Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

83edccab5e...8.html

windows7-x64

3

83edccab5e...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    149s
  • max time network
    155s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    09/08/2024, 23:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    83edccab5e2f6449dd9fd31e57a4c8ed_JaffaCakes118.html

  • Size

    57KB

  • MD5

    83edccab5e2f6449dd9fd31e57a4c8ed

  • SHA1

    106ad1db9a26de7a91aef5fe68587ebf5cb16718

  • SHA256

    0855875fcc504a6d9d2c36c1635b7b3b32268a2f2e0f4fab89ccd7c003d01d6c

  • SHA512

    d3320bb755e09b3526f5fdef6e44a896245dc15651de99673ceac2cd433eecedf083489e315cc3a1ac9ff9b4538861014fff78304d5c4cf9582dccd39cc764b3

  • SSDEEP

    1536:gQZBCCOdE0IxCblyqldTpZBozRrh10dUod/Whk0ptyXmog8UeZt+sBAfqBWuKGmi:gk2i0Ix/qldTpZBozRrhedUod/Whk0pQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\83edccab5e2f6449dd9fd31e57a4c8ed_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2552
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2552 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2144

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    4d8aa5bce50fcc86d09ed4401f86ae6f

    SHA1

    22839c59123a190f079dea3044b8db1c5901291a

    SHA256

    4684888684ef3e1354df78f598f40bbad738e55cb6018850bfd97775d9208832

    SHA512

    fe15be420cd45a2d198a305efa78b8625a9cb7e1e059d39e986964506e6552259a22a67951ecbe670e6390236c5e2bb95baa627ae6426cf9a3ac3344a888ebb9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6477e1750c2b17f73ff8af7e55bc8c1d

    SHA1

    96167db47ff2c44ba3e740c33254aab2eabf8393

    SHA256

    caa4712c58313c04f1371135d730df108d3f795f95f4c0e97135cf78a53abf5a

    SHA512

    e5510d99a9fd87afa70c474c79d8bd00f95d91d563ce9c1b258666e465bb72b92d3d52a1a501bf83667858d4d41aead7f3ed2d225046bc22af86531bb60cedbd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa4bf708765523c3f6b3785cf859e816

    SHA1

    7998083bc666a6a432b2774ddbc8a9c7a17d38cc

    SHA256

    8dfcfad3b4a1bcc1b27edcc4ee7e417e4b9b0ddd6e857eff5363693c3a2d1cde

    SHA512

    e0e2cac04e295f609640665d2238a86f132a4177db646f4ada058a4919fa582bf4f010db4924404cee5d6b8fddffd57ec5b6d67a75a916a0edc73508939476bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    123b7630a66bd418a13b354bca358446

    SHA1

    76c35b23f73bc8449f8df647eafa5627dd9f45c1

    SHA256

    fd3f09248f18e9c79fa4995bcc94b2344cb2133f64cb6cf8a2aaf43b93cd9fda

    SHA512

    c15059af39e1749d647b318677e70a4fcff4b03c2256c5ff4aa1af62c1c70629443f9f464c3731a159e6a03f4c9117f951d50cdb889b825e4c02228a853f9558

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be912c9c63c3779571016da9eccbfcca

    SHA1

    e04fca034ac621e8f9fb9ba66f805bd100ef278a

    SHA256

    2f80ff1ff98c57a7cf4bddc5047eb638ba8f2f5ca4939530272424660645c810

    SHA512

    f4e4d04cb5470ab672e13127b955f83eab51067554b811452a21d27cb2b063d10f477e20dc8f1b8510006d4e8cd78b9832391631b3a32418faf033e312972964

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e9c1849fb5a4bec66dc29ebfb0b34fc6

    SHA1

    9823d237fd92f2c6162abe7d588c7226831bd9b8

    SHA256

    5d8684ed59d776837310a5417504491ea13059d29855a905676334872efaf17e

    SHA512

    839485377abf5d0fa30a66a7646d52d5ccfb68c95a1fac1e49c32d992d92f6164f1b1deb896ad1c3ef378d38336471a44573b3e1ef1eeace11067ab36a3f2bde

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2551c7c49aba3a5da86618f9a443ccdc

    SHA1

    2eef019865debdb8605d6595621c7da613c09adf

    SHA256

    030a27fe9a15086f0adf88d4efb555192ab36ccfb2371f40d31dd173da5d82fc

    SHA512

    3f414b16fbcee6e43a0517c35b520d597ce4bcd96831e3159265fc6e57ce48f5885f5ed3e68f8d057e4600905a30348e35976230abaa75a16057245eff02400f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dbefee343745e756126ad38d1d67db1e

    SHA1

    ab3e9136e3f2b72706735e09f20ca5bf46022941

    SHA256

    d247ca7ff95a46f536545db060374715ed9fa5471954b24b44f38f2efb8987d0

    SHA512

    6582e411f98940f296341a21e37d4d0828a82fe50e8f90c95049279bc58fe11000cdf06d84176b18e98fcd938e073b944902d6cc15a0dfe8ee46b7c1d607a3f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a758dd8bd0f02f4fc60510a004e1855a

    SHA1

    4768ce0963b9c2e8e3590bd751aa45b3063aab18

    SHA256

    9eb5d3d0850dc3b1396abb2ae72f4c7f5eac45ea95112ad2d3a11e5d5fadcc1a

    SHA512

    735db318d99dbd5faf5092a6c1852f3f1e04d9a916c090fee3cff172d8d09ab3dbc9bc5714d2c91e874fe0ed4aa690e63b392b7d6d09f1808e37b0e5cce6d46b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eabad92c432764dd056449427416610d

    SHA1

    a3935748bfeda4843aec2a3530941bcca185b14b

    SHA256

    05717f2cc25af3bedb47b16722fa1b8abd1ad37f3f69e5a5ff249ab77ce85440

    SHA512

    ae25f81909cd6d6d38ba25f14e4275405a1bb073502ded8e69e6e4d0434871e9054dadbc627dfc93929688debbb7d2d336dcf1f4bfe1c857bbc7a5051f5d92e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c3a6600cd798bde79baab9e7e3050d54

    SHA1

    b657c5401485463040fbd8a446ee54c83474e582

    SHA256

    1c98cbab3824f270d5aaced8ed0e68181f0c47d06e4ef7628d5e29b77168fef5

    SHA512

    ef6180eaa51c9d0c75e35b8c8f3908c4f2620e445be606268bbb2aedc1f84794587409e9413a44818a672856d82f94fa6b4178316216e03f36b3175ca351ea50

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6f218ef11528fbca7b94925b23bc5056

    SHA1

    cb6682bb2a7b0c5d5169c520f1831cd365844418

    SHA256

    2f156992187858ea49abff23adeadb05ac6cdb3f156d1c7c1f6f41de8c9a8224

    SHA512

    e188b2218cc45cdaf733e7d7f8e114ddbd6588dc915fa6ca1f5deccb2245c2e9303118935b9bdfeeb45add280c0ec972e9f4fc25826de109a1466ecff1dcbdf5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    127ef9baf140b0b67298e051856cd0e4

    SHA1

    9c45d7da30487a5693a9198004ca941a8e3d4288

    SHA256

    eb90b206dbbaef2687bac3660d2d85fec5f2a366fb21e1ec153f1fe590a2c5af

    SHA512

    e1c89ff804e5f7757d0829bcb01d203a3e5481bd5146ce1f57ed1f44625d925bb599c3f6303ebf70ff5b756ace5fbc1db8880c2e7e65620062c6ddcfb859a1ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    436ef30f326d87ff46b555b4046e716b

    SHA1

    6006913eaffe2552fdd598b22cf61f62d42b5b1b

    SHA256

    dcb7050a6810e0205a257185cb6ca17b5c4f5e70bf4d06db055ceef3cd1efa0a

    SHA512

    bd1e6ac97039285f73f00e5e408e98f9c7c1bb054f5d21afd3bba9bdf9fc2bd24c2c4930890098b51e7c85d1908937a16a482375c246c4f148af40f77143365e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0608d80a8c5bb2273632e9357d998b74

    SHA1

    d852f53ccfb60d90822837266f9a47a081b1eda2

    SHA256

    e4427568023ba295a5985e6ea33df8d1b18bca499300284cf2b5423eb5dac5ed

    SHA512

    b9c26832a1904b02add740e44f55d2c6a32d6293c084031f471f907563324068804bcf5635dc9505c0e78c5440f1733f26498950d13bbf11ec45d04ad1844f95

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c6069e2e6d9e7cf961e6477740b5d6ec

    SHA1

    5417b2d313803c377d91a3995af95a2bf1116d1e

    SHA256

    2b6c086914737b61151e417e4f840264d03f111e9d8ba7cdd3963e63408cba30

    SHA512

    17087de725c2e582a93e520101155ee73c209cb7cc274fbf5c1bddf27010b1780fe2382c37844aa43a02cf151c267e7bdc253fdff6daffd42810ddd646aeb388

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    f81ce4bb55a7ae6694d9f84911d790b2

    SHA1

    6bf3cff9fbfdf6f69362919bc044d4b2e2ee71f1

    SHA256

    523eaa376cb97f5a4c5d18ba07162cc417a65f4a0259d55efa7b143f92d39d24

    SHA512

    9c4a5038cfdcd3f2a28c29d16ded8d14a3c48c3fed2089ebe5c98a31d6214e35c1b428fb06544b9ae2011dbc157fabadef843d6a52cd3426ad891f3e40508566

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    82c9d54403e260b7f84804c84def5ad8

    SHA1

    74e9d31d2c56737c0f34beeee2baf3f191f1133c

    SHA256

    436cbfbfb542eb18f0a5240bf654a8b4d624d7ef9a522d9ea735958513924688

    SHA512

    8d6f42596709d3ad5cf6ed488ed7ddf0acc827e5845b98b8ed0bb29eb8cf9e6965598fe680535d173ce4448d5ec3e58d7035e3f322811e75b19eb9c76c38d468

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab693F.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6941.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit