Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

628f66df97...8.html

windows7-x64

1

628f66df97...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    21/05/2024, 07:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    628f66df970d4bf4655773b871ee238e_JaffaCakes118.html

  • Size

    27KB

  • MD5

    628f66df970d4bf4655773b871ee238e

  • SHA1

    3c3823c6d12e9ad4cf198ca34945b8f4c558f683

  • SHA256

    139abdd26fa4888b03ebefe5e73bfaacdac282f159b7c566cfc3b2e61879c8f7

  • SHA512

    5738722e9856c0217f4ba1df435d2beff98c86809747d0992b6d5b57d56793b8eebc450ea4803ff96887cb6e4a2a1055d2fb9b1918d3279d615f6dfb2f2ff9d1

  • SSDEEP

    192:uwrIb5nhenQjxn5Q/MnQieXNnBnQOkEntQCnQTbnxnQ9eHvpFm60X5fQl7MB3qnY:gQ/9m5o5eShKS

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\628f66df970d4bf4655773b871ee238e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2208
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2208 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2680

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f0490720ef6e5c0f0615a9020a9fb2f5

    SHA1

    7721379325e0273918d08eabc770ffd5e0e74230

    SHA256

    09b0854515e90f0273427423cbdd9b7c1563190e6725c3b81acfc929d5e41d77

    SHA512

    af4a2d278c3a51138334cf88cfafa6c9e8d41287ea6d23c0cf2bc9c15c2a176fd74a04f47485f894566bf1ba7bd73426441af0845138028289551c73ea140382

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0283f81adb1f1aa6141c806673c3d5c1

    SHA1

    fb7f9421caa79239d5125b9379bd454050b3c9b0

    SHA256

    31e155797d55f924d60109a44f86727ef19a09b2af7386e89db29d598466dda6

    SHA512

    80a96ae8e8047ee0cdd25eb0317a527b1a0d91f198c37759c338a12237659fa1fb516d3d321187f788956aacd15263e059dcd1812520ca993d70f504c9a14888

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c4fd953659d0e69503f4e54d90395863

    SHA1

    b7e39958068937c9f54171aa3a47697e75c4d2dc

    SHA256

    d0e48f91459ce535ad23afeba8231a39ad155247339dccb2d838d4e8765182ef

    SHA512

    461dfe9b499fd90461ce50a5a4faf2a778be761442b259a30845e4095bc8e3738c07883cfd1e1b02dc2b9352f09944faabd2241c935dc94d9a9b1d8fc959163b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    93fdc94d495cf1e09883c027fd12d0da

    SHA1

    30695f2fa4ab670a84674960f5b8bc90c7dddbab

    SHA256

    324bea94b006e1437439735411cb852b1bc21a9d15b216ec01f8c344fb52f2b5

    SHA512

    49321816369e89f54f8ac9011e57d42213aca5aac3ff30716a7ddc99fb84f8ca89eb7b7b6c2e11ed08f3f1bea67af8f90eed820c6ded992d1212a009e1c42084

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    760af5b06c09daa456c6ee8d5d4fec2b

    SHA1

    8a2ad09bcdea4b056480636602d16b0905ad6317

    SHA256

    f577d1993f58669efca4fbac7d02d05eba839bf91a38a8778cff1b6d11f1f60e

    SHA512

    7076b88ccfcebbd4d18971d501740cb1fa0b82b79e3678e17092d9f9151f5d4abee88917136d6205d28ca0f20e48764fa37c8280f6d071a97f4f64cef2ce34d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    805365fd866dba052df5a4dd893bae5b

    SHA1

    405651ea7f2aa0f8fb57fe2407986ed2b55f5ed5

    SHA256

    60cbbf08a5c603da95e7aa645b4c9b8d16dd2f26e6a39193065bf71bc82083cd

    SHA512

    ca146e21f7e97d77a699162300d05fb027772523637d00b69f816383da9c365f4c837c51db3aad3bf8ebdc79eb90d04e80017fbb7c3d4d7055afb6b3d097edf6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    46ff06cc29aad2386f2b2d220244bc5e

    SHA1

    520a59108c23d4a2152cf795cc13e3cdd9ff5da8

    SHA256

    0a8d0e46e04a2b1cd0418c61a104124b462b6bb7e4db6945ee26a64d85f40be5

    SHA512

    34adf7f76ee126b1e537b039f4feff8fe9fbafcb7713555c4fc36aa8905b1ad5eb20e638c5ab1be6d6d616df17c927f2497b1feb3b4c4aaf679c5edc1957d22e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5c3dcc3b80a7561fca54d1b4b516ecf9

    SHA1

    00aa2e0294943ee5e75a5b44ff67b6e539ba1420

    SHA256

    08459456c83c48d5cf98bd8affe1801e8a87f13864770f994fadad250c726938

    SHA512

    0ee7c334b8f16e1853222c864d099e57f398f694938bd9e633c690bd9081cb3da683147870f7a6b806041d791b9e9da27af1134daf102c3c63497aad589a143a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab27DD.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar28EE.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit