Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

d284b2c076...8.html

windows7-x64

3

d284b2c076...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    07/09/2024, 17:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d284b2c0760a037987ae2e9beb302019_JaffaCakes118.html

  • Size

    14KB

  • MD5

    d284b2c0760a037987ae2e9beb302019

  • SHA1

    504d570b8024dc0b84fb771e7b3b317fc5821c58

  • SHA256

    d31629d1ff676ee6cdd491de0b4285d6282545f7390d3d06934da0ef1e02dcce

  • SHA512

    31cd0391a6d1bdf62d27ee0492e774aedbb0dc6c34063ad93cf560e8953b847afa2f7d0f98305fca65ce5e4ea17a924202ecb54d13c4edbd51a43e6378be1964

  • SSDEEP

    384:04lI5NHSMmmm7mmmdoLzWH/mmmT29mmmc+mmmP:0LN/mmm7mmmdow/mmmKmmmc+mmmP

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d284b2c0760a037987ae2e9beb302019_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2920
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2920 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2832

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    65931bb19c215efc965c84cdfec43b88

    SHA1

    6cc457c66afbcdb69ead694305ab63e3eff5497c

    SHA256

    1d854f40c7218c234ffe5f1f1f42391e8f4f5c55e96c864a7811d34424b45dcd

    SHA512

    e4b3e584c91eb332af5361f5c2eb19e71213e3ab0776f8f372ff026aa766844f222350930ab661d6dd4d5568d0971910b148679f2dc7874a330b09afd2303529

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5068f0ca7319cf2a83325bf6d99ffd7c

    SHA1

    a2215fcf72b8a2b675047df2d578724e6bc12d8f

    SHA256

    e876d5f73d9a6800c61690760c1c765cdf82801ecd77f277e1126afa55e18bdb

    SHA512

    005f834fdab5ca96aef1d97518449459695f7b8a16f0fe176e147e5fa6e055c14d20d2a9d6e54c6e0235bbd627be8a9d958ad537c13c7e8f16eaeeef9e335f0b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a1bd280ec9e41803202d5003e577f5f

    SHA1

    8d89d8e0e877545ff474625903c2d135c724ec27

    SHA256

    9fc81bbd2c7b53a2cf3a2c94dc2190b625ddeeefaac1c3811cbd9f45307cc2b5

    SHA512

    693d35dc9502d09534a1d0074cb8d2a3777b067573060463e47cf7803dda7fd833080ad3b574924421088b1fa1004aa74a214c11fecf91ed3bc8144f717623e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e2015536e7c4a107fac25c89449dfaf3

    SHA1

    e94b27d6f13eb7ccf5ad8e82f9bbe00d92fe83c0

    SHA256

    f443e29e22b05941d05e6f08060e82c6c7d0d93e5179470685e3803db58b4f64

    SHA512

    d528c8481d5405a5686d9286e8a38fa5f3c008653b41ecd406ded482ff41c9ce4d150af27d782ffbad113c041af34a55c4660c44a7280327cd3fe01103ff5f77

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e65ff96bd8572abc7b79ebb1a33df18a

    SHA1

    0a7f5aaa2c09778894e50a7bb5cf3058b9fec57b

    SHA256

    4999c6cc3d2870707e804d0764c489ded7dc04f12b4da2eaedd14be713f5e9ac

    SHA512

    66d42464826fa535651871ac61d46a318e0d6bb8a9a74d6e23bbe81f18a71e823e3025515718ae862a2667c01484aadbe0c9faa70bd6d33dee1d6d15b62c6dc3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aa9ca4fd2e2f8fc5f8a61e4fefbf1811

    SHA1

    aaf564e3f306439a117d62c5adf61cb5c61bfef7

    SHA256

    530f6f1da23a79fed05752ddec76ab573e7d3cdcb08281d6d899c16780244920

    SHA512

    1d24fcd7fd0e8e965eef3842e441e17368393141a539c0347b5af0658b5f6a38f974f227406e793522a36b264b9a8ff8a3a8071b4932148a4ab3090a5165e3e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8a7828280d1355856f609b7ef92f2c31

    SHA1

    cdc6d24d110040e62cef9c1704c56f046031f8b9

    SHA256

    4189e6b148e8dbeef7d5184180f51c15d210092dab35f161c4dde492f848c642

    SHA512

    b0a574c524e11dbf6db14aba0a83267d3edf77614babbeeaf004537027a016ec76ab0f4b69a7d04cf0e2685b478a133f900d5e1e901df7eb34ddd03f6578e264

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b2aff1763f3855dcf0709797e5db9439

    SHA1

    b8cb417ceb44b5578a7b74327825750d9fa5b512

    SHA256

    03d5b876af8316aa6bbd75058009ca03f9cdc5094a8b977e2ccb024f12515947

    SHA512

    b996b934619f72410c4bb911717a46cdde84d2d817235a903d88ad26c4c03b5e54478037af336ee93800d9b616373517ea84d3573745b2c71122dc68f045bf37

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    30e01a47c891b8013eb2ed688eceab1d

    SHA1

    634176b7cd1d4b428d203e9dd3f58cf0bc8c460a

    SHA256

    8567e504e494e1960a60daba74f755471dfd22d3cecf83764f4cc3e58e80be4d

    SHA512

    1c146d801ba5f48ba2fb46761cf5f4cca7e731bbad04e62c7d5b45d86fa8128397609daf671820893a15f9c40037898947d0e0131d57087cb5a70ce4e39888c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d230dd7097e1508f2ae9e9c155ad7fbf

    SHA1

    909c822e19ec8413c6ce427c1dc6887df18cad66

    SHA256

    b224b9bf77e3b526a36171825b1bed791cd5235542dd9d884d5572cdb0ae1bfb

    SHA512

    ec5069571a8bd6df6bad92aa1c05854fb5b7eb0dcde12d2c6ba31a1d3a5ff61d43cd0a60fffd5906b9af1ccb5c8dc4a8bb10a42fba45b0721efbd3032f008146

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bb138b41c0b9320bef382d39f01b9ec0

    SHA1

    91a90312aa82c001a7a151c4db1dbbd08c528d92

    SHA256

    f9827851759f1a0a80eb3624eea10e15c1ed74fc3c72bc6b0489a370773d7f50

    SHA512

    c194580580d87249cbc89b266611830d0e4fcee0f80e842812dd2e3ef5f4f0d51754a51f4527417d55904e5552e5e4c4d6c2a1da22a963895556eda209e64f57

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d5f987afd383c1c84cb944d0a0958eec

    SHA1

    65fb781dab075b7e09c53c4c11fd5c241099f060

    SHA256

    f0b2521f30052be7fe0e9081621f9a5a431ca7c57c2ce3608f6a8bf070b567d6

    SHA512

    c4f8dd0972932ceaa21b82c3fcc570f3d531520d2c574ff7e7d2d58eb81f1a01dfa7b85d98b61a9e69c6ee6fde8e2a6fb90115b8cb4e330dafc8efc343f147ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c52cf876e66365976bedfa6e063da021

    SHA1

    cf4e0526c5582d90c62a0de47f251e75d5fb6efc

    SHA256

    2c06cd3e9d334770908a95fa251390491737f6239300836d06ab05aa58ad716f

    SHA512

    d872ae2a521e0bf320432f52db2a99760794a95be68b9c53ddd46af673c265eaa94ef83145db112d11bdfd63823cff583f2cfc470156e4f60b73608d64175835

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    34daf9830fd05140c5e9f9d79bb1455f

    SHA1

    5ca5def1ae53d04fc81f7ff963de14798b9477ab

    SHA256

    c00bf54308f8a48db5c94b6d6d01782be1480249052a18fbc23d45217578386f

    SHA512

    40584ce41950deabf3781814ae16467f014168fe365e39112748ca4e59a1ced7b42eae107263b279f277e23dd121a3efdedbb7bfb38878df17558601145f33ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    150ebb88e631aa8aa98d0d9f74be9815

    SHA1

    f3444ef10ff1a2499cd6799ea3f5f398f672920f

    SHA256

    075c09554d24aa8d2b783e2e30e2cf86b5caf3a275bac860f8b988b2cc8e2899

    SHA512

    df058b34961e70addf64856fe1cb14802965a3c5adf61bd13925bccacbc872d28ae6dea7d027948f23d1e696bce7a6b129b8a2bae311ce47e59f65a65f688960

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    549977f93c94da6a92e14165fe48f08a

    SHA1

    fe33783d757ba39f39db6dcfb3c33f1c69c8562a

    SHA256

    9cd7755fc88932a00fa169e830aa047baa006c77efecfd82bc5f9c7ac9314193

    SHA512

    994e25eaa3bba0e5e97b3ace0c9b31efdf03b668733da4cbe822cde113c8f0e9f927c203e8558ddc0d105e605dc7787f5d3724780dba852a755a31aa0ea3e2e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f5b32884892676263ddf2267dde49fd2

    SHA1

    089016e80532cce264416cf6dca27d5b6c370d65

    SHA256

    ba1f4a7d3c8265e4589c630170357725c384c188a35eeb229d52b57040e5a107

    SHA512

    ad105d262ed80a102b713a72ee911c7ca5e2a6a008905a96a30184a7fc05b86ac54e7e65ccc46a58b6ebe8f7a573bfe43f2b9532d034948b8b9acdb241a7b015

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    92b34788bcb640b425c5a04f2d0aa3eb

    SHA1

    50bbd16be4272e00b2e85e4789713662a3ff83b3

    SHA256

    f030952dbab14e5b7df6b7b7c4b0bf8e2a3a92647ed0ace747deddf80ca7b760

    SHA512

    d54720ff082d763fb6f35e51c702cc2da283b3f68797207efe42df945105de88cce93e274b8d8babb1d2a37c4a125be089210fa94335498903735d052d7b8fb5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB3A.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarBAA.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit