Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

a37ed7d298...8.html

windows7-x64

1

a37ed7d298...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2024, 02:08 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a37ed7d298c20217842a67d8e9f62ec8_JaffaCakes118.html

  • Size

    41KB

  • MD5

    a37ed7d298c20217842a67d8e9f62ec8

  • SHA1

    8ecc317d35807c6feceb549536787399ea982235

  • SHA256

    63b1aa0bce5154904cbce32f756c1f12d739da11e0ef33819b19178445595013

  • SHA512

    f55069718a2e210c7f7ed7c0cea9bb2815f8ee9bd1c8d012a15af56e342cd91ebaea0074dd4d2bab102342a70be67ae598edaf9fe92cd0323abf771e6c9d27df

  • SSDEEP

    768:SQ+3aton3juzx4/wMhHGbL+w0NtQvHQJxsLI:SQ+3aton3juzx4/IbLL0N95

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a37ed7d298c20217842a67d8e9f62ec8_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2232
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2232 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2676

Network

  • flag-us
    DNS
    www.yourstorecentre.com
    IEXPLORE.EXE
    Remote address:
    8.8.8.8:53
    Request
    www.yourstorecentre.com
    IN A
    Response
  • flag-us
    DNS
    www.yourstorecentre.com
    IEXPLORE.EXE
    Remote address:
    8.8.8.8:53
    Request
    www.yourstorecentre.com
    IN A
  • flag-us
    DNS
    guruincsite.com
    IEXPLORE.EXE
    Remote address:
    8.8.8.8:53
    Request
    guruincsite.com
    IN A
    Response
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    799 B
     7.7kB
     10
    13
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    799 B
     7.7kB
     10
    13
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    779 B
     7.6kB
     9
    12
  • 8.8.8.8:53
    www.yourstorecentre.com
    dns
    IEXPLORE.EXE
    138 B
     142 B
     2
    1

    DNS Request

    www.yourstorecentre.com

    DNS Request

    www.yourstorecentre.com

  • 8.8.8.8:53
    guruincsite.com
    dns
    IEXPLORE.EXE
    61 B
     134 B
     1
    1

    DNS Request

    guruincsite.com

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    903cc95906bf4e3d463c834e0a27faf7

    SHA1

    04acaba7b53ae881d056f3006133d4ab7f86dd51

    SHA256

    c6a2b063eb2599c36c911d5176c674961f155f3be36ce353e7d1756c72ff3fc9

    SHA512

    362f709fdc3269dedcb3b8bc0d656b0cd6b82797e6d587540d7c8b5a2b5758f1f14b67ed10325f786d1c2b24c58b1328b58b57475ae6930a4b381c678662ab7c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7eb992f3d0c0e6717f8f199ce35b3cb2

    SHA1

    9616f40836906d389f8aefe6f62f5b8364e59eba

    SHA256

    c7880fdf4893ba2dee98b7fe3d665d2a9fc0326090da3a35034809d79488aafd

    SHA512

    681a65454d34fca7c14538730561eaae0e0498e5f5c52cbd21d71c8cfdcd5f5cfe199fa5ca51252630892e9a8e1ddad4eba5b87259e2bfab8ebb3518b471b1d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    247540d6193fb89191d886f0d764d4b6

    SHA1

    9aa258bb80ab070f3263bb4e0c6d53db8bf4f953

    SHA256

    82798c76b9e0a14e1ad64904535e06d55961519b0a416c966df7e5b198baf2aa

    SHA512

    ee6ef2f2f0f03ad4c8b8daddffe016b6d785bebda2cc2f62dc992734c3a8a5c950054404361d6b7e00aa61e6698feabec9f64650d1ccf8879b055d0ef10edf8b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    304a1d49629438716f66a342a5f740e0

    SHA1

    8080c7048aaa8eeea0ad9b3387b5c1c3bace77c0

    SHA256

    2fcff8bc21545c34a39a5eab623a64cf8b71951cf3f5548ad148475555e3ff85

    SHA512

    8e9b5f472aee09e41318535230dc076678f06458d426fb74776bec07ade2e101aca44ef582cfcd337c0757d3e533354be8ea501df633b45ad92b300973baa7e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0b17c7f14fd444286dca484ab9c59af8

    SHA1

    928f035d15a3b10415ae1f1024d7384939ac2513

    SHA256

    605fbb815a974ba28c7f170c1ed1edefc5e3f2d01e96baaa190205b6f6193e1a

    SHA512

    313e77d4481a6649178e8b7e0a20f22706c7b7c9812c2a22526e252ebd9c3ae38e16f30c09c3d81d8968f30b51eb6e0c55bfb5661ab344e2bb6c60e553385072

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    49e39ec071f2a515367188a78ea7aff0

    SHA1

    eb18020ff3af108acd758189376417f1b0c966a6

    SHA256

    239f26f53080281adf123217a85b7a33442590a3af1981eacc438e3d13d5abdc

    SHA512

    9c6b19c018c6cf8c4c0dad4b6a35df6f763b8e3b03690fe0e46f562a0d71aee9179459248e406889aacfe80b8d65482e5bf57e158a85b6dc2a8752e08600b912

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    37d9969610fba05d61a793659d8d75a2

    SHA1

    27eeb2c99a6b82630310f4cd2dfbbf5588f4ec13

    SHA256

    3e8010b2691d123cb6de3d44c56ec4bbc3b839b2c605b3476d7f832f485a9a04

    SHA512

    79a8176cbf7acc7c20c023fbed0aa1fcbd43c12ee6acc5cfd29e0a6113bfa058b32283a2f2dad3931fbd8c2fa4e160a2bed2b25d857aaa0131224229b79c9378

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    106c989dbe9e7d48c398f9b04de7980d

    SHA1

    7dea8a75015afd389ed68f0f1f0c1fa6f6d8da13

    SHA256

    cbfc516864bd6a062c8fc58cff4448183e5f948eaf999c18c94c2fb43fee3a2b

    SHA512

    4838083990ef687eb5760a207ddb9d50fe9f1b4f32de4b061fc7a7a03e7705f63d3499181622972906dae29996abe3e2f06618c08970b4d4261e4fdf501b8fe8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3e5b64fc3dfa8925c108b91af3712e14

    SHA1

    4be8c8446ac43f2156e7163ea65c934afc42c8db

    SHA256

    1f15e8712c22b62b7916d6f0da56e374f8a33c8fc82adfd31b086716c35048ae

    SHA512

    3f4116dc45853b88818f35b3ba906e31cd8e7be4a548e65d4cad5233240cee8bf8c4bce512f86bbcfa2bef3963bb5ea56fb2bb8fda5faed8ec3c1dd4d83afeb2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76fa706b3b81cb20a185867f7b8835d9

    SHA1

    8798bbc7c1dad6741248c45b159fb5575e9a687f

    SHA256

    0fab436389f0cfb0e9982c800ace7428917374ee12048ecf819b236de68fcbbb

    SHA512

    58dcc5f198fab97bb9e473a3ef0ad479df37d64d7d194ebc1f48befe4997d737e6fbcb032da36edea8a024ecdd524eb109940b47d528d7ed4f3e861318f176e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e01fbf84adeadae9133c7ed6db45d722

    SHA1

    7ebfe0994e17a69c5b3e531604026bb1d1216e50

    SHA256

    e71c2676ee5ed64edce1b66a0782cc7d99edc2712a5b9322b20817c0e18e74b3

    SHA512

    8f398792d289df130c3831fd685a74d11fb38f104822bd236203599e699c73d8351aae72b0e73211799154d7011789a0709fb6fde133042968089938ceef444a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA8B1.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarAA97.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.