Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

a52ca38a1e...8.html

windows7-x64

3

a52ca38a1e...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    135s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    18/08/2024, 03:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a52ca38a1e96819e957b1c2c0f04b312_JaffaCakes118.html

  • Size

    44KB

  • MD5

    a52ca38a1e96819e957b1c2c0f04b312

  • SHA1

    fd4a0d429daa9c2ead47731a2f3fb7a9b35ab25d

  • SHA256

    1939d180825c2e3be99edfdc19a5bf857c4b2b9fd9867c4a09329b318417bab0

  • SHA512

    7f533bfef127b3b447e068fc15e9409ccc693760ba8e8ac6033c86a1a0a05b619917c3bdf2d42104c9a3af044315e59369f3e712d7bdcbf61b10d0978f77ec23

  • SSDEEP

    768:EGRbEXCogTD+hvpYheHcFkjctPM4viD6lLKHIpx4Tdq9hzF/48mOOkVZWL0VEC:wXsD+hvpYheHcFkjctPM4viD6lLKHWxX

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a52ca38a1e96819e957b1c2c0f04b312_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1728
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1728 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2152

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d0ce726b647156844d064a2861a079a8

    SHA1

    fbb9390a4ba069caca3af013769414fb7cf482f4

    SHA256

    644abf70bdc219a927b492ee1c7109cb73f420b243ce756ac1c33de9f0387fcc

    SHA512

    22e3a264469b5f6ca19d77f13c8dc3f5e955b6945a07822b39d43341e13f1ec7ccd1349af72c0d513f00b72f4c613b2cb40e2eb145da0c82cfb5c30f4539e936

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2bed52e8b4a3d7df5a56cd301791fb39

    SHA1

    054772dd0e587203f0a2015c100a8d86ebb2afeb

    SHA256

    80b2982ae0758aab7f63b1b8a8eca40b4c9896f0cbe3c6ccd95b1a41c2716f3f

    SHA512

    855f953a0d7cbe123e6a5011c9ae4dc75670cc7e1f9c26482e73d148799460c1ff3e79c989f88b14a4ef3d9a880cee6a11077754bfb8711c3031fda76ac072a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ad82f25ffa3bfd9a6f214e02efe88525

    SHA1

    cb5acb65c2c0fbde51c85571f505a6c137d99eeb

    SHA256

    02955651f731d490212a1bfbe3cc16d1d8e6df28680689067392e0f925e41572

    SHA512

    971fb38f227a8ced7100663ea5c21332558cd6b6ef871788bdab43b5eda48b2ea8f6a19db5dc69494bbc1e3ba042c6e9a5171b274f9ab682dacf7dbab0f94ae3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1e821f95dfad4e9f71a8b5b4bab5b346

    SHA1

    1612bdf5f00cb7c59c060ca65f57a2e7a7f11f58

    SHA256

    c098f23e7c4752e69d5174fd99e5e75b4a46ee550014b13cc22237416cc13d8e

    SHA512

    a5dd6bdf4b37caabd8c2c23745e53c469d7ff11cf72af75c33d961f455ab26430901fa385e48217e8231a68105a88210a2dd19d934b92c7074de033e4ff81cc9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a2123009c2c72dc3f4186af66fd4598b

    SHA1

    3331fb03f3ad7c1fd5f594fa5e05ab6462af2e25

    SHA256

    09bf25abce22661c465f996fc053e45641ec59437e9ad86c98ff45daa6b68684

    SHA512

    30986b42948d0b8712e7f61d28a06c4c69e9dde89ebb7c6272984c8751668b42413d350274c3b0bbf8a82496832d70f8fa081fde14f5cbb5d550d77bd512bd7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4806ca41cef960654f77e0a7d5c05c54

    SHA1

    38454fe4350af06dee07d0110ed0e9a9833504c9

    SHA256

    439a14d91b27327c6fd38fc6fe9dad5e7bd0b41ced78dc0b2eab324595782c37

    SHA512

    fff45aa0284503c687262a7198fec1f993cf4b2fcef8cd397bd25f1c8184ffef9042b8e5dc0839a2166ff3d2adc1d462c9a5648af4b122fe0f8683797accb60f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    480b1eda70a7b808f339b3ef0783f40d

    SHA1

    030bbcaa6a7db1a4e043af33bd2b43169a75e351

    SHA256

    3f829150721d2979f47d861eee384937515f222f818fc7532dfdab04b84e59e2

    SHA512

    db49587064a5b75ca17e893cc6d5f9d698317bcdd1d0f9032f891b8a7c561485359850a6c8b5f44aaad73e8edf6e47cd85af6baeec87ddd1c2aabad06098a96a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b2d3b69705bb2ec514f23f09319eeac9

    SHA1

    aad2d188f1240da826a3edb6af53d99248731b38

    SHA256

    10546555214e931bcee6f5d2d33f1714bcc680f3f84c7d9de266a46d7aa413d5

    SHA512

    edd8a021eb8f1b911b172c2ff4e650bb3ba3cce90753d590eed649305b1556255aa5389f15ef5e8610756aa5512707f7abd22d7256a6fdf82b5d9b20118eb8b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b4d0398da40feb9557c1d2d5f839f236

    SHA1

    e673cd00bf59a349e9fbc7ee43b49fe3119a8490

    SHA256

    989e08c82e0e94f235513bb54d13a2d4504afb11567f262bc64132520679af63

    SHA512

    73b2ecd475e6cd6dbaf72198f267cbbbea69a7b417e09322f5745243c1afa509b36180b577bf5b9add291a5f77e201155038ff0fb30242d021200da36b2257c5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB51D.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB5CD.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit