Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

adeedd3b99...8.html

windows7-x64

3

adeedd3b99...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    20/08/2024, 04:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    adeedd3b994300d25575a9dc75b79c19_JaffaCakes118.html

  • Size

    5KB

  • MD5

    adeedd3b994300d25575a9dc75b79c19

  • SHA1

    ebaf4f169b97b752bb6fa37913db3f3e49a23400

  • SHA256

    c29f3bc62c218742aef5410fe94d1156b50a8316761af8eaefe7fa97ac4bd64e

  • SHA512

    dacdf39b026feed2df44f565f2c0363a175259dd1f7f80ea4879c3f9d2f31de2344adc6653b91409306d652eb5e55279e8978187fb6cf29da10a144f9ab80b86

  • SSDEEP

    48:Imv810hbXlJXCwNYzN9GgNYHgn1kebqSJp5GzIMzbwFeakpe9pbJP/0b/GySb:OS1JrgnWebxwPzEATeHbh/K+p

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\adeedd3b994300d25575a9dc75b79c19_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2412
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2412 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2408

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2ddacd31c05c72352ff3afb9f89facde

    SHA1

    1853f84fbc7e866c29b0506fe333c7ccaa81420a

    SHA256

    ec4ac32058d9c9d590bf6cef24b71a0b45327d0c0e83d4f4cd705fe61d5d3a1e

    SHA512

    13b3bfae293240605ba3698289f0e80971bd759fe998cb48d4225806daa58008fb4a13499ef87f1d252d40b34d240fa129cd050adc4b88110f6297583a96e510

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9793f142691bdd27aee38029238e6119

    SHA1

    c73a800d150a35559f77df7a106b46b8934b41fa

    SHA256

    829c3d623a98bfeaa19a87fc1447db3176b7afda0a32bdcb14fc2d1ae863e162

    SHA512

    61489f690e295a790ca7efe933adc4c4c371cd8756b066c1f550cff7398fa45ccfe2e4f98d1bf5f8f6478a360434d2de7cb2df65a846d1db9f32916452150b43

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d32218a9ae7e0d7c94e17851ad048b4e

    SHA1

    b4fadc9eddb8fc957518120d59d2dc4630e45484

    SHA256

    0b41ee6e5f56199a3c59557c81bfd00e8896151ed4cc966ed1ff0c59b4a0a1d0

    SHA512

    5c7b274f6fb849bf6a84e0f4b8181126963a242a0304ef1b09d190b224c7fc87c80c1b4d1e56779d966da3211758ff9f3e86a2b16b6118fd499ff332e1e24b39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a2b2d2c44b374b8a5c1a82f80af08607

    SHA1

    5bb27304ccf73bca9e82dee6ed28a3cf69b20e26

    SHA256

    c60cbc002054567f3d5946e07737d29716af275a68372823ba41b9b7a42531ce

    SHA512

    e09cdff17d2110ea626bd800b2ae7a6111cf38f52af2f04a1a159a409e9080a56adeb9d25734b8d38cabede28b5f9baa8fe17228319ccb555547bcd508f3ec8b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c4a84c64081991a4708f3c08d77b5a4d

    SHA1

    5122861054a6b3cc6f4dcbc2c975cdc6da2df69e

    SHA256

    cc7c274fcb9c2b43d1d89ab4fd6586691f2dfd7d797d0328f9d4d3aa2ab697ce

    SHA512

    472ff1c727ab76c86b6d76d169e12e80494b0f9522fb4ea779e9bcad0c8837e07250ee4cc3d3c14cb191b29f3eedf94c68143b4ffef5439147487501a928c6ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c2963db1e338dba9f3d624c745015e6a

    SHA1

    7833f0dfef675370b4111f4efdca37586cf9f6f2

    SHA256

    93cc0979b42defc0b662f493ba8a7ae7e1c9e38787caba5be6d9584f6e4b644d

    SHA512

    138f02de072049bf0a84288a33d3408943beae65e37f4daf0ec917896b7d964a3b707c46ac9c3eb40532d6b558a8e129cf4af6028d185421e0b4af89f4e045e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    db5d7d122a6e8d1f3bafc9d79258595d

    SHA1

    ecf4b1cf07011ec4820cd1a0cba7598b651514d8

    SHA256

    db1766640e8ff2690b6a8a829688c9f0e9e062206bf94ed638b4c490e0a75754

    SHA512

    78778d351b19e9125f292bccb86c91fad6c4ceb616f189609aa933238abc789c503c49661e312f7250e7746026677fcfaf9bcaa51a2da8d83bd35faea8790648

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6fa4cae02b68c43951129284143ffa4d

    SHA1

    1db6f1a39ada289d2465ad819aa786dea6ed5ce2

    SHA256

    22cd6ae0c855e68697a3da836e8e1605ba5bd5eb91e0745d4ef679eb4dc83c80

    SHA512

    8f846ffcc4db57a52cf9e94293a9e12f8918d110476334ccd508ecfd8a9a571b5771480f294e328c7ac1a5a57d943ac03600a830613487ce47116f9434bf425c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    280ec170cded00abfe2ea44cc38356d5

    SHA1

    02077860da1fa957f378045751ddf3351d41d07f

    SHA256

    e17c6772f486dee26b63fe3d6ab4d5df89ed909e5306a211ca3661e6169d3ce3

    SHA512

    736cfc44c661bcc2bd3fd283dfe929dd4b79d7042b0ed82d3dda33fdefe08227860e978af65b83d6de103016d3ef5cd78ae33340b6dd6357147958bd619a90ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    946cea01a744fa28b50b6c6d9c124d8d

    SHA1

    961f51108db054684699e49425725f26801bcfd2

    SHA256

    e2c7e784e21c2b57a0d6142906fd9d095a5f6c527655aa8b90acf0a9f8ad8314

    SHA512

    07cb602218a7b9f0a31399928caf09867a4606feb37fe2e370a7ed0b338b183b65b306a46ed23941809fb54f6b809740b2405b34835a8124febcca2af27df7ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4b344db55ff513ef913e90921403ba78

    SHA1

    c81990507d3f5e5a749edf91ca7a3d73c78e6919

    SHA256

    4b1f99288b7427430600e496300616b5a2c60feaacd613e934aa1890994f7931

    SHA512

    adaabb3bd08654a47a204194294834ec8c2bc45198d1a63d3f0a9d06d704f40acc4a6c85fff94096a560083e4738cf9ee31ddd6a4aee744f6fe04be4f4917cd6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    376b06ab2b8cbec65305fbc58a7dbbef

    SHA1

    c3c4b6a7d6ceb2896b065c37b8df71a16f3871bf

    SHA256

    68318fcb5e9c96618043d63dc5653edca4000121aa5960f4c1b5d3b088a78067

    SHA512

    6cad7a2ff7b35deb5d618580450c7376cb4aa9e8bf516716965e572d2272758e5b4097394de62a34fc0298aab6fb41ee63754a80636fbba47bbe5b7e807b98d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f446a7cb1d2532661f84f79d7950021d

    SHA1

    8e02ea5d3c590fca7a3a728bcb1d56a416a1d606

    SHA256

    b5ed53b0bdafedb101bdd0f6464c77c5409dabab6a6de18b67776a983fdeb411

    SHA512

    f4b0e2dc586844727fbf5989ab0ccaf195e808bbc563f83ceeaaef1a1c14e2714b18013aeb34094b9300624f547f72d45fd55ce5af3b1226c1a5a71b9070647e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1e7fe4e62de39ad6d1b03709c15440e9

    SHA1

    29f9fec644705885bfca5de34637495987be468a

    SHA256

    7aea425345f0603c2650559b6d21ceb3c31066579415f2088d79d13f1898d5da

    SHA512

    02e35dc3d29314fe8b590231f889e2cf164bb4e057b2b574897759dff1a8bb2351f4d3660cfcd1d3f6b188a01af99de8208d831bf380e06ff4fffb92bec93563

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f554005aaa9e070b0ad8a2ec510435f7

    SHA1

    36f5379a7814e9f18a33556238ec07ae3270a10a

    SHA256

    67780440c5472f25307eb94c0176f2a54b1a64ba36f0a5de0cc9035a14b05133

    SHA512

    519a2f19849bc3dd97a5d02ab4725f422eb3d29f0acf4b6e27721967da659cbcc64963f823c2d0a8cf8b7bbb52e5396dfa336ddc8bf413fe4637220f93c92aa1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c148dd44737eeeaca5da0bec0bef3f04

    SHA1

    29ba2d0e73058dd4f1066d36daa5219441f4ac1b

    SHA256

    28632ffa7be462e02c9dc1d6231253bea310149af091e0c7b3a47e00fb3c827a

    SHA512

    8b549f8943bdca96b6773c06bd0a736d1b25f8a7bc2ad896ac42c12f937899d8ae3c84ce086cfb30f95a4497a3fd6945bccf71b6fbaf9faa6eae1c1761438e7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f2f77e8d210f7328fe48e081d4bb3676

    SHA1

    5453244ab8a019cb5c9e7de000a9c0764084a8af

    SHA256

    11087b926f6d7fbc202c88611ec3dffd1a7ea9b79b11babf0d3763afe4ed5992

    SHA512

    283867c966f01d1658380214acd8d216d0230eaf099eb3a70c36a810b1700b67fdb9b0b7a9fdc1616e230cee916f6902a4ffbf7ccc8a08482da7b0dbfb1ac92f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6ae43c7a4fd4279d6afc923f3c62a58e

    SHA1

    cdea891aef5b2b390aff28def139f3e31d612b16

    SHA256

    4e35e6bc78038c42b62396eb1da693c882b46da9710817ca904bfe36390969dc

    SHA512

    6599ee0eb93c2c52a285c21ef4d916009f81c5836bebfcf92d9795c4c6aa2c030a694d9e9e8e9e311f05f6e2c6839fb524981259966e9af1af9b75f3edb181a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2850aa4f4a0312c26e9ec63d18067c1a

    SHA1

    f085f450d810300921ab52207f494fd4b2431fcd

    SHA256

    663ad5ce1015573deb00e9eae4fbd375b959bba97cb494429562cfd3af8df786

    SHA512

    b979b69d60012d80b8fb50ec1131a3b8c40fa0abb5a79c2a750ddfa53f053fdf8d80d8b2a42b2543b4df46f21789f39da803481faa1f4f987632ac2e3a4bdc0b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b06c594e103cfe63e65dbeb8774bb282

    SHA1

    3da4bcbc09dca6fdf6f9d8cc8b51321a367c1df0

    SHA256

    dcb82809045a9a17e572a78bbc6a6da98eb392a7b1612186adad76f7b25ecf8d

    SHA512

    d66a39673c961a314136c2b3ca84a6d20ecd8e9d9b084f97bca634e88b8c6d42c436c7713035805f5e8987d76d4ac9b5b6652810db52fe7c0d0e5f02634de47a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD0A8.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD159.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit