Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

fe3faad368...8.html

windows7-x64

3

fe3faad368...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    29/09/2024, 09:33 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fe3faad368529d6dec5242aaf107efb5_JaffaCakes118.html

  • Size

    21KB

  • MD5

    fe3faad368529d6dec5242aaf107efb5

  • SHA1

    14bb9821442a7062757c988f90fce55f5c4d6b05

  • SHA256

    c9d92dbd05937f4900e7ea1e05f7c441043584f706bf56e81e73af6589eb3d45

  • SHA512

    23e6ea27998b4c9d2e5ee5d2e35bfc1a336ecea7485e0f2991a0c32aa6c8025279de110340118e0e35581ccd9abd74d91f04c3173de3988cea2363268d90a022

  • SSDEEP

    384:FSE9mmfAopz/CSvo8ukoYBK8EFzPoni0TgSsmTyd8Nc1iVBEJV+9bTk9fYHwe0n:0mmmfA4o8uf8EWStmTyn28fY0

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fe3faad368529d6dec5242aaf107efb5_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2844
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2844 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2460

Network

  • flag-us
    DNS
    hbci.myqvaic.cn
    IEXPLORE.EXE
    Remote address:
    8.8.8.8:53
    Request
    hbci.myqvaic.cn
    IN A
    Response
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    747 B
     7.8kB
     9
    12
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    747 B
     7.8kB
     9
    12
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    831 B
     7.9kB
     10
    13
  • 8.8.8.8:53
    hbci.myqvaic.cn
    dns
    IEXPLORE.EXE
    61 B
     117 B
     1
    1

    DNS Request

    hbci.myqvaic.cn

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    81d2c54ecd60773aaf7c304f1e7d4ba0

    SHA1

    3f4e85dcd08a42feda7c373b9cd7966e154d6e08

    SHA256

    401b82b49d0810619d234d7305f0af7b40eb7e65073b3cb80bd65dfe91e59757

    SHA512

    5d546350126439c3d13e0d8ed6d039691a2ef25e244925629c17df4fce85092e18ea5bb793a004eeb43f924842c2b54c396a56d1304deef3eeb4112b0872830f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9fd967272366c11d85a99f90f5148f12

    SHA1

    b4264627ad8212724a0f36ac537881be0d67f395

    SHA256

    c6934b02d1ce34762d25a544f02f8dc67987dfd323192992978f94d56ffbb2d6

    SHA512

    0eb26f51c3feafa55f73ce0d3b26fed31981c081f2b99b75895684ca6713a099c3c3a3172ff7aad8e0e3c9ad14ca1bfd162da2bca3f0eda1d7e7e6cde5eee3db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e13fa5a9d434464c7eee640cdbc11e4

    SHA1

    8c006fc11a321b04d6c28f80497b9e50a660e8fa

    SHA256

    27f755c868ad20ce7e6726f669e225f70002585a6471a34483e9292ceaaca38c

    SHA512

    a6d7e353eaee454e55f4ba3ea9314052bea61d06b0dc9f46fdbbb327bbbb3e0fe42f0463aa01124294eeba57f8433466aa011853af8bb18501d1ef0593def39a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    924b0f135be3db787379a90d5913cdea

    SHA1

    2dea982f68fbf14aa7e4784716f815747b4db0cf

    SHA256

    5db8ac68d48e57257204b0e02e86a48381afde72f42e2375fd2e05c0b45d0c48

    SHA512

    cb4c644c74c71040218a5d2848f0c19b064b3a516f0aef6c313d6ec2112cc07cd65e58aeeae7abd492b0cd41efe041009cc2e3788c5b0c89b9c613b3ab391b8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a313adc501b8065573fba7513dc7b50

    SHA1

    c09fcf6e2f2f0d1aa7d597b5342dcb7e54d6e82c

    SHA256

    ebfacb6630e2f5fa5c44870c1663c70a15ff217f637afaf0bb942631c9c6cca7

    SHA512

    a69107080b4c8c9fe0cb668fd8ac8554d7717c554e7391d830e954679bdf54790978f1d2e6c42e46227489caf9477429ae89e04bea3b0fbd56f9f34e9822840b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ce8cc3b25c85f9d210282ae908c3aca

    SHA1

    4969389e9004e3c47ad72fc66c8ddc453362f9b9

    SHA256

    ba0fd32df3aa6208a1c13005b2fa4e3f695cd7e18da6f615f493d0890c3098cb

    SHA512

    543cb9542451dc3c9255252ac2b3a27a3b542f6d230558c1dec2b565ae279788bab3bca6c814cef7cffb3a64fbff685330b0af9febf48b98ea76b8db823087af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    435bc3f4c2078e077a6b0b3bd35442f7

    SHA1

    795542643a0b12a41335313e44645001ce512956

    SHA256

    98a7b1367b80f89b5c9198a2656ee676559ff179eeed6b5fa51af8cdfe575e95

    SHA512

    fc8ddac89410453c115dc16f6ca68f7ab83568d610866a94aa457d5373cc2eb23bf25ea1e8e21502f0e48bb3fb58ee70105eb6530788e2db8de1ca809a319e79

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    42a93a6911aca61e30cf7e7c5ff30d73

    SHA1

    029f5427690b4637ec5e088b24b0847eda3e51b5

    SHA256

    53e8ad02a2a723c2553134c0c0c2d449446a6f83af7f0b60b685668b040489d8

    SHA512

    798348a92eb91bacd96bb84a7f377015e2f5c12b325390ce653d647407d30566a9ceb6ee37d016909081cb772d2448af0417ed2859ab7f3a13d227f9b057cf5a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a322cc4650e854edec9dbe169d24d700

    SHA1

    82f002f8239ad80d6de5c2dd336374e519c87641

    SHA256

    f5f8357bd092705ad5b556da795a40a1921c11110bfce8c2727f06d15f990412

    SHA512

    417d47170580ccd05db2cde7aac60a0a416900e84da18bb296c6d56a5086a2b7ec20096f20ab560a307363dc7e770d4c6b57104a0d7335b939e9c5ea71ccbce0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b3f054bbf857a6bb85cdc4b9d676b2cf

    SHA1

    ebc7fa1ddbe5c9a07c6debe91a640e3e4f8a30aa

    SHA256

    8cbed4970c6d25a246aa7c7da6e4d214af7506147bba5d96af09ce02e89a11e3

    SHA512

    7fc228e18aa7066e2b7c69aee0b6dae9de732df56ce6de600c98eb9f95faea227397ff7bac690b6fc164e440e8fa2fb26a413eb050fa024612ef4a36f00db07a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a22cbf60badaeaf420390baea23ee1d2

    SHA1

    3058201b61d2b83c9641b5d55a0966bd75810ee5

    SHA256

    dd2bb34b2510fe240cfea4d416e07d5c4955e99b8d882a7727f1e6d41b8dfa50

    SHA512

    a580fa22a40db461b3b521861526e5f2d8ecabe817a8f946b8344101afba580d0899c49575d4b5fc36278e94bdfaef2883007c827f0b202030c6e7bf819492d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    320ade4790945375080bc9e0f6bfade2

    SHA1

    1dddbb17b43e97201205d9fc74307137b27be8cd

    SHA256

    51f5a9b2d8905201940846f6b824156497a885a06b8625cf123c9a9e3a7734dc

    SHA512

    a63ce806acc24ebdf543c6d6fc28c0e44ee9f13d4fbb9e7e4f33bf679b9e18054133a2fa75caaa4a681193a722331fd9862efd03bd67c32b4947e28239988e67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7c02d8b00c62cff529b6d8018169cb10

    SHA1

    e4fdc078692382e8ff93a4255e125ef04ec7d7f7

    SHA256

    88ec989a50c21552bb11681cd5c1465bd83bb211cc61ade6f91d7c2c5d8a5c0f

    SHA512

    3318344332d6bada9adc2a538abf516dfb7b24cfd64245a9345e5680762261736144cff34b3b1e89980f34e5222facafbaf85e34ced075456f57ee4dc417c538

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eeef047b3fad6d6dcd1976763217828f

    SHA1

    bce4b540a6a5bcbca369919bd3dccd743f0a866f

    SHA256

    540e5663202ecfbcd293d8a9b8e562bde743d76946fd6aba3db1a3f69149b157

    SHA512

    1d34f3d1dc1f248618fb652f4e549473a49360f1d9e678371d02794160abca992132820acab415c6e0835af5bebc574ee008587b8d833bac0d908179b33ebe02

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5dbb77360f3cde64e98b5228f15635e2

    SHA1

    1a0b31471da538680d254671d6d7c17b972a4299

    SHA256

    0ef6ffba0fdf6b88bc19e0717dedfdf82d76c432d7f051bd973dc84b35481423

    SHA512

    e3c1653b1dcd3e951427a353cbbfad7b2854d6d12e8cc8a78191708de88512a6b39c324f6e80598bcbdae5a1cc798abab85eb7b6853f49ac3bbf74d6d77c5405

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    96acb58221b89eb886a0368fe03c88f3

    SHA1

    f87783871df44768d534e54ad26715c3cc019ea3

    SHA256

    2e9cf184e31ec43de14ec70bda91743bb80dc944d4b00808793cef456f98d8a9

    SHA512

    9a00b7a55fc5bc7570b75cdf40e33cadeaee546a7e1c2f58eed8591954004b6b0a561d4be28d036799c2d3f1d2832ba81b8b3bd9454093039f31a4dd4e20255a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6bbc0e74462419f25149b54fd98cc698

    SHA1

    fb364364f81c5485ef3bd39aa8aa9302c0083602

    SHA256

    199426d58042b85311d7f1e29fdc832cc0b6706a71a29f6ef5d081bc20bc116b

    SHA512

    d98fe9f938f11d651fa34e9a8d3c79447d9e020929a574b1459a5e125d96e3816c661f41cc008a2e8011296105e5192c5bd6d85fcc518f99d5b191dbbef6d93e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    633f9fe205adf670a38b5afb7d610cc2

    SHA1

    cc2678449c80f5bef53a5b6da6b6fdaaa11a2f2c

    SHA256

    c87c0e996bd158b9b028eb2104961c6ddc5d8c74c0421a4b7363ba2268c17bd0

    SHA512

    1771468e81e6d5d917ae85d016e01479b56d1ff20f2811f3c18a3e67bd8cb04a44d4278f3906f407b503df1953bb4c345e1fe8b223a2cc8072cad7c75904bfed

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA086.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA135.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.