Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

dd9bb97f95...8.html

windows7-x64

3

dd9bb97f95...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    13/09/2024, 03:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dd9bb97f951f36e9c803cee3f7998061_JaffaCakes118.html

  • Size

    27KB

  • MD5

    dd9bb97f951f36e9c803cee3f7998061

  • SHA1

    03fef1d6e3375321069d55f9a0ece13fc5bf2b76

  • SHA256

    eaf4f269c58ca579927c4013f7c0af0f60d6d7032d7e050653e2f0f503ae76eb

  • SHA512

    da7813f9226de1d5bdf761d76b3c5df67f2e361af35bf2d99c8655ffa45f125f651f29d862188adf6c2405593cf6c7ff02b4df4152468c6a774687090a2246b4

  • SSDEEP

    192:uwTMb5nnCnQjxn5Q/+nQieFNnpnQOkEntGYnQTbnVnQ9ed1m6uD3pQl7MBlqnYn1:uQ/VMPq3ASjUg

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\dd9bb97f951f36e9c803cee3f7998061_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1444
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1444 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2692

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    369641c65f4a4c9b35509714e3b0bdc9

    SHA1

    a06882278e0eb2b13617ca17837d2c9082736def

    SHA256

    0b031355694debee1c38bd7c6329c2e9ece854387ac831e9b4c0c9407fd24982

    SHA512

    9802b3ffc1997ceba97739faf8e59340765973fcb47107cc406a81153e5dd45137e734f576bb0d74322c4df30b355622b8f089af0cfc6b7a862338a2ca8895bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1cbdede6c927a230ef1b07667d9b0b81

    SHA1

    bf58575cf738af51832ecfd9a972ec14d066ed96

    SHA256

    cd0637488a23a37d05d1ff7ef1f8e1e2b965fc3b035f6fa2098f7bbd69edaf3b

    SHA512

    6fb1fee0417b1ef09ba6ab5a874aee71ba9677069eec2611fa1e405b1b0c93bd8ff4c4c10f82e4b6a9230e505ac02a24279e9a914c62abfac5d99e9f2566fc61

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f03f9cd8d2ae8b5de7b44dc2b80be20

    SHA1

    e0be5f59e0d1a56437443cfc81c7497ce1cf480d

    SHA256

    932c2775a0aeceb984fcbea796da49b6d2b5f57dc9507e2ca51ceae47ad40100

    SHA512

    a53cf53e9ef80bd32cf7b328894104c6e0ab4a3429fdc7de6d37273e8750d7207d7594c88b7b435b89957ab43a34f4ab0a67f8287a0d3947f86c5c2dd9ed23b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bbb1fc0e93724a58112c2e73a8ffd8ae

    SHA1

    4df53580272b03d8ba52f7429cb18961bf56c498

    SHA256

    8fa61a9c36712fc6cb302a7bb07d612db7a87084a4527db43cd86fb5955fcc5a

    SHA512

    020fda315674d4f06b6817851ed9b212f7a4889dd189f6f7c464d2a9c89f1c75ca7e72c2ef68a0aac36d56ea65639c3186a9c58d850dd6cfbf2d1504a0b7de28

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    70db8a81be8fa5cea10f186bcd4afc5e

    SHA1

    c8fb42c6ea25928ae467f3692caf748c2e0d48cf

    SHA256

    611a48887e9b5ad33cb17e6f9704ea3df660ba20266f2c9d1b68f784347b7332

    SHA512

    8793a1d36b2a8e1f8a60375edabdcf39204bc5d920299eee8da48ffe72bf0f1470aa7bf21e9a41b597813f8be466de551e490b4559e8592ffbcc874177839464

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    46c9e2655ba68b3672326719417d5b34

    SHA1

    4e862daa22f52289dc2142e206aa5119f5cbefe8

    SHA256

    a0db8d251d3c8025dffad61b99ca45db39738632a948acb2fbb7f1b93e1bc11a

    SHA512

    60d8bd034538e2fad933606cb08392e148ae036b9e1447864e439be0250b1c69cd0e7790469996d1829084e43571d2378f660d8409c69e1641b1f6cf61b8e08c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d8e262abd7db3be2076236a897ac4e67

    SHA1

    bc5cdf410c856ad053427a8626f1fd632d530b7a

    SHA256

    a223a8a659e71cc13f1f7237ce6d0fb5415f7e38468bc3fef5df0dcddca13e67

    SHA512

    b8b685b806dc8e7cc11db1eb927bc67108c558a941bbadb57ea4ead1423a89ac8095f78276f8b95677ef383dd809ab2df4e7405954976b2a349c54dfe33fe994

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e3154b39bdb7f70bc133f5bd6e9f2147

    SHA1

    1ab5d19333a71e16f4a9526397185fff5b5e3c89

    SHA256

    0453d9c02116261dc392cf663c287c3fbceea808669d91807690ad941d01a3d4

    SHA512

    4fb71406859af77447b6582fadb85ac04381eed819eb6656bccdf07aa11e1d102dd247e3e1fb30f9ecd9f1c3402b6557357fa577acc3947994400660ad0d8e79

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5879261457e7b681099a2fa19cc49d22

    SHA1

    f58ff6d29020b6e35fffc75c920798e12ee78c47

    SHA256

    9aa047de32edd438c5d663971045edc806860fe73da59ba51fed0018bbb83388

    SHA512

    8d6b6fc266802300142463f0369bed06a1471883b692c265324e417aba729970a13ebd8f476b17f986e97082347449869d619bce7f2625ed1d6b613cffd49ec5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    95dd3be01c6c53a7a25e97f515683379

    SHA1

    63c5307bc48c594738f9b01b13d9f83747c3874d

    SHA256

    cd6748d48fae8dd9fb08b92512d849c68ca00fb5bf5665edfd9e94d2cbfc9b19

    SHA512

    13c4391ab09009976649752c7f655842ad12e74c4ce995adbb2c14aa6043ee0fa21a69ed9d517924035e91187a8209312dff9b36518f33a7f472d71372f792a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    89be12eab3120742e0e71cdb165e2de2

    SHA1

    f8177bf8524915eb5c43a14b68ce468b2ffa660f

    SHA256

    1a3067df80803cee1721d5485af09e8e7072e5051567a09ced67f03dc1a50355

    SHA512

    c142bc9fc748c81b996aaa06f3d0e2cbde61f1f050995abc4e3fc148ef1ff2c0479fc4b2ba7d92428ec9833fb71ba7af9e935a4ae1b8ccb7a2a5176f82c1ae0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a0d0ddca89372f7eb06fdb8b5dd5d616

    SHA1

    e863e0106c8072c28c1a540540b9554ed696370f

    SHA256

    55e2a2c5ea27b52823f267d66b74f3c90c43e0a0b26b4610ed52d6ea1ae43be8

    SHA512

    3cbdc009e0fce74cf68f4a2f44f67c9c6d8d48f9e21debc239eb06b21cf9935db785c9d272a3fe1e5da67bb97c3d3d0e7e8c6a99ee76ef702851d938ee29f1d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    87dfe8217c6cfc8b770b0b5c93364cbe

    SHA1

    58036e15e43827d907971c4ab11a007fa837d5d3

    SHA256

    315ac34e222bf2856c885f5074a97eb1e33baccc99a64898c43cab6147c7837d

    SHA512

    8e3578f182781a868682b03bdea7759f67cb90f7861e4d5958b6652e13445c3eaf57c54d123183a0b7870a2dd6fd03b092eaa169f144fd51c8b8a11da1838c2a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ed4d6cc756ea58cfabebe480fb25da76

    SHA1

    d93b5958c0689e2bacaf7c4bdb161013ab31fd02

    SHA256

    a437371009ec18a194fd75bfa64e5c229c29d72952ce0535c1b1e9e86c336bec

    SHA512

    6ad0c1e75cf926c30b6a15b43d17f5ecf4656a24361a4287c2dcb63af3d2239a5446f59de298b3606481d8450b27afa5134fa346162697b114025dd722438d15

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fdf8671c50e0dc612562338e4029d20e

    SHA1

    e8b87f86293dd569899dd9eec6f022e848b51448

    SHA256

    d72c56538d38a1fc424338d8e04040b3adf51427906f3b92b75d7dfd8093a78d

    SHA512

    2bb89ff9bff816642cd578551e5fb9cf18d415ad88e6e3096e405226e7b052b066eaa084b81583f1999edde0ddeb476653145bebe0c97e7b4bb36d1c959a3527

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    92770674afc472e2158d8bc4aecdf7b5

    SHA1

    d9b1a115897179cc6b8b64e7e45a0f4753e20e97

    SHA256

    8cfe759be6999b675305b490803a0f1aa4e3eb609a04f55dbf83c4752c1c9aa0

    SHA512

    ed4a03f255f4ff196075828659797ef5524e5a8749c887918bad3bdfcb82a2f2db440d923dcef6ddf0817e5a6aef4e3301e5fed2de45426e91d720632ed052bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    544d8f8d7a35dc77c06ba0a88135f6b1

    SHA1

    aee27c580de24c3096f20e5548652b84332c2dde

    SHA256

    da568fd7794413c10218ae1827748df424909a6ff839d06b67d0537519a4f158

    SHA512

    1f252c3e6483539f27286791e79918e2d8dc5d8c21bc84850220c8557c1d6a4566c05b32b031328c3d01361690171961c280ee2b2cb114e2f716218c92c6f962

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eb6d3f38b80352dfdceeda3cf759fb62

    SHA1

    e2ddbaeb867c3147362e651dd066c8867f762e9f

    SHA256

    61fa6a5dd1706ed8191584ef3ef910f70857a43314f10213fcb3b6c862733a19

    SHA512

    e77334f18d168c2e949203be1d03a74c8a2ba3ee9022a271a7b30377ec1f5181cfdc5ef499ff3b6b253631708fd0e06e3351af3f47b8169fad674c0dc49a7a8a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a588d2c4112c1ed6717b179e09dcddb

    SHA1

    596af4e565a9d987296a65636b8caa2b0ad3f8eb

    SHA256

    cd4c61306a2099e129c209d23bcd2b79d1c98acf62780c393af73de6b3accd5e

    SHA512

    a6045b4a96a2c2fe66fdbfe88f54c4ff3f5346cf5717e7125ed756e3740d69f3d09be87e0736bf2872a179b2ea697ad8348d28111a4807214294b80b8e4690f8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1815.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1896.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit