Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

d3e095e5e2...8.html

windows7-x64

3

d3e095e5e2...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    08/09/2024, 07:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d3e095e5e251b9bfe704e9c47accd2be_JaffaCakes118.html

  • Size

    23KB

  • MD5

    d3e095e5e251b9bfe704e9c47accd2be

  • SHA1

    b79525040c6eb9ee892d86f6a9a6985446c2ac9c

  • SHA256

    3c7432859b135a0c3465acf6cf04a33f70e9a1233ab8b2acd6b65fb4887ed32f

  • SHA512

    9d42401fe242ecfeb8c4a118cc113c1d760b6ac9ed4bbf63f47e78361a13100d76b8551f902012eca14f13a3c980ed1b3ec003c2a3684e95fbaf7efe7896f0a4

  • SSDEEP

    192:uwTzb5nWJgenQjxn5Q/InQiejNnTMnQOkEntginQTbn9nQtBXTvMBDqnYnQ7tnIv:1Q/p+U0o

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d3e095e5e251b9bfe704e9c47accd2be_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1508
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1508 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2924

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    009cadba1daeb839b05644414e96877b

    SHA1

    8c696df6e8d44ee86a68679312bfe23515edd866

    SHA256

    ea07a4adccc8278cc878d329559d49ca7f1634bff8d72a086d3295616db9209b

    SHA512

    cf6fa883260b9bc8c235ba875a770570e4c8853873000d745c5c58c14de876539a9145ff18df4dfb6fc5e80ece64a94bb446f1883a694d6ef697057f38345013

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1fa458a232431aa2678ad209ad60fcb3

    SHA1

    256eab61b4e8d1fcc54b5c0875c447828c75796e

    SHA256

    77aa0b0af9f32a33578cd43bbc68b7d87537599f475548f33740ae016e7f7524

    SHA512

    5a53ffc06a8247d1aa701073e8ed04471970ee434f3e3201118802b392ed1593e481d7baac33c664b289f0a859abd15e8acd9d76a69cd8a87f5e94ab5795a78e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    32f17c34543130a88cc86a3a77512bdc

    SHA1

    40580c02ea11c3f19ac9cd44b01ca1213a7158a2

    SHA256

    a15b7b274afd21971da584445bf41a24e22aae97d05b549f98a7efd3e15fcfe6

    SHA512

    f21b232c5e8a6a770b8cb2cf5308e53b27bb4c0f2b66ea98d8e3010b0078f37491ba173127907022ee8d8402f2ce4702193c1859d6aab42c3c20b4cdfe83ba61

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    787fc0a662f76f70761a8cfddcf33fb1

    SHA1

    2eb8d638eef4da260b283bb097ef077f6d3da0c7

    SHA256

    fc4c1fc65b4f58413a42fcd0147fe148bbee47d7294f86e80b151f6845792ef6

    SHA512

    8b6bd39c4ee3d32f2ac26d2d25853d4400dd8bcd88e4f95106a9402d2e61ced6d9fd1c79dd3d898e4d7367196e1499e49ffdc49fc85d68422e2e6ad5c08258b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    968ff6f7e576563c1e46efd7ea627a46

    SHA1

    5b303b6d563b18f6fd5d06a0a534f9c3bc4c6141

    SHA256

    aa43148f94897a54890285f42f74f6d0088608c1c682a726297937176462c4b3

    SHA512

    a152c11b5c17f81dff2eedf9bc116d6fcd38f3ebea55da3e10076d5c06de2ee0311b04756fa67c7e5c11e3ebaeff6991f5e4a8690ab3e84940e85954c5fd0596

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    70a6d45751e843331a2fe30f556aab97

    SHA1

    04141bd138b4385fb6e06aa02d0b7877309b4430

    SHA256

    50833bc185ee67f60b304299d93cc9b7506a3391f9f8060f5f5c4015af4f9d4a

    SHA512

    973947da2502b6c603cfa40a77955acd356a0754cac8093fdd1f2149814adcc1f67d4da7de16a7eaf2125c256a032830a5e5955a7b06f14ee57cf10550d37d6e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e94d191423e6dda2876a3d8b05dee84

    SHA1

    48d8fdb5767d7b4de3f467782a19728125ed4e16

    SHA256

    9d2290f8d5c420b960659703d532c2a7ffc4727483d6a3b72ef931ca93b8aa7f

    SHA512

    ebeaea076e4d8de5064773fd06c05f6250ded4f5c261e519601ceb8a0c70abee81e51913d1e4ae1be455a29dd970e2d19e9b1d551efe0e26a890a6331f00fdbc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    21f8312819a67aedb62c0bcf41244fdf

    SHA1

    5f1e2a7247c65d3905d95016cda160729aa5645e

    SHA256

    4f01258ee7f06e9d9ace38e263df12ee16c6df7f1b893443b241451e8a0c2b08

    SHA512

    681204363397d506e57f715e2991ee91da8f1c8fcf4b05c12b099d6b1062fdcd7a2ca0f9286eadea3f8c6debcb11da7ccd2bc429b94f91c685af7800579f9f95

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b2959f68fe0b18c5022bea918c53ca40

    SHA1

    5124633f3445d53c0af7aa8b52dbcc5e27999785

    SHA256

    71e27deff546f7b808716d881ca3c8f232cb46aa29a611ced09b279e384366c3

    SHA512

    24fa056a29ab3ef180ea34f8135432e6591be83e642aca5c70642e9fcc13dea344a601759294d54b851d4340a9475f928a37a506f23433b3ccc2c0aa77c1d028

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2da4d5b3491f5e251383e44e2a46f667

    SHA1

    cffb6aceaa54a19257346d977ebcc9ae62aff7d2

    SHA256

    ed1dd562f83df61ec82a91a7395a73a6a74c2f590bda1a906a99ec3a35944437

    SHA512

    5d20461a8f76fc03fd092a5506ca97e9dba65102daef2ad8634262f4937383d151cb950a81248fd4802af80e1bdad9d001674732bbb4659afa3071b7cd83095d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    79e3a746e47b8f84ccf7a7d89b250994

    SHA1

    81d9f057ebe8c9065f10e114a9e8332b53844424

    SHA256

    35d608c8731cf929c74137ca824e64b40c1e7215278f2abab4d6a0e3bd19edc9

    SHA512

    64180968593e682e047b71891cb3b18b4569652efe94c591471ef7b1f809d6f786a645efe0076575601f7b950bf396c680a8c64c486f6f64d88897e6ca02f8eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cb39d1fbf9b0ac612472bdf5b0052a07

    SHA1

    c749ccd48caa1b7a2fc8152ae4ce2b533a1b2a85

    SHA256

    751847a919049e5170ff1dabe21e2518aa591d0ca089721cbf9166da21f77878

    SHA512

    633faa19167c59926bbdcba7186d54953814b9ac348d582f56173268c1b2d1af2d07d0a463222d9ff5fb6391a24cbfde362750d671873e27b78dcd03512f7424

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a8abf15b3a8af89711d7cd6df4e37469

    SHA1

    6adbf9a993383d572be7f2b0dc5c65f350a27848

    SHA256

    6c118a9b7afef55f7d073491764e54a39ce18a9d49044a1af945f9d520d9804d

    SHA512

    22e57cbdb466df95a165f49b7416478fb01cbb306614e20bec3039f92a66326bc9fdff3e1dab1e9f122168810db18ce515b248da3b03cd74ede57bce8d180ca1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    adb4fe26151338fd84d75daaed332f13

    SHA1

    57e9e99fc0b26fa6972a3bcab2a19c0ab2b66cb3

    SHA256

    1722f62dd8ac9c128e6ad7567d793885ea625ecaafbbacd98fdd6dcee449e07a

    SHA512

    20f667ac20d3d0dafb1aab781633f2c474d82905a7962701199ea9d040e4ea7f8d207770e56fa11e1c7617c94375de8cf435b8a5ab57b37b8572555b5b9d1df3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    86ce63a4c97cfbe96e288413c53ef8d2

    SHA1

    65ff31a240c989beaaecf948b6bdb6c7631aa1fd

    SHA256

    3ff293f313aad0247af0a77eff5931ecfdb73611e4a8e558f46a48e0fb4acc72

    SHA512

    74126a5f76d277d2f76f9c09ed31a190b479bea5e47fbb0f86fe01322343969f4d52dcec05912daf440c7dca3c62e11d3e3fca651b461140aeb1414d56f7335f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c8ada3463aa4196783d33f65c3d9d870

    SHA1

    9e31fa350167d29b2490a0c4a93f94672a53bd4f

    SHA256

    af1b97895172b29f39f3e3ed58257845b3f908a83c0009415e09ba322e2d4d34

    SHA512

    1dce5199dba333fff223c3ebc20d51a1da5cd67978ca5dccf504119864e048fedfa568be2f0b1eb376a7318d3bba3467976abd2c7098e7a515fbb2341364b800

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8b1a8a847b1baec0422163dc0eee187a

    SHA1

    b90d55976284a08b09e468d7fe959b03f5056391

    SHA256

    468b6b283472bb137af50996109610235a0d1d43bba56122ff49bc5520533946

    SHA512

    792e42256402b891b03df046153c2bb505ecb48fa52ee5ffe7b64a12f176f390ef263fa617d84803902b7057b564769f0db15d5ec6941b001258ab1e758fac39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    46d01c352478d4ffd9fb28a7409b1152

    SHA1

    4ee62b8cf068db025eaa2bc8d49d0ee8b88a187b

    SHA256

    893a8d84e50fb280a0fd843269cba30f82b8f17fd668ab72bc905a6ec7a4cf21

    SHA512

    b179eb0b909ccff58a4fa894535b9939e1490c0feeefdf5e12368a79d1b0cf884a2b37fdca704b0a41cdcf5ee738dc47aebe3293049f88f64918779351cfd19d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dc0a5e830aa0d0dfb4729040a3529254

    SHA1

    54951eaaf3f1ffe16371f08f44df16b85c3e7fbc

    SHA256

    0c82a16d7fa064a15e33af02fb9a63d5ec3cce48e029948d3c7b14f84cc00e40

    SHA512

    8d20f949868b4764d92c3f8e4d3d2199ba9110d7db46e2aac7ad6dc38e7afbc81e8c47b138de908a47dac08c1bd49d29b95afb1ba6a5d836efb56b34f1143e8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    81eb6a8849a158f2c8638be392f69420

    SHA1

    f20ec443bc8d89a50582968993f40d520d38f181

    SHA256

    7b1215fb1bc5a9e31374b7e1b64f8c77d7e7af4cc9dc991fb616a3ad363ec4e3

    SHA512

    6dd061fbcdd83ae962c69021466dc330df24585b5ce8e0d51a6189dcd10a281d08f8938e7126582644d93e7021b6036a221b08fd98390a5901e72e4be9c7ccce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    11aaffd4cd870f86ee1570174f33b805

    SHA1

    346646c479dd396675c0f540b0d8a9da19de0c86

    SHA256

    cedec04f77e9d5ea48ae6f7512b4155ebff376622da8987d74f1c09c0e2f8685

    SHA512

    bec414095d127e4b8ef111f4c9a7b6fb5218f520b6aecefc5480759e6c0d04ea035b571e0f0464ea1dc50818f00b1c424936bb435bdbf7b4f8fe43c6088d2a7a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFA88.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarFB36.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit