Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

d2bb458b60...8.html

windows7-x64

3

d2bb458b60...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    07/09/2024, 20:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d2bb458b60011f3f2d7276db61e713c8_JaffaCakes118.html

  • Size

    201KB

  • MD5

    d2bb458b60011f3f2d7276db61e713c8

  • SHA1

    bcdedacebf3fe6681b3f96efe3a5f918a6df94a6

  • SHA256

    e90198c1c3f9fdf964e386e263204b44e07a5d78eab8325183b48b758e9a11d1

  • SHA512

    3e5aaf2638d89e90d1166e52c05eeb2491834066f822cdeeaaf7168421dcbd85ae744626b69f3a73a0272e75ba1dba9f32877d97e84a8ee78c7c3bb8c664b556

  • SSDEEP

    1536:kayIoYk+lRr7l32rXaf7fl3XekO4+3+8OUxjCFmfQ/1GvM:dyq3XalQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d2bb458b60011f3f2d7276db61e713c8_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2232
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2232 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2904

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e171266e6422bc070dac6b0e2093b3c7

    SHA1

    b8b3c660bbb8430428685f3081999e66d5006a7d

    SHA256

    3d802d691e80fe45b48c377edd9ecffc6a0f409bcb6c266016bec18ded7c97d0

    SHA512

    4404e7a103e53c01b7fd773766eda1919b2ed3fc35ee7c58f06c94078058d0b2682799aae9a97f53f97f855d28dbf830319c12f7f8db980efda480a6b5ceb998

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    417826e95c14cb1d777a10e8c0010122

    SHA1

    9aeab5bcf30e93b792c00732cb5d4408996355e9

    SHA256

    e893521d5351b5488c9d550782420c44db98f6d9a2d5050b2865a945faf8e98d

    SHA512

    ca8857dd8562cd27d704dab47d50d8251af883ed817ff48e6c074be8811b09a2edfeac56ee48489e2483ba549f1844d3177ea14c3d51cf8117aec7aa5845c6ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd6d9ce079ec1d0a523184c4a9ee8708

    SHA1

    e926f9e8bba111bcfee45be8806a07816df18a4a

    SHA256

    589e326e85072d422aa0e3e21993e35617f246cb54267467e0c5ed8cc3ba5c90

    SHA512

    855c354b4c534a3d4562bd65a3deb290d74f75ba27a654e3c5c115f1fd68135a1e6383bf8fddf1d4eedff0ff0b3c6e8e39f3c4552156cabd97e5c3fd0727fc9b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    20f9f0a4704b661c468b29c078d1b8e0

    SHA1

    234547fbb8324d78c1def679428921cabdc0a2f8

    SHA256

    8a44ce40ddc742524a6d4c0d4e313951ee87866ea485ed19fb696a7c7ab8634e

    SHA512

    7a56cae9a82f4cdd82908b3e7eded1c4ed87a3236e6304c20b417dae8d5718aecf98d82a0e1e3125756285915dbd76fd8665e106f3f978a984e8362f55a5e68d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    05bc3d409c2bcfad326ed36138558c82

    SHA1

    7f357939fc500cf8bd2bbc4449dbc8953774e6a2

    SHA256

    8797fbd2bb65e752354599dd6630ff9ed35ec9ae35b8e2c5aa8a2cd3d5e227ee

    SHA512

    28c8c6761f798f3271216f9e186f2ada874871dc65ab2976dd4f6f7c78f59aa0ea5169404fe494b5b954f6a6f7e993b13c41504bc115c83db06ea899118f21fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f23065b58055e816eecefaf9a4420d2

    SHA1

    cbdbb843ae8be5c64031e78508aae429c32e668d

    SHA256

    daeb543bff31e982d33fdbcce2f08eab699a6ac17925f565fce8609c38c8f04c

    SHA512

    58a3b8a96aed80379a682ef802c552e695f1c333b723596edb81f4945230ef0628d2927072ee83bb3e063a95e5be728b2e1dbd2f54b4b58ad67448a3cba2c136

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff108f246a06607ff24779fb75ffbfcf

    SHA1

    6d3b88568e5bc86fb170a87460449ede70481ca8

    SHA256

    cb6ecf966ce907e37b8fcaa9f3165c5072a6cd7dda2e3880431b396d9da628f3

    SHA512

    73b85cb58e0f3fe88abbe3d3fdaeb31c7e57bb66bfa7ae9a144c04c2f3815022a6618c2570948313c00d673694bf4a69f6d0196a4ec98247e029663f044c59b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d9418bc1421c4fb089267d36787ea622

    SHA1

    acf74fde5e003078f0e48aede4335662be465bda

    SHA256

    3e90d2274ed9a73213a4b4b00e389adacfab6a735783833b002d5cfc3f69f0f6

    SHA512

    0fd0835b7691b9de2c680c89899cb5b2f0906e3ce880f3afa970303e689832451093693d6379d89ce63da9b4ea9d5bd36b84dec4c6f96f134323c5fa83b066a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d87cab021fcb4111657d6754eb2834e5

    SHA1

    043fc05c797d75e87083883d6b2df06ffe3c82df

    SHA256

    1f7f13f2c9114445018d7e7918639676292a724280bf0b837b0cd9eb657731fd

    SHA512

    357005ecf96326792da17ec96d07b985a28c3a95689813111189e4339e2057e06116b246b7d9255f2823be1e59698bedb5e32786d5d8a7cc61ce56c22c62a04c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b4ff078c4d80921b6e0f47e735e603c8

    SHA1

    fa82cd159a609756ca7b5f5476cf7e63089ddcaa

    SHA256

    ee8d79274fa3b19e2e30abd588c6895d70c4234608d27b89bba2e3ca18977efa

    SHA512

    833e0a7ea0c9d919ab1b17313e7f5e17eaa76cda544cd2d2f7c13b6f54898ca23349fe4268ae31a75d2f582a0e6f97db1f8eefc264796f759f089364a002a234

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    246d42ae3c2dacf858852ff5a35f5bf7

    SHA1

    dddaf8c4eb21eb52bb8bda78dfe1eacca77a071b

    SHA256

    919107333c4c5b1d47c7caa8773e00e135b99e8a7f621290cf79656ab5da3748

    SHA512

    3cd1472bf803dd9fbd4416a32051a677bed14f6fea4fa94168535257e709e012928c2d4580bf9d97381bf301fe8b4355332dfae0afd48aa889b76e9aa17a84cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c571978702033497e47165d8a550b005

    SHA1

    9bd10da4055a016a5e63666c424356b4e9db99b6

    SHA256

    e1338466da29492e5a6c65f27d4f7b924e6f366b301688b792ed314bb9d80966

    SHA512

    a0a727094ea288a12e85f3dfa7667ff965259a25bd5f610789f788b0ef212b04ea2fb014649f301a5cda2fb36fd266b5e5b2e6940e5b0c56b67b17e2974f4b8f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fad9b1331b7c72b9d7bb8f0d3b968791

    SHA1

    29844a7d0590d80de8fa42697512a9650dbe687c

    SHA256

    98eb3c8bb47cc495f6d288866808e54e5ac7c18b85261ddbb15dfda6ef30a85a

    SHA512

    15c7404de03b2fa14d20075130dcbb0eb3c21805a0cb38099425b257c47de1f898e4c989e86b4506bf9b0f78e9c9d99382fd8cf213673ab6b4b76a5c13c66d41

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    17ac28be43d87bf36c466c15029f16d7

    SHA1

    38e66773ceb4c35692f767804112c77474298905

    SHA256

    33690865e4b9879f7c83b9eea367e2235cb885f5d0a6a4b942e065ca78d09ca7

    SHA512

    3c94ed3eab246ec0d0d9bcff69ee3c038786f53ddd1ce07a4ff226025a93a0c690c3227537940f6e3ecfafb0332327dce71acf40c42f0f56917973d78fda80d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    02b8d8b2b92bce427dba90e4aa67a1ca

    SHA1

    44af703ae795c4989fb518a346a919f21f116716

    SHA256

    9443d640ba968a5a2902b8277e524043545bb3a05b9abfae35fca7e19d07fe11

    SHA512

    d0d67fa9f714719501d7f8d79842369f9f18add5cbcaf9be813acab595dad27f50e28909abf3168428a722d78499060e073725e07771404e37000498ff8f9c02

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b8191b81f5f93d4406999761d2dddcc1

    SHA1

    c484f38559b557c05add414e1ec5660d2b55d861

    SHA256

    697475bf694e8ffd11253c69bed51733bcd1f7472d5da586686f3dbe66c009de

    SHA512

    d4bc84cb6433f9743724caeac369b8b78f30a6257624e232e0f68547ce86565497d26012218d2cc1caee08e983271c46f5733dd714fb7b558ada554b2daff05e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e7664b7b4ce02b24f44c9a67dde2efb7

    SHA1

    6dbddc6051ea372d3e6946bb42c4e00860dfef9d

    SHA256

    6402387194e15365b1be9f526ee56673b8d0100d875782072503e5f6a72068aa

    SHA512

    9bc9cae9f224fac56250ca8c375a07f79bb1031bf0516e667a02065564261c79110ed6c51a7c384b3381af6a20b57d125ac6659a774dcbca7d26b0a9799fd354

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0089ed09ee2281fa1c9784f4c7a5c187

    SHA1

    c257226c2216512f0df99489e7f22c5fd54cbebb

    SHA256

    6dabe9fb14a75644057ad9155217e5adaf39adb4beed4218471f8c93ca4b92e1

    SHA512

    bdae71010a405de0d4bb051ad67079df3da88ce56f7a9c5ab3ff6420dcd58d912a3ab13dbe65be774a32c7c7ebc0b59a44dd8ee28ca6b830732967c78b0b9bf3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    88a6e0d33392115197fb92afc4618077

    SHA1

    6f830859ec022f062ef6f5db8b7af8b0ac15df69

    SHA256

    3df36439d8011a70b37cf44ca4803971e94cea15f1a5ef45ab02defa03dbb79b

    SHA512

    90b984263af92e53151a6c2f88c7e019099b63fa74fa468c577a593ee753536ab80bd84bd914b18552a3171d84c5856d95bea98e1d34ad6ab254e2a698573860

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    463ec85360216e2c5850afc4111a5174

    SHA1

    347fdce0f8235955c0df08e3b6d019e9f61757ee

    SHA256

    f67796a2d297f120fe15cd038a43aab881b3f196a160e9596f90b2af85bb2bb9

    SHA512

    070d9a3da256f367dce79dbcd52a60afe9d48cca936e318059c0f9c62a26a1b54b3c9d5bc6e67efc2dfe4c27fe92c7b1bfc3903a4b70630296d55bf81b9e7bc0

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6F5.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar765.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit