Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

c87a516b67...8.html

windows7-x64

3

c87a516b67...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    29/08/2024, 08:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c87a516b67a15d1d23dee57e2a762690_JaffaCakes118.html

  • Size

    462KB

  • MD5

    c87a516b67a15d1d23dee57e2a762690

  • SHA1

    a13e0ef06f589d096355eaefba281ff48c45d761

  • SHA256

    060daf0eb8862069aaf757e83a71b465bb9f166ada0eee89e09b5443bdf9bc36

  • SHA512

    7dcf465144f0de975b12d6c605fe68d241b1d12a26ba83c32f593f5b83fc161f0208d8bca509cafee8d7c93e29dba4525eea084e912d4449abb84a478cb81efd

  • SSDEEP

    6144:SJsMYod+X3oI+YNcsMYod+X3oI+YxsMYod+X3oI+YLsMYod+X3oI+YQ:c5d+X325d+X3j5d+X315d+X3+

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c87a516b67a15d1d23dee57e2a762690_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2936
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2936 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2720

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d3f8e2794a4aee8b8204bedca18f04b8

    SHA1

    8ae4d2ef7538d23bdf4618add6f91c0dd9c04a21

    SHA256

    19f2010a3a9a9627383f790f5b63a8c03e4d9437e075fc51901c8b686171fd84

    SHA512

    5d1c729d443f6c649ba110febb3e1f65ab46ff6184adc546c27329236490e6eb60697ebe9bd6008f19e006e62f81649d17e2f4709b9874cd6ac4bce022cda8e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    927885c1e1fcdcdb84189b2f4f612ffa

    SHA1

    242d416fccdf97c5f8a5a9f666fb590a7122ed21

    SHA256

    efeba1f02c4c10390cd3faaf2cfb3bb74c1e3f82c441db011fefb9e3047988e4

    SHA512

    d53cb3c4bfdf888e363c5abce192f8c1ec3fab814a6c48310d143556f4c04990b77f77f585b39df6232a315b4c94e13034e9edbac98aad6aa36ef8bc043a7817

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    159f39f155eaa2385de00bb48b260f8a

    SHA1

    67fbc65369bee81aab944d45d64f03fdc410e7af

    SHA256

    ce81cc5559609b0837cb0190addce188547e1cbcfa0518f3ac3bd06822663e95

    SHA512

    63f8615c31f323e5ffb92afb16d1ae74fb35516fd9a7fb9a05db5dfdd423d32465a7455efb937de79129344cc7dcf1dbcb719b7d21984fd884117624d7a65176

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d2858a5e461531b53fb6bd7f0e3fdac9

    SHA1

    8778c8cab7ed29b0f43164d16c0cb06689a7e587

    SHA256

    71f1be408e7559f3783283241e0e89293dab56c16fa9de6b27dc58f4b321e063

    SHA512

    21a85ac71927087a2e9413ea4e04d2031147152ba754e19646e1c51429ad9f2cc106bbdf280f0c974706266f6b988f1dde111dbd86e1e82c1b41aa8443826973

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5217edf3eb033eac8c0c059e19ac7f54

    SHA1

    aea7ecd0f1e0be6d65222b7e474612b129e003bf

    SHA256

    ba93fad3fe7f740c7742b9805fe3452b6f5bcab3fb77a428b3b774556efe5148

    SHA512

    6c7f7e777ea58109c548ce4401f481bf3693fe7788f5a251109ee75f999b6b59730fce4a7b28a4a23ed088ae8a7f4f63a6e66f1c8aaed7d361ddb9d45d660c84

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    edde5d656998e34a0c399397d1df01ee

    SHA1

    0107abdbb3ddd9afabd155b311551a930b63c312

    SHA256

    c1786fbf66fee377d24436fe858b411bed177e1ef2002549ddc09d99278fc180

    SHA512

    456ebf640962b1907737182346f0f180502a642774ef9e2a1b6c3fd4c4ee43da95ad8722f058d0941e9ecf8f3d94a7e82bcdccd4f9d16c5a2bdc8a407a417ded

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3ba974b99439423c782c6ae32fd73c86

    SHA1

    d0bd01d01f8d28e10d143da9ba3cf5d20a94828b

    SHA256

    b7d8641e15a9121aef89a4254270dc365fca76fb04d0411826b32da0bf6aff39

    SHA512

    3f3556f9de812f09b16e43bee8bfbf4454f16839ce5d1225bde4a507a5a19bf933290087ce14c987179899497358196191a0476a0574a2411685d2af69328845

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    addc9388619de320bef177c31eed75df

    SHA1

    8ca686dc5b959e1528565979e613e30cd9fad24f

    SHA256

    5a4d0d37f761c934ed7e0fa2d9777d184e9b539b3c1d3139a53d9697b428a442

    SHA512

    2cfb6a2bd2f770578b59cfc46a4f1966772f4e6c6b2a6df56b0ccf3b79d7ed881b8069d75b468a9fa3bd28969caab5614af764b2259f3c6d5fe6b47f77f25547

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7e23b3b05ad0c6d425735f5dde677323

    SHA1

    eb99a3a0dd1023aeff331d978ac201d349ba36b7

    SHA256

    db8cd812838cd61ddacdc3034b8f986e8fbdc87fdbfa714b364d451a22f27878

    SHA512

    4d04d35745d086d45a8aa2d7b8f1e044d4504db1d5f7f253a16e627d30d0b0ddb5819f03973743b865b9ee3152c5688da9e016a898574e6319c73a0903892eea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ba42344612c82c67cf4410f4f9901a70

    SHA1

    b9832ee3f1e70646b01aa4f76d15cb0b605f5ad9

    SHA256

    4bfe239055554df296eb5f777945dd6c66f89a1fddd69e37aa93c449ec37ff3e

    SHA512

    c736a9bfefd291681cb16f3079baf16990f47ed76c071ab1423b4a3c3c052d7769b724c05b07ca1a6209fe25b29d1053129d96bc8299792dc6739bd63f5d6a92

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    80b160e5a4b9fe547982008fe96d46d4

    SHA1

    79003258125daa9dc80625cc022f4bb0c8a6a416

    SHA256

    05ddedfa6f258ae1975911aced9e409a6e3d066b91f36ed49b083cb6ae1d68a8

    SHA512

    55ebd2c5cf2df787afbddc32099415c25802699568dc46b40fe6227d4da59ba4445f2a8e996b0e50ff33e047f48a02eec61c781385b9315c73ee59569f883ab4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    12f38228a117b680f4662ec820be1ddc

    SHA1

    3745f914cb9b3cef138bab1d57c05e305f1fdbf6

    SHA256

    94fee105a7c341e34dc59cb65e62f76bc009a58b09f6714e0fdecaa261ad07ec

    SHA512

    e8d1b065aeb886149baea55092a6956ff79be5f50ae8ae12cea15749d0adfe715f2ad9cb141cc20b37924729fec7441c6629776312587b5b7af37d3cabc7665e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f49d41da80e51f77bdb4eadcefc45dd4

    SHA1

    2c09a10a2097c4bbf771d35707de77845d70f019

    SHA256

    3d453f6a276a3b61673b9ce5226ecc9ed63ec967fca4ed3ec9ee951e04963bb5

    SHA512

    adb2f9b98ff6a2d59f74d67bb61046d3aadf04ec2f9b28a95d6dc7ae0779839e2dfa11116b6ab46ff1fce0e70421dc5207fe732b593d78b0a6a80287a6df0716

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a98c940f35570e20f059a234e5e5adee

    SHA1

    c1132787c206f217452c37a2f262b3b816f1cb0e

    SHA256

    52d230a130bf521604963ddc50dd3da8d75ff4a79e3f43cef4f7d4b853aa7b3b

    SHA512

    4b99ce45ef8b02d4e4d2bfb33cdae6f62c511126d74778b613569a9da590dc8606cdf090d543b1958898fabc5e7c08d310e05ec3b168b2cabfb7f0b9318783c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ea30e630fb605145ebe6a2b42de0ef13

    SHA1

    a0c043d36cacaaf15f3b7e86f35822827eeeb29b

    SHA256

    d7b612fe6b57ac389ade1dd4a3d34a7d43ad8771ac82d4a2cd1ce98507516b61

    SHA512

    c9862bb1d32f461e74fd9c130e6e35163b90efcd549f34232b5ce3551f3567f1be9f15e321c9666a7005a9edb8f4c0d2a5b91a1dcc1660720602b7f8931787c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    58abae0dc471616e4746026929bea1cb

    SHA1

    136ea882e72c6be669d56a23fc2416fb84639611

    SHA256

    e82ceffa97bad0ed4c4fb0ad81fc0171b2ede58a3d7c725621807d9d50111e86

    SHA512

    a9dd1c9c4dc25e0a453b888daf732497c9182d4346dfbe33af7a25ea4aa3482f2bf7568b344a3c4e1154b51303a76f831564141754d07f02c1be5bb9042227a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    086184db4055f886136d2c34de7090f0

    SHA1

    b94771fab86ef029b51cc7e593becbddfba17e49

    SHA256

    a040b35bf6f96418413a388d97455084e31c357a226c89e8b7d40411b7b28e5f

    SHA512

    7fcb90aaf1a9ccc3e56f1fb6aad4a8240d1745567f8baa205ab71c6270f6aed4ca8b05c0ebdf29538cad30fd10e16ccb96d0e4753670271a535a59d1247e90ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    81fabcd9e87f4260d4a0942102057327

    SHA1

    211784469e2751ba77fd3952f59a22df09d78c89

    SHA256

    9c32d04a4e2a39a613835dcc033f3d1a5732ba980da2d67ca3957656e705c041

    SHA512

    bb3c9699c3ae2ba4f6608c0549dc90348aa4102f5dd12e4df27bf9b1b85c70995214ab4a821e2afeeaf3e21878ec7275fc7788698330532430a43ed76cf4a20f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ff444cc8176533c3d72887199e1cb27

    SHA1

    370ccf25f43d6af6cd4eba1e891f2a662a3fa872

    SHA256

    9eeeab272e7a90adf52a4847b7df4f4e41a4e797eb5f72af97acf5f967e92bc3

    SHA512

    99bd57049cb1b963518ecd3df67ba523579f61887fba9ec4c597d1e981a056843075908c0163cadc5d94ab619af6affcf2de4f7c4ddc92ea98f4ca7f2fb1a713

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fee4267916d2900dd23fa719b3f1658c

    SHA1

    cd81905e41ee69ec58647c2cd9f0880f90b8ff06

    SHA256

    bc6e1197d0e3556e03e7dfce77cc2160a09e2c82b7da54fab1a3a478a874e3f8

    SHA512

    754c4df7f847c52ba0e43a4943b1945b94b9ab6b670b8b2301a4883733e6916cfbfcab3b136ce473749b9a8da79595b605e664cb82fc624e55bfe36aeec8196c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabBEDF.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarBFAD.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit