Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

82bd12253b...8.html

windows7-x64

3

82bd12253b...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    139s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    02/08/2024, 02:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    82bd12253b9c2766c7f31ffc72e18f77_JaffaCakes118.html

  • Size

    127KB

  • MD5

    82bd12253b9c2766c7f31ffc72e18f77

  • SHA1

    2a874cf0dce5ac19957746ccf31f6fa84d6860da

  • SHA256

    455a45539fddbfdeda7238cbb2c656619275ed3e5c076325b160cdf465c8caf8

  • SHA512

    1062ea3a63b69c15f10b01c94ba688370a3bb6263bc6b035cc4ce6b5ba68f25335879a9101b0227f7450b5f91b5adc4f302590e22841209517fbe231368541f5

  • SSDEEP

    3072:Sv2ks9Wu3WsantyfkMY+BES09JXAnyrZalI+YQ:Seks9Wu3Wsan4sMYod+X3oI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 31 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\82bd12253b9c2766c7f31ffc72e18f77_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2336
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2336 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3032

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    409658e0d2c892ebef3a0a5c13da48d0

    SHA1

    dbaeb7d2c791cb8288beafb81811a37305a28cf9

    SHA256

    0851526046e2fb27ad0ce3ef43db53d359dc6b1836e6934f5f36db383e8215d8

    SHA512

    3fcc99070609c878b7b69ffcd976915298926bff987b3fa0c0b7129f62b3f9097a4d0951c490c22789e6b3375a85a8a1a45a8785c0b486aa0836c3e83b597170

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6f99972105a372543283905256d9d82f

    SHA1

    aa0cd3eb2a22bff8f399619060485c48b4b55ddb

    SHA256

    6b7c61aaf7c723e026e3aed4a91869f525211a7380c5a171bd8609c667da9852

    SHA512

    938535392369a98be99165c102f4eb4917c1fe3eed2160d313c9ad6fe8e96367ee3d18ef2fe22ece0de5917de8383606d40a6681db5c0751667d89552bd0d02a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    95ad6c473801907081b012841f63eceb

    SHA1

    3c2857213233b38150e1553a2b4921a4bf85d159

    SHA256

    4420e4ae822187aadff42e9e075bd68b83300a3396aa7e2f675ee8f59e3a4be4

    SHA512

    96b72149afb80e7012f8813e0892b243cc35427903b567be43c70776ddf386f254a59f7296f9a5a94730b3032d85dd1c30d10472964e344397af8ec694d729a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    46d721022ec73495838b086ce7daa56d

    SHA1

    3750f3e1c536f155ecd33c01a41494b5b3e19d65

    SHA256

    a01da9b41e78eec52117774a352c008cdd5b022eb2c681e5deb53a2ca2ee7ac5

    SHA512

    9fcdad47b7fb49b3072f458a54c4d2ec34a620c844518ed93480795743578d77173c8a923930c87e205ea13d2f192e01ec462fc3f072ea2a693df7347351b054

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dddca3988cd2a147048d643357f1a6e6

    SHA1

    b50d1588dc78739164f0fa2c3e823630f7da9f4d

    SHA256

    a33b17193c1f18f93c5850d2ed7a295fe4a162ffed2ac5013c911f554ad64429

    SHA512

    d3d65b002969d1d099dfb9abd1763dc56d84111c29559c486250167bf6abead8d0eb3a8a20a758cb805582d953af3e28e7a8401dae55c7b080c43d46af75c7e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d7fc976d3054bc65d8082e07a7dc6a9c

    SHA1

    0c72fef87fbb08ea310cecb5a73c1557ed7b8950

    SHA256

    4abceb883e3434fd5897b4f7b0f078917bdd61f79cc299c9260939af4b26d5f8

    SHA512

    99f8bed8633b1764b61cfa6e288e959e0d69b05bbd8263a066bcab0c91de8109912e2f1f8740960b70baa2780eaffaeb20b48c42bb35dc486d7451c829b073d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d8db64ca5081f911ba257b4c29c9c0f7

    SHA1

    b553c220ddbcdd05e78b09d268731ee3759e1fce

    SHA256

    e07be9dd0eeb34837df802ea213d79af34f0a4aa31921fc3219dcc1e4bccfedf

    SHA512

    90b5f0025c6db890d0e6b6023a8c8143d15ba1f9dbfb8c53fc56f9d19da258ffde599bfb4f717d69e8bc6e16f4a0ba8103d300e3976f449efa381caffb86fc64

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be7641abecf0aeb3c30295a998a42cf3

    SHA1

    b02dfd0fbadfe9fef2e07357cf0ab176a9d1123c

    SHA256

    9168bd1e93a3c7fbc42bc2ea1af74da85884d2291994e9b1e18536599ed76f6d

    SHA512

    5dae04b10e2b4e2c867cbe1814e0c2ad89adc8a8ae048d6806cca46ca0396b1eb74f3396a1c626de47cb3cf7a91ac62c48c9b0c185022658bdd769ef98bd5581

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7509c08ccca0bc1c13a3a358063ef881

    SHA1

    a9bb3ff1629617879ecffe4395a55357ed94437a

    SHA256

    b887a7b09e6081c1fee56d3138ecc6e7caa1805245e43c58647779138d62fc9c

    SHA512

    33a0e5c8eb34d51e0b54bbe77e0079bd1de0460788a797cc72a9f12e8bc9826708a2c4e647649911506792a07f6ad56456ffcd093e61e992498ce0d9246b67ae

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8F95.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9014.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit