Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

d338f4693a...8.html

windows7-x64

3

d338f4693a...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    140s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    08/09/2024, 01:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d338f4693aec86c5c91746a947d8deaa_JaffaCakes118.html

  • Size

    37KB

  • MD5

    d338f4693aec86c5c91746a947d8deaa

  • SHA1

    670c63009b7a4f053c019c5070c94cf4f3bbf733

  • SHA256

    9ffba9f8896f57d80a6188484661922a73ba9fa80a38ee957a8965f782099c9c

  • SHA512

    e41976d6e170d53226412eef7f449b11ab7c249b2c531384ba57676c7dd0368c8cacfc6782dda53ef5950e8f7c922a02d87a7ef7a9f7d191093f811f7bc1665d

  • SSDEEP

    768:yLc4SXRoz8+3esYxUWpqv4ZAp34YvXbbQsuhqNBi0IYRgQowi4JexjuU3J+QpUGe:4SXVT6tdj

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d338f4693aec86c5c91746a947d8deaa_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2708
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2708 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2428

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a8e2ac3339508bc5e8de4bd825aa0f83

    SHA1

    1ce43d37e5213d212a487835009a55df141259c8

    SHA256

    498a59f60d0b6f973279186596ed6391b61ef7aeca67ed1294b1666d218bb0b7

    SHA512

    d375e538093854d568e180d5f40f94bab245cc6a19f6f8577deb4aee88f3dc5998284d1463db4df37bf7f4e851cc756fb27a0de09e6db2a146c8a9d77958c4bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    10a080e136c6e1c45090a1a0d5f77554

    SHA1

    9d4deea5468f52caee22eef083e23dd9e28ba068

    SHA256

    6cf6d2f57d3835312e649b652755789f371e1d6783db906627500dad8df3381d

    SHA512

    d2bdae5a87a2f9790898120467f51896dfe032ff411faf2c54b932e4538758c2be094240efb7f7857cc25c89179f652b057f56e0a0f18f5d87230dc31a7af494

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f1c523da99cc53e2365eeb1979801af6

    SHA1

    1344f44b638df342229a881cc98c731d83714731

    SHA256

    e23308251c8e22eee5d251875c6ce76184a9d8587c36486505da6b665caa0ec0

    SHA512

    e4760c75d145ef4c11786ab1be28e88b1acb144106f9cc478aa3d74f8ff4ce29601701b4fb9df63d1f642f840de0da369616c20acf7d6582fab52736d067f37e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9c2b336448904916c2a55df7971ae7d5

    SHA1

    42a24f0370f6864e21988fb886af720ac7636779

    SHA256

    f0eff8858ac1abf2cbfff0958e6ab6b95db622f886d6eda306a45b19e87b4c13

    SHA512

    24f23fdedd5bc3afa50d1885f9692b8b6568b488640fc553a320cbeede83454ca47ae1114eccc789daf36b74534a1a0f4dcaa877a297b3ea8d580c457f778737

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    474e7f20821e5f021652a000c11f26cb

    SHA1

    6da9dfaf8ae31e401582c485398c95f8369eb088

    SHA256

    a6e3c824f9f068aba43b0a03ac280f1152d39835c8f30e322bd09ba75cdb2961

    SHA512

    2eae60711ea1e0b4a77ec9fa8b490866d1220620d306185c51934d617a7fe60c8bab152eb41f90ced8a42b6d797faac424854afac891b30d4ad827dc52868e46

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    34fdbf66cb82388ef2273a70848d4933

    SHA1

    2fe0f809685272900cd4580f550b54ac50f7b827

    SHA256

    3b996d6ea64e801df5ac5d4fb4fd075fb585139c95d7a581e3e896495686984b

    SHA512

    a9cf8335f81345e45e81828177574213ef54400500be4329f26db6ff57c0034d9d4076dd609255623d143f89871f74a52ff2d43006e613a2aa07d1b4332acf45

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1d3cef2333677e49a1dfaada6f12e91c

    SHA1

    00e2a290bc6238c7ff2f19a37876a82123a2fe9d

    SHA256

    d8da38fa276dbc43b8baff00782790e2d91f2e00a22f4786d7fde00ac732fc8c

    SHA512

    8993c0f9945dabfa2e2fc7c1aa84569bddc8da4967889d35171b8184d5a766e2bf45e59558f1b26d761bb7cc2c01fa756614700f694a1c071efda37477df75d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    544a24a1365940f27e9823cf1af610da

    SHA1

    596b2bd2a2edda0d2fefbf248e40614ccfe871cd

    SHA256

    cf19026f6066ec636a6a8cda1813f4985b24de5108ef913e4f2e6ba6105826ac

    SHA512

    eae419543c5afbc8bed13c41e0f64083ab53bb4e8228f6aacdf3fc63ca608e1728f899a2249254d3b8b472625fa62ee42ceea4d7d94d4e67bf3c03ef0e5348e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6aa974c9d514cc7b51591b067dcf1ca0

    SHA1

    f18cc0260ffcae52c16fa7ce0d5192ae6ad37952

    SHA256

    1a83c048270fc52cd73b3d14e13e5704f26714c1babf877aab2a6e654827b2f8

    SHA512

    c5aba96d2cba8b3ef0e865ad7a94dc2797a43fb4e20983763b881a55d001961b02c3643311a1ca4f038fb5a2bbaab5c48736c8ae992c3d4cc09ab87aed7c4ff3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c1734efde8f61e61322e4e515caca418

    SHA1

    06ab8bdbba96ea02eeecb226f697540f6af75233

    SHA256

    9aa6c8b4d29a5dab1e364a7a99df06da4588ff0031b38376607bd5447dda8d2d

    SHA512

    422fca54af25b284a9ddb3f3d7806a54e48e011a897aaadb4576c0c10cc23d4d59924442e63b99e464d447a7eb8372ea0025ad1c69d1b2e4a01424872fe397c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b0832862efde7f177929885580b7f7e4

    SHA1

    bc63f424969e9d3c98e7acbd9fa85ac703436fc9

    SHA256

    ed39a9144ee34e7746a2b99bd0587213562c93a927148237aa4bd1acfe449774

    SHA512

    fb28de5d5d414b98e5bbb51ea7fdef29df9567d56e2411ec01b1f71abf47ced34c70f78559b48bb1bbeb7f919d170a608f01a4beafd18d991afbb79266994168

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    962aa05273f1e65c17af15f4edcf1531

    SHA1

    ed446c9118bc8118205882506aa5b49fe2ad06c7

    SHA256

    7ba735f723276c5d33b8ca11234e69518e03f5cd504a7cad31c172aab2ca6ba5

    SHA512

    edde713cd0891f3736944f48c76b6d0aa4462795c018303ad9327359a976ecb2cb66536ad4547cb14430df68a5c0f44faa82eb9da52f551505de86e32a85fd9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e0369e08947830324bfb378f8ae5eff2

    SHA1

    ea636b827a149258727ce5ba3e75aad8867070cf

    SHA256

    336c7e905d19e738c212e33b975bbb4aacdb6bc174383f4dcbc8777561f1274c

    SHA512

    920b9fcce428ccba36b1678c6a1c2d61854308a0266b188eb0797791001d2047de2c0318165c777946e488ef2e5cacc7f4b46139912a1c4ea95a47155a3fdb82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    35aa40bbd46a655158c426a6d9d9b4ce

    SHA1

    02296f86ea23e372dffc04bb49d1d46c8d4e20e8

    SHA256

    e56a2423574ea229f0e85055d2ccca4f429b96a66872f80052fd68145652a5b7

    SHA512

    f7fdde3a9d68cf29f17c6cd5691c514600c43bec28d94c8f71b18446080a57a0b3b4320e8a465f2e6fbd15fefa0d1163c3e9b0d1f0cb388cc832b2a138e5cded

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52a4fcafaee81765669cbc192987d1eb

    SHA1

    b1bd86736e465a17b2e9e645da2e373467922d82

    SHA256

    e49083218cf9ea5d22c62514e988fbcb279d6f216d67e2665d225edfb108917f

    SHA512

    ca0423ea1b02bebd4d6ed2d375866fd8176ca35d33b8bd1c4abb0affeef864d6bc126f8361a9291921ed9ce34f78a97cd2b311b8e97963cdaabec87c42e20148

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c763f86e345baa12f2255c7a86cd2004

    SHA1

    9f20e7ffbd6c51d840388225a44e1af3d9d5f810

    SHA256

    57cc5ae47d35dddd04ec5297dd883876e4c99febe21b00281259f75fdf4e845f

    SHA512

    fb27b85fd3149bd600148394039e8d5aca4ecbb809e8b4ebc03f386d49c59c5e1c1811853685749bc101de9ddfa6aa55f6b8b8bd28655864cd5c0169156a9841

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF4F.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar13F4.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit