Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

d47d0174f7...8.html

windows7-x64

3

d47d0174f7...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    140s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    08/09/2024, 13:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d47d0174f723497e4f20ba289cb202cd_JaffaCakes118.html

  • Size

    140KB

  • MD5

    d47d0174f723497e4f20ba289cb202cd

  • SHA1

    961581e5fae7a2bc7dd209f42d5622b69934d12c

  • SHA256

    1c49005d0405d2a4db84ccef97a4b7a52953c28bd2052b5d10d9eca43de37bb3

  • SHA512

    f568d9aa8fae2f6838cb41f6ef87cd7a5e69e79e710b77a66d220756c7bd450a7b20ec2e383c62cfd5b1f304de7fcc3704148f641b0dd5595005d5ad9311a2cf

  • SSDEEP

    1536:SMXluOflG+zyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBw:SMgO0+zyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d47d0174f723497e4f20ba289cb202cd_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2548
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2548 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1480

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    14a666a9a1e99153c2974e265c2fc4cb

    SHA1

    17bfd1603908fffd07ea4e594ec8a83f336a98b3

    SHA256

    f7d6385b7e4d7589410ebd48a63d9d4be0c2609fa2ffe8de27eb3e17c8328a30

    SHA512

    97326c75434c0687610371441854726e025786b166efea79e49f42607f071d8ffe298b080b2843ba0d2b7bbe4b6efa9ef3e7bfb96c8934c0d9b166444c144eec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    29e07d97c340ff682ee3fc3c2b411f74

    SHA1

    0d2ba286db779f40968e648eab465201e78857b4

    SHA256

    a99d5dcef01fbaf192fb35b8ef92f06a639c669b3ad15754d8756d1cccd4f73f

    SHA512

    c5cf25de829cca6a85310fbe42e8248a56854470f634ac6fcf2c6c0a8ac0f17e6d60268799d37f0656849a62df1bc6a5348552d5a65512a8e7d7bd4e1c810ba6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    36dea8f263069b7127680e878a7b5672

    SHA1

    a81de21d3fe8e6cdee3fd5884001891a94b5f13f

    SHA256

    7629e2fa475529be2462f293ca94afecdc2e79148da994b857a5a2730c2c2904

    SHA512

    e1b4ac5aab1474d33570b795ae0bbda09ee533d297ee39f484e94fbc53a8ee5269fb00a6d2c03786984549e7a0d2e98c353e66b55b86235b814baa6619d04154

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1d20fdf4ecafb35833b9ae0d72afa7c8

    SHA1

    6cc540e51c6d9d06e6f8c0fd616688280f65b01b

    SHA256

    a8abc41cb2a10df2f904f66b932791919ffaaad34c555c9c7f69736c26c9e663

    SHA512

    006bbe8406946f96900f5082b6a6caf3117ed51c2313c3bea95032ee649cf2638719a3ab1d3c813d64cb7d84fd8ba8edc141f3f70a05a369d459de4eb22b3415

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c4c841f49a4d74cfae4b5de386c75ba2

    SHA1

    922689e80657416122714b476bc72485bcd7cfc1

    SHA256

    6dd71f3c70aa91b4af51f51d83ce5213e4c1c4f4973b4fc3882723e8d892e6ba

    SHA512

    eb3ac8ecfaa82bcbf6fae6e45bd7b5e28d087e6c8fd8e2e1b63474804c076677b5de0a2952bf7728c69ebf7b7fb5a356b3b48d570e4d362994eae4190f8bc2b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    91cbd7dc6f3c81647edb051228174d67

    SHA1

    c0555dcca0d75538623ed900358ce3fd4e00bdb3

    SHA256

    a1c8db25f806625ec60e2f813d9ad00ccf94f9d351260c5230da98c454d4dfec

    SHA512

    42b0133a2d7225d56de7db85a81a2a2978ea7c28d512765073abc12557cbf882798cbec3721b2b3e6409d0c2b339d313afca12c1327a11151e56f48096ac7887

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bf2282b1f8afaee6bc32e721e8c4985e

    SHA1

    51625fc140b0019fbfaabeb779a4f14ad8cbcba2

    SHA256

    62434603a0963833cf3c2fcd75345a6331fbe6532dd795bb35b6d0f7ef30ef26

    SHA512

    9437bee5d2e966d44660b5f033eb66e9c97f1964c332897ce94f8fcf6940aee9ab152cd84b10253b4183edf3499ce760a01618f17d71b152d835a55e64462e7f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5c8e0f5bda6b01e5fec16a205b14d14a

    SHA1

    9d2863f11d0ebbf04b535e7c77f5a4e3b3a2f04f

    SHA256

    8a79c2d1f7e430a5ef845650649f66807df9adc813ec0b694e9cc1aa2a2f5212

    SHA512

    1f7dc2895d236017cdfc0f6b4d515fe1b01982f897a2f68d54914674a09f08824b63696c5fc0e168fc246f0183f1d96c96276e3818ff02fa11eafeeba608a9b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f336bb763ad809562e4fa73e10e7e41d

    SHA1

    15558e41ace1e7698120d6f51160c401e127162b

    SHA256

    5406933a33974356c7d405342a0c333f88628829550647a1a1dfc52147e8d25b

    SHA512

    b971dad4556c8a7db834709e1bb0dac1e978573957b3320a34f65e93faa10fcf97c575d09318af032432a89420b82c4b986794c45d93fb0285ba281a38df4007

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f04123046ac91d9d4472aca2ffc17b90

    SHA1

    b820fef60795148f546597adbe5355585f3969f6

    SHA256

    c1b7851cad3588b5fc1e0711958ce81f0c96646d4fb775075fc63f276eda2ab5

    SHA512

    128ef2a90005bd52c0487d57b8951cffaa8363929ee2c7d40177abbda9778b15c5dd6a05bcc785c63044daae84bd47627bd87f57ed9fca57dcbe4dfd6a445256

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b0aee869dfcd6aeb425da72b358774c4

    SHA1

    b3b856097d19415b366c82a3f5039031388f2aed

    SHA256

    2d82b6143b03b29d056f993528344ce9f2ea7ece2cd3b1e0399b7ebb57b40d62

    SHA512

    ca27d8864d89bbea4817e16dde96758ed2b5db762481b741b36dad3e2ec1aa84a43ab57b09a28a72b986e1f139d2825c24a17e5895c38ffc5960c396c9c73b3b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cae3c91a0bd6066612878d7ec156e56e

    SHA1

    bcd9e1074e7c50b6e5cc64ca442326bd71ed7e51

    SHA256

    3297b7a926fdeb1f1a4b6a08e952acaa3416183f77f1541d07996e989bb45940

    SHA512

    67bc343377c13c6aa419fabcd287683fa0334cf71233ce75ff93848f8f4fba07dae858acd0c703a9a86bac4691b5143974ef4c2e24efe1c91d263bad42c82408

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c9f50702eaf45f65dcd948f34fb32b2b

    SHA1

    ed3433d4bba0904d1e06ead5d48ec5d4c5d5dd24

    SHA256

    cb7720eb7c0ca6398c1826d7e0528424a93bc2538ad335d0e2b444a47f7a8a25

    SHA512

    7c86b1262689cbd9afef6f07b96a75a51f3d9654943d05bab569ecba98629699a6e1fc92fa1272ae810b9ebb7185eb0e0ab8d372308a813be1794ceee38f4100

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7bdc88b34623ae71c6fde4f359df8ab7

    SHA1

    ae24128489c3b94d36d7eeac4deddb933750f89a

    SHA256

    2f4fdd22334cb2f6cfeb3396f3851280a4a3ce60801c488b13dba7071a8c8b92

    SHA512

    3fce497a09ae46a44086d132d3e8afb7c72744130021d1e3168dfea972370922af7ff7121b2526dfee00a3903a54006fa26d2917019abb8406013b4df7d1cec3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    837f6d61c75f23b412c0d9cfaf68ab3d

    SHA1

    575330e345ee83ffa3b2eec76d4e0d4c82168984

    SHA256

    656e19c686bce5beb6bda3acde28fa4f8e939ba8da7b87331ff8362cf905de6b

    SHA512

    6d539170b079548d82f7296d61ec40fe9f42d6e67b4f6fca5c45fe6aed3ea388254642f7a3c8d45349112866ee18938cb2a916f6b0815c0a759eb7bdb9f5828c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a779161b9230c9ce7f64ac643946bb1f

    SHA1

    aaa393da92f5a7af992973cf9549dba3abe08494

    SHA256

    cd69dfbe207cc97acbc3c3e37db93c2037c3e6dc3034e421c0b0008c6d108c4e

    SHA512

    55818847116fb80c081fbe988550cd12bdb6bd2d4bf4b712ebfbe05fc5cedf33d6fd917c70532e8985c508d3eb0540bdac025ea6523ea752471a3d45ed32fa6a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD194.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD52F.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit