Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

72cb0d81b4...8.html

windows7-x64

3

72cb0d81b4...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    26/07/2024, 05:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    72cb0d81b41a53bdd44e33922a048312_JaffaCakes118.html

  • Size

    18KB

  • MD5

    72cb0d81b41a53bdd44e33922a048312

  • SHA1

    905d3b1d9b83a472dea0f49e821b16f0c09b7076

  • SHA256

    41c832e09ee2e74c9e70690118c342005db1452442b6c88d09caf9092fffad4c

  • SHA512

    8e71e985ce7978087bb1e8bca2c0d33acd174521688ee2e4960f9f699ecae4787ef6d9ca85b7904003180ed375775f69a63f8670f04098300784eff1c104667f

  • SSDEEP

    192:eV1hh5jcncyFQbHQa9XGkyH9iQzTp8fEIs7hZm+KSaOek1vpEBnrQ5iOqsFJzODT:+1cnx8n9Wb9C0hg+KSte2vpEtAJSi2V

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 49 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\72cb0d81b41a53bdd44e33922a048312_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1956
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1956 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3008

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F59A01A8B782D93EA6991BC172CEFFB1
    Filesize

    867B

    MD5

    c5dfb849ca051355ee2dba1ac33eb028

    SHA1

    d69b561148f01c77c54578c10926df5b856976ad

    SHA256

    cbb522d7b7f127ad6a0113865bdf1cd4102e7d0759af635a7cf4720dc963c53b

    SHA512

    88289cdd2c2dd1f5f4c13ab2cf9bc601fc634b5945309bedf9fc5b96bf21697b4cd6da2f383497825e02272816befbac4f44955282ffbbd4dd0ddc52281082da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    915a20a09526f8ab3629f12ef809f261

    SHA1

    d91f9992beddd14bd32533cab1e8255d36f46a2f

    SHA256

    5ad71f19fcd8959a9c1f5ee55ab3cd04c4d494fe1995ba557b417c3669c68f09

    SHA512

    2851171b502fde9ac9b47b4e3aa838d4038651cf521bc3237a14698cfa4f92972286b5dbd9c37d29ff49a659219ee27295752aa79fbb0d9ad10a034cfd47d6f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    618d4a107a83d7e8e099326036f93857

    SHA1

    faf77a84e0c5d05c4093f18716d0f81a777e80ad

    SHA256

    42b62fbfc5803e82b06090b291d3bfdc388b88e8d314cb2d8e4b00d79b37c1b4

    SHA512

    1bc98d065227bcd6076777b74650ab82c61b3751313129e072e387e8b52751a559b301a3a19317288e87bf20b0fa3c890570b6ea6c518c2c71219b135b8be140

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6cd2a224a2f7d058d311ed838fbd423c

    SHA1

    7d754b22c45b5f9aaab5485dda9f5eae8eb52fd5

    SHA256

    4ed9e00cbc184dadbccd0dd65ed1d8e5b9985c36c78a75dcf59fec77df6d3582

    SHA512

    2b21a73902f1dcf0b95ea66084e178279c70f639f0ce240d441c15467dbecefc141beedc670af035923e15a22f844915103bade9711f8ffc221805265208aa29

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7ac034a786dda43051d873498d8baa70

    SHA1

    90de99f2956c6dc51c8bf52574191837622d6947

    SHA256

    25334726c9e301c3da205c5cfdfea8d88c1bb3528260e8436bbdcb0f03f72811

    SHA512

    144b5c301b1291483e527fb12d15ca555da70597de6fb33e147e55bd838409428310a1c1f83faed9a5079f665d0f85cec6572797b370b374c6fe63f338645133

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    68aaa0180b8d040f622e8511a051f1ac

    SHA1

    127987f9616242d551e2ed9d3f08adb376ff9e5b

    SHA256

    2fb23ca8158258256ed7200b422d207584eb0bf1a3c1dcd11c11500b125cda7f

    SHA512

    97eaea2e25870127a862c43e54d991bad40c478828f7a966221f34886d33e2d2de8661aec1391970ac580d28baf3e83e8ef5a2985994aff3fc9d71f668246059

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7543b4f7824626ed1e4e2fbb14962131

    SHA1

    f8fc1f8d97ed390c6f6c13d2d718f9e9cfd8bac3

    SHA256

    33094343319ba7f3219e28db506a7c38182d0b9377b1291798c3ce3cd8afb509

    SHA512

    d0b04f5a7d3ce789bd1d976d6949b147e2289a38acbd44662e5ab4770923aa4110b827896108c38edeea221a26683c1057ab54627b249b3d9befe98417b2eab4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2c9f06a2c5196e5261a3350ca5b67170

    SHA1

    8d38ea4e44f81b74c59c6a50f3d5665104c5140e

    SHA256

    f2d263ac8b549754b2c7ae852900c67086634fc13dc20e3926862f44c46438c3

    SHA512

    10d934a2665b90cfafa44a553e5be20be6b13a756a7da6ad7e88292fa3a50b51ac351934534412ae9c161953c9fe678312ae0a6ec6e3722fc83aee4f18a70293

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ea555946f11c68d63bd306f7c41e0a46

    SHA1

    aa3675655beb61458bca94ce00c912cbe0adefb7

    SHA256

    1ec980e1480f2a22526df46fcd8a4109449ea49109f7d7e4a6c283578fe965f0

    SHA512

    326238103025ce9d23b9bd8b487a28d01ff663df8f1884b2fe81a82cdaa4e8cd01806b92409dcd9af03d0e1046f14670afd76a9af194a76ae7b3196bbfbf8c18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bf3f09428ba2520b428040070b688376

    SHA1

    777d33e19242d149c1cf21b77e0c65870932006c

    SHA256

    a76950c881ab572feb39e06eac30f35dfd7f7aca0a51d9af1525030a0d038613

    SHA512

    dd1c10aa87b9dd5b96469c551f5327541fe6b5bd5ca44a2ea430b8821ab68925ab8ec87be400d3033243ecceddc59f93da3657438b46935a3f92bf9b6701807a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ab819c8519afcc40ad86f8b114907a58

    SHA1

    0078f4e872bdcc5640ae7763dbad0f5d94e56caf

    SHA256

    23d28040942a655f451ff418ebcc572d1b67c839395f025fc1ef8be94e079124

    SHA512

    75c5355cd7619e3f828d1463eabc7c5be791c7496faa18c459ebe335600af63d9b5b7fcf90faf2cf8e4b19a0c23738a9d81b6c87ce8863fc557d5a539e4fc323

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F59A01A8B782D93EA6991BC172CEFFB1
    Filesize

    242B

    MD5

    51af73aaf8ea0c772685ab566ee11dd0

    SHA1

    ec8e98be8b115991013b09544a1956029c1c0555

    SHA256

    3314de567c10321be02f14351b913cdd540faa6bef0d8dd30d826d41c8bbf60a

    SHA512

    d5be4fa90b5a97ba99d8278f5739c0af53db67f235d065eb922940fd8959609504436f56c913c21debc5eba7e8b8247c4a7b82ee8c9f6d1ebe5a7b733da99796

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3H1FOMV1\styles__ltr[1].css
    Filesize

    55KB

    MD5

    4adccf70587477c74e2fcd636e4ec895

    SHA1

    af63034901c98e2d93faa7737f9c8f52e302d88b

    SHA256

    0e04cd9eec042868e190cbdabf2f8f0c7172dcc54ab87eb616eca14258307b4d

    SHA512

    d3f071c0a0aa7f2d3b8e584c67d4a1adf1a9a99595cffc204bf43b99f5b19c4b98cec8b31e65a46c01509fc7af8787bd7839299a683d028e388fdc4ded678cb3

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X761FPIN\recaptcha__en[1].js
    Filesize

    531KB

    MD5

    2ea96f82197c227ad3d999f6a6fcf54d

    SHA1

    dc1499948a1822d16cab150eaee16f4ab8c028d8

    SHA256

    e1d667d61bb50e0a815101a7d0d7f379b7219776fee856eedbe965a049db8d44

    SHA512

    dafee1d415487b796e02ef295073382aac48ac76e90c749028a9241bd44ec04ec2ee34163b8177f94d01e9e9d87577ec34c18d780a9f17b80923106d992749a9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6808.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7055.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit