Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

aee274bf13...8.html

windows7-x64

3

aee274bf13...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    20/08/2024, 10:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    aee274bf1335001d0e6d005c2e6d98f1_JaffaCakes118.html

  • Size

    71KB

  • MD5

    aee274bf1335001d0e6d005c2e6d98f1

  • SHA1

    a96d965dc3a900a1da8fb14555b819a21ede8eed

  • SHA256

    97a00c77519985d5c417b63ee8e775bf7c0f61fe459e6257dc454ebfdb14c565

  • SHA512

    000e8ed786f974c05129d067775e0e6d95126bb7224bddf5393565d68f3b0ff1ffc2c50a60d8a51c897bb719ab3181810f37492a8ed17dd695a0be3c0134eda0

  • SSDEEP

    768:S80hqGbIiP//mdvsYSgLj/DVWmTMYq8Dfr7Vq3t40MSxjfLD+PHgkyMrj3DZ+/VW:SGIk/rtnwOHDOucc

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\aee274bf1335001d0e6d005c2e6d98f1_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1676
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1676 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1920

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    854B

    MD5

    e935bc5762068caf3e24a2683b1b8a88

    SHA1

    82b70eb774c0756837fe8d7acbfeec05ecbf5463

    SHA256

    a8accfcfeb51bd73df23b91f4d89ff1a9eb7438ef5b12e8afda1a6ff1769e89d

    SHA512

    bed4f6f5357b37662623f1f8afed1a3ebf3810630b2206a0292052a2e754af9dcfe34ee15c289e3d797a8f33330e47c14cbefbc702f74028557ace29bf855f9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    4f289caaea268fc1f18b365c82ee6623

    SHA1

    1612d1b003dea8e19a857716ec605ffb56dc1640

    SHA256

    a9dd40c43feb85a350ad48f3c2f599ee2760e626034d6be10e0c7857ec1e378a

    SHA512

    e4abfb49594d4b8890c1a81388071d287785267866d0e832b3d2ee5c4dac3730960701a16474471ce96e47ef99bb4152e713e3e22c85c841b80807b245bf767b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3c0626a288a8928bf0104e1b28d6dabc

    SHA1

    ccc61d62e75bb36ba54f19b20823dd8fea119ba9

    SHA256

    cfd4d897976b0a9221ac3c426df2408c7b80cac506aba5db6cc4a7b54f1e4d7e

    SHA512

    bd59e76646efc856d2d9a5d08fa86f804bb9c84dda998b8a3fd4521ce506e6de106d7be4f1921829476e98e2e4a2a5a251aabcf688504d9892ee1b80ab518681

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dbb0ca9045adddeeb7f03a671f547d64

    SHA1

    27ba74888923aecbb04bd0b01e45804939994c27

    SHA256

    63c53f255784823776dae91fdec98b82fb75e3786af31446d22bd8602d25af6d

    SHA512

    1a513578d4a4131b8139b8183393c3db00057d3d66891c21b592eff67681f448eff3a519160b513efffb4936fc90b2ae084843a4d1250f83f2306136ad74c67b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8b2a9f5877e650259060c63fdc0ca0f4

    SHA1

    e89878e883574c4230eb1be4175631f2311cc18b

    SHA256

    f5876a14a440785d81209ecba1a3a17ebc3f7ac83e1d6ef7c225ac38865841d0

    SHA512

    ab7570420455c7038de88f7ad523666571fc61b44efd96a11240e79a9f09b885f48cf797ee7b35de40e3aa69732128579e0b30dedd497dabeb343a296d29e239

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    85319122e28580c3295085f657b903ca

    SHA1

    3fd4e4de79345dbfd997eb4cb10a4d8183d73219

    SHA256

    fd61cfcab23890f28ddf1e8901398b8b3ea2177f79ff2e07f793ba312f3acacb

    SHA512

    6d99c684cd7936413ae39cbacb746f834d95ca6b39c6cebdc33d24544996da4100ecbb14d119b78cb62d8f35aded4564356d89c15f569da56c94144f5fd770ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e14f5129cf41ba4988fcb7af285a8915

    SHA1

    ae4cd14883416f720b74fec270868fd76f0cb9be

    SHA256

    d8948fff789d72e631fc1b0d802b75d20ba82d90817bf872e48daa24410f651d

    SHA512

    b87b489fc9237b5342738649b80f8390060113b046a697c60e29fa0d217dab3de836558e6d4e4d72f8c7edd4c1e03468844f4bfd8816e31be2229acc0b4e3220

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d8b04871ee186ae4211b0f77d9a67dce

    SHA1

    964142a5d88bae34fa7af0b6c46cb2b1045d9638

    SHA256

    b08403b465207f47a1871491d7ee4559e9cd257cd71a936575199ad65c1ddaa7

    SHA512

    fd71453d60329d5038c7b4a039b72657dfbb73917ef3f337d5196810531cff9f4256cb215573d30dc0bea39fba82bacdad1785107048f50054ca679ef9ea9a7b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac343b16569eea830c46f9bc1a103d2f

    SHA1

    47aeff48ee4ece3229766f57cbb35c34a4f38c1b

    SHA256

    c63011e28cfa4ad9fc46b606daaf9e83bc55cf75add35909579acff077b6b4fb

    SHA512

    31a7a57ecaebe86a796c98f3dbe43fab4cd492210c7fe4d80d74ad1c12af1236bf34b1609e374958687f493a28894c31a83d83c1af0e78faba9f2a9098224b53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59769fd4638f0290448a7d5d61498a98

    SHA1

    e18fc606053354022475bd7258c85b7ae94a639a

    SHA256

    44341fe47952037e6bf64680cbdd19bc572e6969eaffc44c14e7c1e21a7eaa8e

    SHA512

    5924e174ff84bfc66eb450f8c5b5c0a9c3a68b373562d20e964d2ea668e3e811192a16096966bcb6002d15b28db1ed79a263b001aa4ed03eca5e50997b6405a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    85bfc0c9110e75652bc6511af0b68f50

    SHA1

    21135dcbac9d680988ba75877e64f3e42d60277c

    SHA256

    12fc14c2c1618282997c38c2a2e519cfcb2538c49b54e95ef704a305947a0a8d

    SHA512

    e96153b5259d5e206379682ee913315751b09e90c7869c4c88c9815b19349e51faa9668acfc183eccb1f8bd3d9722766a25736642ca08d2d98abcc5bab7242f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    96cb3d4e13d522d9bd1ca4c974c007c7

    SHA1

    b8a0c6c2cdb90b3aa015e22aa99c00b4f4114552

    SHA256

    1b352332fc29c08266a5dd9d00c71ffab339642fec3b2bf1ceb9bf43f53c3512

    SHA512

    20a5440b186053fa5288eb5b3e9e7ef195e14171ac13b40653c94eba4785d75fc5bce0c22c28c2aad22bb18c5ec1e8811ebd9cd3ed2e30cb82f272dfb55312b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ad983a441771100cae7a94c5d74f46ad

    SHA1

    474328debad86ca2108c2cdd2127b6b72c719e3f

    SHA256

    1a769d534363c0858f17961fbc7e867ef52d13acc880a27ec94a130de592ba65

    SHA512

    8c159ffaf78df9cc912167bd95a63693ab5a70614cf4e9e7a348a07e1a284b3d7fe66bcad8f45916d78696d24c6571a5a38d523e6f9bfc653821772140879224

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    77de5a795459ec9ea27fff7eb5c1b8ce

    SHA1

    992f5a220b80703fbfbac5fbc3fc432d6176ffb4

    SHA256

    4b7a4160bfb3b966333902f8959f02261b817a33e9806b55621ec7c03fae5f70

    SHA512

    c37953df126c8757a306c29954b66c15fb592dff17af8959a48aecaebd4d98a19cefc374c277d871ffffd60b8f03e9be8a5566991849a1a4ae9dc79aa37a2d59

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6c892eebeabeca433a419c0d1a3a4510

    SHA1

    b16a484c0d5ba7b0d77775a238c7f6dcc3681387

    SHA256

    80b2628db1eae6944f3b13e2c9bf710f1090b485cbf47ffef0719705df0d4f9b

    SHA512

    90e8c8a01f24f5426938c5495699970dac8fa167fafd5290d00fd6d0e1f01df8e688127a926c117391456fc01881f8b181abce77223952ff3ad3b0f3cea5cdb5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    0ae74fa5f3efd95be863576362ae7de4

    SHA1

    6ebddd5035f2dfb3bb1d5b13c821679341c0e843

    SHA256

    cd50a942e0534365ded47ddb972dfa3e87c6aefd36ca32a06656af186bb39a57

    SHA512

    65c0d3d34318b8e4656413bcdf2bf3b5e63c4a89a8985659049700c547c798d26f6be3ed003d796df1e5cadcef11c6eb783d351ef31a2984feb9234381c15209

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\UXM0GYPY\www.google[1].xml
    Filesize

    99B

    MD5

    ce3741ab6f79180cc22187b279e5f5a2

    SHA1

    df112a1700b969326a500d25828b9fcfe6750877

    SHA256

    b1ccb632408ead25aeb7f87c24dffbea0fddd2815743fea8ff7a000a540191f8

    SHA512

    41de6a096ca704427fae7a3886c873b573f5ec316132a94d1a22f8d893e7e1f1b54d9222461065b2b2de22b1bf064c8993116d19009b643cc95869972327c81e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JQ7VMQEC\uVtrB8mfYkSeGiJQPzMX2K5aR434XKq5huJIZl4eJIc[1].js
    Filesize

    24KB

    MD5

    f35eb4bfc97287b71d66f27a4f1986bf

    SHA1

    e8a82c098cb2cd80e3eec59f488190567747669f

    SHA256

    b95b6b07c99f62449e1a22503f3317d8ae5a478df85caab986e248665e1e2487

    SHA512

    9593cd4fb1b17f82fbecca612cc05a2c3cb82332aab35982648a72155cec027791a81fedda2e65c64506b6ef48b58af021f4ab6f67d5dc6070be6f9e19b0c9eb

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SPRIFH8L\recaptcha__en[1].js
    Filesize

    531KB

    MD5

    1d96c92a257d170cba9e96057042088e

    SHA1

    70c323e5d1fc37d0839b3643c0b3825b1fc554f1

    SHA256

    e96a5e1e04ee3d7ffd8118f853ec2c0bcbf73b571cfa1c710238557baf5dd896

    SHA512

    a0fe722f29a7794398b315d9b6bec9e19fc478d54f53a2c14dd0d02e6071d6024d55e62bc7cf8543f2267fb96c352917ef4a2fdc5286f7997c8a5dc97519ee99

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WK27LCMU\api[1].js
    Filesize

    870B

    MD5

    aa2728d09997079c4292657aabe3e50f

    SHA1

    12deb1b28ea79952fb582cb6840e5e53e3d01667

    SHA256

    1bd9d97ca6363b413d3721647ec0cb1cf6d0639221e47c91b62ce31b63862d50

    SHA512

    4d758d4197335f8d703a69802180adf7d75e3cfd6446301597736875dcabdde0a15ebaa4f177a39ea22f8082e1ec3bd705b66c7563be0c5b41b59f7225d8a3d6

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WK27LCMU\styles__ltr[1].css
    Filesize

    55KB

    MD5

    4adccf70587477c74e2fcd636e4ec895

    SHA1

    af63034901c98e2d93faa7737f9c8f52e302d88b

    SHA256

    0e04cd9eec042868e190cbdabf2f8f0c7172dcc54ab87eb616eca14258307b4d

    SHA512

    d3f071c0a0aa7f2d3b8e584c67d4a1adf1a9a99595cffc204bf43b99f5b19c4b98cec8b31e65a46c01509fc7af8787bd7839299a683d028e388fdc4ded678cb3

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z2D3H3V6\ga[1].js
    Filesize

    45KB

    MD5

    e9372f0ebbcf71f851e3d321ef2a8e5a

    SHA1

    2c7d19d1af7d97085c977d1b69dcb8b84483d87c

    SHA256

    1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f

    SHA512

    c3a1c74ac968fc2fa366d9c25442162773db9af1289adfb165fc71e7750a7e62bd22f424f241730f3c2427afff8a540c214b3b97219a360a231d4875e6ddee6f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z2D3H3V6\webworker[1].js
    Filesize

    102B

    MD5

    cfb75de5b30bf427c44f5a02e8616345

    SHA1

    25ced704596e89f7a2e50227129d71b0e9bd5da2

    SHA256

    82d3b76db4d62ac71bfd0abd0528fc3a03a8dc2ce3c65eb90ca4a3b0181122ec

    SHA512

    8327c6e09830f0c3526c439dbe2213bfae5de2485575ca8b74fa83fcc2d3b1f824a94ef324511c16e8aa2d35a8655da0d5792eff46b9e37ca3202db175802be4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA719.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9B47.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit