Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

3fba311cf2...8.html

windows7-x64

1

3fba311cf2...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    13/05/2024, 13:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3fba311cf2aad6a977acc7c8480cd66c_JaffaCakes118.html

  • Size

    15KB

  • MD5

    3fba311cf2aad6a977acc7c8480cd66c

  • SHA1

    30f1286c1b4b57613e3cdbf4a56cd3c5dc5245c8

  • SHA256

    79e123b83fda2e9bb95d4499ed8d18d076d6bba020be0b6110417f92717fe2e1

  • SHA512

    d3f05bb55ded8aea936bde3cd18a5c4e3e4fe6ba02f02f0f64c2e2c50a8b71eefbb39988951d333c324b672bbc970cf315cf473523ea06bdf3978a2d8c634adb

  • SSDEEP

    192:x60Ua1HCPpT+r8x3qgtvW/OrUjLsUCR/tm/G/ecaWxD6kDK1jsVNOkdzldlQi+UN:MJP68PlG9tjsN+AM/a8jkE+MAEM

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3fba311cf2aad6a977acc7c8480cd66c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2068
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2068 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2180

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    528e395db56f56c817355ec685be519a

    SHA1

    590056755c51fa72900ad066305e133ca3574fc5

    SHA256

    c6fecdcf5b83c658776e3983bb2f4e83576e8224a49cd1cad27194db63d93d92

    SHA512

    bc9cfb717c8262917d08ccdeb5d8c6200711516d101e59c418287a4c9f19ec5ab69c1b7a15cf8f1305c2f8535a666b62df8ccd0071a68edefd7cef49f03a81d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9a99dbb8b39f4ac431564d9cf0a97c6f

    SHA1

    ea0e4addfceecc116036e55050244107e34b4bea

    SHA256

    eea66bcd901cd15c9b43a8221e16af575f6c135654ee7a97a0e649d0fa5959f4

    SHA512

    8bfb0a521511da61fa73c5a32adf7848d1b25a072581d82cd2e2ec6cbdeb9aa23e1cd710759c0c4fb63477bd9ab908babab8ae036d7bf5a40b6269f22aaf439b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b33962e35d490b59a78668b5d87d7918

    SHA1

    68c6a6cf98f095fa215a451c60cfb62879a25dca

    SHA256

    97903821c0f8a8fa71be007c8218a14fdc5ee8007e8c119d9a82ce323bf3a5ea

    SHA512

    df53341a982270ed473cc04707bc092c2e6528a5ea69a80474c11a17fa427cdceabb5ebc936d34a3008b35e54ad0db23e7efd33f5969724596ebafaddfeee5fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1e7a6f64308930e2ce4d71caccb32f8e

    SHA1

    75a7b2bd2bf85676470b4fc07cce252d1e14cca2

    SHA256

    05fd89ce4a88eb5be55564c98f2d3594a5c50671d979722e2aae3d18026377d9

    SHA512

    307ce53c60e114bba37ac6a6362c9ae3c24faf915bb27eceb5ceab80c89e8618cda90cd38eda18211e1d627bdac8291a0af81f509f1011b97994843bb5c74ecb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2a8b026af7b73e346346e9f724855f6d

    SHA1

    b7aa17f937ce9d5da3706ddca4932b399dcb895f

    SHA256

    1d1385f95f1e75ea15166dde980875cac679b00d5426d8b49586a21a99b91ada

    SHA512

    7886efe5d9bf95e9f106e86bddbc9c186a646baefc494441ee85b0f8d1332724003223966e474999a2f6a1909acb980246ac8a881f909da6ea6c27c63b93ce5a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3d023bbeb3cd5ca3d8bda879c28539a1

    SHA1

    4ddfd5daf29b3e93f3ebe2b406c1ffc6a4ae573a

    SHA256

    d21df3fc9bb5b79bcaa1977f64eb009dd7ffe674b2d8baf9ab4f09cee1072934

    SHA512

    642036e5791f927090e16982ed53d53bd732af19c60780eafcfe88260e3cf60c13f59a6193b986d0660a1ad267aa5b28f08640e01d90ada80a465ca872d25ada

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cf877b075f5783549e36ded848dedd4e

    SHA1

    7eede4874c3f85b7eb4b3c76104de79368f38e8b

    SHA256

    906104af4b964429de9d9689fd6a4202d925d0cb7fd357788b3bb9d78863995b

    SHA512

    7d8ab6b5c1e0349b46732b1824df8dcf8094ad4a6fdb909c5ffb415a86ab905cff405c36915356035d8f183c6b722813a94984436031f2718b51ea5ebf77a6a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fa4853986c4693c7f4792380d3034b55

    SHA1

    40ed9ee15b7082a8ce6685e7baedf26e1ba07f77

    SHA256

    83b37712773a7d5a4c1404beeca34a7bc82469d5aa516b0cb6abb6c0694db77a

    SHA512

    0eefe694dcb21b768cbc6b409f1622fb8b551eb98cb8f9d06024957d7eb95e0efde2d1000d35f32d4bb2d0d2246dcebde96481574593182588ec134ebcac844b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3372.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar34B1.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit