Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

e19c8f038d...8.html

windows7-x64

3

e19c8f038d...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    15/09/2024, 03:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e19c8f038d823a082bb57b94b8267ab8_JaffaCakes118.html

  • Size

    53KB

  • MD5

    e19c8f038d823a082bb57b94b8267ab8

  • SHA1

    f409c0a6c10ca820a442a84009f4e4799663e297

  • SHA256

    4360b948251ca5ef8ebe52f6c5e0b36e5b56f830a7d2c39b6983c0967369bc78

  • SHA512

    cd14fb1049a1bc1dc9defc77be2833c92556bee54427dd63f2692c50c52d1bc23368cb10ee2ab5ac2904294e13c163525266e08ec1c33900c13e24a5498e208d

  • SSDEEP

    1536:CkgUiIakTqGivi+PyUWrunlYb63Nj+q5VyvR0w2AzTICbbHoU/t9M/dNwIUEDmDG:CkgUiIakTqGivi+PyUWrunlYb63Nj+qB

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\e19c8f038d823a082bb57b94b8267ab8_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2360
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2360 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2580

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    54a2eb063bcade77bd55118d694ad013

    SHA1

    9ad6f2bc6cd2f6c233c05a88f810817bcd6ca5fd

    SHA256

    cac7756b064d0047d5b9bdcb06a80dc90d4d532f49449d70a44285c8e42d3390

    SHA512

    03e6517252b4c1a608776bcfe60792fbbcf1fda19467b1ede6b96b721911b17c00cd87c44ac9aedb6ed0c08af3037358fdbd47612581fc60d726a19bb1a5afd4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a45b937c24dd484a41cb7336feea736a

    SHA1

    38953bfd8c433a23fe615e14285308e44501e4c9

    SHA256

    24a2e356d5f6bb2acc0d6dff850b8ffa33ffffd45bf68074312f76663a247fe5

    SHA512

    bec5bd77ad8b0ed8b0ddb2d35f0761d822cea1dbf47acd2bd2f794335a6100e26b894f0afc12e7f027a2ef58c31db7c42fd3e1e1412f7e8cf98a00eeddc70ba8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a29a2b12f7f3823a655051612c20cc59

    SHA1

    38f84f150f06ca9ae6ff0917a3e4be8b34c4f673

    SHA256

    790f261c46e8b949d8c13c3d7abb5f646ebef59fff8e6f37dce5278d31cbffa9

    SHA512

    81c6c4fc7a54c03628f6860d9bfb167268e8b639b6600ec478134b06ff9598249cb4a31d8822f3ebd96f08548e5639ecc1210d52b0510c63c630299f0b484ebb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a3954d7f54f2b75d39ff5ac26401db3e

    SHA1

    faf14453787b548518798ca13dea3a16a25e2484

    SHA256

    814bdde4a8040fa407af20c4ac2ff7088af9508742d35b90e9072d93a4d22e76

    SHA512

    999a03946006cffb6e304cd2d568a61e31e0c540db722ffc69ff83e9129574f7477e6ccc128010195d88b1ca522c76ddb80befa12311fecdc5d35df23c11325b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    804b88026295266febdbf40e2a581e9b

    SHA1

    c12a928015c92a094d006076a0d12c4cae48205f

    SHA256

    14b2a52c862e04f545bd5b9391ed10f1b499dfc411327de7c0faa5c6caa39a00

    SHA512

    63734851e521770cfe973cc86b1760272913c9482a882479ed67ecf0818c77daade8fd663bb02fc1b251c14050482a407571c597b85cff948bc54448f467ca6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1640da921fc0fd75f1fbe4c616b8ebc6

    SHA1

    0c6781448caf116809ae2b88dd20d61174e4cdd3

    SHA256

    95af80a141efffa2ed2c237dcd4790c22087ddc67404b7a44be29c1fe5629a8c

    SHA512

    963e25a81053807407b5e7f1c44b2844a3f33da43702a19564ffbeaa68423aeef1d37c7d26a841e6dce4ede4215f394e9c709178660111ee93c777a9b9d41cdd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    915779cc50c4c32182d0ff87bbeadaaa

    SHA1

    75cb11be1434de1decfcf1864dcef6bd1bd8babd

    SHA256

    6ffb84698a4eb7cf7979a2b15e4a9616966e11747c24e1ae2a9f8b1a171f38cb

    SHA512

    b4ddd119dcd9f57c6b1409950d562324ec696e4cee0f18f37aeaa22df5caf2970cb44ce62b6a868e783d4bd34ed5b685512e88b497953b9c601d417e9d28536e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c8e991919832ebbd016469b1944e601a

    SHA1

    8b9119dc3e73bf62fa858f9e332072ada1f50523

    SHA256

    63a9b884fd9c81c4e6d3a1a757e9a5ef9f81a9c1b7acd6dc7d1f93cc33886220

    SHA512

    90f28ec1ae53af27e544ea1aa3f53e99cf550380d7b8b346b0ad86d0ab7a49ccc0be60dda8b6a6cd230a466175ef178dfcb026ffb0ce8e24ac1c53608546d893

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a5cd8e9425a4227649c75386ce62825a

    SHA1

    487014251ab5ce3d1089d1a92444082fe50d1eab

    SHA256

    dbbdc7dfbd017db425afbf9bb94e26bc69978831f30e089c395967cc489e00ed

    SHA512

    9830623570ac83dd8bc2a46bb38b2e367551db7443f24bc42af1921811cf12cabfa6c9b127dc6bd38177d06041d1f06614a8c186dd5fbfa02c26833c34e92d7b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e6a2dfcd9cca701cd5e7bbb5f7c0b3b5

    SHA1

    7a3ffdf9609ca9eafca5ea670b51ad81389f18f0

    SHA256

    fb612d8b0fdde154fa599a42afca041c2a1430c01fc46a6a340715f333e7caff

    SHA512

    f9f70fdb70cdf8794d37468f7824f2a616fa2d82f216d580fdf48d5c2ef7df9ca268a513c975cf3328c0f81a812df729c4c8353e013c14e56d4e74af7533d5bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e939f1b80c5c8314460d83bb54d5eff2

    SHA1

    17380276bb987bc89ed4f3afcce7096ca069e438

    SHA256

    a88580c298a19a63888e6d46e461e0211f33886fb6e7f46090c33b05946755a0

    SHA512

    ffd773964085885b07d2b2638c8c1068a96db1a061420d09cf1251d876cf34a3b2159bac543150e8446ef73abbca867f347aa444a43166e36b7e9208a12e33a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ebf5745e982606a92db0e320ef1f4461

    SHA1

    192451e320b5462427d3da22f7829fabf20e4716

    SHA256

    3a129f80a6c1a37d65b6cf127099ef6f3f5c1d0d152143ebc6b9cc9dc33b9af1

    SHA512

    b9b98e7f32d4868416364438d4eaf487277c9da1a9973a2ba6faf28893b392b941053372d14e665a26028d60e7c82e51d1bb2b95e8cdd2e41cff02cfca2ebced

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e7aa1304ddd3e7de433f12497e9a5f36

    SHA1

    4e74677d1ba92bfdb67a884e7245d1a4c51e17be

    SHA256

    ce1657f782a44b50ef3f11c041fe061107dfc4cdd00080ad0ee761c03312a884

    SHA512

    ec4db61645e935372f351bc9ea044d5e6a3add296dd474bd4d4199274b1c15724c4acc2f83102dc87817879d9cf593a33180e0a3ac443ca4d387bcaa3113677c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a483d4eb6421f73982ebf82741f9f9e2

    SHA1

    7b536cbdb5dee129d697682d2ec34b18beb274fe

    SHA256

    5b28c1c0f2c1bd4d3c8d2d63c5cf55b2fbc4f4970d279e2eab379f0b1a1daf0f

    SHA512

    e6278f8efaab371ccbfacd99592181737ddbe91ed356203479b9e7f8cb87aded69a533db17917ed44357c194708768eef745a9754aac0f9d4f2e8eb6dacbc9c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ecd01497f38145f98d6b23dd56bc85b2

    SHA1

    22c55248794a65c5a60445df19eb01aebb69cb97

    SHA256

    349d7c7353ccb316a285017cdb654bbe60f69f0261b8e6790f8e30a7b85cfa1d

    SHA512

    e924162fe7613e4aa6f2a9f59657ac2aa823d98f3cd9e23a485481f4e9b819838dceb41d9610e9eacb623ac7c74588d18bfcd83634998e695eae9209b1612f7b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    80c3b59d9d9ddf9bbefafcbad6763adb

    SHA1

    6d4630a4c20608f21e2fe4a39811665a0edb5b3b

    SHA256

    1f8ba27e96597aee38d2f76d4a3c63fedd61f910d2a42ed6561e1483c5be5556

    SHA512

    a977eff25667c8fb133f996f068b38ed5bf6e68504ac4ae8c5bec71a8b2c132da9c0d7683686f6e1a17a5cfd1d942818e6bed0a6ff842253e9828cbde2bedc1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    05a38287e4c9fea832cc499283747fd8

    SHA1

    7b4499e0d508711c9e4504ec928a2405d9a66bc1

    SHA256

    78c2712a031de3ab7be9ab6e7a43bf6f2033b85f45685bc758c0d92113e5ca56

    SHA512

    919b64535eb2c0643f0432b0d0e6efdef5b3f2830ac5e6949d23d4006bccbffe1923c656b676300133552c54862a2e18cbc7dbd833edd6642b3c53d75d112f4b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    93e57f69edbe46d5ff7a86f18ad7eb9e

    SHA1

    e18397412ca17a9d99983971c102250e96f89a35

    SHA256

    7943110ef98d3cfb150643a619dc47f5473a839e42da104f3513ac561e9f0ec0

    SHA512

    c963c1ab2e766d92902d876be8ed5ad6c770f7ee2bcba63598b7fa8869532ede1e8ba90bea09f743a08939edc3cd66fcfc16b63b20ad09fb55e5d0ce390a7d9b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    54b0825fc7a763110918a769c77fead1

    SHA1

    b22fb0be21ac009ef45b2c7a7957d24be8458eb0

    SHA256

    72dcdb9084c82ddb966cd65232fc11aca08cf61fe621df2acddcc31688f93229

    SHA512

    5a921d1d0aeeace9480c4cfe9f8f4e18ba91101c1705710dc44cb20ecc1e58ea2d382d08ce1cc5ffb408952bde02ddcbd5e6cbbe14fcd4e491a0d880e6c39471

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y8UFEBH5\print[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabEF6F.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF01F.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit