Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

bca12306b7...8.html

windows7-x64

3

bca12306b7...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    140s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    23/08/2024, 18:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bca12306b74acc5535b471bb705a6da0_JaffaCakes118.html

  • Size

    57KB

  • MD5

    bca12306b74acc5535b471bb705a6da0

  • SHA1

    b0df0240ca8583c31198f96373efad7713db536b

  • SHA256

    1c9384840ea1e69d383c190b5343b3f04fb605779da8ffdf238967b6f323e0fd

  • SHA512

    59aa3524a1261be9a1b00541908c92898a693b799d636649cbcc19312627cc6bf0bc6ff854999e9c93bbffc269536499bdae4ca466aeb583cd045b343d4469cb

  • SSDEEP

    1536:gQZBCCOdw0IxCL3u5fQf4fIfNfSfFftfMfRfRfCfsftfnfHfkfkfcfL/fUfPfotz:gk2e0Ixl4gQFqNVEZZK0lPf8MUDMHazn

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\bca12306b74acc5535b471bb705a6da0_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2424
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2424 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2308

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    da3261c88defc7024e82d54d9eea9f83

    SHA1

    a96aba1eb3e0aa71687ffce48239ed164a333a6e

    SHA256

    abb1495f26ebab67420367d08ab65654aa442f5dc8d8560b7f00b239d389bbbc

    SHA512

    dfaf7116dbae5482c83c54f56cd12b3284dc95b33d75e16c4fe9b013f04019d19e7e3f0405e84655b8430a14d32e51bf28364d5ba96fe45bf0acf28f270347b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c0339a068e164d94f3e9b216a7138878

    SHA1

    dacdead18c7d2215a709a4b83230fa9544c3b09e

    SHA256

    42610db05e6e7ee30a4c9400a708b7926294f987970349836be976231e3c1b94

    SHA512

    1003c0a3dd1682d0d5b0c223849c7bc94c921fe1b88b81455062671ab51970e9007faf9f9ef237abcd69e3e09055bc438b6f8e0e4a6f03be11dbaccc2fe7ea34

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f16011493855112647a1600e40a537f6

    SHA1

    cbfa598d4223378ca70674d683daa198d838d92a

    SHA256

    14a8943e58ede2cb073a66cfdcaf1b3f682aa7ce24999169507d9f43639f5e8a

    SHA512

    4d6fd6ce61a7b054341aa668a7c014b7a0f85c563c669dc3220d74d14759cb4811bcd91ba5d321aa001e7dc82cec2584a7bd7c73e210d8776ae9b2b7640db932

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    afd76d26e054391ead8a5d3fa6b88bbd

    SHA1

    1b36c3c4102ea09b6b327a6280f290ce78ca13f5

    SHA256

    d4e3ed41a4d4807ed32064a752d35ae78754c41a2208cd241fdeef80bbe25696

    SHA512

    a08b855445db5ff295fa9acd88227cbfbc8197f104fe732664cc95956a8d27fe344520fd09c1ef44b321cb41eb2fa325976c3c8f47070ff8115be6c3f540592e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f010dca674e8fb2b1fb749016ead4bf6

    SHA1

    3514b75d3d3a958bc88471f370f01af4c42b7bac

    SHA256

    d85139f0fc3e60220e13111981cc08e5f447bad63fff8c3131dfa37dff089ece

    SHA512

    f9e6b4c062038cd134969ced6dcde1d568f8716949cf307dbc14600f476ac0efd905671313c1bdb38610885e261e97c06577322cda2634d820394813674c5ecd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3a7db806280fc3cfae4d61bec3f3b610

    SHA1

    201b39516e7b8f5468f89979ffaca4f4e62424e3

    SHA256

    de945529afbbeaa90df2b1236b792e9f43d814defb729874a820e1d95c8e298d

    SHA512

    4481bf62715c2fbc37768e1ff3fb759ca7811487d3849c2d75062384fe50a9244623d93e3a5808e458bee3961cfe07e2d116b5691b22d00295b55ad635d21328

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2c581803256c534290d5e6d1a80c519c

    SHA1

    e21c4467bd655612eb97b8677f831982dd6f8efd

    SHA256

    8003847bb922dc96780c252d8eea4227de6e8328f59f1ed3f73b39cbf8c57c1a

    SHA512

    02d92dc866273fe1d37bf7a30d728a1840d7596c71a12e177fda121308949332dcff3b4baa57bd2ef4ee785dc4cdca4283df4c0f3e2f6cfc9cbe38b5dbb137ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3af33a34b5d8c357e28642146d6a123b

    SHA1

    75fcdf9a48a3c7ba9d65eb89a329987552b6c8c0

    SHA256

    cc0173418b74729b3a32672a4d811886522186b55ddf4f62009b1df2f15db525

    SHA512

    7d5635b8b69cc06914a6cbe2e698809b23ef7074385a74c10ff945b591b1d71efcdbfe452cd75ad27ce6a82fe488a974b231aa7269850208e09880d018a9841b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8f51cba703cf08091622e03af7c120c5

    SHA1

    a611615a621dbd9b8331645ce799c3cca5cea827

    SHA256

    7dfda4e43c572be0b6ac222edda892e54e83b5643015800a770e74a34a5c8be1

    SHA512

    a0faac5a06ec85bb1b9bf7538a2aa84c3fa5b64231417c00706049beb3abf0a62e0bd31177255b106a6c30b76f0f6dbae59dfa3e4299f9b41dbb833757a45059

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1ac6a6c438b9aab13b4658e976475a70

    SHA1

    e255317bb45e0848e50f36850efd34e7846208e3

    SHA256

    6266bc2b259f452d9be47ae640339f372c9a6b44b1febe3d5d008601880f0b75

    SHA512

    cc653f4963af23fd99cb77ee73c3ff7f1be02019c5084a537074d871484c304c7f78e22a1cfecee7905194ba434a201a0d20b003031db3180581c5b48d5b935d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0ca4600809033c65018371f234fd36bd

    SHA1

    5c44b8f26ca0065129ecbed1b71c106537b93eb8

    SHA256

    9d0563299e2dde1c364ac40d8b2820d776414e917fed8e0cf06832a6f13ccbe6

    SHA512

    f5f584880ac244b84aed1154d6f8bb1e998309a0ccd8582024b724bb6dece9c176f054abb1c207d12a3b6f48a38641a8809e3796d7549065ec3b868aa066ff3b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f14e2deca8bd6e48eeb6e1347b17bcdd

    SHA1

    02a7e03277279aaeb67dfd84355e292cbfbcd092

    SHA256

    e2cebd678e46479e8b6720f175a395772a035a4692a14d01636433030f21438b

    SHA512

    f5ddcbbda7b78f0eba6dc945e2d188f94ab5ea7dcacee0c77be9624bc856d1a6a5352e1abaeed9f6e6864f21372ce2ef8532d4c4ae8bd1aef2262b8b7c05d24a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8a9d9cbcb57ffa436c3ad183823a4ff6

    SHA1

    d0cd1b08542bd5c26f1525d7564994908c00aa9c

    SHA256

    a01ef7cf65328bc2aba7c88e3f178ab242b2726dcffe2404d1858462a7b6cc98

    SHA512

    fa28452c7ddcc4746c6dab2ea5c7f48065271274efccb4b4bdea97876fdc7b581b8b49df2e250ee2441a64e54474c76d3dc70e7497de8220898b2fb0b1f7eb99

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    81e8fd833cd46d53d9dc4cd59493bb4a

    SHA1

    bbad800d4618b94ec76f04462917c1429dcde75c

    SHA256

    abd190c863ac5d6dc605d363a6e5ce5fd380f9189514412211297e37bb4a0d10

    SHA512

    a02935efa789f934bf6fd68e33d4fc0547ab5d5aae0a77b3cb7c5dd77cc00b3a7f95670058ba925256a6126c08b952e419d5c53d20f544f3091bc8d6a096f27c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    d5883053abc913fea5eccc09565909b3

    SHA1

    ea5f3e679e091a00c79ccb9a1fdb0319ac9e423c

    SHA256

    0a669635c080aa64943c1545c0f8de1a3189cd0759386cccadd9ef8b1b4d2a83

    SHA512

    0791cb8ebfe623926b3d3d1b5ebfe1bd4c9341591aea020d255f1d04f92c79fcef8aaab035bcfedc0be4ddc19ea5f4a78cb19dcca57f46898896558042f6d680

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE909.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE90C.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit