Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

bd5ebe327c...8.html

windows7-x64

1

bd5ebe327c...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    125s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    19/06/2024, 16:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bd5ebe327c2e4363883169092ad29d1d_JaffaCakes118.html

  • Size

    37KB

  • MD5

    bd5ebe327c2e4363883169092ad29d1d

  • SHA1

    df39536ea3f75379ed5730661745b3e7f2d8f4fd

  • SHA256

    8584d17a65ba4d4e7d133ef81a46f4995aff315994e06d952c1b789742a6753c

  • SHA512

    f00e931816542f9be2f5acf750236bf42bd1c084390906fe3d07df2cf2d081a7ec6ae49b2444475f58573ca25bca1eeae9fc6db7708421c24040923fb4412155

  • SSDEEP

    768:bFqbG1bmrsb2vbxI5Ix/g9br8z0FjEoGe101JR4JiYAX2VMqzP:bFqoKrsS1I5IxGn8z0FjEnBHZG+eP

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\bd5ebe327c2e4363883169092ad29d1d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1896
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1896 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3040

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    087f0390a7a6b5d68cc26d58364d9e3c

    SHA1

    ba5d5ac9546619725f71a08f8c58b618aa6bc748

    SHA256

    7912b6ce70090657ab03e585e066098d4761681f5bc6ae5324c018ae5564592a

    SHA512

    30ec8abca750c2db57ae01284990b920f551e0cbeec9f77f39cdf8d5b5b755c34bfb42405a608a2fe5d4621e3db93ac9d9e3eb26e68efdd62f5f9f8d4c95278c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    29e52d9582df6e7680db742c8ce3597b

    SHA1

    59dc56c98e4de7d5742bf74ac30c11b6546180d5

    SHA256

    23bdfcb7122214df81639849c6f8f73e83c927887a05aa051547ddcc36226b60

    SHA512

    50d79c957f5a3d758419b96fb368e952bcdd08ca55ca1c7efb6cbcbe5bba4926d8ea5808f03358940c0fcb089f22350db0064f5d048d9a579f684bdc671fd3f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    110a84e05d38dc396a8faeedb8804a82

    SHA1

    3d746ece9dfa941f5e696eb59e3284498abe3774

    SHA256

    67c69179683367c1e68a62b2a9bcdc6ffdec7aef1e542f0dd49cf6e59a6e1d34

    SHA512

    0e393e06e6663b097b7a28cbedc700bc922e3b8ef9c91d330339f867ef4253128eb85d4e3d49b89d06e75c0d51a0610b69fb9368f059224f6750028ba299a188

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    43dbce25054425de430fee2b0eb89915

    SHA1

    da905a5017622bcfa4ae971aefe3dd7503197f1d

    SHA256

    7b69f38e8ca32234722113dbf645d7bd2d3c9cafde6acf85a19d7f114819eb24

    SHA512

    5ad71299fbdb61b0aea8c6792edcf85d0ba564e0ef96e9eed9badfd845807b7e26d25156496fc26cabc23ea12939647f16c05f1404f654e992d7c52dc9701995

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bb1480c1ba2f5b3abd53f30ce427ca97

    SHA1

    e1b13db335626d0cb6542a14120a19e1c1087019

    SHA256

    36737154ee16f2e20b7194672e03473a3a0aef23a6da7bcd4343a3f3e188ac38

    SHA512

    e6d34dac37ceecf4cd123ad8dd76a2e930dec9c67121b0c6a558e5bb7e727676fe910176da322e09cc6f6f51d1e95fb30ddc6708dc08f1958e072c3c279e5480

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d2bfb4c72c72d59d144257b0df2a00cf

    SHA1

    53f7c16398dd236ff39b67b73083ae24bcb27510

    SHA256

    cbdb26841c4bb79f8bf2f6c9a36d0a587d1788929316e28c21ffd9725a2fb575

    SHA512

    3bc7aeee0b6b96e55f14a21d0a394d3aaeb1ccee97ea4baceef94208892f3806cf91922a686e3ec9ae70650a20b9f774dd3a6db7cd01f93da61cc44449560d52

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    722862aef774530e589990a469462a74

    SHA1

    c4830765d76fdfe51f3f44c6249d062993c2933c

    SHA256

    0e7a5e3945075a60ebf7098e35be2a78eae23ab849bb75577440ab8cea370711

    SHA512

    2d27399571f3335a65814a1022556048c3dfa15e0757f87b8a4d48fb7fbfe7a8b0632ea209af25c32236ea0f025cecec5cf2b4fcdff80111a192936f2ef91d70

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0b31fda6b5421da62de30e341d3b9a08

    SHA1

    ce86e9dd872d0a5ee57cb930b5c805182ee3c47d

    SHA256

    2cada94a40e3a4d5b02387868ef48ac2aebbae8f72feb0a263b5bd5724330538

    SHA512

    8b849e2a8f2043fa6e5aa9c8663e29ff8f7891c827b8761908dd22b3d3c8542f5b69593e3e024c64bf727c502ea4dca65443f9f4ee927cfaa00cfa2ee616d97c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    33ae70c7323088ae5bb0b1deae8c5264

    SHA1

    c28c36608a1c6eb4c91676bd5318491e8c3682a5

    SHA256

    ee25d748c35b2391122f28e237e6a60f3eee723fafe94898058910648154c9d4

    SHA512

    3f9068a79b56ed85dc501047bbd4e9cbd4f957804ef6cb145b3e935aa05d168fa3d241cded94cee5bd72248dfa81830fb8822ce8805c081bfc6a00c04d48071c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    17fb91c75f7e0c7405a8edac0191ac98

    SHA1

    01948a0bd41bc84dde423bbb819565a82b3f56d6

    SHA256

    7c6ad20ab0a177a1b632a84502f7643aac8bcee2be2ccbc4f5b8fd7ae22206bd

    SHA512

    5e947b2906f8568a880fcf2a61f80980c673603b4c6b3fbf861c49b8429f340898b769b9a058c0d51b2733e11bbd6eb3c18773df8cfc04fad7470fb915490db5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    38714700206db83f74c63ea2f770ae5a

    SHA1

    0293c466982e998cf01776eff7a89118eb05ae92

    SHA256

    b56e93d1377bf6aa6ca37c99e96bbe1195c7e0d70f25e9a48bff8bb940916533

    SHA512

    c624313a6252e39018353209a81421d0a934dee9640de0ce730033d9b434867a4a6d1c86feb25235d90582d9f47a9f09b22925e46dfe37dd430b69595c7dc7e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eab0329550df0e03180959cffe85ec83

    SHA1

    8226496074465c5e0f1b01a21ec5f0ef41606357

    SHA256

    152d3bf375a5a45cc0c78555589aeacd796409523e7ea5f12a8e7710e26c1fb1

    SHA512

    dc2d8801c617feb3c9923b359f520cfff8abe4c38777d7b214baa166dd22da10ae6cad7de628e1a82978f8b3ac90689bcbc8f845b0bc28adb5924f21fa37382c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6543b9844a1f12e4c0a62375c767036f

    SHA1

    86868319e221fd187db74655eafa19f2173c0ec6

    SHA256

    0ec141518658b7e6fffbcf73dc15e2b6604c997303dc17166ad67fbaffcc70cc

    SHA512

    fd38ced5dc8bcb1f288b6d897766b4dbee332fdc37763ea6d677c3f92972af06e45dbce08257676eb2edb5d5b2db35f436f8b1befc4521402f3282c7e45b2519

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2d008219aa20785ef63595a5b94d947a

    SHA1

    fe94bcc232ad11c722e5df973e2a51f164112c1d

    SHA256

    be398d000f8a1ddf162ef604167d6fe24e292eef9fffa823eab47b5988402590

    SHA512

    b6a56e1e7744d3a90005f0c1b6bf881925cc076e309dfcd8c8f1a308bd4680518f985dea26a8bf4d85de0eb9bdd459a6f2832705432982b388af0ceeae519980

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ec2c4a0d3d6acd6cbb1e8a73162a53f

    SHA1

    25302cadaee28c7b1fdad6f61afb6cec7b4a12fc

    SHA256

    b8a4eadb0aa4c00241b99ffa978b8c68ad972f8da365718ce379a82bdc66d02e

    SHA512

    df0df32c42f1e1346109146fe5bebc3e62a5f0d219e0454735597107bec8c33910ffd038f238553039fa7a5813f6a1fb78317e44887fee48f031f514654727ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    d46ac1063a5fd894f83c709a34997867

    SHA1

    c46f81819e5ba3522aef31642045683822f03ad6

    SHA256

    9a415870c61754b0cf46a5b395f89f98fc8928b87f0eeb07776ea69095071e8a

    SHA512

    0f4aa2525ad3851bed15f982cff0f59798f3c088f5a3044138dd53988e473906d20c88e4b68a87d8d169a9e1840779ecd1b962541e2e3fa3182f2403153f3b63

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G17BROQF\544727282-postmessagerelay[1].js
    Filesize

    11KB

    MD5

    16f1b19cd042265a234dc208fd7efc64

    SHA1

    02f67c09980ab6057f073d29f4c3f2792257d3a3

    SHA256

    509be2bf36ff013c9a1c31ac54b751aac2401f14496662a16ea8af6903d21b27

    SHA512

    652ce3d209d5d4c1e39f06e41e87a14a3174419b8c9cff8e5683846afb51f9f4939c41fb51a7aee67d9d26db80b370890182ab7df089f826479d3e5e2843566e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J8SD872Q\cb=gapi[1].js
    Filesize

    68KB

    MD5

    498c0b3f1c4a4e203c582742bf620460

    SHA1

    fdb865695b0bff53c3b685bb534dde4a554be36e

    SHA256

    aa74c9cc296b2dd408c4bdce73bfad6bd1b9ca8268bad036dfdce271c9d21072

    SHA512

    879244bd19218a8bcf5faa946b845480c0c44be71592310f3491a81b9db547b4abca073246235d08fe49ef6e99a02e988acccdfe7c15c27aaccd5f02321c4c17

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TTL9DZJ3\rpc_shindig_random[1].js
    Filesize

    14KB

    MD5

    6b31228f196cefac180b500e1737970c

    SHA1

    782d10c1f5bcf21050c4f2dbcc601098ddf64682

    SHA256

    ab8469aeea8e5b6c94247cd7cb298c1f049885d4528c9551361b8f575a913df7

    SHA512

    e8d6712294e1ecf85a9cedfac5504504563aa385a22ee5d116fbf3f9159d5e6e3ed1b53dfeb3268efcaa32f90de31877168b87fe78738f0f6b97e3fb6b037055

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab433A.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar433B.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar442C.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit