Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

4ad948a9f7...8.html

windows7-x64

1

4ad948a9f7...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16/05/2024, 11:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4ad948a9f7d50755b8c9be36374c04b2_JaffaCakes118.html

  • Size

    139KB

  • MD5

    4ad948a9f7d50755b8c9be36374c04b2

  • SHA1

    6e296e6c7e8499ad35e3264fa4e3ce55f5736793

  • SHA256

    f73a8c89ed35a7637ec989aed1ed64c517bb256a3a054c4aeb6001beb341864b

  • SHA512

    f52502b3357fe7328cfe1896fafdf4fac0e0961ea2da4cfe779a43d41c1b8133171fa13e042ec0b37c15f1dfdd852992b5e25e4bfd351e41fdc48c9081156dda

  • SSDEEP

    1536:SZNT1/JKsl4yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBw:SZ9K/yfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4ad948a9f7d50755b8c9be36374c04b2_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2240
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2240 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2472

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    703b958e84d949fd8b955b987964fcb7

    SHA1

    c5ed2d00dc6f41d7d0717598b9afb1c1564aa07f

    SHA256

    f960eafb2523cc7f2d49b9069b05694caeb05c26944a535eb9075302a4592583

    SHA512

    417f9ba34c8934e0a51a7e7fa7d840da950d718e32017b2f28a7c7b094e8527abc7caf6270ce86b0a0099ea7a5167d20853b5424b09fb9209ee7ab7bfa6dc47a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3d792a4b5e0e91ec408248e2f11546f2

    SHA1

    e3b41d2328a6d5e04ba673904a7415071d5848e0

    SHA256

    a4de1590ea02a9d80261ce86de8d7338f83205bc3fcc25fa28de50e7bb6e6f50

    SHA512

    dd3f62c4e8e100b00090c6de482b355f000ba47d9c178587d54d8acc363eb51af3616fff42843f22bb4aa641022c9283f15490b8921e1a896ad19a385cdbd6c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d2f45c2794985346d621d82e5efbb2bf

    SHA1

    9cb649d6e7c95c875d8aa711306d9120849fa092

    SHA256

    a5a362a597bc4a7cd4923233cb1f5ebcb79cb6c85f7819b85fff7ddb310ee44c

    SHA512

    b99f659c8bff5d03e4c10d85c3e3a473a82e232e51efea36ec85d98a337e06e2f74999612447d0f5020c6ac5e86310cc552fcd02682c80ebd395effeb4f9e36f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    45cc26ff9324dba7871a53a3ffa480dd

    SHA1

    f29dc09995d9315553209ee9bbb190b104c3d414

    SHA256

    a516a0470de7f3eaa04ca4e0a7700a66fda4d269286535755dbba9a0418f47dc

    SHA512

    020692dbbd65ee1b007ba806c5dfe24c3cc856594bb289162e89bd3e4ebf69140503bc809b7673d0c61da510149c5704d10ad97b7535123769674cbf02f0c306

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fee3cad49f842482de092a1f30a7e273

    SHA1

    fafa15e05e43136881b9740c762cc2e4309be1b3

    SHA256

    9c656a63cccefcdd3873aa6ee387d282cb16378227e0bab8db8519eb62e3aa3f

    SHA512

    d8df75d41b9904fe078328262336f9c7546f541d54d57038b5912117a785719fc78dc5f529dd6d019322f6a16d15d562ff2c7dc031fc4f2e63ebcf07d4267c0b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1dedeab7a723dd3e58c7e4c9ba3949f8

    SHA1

    fac546d1fdf8f33ad0c7f8a0fcac975be601bbc1

    SHA256

    8531fbe995ff84f78c4ba33b9c3f579a6523efd30fe25f335730ea04bf79c075

    SHA512

    cc81ebae2be6c845dab6a4236d1c819d79431e47c73aab818233a64423b202fce2b4b914a4f256f9e7757f2a160679b03826fe4a128eeb60b47b80a2d4c5dee3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b1005a496d021d75a1f6ca7f56731fbf

    SHA1

    25591b611cee6754401a482076e81c44cb7158a1

    SHA256

    cd99f3ef75f8c217d72470c9b3c2912f49a4eaf9490e0d8e0ea1af235af6e58d

    SHA512

    aa102f34419752a4a98eaee9495c20b54e3f118fea39d09223efde546e7a10d6e454b1b435669d59ab1f4259a2fec3ceb2f9e4e6a5c656f734e6e309fdae1a54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ccf25bff2c643ae0c0dc9f3a0517b7fe

    SHA1

    c61c4f3c3eea36687138b8e2e91e0f69a9d2f221

    SHA256

    a04fd5bda89123896ccf8a80cd41d5a8261b2d5b68c2c5560c737cf1c63ae098

    SHA512

    5859336a897ddb8108a229b9db5acb14487ba5537e9f51f97ff456da4f9dc83e03d756321e2cbb3f539907aa8119053c769e08da18bd03c172ce6633895cca0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    40a9549fa063e58c82b7e6b24be5c8cf

    SHA1

    efff149810a34a929de55c0163c420f60863e92a

    SHA256

    11c6678fc07bf9e55f5cc0f5269a78ee2e82555690da8b3fb5cab46acb4e87d6

    SHA512

    4ca90031c8a8eb4a1dfb570003e676def64dd7085e1331abfcc2a04c9954857d1aea7c9d2789e66e186320fd1d9802ce0feb8ca59c967b2012a40d1698d77bc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    03b1ba665c0178f2547d12a5be8d6ca6

    SHA1

    c04a8084d0bf785c54d6f1e8832bee58841a0605

    SHA256

    f0da4d2f797abe263e06c4ff926b930b966613182439df04c5a96931917f3626

    SHA512

    7f4d4f2c9680f66c215c205ccb0a8176cc915cbd2c2f89cd557ff6042d15dd659797cfe1bb33f874894a15405092f1937496b30643f999b50a4d881da6e1cf70

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC40.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD53.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit