Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

6fbd9d442d...8.html

windows7-x64

3

6fbd9d442d...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    144s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    25/07/2024, 13:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6fbd9d442d2872b76b8de392836750c8_JaffaCakes118.html

  • Size

    71KB

  • MD5

    6fbd9d442d2872b76b8de392836750c8

  • SHA1

    6aeb86aa48062d5cbd4f088c84972b3067d605fc

  • SHA256

    c94c74707711236f29723e101e332c35ea1c5148cd50ea869c37f5584b049d14

  • SHA512

    1a356ad2cf6829501c332f4391792a6ae5b2b816a6e8c6e7af916c0b992cf3d0cadb389530178b812c64debc12a749c38c08e626451ec15acf08048837421c16

  • SSDEEP

    768:Sr0hqGbIiP//mdvsYSgLj/DVWmTMYq8Dfr7Vq3t40MSxjfLD+PHgkyMrj3DZ+/VV:SnIk/ntnwOHgHucp

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\6fbd9d442d2872b76b8de392836750c8_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2652
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2652 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2700

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    1fa0ec1aa09e32f3b6a3d96f66590ae9

    SHA1

    02aed398865737526f40e1a5be157c0360baa342

    SHA256

    d2f1842746a24fd68d3f2e1f7e31bc997036815948ecef2e77696d128051aca3

    SHA512

    1f0491e19b27cf69a8e275b4cb15afa8d98e62034b2aaa98f6392b1739f86705f5d18889ecf6833f95b981285dc6bb6b21305f62b1264f79c34f3e4491c567cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c03ac0740c49f8bd7a44317011a13641

    SHA1

    10c019b77d43c08fae754cc14b131cdc36bd402c

    SHA256

    9fc3b388e5fcfe4f67ffc15a6eee7799f748ed048782ed45895f2cac3b11af74

    SHA512

    5eadab062ed12d055a7c6db0848646028e286142954175226310f052cc810ec39fdea6fb178be12d7a6852e6e5d4294ff46dcd06746e8d6b6e14f6fff3c3460a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6cea42e0ffe1fa385841238c953a13cb

    SHA1

    16ae8c81c2603b2eb98b0b5a62d3eaf6b6e24da9

    SHA256

    8471c51eb3d0f4d6f6f2bbc2ca8a1e504cf0acd175fdb658013ddaed08b3ed0e

    SHA512

    0692131569854a21b8121265699b3de7425a15c30ae17c38334351f4348836e6db89acf4ce2230ee233b8a529dc18a311a31a4827ede63bee363d151dfb29c6e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    087cbc0c52d2b4c78fd294f9dcea8c81

    SHA1

    8190a3d82383d845d3c69f9385b18130974ecf22

    SHA256

    26e24fdedcf1c28318568e8aa83017e49cfa69f899c241f3cef1527002ec8321

    SHA512

    e4d2b9f2842589a41a298eb09d9f90d449e27ae14cc19fcbcc154c64ab97bfdccee32b1a03cc28374c92045341fabb3deb5a0d6980539f950cecc13755462071

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0d81e41ef7ea382d459c382a3f9ac376

    SHA1

    8484b4116c134247a29adbb3563345aa3104089b

    SHA256

    d5b5ffc03192877f31229e63b291140bed9801aa045b66e289ff37f4977dfe69

    SHA512

    c7b1fba2800babf2434741cb030ce14efea6408e93df5724181fc96b1dcc3a5bb1b0ab3b0165d6efbfb38acee80d8c1879d7def46ab68ee2d6795c1d52c62850

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2547cc5bd353e8eeced7cf17d656639f

    SHA1

    cb07e61234e8d45667a0797e984dc71c6bc96330

    SHA256

    75ba01cbec97015258dddcacc93c323f00614e99cbd8500e53530aea71904770

    SHA512

    f08f3cf3ebb4f0e0ea5aeff0bdb4d162367a3fa1dce321c4234698cfa51fbefa751a845f6ebcd54e86a234021d066d04bef76cf67b1a906481be1314407082c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b19c758c2d49a81cddb3f0c9f425b4e6

    SHA1

    6e44d6bcc9e3303a5e989723f2e0cead1fa5729c

    SHA256

    509170ad0be36ea377a1197174c8f0eee1b65defb3a976072c1f362cf5bd2fbd

    SHA512

    d9cc51a580d515b65e6ac97a20520f603bc68dd79735e9c3dee669d0674da819a004acad7e601f7ea75afb6f850359a21ca8ffb6705543ac1008f39814e39d97

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    950d2ae03158ebae133f966ea9ffa21e

    SHA1

    9beb6b2878f6c467301a9faca24176bcba16f8a5

    SHA256

    a99bc430474bc3005b1cde9c92cee3f33f83d7819ae7f87a1f7598f1b175d59a

    SHA512

    d8ab69f8829d58825dd08a0b3c97d5fbedaf4cee259afee8366733366668b43eb5b7bccb17107903bb9691e5b4475c28960351ea815d54b1ef82f778e9862d1f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3aa0375c581231d2a9d0dca8d4eb76bf

    SHA1

    da63c9aba274c04b281601ba607de873d7fff30f

    SHA256

    13fe054c05d497756dfc910a658ace6d2dfdd5bba860ab6bda277bcaf59d6b5a

    SHA512

    396370e037546bfb2284184791ea45dca668fe72cc90406210006d9f80ff5a5d8a230cc6d390ff643429d908fc46ee030d70a80a6eafa55cbe563379f0c83f0e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    16d2125aa52786b9d4a65689694a41d2

    SHA1

    f831d68725956698f41cb61db8d7046f8bbef41c

    SHA256

    acc190e0bb3cb91ab8c62ce1f866a5a6f15aa6764d92d9693512b3f7b029aa86

    SHA512

    b8c1669aa77c5197f174d221eea9c68d9f8ddd0fcba79c031172d81a8fc0bd14bec8535e7fa75bd7bb1524ed0387441c0d72ce879d41dd26627e9757e4e90a0a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cc7f8d0b56b0f4c483a5055bedf5c5a6

    SHA1

    3fceb7777c00a1c99450495050210028e5a58a29

    SHA256

    e1317671ffa56af250a6b8d1ec42253001e89a45e427f53c5612cbfc1b689026

    SHA512

    12153d2d6db44e7bd72f9ca3cff6afac0036b0ac45f80a6be05949d0871ec962675661355d7013752cdbf748c9593507761340f1d8503720c128d28a3a0b7af5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52da80732a55eb1dccabebb9a2cd31cf

    SHA1

    4a65bcf512c38cf3cad9338de8b4dd4fd70c3c2f

    SHA256

    05e6fd22c245ea5557c8be2169056f1e3bbd22e7b4f5b4fa054f23c2782b4b00

    SHA512

    6599639d06b8374bc3222cda26f2120404848600eac65b34465cee2fb2eec0973c7f3db837bc9cc2d1dda5c6c12640583d8ced20f6bb5714013d5cfeb6401389

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    55aa423f1103b9aeb86223b4c45dc9e5

    SHA1

    1a8d854afcaead72e34458a0e891db5133caa2c2

    SHA256

    dd9e03dc38fccaa1380e1775b518d43271671bec076562ee6ca222a9e00ddebe

    SHA512

    69181786c926d049032b6c4f588e83c7450f4b9d4b41fb0e62d33deef4412f1574beb46cddebae78ff12d89a729d40f4f1b26c426c92da7ec9860a95e45ff519

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd7417e636810e7b8c6dac55baa5647c

    SHA1

    f1e333f68d6ab241210bc5bd9129f8f64025a8cd

    SHA256

    d5afdfeacf1a6a2e69ecf0f7a094f47f92b6c5a815d2905d8b32c476c1d96e9e

    SHA512

    07dbea8bd6de1e450d95244cec1a04cb353673b82842ab7788c3b81ccbae74a596ed19822ab422fb84f9adb7dce61d6184f79dc798c0730449f2a68f953c9414

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a26de85d272a92602d528e7cd9d14fa

    SHA1

    a214524e534e96dba61cd619f1379d34dd4d2398

    SHA256

    a4db94afe24b7beeeb294e0f28ee9c5abb38120636a919516a07a93af7641005

    SHA512

    14b153d0a45fdbac28a29856a3f9bdcd948ee39d0f9da2192463faed728f11795a88569fba7f818e1df7922162a1ce64af7d86d785cfd5af73457f03ee49dbe0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5cbf1133c277e121a3b5811f4d4a26db

    SHA1

    a36bbeb0687770fc996f8f31f6602f3f500b7214

    SHA256

    07e77c61ce3e704567e16b28d374248893c07242fba05c4ac3744548753b0885

    SHA512

    14b4b43c61044f729279c031861c06129c7cf280d65dbdaaa1c8923abec02249924ce44cf34fea815ad7066b1998e9d54697077abfeaf2b387213bec4d456713

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    56738230d6aed95bd89bffa8a9ec4ae7

    SHA1

    1a0c45744eeacdd8499456b9d32dbe9410a541df

    SHA256

    de0148c9fe8b0250ed24bb9372086d8c35fcee4185958163de7ede9e6b7535df

    SHA512

    52c5db29a45be28742692d9be08f18ef4a54a5d5173235641d4a93ebd4297f6f98037a17f7d2d521488f02ab86351cdef80c64ad4dd3fcafbb66e6f88f04a0a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    398db9ba4011a801b873658ad154f578

    SHA1

    bb0111632e95edba036c420184d04cbfa3733438

    SHA256

    4afe2719dd12e5637dd26635e190a1e17c0be8df5b29c6f4d82e922890b9c5cf

    SHA512

    5641a23190f0e0aa663af1f0eb1f838f476f9dc285a0aec341e270e1edbaf40afefdb1de301bbf57f190fbde6ca0cef62d2a250eead8927fc285e2ab41655a97

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    12cb746a2cc49a4ff3155d9b751a9257

    SHA1

    8e457c363886777bedc666886060a34b7346d844

    SHA256

    1f08fb671e223c2ca910eded8646d056465b17e655a279b216d1a406707317de

    SHA512

    430640cd40ed9497f93a60d26b5c6a6f882c1b6dfb7d030699d1f3bb26833be91efba0500831e2088c1e37420c8d8eeae274c7804a404d4cd52b49a1cef4f7e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1186f0bb2ea282cbadc9e1fd0d4b0f80

    SHA1

    a2447f64b9138ce4387c57db76f5572fef77f6ec

    SHA256

    64d19be62c81490bf66869b9c994c859222b4bc36d3de3b52b757b1a9259c410

    SHA512

    f876dad7d12452ffda675eb9f9300fddc6cc92cb6e3d6871a5fdd35050aa02f7119590d095e74e706b194de6ee42a3a3766891db1d1a55cb37aec46f69e720ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    294413c262bdbc8a28390f7a57e8881a

    SHA1

    4418f0d8cdb130dd83d246756dd84d9df9c7f4f2

    SHA256

    81ad87db5ee579da83133b33e75493986a1bb2948b0dd3da0655144ff8071859

    SHA512

    3f90a00bbc6e865731e3d42ffff880b26c1d886ce85f0b1edf4ac67d2a64fff21284353c396a422ee7d3d94d865be446d3e406aa6499ebac740c85aebf872383

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZPV3AI4N\www.google[1].xml
    Filesize

    99B

    MD5

    66eddc13f2990524501df99b2246976e

    SHA1

    8eca5d2c26d296d89ed06e32aa9fab2143f6f2cd

    SHA256

    b0394dd014fc554b1f254d08567cd0f20f577bdce5a13c964dd3f1c92c6a7564

    SHA512

    0db9b4d9567cb22fce63b66c2ecac5e4a4aca25c987baaee7c3c557ba88712e02aef14cae4a6d45bf15c081c3c272dee9334e63c20a0077533a9308162190a75

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JQ7VMQEC\recaptcha__en[1].js
    Filesize

    531KB

    MD5

    2ea96f82197c227ad3d999f6a6fcf54d

    SHA1

    dc1499948a1822d16cab150eaee16f4ab8c028d8

    SHA256

    e1d667d61bb50e0a815101a7d0d7f379b7219776fee856eedbe965a049db8d44

    SHA512

    dafee1d415487b796e02ef295073382aac48ac76e90c749028a9241bd44ec04ec2ee34163b8177f94d01e9e9d87577ec34c18d780a9f17b80923106d992749a9

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JQ7VMQEC\webworker[1].js
    Filesize

    102B

    MD5

    487a5328afcf6c20ddc11ca1b46a4a44

    SHA1

    f37e030501a0a3ff828bef96481ac1c71043999f

    SHA256

    de9539c3628315c1a7d33dc3e09dd75767bce3868c188cdc7c90ff207da0fec3

    SHA512

    71e22ba1a7bcab2f7ddce3153eee1cd961de32a9000c94a59f097cecac9918e94b4cfbd944081a1df4a594f20193bcb39fa7323b3e519e5d5956c342908dc53d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SPRIFH8L\styles__ltr[1].css
    Filesize

    55KB

    MD5

    4adccf70587477c74e2fcd636e4ec895

    SHA1

    af63034901c98e2d93faa7737f9c8f52e302d88b

    SHA256

    0e04cd9eec042868e190cbdabf2f8f0c7172dcc54ab87eb616eca14258307b4d

    SHA512

    d3f071c0a0aa7f2d3b8e584c67d4a1adf1a9a99595cffc204bf43b99f5b19c4b98cec8b31e65a46c01509fc7af8787bd7839299a683d028e388fdc4ded678cb3

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z2D3H3V6\KRkEAc8xU6vBmfhqWcqEwWKoQA0wmYHxze0p1ZnCdn8[1].js
    Filesize

    24KB

    MD5

    a049b112ffdfedb83481f11cc8e8c096

    SHA1

    f1fc30350353f88178f613e6bcd5431e81177ffe

    SHA256

    29190401cf3153abc199f86a59ca84c162a8400d309981f1cded29d599c2767f

    SHA512

    766c31dd8f83faec900a2f2bb87940c0623514b0b9c0bff430c73634811d48ef9343e17162aa6149afdd9d5222287690af33b03f4c041e2a26e0cefac303e7de

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z2D3H3V6\ga[1].js
    Filesize

    45KB

    MD5

    e9372f0ebbcf71f851e3d321ef2a8e5a

    SHA1

    2c7d19d1af7d97085c977d1b69dcb8b84483d87c

    SHA256

    1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f

    SHA512

    c3a1c74ac968fc2fa366d9c25442162773db9af1289adfb165fc71e7750a7e62bd22f424f241730f3c2427afff8a540c214b3b97219a360a231d4875e6ddee6f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF402.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF403.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit