Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

c970ed17fe...8.html

windows7-x64

3

c970ed17fe...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    144s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    29/08/2024, 19:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c970ed17fe4e97ecfac64d9a2a4ed116_JaffaCakes118.html

  • Size

    458KB

  • MD5

    c970ed17fe4e97ecfac64d9a2a4ed116

  • SHA1

    8b862d4c714875ac3436ad264edf79db791ae26f

  • SHA256

    53d4751686f79e9972d526a40c6b3087e6e4f95294206c94fabaeb2589bd9bb1

  • SHA512

    eda8827ee47fe2b8d230f945307a4e8f01b974af754848a6598986aabcbb6a2db894838521c42ab848c0496559e02f4059619b8f74dab502e73f89fb6cc07409

  • SSDEEP

    6144:S0sMYod+X3oI+Y6tvu6xAmzM86P5sZpMFzBtug4r1GcFBU/b:95d+X3poCPuzmrugwG2qz

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c970ed17fe4e97ecfac64d9a2a4ed116_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:964
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:964 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2540

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    2e7707a818e5e9ecc779e5337f1bb44b

    SHA1

    3d4e8ab6e973e291f14e4d4106a7562aeb55fe7a

    SHA256

    43c57fda479e4ed51cf69c438f9cef528a820f86471dae44c23fdcba26b38495

    SHA512

    fb85aeaa48fe3e2d7d34151ab2e37e944505be5a92883e43dc8026e472dbd740be6a521dff958d42d9a71f99aa06f3f7241e860d4c57479318fcf24c3b11ab8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4efa28443825c16acd9e5ca401ca892b

    SHA1

    206fcae0c397d9977013ac8ef7e57fcbd37072fb

    SHA256

    d4ca7549fedd16e60cd15a81a1b8ecbde80b705913c0e5e688057221441aea27

    SHA512

    8d1872f997ee240dc3006582cfc0480df4910a3a10b64862b51a62a0ef35da623fb4225c80d6173f329771c9d1a0aeb36a571545041f879c205c4da873ad3cc7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d4b925ffff81ef43d8443208a3f9632

    SHA1

    7e3348da041594f5cadcaa0bf9a83ad0a30822e2

    SHA256

    61372d6dd2695b2a9754eebe92f8f6db240210ab8e843e1e10d28ac0a9813a4e

    SHA512

    0b8e9d996990e148cb983636fe1ac05e027988a6d8fe1b1e2b459031d25d2fc21c17c6141014fcfe8a428e55f7a490d4d2e709571fbfb4694cab33b904106cd7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f9eee5fc2f8204ce4f97cbf0d1d8995f

    SHA1

    f8eb3e25fa08542862158c3a60460cfb99836264

    SHA256

    88cb8ee70505525f5320942c51ad58222973e2b7e63055196bad74e79fc2df9c

    SHA512

    6a7b4ab1521124fa49383e1b94ef98e54f6ac29ed08580b74b8dfe9c16be1ede29c7d6bedb1e21eddf19f1a8077f663328edc8985604cb26ae00eac89f66548e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f02a23505c835d25d99dff90b8ce5dca

    SHA1

    f76286d0ef9362ffa884de91b1ea485b966a00bd

    SHA256

    2c63401159d78034799713115bebbd15e9bc64867f95be945c84acf1ca58407d

    SHA512

    04299022d6ba24a8a36870366854211b9e2eee97142a8f3d35b47009807b23ed560fcbfc82d0176e88d9cc744db4485b58191a2829ec3ca50c89823faba697ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ea39b90a8ecd179c8faa28e5cb1fb4e1

    SHA1

    692ed889f7e65d7f1c1b171bcdc5ae99597a6ca5

    SHA256

    a6d053bcee23be6b5cd2d710ccc3c173efd68e7560cd727ba226ab3a0bbb0bfa

    SHA512

    8c0aeee87eb57fa2c8c79213f54cd7722ddb249358f07995b4eec3a466abcd21c369ead470119ca638edc3131bbb51259144f8ce3e87e289a13733c70ac1acf2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a4ce631ffca97e6922ca6f8318b308e

    SHA1

    d52bb6a62e82c35b10d1b4b766ac6f71381749e8

    SHA256

    176bf38539e98bbef3a0e311e262360168d483df650e1430b2a5a65f2aa862bc

    SHA512

    0041455e6f8b5bdfb8d36b24f53d140515b87c4a6184fc2f1a37ee2a17ae8a4dc44ddffe2584c5f5326acd96ca97d097a860b1a298f09d4d14e643bcd1ffe7e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5becbafaf03354002ba5b969d8757cfc

    SHA1

    1cfb6863c981bdd44614635b4af429daee137199

    SHA256

    74c252c899582267a4d9f31fbefe7a0e01db94734376499aa592520a05997555

    SHA512

    a2c45f7f8c56ec39949c8b32cd07465345894d56a4114b742da25570cd208715cb0e7d3a60ba35b459ceb08ce3f4c313fd3472a35413bc4d0df07ad4a3c50bae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b7d4ba3b06de12834147f4e838ecc588

    SHA1

    d42b7509ce2473ace567c497f6c20564acb3cfbb

    SHA256

    a8b4c34fb2dae2b35bbcf232259b15aad40bd0a070b18d0e85c331218b8e6235

    SHA512

    5cd09ade22378f3a8e5d8ddd281788664055e10f29ed34f7b6dd19ba423308228fe00855b27173f69e810402d681063cc27b9dfb9773f2089e30b646e47a9683

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a4f13080e59bb198b908494b3f0ac70

    SHA1

    62788715aec0891dbd3b7e510bb0c06632a9adc6

    SHA256

    63d47c084cab883f95ac3acf5874f4812b4e072cf1741ffd54f19575feaa1b57

    SHA512

    8da638950a092ee6ad0b73505da1d1a3a6f08b70b70f0b163a654a4ac39a653f42b46c9e5dcd206a377930987311d99a579372097ad6d2d781c82fd06cefaace

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    94489fab6e8e420b7478b7308482aceb

    SHA1

    3bc93037c38bf4e40aac16b7ee8e40dbcf7a1bb0

    SHA256

    aabe1e96332f65af19a9af83a093240bb04cd371d327bf20432239be0078ffac

    SHA512

    8c03e4be15890647b9c10829284d4492450d893e7d490344c4c9d2f20186862948a13dc7657013924ab7f3a1f6b71d20904473e7a0b9f7e59347c16310f8ab20

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    35f9888f727981b32150721e0042966d

    SHA1

    d85600fbe113b4d23f75b2e08704dbfce65da76d

    SHA256

    95e593f02b4a51946f2f116be8e7b8a6692bf330e1487faee423f5cb569b2267

    SHA512

    1569909a7c64802a7f76c621431261510fe71c65b3fbf01964deec3fd6d3aff5e10ce661a8b3578dd7befb6d7e95ac4c2ac3a6a85ecdea9ba3c13888153a4d29

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    88f1798792e94642b13407b571117200

    SHA1

    a22fe87fd68737afd7c21525b8f1ea1041718b36

    SHA256

    6d758c2178e2cd596650e33af50533ef0dab58a59d4153d24115ff895c830b74

    SHA512

    231441174fe3bc8477462dcaa38df61226ed675e8d48fa1e883ac7a78723af8e8ce3e7e483591e2b01c34c4ece054e315689145eeb381e82dc03304f63f56fc3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a8a76bfc1fbcf53b12f8c6f9f42137ad

    SHA1

    f978c153ad1d95ff41b6e3ee5562135f51d0a4a4

    SHA256

    1fee588f68155e831291fdfe13777829a3cdac95613c2e49320c7ea6982d90b7

    SHA512

    aead39e47afe72365eaa35657d83c962940214d581faf442eb67c0a46ff8438f866212d09e4f9d227966e5620b626d9affa8e4251d01179d49be01ac1704fc47

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    10c50660bd19f584cc0246d9986b90d6

    SHA1

    5ac2c778a84a459c7591765f58337b647023661d

    SHA256

    f34341f53e9e2bd839b268d11ef36d573dd9e09f5322acdab34d05eff3b8cf7b

    SHA512

    fe8cfadc6c647e432c8926704450697f7bed889a02d518635dbcdc5f9c26535b3403dbf8c19005fab63905e41a7aa0a6cd65501ead71d625930174111440f675

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a412bf26262da7acdd65e18333d0d8b7

    SHA1

    ff7f523f5665d65ce4763eb0a707aa41b1a32f48

    SHA256

    e6b97a4cbfbc55272e59c719ba8db9d7c3ef18a53ca2491337f6de6d0417e407

    SHA512

    dba77a5290ede475145f2d69c4e567a70351d7ed30132cb7ae00feb48874143afc2cee62f30425e3d25433e2ab537be22cfb7fd79e9ef0e642abfd087aaaa147

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    b9896d70744274f832267a6db3b5bf70

    SHA1

    c2c7ab7036b0bc1daaeebbdf3a236e7aa0e96e1d

    SHA256

    01a42fbcf0779b7b3d2fd7b8bad045056f05f6c566ea18bd3a15f2326517df4a

    SHA512

    f232d09f1107f35eefe4abc1acf470d2a858ae2d677c91cea9bea8367234af6a1b17ee1b4c746f567fd3d401230c570aa61152a75457d4f2f2541ca7af65e0be

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE9A5.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE9A8.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit