Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

eab228d309...8.html

windows7-x64

3

eab228d309...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    19/09/2024, 05:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eab228d30981a5bae6cdd832b0f8965c_JaffaCakes118.html

  • Size

    125KB

  • MD5

    eab228d30981a5bae6cdd832b0f8965c

  • SHA1

    c7ea417f1712c58408a2ebd630704c7d03b62f0e

  • SHA256

    f7d46b61132354d41f60642eed3b9b65272890e5429c866331969159c3350617

  • SHA512

    88d99c3c7f02233f96902baaf1cacebf664dd697ef6ae0f85a3007afca6ea23d41e58ed12300e7e440347e42e5079778e011b3696ed6fe6c633fe93df770eaa3

  • SSDEEP

    1536:SKECCCCC22222ZZZhhh22277777OOOOOi3mANVSuKArYin8AVFX722NMNQRmNByt:SbPOV

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\eab228d30981a5bae6cdd832b0f8965c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3032
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3032 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1568

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f39a1d608d63e37170400516c85c4ec

    SHA1

    ed6b7bd9db96743294117d3bad81a18fc4d66fe1

    SHA256

    59938280c4f1d0c98ae74f6ab82018fd58abd2fc8bdfb691a4fbb0034e6a74e9

    SHA512

    2c8f7afacde6c9b730af196d81304809e2555fcdca3ba168d9d394dc02034ac90d4107771c5483160281e6098317a72c6e8b7aa4d683bdd626dbd0e620af7202

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be7950c73fd31d83b80a4f4a53180b97

    SHA1

    9b09e087a8f61b2336ca12360e8f6e3c1ea898bd

    SHA256

    8b6b1e17e5f154fcc41c4279e6ac3c0efccfd4625692a73e67fe04ffd8d92783

    SHA512

    c2acf879ba95d28aa03687340345f5b3409f4dc414a7b474b90bd405be0e38a15c4440794cbece7e04e54e399dea6363755758a0fd209156a80005b6bf576ed2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    678f1d63edaab805d154d93fdfd51c8e

    SHA1

    3e93db66ed2e9e5759968ac8287f5a606a9b0c3c

    SHA256

    dca807c284c4bd301887f1e98267b5400b3ad1bd2ec23e30ce4b0597f355c403

    SHA512

    9269f6d00f87387e7b8ecf8aa4abf7aba0029a5d89fdc609c1d7cbf147841094430b7e5706c3d3085017235a30ef61c1b33bde0df098fa9fdd9a02f5d9aa611f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3087387fecc943a32dfe148642192fbf

    SHA1

    c2d5b2d61b1a73d613d4767826f5a8c76d02116e

    SHA256

    74285e0dbff291b39318c02f031f80906fd118356def192dcb90c24e362cb565

    SHA512

    b51d6874e92c29e60e5b515e22220664c560251d50328d8313a2b0bda0e5d59001c4db67055d5d8e14d8c0e1ef89243483e76ccb22320fb3669750d767fed0da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    16c577da827e4114057130bd88c87713

    SHA1

    c25c58364717ac54d8c58a3c8a7cc8605f782345

    SHA256

    54964f7254c8f4edac66b78bf9e51f05d6e3f53f0ddc546018c9fde32a694d94

    SHA512

    84d793112aa6c8e3c4cf2a5245c11f3154968e9fa0ae505828a8beecf74124d462790f51aeae6a09d92e1c3f04055fe463e0742165a9a12c3ef5febb7bef0f7b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d501ec7176d557d72b386d3885d78da3

    SHA1

    3b57e9ac550730b105ab9f5837dbde8deddf9ad4

    SHA256

    834c89e7c2c12cc611bb3fec12f70747ad298ae5f7f165646b995d5030623014

    SHA512

    2dcc4978d3ee27591097565281a2a6c2cd81811456ba6748661b76f768c8ab1fa533a160b1a88b1dc19ac5f14a3695521eb56fec35d93564118f76c72aa5ab67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    36b1ee2735a65ae68c4d0231e200764f

    SHA1

    df5853697a531a1a276d6ad74a999fb06fd20f08

    SHA256

    efc80edbb2af47ce4b55af4d0ae04d8a3ea675085d5ecb8fde704376945a96ae

    SHA512

    9a91f222a34a71da442314e8a955be38b5ff4c735a8f7d34c302830557035c0fcadab36feb7ed134491f0f57821569c2e0d9fc17c4f453e467ce9871714ec6e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4321df2044e8f7124c505d923954215b

    SHA1

    9a75dcab1433ed80dfc2f009f68e5c94fbafb1e3

    SHA256

    802f71d3ae6ffd4ec20ed3bc5af96dfa9318ad595c595a35ad190637908578c0

    SHA512

    865c586d452fc5f800a8c268194cf51b377b94b426eb66003eafdd3dfea28d603c4f9d93aa59a387fdc7e5c00eec3bb3d9bd33e47dcbfe21b3c90d37ae8c4f5c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    acffb49fa03ffba25a21499ae6b4662f

    SHA1

    800d4989ac9e33d1fa346ec3427fc3bbd5d3bc17

    SHA256

    c090f3638338dc735187c009d6c7b766779c31ead334c199ff39dd7e6ada3db6

    SHA512

    0354f2f009302e935e61efad8cf106f4f0737a0355c8c46d45b5f0c86bbb77b0639a0d4ae5082ee840b2a966be6a467678e3dea776676e87de41b8c9f02a9df4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c9916962af5964d73040018175d7c426

    SHA1

    6bae66203752dadeaa55714f031f077deca99641

    SHA256

    16e07137ab35c9e1b7b24afae68fecd1ded450fa5fa8bc61c08e4bc3e355fb78

    SHA512

    2c112f114ee59e9af9b4c350df317f1f9fe1dbc77e55ebb3aeb1ba32c92515945751d397c097242409a4a81230eece6c3d02be9879dfad7c0a039a925a57c1d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ef8628fac98b6e17dbb222bbd873ec92

    SHA1

    5665fe3cd91f6ad69ec3dd9c212c56fb5283708b

    SHA256

    e7df28452dea193c66a3aa768378a508a3a071e84827d7061653689983fda663

    SHA512

    e5244b2d712d52f3a344188d83e3a7813bf659de9cdbad3ef0f1eb76008cf8bd08db305d5e67cbc7e4b047e2508e28720747ab603bad21261f5f8fcfb3d45d07

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    70f039ab0158741fa6ebf2014e902940

    SHA1

    a0fb628269e2eb3cbb125945b647bddaf81d43c3

    SHA256

    841d5431bf88b71a5247a8fa81dbcbad56452f13332a367782370dd3b0f11c29

    SHA512

    046b533cf48a2fac9784e890c4bc1b5b039f2069aa1789b94b7577876cbc780762c231760f4c4d8cb0cf0d46b838ed5d954e78e256f136c9911ac6d42f5fab6c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6d3bcd947fb34f4877446dab4fffc090

    SHA1

    e0d4075fe6b40449888add66c0c882c70448eca0

    SHA256

    8a043ca36a9c8397f6236ca3e36a26adf9d0f69602206eec81f9a820f6c62cd1

    SHA512

    8ed6a401bba4ae169916e1831cb460f1053bd12c9ae70c74b48c5104e673258f237dda3f2f4710287f56736513641d41fb01f368ebb6ac6d1169df9aba759d10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e8d9b3f3347ddbf225ce150b2e9d7ad8

    SHA1

    0ed54d5a27ce7fdb2027a384ea188966940c2cb8

    SHA256

    d8e086fb87708adcf1ec11d57b6823a315a3e2208c390cffa56c849dbb578b91

    SHA512

    6b2c1ff10718871da65fc8c4302cb887b8401e481d8aab74246e3645e7d2a10f390ebfcd0c0ee5f22f455f33224991700e9063b1b6939c509a2c238065a156cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6e0803bda791dfedf60048af33c604a0

    SHA1

    f0db0671ca29e5205ed013fbc4ce91a92391a0a4

    SHA256

    71f6a1e18dec8d37df6e8260bb5a7f41e562a83c86f415b61dd1101ebf656d7b

    SHA512

    569bcfae30254907ba5d4194539435d7f1a8ad29d7da912493c1bc821110da5613beb5a821447731e5d427a7a4fa34091b75bb7070006b9f441a1a09e8b3a2c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4d070a4aed7392c8e919f53b2b245501

    SHA1

    ead85612ba6e1ac04ad95f55a3ac3bde41db9d1f

    SHA256

    1fbd37399a8878ec8342a066a4f2afa08bec5ce6f12a39511865f1c9c96af604

    SHA512

    85205fa6860945bae912662b81a6eb762dd7be1549627560c6ba86d247bde017f9712497dbc913fa6eba7deefcfd5af86289089480e5ab972542ed61dec4295f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    70134b9e81d09a83a3d73a5e3ea5d098

    SHA1

    764b82d9552aec74b3bae30e371842c9e70c531f

    SHA256

    1cf57f49b09d3881a64629754df10f0430add2f7820b22d8e163efe9656e656e

    SHA512

    faaa46078e627ea0bcc3dfa561f3dc090a6c2ba608ba5b9611443ff565883c8ffbd5a5bb590e704c207425f672e2f8703fcda3989ed5723dca83f3b30830fa5a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eef7444dc33882e1a450bc5a779b216b

    SHA1

    ea786bf7762665635559202af45646c01ae8d449

    SHA256

    9db9515ed7380276a27e05e5e938dc08c5a8a185bc27afb3f170c2254cd09e48

    SHA512

    76fbca50b09c0f9218d895dfae9d9de88d318f8510f5b83ad4267a5e10ca606b1135bade3b3f85852139413d5d71b8011e22aa86d3e20c1db5395bbc8bffe5b5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab30F.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3CF.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit