Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

a1e34d0302...8.html

windows7-x64

3

a1e34d0302...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    17/08/2024, 08:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a1e34d0302111b6ab1b10d31fadfcbc2_JaffaCakes118.html

  • Size

    53KB

  • MD5

    a1e34d0302111b6ab1b10d31fadfcbc2

  • SHA1

    fc314128e1649b8d6ce69dffab1d58b6b92d6d03

  • SHA256

    470769bc14b35c87864ad3872c6ad6bdb39f68c7bb697ec3144cb92bd4b4eb71

  • SHA512

    7020a12390bdac536b8178998281cb0f92d0800c5d88a463c8f72072f56941dbc07b999e38222542868fe941b85d6a8e3dd532ec18cdfe9258b92f03cba276c1

  • SSDEEP

    1536:CkgUiIakTqGivi+PyU8runlY563Nj+q5Vy0R0w2AzTICbbNoW/t9M/dNwIUTDmDe:CkgUiIakTqGivi+PyU8runlY563Nj+q9

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a1e34d0302111b6ab1b10d31fadfcbc2_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2644
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2644 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2756

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b8f6aca35355ce1cab8ba08966b2f00a

    SHA1

    29350c6258fc3e7288ef5b7d45ce9fe7abe4d83a

    SHA256

    f0c6477765dc729a522620b87b54e609284629551e45e9a65246178eee92c7c6

    SHA512

    f5d155cbba7439df7371ac92b6b15edb13ce73afb3eb84e5db4115e35a71442c95d1cfb989cf61c78c48be30a1794ae46fef02db323dd1419dcd683439d695f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c6b6a61e1e1dc9c7de7c3855a6863db2

    SHA1

    70aac85b075b3211f593a6c113dee2348ff3333b

    SHA256

    c2bdd3016997b45385489c6ec7f5e5d77f52d4775e9bac3ea64ab4f762b615a3

    SHA512

    fd8525baea9c98f1db72ffa8b95d625c15b2234ce7c0f37dc553bdc8b01f1efae95308ebe79d79ef285ef0b6ca9bb9688dc3d8be55a5a53ce4d913af4a197202

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    27716409d93ebcd5c2720c5872408461

    SHA1

    d96a566663773bfa7b6d268d56ecdddba21152ba

    SHA256

    07dd129a349ce16b2f154f05a3c4d6843fae3d6deb1831fe71c5a0bb99d1fb0f

    SHA512

    ff202ed3890267f1d6cb6c693f4c60ae18a19ca6f8e44b46845925d5e9cce7229233b0f9be4dc1f41a0910df7aed059a9f6c4236570ab7dfbc7e29d8e8338573

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    db1729c81a1ba741e2f074bd454dda36

    SHA1

    311016355dfccef8e65a8c2c98fab43c8d5dad19

    SHA256

    08fd6609a9e09e0de1a112fe62721f9c117fa5a83714679eaa0ce39f3864af30

    SHA512

    00ee9df0cf7d6f4b38dab5aecfc2c5bd0d7f50a52809ee08e46d616d7ea47967c146ea85676229db77362a6c5fc1fa2cf4a6a6feb9ed3bdc71ea5ea52680bfde

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    49dee329c029ae67779cf9909d0306f5

    SHA1

    3dd4de07a78684852627400e37c8db414e395aa2

    SHA256

    597fa65ec321f5408a860e9fc56159f7060025cfa61e27d1d5322eefb045dc07

    SHA512

    42a6f73ee12c271e69ea23380b0b0e1adbbaf85195fecfc76b8416c0bbfcd7572ad6d7916f7bd91a78626bf5e6c1c1e7edb232c35c3440bd862e96a5feb4b47a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    55e489a692b3738cb72120a92e329ce6

    SHA1

    eb3032cf26333f70ac6524fa98d74b4dbafaee0c

    SHA256

    0a12d339c4f9f60fc1fa711eb6e7861e05d049aa6f4685cef6e20c9930264cdf

    SHA512

    6c23fc0e4671c3b1b7e459c75f4ab8395ff6a4abd2de441ae4645b1a1d6d27bbfea0e78cca0e9ab16db343384264b5c1e1948be642cf64ced65eb233036d0456

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0ce806ac2b1451f646c31eefb4ddb3f4

    SHA1

    e1cca4ed4a4e867073e02ab5fdb2ac336dbef089

    SHA256

    f9fe1fb29c4873433e0a115a888f499c6c828ea3ff9f1dbe4560c8e1664778d9

    SHA512

    f74f41cb01f0aa9cf2364adf676eca3fb97c20d3941c9aee7b7a9381a6c17aadbec1c2434902cfd17d6c8d00263c5525804cacb9f1a1b61a408b90b0a34e274c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d1fe05d8229dbd69a48bd11ca6ce5fe0

    SHA1

    f148480e76d1b959daa1748e778fc2972f1995d4

    SHA256

    fd738ba0c1cb305f09b4f5c8227c4ca0f5576a1b2fe01636f07ec883e099e29d

    SHA512

    2f5344870ce8ed5eac8b9a8ef7865bb25f9ff15170c45c8cdb5954b510855e1f1b3c66938d91cb4509b0ec393715b1cc7b7b7c08c4f89a0ffdccff7015972761

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    96e87c051553c7b422056f810376e480

    SHA1

    1316d8cd04602297a520f988a5469d8b6225a04a

    SHA256

    6dffdb056a730b1a5241211e2edf28c23a38119a5802a9960d91ce6d56002a5d

    SHA512

    5d6ed544f25f90ce7f3b58a20c88e33f51feaa61de0da9a08e8e5d5800c91d090d21e7a6e0b548c820f0de965ff5ef7cf305829d272a42521b0e97293c161035

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    785f2cc9968ebdb8c49ed62723169d36

    SHA1

    c7c01ceb28609547e75b436f60b943009a29cc62

    SHA256

    0624ec7c431a53d252a9d629a991387c85fb13d7100aad4f072ebc79bda7181d

    SHA512

    39805295c8b07b130691e61228681ef49d15c31e96a5dc3f8286d404480cf9c4d4792faa860e8c0fdaa34b496d2f45a1f92c8a1d8aaea7b7cfeb0d15848e77d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b111951aaba848e280479c526bbdd903

    SHA1

    987febefaff09b6988157a6c2e99d5cdf0fbad60

    SHA256

    6ab99258410f0e83fade489e280c0a4265dde4d5708ef7d7290521f4e227da66

    SHA512

    f8532e16fed118c02bc4fa35d5a2ba9dce7132897933fa29105d4ac06eb317b6ea1fe9cae8b6a7f5440c33a6f973e81494d805c32f19c018b663c3fd57a01913

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    61e5f55ebffc58cd64af27f220fcde07

    SHA1

    21a14ee2ca3966b8a5c856d74427f864dd3d7b57

    SHA256

    9366d9ebe40cc22e44cd7ff852d75d67bd87bb05a9b501bf9f0d13f05219740b

    SHA512

    fe13cba8e8ecb0178e2637b4537f9cc007ce69157ec27f0827c9024b3f7b9461f601845baf10a03d1135a6abbbe06b01dac0b33a1dcb8328fed2ef3465da47de

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2687e6eec947aabf4f43e6a40761c74f

    SHA1

    1e198e91c7a666ae8ab0a63a9bcc37f516bf59d4

    SHA256

    8c27d1cea0a60c3d4c22bd4277da44960d2448496d445bb887098bb7135be9fe

    SHA512

    eafc2677e061ba32828ae0d51b26b7b8e5e61af1903ed7bbd228af837a2027855346a8de81dfbc4d90099d309aa0e3cf84283f6317184d0bd21cf42a20c264b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eea231a9203f87857495c7893d824370

    SHA1

    594f43d890e9e6b4a2f092477d86a23caa54e997

    SHA256

    b394f45158917f0b0fe85baf2e75feac276c44da0d5029823f409dfb1d57035e

    SHA512

    4ce21203e4cfa6777b41dca0f746e0e9bf8fd5ce5e03843f30baf6bb6b84a24aa446d34e561d323a373fbe93af965908a65dcdd1746cedc7b605be3fcb1a2708

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d016ae7ee69e838b302fca22fe25496e

    SHA1

    ad26e1323cfb3f6401c85e0932379ce33891cec3

    SHA256

    0a59c46292adcc18b79af8c8af01d56ae8d524a03d7c3acb712a31b99e433c48

    SHA512

    f8f3ee940753cfa91e87bfb922d9022c20d2d460d08d557f285949ec6581ae10b134b24cbec4587af20a18991395b3716915ee516b05d56d7963203782dd57b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fe3f6c99bdcca016a782d2578eaff315

    SHA1

    a6cb9798503ea7f6a4a2f1b74b4d3539b3902eed

    SHA256

    b69991c3244e6b5d42d5bac298a51eccc6954ef6f63282d23329f4f6df71b887

    SHA512

    3d1dc8e09ada331eaeb16c370d5391f474ed88e91e6d3c471673ce0c982f78ed747f9ddf0324fcad9af4c3fc03ce1bc3d6c10d3edc984ae987dac8f635ec4cae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    80537874c5492852295beb2d18a58389

    SHA1

    83e0449ae8ada2cf3992b934380aac3e0f132c90

    SHA256

    1e32d6080da4136946796613f6060b4d6be68681a3399e3d340c7b45cb643628

    SHA512

    e01923fe40b258ef03c56671026a215df761e9fe05fcaf3ffe9cce17d9ec0f277a9cca08873590454f26ef97ad7aff50f6f07036e5410e9d6091be95347a6546

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3c2ecbddd17cc68da40a296793670ea4

    SHA1

    afa85e3bbca5df9bae031ec7547a3e54ccde36a6

    SHA256

    857bb3815c7cf35ed2bc3213f253bbd1bce97c71c8e838d8d619d1090f0edb95

    SHA512

    3edc7c2da870504033093eb1f0dc22e9fcd1465eaf98af4c45f66ca619d3a9cb73341caadae15201c88072e42829de5676252555c490db68eefdc67a115834fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d2cf21c8c68378ffdc15f945a643696b

    SHA1

    3fe4b5eeee209b6a8c415e66e59a863ee3acc744

    SHA256

    f056e3a115de05a76e00ed670a49faff71121e90abd11d228c4b14144841e2ff

    SHA512

    9eab89dd5d3e8a0694762429a1745898573ddcd7d1ff84173424e488eb0fbdaad05672b069028817b31902900c56f9caa717925884e311072d7d485543cd5c87

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6XUZ2JLF\wt-logo[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab31CD.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar327E.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit