Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

d6e94318ba...8.html

windows7-x64

3

d6e94318ba...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    145s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    09/09/2024, 18:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d6e94318ba55bebabfb06ac12b517997_JaffaCakes118.html

  • Size

    139KB

  • MD5

    d6e94318ba55bebabfb06ac12b517997

  • SHA1

    79cbd24ee3f82a5e14e0ebd30ed868bf5196c7b7

  • SHA256

    1121f0b598cc65e691b38aef3d8aba198c1974c3c8dbdbe6db88784e661d95a6

  • SHA512

    0f8fa50d2fc0ad6586fdbd894b7e5fc23434bf22763b8a9a5c661cd05496ca7fea76bff37f348083775f94d3374cb1323728186406adddc952ff589ab465842c

  • SSDEEP

    1536:SUrk05HolofyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBw:SUx5xyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d6e94318ba55bebabfb06ac12b517997_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2092
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2092 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2072

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f157ab469729d20d62c31d89af8a8d46

    SHA1

    1279ea11ba496a045e7e54a63be245ceff25755f

    SHA256

    4e5a75045e361b7ecf1d70eda2208f633fc965158fdf0898ae8c19fa082a10cf

    SHA512

    194de3111a78821532d6cad2f968d5275c36fe069f334705995993cefe65b329d22f4f5acbcee8b13ea43e548422f342dfe19cd2f97311497d1d7fef9f5980f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ca34a29aca65ab654dfa8e7f54e0db60

    SHA1

    dfb20ba86e45a819938bff4bc3b3160b948114a4

    SHA256

    96c8ec1920a8d1fbb0651d02e836f48654788bfa828236a9c9a96a13e7f92b10

    SHA512

    6be069ae8bba4c93b701a51633b7a1f0c2bd992008b2c9803b639b74a0d140c16f34e044435747f6e45bfe82f2b02c4a416f8e59117380d17cfb1c78d1ecdbf0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aec4f77f92375b2dcb8133c28f229352

    SHA1

    ed8d0fbf04d5c92c830d5fc268e27d8965c17c06

    SHA256

    febb969ca29e432a659ffcd7b06ab318e1d30c0a276f84da760a66d6a6d116fb

    SHA512

    5bc97026579a43140f4f9676953a0ecf5754af53dddcb1b11fbb0c5414ad7b437a22e3e9a19cd3f20ae7061fb392705f087e4b690519d0cb9e241c226506631b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    41ac356e20462001ef0e95f78763a2a0

    SHA1

    804d7baba1a73d0e7a97729ec6c26dad526234f5

    SHA256

    711f24d722af3c1f821311f76dbff991a5f608aa42da2bf2d31b6846048a0dea

    SHA512

    2d0ef79dd6240a90345e024b2c34f665445afc51c70073e6a0230cf228b8ee51c59ecfab4a53142cb23958c5f99713e2d920601e0fc6de1e979b1819aa643eb2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7f772aa15274ae2943f5984dfb89f715

    SHA1

    2fd614badabc9741646224b1845155d1d8e2f525

    SHA256

    6f6ec26268d654e4bab1f5d605bd352d4150e7ec35056f5c1edd0d3a3c00d99f

    SHA512

    dfe4aa73771cb616a5daf25a7bcc0396d866b5b4c9bb7740806e8653ad4c5a6c8ed8bb949bf963e44e163a09965ad201cfe4134655b75678fed4a0d5b621da42

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b1cd55d287a523b7d2c5e27e38becbba

    SHA1

    4f63380b169fa59c644babed629728efcaa47daf

    SHA256

    42e0667713699fe1c9a1ae9bca9f7d9cab7eabd2f073e1f26cdece7169f4b0e7

    SHA512

    f6c9c729fa1ab4e5463b3bd870aac3f3864b4e33e01dc5bd14d4daa0e24e4c9a98b6efcdda3bc442eeb78d2020e3dbbc023b807346525fd6572f67dcf9e3cc0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    93da63daae0c357a3dab70764dd48230

    SHA1

    350422e4784bec2d117c0b444fcb4a13b3f68232

    SHA256

    1e5ad3b2fb6e9bc9b177e45b42215bd17b3bf3b63a41a6d2541ca32ec6bbe236

    SHA512

    2018a88f3064739ace97761c29b962a3d7cc00d3e5513b31e17c3b3e279e54ae9e8745d0e6d9467c241289a8a8a9937f1bd72f8dbea62f5bce51f6cb11eadd7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e79e97bb1702092fba274b83226bc41

    SHA1

    1aea7df4b4bb0c7586311a7158391b06d72c8e9a

    SHA256

    1a3fd67dea473b2b4b20ea2946d74d277fcf6bdcb2944e25e5389c70c1d2605d

    SHA512

    583fdc44e2790cf3467b7beaf18348d17223a29cee56093954750525b76f864148cb4958b66eedcae4dcb467b44e19c00e622550a3464575c3e6e4fdde0135ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    828c6899251f81de6cb4de7328e99135

    SHA1

    e06d602e83c09653232edc7b07fff8e57a5172e9

    SHA256

    0655466ee79f54507b10aa2620c63e3435976687088de307fda2b2aeef0df388

    SHA512

    b2a3066e41fce7c182e34ffb35a790779553ec52e7a37fb3f47f7ac8e79e888f38162ddd5ae6a0a4d6bca64f96b9b0d59d5828e3c6822d696ffef4f41304c78b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    505e470fdd71021452c3a1315c6feb1e

    SHA1

    a19d9edea57184159f5c001270d91e3eb6065b87

    SHA256

    21e027ba247a73a4f94dd5b4a5d75c9cf22929fdeb5894922120f319079027d9

    SHA512

    7acd98843369bbdc844c8c0077e3c10960ec6ca5249e2781a64f157fdc493479acbc8fc968e4e5f0f1b4494ff9da092f534ce8e16e3a45e55ccb7e98680007b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9e1c5f000fc96e1c35bf00b26e1d4286

    SHA1

    8bf8426ba7add7f5375417add4f8f0a5995354c8

    SHA256

    dfdf5b0ea97edf240224bcbd7c2c3e173d8ea335425e20e4a343e6d907105770

    SHA512

    3e2c6deca9ff5bae43ec71e8dda9f026b656d3e1e2b35eda735f0ddb9cbee4c3df41fcf9d2c05ccf124fe6d014504e6e276d7a95884d88be64ed5fb69634f561

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    32131796dfaca29cbe91d4b1760a56ec

    SHA1

    129274c857a03cdd0a494f5e74d9730fb83c8b49

    SHA256

    b6eac386263edc856cbdf7a74d32331ab0b6857e421bfadd610ce9465037ed5a

    SHA512

    03a852ff0954c233f63d9792a43eb7640b4a718603e1e031e0e334b470cc343457fcb93a8a4ccd92a98d10caf64f22c7d3d21b6825e439ccc13ded2d5bf08959

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5cb42bbbe95f02c17f1fbb68369a0f91

    SHA1

    a8810549a6b3196a86436c1fa2423b6e71b61078

    SHA256

    9dd97934bbcb79b3ae0c3ddfceae51b5d6577ecf82dda46b183eb563bb777d72

    SHA512

    166977cb04ff63859b8955a79b55bda09f976f9c08d5568edf64c60d46cf0fb8bd259fd4c8672b44a7708b34407a42beb3095d9848d10f29adfdb83f87dc18ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5b5b6eaa22ad51ab419346646d84230a

    SHA1

    48b7b96ec1169024ec2a97152ebdd824447b85a8

    SHA256

    db3142bf212e19132005256cdfed6c128ae347326aba893a771c3dd483f2f5fc

    SHA512

    7b3aad255d17469bfbc5f91761407def4949c5e0263c66c56cbbf9ab4d4dd82c4a92e20989547f44d6bb52154e0fba3eeb895cd4bdef0002f51b325944db9db2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9fd6154e64ffe6f39475cb61ca1ba9ce

    SHA1

    4d2558303a0065b0301d9a41cfe0c2f1a512bfbc

    SHA256

    58e7e69e41de1f02023bb6671dfa9cdc3badacdd9e6922a52a15990c3d3b70dd

    SHA512

    15f04f778377fd733bea1ca59adf1de0cac0496c763e1871b2dff365d3d34abb2d0939d896e513cd93d71f5d0c31d16ad8c57555625da92b3add46b7c684395a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    984e6fa96d4952535218acea79c35440

    SHA1

    fe26f9a88bd93b829b1353d1e15ab3944b50709a

    SHA256

    0abeb211806f85547a0f2a40fa7302ca269735c32f49deba61aedd3fc5515acf

    SHA512

    f476c2b270973d29671a109572a40b0728669ebd6479ddc49cd80e128de1be191aabaf4497e062eb997afa00a2206005a25372b52041e19bf8671588db13eef3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fb8fd9afc3df4a8cebae5b0fc4086546

    SHA1

    431a4af76a1f6a7636ccb47e858b7fe66ec3f422

    SHA256

    cf49e4207ba9cbd2ba3e78bb8d2c90a19148e559bf5ac61083ab00c8965911bb

    SHA512

    e661d70d9deef6e9df5e91485c964b7dc491e7ded56102aab24c8fdd0ac5542b9361c01d1ecf5e4c2ed0129dc390272aaa59572a1d7b34c4fc28550008fc8116

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    454d4a7c138359ca6b813f080c3e8955

    SHA1

    3d66fc1b402029c4b90492ee516aa7d4bd6733c1

    SHA256

    6f6e07a73154ba3f63aead7af585bce72ceab4f8154b0609a20ab1b2ab9b9a66

    SHA512

    c329b091804acb7dd84b0b4234e2c6878a1eda390c03566d0410e6f5f0763046b06177b27d490e0d6a1ab3decf3c20d21b6eea34d273f0e1983a104a9bb26da5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC9B7.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCA75.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit