Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

dcbb161be7...8.html

windows7-x64

3

dcbb161be7...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    135s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    12/09/2024, 17:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dcbb161be73b7dc41328783390b4667d_JaffaCakes118.html

  • Size

    23KB

  • MD5

    dcbb161be73b7dc41328783390b4667d

  • SHA1

    48272c3a005ae4e20c9edff8677cd71465ca70f0

  • SHA256

    0f18f47efcf4c42eda90b6e5442745bc0fcc5654692e45e3f3e08f538f7beae0

  • SHA512

    09d5016bf0ef414d34f8a7ebde1d37387626c3111543c61c1a7738a64d52bc2fe7f8c3cdc2e21300f77fce3847d7f63cc24d13609eaefc14987ad07aac8691a4

  • SSDEEP

    192:uW4nhMF6jI65b5n543x7DyGIGGP8wznQjxn5Q/XNnQie7cNnig6nQOkEntlBman/:XQ/cihe

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\dcbb161be73b7dc41328783390b4667d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2380
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2380 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1616

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3e36b76bb662626e6de3ec06da99d681

    SHA1

    d24938ab031acc5d38c883ac0caec0eed742e908

    SHA256

    26ad1f5a88281503bcfb71f101ebf807181c15b82136633c1a26e78d2e388656

    SHA512

    6a6e311eca0bdd04a3e8df31a58f684ae58bceeda7de7246f6b11e0b326959c60ebce3d3e8d97929fd55b4797938f3fb0f71de92da8699f94196fb559bd24802

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e587cb01dcb536ae72f059ef694b56a

    SHA1

    8c2c71e9ce189f94ce5505ebd11b22ec64f31df0

    SHA256

    dacd1cf0d7d62abc17d66c596ed8f36fee2abb623dab7217a0350c05a9995297

    SHA512

    5958732553c5c6edee88b6fc942b9106bc0b8d99e3799521c30fd810a30b08a91107d86cdba8f2e95fed2bbb7d2f49d17df40b2c7a158d626d94566e184ca231

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc54ff29227d716b82ab05eda4f81703

    SHA1

    5a0b559d642194bd517eea35c59ae328dafa76ad

    SHA256

    c7e6294bf57cef606d52fec4c1e256a957c21da724b815d4679368293beffe40

    SHA512

    275e8bee74c97a301bab53757a1dabac63c2a176d380cc2ff8fee1aba3c456cca6441ff932fae3b7b9c5c9b768916169b3a70a78696ebfd00e0f4f88408d8c3c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e52fd1e06dbb09be3884fe0af1a509f1

    SHA1

    b03d8ab6f54f371211e4c6c9192fca6583b5b93c

    SHA256

    bdbaf9cac650dc2a3d02b74e967c8470c89474b93ce9176b50664d08df5f3a49

    SHA512

    c51331774f8b7857e2586ffc6d22527d3307afde6dd2f5f2199b183d5cc41f7af81ab2a4f8cfe93563d60cba9c81e5544ad4a865e66c2ab1463fcb3ba41c76a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    61c97f6e055cd4825883e5dcd23a494e

    SHA1

    f389d4fdb4f9afe5ded86e5edb2b0b99da5dec5d

    SHA256

    9c47123bbbc19715b055ea82aabf55b6106df2175470a4a2257307f2c40aa82c

    SHA512

    262164285f91e9f866b7fa4d664ce02fea772eca0e3f8aa6ed902fc1e3ff6703080a0591a6f1e96f4584e80e2207baa5894321a059beef9894c76cb880918752

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f007fd5fef5e633603e33c456103c008

    SHA1

    591456c7130cfda714132c767bef95f3e1432190

    SHA256

    9f6222c2d66ab9e1480fd521ea59604426eb6f01ee6e146607e99cde587027c5

    SHA512

    e9df257d0eb2125cbfdc8db0ae52127d6db890995f5f63baa0797aca7ffd0aa8d8beb5aa4d10683b5311a255baa73fa4275cf0b25287e2ce7577c595dc545738

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bba9497a972a16bf03bf0f7841a7cd14

    SHA1

    0f67a2bff776fdfa02b410817ad071b35867b88b

    SHA256

    c6af440b6e2985b952beaf05c72d4a5bf61ba3988582a9434609f290822af016

    SHA512

    94655529c4fa198091809f64f151a45239392b35fb7bd5d75b53d4da99cce234aac5407bc3da301b3537c98ae3925d5d8b779b0457bfa1afb0eda8db153122ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e542742a811370e0c7eecb26df17fe8c

    SHA1

    7f012772aa81110a35df66f900601365e884fad9

    SHA256

    2290eab33686120c0afd521fd6ccec33f4dbbc50e076303296be53ccdf287c16

    SHA512

    bf61a47cade9b425c38e24c4d4bb0bd31e492ac601e41e4d6959ba2b13dbcd106d6c9e287062b68ee48aeaa78169f87ea1f286e91c9ca616a7ec556f3074a8b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eb45627ab01672ed3c7c0ad0cba7fe7f

    SHA1

    02fdd8735351eae756d977028931019dd25d026a

    SHA256

    ed1baa31ad1ebeb9fc19d2f44f3a069c1bb7adc6e869d0352cba1b1b46ee74ac

    SHA512

    f22321997cf84cfc0210592b48aa5ae089b6497faac3625018702fd9fb7d3b3ea6cf9197853bd012fa65a0c0fa32783cd8a7ff746ed482435efc5be8a0eb46ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1a05886ffeff0afdb21846c4e48ed27e

    SHA1

    b94f62c78bc41dec6b4025cfe99dce3588e0018c

    SHA256

    4743abd5cc6c44689bdcf43cea613208d10caf21e6ac61e9380cac9c6bec0c6b

    SHA512

    367067562806c18a8fefbd6036158fa74ebd15f1138b92004ae04d9a37c4ad9cea5fccd8750512a5986f835a7e0fcdbfe0ef8c796b0063308c4e86f1a94c9876

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    96693161e691ba2c3196c6f9824bc702

    SHA1

    90d9afb076befbbabad019d49c2b8f9bdf851252

    SHA256

    a8823256a037f14fae9a3d3c32f33b86cb0936bea1da694bf110d4e84eb9e395

    SHA512

    7af1c2b2455d8f9fa2824c6305acf6c1fc8a2a26fc74a35f888b803f90c1d5f42b28226a87be774ef2d02d444e400f1deed5263eb56760c4da55488b81aaa9fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0ec8f0c15e39187c3c3b5386800f60b7

    SHA1

    5ca646bebad59bdcde4d3b1bab2fa474bc5d8608

    SHA256

    27f1e4215e98f1157cbbf5e57684f8c79d30e1b59ce34a0eece3606c8e5eb0cf

    SHA512

    ebbe30a4392fb56044cd70a591b62fc556b6b29e6f5891b11e5375be70367bfa77230391e3789087a383e2f01e35c3bc0a6055a42b3dd56bf4dc313c1a9a68b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    503c7ce0bf26bc78cedbbfeb429f730b

    SHA1

    47c1443fddcf8bc06b5fcbf0b697614672224d07

    SHA256

    d66103a5f40c7ffea3247a2a4c5fae5f8ddc8ed35387fb55bccae00d4153850b

    SHA512

    b958be8856a7a661ea6a7f3d0f6ee81b138825a7e5a4cdfc21c0bd687d9e750a3a81b7e5613439f35717926dc96043bf2a9c252006cbc3b96fecdd0d382162af

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC37F.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC401.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit