Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

bc8e7f9600...8.html

windows7-x64

3

bc8e7f9600...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    143s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    23/08/2024, 16:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bc8e7f9600316e7f60e5cfb4c5d5334c_JaffaCakes118.html

  • Size

    69KB

  • MD5

    bc8e7f9600316e7f60e5cfb4c5d5334c

  • SHA1

    55fe0d56167b685c8401b7f1b1f2f5b6570b87fe

  • SHA256

    597e0b0a7daadedd8dee829f2d1b22e34d51886718a738bd6b22016ffff38338

  • SHA512

    f4e93fbdb66ec42a5f838bb3683fa2d01bcfe5a858867b3af479127a874a88c2e21244915638d5cf4091f399fae3d5a2508d54f071c4a09b31402095c2f463fa

  • SSDEEP

    1536:gQZBCCOd00IxCP3BcNZuO1f3BJKaDJHGcNLt8HQ2cqojEoeJzhBiM9iEkBR0FSzz:gk2i0IximZuO1f3BJKaDJHGcNLt8HQ2E

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\bc8e7f9600316e7f60e5cfb4c5d5334c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1056
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1056 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2140

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d39ed05658a7583d9d4e2bfc404e1aac

    SHA1

    e63501cd4c6d1c467dae536b16540557c99ff005

    SHA256

    850407791b2897da1eb04232c998715bdffa0e348b68b23e5b1950bc3e37f304

    SHA512

    e58c4a5b8ba55c5f7859b01aa1f3ca82cce6af1f2c8c451baf198473aee7c2814a6c0b60c6a3d766bb218ff828f738a8787e7aeab53c336f0459faee206aa121

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b1842c70e453c5091d1e368ac69f3b90

    SHA1

    86e10591c7903e6a2e77e4f46f3116ea2d9cce74

    SHA256

    a2503747b5d5ec673900a47448d7c2ccdcde88124306389eecee1e1067b02e86

    SHA512

    360b1e60f5ae902fc40c5b0b47c35f0d58122e398ecfb1ee3c19d5c93eb32f4c301b9b119341d3af1fb7468238a1a801dcadff61c24ec7578e4d1f4d0a3a1302

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    47858d8b8e6876009a599597045985c4

    SHA1

    73ade26cb77117726ad819774eb9839c0eb009f7

    SHA256

    3eee97f9e78cd2220dd1c607e29a73c34e36a4d3f29b9e915c4a1d681d87cb4f

    SHA512

    adaf6033134d09b634c0a8b36d58466af447bf5fdca2ca073d964009d519bed751480f19a9dfd40a932b7750662c94b9cca9021637051ff883c1212e03421cff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dfb0e78e49551c94a6cbfe908f7cd9b8

    SHA1

    cabd34ca847329ba3d23937562fad8fe275ca01d

    SHA256

    f4508c01e5fcedb1a64564e0bb34ebe40272e21a483119910e4e4fe76830f309

    SHA512

    8bcc4baa9af2928d72e257c7ef3218b48c69a6b4471a1804676ceb0c9c0f53407420815eb8192a8d63229c5a31c8a22b62194e3dd50677096f93d0a2161a0fd1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d29fc5215273abd32c7eafcf1536ad6

    SHA1

    c8e48bfa5dbe970e53a27ec7e6661d3818bcad67

    SHA256

    7f9ac6e5c25d5a9eeb5702cac5b78dd94e3814ad7199cbf3b0a67ece05011950

    SHA512

    ab93111c060462bfb2eba1fcbf86af56d4be05ceceefa6f884245ff8f900f608c23883259b233b70e4ca7442adb2000e0514bdb5b340d83d137f0f147bf513c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9282451b2ea1fc943980c08470107528

    SHA1

    3fa6e1cc9b3be8eb6e5c6f71c2f2b46665b166ae

    SHA256

    377ef5ec9f7579fe8b0101f1d2b378e84ec6a7fd36930b8dbb76b6d215e2c724

    SHA512

    b2e7e044ba0bbcb49013ddb408d094ba6463879e7afb3404e6b788c619bc5579a453ac72f1db435730fa4d85b161e0ba483fee6b765346ef878fd76864875be0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1306bc1cbf394ad56f85475bb87ccdab

    SHA1

    ecfcf4502c3c01d1262a83b704801c69ef616368

    SHA256

    e148c2006190790fc52fbe01ea34c7e98bd2353c2c7a371a8eb99444db214c5f

    SHA512

    0e48a070145d74e1b423fe007d87a42a2616bfceb4992cc35607b2ceabfa1e40c035804487cfc386503e1f18bf919feaba52c42c932a67925a4cd157a6835a6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1800270c31c6f1059950fa99039cfb86

    SHA1

    cca9e9a6822f67ca41be4c95d36807211a60b8af

    SHA256

    6655b8aa8c8ebafa456fd78a0694933e18db3de85b4c3af59e78ee87617db1f2

    SHA512

    67c7060912fbf4ce1df83ec479a68d4e056cd978ed6650abac5c903e49bff19f53b9ed1f6ecfe083b56c529c52a461a317af20f5e51d44a32b99c467af88e404

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c6120d38eea9f5279fd20619236cad8a

    SHA1

    79d5627736dabac9e1f5c4f8d70720f987a6fc39

    SHA256

    a4f94de303e4b94f99d9e2ac5040d4fa7b26a2fada0aedc2e39850d3106ac917

    SHA512

    b477ce516d14066be197c42565bc8b5677cd75f4e76d79752f770cf9489dda528991357cb93d2f5a18f4c3c31da2aed14fa141f90cb7f490ad51dec9092f7620

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8f22d101e3d86084774b1683557579ae

    SHA1

    e586482c6f63de151c7a306b967fc3c770414c41

    SHA256

    dee9154fcf12795b978e041757b4bf07a300fa136b9bf176ce15906f575c125c

    SHA512

    44e718928f11313fc5f3bcc7fb8cf698dded44ce0cc4a9fe7d2d4b68f4a822fed9188ba332c73531fbe45e342e81cc881154aa79c63d656c717287a2de390985

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA0A4.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA0C6.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit