Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

bdef3279e8...8.html

windows7-x64

3

bdef3279e8...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    135s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    24/08/2024, 04:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bdef3279e801651461bbf0d4f7d7fd45_JaffaCakes118.html

  • Size

    37KB

  • MD5

    bdef3279e801651461bbf0d4f7d7fd45

  • SHA1

    d1a4d71d830df49f8dbe5aa768fbc1d2f5458bef

  • SHA256

    452e083e8539fed2396d82f3e57e1c1db4186bb3d5870269697a5b01a4c46d3b

  • SHA512

    ff97c5ff24ed24dd7dc4e8c2d02b676be210e2494cbce64d20c6eee3819745d2a4a029b880e19b72159ce24c3212f1098752d799e162b5b24e5b909a360c5d6d

  • SSDEEP

    768:Yl9m2DawLyybhET8+HR5hXfzJ+N3KDi/3MK3mPhdMZ8h:Yl9m2DawLyybhET8+HRDPWAurUt

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\bdef3279e801651461bbf0d4f7d7fd45_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2348
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2348 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2472

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5dadff835e6915242401e77c7fac995a

    SHA1

    f1d5341bf7cf1a2b1e5d9726fc5d69e0a24e3d21

    SHA256

    ee2d9ce63b1b2fa3010a3328c543d9339666c41aef79f1ec2147985f35e101db

    SHA512

    c83b897060e64143e18ea923c037b57083b8fe81abeb075306936788ee902d239afbf0169175418acb3916b207332bc642cdf34aeb2a535f2fc8be26e48db42e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fd200785a341611fc0156fb62d52160e

    SHA1

    cedb9735fb33369f5eba20f8f51db6d7d676800e

    SHA256

    82a4e2e66712add938d1616a303331f405fd819b84fc9e36eafbdc5075900b49

    SHA512

    8dfd7e1be665f02a24453b6573b1f509afef2f31c8ae718e68dea5b070486c243a26bc2cff437abbdb17e6623de175ed18692c88d424ea82c8c2c7cb773b464d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c191040094126b80155d7731951d2876

    SHA1

    261ff68e33572586f57be4aec063b565719cdadd

    SHA256

    65bf0639ec89bae32738dd8b090eba710ca5fa7eb738b0d30e629218652fe028

    SHA512

    a310feb3a73e822be6c6ebf08741de2ccbccbede98776c1394c5161c6252a6993b019e90061c003e87e64eac7d91c20e155af5701d2a745e51b690b8104c27b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    48f409a10b7231d5c4d4b4e329d3fd94

    SHA1

    492c3b3a7974fc838805dfbf2f43851ba21e3143

    SHA256

    7d62f00342681e271f1a360c1050a59ef3ba0f3de5d6d0ab811f3b534f9740de

    SHA512

    d93cb3dd0f8cf05a716c22fad38423c3d90d75a39e9abb0524b780a7a6997405b6ebe210f910c690e1e17f69f76477f71f6a414eed81b5b13b6941a2b9c48875

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6c73c12e9e734455c2d7e8555c07e802

    SHA1

    35e33a7758d2bbc011db12a76461595b96688c53

    SHA256

    740ac91158315709d4e33eefd1a069f90574a19587230b0b458dbd020e269819

    SHA512

    343f85fae94a307b2768efe62cb9d5d37cbeae93b3d3fd6ec1f30cb3a34bbea8e5506b08aa37b1f6fec8e3e2b7f54dbbe8e5c5ec79349f47687f32a02aab272b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    591f2aded9210122792ea14de9843257

    SHA1

    302bdaefc4b42cd5cd151727b8b3fbdf3174c99d

    SHA256

    d8e645382ecaa6f21831dfca533cf9f40f9fe7919a7b03d55a448d3f111421bb

    SHA512

    ec42690406e06d2f1e60f07f52165f032a3f7304b50ccc63a39ea3f8dc0f053e6b5d198e722cc68c301d9536d7969acd0bd143a748865afb5c860fee8276f928

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4171baf80405d5516bc67635d265ed08

    SHA1

    491a2f707fa903488eb34710533fe35ac45930d2

    SHA256

    24385c76ed00b8fd08fa144ae4bf97615cd91be777a185acc6689bdaf495eee5

    SHA512

    919797fc75c01e6b2eb18d771b82f71e505ee3e574df54206bb8d70c2111fc13d7b48c96a98535a389fa8d9e7efb72b1a043af9e8c076fd97c6bb2ea4f3eb4c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    44310e8509f6c99cefb293c8fb1938bc

    SHA1

    b3f6ccc154dbdcebbed3cd3da29e3cac269de5ed

    SHA256

    799e3701fa69dd859983128f95168b1f9a092705aab4e401b34fce053c08ed25

    SHA512

    c62504e90e777ab1aa1de9ad127617224ddddcaa9d4602a9a19f70aa6bcf49d5ac5a8a5789a0d92c99b38e88c148775708af394bd916c1b5240e2cd70da80301

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a7a40c3e381a56b70f4da262df29c5f4

    SHA1

    7b2172df4b075695645bd44b324bada4a2a849cf

    SHA256

    50b2dec4a70144a2b030f77bc59b5e3b168a050c1c1b538d30381927dc33df0f

    SHA512

    8cfdfe7be2a230310069b23277ba32cb69376150e21d18092dc182539015a2f3569a93153528065caf3afdf72fb806fa5c83a5af965cd9eb956a5df52cb62107

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c92d85bf23f315474df301e581b14380

    SHA1

    f933147f6a35192345cdfd4808fbbe5f11f2e501

    SHA256

    bbacded6e2f99d447c01edeb4d171a45b0dcbca0a47063b5e70df0938660964a

    SHA512

    9555df6d4509101d652fba9f28181a0016447d5aea96951dba2ce99a1b3e53aea4a6928d21735684037c2e26aa31118278f78a851ba901a842c5a83cbec09898

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    82830f685fbe1bd76713339132970b4c

    SHA1

    7705f7df079d69c5ccfeba400d57b7cf7d43e3f6

    SHA256

    d7cadc6ef460746102c5c9217942ec7f0a8041810e5d7e9d779702a6a3a98989

    SHA512

    be568b8f7dead692501686607f92f19fe9432ff4c381b4d1b5ecef1c549b9d5497b3997f1585753c50d9549042ceb8aaef0551ce439570c2cf08ae25b7c748a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    beb62dfa4d3d98713b400e3f3bc63176

    SHA1

    8bf7e4d9757105fd18aad5bdd801a981b12aa1c5

    SHA256

    4f46a67e815b798c3774a9a819a274208365d188886fad91536050699cc45325

    SHA512

    5613cb81418f588844f36c6e859b4500ef1a9734e76d7ac75703678897f1603e94d6d4db7778ad8428691bbde6fb79d5bc2b9ce8eb4615cc054549875cf9845f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d96f0a024e065a79002baf57a39d66e

    SHA1

    13d6945ed23231847a9c66008a0eae81e2dd9481

    SHA256

    9cde8424a484ce0396e06be06957a491d65a738529acb27be15e69e196c5f578

    SHA512

    f5e413c7462369c9b02eaacf84b106afc53a9bd29edafce45400d6093f07c5a219a24bc5a6b3c4fb031fef0067cd0ad4c3fc75e8d0bedad4243cb6ec4748cac7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3dca1e7fa439ca0db9478b7bce79c878

    SHA1

    4c8ae5580487a2c648803e55fd3218bed3ba2639

    SHA256

    8ca7cc6c822b8ee1f860a7c6fc2cb6a9132671523ed3264d518a02dd0a90543f

    SHA512

    e4ecfa49c5abd9ac7d5717ef38e709a14f3c926d6207dc47223e68efeb829a5b5579eaeb7fc48d46975b28c1e8f58c788a449018b9b83b54e4bcc2b668a51d9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    448532301fdd74852c41b1fc5b2f0a19

    SHA1

    93aebc6257a136acd96a87912fe8621ab3836509

    SHA256

    12dcd9edf36ca46397a7a83165b05ffd94d78a2772dd319f3e230a735b196b02

    SHA512

    0c9a08b4e938ad862ca56faf2ccc01f56e693230a8fcc6a83a89f68a06f67cd4ca0507a2940a682879d2d791b9def2f8e49db06d3a4db173c443ccee5a38105b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7566a9ab3a65c06dead1426f7064b9ca

    SHA1

    22e3bd19effc5789dd2ad50056b40b085a328c88

    SHA256

    315feca9d7e7cfbf19230aafb89d91a57bbae9aa072888f3cc39023afe786bb2

    SHA512

    82b3225d96a8ec435034502d30cc48b501c7af8bdd62261cb248db9559a6d22c83e07d9d3de60191d850a1bc01874fac6c9cba8b01a5cc6d2d8d04744096ac7d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NFAY0EOS\jquery.flexslider.min[1].htm
    Filesize

    122B

    MD5

    1b041c010262e27226ad3abee5b00b06

    SHA1

    dd05d96350bc58ca0406b539f7a3a81d64ccb221

    SHA256

    23c43d08890e4e03734611b3301efe9e6eb2f1d04800e9df92cb2c9636950e70

    SHA512

    24865edce6fb43848930e29607655369e01542d9b9cbe11d733e0c06594bb5fdf9e5fe2e4f8a2ebc0f294103c03a45edb9a99829024839d80217f008f38f3e81

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XWMUP5AI\jquery.nivo.slider.pack.min[1].htm
    Filesize

    124B

    MD5

    afaf62954194dd1b045181a874ce3629

    SHA1

    6e99fc5610e06825e922db242b015b1beb59afd3

    SHA256

    842c76943f54464666b2b4d0cb9bad3364b8f95fd95c377b2f736d42297c1d3c

    SHA512

    38ec4883bd76f641f41b47199fb569176b8feb2aa9f2afee3de4131cfcc6308abacf4455767d05c829244d72917f15c74cc225e13b4eb83b0133deb83e0bdef9

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z7V06J7Q\calendar-jos[1].htm
    Filesize

    125B

    MD5

    30ec1eee101cffb6e3fb4f3720ffa331

    SHA1

    252acf42ef2a75bc641f8e1169de92184b3adcf7

    SHA256

    1c206c3aeaf7f9916cf40f5cf90c0b32bf42c13dc5bda9d7bd97ec21ba987f0f

    SHA512

    6a8d74774b4bfbf0c478fbe43f1b678e6b72effa9d3c79bcf4ffe04726ff11e8158fb56fad4042cd4ff1f9704630adf35c1f202e35222d46c12c8d7f4a78f402

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab53DC.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar549C.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit