Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

d47c96a7a1...8.html

windows7-x64

3

d47c96a7a1...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    08/09/2024, 13:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d47c96a7a1bb247d5d44ed2d8992d4ff_JaffaCakes118.html

  • Size

    18KB

  • MD5

    d47c96a7a1bb247d5d44ed2d8992d4ff

  • SHA1

    2fba22b15be498cd448b971a3612c47bc0d495df

  • SHA256

    f03b4e92d2c4c2cceab23ab89648eaf988caeaaef722c1a8ce997aea1add155c

  • SHA512

    77476f9a16c8fea8892fa4a6e16abcdfeaf4100b4eceae0337279aedc9871373c687f08071113bc228355e3e0d716919b25d4d421c98046bbe28ecd524416197

  • SSDEEP

    384:SIt+5Cuow6s2YV62VhhNgyavk9rr2LBqdRsQfnTW:SY+5Cuow6s2YV62VhD0kVr203PTW

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 52 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d47c96a7a1bb247d5d44ed2d8992d4ff_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2612
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2612 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2388

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4341ca107b45230a1f38bf101badb1d3

    SHA1

    abef39f00662edb0c1513401f13c120e8a3ec5d8

    SHA256

    7b59ffe5a097e052baeafc8fe180d9765919716cd1b589c9ea07297e26c66338

    SHA512

    6049608318eaeb8ac90167454a17c5b77049a431c402d63e7e47838a2478e1afb7b69c4388e2b7b3613aca0ebaa69f82ef288a210def2a6796407d7f6bbd415d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d8a127ceb7616d70aa28db5b93b6c28

    SHA1

    63dfe301b892afc4519929fce519a86d32d5a280

    SHA256

    9a8e51d889866adf53d462108998099ac7bd9c2f4b60d3c1fd60fa6a96ba459d

    SHA512

    b8b08137e440b822839977494e3920e957e13b44228fd7a653705934941b4558ef66867ebd6e11fb0c5defae8759f6d1d39618a1de2283c45e26b7f5443a9b7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9b3684bca43ae87dfe69da78a42aabb0

    SHA1

    2c1adf4bb98ac21ec0ad6a037432b909f4314515

    SHA256

    e701d88d6e16dc377d94b16b391a03f2903044519ec6062412a55b3e14688efc

    SHA512

    bac9687a564d8150ce80a072b4a7c890fc113c0086d7cd4788547f2fea0199e3f08c082ecb27d2757e9d0b70d813370b7d64c697cc8484dc6be061f5dc3b6de8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6c6edb85cf745bf34386e01ac245a114

    SHA1

    24ad942ddce586369153c739822e582b66d7711a

    SHA256

    d382efa34e880febf783da95c36297b38a1ec1b1bbf75bfc62c805e8b4d9d5ed

    SHA512

    f55ff1dfb2021d9b89cded0847f0ed02fecd8995542b9917e37f830465f72e79cc1ba62f97b2dd73dfa8229c4c1b052b30b389c7d2bfb5e492141d004f4aea70

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5b71b924de0d042211fb35d60a4067b4

    SHA1

    fbdecb388cd99e61384ece2eec838fa406a54d12

    SHA256

    627bcb5b2a747fcdd8932c1f9cd26111d6f3190fc61eac1b5abce10e4cdb9d2e

    SHA512

    4357b6ad3061eaa79decba451a07c88c9c780d1583c29e879a8f4ad19ef420cb6a267493bec0f9ef3470632028fef2e130c950489649ce54e46c4d7da7fa056d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    23d1061ced80c89893c119112785c5c9

    SHA1

    0b95ab13f5cc3d79cabc1d6683598d012e52a644

    SHA256

    adb92e6d0c45673289a946e89543139e76e7c9384d396dd8a411eb0e3e378258

    SHA512

    fec9ddfb2d983b9517c9941fc53bed683b42a054aa7c9fe55245637e922f7d07012a448bfd7dcafa5af35d21177ab28b92a9fa16b78708fb14e20557d93feb05

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8382159f7cc7c93f0d5c2739f388e775

    SHA1

    d6b8f001a0493ddb58733f29266a439a489d4cfc

    SHA256

    00f6e52e4f426de6f7ee49a7a58a2f4af80c06440c825bdddd6c33e7f26bae12

    SHA512

    2fbad1f4a88eb84c9b6d86502bf52a5da1b24307b2c6b6d95190160ecb4c5452a8a4d1699c881c29640d248c04bd8515befbca0016c8946c1594e2537b2726a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4015ca487a62a426ef1c4779e771347a

    SHA1

    de48f9bef719cac37af8f4a6a8ec4a1d0bb789b5

    SHA256

    2648a24d7b1d4d5557c45687597f1f505eb4291954330a63de7460cd19010e6f

    SHA512

    feb28ea993c4a4032e72845b6cf1c5ffa7ca33834cd6043e716a6f7726e63b9dfd7b08b70750624e5e4b62234a83fbbf67b85043c8cbfaa0e9297b9a877065ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6383fb7985d96eca641184fbe1a7969f

    SHA1

    9e2825b7297260e0f1ff741157a24590bce0973d

    SHA256

    ee52264e8246e8d8455b4a322b03bca5c6c6af273c5fb2d7ac525173d8486742

    SHA512

    a2c8ed9b48a5d1cc29d74abdac577919485699694719959698527a259ec538a4b72b9ad594b4b1e87ab472c7e33b8605b935dbd6868f5bc06146fe58cebceace

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\KXR5OOH7\www.youtube[1].xml
    Filesize

    14KB

    MD5

    08945ae37c13f948cf25587cfbcb10b7

    SHA1

    365b5e254e61dce2bb0fbe18ffdef46e0b8e3ea6

    SHA256

    3b179868936451a0ca9faf7fb7eee3c2a0c71f4204b610a26a75bad9ab996cc4

    SHA512

    984fdd0719d02957c7bdd29e5751496b0104f40a238788f62820c0f61ebfe76ad778c14727839238adffb3a2cc1c80249119e4e83b2c6ef579bb31fd2f82dfbe

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\KXR5OOH7\www.youtube[1].xml
    Filesize

    578B

    MD5

    f1d94b6266e272944680c3bd3c4a02cb

    SHA1

    42cf5fc51edc980204286e9ee2865d20a21c65b3

    SHA256

    2deee1c9ffb6cb962ff376d40509cc53df7369128e27f31474bed83d02b47903

    SHA512

    cbf78b038e27861db2a239167c90c84ee01e170a4c0e778fc0af17eb4e6950b12285da12dea762d0f4d8687fdcf448cf3ab0bfa1fea8bd6e6690e7612daccf40

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\KXR5OOH7\www.youtube[1].xml
    Filesize

    578B

    MD5

    992d996b9259e5c19c91d20687c2cf4c

    SHA1

    74218b3482e7d8ac0f5daad9ae4195aaff281a65

    SHA256

    a80982b2f56b16b19cea8419b288979f96be46383663b1d5923df29c2d7f58b0

    SHA512

    15ce5559a42af11544e94581fee2b352a7aabbddb9e968659b591d2960bc22ed9014ad4eccdb046c8e800af799916ff0f7d545a75e187d470de11df0bff951e6

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\KXR5OOH7\www.youtube[1].xml
    Filesize

    578B

    MD5

    47743c380ce59ff05ac3784e1ede6b34

    SHA1

    5e747da54a77211b69fa07109a4eed655413265d

    SHA256

    231ef11f1df013f49f3c9c875b8eace5e6e2cb404a35ae216c98ad8ccc1b0d95

    SHA512

    d835ec0f3cfe39c6016849a6d0593733da4e1aa5529d46c0f1262f9b869fda8d6e344089278602748d9bbe975478ba75e6c03d47934a6fa3b93e35fa689730cf

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\KXR5OOH7\www.youtube[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\KXR5OOH7\www.youtube[1].xml
    Filesize

    229B

    MD5

    232cf60894b8470023b90d512b810364

    SHA1

    ed33fbb9a591378e308ef19c3185ff3304b5cffd

    SHA256

    162f6ba3091807a966380558236d4a95937ff5462d1ab3d6308da85ec29c4abd

    SHA512

    2d78fbec92bf6d66045d02c264fc37a1c30dc3f1632d0270e09456ea4087185ec5e6b38d5a25bf1ff22ea6dac227a1d3d2111994a260a10d4d1ffeeaf081aad6

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\KXR5OOH7\www.youtube[1].xml
    Filesize

    14KB

    MD5

    937d251b891af39c966e0b1345c9b3e6

    SHA1

    7ba843fc3d332674bb41d2bcbba03a8e05db3580

    SHA256

    4a6a27c5190103e5ad3c82aa9afb4cd87a46d49310d3f78ceb676582c049ed86

    SHA512

    e5675ad69148ba8fee19b4f5e5f07ddfc8181706a971245d99d0ab322d89ff611832a76ebda6d2a0c064d896fb70cac53f9c31696ae8ab93b35df71dd59e88a6

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA797.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA798.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit