Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

eac16664b9...8.html

windows7-x64

3

eac16664b9...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19/09/2024, 06:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eac16664b9c2f261ac99459e82434aff_JaffaCakes118.html

  • Size

    34KB

  • MD5

    eac16664b9c2f261ac99459e82434aff

  • SHA1

    d9fcdbc0c1ce200ca792c61ccd96419ab38a34a4

  • SHA256

    3a665b71d46a2036b547b3329240e44a937756b1e6a74d8551e5e40ff6e1ac95

  • SHA512

    cfad72f935d7d9cf484e0ce7b687b0d3ff6fde23390a7611ae50c3d84a0797fff844e2d17f2c14590448daf7b0ab7f08152ae4c4393ee199552faebd677ef006

  • SSDEEP

    192:uwc4Ufoam4fvkb5nBDMI8MvJsv5AvLcnQjxn5Q/jgnQieHfNnOaKnQOkEntdKGfa:LQ/fSnp5/xhoNfoeKHN9y

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\eac16664b9c2f261ac99459e82434aff_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2988
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2988 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2492

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59a2a5fa75f5429ab71a825dc73ff103

    SHA1

    36f451285aa54705cd0e2f1ba6e3e506ec535279

    SHA256

    ecb8580dcf6c63e0a1629cafbe0067c38d8527181137a4fe65aab0c49b4fce6f

    SHA512

    26f6ed56407b7bfc5858f909c9786e1145f4a43c55deadecd75157dee94fa0aa84d57833c99c9265d7b6f4ef2f74047ac39e5743c098d5e3a7c53f0fc402525d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bc21568e1a8c609933dc11fd4d21c6eb

    SHA1

    c072aabe5998dbfa14fb1f750af0629322724349

    SHA256

    6cdd8334b2f36da45f5f61a589cef40e7c9bccf3cffaf85e0b8bb4e352ad99fd

    SHA512

    df99040795e5fc2cb84962ba4540ab055042276faee5c5983089d54a881608e4a321dfbe50f40c422767037f54a1f94b21036f1a1762a934904d4fd51dc0dcea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc0ba996edca7f3217cababe540db3da

    SHA1

    3bca0aa1c663c196e45879220cde1886d3c9305f

    SHA256

    4af367c9876f79c49145ad9debcfcee0196331d9698c86c329b10c75add45959

    SHA512

    fdd44aae309bd2fa0cdfd82b5172f6af6250bf4e731faae57f0ffbef9dbe74266ee2e63c1e2ad38f5a3a023ae7d48b88b8be376e3dea3d52fcffc72cf4b0e162

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    571db23cf7aa33a57d53f59e6bddc90c

    SHA1

    7c1edd1973c393a164c79fe2b0891ca41357c428

    SHA256

    090d08e7e3810f6e26b7fea5a1faa4f0c896bc8a412e3596ef0b5423b16d4d27

    SHA512

    3ec797c4b5a0c311eb4e1f7e2996a49bbfce6ca4ad6f52caf76bddb8607341f04e6727879f2c8d3613535c6100a21009859652ab056a68f24dc99754c6a8a43b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a8fb2a761ee6cdde5a152a1ba3cbece8

    SHA1

    6cb932752452ebc901aacdd3b15d5595ca0ed073

    SHA256

    c415249f98732d31ec8ade3294a4d21f8e513b94d96792e4d694c359278e9ec8

    SHA512

    c570cbde7ca88f34fdc62483e0460db44de9b205453d843646f109b898089bcc520f242e5335af593be2329ea94bc22e5d1d80ed0e9219fa557472f7d5e18b59

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2add8162b3b50bb2b6b5070da0a72e63

    SHA1

    c0fa37492c288fa0d26e8d5c90b735f519304856

    SHA256

    9325cc1b2ffc47e423e77874b4869d988d34d3ffe6252f5a459785d5413358de

    SHA512

    9a1c04e14fb3c73aef6d0b06a9efa0f615deaa29d05060ba484d90e3459cd7d025673fa1395852a5754f014961e83dc04c2dc585489550ba55fef36cbf095fa6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0a6d79fe52b0fae1176b592942553341

    SHA1

    8bc0939a0598736552cd696dd8adaf4acbcf765a

    SHA256

    a1965b290edcbbdfe1cb6017c77a801e5b8ef542519dce8322a69187532c2215

    SHA512

    7a138fd2ae3341c13287bbe7596f473a935b436d6edf8c42be7f15fdb58d87b7c485d42be7c6d5716b7fc5d8a406fd62aa872cc62594a7e365c0b6f1697332b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    95c96a2243605e0186514578fe41b98a

    SHA1

    a631f19c14bc54788ae02d7066560d7bd53bb163

    SHA256

    27f80d698ad7439c46efeaaef27e25119ba661d4f76d77345435db39a54bfa32

    SHA512

    3db2d7075459556ef23e85fab0e0d40caa0eeb961b6cfafcf76fb914a028eac331154064fd02ec8fb61d4a57914bc12dcc318bbb0654d5d4eefaa5e83a59c95e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    399838aa43e78e870190acfb8550c30d

    SHA1

    a1053bae541970af020b25582d8c16d0006cc414

    SHA256

    ad9e54ca13a56314bfb5863d5bf68aaa5faf723a37a1a142920a365c5c4c06d4

    SHA512

    7c8b2ca2c27d617a21d643b3cfa25306725971491a758321c0c0c21c620cf9bddc08a8a8af808ab610645b0d1be3b1d72e9819b5a5b6d094ad9a7e58bbf9a9d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    df3127e1058495839e7dffda4b1de075

    SHA1

    226da9941ac3eeba50de5ff3b53f4b6dea5dbba2

    SHA256

    5e2ffb192b6c05beac6008ebbb1ad96c014c3d3ccbd81a9b452bf447ee59f6e0

    SHA512

    f40692136de6e9051ad94b7a6c12c2127356079af678f9e211bb8a8858c196978dd4e424d7b1be2d355d40bfc79370e6070a235f589a8d98d3f622e80c1a0efa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cda1ed711a582dbf8961de3b7abe2c58

    SHA1

    e90c20d4ce6648a267c5453e00871b107e522bd3

    SHA256

    9e6ee1aa679d26f8eef0626d10c0b08d9e00fdaf8f6f2c4796251e817a0f5a4f

    SHA512

    d576b8e5d944e0dcbc1207f095852c8cc7bb554ad53401d292a772f1e830d40207eae1848398d7003cdda06a7dfd134f726993ad8f57faf2362372fbe45ff589

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c9d928f47c63081a31fb7bb854965fd4

    SHA1

    34ac5ce7430d3ee78b231784aef2fcb59be703e9

    SHA256

    1e02152b21094e0cee297237abf93bf1b9e1e8d59d741ea521c4dfdf68427b61

    SHA512

    b645b799e554fa54f938583887ffbd5d0d1a01b4e777d498e126957e9f127e2b9ad9bbadf9cf15008fa70576c154af79cc26fac9458c8cb605c29c6ff2de1680

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e9bf9c8616f277461e3f5cfcdb1c2975

    SHA1

    c788c6ffdf92be81c56b5dd4fc5c41c91ee7f5b0

    SHA256

    de2bafb342a28ce40a8c8985146f8145ab060e375346ff7bc65f927b2b7d3ca6

    SHA512

    3f48c1fd23edf58d723c5e433a457f91a48c20258558b79390c36f500ddfef15b4673d849e96fe0c8c00722f081c8962d2d0aa976ecd843fca4ce6ea65e2c360

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c05f0c15c684c863ae4b1e5123559388

    SHA1

    32624a0fc810eb3f43ef561e32176d0de6deea86

    SHA256

    bccd63e6fe410c74c92d6094a8657269ce131e99d2a0111d4d91058df1aee9f1

    SHA512

    584e6d095312ec665694db0fc60c9b687b70c4886c398042e773047efbbf02792df5afaeb51f5dc4591d36b4ba9cc0405874c28f255a5d30392172aadcc5d7eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0f6d28031c2a6bc668d126e3a6ac88a6

    SHA1

    5188aabedab474c3f72493278609b67c99587a1c

    SHA256

    2b730376facb7fd35452a54d5a4b9789f7e22c181d1aed4bb5eb8d2266cfa219

    SHA512

    b6f7fab7b4df40482ae7cb42f9da8121e15274ca5c6fed76c4012620f96831420030380c01993bb3ec8c8eff1ef2a78411f8fe16f1e8932ab768a730c5ca4790

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8cd0d10237dda8a2b814282fd8b55037

    SHA1

    db9112aa78bb939565fc31ff65c36ec01124e3b8

    SHA256

    aaa2cb33e948baae608e5b194ae590a9875ffb0cc26570593f2279f12e29129d

    SHA512

    9af1f955fa5715a0b12b640667a493e3f08da9d6fd9a38a40a30db6578bb2cdc140d9dd73328b087d9537e8101ffa2d843d057699db8b95fb9b4a9a10a00f3ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    725159f729950d9828ca6fa5e1bc02ce

    SHA1

    8f89f9713bf0a895cfbf16057ab31304a981a550

    SHA256

    1271e2a667d8059f107d834b7e6b11f9ca2d8484fbe52a155288e5008fda2a05

    SHA512

    bd7acd2a4fe66572b4c8de1e5beeaed4075499182b3eaf8317cba5feaa5f2efb5f161c9c458978ff22e0b20e057c0ad4e93d70ad113ae604fe38ad8812aa7e5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b1310428519adf6d09945ad169ca8f5

    SHA1

    995e94c59f8be095f4d7a9c690a44a5987a9e93b

    SHA256

    fa167c4039b6dc6fb40ef0f107e78dbc049dc5a338fd141d77fbc456b82ff792

    SHA512

    9dbbcada971812ae2a124089f51df9550bef1d11474230dca12114f51b35ec99d5e88b0a3f33679326e0698000a0cd7470aa87cf97ad852885392737aa0b8eda

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2ac0132d593e0547abc79168b3d1b7af

    SHA1

    f1152db7bbbff486f358e548a3fc1667b663f08c

    SHA256

    85ed05ce85e3414bdb75b349246919abe68de2aa93c1359b670af421b721abdb

    SHA512

    d7222b46809251fa4927f2f85e85d070f16ec83d556fd4527ab971063a17011e1c86131c07a4bcdd81e4a65f5cc30da28013bf42f17808d289fccc9c6342b505

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c52540fd2a8f3e96d7dbf430d6b88741

    SHA1

    aa0fcdc0e8c87b7967a7102c4c632ce85a239f0e

    SHA256

    b79daded010ba041aac71961b172843ec8a294d47a88403fe8acd70ac328c5fb

    SHA512

    610d6fd34fdf7613b234b82ff60faaf61109528592195cc27f8aeeda358d462ae4b042787438fbbc4c707af7380b88ffc45ed4c8957c834e74e5eb675763d0ed

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD250.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD30E.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit