Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

c1606ecba6...8.html

windows7-x64

3

c1606ecba6...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    129s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    25/08/2024, 18:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c1606ecba61c15a45c0212f3e635e318_JaffaCakes118.html

  • Size

    12KB

  • MD5

    c1606ecba61c15a45c0212f3e635e318

  • SHA1

    946a56eecb120233ada86738e328909cabeda287

  • SHA256

    59365e8671554eac595c31d2a26a8e8dc5139658b77e1a8220a433ecff5d5104

  • SHA512

    71361479ffb898485732889d60cfd9362ef8d1437bef66877f740e1b3cf2e46d348203fad9a29f83d3a507894f73d70ff45cbcef55f4e220bb62a0a95b8e767d

  • SSDEEP

    384:AZvVuZzvovPDaB0NRglN2Ovis9lK04QdgRzTfMMg8:AtVaToHD80NRglcOvis9lK04Qmz48

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 53 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c1606ecba61c15a45c0212f3e635e318_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2672
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2672 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2680

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    ae6132adfa13cce3534791488ecd3b26

    SHA1

    209252c67b19093e2e8ca18e6c63e8155ad56f6b

    SHA256

    f6cb19536457205d1e7f81ef71053a67e9a596dd8135d020affe79405177b93f

    SHA512

    8e8692243d5f85fc0da6b48d2586bbf6051811705ad8585241af09d562341ac02041c85f5592a1d8f7f408d662bfcc5e31c326575ad79874850058cc51ca6f82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be3aadd86e1c15178ce5d89d6fbcab60

    SHA1

    610c646f1626848cc7514bd69aab32b571a4d9a7

    SHA256

    41b331a92a4b0a91cbeead4612c970d1c1b1f944ca95897acd5e8650a4712d75

    SHA512

    7f865cffb4a756ace7a012c9c367bfea69be4d9c423235df23f5a849448fc8d144b0a0cbd41f6a1dba0ec421efdb1c6dc6e6a5ed76388d0b65cf79007b7de3e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0b401d8f61ba8613e062272c91330cc1

    SHA1

    e4b854e2d56c3fe24bc4c553a0fea619f95ee8f3

    SHA256

    a80f6f024c2e7f60c397ff4bd7dca88c48c82786d40bd50b6278f149cb88b4e2

    SHA512

    07c626d41aec855dd7edac43b5a80234d94dc785c2c598fef8500414bfb75c3a436ac735a794c036abac2b8a17a73b2fd3d28cf0da7fb47585a3c67906fd3036

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    12327f539b90e0cbf2eaa7cfabd8f9d8

    SHA1

    b207adb7582c4bf08e4605e461548fb12772435b

    SHA256

    13dae9138c98e1c953edb63a176960bcadce65ae29f2a2aeecc61414f99fb4ec

    SHA512

    7ae974d45312826c848bbc7796bb6cc4f74030c02a42865439862102b12e1a55f51d4e57837d02b67dfdfe23bb06a4e1d7e1ecec248a86aa19cc484d80f40f82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    01a860b2953b9e60017cfc49f84bbcfc

    SHA1

    dbad8ff894da3d3a45caca3a529d2b8a307e9e93

    SHA256

    182e99b809121bc00231c9d05be67cb8299a3852f182a6029885576829674840

    SHA512

    34d288a7fe25bb9489009b38ddfaeadd4792bdf9eec7b48bebe560bfdd9523883a91c959e003509a6190675bcd5fa879f53c86a10d31dbd2cc471ad29d480fbe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6c14d36c66a4e375c25e53304f37a3f5

    SHA1

    401bad92c2018f4cd482dbc43b567b8dc170bbed

    SHA256

    eb67b762ffa945bf3affb1b90ebdf48b389c33f2aa77f4f3a7a67dea9bd3ad73

    SHA512

    40d5136e72486e5bcc262b151e4ab3b63806aa3217b724aa262373f283a0c1bcb78a4eccf31fde800e402b3b1f6bbc8e8b3a67043443de5cab1ddc369414014e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    296fd92a85c8edec159a3cdbb1efb0b6

    SHA1

    af5a39354d252ca1a3e6e57d0d564f4b97a51f4a

    SHA256

    ee548fddd7e8223eb651fdfa4b826d383430c81273cc7a7b16fa4dc7c9986212

    SHA512

    0f9c5f1c41e76191da52d74e6c539530c28db60c8d625bb17ba406013f53a0e7d07ab1854c488f9d61af3e23dd0ac90e71982dfc996bc62634e0888515d07d19

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8b711e9ef2a0d886bff09dc8c0dee9ec

    SHA1

    c425739aebff4c4b567440defdcdadd7b104a68c

    SHA256

    0eb9d8af7aced43a016e469be2cd28195b141fd2408c72401a719f9e2986269f

    SHA512

    dfea8dda392947a377e9b5914720f133d75c45ba33b0e2c5532aa119a08e76f543747f41a453406e86a1564e59355f43aaa942791ce36748012072a9a7fce825

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6a1cf23b8ad97d97d73b7666561c655d

    SHA1

    547c403ae5540d2e852f559ea696ed8f2f42877b

    SHA256

    877d11c00e9a0fcef04638ed8b812a2ab9a4df22b4f57186e43dc641a1a9e4dc

    SHA512

    254403baaeb3a06e7fde344aa0577d9056cfaaae018c07fe594ea150a3ce1b60ae879cdfba65295836494d6a56c1bc63bc9c9e99fe31f45a5d9210c564d85e6c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    29b7fb96abe66799b6ffb4f3f0702f98

    SHA1

    86aa2961f2dd831360e49a151029d5189f8d195e

    SHA256

    596a07234529acf8dbb889e378a74d16291044ee772910ed568d0b10f610a275

    SHA512

    eee74c9587127e63e3a1a63ade168a7629d40680770289e863343789bcfe5a904f1a8e631ad491e9e931900968e90be935b1097b0d48bc7f4d759bb14e542d33

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a40d68430ed0456eb019864b577b692

    SHA1

    2d35f649e6cf7b3f1645f28191d33f16913557cb

    SHA256

    1c7805e3d01290a88f33393febaa291bf57265bd36e3b60000cb16dbda83c885

    SHA512

    08c502e8879522aa0839b5f3dbf14f4ef3abe9591c9c41ad0d1be2a494c1c69f77a174221c17d3abf24106d8169bbacdd14c7c53cc8c65c4fc43a1863a0d9e79

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4e805a71b9ccd44cbb19ecfb75560ef9

    SHA1

    384afda35a66ab88fb3d30fb53c014482e2e0498

    SHA256

    aa45ab4268b2e8c9708ab22033a628e2949bed8629e1bf5cd5addc249636d325

    SHA512

    26c603e25b15fa3029bbc1c4c7234e388d1841c3bcbfe02e37d254f84e10cf1a79b67dd14149bbb1efe2485f3c68c8dee908ca6cab4aeebe884d82a1fef431b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    57e95958648ae5a0f9670ceaa743d4b7

    SHA1

    3be658b2394e456e8caeed59ff781680440611df

    SHA256

    9af98d2a613ca12c7ee74210554057b6d9395c0ae9cf94471485a1804f7185c1

    SHA512

    c70e54f5d094e626c54d683f7796a196483a41f813c54223b844d3521a5ac507306d8a2799927ca3b55ac2faaf20984b833c1020dcf84109c528640d7bf833a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff871cd71fc34d788cba91c846cef4d8

    SHA1

    9673385e69e5e43a1b20f0758a0d872eb7f09eee

    SHA256

    9d52b552df707d2b87e1865eb91438ebf89a478150a3118a70b3498e845f3960

    SHA512

    e29acd04cdbb5ae10ff06bddd148c56d6c1e881a46a772341bc9aa7a69f1f2ffbf9aba6d731f51d96724ea9e80bf8516b88baefb2255a34a6e4edcdf9d05e4a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a22424633820ebe2cadc4f476a843e5a

    SHA1

    8d280a2c5fd3a57c47ac49fb2bbdcb70bf34fd3d

    SHA256

    633af304b3be18bd132605e71c1180900348c719511e8e990de4ca32292cff5e

    SHA512

    d718229dce54484c8cdf8a61742047db77db32bec2629acfb5a21efc4591ab145a15b5b0f0750bfbd4856fd01b73eadac46f21bf608274c28325cba1f73a6a9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e120a68a4a75bd4410af037a09a7ee9

    SHA1

    ff68768258db9cfd6e881a3e7c77d86b4cb951b0

    SHA256

    a38325de6c9542d7f0fc63f69f36aedf1bfc47431226b4a21179b61a2fb1871a

    SHA512

    218ee4d0e8116c1fbe5a0ade6b2a314d59d4174596102d881f69c9d73ac3b24ded8a94a5c3990f406cafcd7d1422a6d9dcd484fd35b4a53c6a59cdc7ab52f7fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    73a44bdeb2e41bc09f907f3ca58b4964

    SHA1

    cb83208934b1027cc6b293968c1b6ddc199d616e

    SHA256

    0c439c0d4f8ab0014ed28b229b6e635c52a0b090576801e85b7b4ac21b3fa2df

    SHA512

    50310b1043924d17eba65aafcc6ce9d1747dfeeb01156bd60af91977dfbaede5dd0456e608c55fa0ae4a2ddc4d9f4eb2271bb139fca39a9521d0407c46c5f1b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9dc2494ce77eb52be8fb6541ae91269b

    SHA1

    fda85c39a34ab7106606b95fe645bb0f01956645

    SHA256

    34ccc982cdeb10029f1cb9b412f66270b7e06a147f93777ae20350633e87dfbd

    SHA512

    3c594ddf08ec162be62581f43025f82af8064dd5819b264b4636f49d80abb2b1317ec3cd7b0ee973877aa6b30867834abae463c26f7cac175607a6a8fffc720f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    587b9052b74af40d07de5f67a710cdfb

    SHA1

    695e6263964acfa1da1bd394ebc39ece7425b432

    SHA256

    bad76bf1889c9a6afe94da248a2015fadda33c7bcfd3718146f7cbd01e6b92a3

    SHA512

    457e78a2bd5b6de4af3c3f08a5843a16436a8d0bdc672844e17dec807de07f17241b0b342bf2eebf6af074db087c3ea50e3217dace66a1d6a3ebae589f07f1ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d58eb11bfb4bac5a2ead962998b34561

    SHA1

    41be91d21644d8b5d71be9818bdcd175508b04ee

    SHA256

    2876375ae182da2d1d8b3c11c9813f1327578a019bfa6bdb776884a67799edc1

    SHA512

    b21da42fd4bc5c66a75493082cb36dd10d4ff50922ac96b41833947c2710120da875a23da8a92eec6cd467b9c41b0b7832550624b764eb5742005042ba43aa12

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    727a73f7caf20187681833dbde155887

    SHA1

    d9fca0ce39a74c8f69a22edea2926a6cb8a0ce24

    SHA256

    dcccb88058cfb174b96c8c0a7bc8ba6d72e4f22ef6ce82f259e2c0e3a5af907a

    SHA512

    894f7aa7ceb013ce9ffc4ef09d19abaa0e6aa6e0462d8b4767997c5b923d79ca91df66611ff1c498e55ca1ff80554f357a598d622dda8c1fa9cc141fcda45e8c

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\HBQ136C3\www.youtube[1].xml
    Filesize

    229B

    MD5

    7cd24ddc552fc1c3d679b907a0bbe9d0

    SHA1

    e240f9e610c0fe20d117e14251b8c853557865eb

    SHA256

    3a99711963ad07f6c380974cbf51ed81b097206804754e72e00d042ada9f0e00

    SHA512

    fda8205c7782b7acdd0c1e1bb55bbc558a27bba79cdf1cb0f01e9f0d7ab7396ad5b28b03fb9b56b609c3ba0b3ffab5d56db82c9f30f81e909a954b2c19bb9348

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\HBQ136C3\www.youtube[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC60.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2C41.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit