Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

e2557413bd...8.html

windows7-x64

3

e2557413bd...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    15/09/2024, 11:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e2557413bd2395abb31d00bae6811851_JaffaCakes118.html

  • Size

    10KB

  • MD5

    e2557413bd2395abb31d00bae6811851

  • SHA1

    732b660ae041272f7211a215eb51f0482ac29c46

  • SHA256

    12b497b9124079862ccbb6092ff49e8e647e7f81770743c35c2a69d0518dcb21

  • SHA512

    1a9b36febe1ae37e5f4f5c36818f41e61e8cf7bfb90d69ef04bf2170fc03beb4b4e6d333f4c6d19b7595f03b36299f96837fc677b79e036b1363bc05295430cf

  • SSDEEP

    96:uzVs+ux7NGLLY1k9o84d12ef7CSTU3wGT/klUpBJ7/qOUIootOlkqlVHcEZ7ru7f:csz7NGAYS/ugIv/qOUHlkqPHb76f

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\e2557413bd2395abb31d00bae6811851_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2628
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2628 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2652

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a95d82ce4da775e041da5ae30ff1ac77

    SHA1

    d1e75dfd08e2cfaa1499805222f2ef06d6cde46b

    SHA256

    788d37a5f3f2a59b14db05e95b11e681b08837410e741471f7d0f66a6cefa57c

    SHA512

    70bfc5082a269dbf4a7a615ea3f8af036a2dc3ab54565e74c546be021e981bdb38121e907bacab5653d2ce3630180ed169615af26b74ed8e7aead7c1f549e980

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d66175d9c4b494a0d6c2cabcd886b680

    SHA1

    52861f91e303fa7b7782864660f5f0ee07e0d7ce

    SHA256

    cc559d71d7bedce82d529304de4c050a10dc61c6bbe768f8aa3e25a4e73a5f21

    SHA512

    108ac938b1458c09ed1cd50155ba6cee9cef19faa3fd06e92199182e268f1632e221b149659e36a691f23b406ab1e599b510716a46d8dcc3f686ab7f29a208f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c451e4157033fdd83c08c70fdcd45d13

    SHA1

    f6f71afdb34b96c6a609139e35be63c58edea8d6

    SHA256

    2e1376f440aebeafaf0717002f6fa30a9cf7df890f6aec477be85f9a875de706

    SHA512

    3b33a496cf7ad65f3b2c7d9ac89fa67bcf74bba0c7226d9b13b87c2c30a4371282013707cc477595130bd21f2ad644173abb0f5a1af482fc78770d599d06bf00

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0d1ed0b346dd0d4199d68d2ae2067514

    SHA1

    2557c4779cd5f7cdf5250d1c7cbe285fc87e8824

    SHA256

    143b287e8206882e5befacfa81e8770b4730de2556d7905efbd2b5263e4c5a6e

    SHA512

    00935df9ce4a7facc146e9c32ce1fd9856b10985d39fd3d4ab4940e97eaba263fbf6dde955141e03b0caeeb7e82f3446d653aebbd0b8b70583198d568aa334ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    87bbfcbcfdbc7d80ea447a679a103eba

    SHA1

    a32162b5a4b47398b0c894ec3b3ce19d5f74713f

    SHA256

    cfc1c06d76cea0875b1ac702ccbc97e12ac7cf48726c5b76bba9d8ff665da844

    SHA512

    1d8011087f57dc319c1fa96317aadfbb274071d3f78440aed2d51ad627f7d09ac9ef95e7c067f532095f47d6daa039647a3ab633662414635aade828a6b85464

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e9f0f675e20709858ddd29d5a2dc5340

    SHA1

    1795a9e2d558ce206bf3d69fb6e204311da7f5b8

    SHA256

    057335d46735c38ac5d6314c63f06975e7f36a8eea416dda632f9e766c1522e0

    SHA512

    96602a38c2d0ff247a49d538049ffe102a0b9bf7f7704ff797900dfdaad66028c7d6274d89132b6ffc65842994f2e274b86a2e982f2ce6b34f41c50766f533cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0c88b31a7ab941c64e33ddd36724027c

    SHA1

    724972f3b89ca277745f70419f2b20d07fe66dec

    SHA256

    a274b0b22a8d7b7c1d6b0dee6aedfbcf91463ab2910b005de8ac7c8c7ad6c9b6

    SHA512

    c1202fc4664382deab60a3794c4815778ac94c77fc88d17da9b61ade32f170a1b63ef10024f7b90a31645c9421f098a27dfc48bbd2f14100a27bafb0f3090495

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cbc767183aecadf640db5396cd354612

    SHA1

    937a59e8b4f7c90a7b669a7e9ccc2508467f7a09

    SHA256

    18caa4d4ea52ab456243b82830f365bd13784f2c690e185c01043a5bf80d0b07

    SHA512

    bfd94d45c0e202072978997af631661aacafb15f2564c9abfa045f365b1556c8e9ea322282e9919d938ef987c74f50e7a18a56b841b5585f4f9c45b818048d8a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ce2620fe21fa32576660fbc8a9116067

    SHA1

    0d07a2e64383ed20f766b3a06ac4cbd384255656

    SHA256

    f2fc44b7f8900c8d75d371214e4e50430c55c78345b07f3af58a977c0e7bf170

    SHA512

    944e32fc07b664ca4ff62d95bfc854ba0f8d0cf9ee1c54d7268b82a49af482afb01079a7c4124fc31004001091ac93e9e3e443001939b8a093ee5514f983059f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2AAC.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2B1C.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit