Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

b0db2fa2bf...8.html

windows7-x64

1

b0db2fa2bf...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    131s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    16/06/2024, 00:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b0db2fa2bfea880e41876dd37e1cff2d_JaffaCakes118.html

  • Size

    301KB

  • MD5

    b0db2fa2bfea880e41876dd37e1cff2d

  • SHA1

    3ace46d9d2e67ee98d11f60abef149d517fa7be1

  • SHA256

    3f57f6ea3ad81203f16da80843eaa7a4b3d63433de698a06f1b26aa1dc2ea6ae

  • SHA512

    e5f370a4df464e60ea268d75371f1f113336f75873aa0ef5bd9cbe9a6149576bd057dbb7ece61573d5f1c464c8c15aa7c561f8edfaf70ce7807f7d3acde1ba66

  • SSDEEP

    1536:v6+SbTTFZSjT2mNkltM/jVII3IbIre0MtBm+6oF2JLnvbnv9cdZ3B9dE63s770Ju:C+SbTTFxmItCVI26PTQoiTCw

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b0db2fa2bfea880e41876dd37e1cff2d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1740
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1740 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2172

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    ca0b3264b14d06849f108a5419dabf99

    SHA1

    bdc007be23f13326e8e89fdff690816d0c3c1495

    SHA256

    f6ffe94fd9c049580258ca1476d1e5be9cfe8fa4ccd15830fad4b937b956c9ab

    SHA512

    7e73767be09a75a2e28a0f5a26f7087288ff29234729657c194ce64e153f5405729e8dcafd53acbc3da6460e10935bb45a0209cef7a745d03cc94445aff10bd4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    8f4f7c4041a36593a823a1f9f7d149bb

    SHA1

    94ac7d8493e932292fcbe158f9d2e1206218d435

    SHA256

    e60cb3f64c2b0b0b0ddae8159017b44866a78cd54f3c755fea3d53b87ece85ab

    SHA512

    1a1f5b8db1556ddcdcddf6934bc71ea670a71a03dfb6e263648552d5112c60816e977bc671b3dd756cc97d0527927b933ff407035813ec8b79b726ba7d01e819

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    99ae301ab92f03b8d619edc606837ad1

    SHA1

    7595d4a8f78f333d30a94addd5d5034e39dcd693

    SHA256

    14d1b2d817d7dbe230927a6da715a5e7b77c90a683f17381476a7cc5f901bd3b

    SHA512

    0ff980452482fe30cc83acc510d28e4e028d09898fcd61ee33bbb84134c36fddfbc6281dc0d47d2eb9d74da49089e416a3475f5b4b253341b42fd31d7f05a197

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    ef27caf5383db80e4ea51e7118f75f6e

    SHA1

    dd2ac73fd33fb8de548b879ac5db4feec0d9dc28

    SHA256

    649d479d77b465bc0a44af544bd44b96b1f3a4768599cba0ca5a46bbc626d2ab

    SHA512

    3cdd03033510590b62a01d4986b043dd9361ca634aa328e0468c024cfdac6ca8a174c46a6c9ef6f9ce954947d250d78da03b4b3c7df4139fcad4d9e243fb151b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    1496d521a2398329c49bea3b7cdf6cf3

    SHA1

    57f739bc41a40357862c2c8e6bfd1b05bde89c82

    SHA256

    205bf1b6525ca1c113a3199d67712fa8f5166b393e59e4167df190b305690eaa

    SHA512

    fa43986231cc503cc525f1d702a48fb4f440db1c02bdae3c23e0b8c818ef3827e044b43b46866ed1bab5cb6b61eb4793c20eb7535642bc3df9d1d02317d79e32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    6133651b72d52c9d4ec5dbfd6e1386db

    SHA1

    b6be8ecfd9e2a68facf7d7fe8889ad6ff07b9b8c

    SHA256

    575becf0317cddcf93637521c84b3a4c122b0ebb7a21f209a0a801a8ab6320b3

    SHA512

    9548966efd9b7b11438c4ff4fcb186a0e62e59d4d69b4f56100e0a81588bd190a834f19f51ecdb9d92cf9f00ee9c0ddcbaa3bef9e3157bd981c17c753ee8fdaa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    a724caa780096b57475321f96f647d3a

    SHA1

    47ecaedb60a79d28abb6ae35322876851e046485

    SHA256

    311baef4261a83d11f6ac37ea00d8f19b38a8434c2a61b3e45806222d6aebcdb

    SHA512

    fac060c85546f2b5864cd9a796d65a1a56a51ae156947f53e641d4a534df58780df4a5e98bae7e860fa7a62fee42e6074777289d89fdc1e9f0255dd1d5078b14

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d3adc0688752ff17d507be4072671feb

    SHA1

    0ada68b5bcb1ff6e396616ee1b59cde803cd0efb

    SHA256

    305b5d9f40c2d0b7af915f6a540b8bf46681bc293778feff9e24b09103743ce8

    SHA512

    68fe25c02cfd3cab738f428e3af4a25aeb5bb59c2485bf72b29620f6c1867634ee634ac0754b681fdc5e7695e26becf870d58d623ef5c22032ccc297436f4383

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    dc3d5fbc576a694e9fc84c0281a867f1

    SHA1

    c36c483d4ddf78df79f3076870797b3af6def402

    SHA256

    1a4198670010edf19a3a2e99a5f88f2e7e2aa3c2ab63a786f14a5d50896f0d6f

    SHA512

    1cd9d56e89685df8e1441652b63bb68a1fcf8a88e2753b4bc6f87bfc71025566a91f8fd0504ad256ce64b11770cb71fa18260781e3c3a41c332e7c1a4b43e63b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    cdadceff7f90f82606471ac4a259bc4b

    SHA1

    6509e54c407232faf644b1dabb5d4faf4e9725b2

    SHA256

    cee67d3e8eacb2e3174fb3397c80625f265af08f6b059403c4d7f50685b94dab

    SHA512

    d475d3526962d73128eca51b8765f5335eb33375a321d09fe06cac3a3ca830440328491a875e5298a5a63cef18cf07aebb0cf012a7f32fe557e9a499c70cf6dc

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CY2G78MW\rpc_shindig_random[1].js
    Filesize

    14KB

    MD5

    6a90a8e611705b6e5953757cc549ce8c

    SHA1

    3e7416db7afe4cfdf3980daba308df560b4bede6

    SHA256

    51fdd911dc05b1208911b0123aed6b542e9d9f04c94d7504c63d89ca259ef679

    SHA512

    583636571c015af525cddd5b8dc2ac9964aba5a7a9b0acd3908e4aeb4c2ee74cdfaabe49b0aa13d7b142748542426864e91e88e90d7f73bc647f0bfecb0ff7bd

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RSAB58HZ\544727282-postmessagerelay[1].js
    Filesize

    11KB

    MD5

    16f1b19cd042265a234dc208fd7efc64

    SHA1

    02f67c09980ab6057f073d29f4c3f2792257d3a3

    SHA256

    509be2bf36ff013c9a1c31ac54b751aac2401f14496662a16ea8af6903d21b27

    SHA512

    652ce3d209d5d4c1e39f06e41e87a14a3174419b8c9cff8e5683846afb51f9f4939c41fb51a7aee67d9d26db80b370890182ab7df089f826479d3e5e2843566e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RSAB58HZ\cb=gapi[2].js
    Filesize

    66KB

    MD5

    0fe383a7ddb9bbaefc3105b3297f5583

    SHA1

    f80c9d789f251909c7560bd91a9e1b9a10c26362

    SHA256

    d7ad4aad4e48174c30ef21fc32c9380659d2c99a5c39680e10ed9752139d8683

    SHA512

    31de1f59377bc76e5d602d02273867ce750bbbccb7edc8f2803c0188002ecae6752ac3ec31c2108e64b0d871b01e6a8a06711969dc68bd9823303def0e7c1ee4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab345B.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar346E.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar36C5.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit