Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

ea26b32162...8.html

windows7-x64

3

ea26b32162...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    18/09/2024, 23:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ea26b321624a88da5be2e08535da14de_JaffaCakes118.html

  • Size

    53KB

  • MD5

    ea26b321624a88da5be2e08535da14de

  • SHA1

    ff50fe9cf409582f59eb0735dfe2922c8a05d2b5

  • SHA256

    44e91428f35f3792c8d65480829861b48927f069fbe489b08e6a77ef558be47e

  • SHA512

    af24943a3fb4e1226661d5d846c8be4ec0e9b2b2ad13b4c23d847a957cc4d3244cf3a007d69d8dfadd2ff097b0e141089d53327df794d0b0edf806dff8998390

  • SSDEEP

    1536:9kgUiIakTqGivi+PyUWrunlYB63Nj+q5VyvR0w2AzTICbbfoO/t9M/dNwIUTDmDh:9kgUiIakTqGivi+PyUWrunlYB63Nj+qV

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ea26b321624a88da5be2e08535da14de_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2324
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2324 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2804

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    114052ac012725d2b0b89050c70be769

    SHA1

    7c11e7048d7c8975ebcd8d8c03a3205ee1fc8e86

    SHA256

    6e67d64b42a23c61d840f521260816d849d4943639b721ac552831f3fb928512

    SHA512

    ea90df4caf8fd038ab5b353b68128b3b07a14ffedbd7b3295268c32740d725a0ba5fe71bd08a98ca6b73ac14d7dd4c67e788f19a30795505c1b6bca84f60bb88

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2aed62cca08aa943e526fa109c3f3b13

    SHA1

    023dd2ef439c41454138d8857f75cab331c84201

    SHA256

    2723b96a07baa2f8a8aea8aca913cb287b911f1dfad1a1d7b9f0010554a8ab63

    SHA512

    17f67e83e96c70dc66c2bc14a973f41abcc02e6e25d88453b7a0a348871d574af3fbcfc5a7770ab89dfdbaf7d824cf6d8df36dc84c363ee020af0b7a4f231dbe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cc3d42a9b53c3c3ddd5b59dbd49de34a

    SHA1

    4646f6adae497a9e5ba9a3e6c51bc8ff4d129899

    SHA256

    e400652f8f109c0f902ab17bb55d21f753215e66cbd45eef2b2da73f14055113

    SHA512

    f061b78e3e970df4fee4b4d944fc07d7f9050638d41b1438ff3771ade8aae77b9476361f41711a1a7ad96719dd36cc540f81ee9a38fcb5157b3806fc8508b1d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b1dd95f180b385353b77aa76d6a0bc18

    SHA1

    36662ff4b19444d9a03e3f8c1dc6f27391345bee

    SHA256

    044b8fd215b3d7c7382403a2fc811c24eaef0cae93bd7ee3e0f05f73bbe449db

    SHA512

    9744e14efbe5d63ffbc3513a88cf83fd0a1150855a5c7223d1791efd1088c50ea6818030551a231d54c46fc3dc0a4e7eb4d275c33b8547741ea9ede1ddbde323

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4feef0e34dad5d5f10a9c18be948464d

    SHA1

    57fdb61ea933393cb77cee290a0bbea62c7c35ed

    SHA256

    1420504eb79b8bf33bbebca6d282308d0b6a4e0e0640c10318a71584c2cab754

    SHA512

    ee1d2ed4df5ae86b7592243da3b2d89893121a459963086db93b84d11211d8f38db15d1451a39ce9ecf796c765f33fea801b92547d5c11e11d5a31c67573db39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fbb9681906ed8201209538648c7883b1

    SHA1

    7ec22ebcc88cfc02d36424f4943381b3104f85ee

    SHA256

    4b88b425696315d9dc832221fe72f1111e1c95baa4e8ff02849f7c696b3720ce

    SHA512

    e84c0eb7cc5e9fcd091812eb71c62a2ab5c452e51c1a6d05c13e1df8b22dbbfb1ed0633ac8496ca469202fb9be18377009aed4a8b6e2d0222ea79cf22a1ccb02

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cb98a88bf62827ee5c28300b0581c84d

    SHA1

    8934a07744071d761714cae41c06b292a831fec9

    SHA256

    6fe24b3615ed153bde376e30e9779a02a7bfb747bf1377b0ef28843f7445e6c4

    SHA512

    b16a6f301a76702e83d2a19c6058f4d703a0883acef2409fe1e01bb95177452174040fce13f211b1a03100d6bda872658f72fae782f677f8a40456faef1a50d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a5ec230bec8e79e119105c0be2700a9

    SHA1

    2e29c838bdc42f302d42fa88b834d7c3e415caec

    SHA256

    e3429cf051b3dd2a46bdcb6c5427606e6b47c872f66cbcf3f939e0856e61512f

    SHA512

    9ec95edb789527a6f6529992e30e2bb508e76132584ac6b48565c54572458b3bc579d0078d01b59b335d2ebd25381c540802669521c97f41bb5828a47fc17c7f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c380f29522481a9340c3520b44134b75

    SHA1

    e17e532ccdbb8bbc471cce70446e3e189248c4b3

    SHA256

    e9c897324d5378c756df65d518edce8e74bd64c867d9c945895cbe050da2f09c

    SHA512

    29640cad29f0a2bc2460c0936f78593fc34fbbf8783e81fbffcaa9c187b45a18294c3696104e254512f90686e233fdc46b2a0d29b305c976392f80db7d8d8b2c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4d4582216920b1014e22e5570004f581

    SHA1

    839dfc8a17b04473339a23baa374d553b8ab1ec9

    SHA256

    74afde4a43ac5ec48de9bb761e22d30d20b2e0b7c29ecbada9f36b3fe6451510

    SHA512

    cf5223e7d5bbf4c4849d59a8f04fe3cf8e2014fcbbb79ff911129be93a44c1b076cfd4ff1c67aee22027cbd98e39df1bc0516f508bd3c7a3f573ddf17af51911

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ea0c04be9fb9fac2592b7cebbb5ed324

    SHA1

    2636037af1b1240b1de8866bffcd4ca9b9bd833b

    SHA256

    d02b9238d3eba754196afbcb6b9d6572b1291c426daa235c43f0096cad6d389d

    SHA512

    8ce5ff88f981f9696c312615b5719407eaa1100dd23a48a1f8792fb0754e33923f54aea9ba1de91aea69ef3c4d34ebaa27285a6bd40580c7748d9891ca4c9dcf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd4867fdfdc51d1506a76c9431e18a20

    SHA1

    fe9701d0fa1141a955b254db8b6db0ac3a70521a

    SHA256

    cf22f73d6d8773cd33bb744e8d947dad1f82295f940906357deee6faa91ed801

    SHA512

    c247a5c1085f26a6f98e1890f74f189ff214fd7952a5165da858631f4dd803a773a5318edb5201de7123a6187bfc3ea16e24a2f1002d926275a3e47fc29e843d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b2b03e28e6fcd04b861c5690ca4802b7

    SHA1

    6a82c280fb7bfd3b2e66f57d83582759f82dab61

    SHA256

    19e27670f81730ac26e7a16c2c128df124c0d04e3d99de86585992e647886df9

    SHA512

    6b328e87388a81091802979e1cd5bffdf141400a2a631c347e0aabf7ec3f5085c6bdff88fd51e49cb0f2688d58ed8c17e534b1484e0bee13219fc758a57d0d06

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ebb9d456ce5fdf39e9116416e1e8c36e

    SHA1

    508474b5e45cacb4e22d0608fa5a48f8577e4190

    SHA256

    e692821218ca2494d3b705b018dd09fd97b615e3980140f0499fd3eb0f062219

    SHA512

    c68e44dab4fb398df5ded8bde0c0e5a53e0e0f1d6547f6efe5cff79df6ebf8a8b55c645b689373bd3e261652e6ab5219d8b6d969a53909435a725c7fa04438a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    227a4a398be8d9a97f3a835c1f838ae0

    SHA1

    dba5b2128ceec091ed890734edb680f5a65b0d2b

    SHA256

    ccd856d7061661ba9205f22d39395d54bf91d69a1500305149e933621ca60e35

    SHA512

    b0245fb243a8ecff8bd374eeb803e9df6a3f70b3ec1a81f0d307ba6eb8d459203815500879994fe64d41a817a8a29ada7f336b5a56183f3f9683c8726f065788

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6b593e3ee8d58ccf16cc5959a8a7ed41

    SHA1

    ea034242cd7123eaa1f19613123d56ad81eb4030

    SHA256

    ca03fea282c493865514b2854ce3d68c1c283d1d086ec93ca3f440f0f82c2563

    SHA512

    3b96d7405edb03c766202c7aa3997d1cdfb24b9b956836c8b446ea56adb833f90856725fe29b1c75d3a69c082bb42ab5d3efd48b692b509b4fec1a79546c2bfb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f91f10ebe4cf6a81741bbf0548cb1d7c

    SHA1

    4ec4ec74f437f82d2cbb52ee83b601a41e9c3458

    SHA256

    7908d6e4f4dc5c8e945426e208b8285677fef439a9c7c061d87bfde92f532aca

    SHA512

    fd28bf6723e6b48df314a63eeab14007ba5cd92950f158fd806d4b32ca2e771cdcbdf89516e96b26546f5c19ac6474040d4a8f8f956ee6a6e1a30f2d8590bc47

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\40WV1DY9\script[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab5A05.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5AA4.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit