Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

cef134c502...8.html

windows7-x64

3

cef134c502...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    135s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06/09/2024, 06:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cef134c50264e260533bbf7b90e6603d_JaffaCakes118.html

  • Size

    118KB

  • MD5

    cef134c50264e260533bbf7b90e6603d

  • SHA1

    c248c87df3126ba5ead941fd0e8f1dbd6208bf7d

  • SHA256

    385857c0dadfa73c02c24abd9c4e4d49c5ad2ae410126f4b35b4e618bdce2d8b

  • SHA512

    7eb7005c2a2f0d34ac3248ccb51276aa3bdcbd5a61ace1badc62eb1b8b92cd5d40f6e96ff7ac132a1ce757d0b7298e80c19967a2aeca89910cd47ef8afb7f523

  • SSDEEP

    1536:YwinyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGCu:ZIyfkMY+BES09JXAnyrZalI+Yg

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\cef134c50264e260533bbf7b90e6603d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2668
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2668 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2824

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bb790bb19620ff732d4c0834365ee55f

    SHA1

    5c1551495022027dbaae726f16f9208c039efa72

    SHA256

    57bf9b78a1133dbce151bc20742b2748bc44797caff7f5bb45d1293541ccf89c

    SHA512

    b894b4a72dc91bb8e43e5854613008771f8c4139f931d0c60c007c50ba254dbe76957dab3b06ec5ef47d3194f7bdff3a0e00a9fd0624c01bf37f12dc80414733

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c57f1052dfff8fc650ed35f4ddc07e8f

    SHA1

    44a75922e737fe077286c6c7a9dd04bc19f5f83d

    SHA256

    f962a2fcb6e2cd5fdbca8a5c8b650c7d24d6cdd7e10463ff9126e149beca5512

    SHA512

    4f0580dc32bcdc7f353ab7eb091684b48aa949ec60f28e0bae0097931764a8a5d2e9d88024e8cf36c5d6576b88604e0960231d167101fefff2dc6b2f90c76b45

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d335e965bf3597ba29a621818938a8da

    SHA1

    3456127728e21f2f72ac922129f43453a422c2d7

    SHA256

    d306126102a0022323226339e248ed928aafb4f0c5c0e894dc9614850be14cb7

    SHA512

    1d99146c3d5b7c54f18ae1d182203a98aff5bd462a9622c09d716e394f488563c57b0eb5955d03cb8b3453ac4a834f9fe9edd0c9d412145ef7a4ba647018db18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    69022b07dce5a211ce3ab188b41dab3c

    SHA1

    92c8b05c25a2f3db20b2a18b3434567ea02db243

    SHA256

    d04763065f88543e238deaa35ff8561d0892a5f12d29933b6fea7270845a14a9

    SHA512

    c259bce65865f00a34abcca31ac908491ffc815d8b611ac8f5913623e88dd9b031f48b91fa6d271b16fb3cb815616aa70685b079a2746a6203e75a8a9b52fc62

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    78be072af77d62cbb4eea8b9ecdd0188

    SHA1

    7f918bc732bcec59b84cb1304dc03707083b0589

    SHA256

    173d2d776f8b34bf92f001192c72895ff6cb70ccfe5592891b47dd479a892067

    SHA512

    ab38c8089bbb4c69c8377c17b8feb05195b8f8da651885669e0e2b0b0e1ce5be3fbfa292982db6d245a705b48052aeb57335eb0c9c0b8ba2f2e7cb81c4ca0106

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f2e456fd0636ab9b1ed55c2c9b858664

    SHA1

    9e7d8ac7d112b0b987925ab8265385986059e947

    SHA256

    f8b6030610758e016af80b2095068df1d9d80ec891b56512ba78774526901fcf

    SHA512

    32539ae04d46394bb12b1b715c288968ed81e6d9beacb58d47c95f460d629dd0a851afc117b8f8369b0a886adc76ceb82746ef12898b173a483d3a16440a6264

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bd134406e765632d257af27a67560028

    SHA1

    ec4271e5e6d781f0a8c8870216750c12740ad0fa

    SHA256

    156078f60d9d85cf21b92973e65442b24e9f8c7b68cef1cf8019789a670a4ee3

    SHA512

    20b0f4afb9ee65aebae15fc29231e27fb4c4098e0f36f1cb96f2aaa8050560ebbc0b2e2ee528ebb0c2b23c007557fe22a4ef21bfb408ff412656c04ad12622e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    705720ac8e83d693470c22c1cdcdfa7d

    SHA1

    3a1ae9f5c4f617d59f1be36baacfdfd8d6fd05f0

    SHA256

    78752915336db9c89ff07af0c3fa1cb97a54b94a0c6f4a850f516c2fd2b181f9

    SHA512

    b8106377a5530eb79b21a873222e6be7f5cca3ad0a1d54cd92ad1bac553acf8e006ca8fdc8b30002d31d04a60e8c39ce4363f1f0d378600a1d047ff99293a404

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a83f8d99dbff89547a1d72d25f671da0

    SHA1

    dda4423748461a6efc0eaf65ad4c306a8d69f29d

    SHA256

    22324f4ceabc90bab7c8bd9c6438f0e8e97c4fc347a5ed425bd5ed30be1e2090

    SHA512

    a927a337a9b5eecd07ab08a9121f75ed0554bdbfe97816d2f928f4fe73225273457ddd0c322d3e16355928162a8f0a7d86844c54de40e271bf581a09e419dfac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e1b03a4057bee399d8e323928c9c8531

    SHA1

    f2707870ef316ce10c51543713923fa24ad89f98

    SHA256

    ca2fcfac8bfb3dcb9dc9457c4df3ed691112a76e5f26701b36d7df14e86728b5

    SHA512

    356c3892e15e68692998470b468d313f485a3564c6110d41e2a53e9914aca77601412c71ea650b5c13d438486cf553b19a2f9671c28336e679ee2c1c1f83f0c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    939d83df6ef0ae31990c7e58c33a29e7

    SHA1

    03d74afe6f355475e9a9dda7cac8e63a9c4cbe22

    SHA256

    f304d62e721e642245ae2438f63664b068d5efad8fb5c9c2ad303f6712ff1b4c

    SHA512

    8dc29424d83b0ad0d8f61916fb360d8f2f5450271fa5715217d78a7b861f6e8e0742c78926a7df1936acfd1362339264ba63951785b7d54c84e7f5241cef18fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d1c0f4758b2807fc893f40e93e2b377

    SHA1

    798862180cc28f1b663da539ce21f0a2b6dc2498

    SHA256

    44f5e44f7b20e29ebb320acf337251d38f95a0c2e187a251a3b5461ce0f9c1eb

    SHA512

    ec7125262207f8a80f66dabbfa09aeaf1f0209a281971147db18a18fe80fa36430d19adbd567393b349975d4440024fd64e857f8b15e8883febe1035ced7be09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4cf13ae85021cbbe21d9060179ef6b94

    SHA1

    402d1dc8676a03d6125d031406227fb0bfb9e869

    SHA256

    9d56f02d3072c13421e675ec2f752fef8ba612ee93fb7b27b5486b4f106e4816

    SHA512

    9717c0e508cde1f3667f79ed5d68d2a6da1f07e180a55c36a22cfc2b46ddeb3053cfa25b637595ae30bf8ce62c7f388766f1b02b78ce8435d463a9512116a7de

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    11cff78609571df9bdca72a72719eb2c

    SHA1

    17210f944d9820e68010dbe9aa8c7414f806fe68

    SHA256

    20cdb2812d7ba224fed219e2ea43885cafe770c4cffd0a6d43b8bce9b2bb4ce8

    SHA512

    60012de08d9012c6395856a7e3da30c2e7abb9dfe72f060487afc8cc48628e55bc787269f10aa0b99e439d71a757194e0a46a643bdd71e078944ecefdb6a43bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d34de6fc57ee640d13761367a5dc0a34

    SHA1

    0cc3f72b8e9173b7dff22b8dcee969b95e01877f

    SHA256

    5a474693d3346918388b9f35e66fed81952cfe7d4fa9f635ce526d53a6c2e95d

    SHA512

    41eafc03d2a52689e02bed281632a5c72fccbf3c6d7a151765ae3b7d3daa996d098e39c1053f8e7f5b90b1747ea28c991cec4342e24dc8455f8b0a56a62a1387

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9be70416deedd9cb2adb4037ff0ee10a

    SHA1

    954926a41d4d05228e0c261034c54e7cc0dbd9fc

    SHA256

    fff0c7a0e7dd893b43a7dbcea1c7eacaa0ee75f785675da2ffa43ebdcfc9d4c3

    SHA512

    786af240781b8309d02344c068511ef0f9a5b90fdf0bbd96d95183d30b15bcf3424e4fc77dcc39fc78e1063cfc76b5c0f719d9911f078db2c1861501cd607070

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    659f9d6d0c103faacd3e4bdbdcd89b1e

    SHA1

    cca04f446ca148bee4dc9131a274cfad6635bd7a

    SHA256

    6cab6a35e2ddac7d509f8b1612a40ca1be6ffd62c26d78a793d233b70b9cc8ea

    SHA512

    f0b92fe55ba97e088ae680e46a9dd55d534274f294b7f0e10cd5b568f4f982f88b2e46f14b6e141c03e9a3887e856018b89a9eff434896de8757fb0a59ea9a22

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE9B5.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarEA16.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit