Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

b872bee655...8.html

windows7-x64

3

b872bee655...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    143s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    22/08/2024, 17:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b872bee6552ceac1c01c6584366d1fb6_JaffaCakes118.html

  • Size

    3KB

  • MD5

    b872bee6552ceac1c01c6584366d1fb6

  • SHA1

    bd92ea45e6bc8466fa6fc12609f290cd861d0ebd

  • SHA256

    a4da1574388d8990ae724bf103190417ebac7cc7ad686024ce22f3e57b70d180

  • SHA512

    ff5bc3af82ea866cef5d13752fccf880d5212095b98f3cef825c18e4db844552bb4912f54c707291bf21d3ec493ad41d4200e53c09cd55e16432be58d1c4b11a

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b872bee6552ceac1c01c6584366d1fb6_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2020
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2020 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2608

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    5bc1b78034653b23a22ed2a3b89160b7

    SHA1

    afe91c25338bf888c68bb52151987f982fa3af5e

    SHA256

    2fe1bd3300a171a024c35ab39f27de32e6c61b80c68161f9041549fc1b3d548b

    SHA512

    2d3c573e41981f584f7898443ef49e01824bed09d5be8ac856d4d9a0883e087591f17b049cb2fb7ad0fd4006f461ad1e403ba30cca179343f5beddf2e1c8d520

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6aeccef8f623680ef865e3572370b7f1

    SHA1

    f4410ff32655f1ec2cd796d20319ffb692333082

    SHA256

    76bb8b105b23fa3cb366e303e21d888203a954c2d0d274d8dcf173d64817b000

    SHA512

    28913517a4b674a241f874e981d457f8a8d62a458beec02fe698a60558651fc36ae65ce1a50cba619d3b12cdced19678b077b97c2a504994f267dc356b06f75a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bca56181955fbc8881073058738ac42c

    SHA1

    660a6261ccc95cfd96b2d6da758a923cf0271264

    SHA256

    ffe8441623ee0fd4fab476db94e1d268f9928e4da71694776494a3b2ba3de36d

    SHA512

    5611e26494a74ebc48538090fcb556c27608856533081fd38ee3f3f2aece6d0a9b2a6e4b0a4a1870a2768ac207e1c642133ba0ac322e1a18816a8309dbc8c06e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3c3a83949c6e6ec2b76c9c3d6058dfa2

    SHA1

    2c2bc04cdc40ead2167c6dd221767e36a0741ce2

    SHA256

    d2676ae624efdafc699309483c773a7281e2105727dc76cbe8d6c88ec818d1a1

    SHA512

    b7b3667585da2206a566d34d6e2d15b38fcbc026573341c321f6651120e29e1b764b856e4ea8c7ed0ce1877484441481b7c61d7eb9ce0a636cd8f3fd94bf7ec7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    130930ab76dbb20dd31526e4eea7c410

    SHA1

    056ba7859393048383183832cb6f086eda1fa080

    SHA256

    a8df0a1c274b87b84a7b848f50f4a7f51e3c3d4fe568ed3cca50487bd81e1534

    SHA512

    7861af3c84263065b54ba3a5cada764afba5b42ec3923df7a61a03266cbc1c2ccafb421ae9008e99724e42d16481230806918eb751f0feaa63fa7e8fd01020d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2b52f378fbefcaef2b38dc7a0fbdb180

    SHA1

    a67e1759bef47bd8c1a707b12abbdfbc2ee4598a

    SHA256

    1b885ec7a2238ebf1907ef336d994ab378e1dbce1519f852932a0b115b994e5f

    SHA512

    77f5f5241eca0742231a8cf7bb5922ebc44df2c58dc16b408d20b28c5daaa334f774bac7c5f2f5f919c0bacec00405c8bf090187479b8ca4ee844e4dec09ed19

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9d132b293b9ed4021e676e582f517535

    SHA1

    31d1079dfefb000bb19bbb93478463db4f12e240

    SHA256

    fbaecfe9d5701bfba60bce38282e85983883365359997c4d615829d9b496bd15

    SHA512

    535b48b60192799c4fbd2c44f40fcd81b1289aeafbf6265051e4a59a3c29d909ab071407dc907627db65b42e41a89eab84c831b88e2c649e3a8b7af6aaa95aec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e64ea28c7ff7778ea91c6c3b9da1aa09

    SHA1

    cbf19f1de07876cfd3b72e422c888cb798f5bc4d

    SHA256

    7cd6c9c7a1f85424e2211918341394feb9128e1c17463fa01b8541524620b95a

    SHA512

    2d4e7eb8e10a6069283d58c78e8db9204e651a82e212874a9a56ddc2c2ff60431106889ea7df5370bd26319e75016e8db742e3776e3528fb320b2572b3ef0362

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9700c5c1191446247fe4ddd846009574

    SHA1

    e1b83ed1a8d2e321a8666200661e7f6db3cbaef7

    SHA256

    fa415e9f729b82cad0f35f31e5be6feccbbf5d05c1481af52b90a7c94671a54c

    SHA512

    156ed8360e82958a1d20b25da3b986760597a63122ee47272222a3940abdbe3824ca3d3bbd5c3c0033512a2ff33b0397f7bccfde3c44d1d777ffc6ad7722437b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    15a44a56cade439f6eac735b04d23372

    SHA1

    f4a5f594ae49dcddee9d01f79edd3ba329649fc1

    SHA256

    e782c62c6cd138a8dbcc6ba9d8cb291b108f25f2bf9045fc21af65e74e151aaf

    SHA512

    27e657204c6757817df78d3e8600b95b6642b29b3a465867226c2a09199c92521974a4faf868878c46d0a483f7edc8f29741c5d8123effebef3d34ffbe65840c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    89bf7a0dbcdb043002dd91814bc57418

    SHA1

    f55165c9e62a4e02dbe19d97f1dedb967c2fa471

    SHA256

    db2ebfe1e3c9f8017fda3acc45afa24a26a0073fc304de83147513fc256ddeca

    SHA512

    c74e85817a03d27e2bcd69fbd37727fbca2b3992483ddfcc67884b5d780b1ac96993f727b68cd4afb169b0b0696f0492aa254eaf9c7ce4add5f3c1df106b24fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e734c6ada3c484b61f6fdf0303fa4b90

    SHA1

    5bd2f7bfd9f4460440e69a45052b87666c41d60e

    SHA256

    e71c512b9767c0fd51ff62303623c0a55724b60fa893262ad094b98416b99f76

    SHA512

    b1da8495111f462b5ae9735374bb859f5d6396d39e6eee84f8c2f59ff8a2983faba4abf8403291f5a7267fecd2a233013c1de3687d0c25c58a27754d6aa80c46

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4929a68ea79c7fde6cd033b470a23ec2

    SHA1

    23825d1c6b3dec39cedd7d9bfffb24b4c52ca15e

    SHA256

    a3cf1cb553f6d9f0aedb35776d331f923b75b41d3c4accabb3f484918f239b3e

    SHA512

    aef59394732e4bfecc8c779d7b7840a3ce8173150335292228f83cbc78ae8b078ff1ef0e142863d21d7d7d156720674cb0ed4b20039d8bdcfb32e0c4d723493e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    027aad148604e599f0e8627b24b4dd35

    SHA1

    73cc3b7d232de5f92c9616e86827e019536c0d5d

    SHA256

    0e4f79fc056b8fdd04945196bb558132cd55cdbf20a6c6f9c44faa7026e18f0f

    SHA512

    f655fb91f3f03a569bfc160daa1b049b8651c60c57e8a587c3f2bfbbbd3daef4917b625964bb05cc225779c76645cc90778aa3924c42e53aabccb2e5545e1f6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    3b8b477ce51244a8cc9f4b530f98a635

    SHA1

    8a2881ff9846f7e6c8533d9b2babc171de2c98e3

    SHA256

    ad24940c045f80f13de54fafdafb2cf3794c4daeeb5bf06b7f84d3bfbfa514db

    SHA512

    381bf65046b293edff94858642898c1c3d7a39f4505e7b3240d25e04926c40f866ee2381c70e4a1fae5348cc8758195c459931ee2718b68cd269826c94acd149

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    411092ce8d192b14d91d2b606531b0ec

    SHA1

    92cfac1790c8f265886c95b6c91628aacc629c68

    SHA256

    c40913ec6482cb60819fb69543756b0dc9af01f4bc649a0baeb4109c53d62049

    SHA512

    d58880232f12a23a9a8a0b8613ddf104e43f0dcd055d16852f1a32a10ba72ecdfdb76d52e37e0a51c40b2ecc373d3fa5e1a27f525cce3f7facea6f300ed117d4

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\YODBUY60\sharypovo[1].xml
    Filesize

    356B

    MD5

    f88a9d083392381a98737846ae1a3b53

    SHA1

    cf3cc340453dd8e5faee97311ee392e0022a3dde

    SHA256

    fb32d609c1b0c475026da06b258e647bd56c61a82e74839659401057b761f134

    SHA512

    e6d67198705e2e7aadd937d142cf8c72648344c8c70a2c2deddc3eb1b732c6b758ed6b11807c6bc9f919216d0613c68734b2f334cdf3bcb928fd8e65c658a628

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\YODBUY60\sharypovo[1].xml
    Filesize

    1KB

    MD5

    8bbaeeba94e03754dcae5487720ad758

    SHA1

    0016d784bb0b54c7be054508c92703b367fe50bc

    SHA256

    fca9e063f49425dfad5247f6040e8942c8447e00373e536a029b4029690d1ef5

    SHA512

    72d20a946ba46340986c3e6caae98df5a6491d5466fc19d84a6e54795ea793429d0836c244ac31d3ad9f7b5c3f6137173116d9a0ed2243a8409a0f829329bc63

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\YODBUY60\sharypovo[1].xml
    Filesize

    2KB

    MD5

    0f75d9d4fe48319b210cea7514c78b78

    SHA1

    9774460e629ffba04ed0763c95c7ed09b5115c96

    SHA256

    2a9d22c8b5ddec6beedea2816637593a58eada7708facd7ec31566cce4cc75cd

    SHA512

    60feefa2605f46b8dd4ff60aae888f4ab46ed0404ade1cc78e15fac099c5b612766152a7014e637494d26b68f385399857db1e6abb9e4f272e6edfddc1f7b2f5

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\ljg9kkp\imagestore.dat
    Filesize

    4KB

    MD5

    48e91b00f12379335cfd850984dbc8cf

    SHA1

    5ec3d4f6fa1d677b7eaddb09128e287d47b44be0

    SHA256

    0f672eac02fc58b484603a3174fd3020cee6519c83f02fb82951b9c239792953

    SHA512

    1fcef79e3783e70ca4778b0356d9e21e9b0c9bd83cae0fcc3486c65f1e5a4b31a78ba8b10b60c3349e7bf4e0242d04491125817240e8d8bab2ece96149b17e7f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VOGNAB2O\favicon[1].ico
    Filesize

    4KB

    MD5

    6d93c81d47e4bd169f85105d49d413fc

    SHA1

    f2cbd714990ce999a5fca0de2c7e0a41cbf8c0ea

    SHA256

    b2f19c51928abef43cf4968212852350d4975f574938fcc3e535294a1bd2eef9

    SHA512

    366eccce397a2647900a8f7b417b5461d728eb5c331876f5a2caa6fb3ff18368480ad1117cd18601013727f6735766a3b966be45053b5791d1097f4f201983d9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab27CE.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar28CB.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit