Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

a2142ef8be...8.html

windows7-x64

3

a2142ef8be...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    150s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    17/08/2024, 09:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a2142ef8be8eac876e8141afa3e69523_JaffaCakes118.html

  • Size

    64KB

  • MD5

    a2142ef8be8eac876e8141afa3e69523

  • SHA1

    082d0bb63a935d7d98ddcd38c085f8e2c2e69da3

  • SHA256

    5d8a4098f1a2ad78f640054cfe3d50505432e5d139914ad2e6b594ed802e152f

  • SHA512

    624ce54d22dfb1664350c667f531c84d8313e67f5f1d3217ff28635ffa3140972ff203779b843d369c78369a1dfc00aee56e6e6f4a415c6a629eed6e2b5a2a5d

  • SSDEEP

    384:IQ/akcDPPXh4JlLDSpbiF1JvmP2DHIskDln+5udtaN7subADyfntwewX4cjfefkh:H7LubiFPvmAeQD7ayfme5c0kh

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 31 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a2142ef8be8eac876e8141afa3e69523_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2976
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2976 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2832

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ecd757b882e17a19d126c5d8b955c49c

    SHA1

    4b8152f6db530e2d216a653ed3a03d636a03020c

    SHA256

    e63368853685f6c9293b97d74268bff393ed53452ef7e94e7295385c21ccb015

    SHA512

    3374fa3524c4cc7099be9d84c2405ec3a83db9e3a33b1da1df3cd12dc94df8a55c0302cdb01538f084553932c41d99e3670ffdcab2ce56dc617b12c340256ffa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0728715ba8e7b8329801a2e8566bc306

    SHA1

    355ffe70f5d08d8af43c7a4775462b045982d3d6

    SHA256

    5fa63628face8edbbb29aedacb5a0b200e83df59a63db1737c52b4420ddf8ea7

    SHA512

    9c6a1ec1dc7346d5a45e4c47bb2f048c5573af0d3fa6677dbbe292f5eadf526b86ae7891794b14238f7839f7a913b8b87ca934a0aaab9dae753303c286a3584a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e3c54c90f30cd607ece674567c9345e9

    SHA1

    63af1afa28d937ae1a35e1a73bbdd963832e52d0

    SHA256

    32ca4dd64ba4bb057d42d6fd74110518e194c12e912282ceea15c6f0e11e4d45

    SHA512

    6f9192f8a85107fa2b6b7d0e725bb53978ee9c5a7fd9d8c4f8584b70c0574e00a5cd32d55203747cde78a2ca80c129842ea7ef7cccfb0451977eddba79600b1c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    09f1b1ca95c05338be96e3268a8a4748

    SHA1

    54ee80385674735cdfc241f84dfae9cfdac32691

    SHA256

    de8962634a8e96ad0299647f3b2d4941020cc655808f5aa12ccfe43391cac0b6

    SHA512

    b11396c5cc9abf223186eb1f568bdfe52ff9eff9dc3a8671d1ee9e7f5728fdf7a82d8136853b7bb4fd74f2dff2e73abafb11878a72debdf2b9a36edd4dc2568c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    535168304270cdcbf283428b55a18089

    SHA1

    ef22529f22a3f4e39b8b6fc8e5be25f76c8c9175

    SHA256

    fd4b8a9842c2d67e5d81bf784029cdce661acc4fa57132e34f1cb6ac17c2f183

    SHA512

    d5d3564953f1589c89d7d5ea5c930a655ff5ccb0ee59b38bee9173b28ff0b0baeea281f121a2499ea11e02d21559e5ce00351c40561b7da083f15b8c16b13233

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d39e0518b115f84b896ad4741cb4917

    SHA1

    8ca184fd5cac5f2710b0466cc87c246627b422fd

    SHA256

    187f7a7d4b46c1976b57b4a835806f450320118c8509708a6d08cb2fbe6bb82c

    SHA512

    c457bab2b58b7819943dab32068ac690a4e9c0eabed67fb567e7598eff1c1e90269b28fd5aeab29958611a8d67f5cd5e84393c270ee7f6acee40b9ed072d03a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    acec3613efaabb0cb856b241c8603e19

    SHA1

    1ea64f08824d2437e5eae4f9695c2730a2aca164

    SHA256

    c756303b96a0ceec9fc4072e4f7ae15deea8a72848ba476644521fcffb44a869

    SHA512

    307a3f2217dd80f48a5325f1a4ac0bc7bcd126a0a73267d4c8439b3a3443540ea26fcafe2cf6b8122f8f0ce3208d7f5f3fe6eebf8ea096786815c316cf1ef2df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b9a1ad167912feb6c39764ac4d7500fb

    SHA1

    568b62c4483e9e774967ccf5c4df384d893ea4f7

    SHA256

    34cc077085283f804e83498365ae58c50f284ce0bbe4e12643c100c466a1437e

    SHA512

    1d98028d56e33e7f950084eebf79b84c71a18c4b0421ab8c483c065910d883e280d0f28c009b14e4e805ff71e29763e8f1a7b3990159ae6d1b6bf6a3b5719648

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b8ff04375daaa569745104c4d662a265

    SHA1

    b20326f12a291caf3985b9f0deff5e434110cde1

    SHA256

    6478857fe3174f3dbf1fd07c4103b9ac6aad175759ba022f12233258f6221da5

    SHA512

    ddd5c5b6a51addf431bc903a624ebba3df6393e714809d7deb99c073e96901251847045f169d66d35eb1b071896f493506dbd6180a4994907a52dbdf34265b1b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab84EB.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar855B.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit