Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

cfbaa0323d...8.html

windows7-x64

3

cfbaa0323d...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06/09/2024, 14:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cfbaa0323d53a9d8f512ee6efe48c786_JaffaCakes118.html

  • Size

    13KB

  • MD5

    cfbaa0323d53a9d8f512ee6efe48c786

  • SHA1

    b12bd3760e1bc95279f2d8c1d29a91e1795b44b8

  • SHA256

    a0b31a7f30c01eec9d0b4c90c8ee301474154ee65c1fc3ff7e6ef2e288fdca7a

  • SHA512

    c8464ceaf5e5ab599729dd11a040299221667879c1ac75b980788b3999676e8dda9204c3cedaf35b642d3988b1d9ab3a557ed53feed313ad786cb841b6ae8d10

  • SSDEEP

    192:CNMgBEOks1QTxE6av//X7/pYRst8p9jatVpJuPPFeP+s0+mDR:CiOkjHav/T/yRsu

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\cfbaa0323d53a9d8f512ee6efe48c786_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1696
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1696 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2116

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a3798be74343b00063fb1613bdb4d76a

    SHA1

    708756c8cd0db2844df50b69da695bc39f90543f

    SHA256

    ca3cd273acc1df996a76421000fe789b4795e80d6a415449a4d58d83955f1adf

    SHA512

    96c211184153a5690612f3a05654e0dc5aff94cf52a0755c010ff044f4cf41b771f78ecf32320b84139f671f5c9cf3591936b7c8d2110670cc8ac623419dc02f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a20bf4f5172edf5bef9d53936d19ee0a

    SHA1

    f85f2e765ef4532b078f8ffe04460625b6d78a24

    SHA256

    1c3445e7010c5f2c68f4107d8729b84a1fdd388b3d53f8963c035a47a9b83907

    SHA512

    3fc47e20c1902cc58dc9f1339205512d5ef852f02625c8b70e4d0f93ad526f98a2ddefc297fb11d85101f2f915b8e170cd232e4c88a03c2fba06f01fcf0719c0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0c2ee55e5b9f847e8c69f07957c64950

    SHA1

    37b9b516e55c75e5195466b9721da733275596c9

    SHA256

    572ecf670a8bdf8892598bfc6d18d1700de67b117c9e1de8edbe4d4ab6072cde

    SHA512

    a90f6f3440997e382f31c590a87c36f8854173636593bbe4c5cef03ce74b18840b4299cdbd2bd0ea19cddd2ae2b07d4a42e401984b5e3ebef888c76429148f6a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    93496d0d175f877f63e95a07f1762e03

    SHA1

    8d3bcd9c5fe8657e4b31b9e220dc095922acc0d2

    SHA256

    12c40a5669bdceb41b38061590d0bd85ed423e926bc3dd54232fd027be626b5b

    SHA512

    c2d1ca662c7cbc65cf73cc7e65df1e3d5ebd5d70f89e67e9215df0ddda307eaf767d98706560b3bd5d60e8e767da4460fa8013c5fc2f973071ffccec1b677a68

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af5b8879851e74295608825be58823b4

    SHA1

    ec79546ff2d9bb4bbbd1bf6d73545e5cecc348be

    SHA256

    e66383f172e5c9b4b25b6520b2bad32209cabf05ed8197e12940716277aa00ee

    SHA512

    17c1da21782b81d703109d95ead6f0a8b1e8c3b0e449426e5b7ba48f0d68692004084bd7bb4c883671614748636a1b2d23e54592a096c036fa964824ebe169d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    435f5acbbcca4bb8a63063c718d72ad5

    SHA1

    19d6b74850dc09b2c09bd144492a92deda6dd36b

    SHA256

    2cbd0e48745bf087f6660f37eca20dd2b358548f6d0811f650caad9c7900eef4

    SHA512

    9d02aa103a266d7ddc199ecd2bd374ae5bb48b1071367b3791217415902ad8f3689cc6d9e2a8e7a64e43de2eb5276625707e59aebd08824a01907374af0aee33

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aaad41c3aa9481ca5b1c561014eb3e52

    SHA1

    317276e4652131db2e7de306226e92f1198cc7cb

    SHA256

    6e08df96e7189238b5e2fcda0fd44d3bb0fda0b57a754f5db7eae5516080b59d

    SHA512

    6a862073fb6d60650c21920263a004f9301f6d09bd4ff427957a58b0ad9ca04c4d1f644bf1591a85eccf3afcfe21d6094b53c86b844de183a0cfe6c2f2aaa691

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    193406779a0f8c5e877f10d1ff1c4447

    SHA1

    4976a7b0e8f8964aaf49ec1da8cad77145fb61de

    SHA256

    e258738626c719191e0f35aaf81250d6b3fd928ee45bf2257da2d19e994e86b5

    SHA512

    9a777933b0cb89333125406fe31a68c38f63fb58a1d22b363e135887fc7f631707e159dd4710cc4b63e4378cae87986d696d412378eb78aa9b9a5cb6f39d1f2a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6b46a066b22e2b02902f328d021980be

    SHA1

    2cf78e207858799e04373047244fc6d4ca9d252b

    SHA256

    65640becdfb8a68ea8ea8205a917e8290160dc75f8ce7f143e30f7adf14b30ae

    SHA512

    b7b641e8eb66f77d0b334b42792b9883a66384a0fe6a190d010c4234c4320f1ac4672a2483e76970886f91453fefba04e35263cbc348d0a49fbecb10d1d8397f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cc0de21fb6ba802cb825165a4f2d4ed7

    SHA1

    5f91a0f3d476963ccfb0bc198c59fa1d26dfd235

    SHA256

    916141754224cfe8e9f9709664f77b085cd2368a6dfe5f3d81fb3f438d41136d

    SHA512

    2152c0842785e5eaf76019b060e3d785ef8438a9eae7a190b29a6cc62b668ec2b08be52bcbb49dfb1b7e28a0f069b9dfa392892d3601c394a6faf39ee6a7a534

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    186cd4d0e57711bcb5060d5d6bc42ef3

    SHA1

    fec4a67a6b79e5aa51655daec6ab1065dc68169f

    SHA256

    212501e6c86dd6345af50ab8583d154c07627e41b30a0acd2a8595f5e56ef0de

    SHA512

    4920840048c9ef8733ac1d791ad2008dfe4aef5e0d974dd0b1b78e60bd53622ca55dd16f20a43bfeceea40d5f9905ae58ec2862bbd79574ac54b5648c1db44b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    53e78d19bb0c9aea554b4b6bcc1fa706

    SHA1

    94b6dba376f3437eed1b22e6cd27ea6f20047d44

    SHA256

    832d0deb3406cc4435ea32019640e579505bd1a2193c6814a21079a0e290d012

    SHA512

    313f870f44eb4fb7f7c7a5e4f0716865f4d3c9a2db4cbc4a768e7a928d340fa944ea91c7c3ca5df3bd83ee05ac9de29865f89c3f815bd1cce2bb7999c0bf77a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3cef6225995ceb9297f8a281c01a8af7

    SHA1

    756905bec2ac8d023af8ee2a518df6de473eedf2

    SHA256

    087316f1f9cb68d6cfcddc886aa4ddbb7fd83a92334b80fbe49b6c4a25807dd0

    SHA512

    fb021e604b7062319070e66c5a7faa4788ef1213362ff6e266543a7969fd798d1ee8c9d7814f4621ccc4bf9e09c47db467b12c7a0eeb9c448e55c9d7866ce807

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2f52ce4e71ee0d18cdad63a75466357b

    SHA1

    a4065b78f8cc4d5ebc1b39baecc8b60920893edd

    SHA256

    9066defc4ca68ef1c7857dea2de5ad608421a312671e1c4504f099961cc594a7

    SHA512

    955c946889a2f6f4049c1043ed6f3cf5c69c9e47d05225f27914febff5f76d69137a392a9a09056a0d2524242f75640a6d9599061e199b7c985e98683f8fe780

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    38cbf599461bc993a19f4d97e579e250

    SHA1

    46e2656cb3332f888c89e0f37dfc5b4b8cc3569e

    SHA256

    0bd63f731e6febf5b739336c61bd993d4d9d1f17c41ea191c98eec908f688d38

    SHA512

    c93e31f22e327afb9c6253fa7226791014e89464e3669c2d8cfe873a947edd9bf9471be42939226fd9958db8ef9cc88aa39916d248884a9f3cef91b131983c6e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    98122ba6959a7f5dc7e1aeee66d12be9

    SHA1

    05b0865de785b02c8c80950c4ac57c45790e1d8b

    SHA256

    7221ecf4d7e9fa1509d9cf857385504b1cc4520c51f749d926f53341009b7bd1

    SHA512

    56f6324d1e86ec2a33fbb8df1c52592f941580c6e576f2e99871ff9d1bf912d8af668721db8e0d7c8024449abb8801b2e4bba9dfc35b0ef7a301ac26b710b8d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    49e44b36e22d4b8ecaf708ec91b7cc5d

    SHA1

    a7a7b5380eadced47c99b7e87ee4f0e684a28e62

    SHA256

    151a43d94596bc7ec5359adf568df160d06e89bcda3bd07cb9ffc88fd21e5ec5

    SHA512

    9df5943b35200eedb24845781dc4af72e35d9ff49ca827a9e71b7f4ad124c095123a68ed1c176deeac597243c85a62731a26da67d9ada3c18c028c0f3b4047f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5c7e2094ec4b5e7ac281ca502a9668ad

    SHA1

    57907aec7e573adf5659b9e06b84819287a9085d

    SHA256

    2c25cbabdf34d9cf8f03fd4a0a324b2a65150aaf0d31132f354495fac3d7de19

    SHA512

    2de75e48d225f4ac5e6470e31f19c6902c99e25e43aacd1892b6098990b5a279364226d303b40770225054beff4fdad035ee4538cbf98ee670712dd25082fad9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3ae3062714699b755756963bb4367d30

    SHA1

    ac1fe9a20566a1733508ae9fcf4c2912c39fa069

    SHA256

    6a2973da930a3e5b71542a96b102b0d7370f716cbb3041a105cd0befaf80c9e9

    SHA512

    065ef3c2c092924515feaa47c60d6e052b8819e3e1bca7065af05e20977ce8e683264244c10790d0bd7fb154ac1c9effc44c3c651aa00b7742c51e8a0644f13d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE64D.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE6FB.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit