Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

d2e0be3dc3...8.html

windows7-x64

3

d2e0be3dc3...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    154s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    07/09/2024, 21:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d2e0be3dc3da84c78be4d31da503c795_JaffaCakes118.html

  • Size

    90KB

  • MD5

    d2e0be3dc3da84c78be4d31da503c795

  • SHA1

    b0e3b29921d9d1259bd0107cae0654cb40707fc9

  • SHA256

    689ff6dd66fa038d19edf9d1cf50a5a850be768cfc34d20082ba6c7292384e1a

  • SHA512

    b0b2473b6b0f2a2362ec7d545a0b0e1d963b269ba0e5bb8fdfc7c8aea8c040a36e1147261a33aa5f63f32a5f587b35f6b6e35b7d22d0c87ac95d391dbdb62db8

  • SSDEEP

    1536:l/xwEWRuV3oQyr6cBXDE2r6E6sUZute6lUIWxAQVqpREPRTxXwJQej9pi8FQ+/KG:EbQ8Jt4iM2JjiYE6a5Qv

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d2e0be3dc3da84c78be4d31da503c795_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2248
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2248 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3020

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa7bb96124c9e935096478c49833077b

    SHA1

    1ddba07c7a1ee55c4b090c7e6cd317ceb1015ea3

    SHA256

    c55ba3857903eae8652f5f289c54151017b551367c2efad946f8ba031e179db7

    SHA512

    cac826e5a90b6d78051820bfafd0e6dc7c685d4ae9b24fe96ffe1b5e11c0739be2eed389de11545ca51a01fceb8a63e0ed84873657117dfae0cc90021b9302cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fb665dd9545459a0c2f598675b551163

    SHA1

    8b51daf912850203a3d045c91be551a63e77f081

    SHA256

    b7f560a407b5f7461c1febcbbf4cb5a1ebf3a1e332abc1e8b90a61314c9219d7

    SHA512

    0296c3f9113d7ce582e34af9557f2836016ba72814fb74cfeb6930b6d08a1e1e987c15f7502f5af255472506e6b2522aa69c041b525475a9d8637903033490ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    da31dcbb774e45ee9252a51720427ca8

    SHA1

    a588e8ff35bf05a7e53d1dbd7de8ea9856b67be9

    SHA256

    e4843fe80961c0953baed9253303f92e36b50f6631142a5c63234b3e8ebd3752

    SHA512

    860962e7440d3d9573a332a2827dc9e469b6bd046d97fa955a9044765d1f50ef64184ee280d94abb27f2adddff5e10e5b8a8a1fb63bc6ff622a5786d80212405

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a99f97ee42dd040340b5c0999671030

    SHA1

    7aaf8e4ad9a582cf16f6d8b10473a23710e46a98

    SHA256

    d43a78cdf6d623b38572e0a1c7a38472f86d1830adc34458e2c2ce2e1e1ada0e

    SHA512

    da7eb31c967805991b65aa721583e3b653ced5cebc2bc60bedfb75b6aac89ff765e94508f3a184b32fa1aa332e336d861cb92089140d723c2e976999f14d5062

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    785c517a348a6fa7cadd281b5ea9e561

    SHA1

    22545a6b0cac5c690d08e5605748a2a27008bdd5

    SHA256

    ed7fa6b2638f1e41afbb1c21a510d59b8e1f3fc0bc42596cdff32fa9f0321024

    SHA512

    b161d6f597f944bf503239d48e4b3a4999e9efbe9c79cf338e9bb325fa46d27bcf482e8da131097c6615f16059f3a15f101c56bd682bf6a74ee8a0b4ba621128

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ba098894a310308f2de216f742f91939

    SHA1

    2e0a21d28e6ea3eabc22f2bfe1f8da45664e2c8a

    SHA256

    e08ce4e7f58f300bd6f930120292b6aed46dfcbecd95f7f7d15f9b66a65c4c75

    SHA512

    3c067ff667f6813abce25e77455f96683985a08c4e9ea3a4619d780bf3ccec902191717c017a0bd0ead19a06d6e2e8e4ae6cd8f3bdc2f0f03875f0bd0eacf5d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    883c91ef33e450c3d82e3ca4b139ed58

    SHA1

    96055d5dbf9b84d26ecf81ff09a9bd0559283bb6

    SHA256

    bc5b27a551078fb12fc7aacd53af8af178fadc15504fedf76708274798c759f2

    SHA512

    8d55e34f699551c20a8ee8e94e7131a840161e00fab0fa1eb98542c797d3515a18947befb28349cfeeeab5f3bb63e76dc605a0df4c9a3f64f9342d75cd173fbf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b81ce8c4377f461567ee142fcd5bf443

    SHA1

    a75c38f8ff57804d51613a6f56f86ee6b938bff4

    SHA256

    82c07e5875c8d899d3f6ab76ff0dc62e09be96b183a300c3cb46d947f8139706

    SHA512

    d5ab565d149a18a45117d63a3c1ad798a8144997efc6456ea1b76e4c4672513d16422c1d2594b62d255b53f98dbde5a221cee843537deb20baedf8d0cb324fc0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f2d320b842d3ff6e20a0f8bb2378e5d0

    SHA1

    f36331b7005538246dcca84ac671c4e82b142a57

    SHA256

    4eb751262dfecb1a756447233010440816a1bc4ab76ecc5ee50c9d71a34a6050

    SHA512

    182578e0aee050a47e2a366a53d76aa8390c23991232fe5e7d24afcb244b32ca6765ebf23ec4bc5a7d14300b836c4776fa2caf2eeef085cf6e467b940e98ef38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2e69ff203044190df84f4357a61c0433

    SHA1

    a71b7e7f03c4438b4861d4f5295037547c6c0cbd

    SHA256

    7e57ecbe87fb5db65ccae85b7fae7ba34444bd548b9af253a2f869103c64809b

    SHA512

    f83fc94dc93f9a1c6a8594b6d16f04318a1161c9f3ce5a67309f1046d48127a7d453d9065cbee9ed1f19aea609025322d67db06031c2337e11be2c9d2f0639dc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    67da3678a22af239cae6085027e290dc

    SHA1

    9bfbe7cfbc935f59071046466c18e133e241e555

    SHA256

    db37988be3ba7daad763286fccd3ac4c6716c29c25ed1a1a206f96df1316266a

    SHA512

    119b755f4618efa6257683facc08cfe5a7111e642aa210eaebb574dcfd83fd251c0bf03fc38f0cbda2a705a67da9ac27396264d7b39a8adcd3105de8f35a4e66

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8be5d00cd06620966c03afa883289dfb

    SHA1

    1bb52abd443d6aa92a52e4b0e75ee0d252e5bfd4

    SHA256

    f90e4e11678c9445fe964375c9f777609282ad002e064be896190922a93d5e08

    SHA512

    d5e56798013413223343c6751fa2a2dbea3b66ad0611d1533e8952dc0a127a1f29e0d65ac7a0d0379f213ef6a696e37ff6413358095baffc81bd3470551a06a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    139be95b3b4580b3d5155356f95765bd

    SHA1

    60e3ec2b86be7b26ed8074c643011cc2bebd58bc

    SHA256

    dd4e2dca5a81e2648ea224e9706eb9bb14324f0f0612218171d596ad881687b5

    SHA512

    316dc32bdaf0d24beda3457ba6420b8d19b75f910c857100b6cb6eed950ad46273560a0b40b6e23d1597a325d8ed20712b339998961e2798801d7aadc87972f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    96ac5a228b2895d47d0e3fa7a76a9bb7

    SHA1

    400766a7d7363b4ae22d3bef2fea417b30c5ea7b

    SHA256

    1b17e71bb2e50954976666a50a13cf000caca6dee1f4e090baba6728ff0edef6

    SHA512

    7756a25393430a5de0d7dc3b97f7f4e8d4e70385b211cd11fe6adc4d0ac109ae6268994e271a376d43ff09a23dad41f04be81e405f994466881d1a217e654d2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    69f8e2e1cf28237b4b51b50f8266369c

    SHA1

    7c4f910eddf493a9933afe3bac714b1190eaf983

    SHA256

    4a97f473592e82dbad7baad4737e9e7a0bc84385abc7018ba3dda8bca7f8adf4

    SHA512

    c48260777fccbb8ce212821dfad6c328d5835352ab34b94e31c36091f9866567488448e66dafdd325832c01224f7475e2955886fd63a8f7fa96a2d24f0a8d351

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7121abe98a094b44f9b59230132ded4a

    SHA1

    788bcb978fa013178a985b872e424edf00c3883c

    SHA256

    cee2c95c961e1f6318b95fe33749a8dfd19618b68a0b8d92974b090d67a94d78

    SHA512

    bba22b7f43e927ae2b70e55925a91398cafd56ba3f85f0c26d0ee3169ee43dad3a1ea9d65f6c6fbf9475daf954091b1b4f362a52424c98cab798af3419976d10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    efeac62427dbc9c0ce94b5bb0559ab1f

    SHA1

    92b8e5c0baea32bb774970a3b7b3988f2c8517dd

    SHA256

    736d4541f935a617252f81c19d09bcd27c7c3a67263c3315c6c305629999e2be

    SHA512

    d77aaa6855ec8a4e11515ed92d8604f44c46c493275702757ac6727369914c900c86a678f9786261b236f1ffa9a27d3f20c6646c8d79a27bfda6bfc3b215d858

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\lutsxto\imagestore.dat
    Filesize

    5KB

    MD5

    c0ece03631a3711e001e3a7739837db4

    SHA1

    afd63bb1fe1ee4bc393188f736e468972eb8a135

    SHA256

    c79767478897621f83ceeccae83cab082b4c8c1c142e69ccce6ebbdaf1f1d2bc

    SHA512

    fd4ea239258d608dc3863b770a20a686ad11487a5c8f8fb4ef2f0345f942358abd9a844446a2e3d4f7aa826d112985b2aa0883d48fd92aec019f66127063315c

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\56KJ964X\favicon[1].ico
    Filesize

    5KB

    MD5

    f3418a443e7d841097c714d69ec4bcb8

    SHA1

    49263695f6b0cdd72f45cf1b775e660fdc36c606

    SHA256

    6da5620880159634213e197fafca1dde0272153be3e4590818533fab8d040770

    SHA512

    82d017c4b7ec8e0c46e8b75da0ca6a52fd8bce7fcf4e556cbdf16b49fc81be9953fe7e25a05f63ecd41c7272e8bb0a9fd9aedf0ac06cb6032330b096b3702563

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8H7UVK5L\recaptcha__en[1].js
    Filesize

    537KB

    MD5

    c7be68088b0a823f1a4c1f77c702d1b4

    SHA1

    05d42d754afd21681c0e815799b88fbe1fbabf4e

    SHA256

    4943e91f7f53318d481ca07297395abbc52541c2be55d7276ecda152cd7ad9c3

    SHA512

    cb76505845e7fc0988ade0598e6ea80636713e20209e1260ee4413423b45235f57cb0a33fca7baf223e829835cb76a52244c3197e4c0c166dad9b946b9285222

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YTZJPBOG\styles__ltr[1].css
    Filesize

    55KB

    MD5

    4adccf70587477c74e2fcd636e4ec895

    SHA1

    af63034901c98e2d93faa7737f9c8f52e302d88b

    SHA256

    0e04cd9eec042868e190cbdabf2f8f0c7172dcc54ab87eb616eca14258307b4d

    SHA512

    d3f071c0a0aa7f2d3b8e584c67d4a1adf1a9a99595cffc204bf43b99f5b19c4b98cec8b31e65a46c01509fc7af8787bd7839299a683d028e388fdc4ded678cb3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6146.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6204.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit