Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

da36cad9d7...8.html

windows7-x64

3

da36cad9d7...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    11/09/2024, 11:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    da36cad9d7015c9013d342a21992cea3_JaffaCakes118.html

  • Size

    27KB

  • MD5

    da36cad9d7015c9013d342a21992cea3

  • SHA1

    d6bda89c08d1335d552ce9e97ed53e8258c33e33

  • SHA256

    9aee78ff5d206feb093654f4a59d14fa7e65c15a38cb797eea8c9ff7c3923d6e

  • SHA512

    3bd8b3bdf4ffb682c44de38d85edf296edb4838eceac7637d9d859c3caf28cda08e42b3e469a80bbd47a68a176d277f2011c165cef664e30cfbb5f04e58c3150

  • SSDEEP

    192:uwnAb5n+enQjxn5Q/lnQiewNnynQOkEntDznQTbnRnQ9eaYm60RYuQl7MBQqnYnb:PQ/+TAmYJSa9v

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\da36cad9d7015c9013d342a21992cea3_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2972
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2972 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2636

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    375fb9ffdd7be07432cbcd8e0d1e125d

    SHA1

    a8ab363ff387eb87c97ea43b9c7d47c678541d1e

    SHA256

    c1d450db75a49b3811da7c1d54a93aae31bb0e0c233775a1db05016694ca725d

    SHA512

    ce4e4e9ad24fd8a6008e7163d890af9897419ed8ade08dbc82a8db2b8c0ac8ed33633c14de379aa62dbe19711ed8df14d9f8705aabd1b5b2978ab3b595e03ad7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a665835cad9dc6ad0f90d0a9c52bf99a

    SHA1

    8d3f4998d94934958ec214be4db73e0f70829c3f

    SHA256

    a99466a52509fc4f9553d660bb14b69b4e88eacc3ce0af12c8a54ba34a6c0e90

    SHA512

    f2966013483c23296ecebae987a4c61b2cbce63f468eb747ebebf1f54f1019ea03061cb6a3456557bfc8d6ebf5ae3b5820319cbcc3ca8e574ff9e173991b6f98

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    04ad7a80dd3567068ddbb03c610ff404

    SHA1

    14e308af18c76d917230fba167ac8044f9ee667e

    SHA256

    2bf4a985587b43a56584026d5bebac147b655e7d1a7d4a6cb4f4bbd732d0129b

    SHA512

    d0e7c1464c1578b14a860bf1788c25c71a8a5860e4494effc51a47c8ee93907c703a98812dd3223faf0fe3e0fe3c5e25d847c9b14d92184f94d0c2cd694ee5db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eed77ba3463b06923ad725816df4f167

    SHA1

    07e70ec5e79394fd6096232ffde35620c5953644

    SHA256

    4a8227f91f222deb582d51bede5c1e87ea4b391d88dd657ca9f63cb27488a1ab

    SHA512

    dc4c45eae5224c4d9499e31c6b210d31785be80a586d9c1a01b0b812be0ffb19fbed9a11d194be42fd055d545eab17086468e5a91c6b2a2ad552af9a7b8572d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1155a5d4b8c47230af771156adf14736

    SHA1

    e1691d0db3a69a1832dee04f0de425159221696b

    SHA256

    2b60d2fe47c859f4ef7e14c228f45c911a36f6c44e2b17c5a3c996276bf8dd73

    SHA512

    bcf97154d484ac00032567ec60f01703a7a1977fa43a06936d885378e58fe60d407373bbfc0a9556bf2b217e9bb7c97de582027607add46fc19c1f56645d6711

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    96e9b2fdb1a5eb34d9ba2c98203c9ec5

    SHA1

    f32180d443fa90ea47078dfe4677340a5cce178a

    SHA256

    349e5f585a214170c23f809693b03b501fb4cf55c30fb486c56a9474ef51f6aa

    SHA512

    214c658b15c51d939ab5325496008215f8eecf368806a133cdd60c7fdb030468a981b8293124fe938d3314ffa5f45e7ef6768d0d6732943a4b91e23dc75c1e2c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4340243fd7c8041d3343d3a80dcbd58c

    SHA1

    e7a13c88579a895a493fc2da0cf668f71c973121

    SHA256

    88fb544d34f1e65c6a72d56e04bc700d2818272728ac102021c0b4798d88aa8f

    SHA512

    032cd247bc85d530fc12878c4fe4aa708b55f4941ca96299a761bcfb0d178d0b78664a35622f54ebbfd1fa04f9758b43ddadac99f40bb66ba4dd77c4d3f125a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    82887b765365d107e2f3c7867f58a80d

    SHA1

    2c919b792e7e7ac21b6277974d8c50d43d6a6474

    SHA256

    0ee277375cadbd9806bd43b6b05342348bd8399f20aac47e56ce30c752d00cde

    SHA512

    26ce1bbf1f0d41cfea9efc2cda5a0615a05c88128b8a680569c588c2c0fa367f69d9b2836d4165341437fcf55b79fa0766b040eabce74345d38d7c7f6bc847a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    734efc93444dbc3456a328ba316ad205

    SHA1

    acc364d63605ab275361094f05b44510fedcf23d

    SHA256

    1c9cb328480bcf24cd3bb51012c077dfa335633579ea092e55acf62a3e71f1af

    SHA512

    4fbef2e4900290a87ee35a92174dc5d018d20bf9271d64997aa196fb397cd786dcef4dee03fa5706994af552789962049c0ad875e5b50c3d415cbe753212b595

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0eead70440f56020f5e5895bcc5880b5

    SHA1

    40b7b68c3e2b621146425fe7feb5c40508a05847

    SHA256

    917924bc3f969326f7869367f3727e147bb3c96d5d36a5fb9cfcd76e66f18aa8

    SHA512

    9b9b44aa38a4e1ed67eb8f99d34c5189926ef85b425571dbd229d582da4358c411a7e81bc74bf8ae01265a3f326b3bae31cae21199b28499dd7c59c1cc2f09f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9cca561a4b3f5a91c1fb5d31bdeba9f5

    SHA1

    d26cc2a7e72eda8be7b34feb1013795deaa18775

    SHA256

    f00cf6fafc6602aab18566d711e55c05780b2ee210e2f24313f7c25256d4dadd

    SHA512

    2e2cc6770a079946743f85043599399d7f79d412ad2954635f87206c01fa92ec9e4529b25f7539da3dc60656ee9e3b98e3cc5c53e6aafaf36ade976f08acce0e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0f434bd00f61520115648d7a35bc83bf

    SHA1

    d8a49fd7130859447f5a910e73ec760f4962b368

    SHA256

    d0c70ae04ecce71f2bf74fafad9865e3fdcb38f4bc5dd2be3ad73ebcb720c776

    SHA512

    5b0f72cc078bc69dcb566f32ba66784d9db365f676d58b23947a8c98d46c1c4fb7ecff37bc54d0f2acc67195afcf3b364a7378a7357e35087714aeab738674c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    15686574231a06ea8f52759e35675e68

    SHA1

    07baf85244b6c07c391926740777776c5923d7d3

    SHA256

    810fb219c8e0cb9f9043c10f139283756c56cff74a7421a2a7772ddb3ef180bb

    SHA512

    ffece273cdbbcb171b7191bade5f20a7f80654bae249ee0eab33bbd5fb9ed17d64dadfb3935dddd19c91a31b505ba193c09b2946325c519f8018c9af1bf18649

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f5d97ce64a8e7357178813028877aa79

    SHA1

    e2034feabd37cb5b19b90a14a929de77d014da1b

    SHA256

    319928af97573f23612c0affa156f060275d7e3a847d65c2bb34e51dfa93eac8

    SHA512

    1db6ff911928156397eb58ecb8e51fb060622c3be5e78d3a54054335921401d28aec6bd3f137934c6bff3c0e658253405a312f8d75ed7592b86c36bfdc1fc686

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e3a6523ff94f68e6ef9770092b271b85

    SHA1

    ced32d476121817b27401a4d93c55b1ce3cadfea

    SHA256

    723dbb6f6b1b4ea439d9a58693e6cadc30c33e14a40a0f8588be3616ca7bcec3

    SHA512

    76b6bf95bdcd1094b4a688591701eea742ffd94c954e59a3e93aa7782908dba676fa15cc1a7d6efa890b1f571d9c76e7c8c704e6c11b6c59d9b877ca96ff6381

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5da25c4a33af3e151eecb4dd13293784

    SHA1

    790ba96301bd82e4088fc9f63095b19c0cae2fd5

    SHA256

    d84665c1b907a3f78c2e68da1be47425774574f6c3e78f2d21cbc1d583fe7166

    SHA512

    dfbdc81b8b0ff4715bcd2c7d53aa84a08c28fad55e49def8b5ec387e25f8e728a5a15267b2749e62c7c9f61ca297dbed1287eb9007189c4fd2d5e94bb21eed16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5910d52594458fae9a1fb2ca66daf0dd

    SHA1

    9181e005c69df7bd98887e5ae7759aa2d816c025

    SHA256

    aa87bbf87c572b4b83375f948e994bae9e02214cbc2d75ef243e7ee273354884

    SHA512

    a5e0ec5532d47342849db0617df01177d0cdd5d7518729fc52582b477afb10a96a5fee2da0968d39a246ad9a8035ae503abf8ca6d518f97d0a5acd324c4ce006

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a68462ecf3e81e6df4a714e456eb038a

    SHA1

    81d222b0a689bdc1c3997e01ff2543ec183a635c

    SHA256

    87838935f63e256bc51832f370749b21daf71c5ca9583a5037c2ea0218cc9db9

    SHA512

    add0447c882007c5faeb4e7866884e68aa38f752aa213a18f5ae8b91793d6dd28596f364ea9714c54303010a01f0b47cb3468b16eb42c6a618591566e71e48e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    54d3fe3bf4668c5ba6e8b926afee671a

    SHA1

    69ed6cd82358b7e979210b74cbdf304403600eeb

    SHA256

    f068f78b816179412760ca60e946853ce82868beec031fe0bc15ff1647397a63

    SHA512

    836332682dc6469f6bfb496a26effd9d031294f62c6b6dbd4b11c2abf3491cdb3d0e8de26b7817014827c583bb80254456ad601b16be2a37f505cd5eff76159a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabDEBE.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE131.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit