Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

39c96fd8b1...8.html

windows7-x64

1

39c96fd8b1...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    136s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    12/05/2024, 11:08 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    39c96fd8b1c69a9082bfa8563044b348_JaffaCakes118.html

  • Size

    172KB

  • MD5

    39c96fd8b1c69a9082bfa8563044b348

  • SHA1

    0bd77937bfc5afca4ae7054df36713363475b761

  • SHA256

    9db782bc1ba72ad2971b287b2f07fa7c08aba9b3c492bc27ea61cbc5790058f3

  • SHA512

    7e822ad9a99a4fde527787ac568ff265e88fb0b32dd6473da264471e73f0ae57e470b0971ec93dfe7b232ed405f506523f91817ec1e0556f10eb0abdab9bfe60

  • SSDEEP

    3072:SWxVM1xlugFyfkMY+BES09JXAnyrZalI+YQ:SWxO1xlugwsMYod+X3oI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\39c96fd8b1c69a9082bfa8563044b348_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2044
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2044 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2800

Network

  • flag-us
    DNS
    bdimg.share.baidu.com
    IEXPLORE.EXE
    Remote address:
    8.8.8.8:53
    Request
    bdimg.share.baidu.com
    IN A
    Response
    bdimg.share.baidu.com
    IN CNAME
    share.jomodns.com
    share.jomodns.com
    IN CNAME
    share.n.shifen.com
    share.n.shifen.com
    IN A
    182.61.201.93
    share.n.shifen.com
    IN A
    182.61.201.94
    share.n.shifen.com
    IN A
    182.61.244.229
    share.n.shifen.com
    IN A
    14.215.182.161
    share.n.shifen.com
    IN A
    39.156.68.163
    share.n.shifen.com
    IN A
    112.34.113.148
    share.n.shifen.com
    IN A
    163.177.17.97
    share.n.shifen.com
    IN A
    180.101.212.103
  • 182.61.201.93:80
    bdimg.share.baidu.com
    IEXPLORE.EXE
    152 B
     3
  • 182.61.201.93:80
    bdimg.share.baidu.com
    IEXPLORE.EXE
    152 B
     3
  • 182.61.201.94:80
    bdimg.share.baidu.com
    IEXPLORE.EXE
    152 B
     3
  • 182.61.201.94:80
    bdimg.share.baidu.com
    IEXPLORE.EXE
    152 B
     3
  • 182.61.244.229:80
    bdimg.share.baidu.com
    IEXPLORE.EXE
    152 B
     3
  • 182.61.244.229:80
    bdimg.share.baidu.com
    IEXPLORE.EXE
    152 B
     3
  • 14.215.182.161:80
    bdimg.share.baidu.com
    IEXPLORE.EXE
    152 B
     3
  • 14.215.182.161:80
    bdimg.share.baidu.com
    IEXPLORE.EXE
    152 B
     3
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    799 B
     7.7kB
     10
    13
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    753 B
     7.7kB
     9
    13
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    779 B
     7.6kB
     9
    12
  • 39.156.68.163:80
    bdimg.share.baidu.com
    IEXPLORE.EXE
    152 B
     3
  • 39.156.68.163:80
    bdimg.share.baidu.com
    IEXPLORE.EXE
    152 B
     3
  • 8.8.8.8:53
    bdimg.share.baidu.com
    dns
    IEXPLORE.EXE
    67 B
     252 B
     1
    1

    DNS Request

    bdimg.share.baidu.com

    DNS Response

    182.61.201.93
    182.61.201.94
    182.61.244.229
    14.215.182.161
    39.156.68.163
    112.34.113.148
    163.177.17.97
    180.101.212.103

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3390d4a5e2d369e584a9dde10a0a904f

    SHA1

    6fbfcb7941a48301abc96b47fd72018aec664467

    SHA256

    8a1953dc5dc86b9deb834a642b73ba01111a7a35c41b8a907a47ef14a1da269b

    SHA512

    521182401bf03a6d6af79d399399c5efe74e419ca7c2f80953b1a8963f599a878db72aeb28302e5a3c07503c67106bdb5d254578b976989cd1c01ca772f59864

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6ebf5f9aa09d72e9dfa0c172bf453cd0

    SHA1

    06be756e9ef2a16f177c0b560385439f416689a2

    SHA256

    9728abef98a36811ee85063cf50b9488e74b69e3e13ccbf24cdb4882ae75a4d4

    SHA512

    12ca9cf0f5f6709beb9b43898aa29117b78e46c010bb8b9a2292b68f1d21a408e201622e128ca73a8f208cc5209b6a761acdb8af5eb81c50132a318986ca2c8a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cb38dce684e7ee712554308c7c3ee90a

    SHA1

    ef63151a043f881a3b05e33c341fc341803f2cd5

    SHA256

    c95f60ce85872d0a8af96bba71e76cef8fc186e5eacf5a6f80733ebb087501c9

    SHA512

    3034e506f1ca0b2b6c540ff0ed3d98bd53310d25c5352b5f5ccba529792daaa8cc61b1b286e56f2e0f95a9878f51f68103a46e04013dd1377dd1f89f5231a058

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7a3b1bb6ef0116c88d90630c840d5a54

    SHA1

    65573ed966b685e71ab1243210d5982d56745fc3

    SHA256

    d4226135a6826140544af9353582fd1974e889c0a9a860120bc3e2dcd11929e3

    SHA512

    d3bf6cb821c846b83d33dd42ea72935c85f0170fbe6dc731b70e1092fb0db003778affbce343cc00deb06e1b55ec39c5a15329031c5dec5f8fb3e78e22e60824

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7158fa92a7f82ee8398f4774bc76d24a

    SHA1

    2297a362002de1aedc504e9a0a81dde5c6f8dd02

    SHA256

    32552f125038bff20899757f0ef513e4fcd65caf099cf0c3c8b010323bcfad62

    SHA512

    cf5d4e48359c16aab88eaa9b31b599e56a3e4065c2352b0ec9433dfa514d6962ee89a1c281db8cb46a9b77507a8a813bb5436716d065f7642864bde937fff522

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fa694d0067088cfe09411754d7c3721b

    SHA1

    d42f31dd77b0ed9a90a1373889f17c5e08b3f727

    SHA256

    35de5d455bb5b410933b1f2766cf81ef49ed3bd6737202d8bbd6772a1e6c8b9a

    SHA512

    854622ab32c75554cc7cdf245326923bc048da96e5680a15bb774fd745cd5b79a9867868e8b60b14559e6489ab46f5eb9a11b70ebcdcdea97f07ab2c22cb2b16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    717bbf209107a60bd18c3ef99cdcf74f

    SHA1

    85255505c3d7834f8734db448a72e4a03c972248

    SHA256

    f378bae1a929af56f1a06c8311692a90900b0858caedc5149726409b12f1a70a

    SHA512

    8c81564df600160b5b260622901b59e55fa3e244fbf47729393fb5f2b62b0c07b01c229483e69d7e86fe533e5c97d311989fa2d7441e8bc206e2b0af0443eb1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    57d4d5bb5738c2051a8c0f51f696a059

    SHA1

    3ef78ddab2eff408c48dfc016bd3d57c69e0281d

    SHA256

    7820e5fdf2401e4c0f060a9a7b7c7adab1196689edff9f01a63c01746b7bf6e8

    SHA512

    92720af5f5e9cffceeae6a0f0ee80b0bf86091e20323dc54f1245950292f3bffde43cd846fdbc52ce70a6b4a7c19d59dffa56b615ef09a3ddacf1ecfdddfff39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3f38f2cc30d58b608fb54258938b949b

    SHA1

    ea3124f90834d16f190990a92bca22d129c9a715

    SHA256

    b38f2b52b9fda41dc5214dace0dc6c6a52475c91d2d340909c8f2725f749ec23

    SHA512

    64a361d4f8b78e0a8f7267063af485c4d03c3ffe4f34902d3ba3c8f5935854137c0103e3f3f390b27f4d4584d64b5004bc6a32d39655ba91108ac0ac625e5ba3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ae2565d83495afa392265b88e5f5e179

    SHA1

    f2d10dff7a87b0823af10fdb7c42e6a003189ccd

    SHA256

    df2e8b23be99f068aa7d0119292c6b73822bafed1eebc28d0da163be04eb00e0

    SHA512

    c6e4ff1b73f9d3335bbbec50c8e0452feb17c3b7dc83f2862898af6c56d12da1ce61eb3cd4d41fba11f3e4b6b0d04b2ad980b9c90228ce17d4550c7a615c5897

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7c2e9634e20400f4f0a87077c9a04c10

    SHA1

    8164836e9208332c4d83a309b3f159c03ab6261f

    SHA256

    a17404cad8ef07e0e5cd1f9848128af796b4a245096c6522ed98e7b2be854da5

    SHA512

    9ca023e3f0e5f118e46af54551a8f3aa0aa62b228bf121e481ea266748668eea9b2fe985d8172191c2da59eba99084a53c3c76c16e55cde6dd20f1a2f81af722

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    243fd19848719bd6138f7e373aabdbf1

    SHA1

    576c4ff9923429f6c4d9cf6b43f1386541e208f5

    SHA256

    b6ff96b0f68f8c520486f62606af340f04b2ad46bd47211f3449d65c4748c90a

    SHA512

    490a9541830da0ee6130a3e2a76757eccd78a58b427d4f68ff85752f28768c5fb05751acff49c7850c8267d89c292d0d41c84bb71fbfac02b304c3330cb94f16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ff371a3b17dbdef51b5811dda75509e5

    SHA1

    4194ecdaadf2e0c075c1387a36511d61f5268b95

    SHA256

    d57d9ffda6b6a5d41edc1d89293630c7e93d74f296aec3fae217eb39aa1f8156

    SHA512

    106e60a99622a7f77f91f0977db77044aeccf70c6213603d76f82185f4efbb96627ee7e00bdd0de75e11c7d5d0cb1aae83b447eac33ff43c654aa450020eefe7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7fcd01632abbb3985eb57fa18c3de1c2

    SHA1

    3211c9aa44ba4372f2b32421c8666f2ce7f6cfc1

    SHA256

    1b7cf4132d49bcb959e01d40444b66783c3732988ae7605720762f3d9a2ac597

    SHA512

    a5983132e80232c3c276a8b15e957bb761d5fccfc4310ee232773201cc3e72f9ba7e5976207f11cd9c0a2eb797843ca6959c5a0a175d03f8f054b198d458b8f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ff77ffeb5fee98be2b7b1b6f22d47bac

    SHA1

    fd8f81b4bcfe4fbb4acf20c99546a5c480db64fd

    SHA256

    57f37396797dd048a4481805a417bb0458cdab56795798b3ec588af63d598326

    SHA512

    2eab06f0ea2e1b9d2c1b7ab7b881576d2cd113c8b93c959735b4cf56e0e534f51ce0b43fbb771b93fede262371a1197572b878d3a6cd0b280c9defd39e837687

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b6b01c592d970160b7b3a880ad2d3cb8

    SHA1

    330b448cc7e1fa720089c0377cb5d31b4fcacf7c

    SHA256

    fc9c9e2cc132a364048545681f04486a3583c24ba4bb32ed3ec6aa6299047bcc

    SHA512

    b966fab20ba49d31bda70099f65119fe5f3db696557bd37a48c538251b83f8a9d514ec4213b80ff4ab7356b6c7b07289796eb0079f107e74962bbca66c746891

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a0bbc235ce996b38176c9f61bd09f78b

    SHA1

    00a9afc580bafc833bf969c3177971b8a77264c4

    SHA256

    7fd834bea98aa89d0ad2df8f8f451131b7806d1704a8dfa8f89a4ecacf3ec1ae

    SHA512

    a5826067f4a9c2795c1469cd2e0ee930e179b132f5a0f1d6687f16c34ea7736e595d1c514e68a79941976a86d25ea8ab53506b0ecab0de107821e46088c08816

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9f09852dd5d021d286266bae0b3d357d

    SHA1

    5f98bd96625f05c4310951002bac2746d70642ff

    SHA256

    ea4c77110443997da8bcd8460d925f87fad7ddefa9e4aa7706566752cc43a351

    SHA512

    538a44f29c23e2463548225d935a9dc014ee819d8a632317d0c0a237f25d40674a89f48bce0a9a663b88c14b3c9841d0ff474778008414173411e001c049fc96

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f29411f70ef9419ce76b3d169608374e

    SHA1

    26bdaaa267ae6e75441da870762b5bb35e285544

    SHA256

    608534e9e92c39e4660d2a9c01952eeb788d4f3223e6fe25948ef0118892a0b9

    SHA512

    b4e31f981679bb4fad5ebba1328cebe415ea1e7c1c7635d4c40f85957268b9d4b3eeac9cb9da2800934f032c72e94e03701fbccc5dcbe65b4068c74953401249

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1A08.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1A69.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.