Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

d7443cfbac...8.html

windows7-x64

3

d7443cfbac...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    146s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    09/09/2024, 23:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d7443cfbacaa4ac284ead8632257f887_JaffaCakes118.html

  • Size

    139KB

  • MD5

    d7443cfbacaa4ac284ead8632257f887

  • SHA1

    29742444ed529e07112e132760ca5ebaeddd32f5

  • SHA256

    0b78bd590a9d47741fca5f1ef3764145e030b6209b4778847239821fd9969d2d

  • SHA512

    4ab997f30a5feaa18f9ef92101740b935c3bdd000e274b552c02ccffdac4a4b90ab27644a2af26897f0902999fe1f80669c1cbbac43262d85661127786260083

  • SSDEEP

    1536:S9zaBAKy+pl77yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJruH:S9FKhn7yfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d7443cfbacaa4ac284ead8632257f887_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2440
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2440 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1860

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7979100611f10efe919c04e341b8ca64

    SHA1

    b860f9dcfbeafbe1528cfa36568d353ab40ce324

    SHA256

    c9668a15ee5f5d39eeb5ec2d98fc2ba4f4f221a2b10d88e1336757d8e26106bc

    SHA512

    9eee8c130bb9d2d76319f0da0e34810d092b709cc398b8f18e842643a2c52803d718f110e7c6fc336eb754aee5a67442056c112d573d01ded288b71672ed1f92

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3693a382a85beb581d4409beec68feff

    SHA1

    86791204c1149ba2a864cd9dc5520ee2652ef22f

    SHA256

    96a9d06a80074d0850689c7a17ac46f9996f594e5033d0558635b2d5ecbffa25

    SHA512

    7ec7f2c4f6452a25b995222392675f7938f2feb3f1452cd919c5e834b7fbf8d156e27be08f4e79bb4fc17bb1b53f5f4958b30154597956a2efa49c7b4b7df866

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    076c8fd2dcca91ed98f4a015b3587c2d

    SHA1

    8a15760b1b8bd3b15bddf9390b519bc0a3e508d2

    SHA256

    63223eac00ee7afe47b7220fdb1b1315c84821fe186f5483dbc26930a20a71e5

    SHA512

    0e3c13016029373fb0b5e794bd72a96d80ef6243d4686be1d4afe52b1c8a6c15427195bcb72ec1e7cd8429fa9276c795029b7f4847717fc81ad9edb2528dc9c0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    875156e5d4f45327b02c3e0475e78aca

    SHA1

    f14f7f87e12309eb0ed9fe86f6ae0bc064187d24

    SHA256

    79e201d5e6b4c97844db6f90fdbac4577292dfcc22c25e8d429a727225f2ff85

    SHA512

    ad7f655700a15cca0021e3b472817b0e749ae844100ad098a0451cc5735f880719295a50b87032971a04372fcc1e9edfd29c773347de7ac8899da100a584cdce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    773ca36c4f7ed1b0e6497ad923329494

    SHA1

    444d286a9b4ca4f475d7731e889a0724c2f5cb87

    SHA256

    0344b0bc48affea00d5d49c5bdc4a7264d459b668b27a386dbec2c2b3d91e9f0

    SHA512

    fdfe55d9d276c31733f6d9086dccc72a00c77e595344356626564ea14acb5f2a344af6ab0ff50c11285d07b7c4dff9f0d959a1d274a16e05aa0ff180a528c821

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    02ae3ca457fd2d89dea8d1652c7ed5e1

    SHA1

    f4e8ff2fd8b22d71954d63e3cf627cd21a0bf38e

    SHA256

    902a5dd45e9cdd83c5041c11bc1b6620a79a7ebe1789a70dd73827b4c3f80ef9

    SHA512

    41c971801a4cdba96b376fc0b4090b8ddc1b1309de1262f38d9d21c41da162c02ba2e898c1e0559141b5de1c091ada46965677a5f3531f3448ab998c24f68b7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8bde35f9f826981ba1e25d0cba5b84f4

    SHA1

    e47334cb463bbcbc28988ed658b86cff9cb4fb37

    SHA256

    8b2166e20ab25f248393760458db6c85b9d4918578b9ced6f4fc3b719abd9a04

    SHA512

    8a3a0828400cbb86c4c0b1adb22ca1558da359d856d1d4de14d3ffacb0b4b975acc9c4bf93140435cb0dcf65c3408cfdeabd90e923e335f38461e6d9abdd2092

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d2b598eaf122656410f57b98e65a16c0

    SHA1

    f11f7f158b94f4cecb7ab42ff45a088a80e0c86c

    SHA256

    eb229a1b683fdc677cd5c09a662bc2478ca73abba573f323a1e7c17208d3cd15

    SHA512

    d0b1145d02450b370fd282602d5669f5f66fd0dbd3a009db696ed6d2e50acb7f24f29658d531341d8159335835299a04842cefea8392144dd99da9b976aacc7d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabBE13.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarBEC2.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit