2eaf7c9e429aa44e34838c2ecd9dc20b1c28fd433dedb304fe5abd0518f

    SHA512

    868fac6f25f32ea03b3798ce6684d02408828ee1a175b6d604ce68427eee7ebf0f2c8d13d068b979ebc81e9b8c17213cbfa500b78cfe9157dea41419317ed1af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e5cb8c7c3d4bcc8ac1e1a46db31b9c69

    SHA1

    ef3086a92968c7f053ddf03c56d96e6f872fa0c0

    SHA256

    ad5874ae8a8318e927df06dd1ddcf53501967a82957292b21374f909ee71016b

    SHA512

    36ca88b42a7caaa33cb669561aaaf4fd69018c8215cc7f87eb135436384e880119fb629428d58eef2a56f8db925f384548dea58e968e89c4d37d16c0164fab75

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c915cf4119cad912ca68530e82e79b64

    SHA1

    5cb8de2567cad6e08ab81b466f2f383f3d3e4853

    SHA256

    b4b1b319b83444b9fb3627a65dd7da267aae22dd951765b79f37d7efb393ce1b

    SHA512

    7156b2f302af1f51b6ecc15cd10d397a4779dce006a4e74b75e5549cc2375d5d19eb97e9c3b1b50db93e948c584239c308d5aecaa1f1b50f175765853f92db27

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc9e333adeb5a9e2621320121e53b433

    SHA1

    397e824718e4b7874ece140eb7253883ae40a060

    SHA256

    6c3a2bc82af1d2da5e514f0909940babeb8592d8ff057416e6c4f2562d9ca8fa

    SHA512

    1ea65d82def3d3e9b1f8629a92c2c94e9384d532231b56e1f7147b6b15c2362e177293d3bfad5fd6e9ac70a44212f909c455cdc707d8ba06409292b31355b641

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e271531256117e9fba16c19b0038ffc5

    SHA1

    dc342c7c8ba6b422d11aa082cd38da90bba49a7a

    SHA256

    bad3ebcfc76d55e64f5998d6e98991cc35f7d1e909aeb479013e47ac6552834e

    SHA512

    8c0d89f24c32fb0b10f453884558e2f7c7eca6b159444c085841e7a7981b8f68abef9691c7cb1c6b68ca5b95f1df51cb8239e016c82e37203957dfc28b68d41a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    23b3f94104113bb4e67a37f5ba7472ae

    SHA1

    c67373c6f05292aaca14eca219df48498fe0eaae

    SHA256

    53f615667e61d811dafeeff598995ae38c465c604b4e0f15e19bb82f2c2704e4

    SHA512

    c1bc13c58b4f85fa206e9163e233f7d038a5a21772f56677b410435ebad38546372334d8fbf0628d27980012fc3e14794a8c834ee057b0679644d9cff259f551

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    3f685bf4cd429fcf8d6c1226450288af

    SHA1

    bfb6ac564aed665a959608f0e8c67f2598bb8167

    SHA256

    eedcdf2f2fe9968498a7c60a46fe6dfa73c05e2fc439c33df21204d8ae503d2d

    SHA512

    3acd3a0599217e636462a418c85471fa9f6a37969bc39fc5774f7a1a35b8288bcd1a0d57c9a5e9d939b39c49a2dcbe5330b75a279c5b53c86aaadf365dc54bbe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    0f4bf27c5a0521690f5b6303b08af61f

    SHA1

    f7767ceb3d88955ad55ac39dce64d9978444bcfe

    SHA256

    e87d40fd1c760a18a592090b5fdc472d535e9e00b51e5cb4514b0600e1df1384

    SHA512

    a144dfb64661d66d5ee54f793ba3b9488021e8a0fa51c8d42a62157640e4bfcd52b6a9af1124f0110dae91935a662c1d8b864ca2d98a60a1de64cb345015dc2c

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\3604799710-postmessagerelay[1].js
    Filesize

    11KB

    MD5

    40aaadf2a7451d276b940cddefb2d0ed

    SHA1

    b2fc8129a4f5e5a0c8cb631218f40a4230444d9e

    SHA256

    4b515a19e688085b55f51f1eda7bc3e51404e8f59b64652e094994baf7be28f2

    SHA512

    6f66544481257ff36cda85da81960a848ebcf86c2eb7bbe685c9b6a0e91bca9fc9879c4844315c90afd9158f1d54398f0f1d650d50204e77692e48b39a038d50

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\cb=gapi[1].js
    Filesize

    64KB

    MD5

    63e5a0b45632b3dde3694ffcaf0e3f7a

    SHA1

    923736d0cdc308331d5cfaa0ea159bfedc83d53f

    SHA256

    889109910477919b3457416e7764bcd0add19fd959848253026125c7c35c43db

    SHA512

    5b886c4b5122d61f0209ede748aa84445c9388cf38813316c41b3dbd2308216e88394d9a45cfc27113c0cf3bc93b9c37d808f6d3c67888244c176ee095d42259

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\rpc_shindig_random[1].js
    Filesize

    14KB

    MD5

    23a7ab8d8ba33d255e61be9fc36b1d16

    SHA1

    042d8431d552c81f4e504644ac88adce7bf2b76f

    SHA256

    127ffe5850ed564a98f7ac65c81f0d71c163ea45df74f130841f78d4ac5afad5

    SHA512

    e7c5314731e0b8a54ab1459d7199b36fc25cd0367bc146f5287d3850bd9fe67ba60017d79c97ea8d9a91cd639f2bc2253096ce826277e7088f8abfe6f0534b63

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1F46.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar20B3.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit