Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

d29451b9fb...8.html

windows7-x64

3

d29451b9fb...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    07/09/2024, 18:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d29451b9fbb254b901755d043644439c_JaffaCakes118.html

  • Size

    145KB

  • MD5

    d29451b9fbb254b901755d043644439c

  • SHA1

    293ce71d52cdac31fa18b952bf44c5cd340e7bbc

  • SHA256

    45dc50bac8cf4df652b1f106a061558cf6bb644905a3882e36d5a61a28b4d74f

  • SHA512

    95c46a1b7f7122d658d2896d113ddd591855e7917de1b4b2e0bc85ce6ba3779934443c388ce01435c0996c701d0a1961222b1097d19627e3df9ac7662d1af9c6

  • SSDEEP

    1536:lN6jEiN81liVSIjJ/tyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXAZ:XSyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d29451b9fbb254b901755d043644439c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1352
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1352 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1716

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    31d37fe109d8a8cf04d32a9390ed16d0

    SHA1

    2ab3fef1bca5f14407d82e240d471dd241cd86ea

    SHA256

    acc35a5387c840e2af1ca97c5c047809c46bfa9a2eac1499e9f11c1a6196c639

    SHA512

    2030a40ba7af5679af9553ccbd846f1ed678d2c12ea44bdf4c4531458729fdfb19f391a90bad0ad91db0566c9d22bca3e4d3e38cfb7919cd8ff82590a1e0d7e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a5a0d719969a197110be0f0a766cfce4

    SHA1

    5a3502688dc44ad2312488f00903dfe8a9683250

    SHA256

    65ae30277f0aa50760e2bd2cef86c2ff23c8f7f397704aa090534405aa1cce89

    SHA512

    ba8d7365a6f23a1a323f759f0e6d48c1de34da5c26c0abf4ade551574aa97f8a0a0d2627aafd0d887223848f71414fb5d456ad45d493ba5d97e73b015f0d0c2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0a502437f508409a9269e1af175ca2fa

    SHA1

    5c2f62d03612c6413dca820eb090e18f33bf2d6f

    SHA256

    d63f54150bc82552454f33d76343e9c8c98f1c8d3066ff5f844cc724ba0e926a

    SHA512

    de0e546922bd45d84496eaab9c93e1e97607262fc76d6367ca27808057522982bdf939a710db8680e81d017f7018f8d215ec05c61044a030bdaafc3e3e7b4323

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c832645ed326690c67fce5902f950db8

    SHA1

    45abf6a8d819a2521cc1dd5d815e5928c50ec39d

    SHA256

    67dcc692c2f2b9047c9cdd13924c1c65c7d688a2a9bbb817712f3fc6b59ae478

    SHA512

    b538e1d4804f4f99f24fa4b695955111e8343ea72b180cfbc6854b0f10fee7d6e25085f4bef513fbe7d05bc8432c9c27fdbcffa410922ea6e8035ce7cd3fcaef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    751c04cac61318eab18751d82b1ad0a4

    SHA1

    9e6bc60c5641231ca5fc97a25db13d39a7b7faa0

    SHA256

    6a231ae660cf53a87bb32840ea6b82587afa7993729747d9f2a4e1e36f58ad4c

    SHA512

    0a0fc73abf0c7d3ad42c4d45c7cc7b1fde463b7366c83e1f7e00630e4c16997e53458fb70a2eba2b9bdcb6a357f7b273dd53fd65399a0faf727bea7ffd7c84b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d59fb1ace989ba1367e542467a838f55

    SHA1

    b2d0e9e93ab4c894a776734407d22198445a0e27

    SHA256

    339e63e2e2f14a8124c9c58dc083e3a9b0622071286923d4f514d6b9048baf50

    SHA512

    8b4570d519cf1427efbfe9263546e388746e9138904015f6a2e03855e6ec276bef210600682372e3cdd570fb42d34c14a02923139ab552badefcbf6602271105

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b1879729bc9074495ee4013ee50e3790

    SHA1

    17fcc5e37246d9a3f2810a10ccc84537f407da35

    SHA256

    7ac0e2c3452bc7f9217df6cf1aec46a5f40a6dee08c3a4f992ce6068b9540c65

    SHA512

    e688d630107b972a9ce095ea867c0e3776339e63d21a714ac01dea923c5cd5493fa3717d3778f78276f3aaf8b9f475ca1028e67c2f240eefce2402c50e3b0cbd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c93b1b95adb8efc79ebb5c5c1f30460f

    SHA1

    f853157173e4319c0d7c8657f830a975503128e3

    SHA256

    7183c8bef32836f52de1db28bde207cba2666a7d5e4a9839b4a4fad38980a3f1

    SHA512

    38e671454eb9720880d004eeea102eab6a009186d82e234f82d7fa3a00d486fc388abbd62add2bdc684d67d45171d7069ff19e9d2319936e501b13a5d55c0732

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f048e5a4df02279d11394d48e67bbadb

    SHA1

    d798b99379a308a64c85162ef59a980f6b4578f3

    SHA256

    07a77b668dff23f5f9db67a49126625a7bb7ea53199b7935c4d352446a844fce

    SHA512

    77024afc03054b1cd198cf7208c1d1cdf2306581f78cf89c19954ed4f717d56992bfba2809582ed6da609f4bc0e4f4a0ceda02438eca42b9e4631086825e3571

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7363c1fa483a95e292eb56053594d7cf

    SHA1

    481e28eb72ea3475d1acaa5147335112419d1e07

    SHA256

    cc7d1437668f14dea3941ba527e62a094c96c0370cdf43f1f10edf7830acac9f

    SHA512

    62e0b144db16ff6aae1f1cbe1b29f2448fd2bbef4ad2eb44957413e4e8131eeaedc5f0e964677dfd9bd4ac02dfa073de09f614068f907806f8a62e927d286daf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    350ced04e2360c5f9bb3c49604f5a210

    SHA1

    32e4d309bad78dc47aad1202c76bf475bd8675da

    SHA256

    425fdaf997c2cb8ba826cc876f76c4f0741c9ea43700844592aa7be6ec23d0d5

    SHA512

    324ea98ec64aba625a330c35b8cca4ab0c58dff285c7d446d39633db10b56f294afcab8ae5e5a902f4f50dcfd6a108339af3ff09b4f880da9a4037bcae19dcd8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5ea28a903e9b2c922033b586ed6f589c

    SHA1

    afd690114cc5de2ab5e22efc30c305d1bfaf3c8d

    SHA256

    b171d5affdf8865af75c620325e598137f92b5aca77bc3b9a175fdd109de8af7

    SHA512

    08f246629eed590a7411a0a428947f880ddbb38060c4e3b6a57247a714f1360d1e71dbe220d1f19f4814acc75d9822e5bb25ba63fc02b2cfeaebd7b35417a013

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    344677a99cae204517eb0164b9c149f7

    SHA1

    89b9cfdbb3c7538a889de8c5039e9e6f37340c48

    SHA256

    c86229f0d0167dc023551c6d0263315ed6235aaa73c1535757c347923c9d4441

    SHA512

    c935d314d43c4ee7bf01c86918c3e9b081c33d61c712b4533ae96de39749a607cb17762c7a15015573f5d53857029bb1f54904117005e0d4e43f8f13ea279cc8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a1e7762e68a2293b1362972913d54bdc

    SHA1

    85ff8fc4eec5340e28dbe65dd9a1db9d7cc9dc94

    SHA256

    fe8d90dfe5ce037856f4d4ab8097211a87d8cba312352ae5b947b41b778f0e4e

    SHA512

    57ea9101724188f6ed438c0d13f57896ee4b3ae6515905dcac904e04c8291c7d267127b7c5f1914c02008de710805f28f8a00cfc79e0c9946b79858539497f61

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    df53514d706bd2d7c518871b7d966c5c

    SHA1

    662cb1a1493dc12ccd8f0e6ddccbfe55fa38ae66

    SHA256

    323660caa75d2e1940f52a5881432311f816055cdf7a828c279a012f205e3644

    SHA512

    1693a4241aabacbdb7bd1ad5cf6982281166a59d8766df2740076c6b78d27af71512969e4f5a9976e3efb43b68c4afe80aa42fe1d8477f3925890455b0adfc3e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    029ca6f36bcad27074e3a1c4e1e82c21

    SHA1

    1b40fe80ff0e5efb3d2550db08c6a964cc19fea9

    SHA256

    71c10844ea32facf9e209d75266906d6b9453c1e5296cdf4934c4fd609da5915

    SHA512

    5333e2ab9e2643505770d28f830f57bae5ede25d3532e89ed4e215e0cbbf52bb014e0ffce7fd3ae88f9f468503d35f65512cd39d447f3a641b95c00a60dc0ff2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    12ebb912e3f887466d06289cb3efbdb4

    SHA1

    a8fe1ce535d536b5df05567439008faf015e2936

    SHA256

    43268ed33412263fc60d32153b204a2dc6ab4d6cb2cf07b820d2fb8dd7b86e50

    SHA512

    ae6da425e79c9a155d78fdc6766cd58047b00ab7b009501cf46212fc166f8346a1643e25f880332569e398ed09fcc881bdb41334c764b329d05fe5efe86b7dcd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a36c9d393e0968d38649547ad8bcf968

    SHA1

    80923d36e9ebdeca7a5681f0e22b7349684173a6

    SHA256

    52d43978c0c23aa793dd217249862b233ff2e066448b6a6adebd94a156bc2f8d

    SHA512

    c5444f93c7954cc83dc4a09bb60129c5f03b71c9174a1a47023a94129a644bc58bca719e926e34f6ba64d839832e998c75c41c48dcdb3cead1f63670041c498e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    38a2d8b9d0297617d162b480569d5803

    SHA1

    2b3b074d154724cb8999fbe59ed4e5efa3abc849

    SHA256

    3708952de32caa6fa1acb69d5ddebf11b8c4490b8d63bc50da2446e939be8c3d

    SHA512

    9544f62e74b3f74fd7a71345da42494d9165f8a0dbf749c8ee4be43ad15d9167f3a0a4921f52ed14a9e1752ede0df2b7788081c2b9ccd32fb4f796267d46f501

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eaff2cce6b6e88fdcf9ee59ff0653794

    SHA1

    6797e2c8a1093b35a0fb7399fd923ee87448f435

    SHA256

    ab79fda6c49d205cfd1ccf19d6af7caaeaeeb5fbd8f0e9d78fcc17e5faddb853

    SHA512

    f749c0a049702526e8a784ebfadb8ee1890fc8a552cd8df0f13e6bffe4e3d7745157767546439f831bb7157f3a741f920c24bfbc26f1b57ca4c3c5ca3c6864bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8c80acee76c9fcbf36c3dab1f7939584

    SHA1

    bb95e08572d4534f2379e2f296efd02d58d81d69

    SHA256

    6747c040a55b3d0b0b1444001c1b9f0a97dba3ae3655f1cd741d4bbd2b66facc

    SHA512

    737460f2c1f8cde4f71f598942545df4cfc0fb2db49020bd48af3a3fa2339c79c698d0102d2627ac1c73886782df7be7fa7967b6215f731df03371a56be65892

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9FE9.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA06A.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit