Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

6a59344857...8.html

windows7-x64

3

6a59344857...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    143s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    24/07/2024, 05:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6a59344857955be83c6bb85c33972330_JaffaCakes118.html

  • Size

    67KB

  • MD5

    6a59344857955be83c6bb85c33972330

  • SHA1

    9436c5ec7b9b734d67222df731738edc86d8c4ca

  • SHA256

    41156d6c6d4436dd994261edaddd66d32fb39ea1c26249a958b776bc38473b07

  • SHA512

    5e5210d6ecdd686e3e59bd0ffceb396672569fdc997bda22744ea6137a09981fcccb9b22a2aba3e822cae90eebf8d7dc89130f331e946e3c7a2507c5bd38425c

  • SSDEEP

    768:Si0hqGbIiP//mdvsYSgLj/DVWmTMYq8Dfr7Vq3t40MSxjfLD+PHgkyMrj3DZ+/V8:SgIk/rtnwOHk7uca

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\6a59344857955be83c6bb85c33972330_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1812
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1812 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2740

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    854B

    MD5

    8d1040b12a663ca4ec7277cfc1ce44f0

    SHA1

    b27fd6bbde79ebdaee158211a71493e21838756b

    SHA256

    3086094d4198a5bbd12938b0d2d5f696c4dfc77e1eae820added346a59aa8727

    SHA512

    610c72970856ef7a316152253f7025ac11635078f1aea7b84641715813792374d2447b1002f1967d62b24073ee291b3e4f3da777b71216a30488a5d7b6103ac1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    4c57ff81d596bad05fcf87f357991746

    SHA1

    f513531d35a49d57f7cb52aa3eece6e7e9f6740a

    SHA256

    6ba6f57ca10eef9c004742a6be03707616ce05777f19765ee4effde69bd4837b

    SHA512

    c7da3d61f2a0910d3f2925a0abbaae483c4bd5c939a4d8b8dbf173f4da090e4e6605d5e91c3be4136a409de39e95e156952dae981a711fdd7c2eec5ce95c2f9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    170B

    MD5

    85d65a56996e5a2de36b85fe5bede1c5

    SHA1

    0f2212a66cd321211ef4e93ae770ee7d38fe8af7

    SHA256

    41d0cf5fb6efc48da388fe79b51cced48c3fd4762cf6607f70aa5e7ea5b5ed11

    SHA512

    e3057ff4f7ae86b10701e5bd6c1f6da9a59c89bcd3d7f77614bc996f2b051a57fa83565590802c5a1993bc283f5035cabe848a16f7456b48d15baab105d2f4dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    61c4dddbc816a8672510f59ebb8ce5f4

    SHA1

    fd5c3b3b0338b6d8e414b441aea31aab103fd7c5

    SHA256

    f073f49c368f7a48129039ca289897ccdf81795e0337762761a2c7c290dd6e05

    SHA512

    048e555ecdab76ec02df6c42ae3658c309e6538e13aec2aad87a48ecb5bb418609cf22192b4fc24b5977d90ac191c96a7d73aaa89b960b928e098b30efee336f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0d1fb6da74974c805a86711295732e5b

    SHA1

    e9e0dc05d0dd8abf996582d0a21e576ef287a902

    SHA256

    dfb08ba140fc95fc3ab233d401de7e7f4818a04c03693924d5723da58f4302f5

    SHA512

    67ed65486f3f7e1f194528149fee75f1814c605cf3b636403fc31781dd39093cadd4ff0898c012ab88347c6cea674077be7bb0b693d760aba34dce19a2b1b7d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eaca1f20569e8ab82c2ee99bb2607721

    SHA1

    789caf98fd4c1536ba0434f53c512e9e0b4b9f88

    SHA256

    173896fcfbe8ad474c1436fcdd6e4f03954a13d1a9ac1ce5edf30d5a45455539

    SHA512

    48e04bb97cb0863ff67e73a5341df33c14f3e3787e4b2f45f86b5ca0aac861be998bb1e740ecbccd607ad5d08b453dafd7663e2b29e8d79c121695543f4c1f1e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e008497fea01f1caf5c5d462a9c2328b

    SHA1

    b5565a718ed130ad90cab1cd0b4e712fe63d8290

    SHA256

    14f40b1254c833329739efc83a08f4d6a780ea48c6d9d001fead9b127a5353c5

    SHA512

    fe2bf55e79c8c34e95a00ea170adec97e1b57a4a024b2b6a67fc6ffea231b66659ae30f71700fb2c17c20b29cfe4d68755887d0b1afdd2f70a398cf514f0ebf4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7594b6a04703e81f0f8255f2902c535a

    SHA1

    56ed2ea8908cd0c2638eea3619501c87d1fd499f

    SHA256

    831405570c6d3e638f5e1a9f4900ca212209b61ea7f4761e744cda5c8bf18a49

    SHA512

    c7250e9b3fb47ee0748678b9e91f15e98a4651990bc08bf2e5d294693fc54593de38c8631e713236baa8e79a3b8f8fd44477bd487cfc554d2071dc7ec7aabc6a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e9ff914f7903dde97dccd09b3b2bc562

    SHA1

    b75ac8ba57e5812f56519d36c438374bd6e6ce94

    SHA256

    6ca6831b3038c13cb1d946d7abdc4e53e5a7a4c22f5247d284c9cf68027cd59d

    SHA512

    1fb10b98701c97d78845ce07743bf48f22c404cf6e8464d7ee568878ec57f0e543f2cab0288aaff453318843befa8c32096c1e69f8a1f6d83480692b831dc8f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d735422368051a2b0def844aa76c8c7

    SHA1

    24a08ad097c1fc8e72be774ae2b20dc79f56d17d

    SHA256

    24d9a36a4bb5e7bea1034630b4cd9b7a687ced30f801c20a3d9986915e90315c

    SHA512

    d1e94fb427c1f35ed2d4962bb76fcd0b90c63cd6ff0b34894d481933ea98dee5e2c8e9632505c63b962f3b784373487d80d95ae26017be7f6bdc29254ffdecb5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bfaa7d853fbd7ad0ed7fd43752305282

    SHA1

    0e671556e6a63bfb04ae77ce3d7e35b20d2ea057

    SHA256

    9c987aaee3b9b2de73b1309d82aa6dbdd10d38edeb3d2fdaa3fd725958429766

    SHA512

    39ada24189be4f6e1a8c7345b5e363c42b3b4a427a7b8cc49ec2719d2d5a14c79047f27c42bee924f86fc914f97d993f77a0a71d8dbe8bb6bcd5882ca6461415

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    955f1d1275a3ab5dc1f5408602feb31b

    SHA1

    2c6f5a860e2f35c8260041a3493eae5e6c54905e

    SHA256

    a47418cd09510e85f52dce0e2ef7bdad8b75859df34f99d176e9da2db4e4f32b

    SHA512

    05a0ea84ba897aab5ee2d82b96e288b14bc71e710e9c76ed601764c3380fea7f744aa193f4fbb44ba8bf1e524d426a0da546b8c9ac33324ba56dc57a0c8ed794

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b0b8d88f79537f8b6011d8f370a6a210

    SHA1

    7640da7e3c70303df5f8d22e9dadd2d795583978

    SHA256

    10687acab97678f1dc8f0e895788568f975c990a50f082624af1b3875ed792c4

    SHA512

    ee0095b6e7fed811716dc1c4a4a2ca66a9462902252af0aa74b7fabfc81eebf4c122e5e99e73d3981070265155c1c1ce454444ff48f49ab87dab6409ad29b8b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4b1294f013ba2cd9e14815e8a5d6435c

    SHA1

    5ae607b0c75f0e34d3415c25d9557621fe43cddf

    SHA256

    444f3892f137e6f6eea4a2d265261bcbfe893cefc30ef324f49dacfd65238637

    SHA512

    911769d0237018cbe4d612417b305732451b69fccb0fecf675fcecd480108fe734e7e0fa76947fdc3e80c24f4bc7e10d52c2d9cdb49e2e4901d3a1c7630cca16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    19aaf05971a25c030c75b073e4f9d182

    SHA1

    e3efc8b804216f06fd035358839074cbca4ffd31

    SHA256

    034a5249476c27c8ba9416648ba5624ab3a193614ee7b246d0f92c0e3c229e43

    SHA512

    55e2197b7aeb13d4f94e269789ddb8954c4c015ce4d98df9111e2a2d83ab00c71d0906f5447e696374f9ede3f9855d098a9642fed19a9f1f64a93a2be2b1e5d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    54955fddedb2c2661e21e6a674410f1e

    SHA1

    62e82d649d13a17a785bc1b2e65047f8a66829e4

    SHA256

    e762177fde0b4b8fc5a89d5103dfa8c0262d27f2b39e8c29f83bc962b7f6985f

    SHA512

    e1b91c4ad590a27492b91e8be5beaf84437834b3dbea1211f176fa42fcf8f61174474e8e812a14737ff5c227a64c6e4aeaf832041840b061ef66f218369022e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0401a429251890e74f4b03600da00274

    SHA1

    9ab469acb12d8d683ce4af39796570790ce6cf1b

    SHA256

    c4b2cee788dc6cf684bd40bbcee7614e84942c690f976c96bfdb84982c1d5d2d

    SHA512

    d8a6eb868af473143e7733a2103d73beed5c9d0d41c4bb059f432322147d00dfefb3095c2e6ad6601a524aea5eb5763d894c7652ba834dde22ef3ae015e162d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3741a78eeee80e7a0f27f0c5068cc2bf

    SHA1

    5592329dd0ff0565480664add848765c5c293b36

    SHA256

    37be7954371dddbc3afe66f0f3192db8b1424beb93373385228762e37c3687cb

    SHA512

    9b1dc2a5b8ae2f3463b277deb25d6b849c14c411fcfbf1c5fe00283944c6d8e14c4c2798941239918b685090705d2d6e8abe66934afaa7061f095716a522886e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\TELC3PKB\www.google[1].xml
    Filesize

    95B

    MD5

    dbe4d9b549c6a3b8a3601078b9e99cb8

    SHA1

    e49f0cf42e256e64b4ed0d6aa52a14eefd0fc420

    SHA256

    3b768c78886d178e7faef38b5c16cbc9e947e9dbe095d1f09019d873fdfd1161

    SHA512

    f535dc6c6e70996d45e50144c95edfc141224a1296c168b1e3384dc4582b8200f102fa4b0e0006716c785154fab3f069b8a6d7555561a27589647531b7cd4e4e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1UD7VL1X\styles__ltr[1].css
    Filesize

    55KB

    MD5

    4adccf70587477c74e2fcd636e4ec895

    SHA1

    af63034901c98e2d93faa7737f9c8f52e302d88b

    SHA256

    0e04cd9eec042868e190cbdabf2f8f0c7172dcc54ab87eb616eca14258307b4d

    SHA512

    d3f071c0a0aa7f2d3b8e584c67d4a1adf1a9a99595cffc204bf43b99f5b19c4b98cec8b31e65a46c01509fc7af8787bd7839299a683d028e388fdc4ded678cb3

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I31L8UE7\recaptcha__en[1].js
    Filesize

    531KB

    MD5

    2ea96f82197c227ad3d999f6a6fcf54d

    SHA1

    dc1499948a1822d16cab150eaee16f4ab8c028d8

    SHA256

    e1d667d61bb50e0a815101a7d0d7f379b7219776fee856eedbe965a049db8d44

    SHA512

    dafee1d415487b796e02ef295073382aac48ac76e90c749028a9241bd44ec04ec2ee34163b8177f94d01e9e9d87577ec34c18d780a9f17b80923106d992749a9

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KJ834MBR\ga[1].js
    Filesize

    45KB

    MD5

    e9372f0ebbcf71f851e3d321ef2a8e5a

    SHA1

    2c7d19d1af7d97085c977d1b69dcb8b84483d87c

    SHA256

    1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f

    SHA512

    c3a1c74ac968fc2fa366d9c25442162773db9af1289adfb165fc71e7750a7e62bd22f424f241730f3c2427afff8a540c214b3b97219a360a231d4875e6ddee6f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3B1F.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3B21.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit