Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

b82bd08f06...8.html

windows7-x64

3

b82bd08f06...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    22/08/2024, 15:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b82bd08f069ed803f4562f5e01923b01_JaffaCakes118.html

  • Size

    1KB

  • MD5

    b82bd08f069ed803f4562f5e01923b01

  • SHA1

    f0d59f716be8e49d6f491478d7107c85ab3d7dcf

  • SHA256

    be1aaa273168b9dcf7a68dd4e5017fc9f164e460ce6ba11e28f46398ed3f7169

  • SHA512

    1e4d9216eac75277eeaf5b57caae0f9271ec5696486d963ab1af6f90dd2e53db2c6f99b432e15d46d9df387a43aed7afebc998cbced8c219636f01b767b813e2

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b82bd08f069ed803f4562f5e01923b01_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:900
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:900 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1520

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc2c0c9ee70a6ccbb76ffdfe54e37387

    SHA1

    86f2add47530900fda9e53428b106d682be738ca

    SHA256

    019f8e0f34f2634ff7d4093c87472e817a75cf3a1c71cbf0077a6aa1edd9c250

    SHA512

    94812a41a632c5a8a2b2b90631cab65536bfa60474cf2ddd7a537a653b56422e27350bed53afd86ac6aba63513a20db489f18be7cea8d095e3b6815248a19d16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    86d79de4473686c34d11e6ebcb102ed9

    SHA1

    98023ae009f104fd2023cc8c1f2bdde5b0a72191

    SHA256

    b5a76bce1a33dea6a0291d7b12047ba0009fa6bb89880f9ec9ffaf9a04fa1629

    SHA512

    546d98665510c6dc4909ee48335188c49fa65489cbf6e83807a26de4d4c738bec43f11af3d3e89da922ed0472bce15c2bfa3c003bc502edca5bdcf42178f8cd5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a9aeb5c394f568898b5c20a8c4d50c6f

    SHA1

    9ab0c7e977f7abd23f59bcbe73bb772332af4b07

    SHA256

    65698abd3b81dea246c5357b24766766892182d4820240fce81219f1122bc5dd

    SHA512

    efe93e586b1c8ffe3c87e13045caad52c2837b27a3fcd54f1316f596c30c541c5f6ae4b65ffe78f1873769431c1eac948dca2c76c658bb405684689703a248ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    abbafbb92c6d4430c57bcc04443a5444

    SHA1

    768b191340ecb3ab2fcd27d5d77590c89a8ef12f

    SHA256

    adb63ae7f6316e38225a60e368b51378362b34f42b261986c667b05e761595cb

    SHA512

    c5331b0d60f1c51d61ccb6464d139a96581f8a45a2280f767774910f4657693b806940f4bbbb762ed7259113d1445d6be81810497223e6bd044c2a92ebeecc26

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    66e6304bdb4e3c93d0bf5a5c7c11c9de

    SHA1

    c92df1a46f6788408400de6f166605d779bdc84d

    SHA256

    5343340f4375feb5e8a362ac3da7cd32ab9c2f548eda2b07c61f76a05c48ce4a

    SHA512

    fe3937178d7c336ab985c06982206121fd12847053aa3e05e56edbba30c714971ca475553b177eba474801b61b3086b61b375f1059b314fe216bbb9605633edf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    191c40f7e5ee5f3000f5df813d6d425a

    SHA1

    0587e04c9644d7261af0b3cb6ca87ddd4ff7847a

    SHA256

    c57d942f018acda2df359fe3c7b026ec6fdf464c80b818eaca520ef706bf7fb7

    SHA512

    34d1a96ae4fb0f17f832cda13dc7f3bbb18562f8285769013fe7acc693e5ad1d324947354adda4fc94705781bcc28e5c97c73795c33fe1bb275893c83701cbb0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d00ac1856ea8fe12b8e5ceb865a8a157

    SHA1

    058de32c3a71c486ced47007f0d618c0394a6a18

    SHA256

    906a9cdfd33c72d46558546b8e1184a058dc8fb5d038ae872abeaf364f086ef0

    SHA512

    ac048946b0f580a2e920ef1b28aed450796665e172f23baf19e9c6c7b3b9b453012ac63d82bb8a8a176e8b9928f4690d1afdf2cf7525245a62afc794ee1d8c71

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d9b1a0d62a66c167e26f6e48c75f018f

    SHA1

    0ef0d0bfe527a137238c06dc488133abbcc8dedc

    SHA256

    f103311601b9e2badcec1af443cad3c23d1a296eec612c688e314ccb67a2c513

    SHA512

    57cade0af7557b04418d981e01047032b099072142bd85ceb9a1aef02f5b151fc65c56500e9a02de318a192bd933ae7cc9a8d293517c68a8d2823c612c4b1655

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    817ee015630ca73df927b5626c03cbaf

    SHA1

    90935ddbb795d8e56015e87a16a3d91b3eba0b84

    SHA256

    d880a48924caa2819943fc574f0d8ce2445bc70a92be478ee3cf106eaa1edf8b

    SHA512

    199e12eb30dab51756ff3522c8cd4fee98d8d528927fe699194355682f4bbe5ea757d512e3e0c32af0ed3a05099dd3acf252d0acb8b31f2e6120346d52bbe9d5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF692.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF6B4.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit