Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

c15755cf26...8.html

windows7-x64

3

c15755cf26...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    25/08/2024, 18:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c15755cf26db5894bf209adc62251648_JaffaCakes118.html

  • Size

    207KB

  • MD5

    c15755cf26db5894bf209adc62251648

  • SHA1

    ac342df2dfb9a8b61c018a674237b4418257bd8c

  • SHA256

    7298d22d2ea779daf085ee63b2e136d8e61cd4b734f926405b63d31dc5aafa34

  • SHA512

    1e4246b8425fcea01204211ebf9bbabae913e8f2fe745d781077e9d1e8b783ab0441f83ffe3d7165ea03fd3640a85a66312c4d569ebc4379f65d48b7e604eaeb

  • SSDEEP

    6144:b530DH6NEQwjcHXxQRVufJc/09f1kiW5D:buDHQmjcxQRVufJc/pD

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c15755cf26db5894bf209adc62251648_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2992
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2992 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:348

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416
    Filesize

    1KB

    MD5

    55540a230bdab55187a841cfe1aa1545

    SHA1

    363e4734f757bdeb89868efe94907774a327695e

    SHA256

    d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb

    SHA512

    c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B66240B0F6C84BD4857ABA60CF5CE4A0_5043E0F5DF723415C9EECC201C838A62
    Filesize

    2KB

    MD5

    a3cc43221551640314587475cd7620ea

    SHA1

    13b79f90ca5b29ce175be2de4e5ed7c4f14bbbf4

    SHA256

    93c1d3b276e6dca0ee0c44bdab440274ba3b04d2cee0acb4e06456ce70b04134

    SHA512

    303dda098aba35af75b3673a06759246a4d677484054e7962bc38144025cae59162511bc2410bedd40333134a1e777357a2be517467fb71fd60e96f9bb8dc305

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\070E0202839D9D67350CD2613E78E416
    Filesize

    230B

    MD5

    a89e7e3afa03446a31e0309ff50bfb63

    SHA1

    4ab7a49be23d5b6362dc4fc6d325a3b5bfa7731c

    SHA256

    99f51402bd67f27d2ddaf02a2f47ce5f09c9da8692c5f4b80de4e31a515cc902

    SHA512

    8ca0868ce0ada404b6e62db1f5fa5abb33295682873864d6fe872f8ce25ee8aab149481fcfd1d2ec394921b88779541bc07a7f1c785f5e7d79cab6584171c1d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    5547bb6d0026d0a0d09c39f1186b01e7

    SHA1

    300bd43848c789b29c561fb91bcf959970d9f892

    SHA256

    8fcd84a44fa251f194e62a28e75ed162f76b993b71b8dd5833f4c2d19905b560

    SHA512

    22d05f3644b5057b1eecdd569b61e3700eb81e9c1c314aa16c36392cc61fe5b7b2ed4a469180205a4298177bad3c002343b01d95983b36f2e44f6f4d4b869926

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3995b3701cf2c7fa3659bcf0175143fa

    SHA1

    54d63ae692853d6a44d778f3e28b35a0aadf9d28

    SHA256

    afe88c1ad687d90b8b110c4f54bd7c809922882a98e4dc59142a87973a18949f

    SHA512

    513f5ce59f14d09834fa0a0f7ef9070b9f7ac89dee7c31db33e78f64515921c36096e708e4f065d7c0bb13075ae85063fd1955689655453e07411d48408e5269

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2985e5fa2edc7ccefd1f626510a87fc9

    SHA1

    4a839a0231c7a38045dd496befb3542dd88a088f

    SHA256

    76ab2f9a17140d608b2e234576c1d1f666a582d2ce8bf697c2da31fd9b737e55

    SHA512

    1c779a4ab9bc9334e61425303cdb04dfbd7463b7ace36952e2e92fc8569392ec3a6dbd3af2042b846e36abcb033782b446f7651ca2c182abe0ae0ff4d38ccad3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    58dc204e842c078a9e7dedcbdc7ccbe0

    SHA1

    3bf2d7ce237ca964513a498319e358d4c676b01a

    SHA256

    65653ff3111e0ee58688971373aaffcb1951114427185850d29df6313cc774d1

    SHA512

    798c323d556664c1b5a915b19367122203b8149d52548134f6e8a1597a6ab6b177c2408dbb8fffedaa90100cdc0d71a749bbce0d98cb4db9fba87bfbb2a630e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e7eb764e821aef026e29a70f82a66a98

    SHA1

    88e31c77d62c256188334c8f7c045afa2072bd40

    SHA256

    cf2fd39cf6b4d58fcb5fc123b93bfde278702668dcd0e95a15496fd0ecb3f807

    SHA512

    a481cadea1fff416585cd85d5bb97d85144e5df2bdcf108cab3bf6866e0710fadcb14a21c6b3cbb011a3096816c333836f2765f19289a080c2d5e492bc5bcc42

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d3693e643f9dde5cb3d13441c3f112c

    SHA1

    fdc097965f5a926f2272bc2bc0b29b9336a31b1d

    SHA256

    f46e031bbe7445d9656ceb9f9d5fe38bedf99451f6369da6811c301162e8a90e

    SHA512

    1c9534774dbe851cc316cb4bcc81282d337bdcebdcb0d947f4ec14d22554d369cea3c81e546e982256a5d34dd3fb53131f24cc3e1b20d13be70ab5e07b5d420b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    89bd2afb2459fac7338516de8477c948

    SHA1

    f3161399c060aa9142cf0bbe17b8a70c157a1c18

    SHA256

    bbb45366a99ab1d11a6f63dcb0f0ebdff838a6620a0003e225b056c957d82ec6

    SHA512

    4a3916af1619f534d01ea7b568785141d8b28937ad0b376e1d5df97f69f44cd57580863e50a117ad2e0ebd61f13c90a9a93d2f6e3c1c0822f201a988bbdff3a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9de3eadf5682f199839e53bb2df69546

    SHA1

    47c06714e1ff671bbed0ca3b330c1143f6082f61

    SHA256

    66caadb8a5c7aac19f4a8ebce6f45fc52b3601473d3159ba96051601f4b28117

    SHA512

    20cb87462a0a90c3b372be0c694443d59f8d54afff186d9cff9ec8d9aca80ace796b54b8516d72da17058fe5476632d45e066efdea67998e5207d88df4b8559c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2f33e1e0bb0d0c971ab966fd41e929b1

    SHA1

    c9462fe72a6f240ad3c1d086f463d4609e086910

    SHA256

    fede07330ddf4284325c1f230c5d70b6e4473f7a0f4d371c9ed918058429572c

    SHA512

    040374081f34ea1f8a22d86f895e37f01b896c793907bc2cd039658b0b5356c79806f37ebf6be1b1bae3828731a6e6298b6c0727f2e1d16899d51ffb193d0a7c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    425d4f2917e670cee7a78a70cace55d3

    SHA1

    67bfac65cd3e678da41b15e6caf88750079eae67

    SHA256

    7f7883be86f088d0ee1102b912ece59cb97dfd44a6abfbeac1fa857e9bd9da72

    SHA512

    0496e7004ccc7290ad5af3f60dc338d35301fe031f74cc647744ea737e963f0d251ad8278615bd2ceafb55e545198152560a5f715c2e7a7d6b57dee426ea50cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fe4011f0f19815686338e375ac7d77c8

    SHA1

    61aa1057d4a6223e54f9198012748b18463ee03e

    SHA256

    b9bda043f94bfb8e0a0286be9eab54db5b901c65a28b7138674a58db9406a96e

    SHA512

    6ee8e78110c6ad880425acc4134f9d1af273133d97a73b1bc22f4bf993955e292bc42809a43ddda47b50305b520a7184c879e408d18a2da74539355714f90b26

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    072113d135a4e5712b40793289ffba47

    SHA1

    a916ae8c41e2b9d1db38c81a2a010f84f04acbdf

    SHA256

    65087435c37659392ff869bb3831ecc61350334e8f01ea74ebddd2fad2a27bfb

    SHA512

    bbd9e31f494f43af68fbcab0dff904a6ff3c36cdab2e2300703dd12e42e91b0adf0072ded39da9fc39440e3f4a82a3e652d80579757c98c68efbd394a98c7e26

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    63c0a1217c699ed8c321eacabb9520bb

    SHA1

    9c24df97340a5265a2a2b6a531a3bfbbe2c86f1b

    SHA256

    d899274420935a268db29a7718814965b940a2b91008ea2b5ba481fa6d74a37f

    SHA512

    8b0abca189f393821d417dcf689af1d63a50b08af08d7a45b71c1c1b369790c854fb99d3fcb1151befd292e19a25c46381a57272684c0dd0a3bd951ea90d4092

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7e4e1ddce0afa6bd20def3801649c5f5

    SHA1

    ab6d43d633eebc9a9e63ad1539caa742bbe9ae23

    SHA256

    ebe7b4757f73ca3a5aed7df5ecf096688a48592105296c3086507da111a58b2f

    SHA512

    5ff5c3e0c1f8a38c89c011c9d7defe3704f38f719a387a20866a385fca6515c68303f2a8eed0ed6cfd9152c6642a1fab1ce0ebf22ae1660be0dc7ee78cd48d18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    41169baf970e633c3a9533188b23a86d

    SHA1

    6e5949995211e6acb1f4ef55b3ea1a301a0db2ea

    SHA256

    03f8dd3de60090155b194c947d5926c79dad46ba5e148f0e064263d3142fc9e7

    SHA512

    d5977da4ea563f63f73bce89b26a537550a0dfe5680405583e77f8d058baf563c93b9e68628316ab045103bb0fafc7889ec0abe7521209b87f3cb03dd7e094b4

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HHT5LGG0\js[1].js
    Filesize

    229KB

    MD5

    d8285c316cadada015f3e55fa297f6b2

    SHA1

    5b4b70c9f46176598625a2dbd35caae58d9d2425

    SHA256

    3f02232eb0dadbbd79526a155464e2a7bc1077fbcd58007f328fa1edffd72a09

    SHA512

    a3e5d19f73a747bc6459fd71311499b6dff0ed0e441ae16cf74e9e2ac217920b94135467a6fb6e84bd128e65f918952189289d81fc2f8bc9a1608a078f3d6182

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UQFHO95Z\loclist[1].htm
    Filesize

    167B

    MD5

    f5d40b7259645010f9a248858ad14178

    SHA1

    b3051d17a6ec8c9e166bf09a62b48261ab86957b

    SHA256

    7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d

    SHA512

    1e82bc2d067f726670b3e6054d73e57868f6e7c50eb979696bf927daeef699f2d8f8de201e8252b86b0e9f86dc69e5037fc9fa08ef6c271b033f29d4f0f4c1aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD1C2.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD1D5.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit