Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

36c6c75876...18.exe

windows7-x64

3

36c6c75876...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    10/07/2024, 23:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    36c6c758760d6579730c097152ffcaaf_JaffaCakes118.exe

  • Size

    72KB

  • MD5

    36c6c758760d6579730c097152ffcaaf

  • SHA1

    cfcb1166329be85855b859acb91b9365cf415acf

  • SHA256

    c88b4ba1713b31914d34d7c54336d092f11ae580c083ccc2f911fcb49d1a989d

  • SHA512

    67e3b6b1b6e9103590923a0b66d07ab5e4c5a5cdcb298fed2c030a6ccc60dfd9128a01622d794f20d0dfe1b5313fb1cad25dd6055c748b17647358d9998450af

  • SSDEEP

    1536:Fc9ZqVQjN4U2VEp6FHNgTUCUo1oog/cNqicfS0Ux:FzosVwqHNjsoGYfSnx

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 8 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\36c6c758760d6579730c097152ffcaaf_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\36c6c758760d6579730c097152ffcaaf_JaffaCakes118.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1616
    • C:\Program Files\Internet Explorer\iexplore.exe
      "C:\Program Files\Internet Explorer\iexplore.exe" http://www.dreamscards.com.br/images/flash/card22.swf
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of FindShellTrayWindow
      • Suspicious use of SetWindowsHookEx
      • Suspicious use of WriteProcessMemory
      PID:1632
      • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
        "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1632 CREDAT:275457 /prefetch:2
        3⤵
        • Modifies Internet Explorer settings
        • Suspicious use of SetWindowsHookEx
        PID:1260

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    58d008df0cbed1dac1be42aa7770649c

    SHA1

    aa19d28bd8969361af4340de3ac83a973029b7da

    SHA256

    9d997dc69fe816e212647c40dc30791387eb9e66e3ffd834e345ac63e39aad0f

    SHA512

    67bb2334cab075e341155955da0a64fa593640bac2c33867438bd3dd3d57aa843b9b31d22f9fd035308ea05916598d704e4c146d7f4debefc8c40a97eab456f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c90302fb2dde8a092941c8450b5ec824

    SHA1

    d1a68bfb240887f2d49bdf5f0ce7a259c196ce04

    SHA256

    7d6a7918dbd50536ac58242a1e9f0f71110d8f55ed90022efc3c05d5a34f5e87

    SHA512

    90df555c8a2c42812ee06011fdad5542d45d6c51f0432a054438a3fe23e0828c36b64da3b24dbd13a392cd402fb385148f1257e8dd5de13c994d7b8a3e5d69d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    20089a8f2db0674ebec8ce1fa6a2b2af

    SHA1

    66eb6fd12311c4e153cb6745f7b5ae54e0460563

    SHA256

    30dec1212e24d971ccad1b98ba46c0bc2072b456414d58960ae49fb6c4c9cd57

    SHA512

    1911ca02f5ae3fc317e32643cfb2b5d6adc12cf7d925a43f69e521e92e1f622187140b5daadcafa39d202e9c1dde8d623892b4eb70e29385fc7a1f57ad0b6f6f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    347268cd33ae8bcaa926ec6dd5cd4e09

    SHA1

    b4eddb215b04755131c387ef243307139965cd80

    SHA256

    dbc5fdeac6625b692b0c0d09cd09dc692116f812172ade020e01c1fae3366a4b

    SHA512

    b20720406c3cd0ecdec3ca405ca37af96cdd624c711de261765efadabc696c8190cdcae87f98bba3ff4d8a8e2530b6b573e20f7ac369090e109bfd1c533abdb5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2de8a0f8ef1a41e0e9df8f44e8db1a64

    SHA1

    9cc49d84995a76c330e5da7a4ce65d8643dd1306

    SHA256

    38a0f9a5ae724ebe17b14e1a6383d8d9dacf58269363f51c758cb2930b83fac1

    SHA512

    12d0b13560fe5b22d70f9faad5a01e0d9cb7c2c6a32b2d117df7b832551a46551ab66a63d7463bb175e45367d8b0646137f0dc4b10c244b47245c611c7500fc0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eb93b98a342c99f46ca4555f9cbff061

    SHA1

    bfaad440412fe5456fdf7f31bfaee4e602f805a9

    SHA256

    a805b5a716fd31752c011f77a96a1c5d7002a10a8f5974aadb14e12805990462

    SHA512

    2195783820c622757abf15aeaafcf8c5e9c9cfc1e46ddb5ce4c9cbf93ca84797557c017c87207e768a2eef975c341b39f933abd10eebc8a0a6a09bc5c40333bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5289b68f00b0df9b2c61e31cac2b4d5a

    SHA1

    ef7c7d4fccb6a379b5a91bbc56d201132d960043

    SHA256

    7d5155f4f98aec4617f01e4b9f12f4f67ca6c3f4dc6693292fa53d197e24e649

    SHA512

    185e56dba97110648d183639e81887b226a7fc6d19ebea4d715a03668f36c29eeac5e0f2929bf112dce4840ce5669e7bc043488e325d52285646ee4fd6e45ef4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9511334b390009a5d766e47e8f691cb0

    SHA1

    568fca59d52c41df54aefe5cc00bad56081055cc

    SHA256

    bff54103f187bef9efec84b33972a4b8250a68fe3dddf89029d89f430f26b5c4

    SHA512

    532cadf6868081cb9d02bb85b4b9239d171f061097847ec43f158c12e3adbff76fd7bc7664b05cdb9ab84f6727fa6c5c16e7addf412c50ea75043e8a316b67a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8bdfa951e2b5f42a766e7ba22d663956

    SHA1

    9a8b5267617c2628cc83a7ff44c1de007d5c15b9

    SHA256

    262f7db63812258b6f6dcaacdf1d7f7fe7683d2480c6ca825afd77d9b2245366

    SHA512

    305c0d6b079e7ce28c0fe2ec1f708d3391c9b22981372a654dddcc3d7edddf609b0772e244a5451e34c757cf467d8e750c620f91b2d09932792ff60e7565e89e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    025dec6cffc95de2bc7e3f45a4f00cc4

    SHA1

    b4ea2e608e04375caed4f63223f2a37d6b7ecb18

    SHA256

    588864885eee2c04af6585ed963bbd12eeaa5f2b24993fbfbb6dd69b18afe673

    SHA512

    1c1970cb8e769eec54b07aa6672fe60804ff6af1c160d03197f8b2d4cbd5e932389281aad46511989bf16e45cb6b4180ae3909d483be00115e327a922d171d02

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    121c686540cb4ee34efff4f3b22ca565

    SHA1

    af9900d6629f10dd03be77745a2187f506db6105

    SHA256

    37e6be5c4a2addba58d0993abb7ab256282bff351db195ac2821875eead122fa

    SHA512

    7d7056a09bb5d9011b6e79b71c2a7a9dc4e8128909b575747dfb3e09fe9ba3c7defde4ce80f03ae52b7a49b521b0663db31c9354d15f76a9b7c5f5d523b1da8f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cea6aa840ab9b2d9f9e9a0e80e2b4b27

    SHA1

    f7cae2f20eecf173512f47bd850833fc3491db33

    SHA256

    e1b7467b7cd6c79d5004c95877bc1f8022af039b31d034f7512e72e562f6d219

    SHA512

    da02939c3ef67e13e1c8e5f05f329cfac491632a5861c42f002179f15a1483f7b8d2c4953b6a6f4cc2e3ede45ed70555de966dc8ca2125e81a8ad61d1701eab4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f33dc8d415d3acbe247b70a95f26c766

    SHA1

    ed514b789b94404306b38e213d2b660e8031fe50

    SHA256

    3ac5add9387042fa3daed91353a22db1c2a1638c361351a900d21b78aa6f97b0

    SHA512

    fa81d169d6c7c7e1d7da1d3b5688b1520c5cdc64a0835b36903598c5f8c90167a4eb050678afbc24f9d0e6bee3831e4844fbd0baa625d1e290f674accaae22ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    46bf46037722e5d317f2e45d0e7116eb

    SHA1

    645d570186eaa12357447b90b2d88689ca8a1a67

    SHA256

    f89f2a3b1156d1abe6448fb700c30c3e68e18235d543ce6da058960ad25893b4

    SHA512

    7550cc6806a42241575a2aaadeaaebc25645b670b67ac0e1b7bd223c3637f8e00af470bdff75d33a72cc98c47ad22f57376a3a4f8c512926ccc15d1b67d885ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c679e9614f3845bc2a402332addc31a2

    SHA1

    48d2433380a46927c14a891175150dbc7f400d65

    SHA256

    a9de2ede6fed8b265a1cb4337e6d794193c3de921ca3e7686b10daee0da84dc6

    SHA512

    59f931aadef1c3f32618a94cc0e30c6b5ff319317a0b194a2e9b62a3dfdc12f7778d601dc7ce0323a7d439a6f5f35ab70142e307135429fb35c413c4295d73be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dc33a0bc0a2bf193b46f22402c9493d5

    SHA1

    3d6f3b279d729703a2c41fab9bfafbb86babe2f4

    SHA256

    d2aa9d57dcc0869642caaf4e3200e8ec5e3b0817473d92858c91fd86fc4b146b

    SHA512

    a62cce60f4599374ee20945207e5244825ffdac5ba047f3e75dec017853e69194d467e287508c659d122a82fb59c81cf6532c44c7c8ac5576ec3b5d2114ed783

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    01dd861d0f515af93e71ee8f97ae26c2

    SHA1

    470927352b571f256e88c643f17649232b150872

    SHA256

    cbd6df59f1c7c1d2a31b757dfb5e76a4ef908a6aa05cda7a3bcb4fef1e43be2d

    SHA512

    072767603ff0ee597dec4bb1da15cc811562eee3071503a729192631e0cf3dffff59b2a02b129c6648b92694876bf5f28c4f13cf1df933eb21818033e80875a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1bfcc515bc006376a14b0d69d54474bf

    SHA1

    796ec9d7524153187efb406fd0ce513592033716

    SHA256

    f5f8e78e3a3c6ec10657a8ee13f46ba081b08113cb1d3abd9d84899e81bea644

    SHA512

    29cae1b713cac902871fdfd7d4ebdaf2c7d66557bc35f74789cdd8b722936a3ff798c766e1ebf6942a4435c6cb04f9639c1ffe30875d3ad24355b726875cdd85

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b6429916241fa3191dfa02017ff6ed2b

    SHA1

    a8a232677c4d3664c503ee0e787d0bf3c520f607

    SHA256

    d8d3b2a8cff73cf08da87338e7cc52c03dd225e1899bccf03056bdcb5bc5104f

    SHA512

    7bde51d262e206749bd52957c17af11be322a674c95f8415857ed2b66d8ae8338a5ce2f29711e1ba862d52828b7fa4191899a93cd1a5743040f32b1b7ed168e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fd25c874fa01775d626a4484bc2c8a5e

    SHA1

    fa6c29d4370037cabef7a004baf31da3984d900c

    SHA256

    3f2667d791b54247bb1d131b57afd8f582e23a12a6506ef0ff96ed141def2b82

    SHA512

    4babf8e36a0b5d758acfe47f7a45f83d38e77da3b4bb11730a1a25ba427515a47087f19c10029c3f538d3af4fca55f00643f52dded12f07ea24338ab4d2542fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0cefe05292fa8c3475b9ec85997e1bf2

    SHA1

    518d96cd8924cb3fc9449e611e206afe689bba3f

    SHA256

    47a456df3958914adbdd4a5c8cc180bc5ba7c328340062862befd29150b4273c

    SHA512

    3c6b72289b8d2182e3b653bd1c79f8499d47877f4df5efba7d1706131a0761cbd88a03b0bb4868a8c7f2022111b14665f62db55a94143a2768c6f5effdb3c09c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB8F6.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB957.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit

  • memory/1616-4-0x0000000000400000-0x0000000000418000-memory.dmp

    Filesize

    96KB

    Download