Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

e0baee4be8...8.html

windows7-x64

3

e0baee4be8...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    14/09/2024, 18:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e0baee4be82d8361798bb400ae853fba_JaffaCakes118.html

  • Size

    27KB

  • MD5

    e0baee4be82d8361798bb400ae853fba

  • SHA1

    16b56a44d477ba570653327a55e0d165083c3f8f

  • SHA256

    0405918401cf3f838a92df5b59391e93db42e9e9fa96ec1d10962d38efcc6ff3

  • SHA512

    462fdfff05d2b230bf9c42d58e926a19f98cf57e228c8cfae306c5f20c269cad1cb2363ccf992a84b3888d3510c0e3843d6480584c1c5f36a51a8e07e18eac83

  • SSDEEP

    192:uWTmb5nmqnQjxn5Q/+nQieNNnKnQOkEntOwnQTbn9nQCME6RnQtGIMIAwAcwqWMe:PQ/Zf5xQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\e0baee4be82d8361798bb400ae853fba_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:304
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:304 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1440

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    68688eb1310517463610ce47af67134d

    SHA1

    e3d48571578e67468c046492b5c1d9f08d23ca0c

    SHA256

    9ca15cdbe1e0caa4b810f4116f654df88b111ebb83a4a99cf51a788b06910b0a

    SHA512

    86672b25917fe3f4eb8e758d0ca6096218b976445814536620e69a58726722d375d7bfd1927ed1b063c4578fd1f0db48b65cbe3baaa88e4bc4b07ffa3524a10b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a25fcffab917fb6a16ed68f0dc5d4a8b

    SHA1

    5e118bc910717e10dbead83e94f539330ad7a025

    SHA256

    337c4e4dd48e8bf8a1368fb545ea2103b570bfcbb1c22a2e4564ccd75c63c9bb

    SHA512

    e1c7e95f6abea396f371badd74a8a978e7eb4ffca3cbed69d8bfcb30fb17de449a53b443a6f6a695a5f6772d3bc4840e9a93847c54112449b8ec0e8360eb2d35

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3aa2194ff102a7abc1786281cafe8121

    SHA1

    5b3fbab87c38760356d5179667d8c1cbd8c19681

    SHA256

    7f0773edcbe4b09d8cfe2da182c1fe74d20137010e18b178bd60378e53818033

    SHA512

    f2bc945b6be4dd3a2f163203568410ad7273972515a14f3260d31f9e630e9b38ebe9f8d0d366ec8af0c6ad1f2223b344f9ad7d4aa1a41937cf71cba8345cfa17

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c9d81d90f595ac5a82bf85f8f16f254e

    SHA1

    9a0ebd3aafaaeb5be8030a311602d93d65962ac0

    SHA256

    f74248ce9bf1b0b83bfa0c52c8b63579e6639734342a11f91b0228dadeb64f23

    SHA512

    b644066602999fbfa7181415821be9e36e8f3352f75bc3ee49eadb15c990cc919af04b05639d43c6042bf9b5301285b0f3aee837d3364827ab7c6799c3fd8c11

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5bc9ccce60b82b65dbc6f6dbb9cd1404

    SHA1

    58f9be67a687eb33f58d9f64e7ed3fd2ed22d179

    SHA256

    04dca7a6d5a14cb0c71767275a84856756137bda2e793c106b2ef33cecc5e558

    SHA512

    564fcac232842d5e586178c385b8ff1848a24d0518c2b48ca5128c1ea636363c6785242377135d9a20fd6a4abb311b0b721a7b31f99805dce124ab26374cc8eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    00641e6edb2d930ac55bce6e047a45b5

    SHA1

    84a29e093230548d4df2f2288328d7fff720b062

    SHA256

    c267bb793b5d5dec36e7659a390bf3f2fc89ef93c9b9d8f5f04e5e79480c6875

    SHA512

    312b9cf19b2898ab1f6c1bd95e0dcccdb65d49d675e9612e6227b01fc7adf5408739af120d8c9c75cf0e421423ad088f2644dfc77b249b31f95dc3c841954b46

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f61b396f26369d08f4e4595e04ed3c42

    SHA1

    25bc9bb41d0344aa9b4bb9452e407cab74b5ad8c

    SHA256

    567756157fe876ad643723f09419fca3aaac281aebbfd5a966885e5556d42335

    SHA512

    4aea326a2044f78fa8763eeabb3a067ffd429f1166d6bac66ca70ae9fb9be193db55c919832d2cff7bc9c1ca95bc755b807ec91e16648381308fc0d52bf9714c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d8d5f117385068a77d8aad6d50087fd4

    SHA1

    fc602626b84ac443f05d7a219460df579250092d

    SHA256

    204d51bb4d01f618a50408e56391d300cff76fa6a84ea3906850a063058beaed

    SHA512

    f72dd4b3968582eae3abb6d10ec5a0b8f728f3a902f14c7ad12eaf1354caff2e2d734828bc8a2016d7f616b5c1b19c853fe682229201a85f46298d58d709067f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    382b81f15acbb0b1e3ee61b1d95df161

    SHA1

    ee59906fb1a074a2c81502b6aca07cc4314cffde

    SHA256

    c50bf748ec5e0c6c572dab3e98ffac4b67fc9e935e0e9a6e62c39d476101bac0

    SHA512

    3ef4b589fed77f9509444b36bb9cf4de23cde2992be6e9815812338a8b8e3bda40e5ce2e2f5a9f214bc231915bcefc55a2ea24f3529cb4cba698f00aae9c1375

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0a2410098c3fe443ad57ca43cd80581c

    SHA1

    4e04bb2af4dc72371334e602778cfce8681047f4

    SHA256

    6fac2b2cd40edb3e687f6db89ce908c336861a9b3e4359ba63c127f911b660fa

    SHA512

    3b931a6ee96a02d719f50d1424fe093d386140edd2a1954701efbcf4d39731f6ab31158dbc41d91a23264feaee2baf7d0c4494b5b22587b4150f9f42241b287b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f8c68cee41252067fb18b58f28b84c27

    SHA1

    760e644e86a7d45713b1d3daee05d5c318a51c97

    SHA256

    8166d9ab487b9be2531e1cf180178db92b462fff9bbdaa3cc867535b72b54d1a

    SHA512

    676855dbe3e54e271187804eba276d5430b1d446664637219a0c04bf08dcea6d7f610ba5d4c724a9252cd7d05db47f971e3fd37fefabcd6ca4f8420dc9355d63

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b3751ac9a9612bedb5d9527ebb8227d

    SHA1

    122f3ea6153d7a9be9bffeb3832b5d7c46a1fb67

    SHA256

    fbd417a7be5024fbf3fc5c0b14a61b100adfcd162fbda3a0221e7e8b4f3f13c7

    SHA512

    81da67c80d7f67f11199fbf003a323e285ce98da0772595ebfba1a052cacfbfb3863f722028c90876da4e7ae51eea11962f49b7189e8bf89cf755008966ce978

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    97f76e7bb014c49d690277901d4326be

    SHA1

    c1a5ce6d9bc99a62b2e42835a0077d81cd17df26

    SHA256

    253faf1300a6a74bde866531d96cdb2c2c64b18c0d9b7d271edacc06357ba84f

    SHA512

    c8e34ee4cab50bbe8a2c9faaa41b25bbbcc8306a53c07dcada7f873c06eb85f4c76f72d308052206eaec924756d2c5d75fee2c58c30a7cf39f480eee7d3c3f07

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d1efade59d71beeedcf2c0a5c84d482

    SHA1

    02cdd085844f3634baf1a73d56e57ade65433ba3

    SHA256

    848532f5373a1c2c9eceaa60b35afb492f014d1b19c9003cce604a402295201d

    SHA512

    29d3924728114079ac23456c8a511a63d5a069885e756ab97f3389045149da3d3b3033679d18698cd4529364a64597510a77e8932900db9566a2c447fec807d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7ccf4a840d43674bfbc5566f3c573a4f

    SHA1

    d9203fcf014103a08b6bc45f39cee88da00aa502

    SHA256

    aecff1178b8c0f6bee4d30c7f3b8b9c22c5d2308ac1fe5522cf3254ece98aff8

    SHA512

    bf25bc12ed9260407e8e00d5b3eace132b1a63f37f538fd1d81e3ab24e51aba134bb5d3fb56dde142b064aa2677eed0a728ce693d15b5068070ec75910eeb511

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    977cb54a9eec27149f1858d7f85c3f42

    SHA1

    5fe4e5bd9b7956fca4c960d3a735162382197d22

    SHA256

    29099e89cd9caa3c39f68345eca3c3fd508a899f266b23b01e6a5301c99b6e6e

    SHA512

    d7218b3b0cb1308c800a2396e07fb016f5e3a1db30a5fd963125f6d41a074832da1c4a9371bdfac72f74f2d88354dd0bd5897de06228b3217728048c39530778

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f1d8c43124acf5adce1e56b35947cac2

    SHA1

    39c7fe1b71f190307cf9fa7a901b3c1222042033

    SHA256

    299896f6aa1b3c7cfb528ce4695327e7e14f5834434efa6e6ad8bd61be0fce13

    SHA512

    32c511e10fa0cabc0ce152cc06f6c69349488415fb7715a6be41c1980b0ce83ffafa5aab09f25b4985bd07b87c1f5dfc85b2d957978f435a1e030e62f4f8b5e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    374a0c07d7c9eeafeeefdf025557737a

    SHA1

    281336b0617ac7575e15af20dd5b1207f250f6a6

    SHA256

    3e06c71b8c0c030f65b577eb8a81afd31837870e561dace0384e746400bd8450

    SHA512

    4238b67e428080783a04196ea51edc4ccd8a6f120b39e2411e091011d819abcddff80caa99f29f8c1a88a9c60b71769692036aba91647009c1b074035580b4e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5c3cc02c3997d19d6960e65295b17eb7

    SHA1

    93d3b9db74ee23549641f6f44e32a0b095599d09

    SHA256

    de332a1b7167d115c33389eea38df4d5ae749d7ef0c8bb8b2702b574271e4a32

    SHA512

    56d4c578cfabbb813a41d9744f50f28bd3d77579e3a79573a5289e65cb38b6ec7f0672078e09c299495c2a15eba52c71183344516247e9296af725aad27db7f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d59a192f9cb57452c7e2cc50bab1e885

    SHA1

    878f4109db8deb6d9ed8189eebc1673f9e63c892

    SHA256

    32dccc02df82bfae0f0b391223aa1c57a6de0220f74f63d8af8cc807b2dc246d

    SHA512

    c7cd9ae38ae7978d7aea4bab3be3bc0f0d3ab0c63968f435c9e934841c09ae0b53e2fe6caff5c42d317cbbbeace6ce7c1d8f96a75a42f7dae2937474b77d5f79

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    34b30f64ceb1b46436ed721a79c5aa3e

    SHA1

    5b57e275559a53d9572d0b738162192e4933bcc7

    SHA256

    8916c8e278488c30f2dd277bae838d86624d6c63939fa725f7e6b24938c37e30

    SHA512

    3c2d5a3df89d88c36c38bee1e41d7438c74c26d1511ef46e23b779c599147dc4dc8b885637b5db16f236f57d591c9324379d7b9dfbd17bcb6821638795595aaf

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabEF70.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarEFF0.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit