Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

b624f49ee1...8.html

windows7-x64

3

b624f49ee1...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    22/08/2024, 03:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b624f49ee1d415f8c60244a61bbfa2cf_JaffaCakes118.html

  • Size

    22KB

  • MD5

    b624f49ee1d415f8c60244a61bbfa2cf

  • SHA1

    49be9683c01d685303e98eb51304bf910643dc37

  • SHA256

    0cc60e6107fe8eea44acc91e770bb3e9db9a2f11599c5353ef4f6124d0bb39ea

  • SHA512

    7ac98161460e2dbb56c609f2b0dafbe9482ea750f619cb4ec8a3040ab0815d70ac69caac72a94ac3b32f05f5e323dbbbe6b2f52df35cc525858f2487348fa781

  • SSDEEP

    384:mYwf8XkbqBoNqZU4ZsnrgKQW1NqW1TZBWD7cWVF0QYkTOr+f1FqlMD:mYQsksKQW1MW1OFOYOr+TqlMD

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b624f49ee1d415f8c60244a61bbfa2cf_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2456
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2456 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1436

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a445e1c0edab28bebe7e963ad8214ddc

    SHA1

    7981f292f89502fc67ee893d17550eaed18b6cff

    SHA256

    a461c45df3a56a4e9a7db2bea3e71c752ee2cfdd94de2ed501e1907ff008ba45

    SHA512

    119ff99b43c6672f154fca364c50e1c363c2645cf368b37b830a3d2183bb83806938d19d8ade499c94ba0219bc3fc1f2ee88cee0b77012c69e917ee39c0a675d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc828b59ac63ad014af604e5824d877c

    SHA1

    6174d445fbfc7befba0fd160b9bdee43925617a9

    SHA256

    90305938c53da00037db7a07c03875ab8dcdb3d75c93c42aae9ea0e1b52bf079

    SHA512

    1d8f5a779d2cca393d1486b9428c712825b9da9cc5429976cafcd814ed921743b24adc310acc56fe1615e70e96104ece4a647b057b848ee05c12327faaa79e74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c63836851831b08d51be283e4283c8a7

    SHA1

    57589e210939a635dea039069085a22c0b13d92d

    SHA256

    8c6f90011e2b30dab43560000a9e320531a0224b5ee75ca3a91962d765c94dd6

    SHA512

    05638977c04ab777f5fdc60ea4239f71f89bb53be361f86d9c1613fdbde2fcbc4d6b33cfffcc7bb2222793f6d3de9225d05c269458ecd0a38eb65e9b809e2026

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    68a0b3ff45dbfe7cc98a1570fe8c9dda

    SHA1

    826bb088c10958fe0eddb3acdf17eaba9347f734

    SHA256

    b4f9f0d8a4280be22269a28668ad5554c628e1396e9b028ad357afd7c60f0028

    SHA512

    f2375ec832f26f1710adfa1ecaf1b4ddcef4d920bd45cb779bf87cb03e7ec0a320af2b8254ee61f98eef19d5bfa0b67ffb9fe0b078c393255f4a231675701b6e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d04270f7a22fbb7901e4f0e5bf5986cc

    SHA1

    156de5a09be08fbdc21470a238437166880d2796

    SHA256

    de9f1dbd08c647d25a17c992bd855b08ae85e82d841c65dd9bc71d6d789aa0d5

    SHA512

    e34a6c231e21c2e25cc31a971c9e7fa9fa10c17537d16836af5469b82893c81a3c8624e25f6100137c76a50b71d7894520e9d9432363dc739297f413550537a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2f898da430161d45be82309edef5df6c

    SHA1

    a2942204c406ce24d5fae9a29a603a372256f33f

    SHA256

    6afc9c699e54f124deeb9d01e8a763b4a0176c582e09ccd46b8ace1a4b7adb04

    SHA512

    699f0f492a2ec47204017fede86b8b1ceeb10e769ef481f400c7abbdc17fda6f871c7dbd4c05f31441a60b8041bae12e27399785e0d2912dd309aa7d47344dba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d1f9d3d1efd33421c6cec35258009a26

    SHA1

    3f44520a116f449c34ca3c7fd465cefead636a6f

    SHA256

    7ed3a628a44a07c65ac75a60a986af16f8b134230159efdc952ef11fd601f182

    SHA512

    26cfa7057f15337609db18d72c1234cc4ed45962ed13ec3d981f786aa4a74292cbf4387aca13bd919cf241ef2e6f770437f4064d82511556c425128ae28e8f8d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bcee765732fc665fc952798c79dd91ee

    SHA1

    a2f1ea9491be6a57dcf69f839a0ea27a1ce603cf

    SHA256

    a39f7ff724bf56e36f3ed4ceeb056c3c6d3af3e9eb5456e53a1ec2d49b141be2

    SHA512

    d833d501a932a11ee6af6f74cd28bacf5be77fa4ac17c31977bdb2cc4979710d0508a53425fc3ad1b6fad66e56b028fd918a8a4e17f3f84c1fa5091c117d6ca7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b753ba2eec3a2706b6ec2f3ef8ace34d

    SHA1

    12c5d25bfba47a4323b9a243840c05a273379443

    SHA256

    e06abdca200307165b4e2cfa7bdc70b9b1f7b7e35de95b21694fff2735dddd72

    SHA512

    9eaad22b4e2d2f7b510f724f813f0623aba80a6f326545a3b7bc3a0cb4deaf4fdd4aa1f91b81535dd1ff73022d42fd92ff5927241bc4b3f63e6a14a6ce676f9a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    11a6e419f1e1fdb4e3d35d744711035e

    SHA1

    51fab45cf17b225e5a836497c480bbaa17082db6

    SHA256

    ab912c10dbccb0ffccd456454ea7fb0e871f7c6ec82bc97d967404098e05c3ed

    SHA512

    14646c52523543d2ebcd5d53bf53b3c0bee3d25461de2dd557a275a5cd58c971d4cd81ebafe05ab9f2a02cd613ea635e6d05f806ddf858a0ce7d01b1c543c095

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    83ccdddb4cb9a149b3a8ea9eaf351cb2

    SHA1

    d3b1aa263bf5116a723c543fd3b9284141cd3f1d

    SHA256

    7b71c15decef7e1ff4da46615fd2f2a3dc66f617e21079d3f86ce5972e82fdad

    SHA512

    18e0734f852ff91cd8a5604932a910035e4762484e2887ab5476c3128410827f24a2812733f994ef79b06751fd2b4abd83b74f31f2435b2112a446dc63e98e81

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a14e6917aae6992a2155d5073d1a265

    SHA1

    e37bb3b2793206b8c571d4113fa4d4137f5c90ed

    SHA256

    7eaf5843748249d94c202a93a9c94c7da5dac6db032c5d2106939d4bff24848b

    SHA512

    44ac6a54bb9ee00615dc283e1661805bbc6ad8ce27065b1d3f40bd5174716a4f548efa51ad2d859d878b11746b09ea5bc41879f1d13dc544192ee7f54d6bb3e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    678526f8258c5ef1ae39d64ffdf20bae

    SHA1

    5180176ad42f204e262bcad6ee4eb29d653933f5

    SHA256

    d099c9feb2decf9bff6afc9c5bce077478b0ec5e31f80167894c7767987589e9

    SHA512

    843a1b6241f80e63cf73be41f99a81efab64081e9964d3b68a01d3439d9d3377c62e4d79e64b7474b85a1a27519d954266593cb6e1a882152afce5671692c747

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab47CD.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar48C9.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit