Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

eab63c7237...8.html

windows7-x64

3

eab63c7237...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19/09/2024, 05:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eab63c72377a2d40a78decee0c23fe16_JaffaCakes118.html

  • Size

    90B

  • MD5

    eab63c72377a2d40a78decee0c23fe16

  • SHA1

    3e5a749f8424a2bc2886860da879f57acd510905

  • SHA256

    1bd73992f55fd2645784b12413a7dee11223f0be366e065920145af8269ed3ab

  • SHA512

    c5336fc2c7980cb2aaff86b76d328f52bb09b644c45c37d8158c54f4199529f60447fe6acda1070831c72012cd2da84d5597c0a319af90f34619c603befa2d79

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\eab63c72377a2d40a78decee0c23fe16_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1636
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1636 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1892

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ec90f95c902407540fea26bf02a1b7d

    SHA1

    fb30ced1571d073afb309d605271b567846d64b7

    SHA256

    a7d323cc0335b4323983a163675bfe392d11cb2489fc7a64524c6b06afff517e

    SHA512

    0ed53e75ac89338ce02a54c71a4c8f6fbede52f2a82f878434b79d43b39669ae92fb60e379b37427d63d28514dfe4d8dc6624a132a7dd277cc0e64c4787b2ec8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6f2cdbe667399ba73e3e97dd28da7f32

    SHA1

    1bacb6c377698e380721a4e09390337d987c6f77

    SHA256

    6412e39f0e24b449d3731a8e99ed9a930c12e673b0d08629ea2eef4d35653cf5

    SHA512

    09670183853d9c1d6df53da81f6c5c8dd31cac1dc951391d89b0280c93c0f6654f4b7ec2e34798375cd09e7ee60c93d05e29a0f7c38aa5ff7fdd067431096e1f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    997a3cd58669ca2e62d13ab3a51c89a0

    SHA1

    2a4afd925856aa8bf131a29dbe6377b4a3531483

    SHA256

    f40408474d37eb61c0496087350e43a24da44009f3bbf809276e4ac75aa3eeb7

    SHA512

    88abc75b7c718a1972d0eb6ace3d2af31712913d2ceed7e948075b980bc6e0eddd6a7f18cab950702f5398fc1a33f63088f1faf0062a5ba9769d84a75ea93a8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2ba84360033b0287e936afe272d0826b

    SHA1

    e1c4982d2494e5d86d2bffc2fef65532c3ab3d18

    SHA256

    e8dd7ee793c589cc1ba709f3a486ad3fbc550ecb295ae897c750696170be5b65

    SHA512

    5c4cf5474e73a00c771a222fa33cafc163d3fde03b09dfcb7fde2f98f5acd982e55aa0841501afd5044ab380d6881f6c37c09dc3f6859f5a9d54604b5ef6091f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dc8382ca85c91eda2c42aa8bcca74bfa

    SHA1

    6246fee33b4532d42f1bccfc632f61f1dc4e80d2

    SHA256

    9c91b30419fee5702aff6f3a5c658d983c66f3db2539dcda392918c2c30c6ebd

    SHA512

    954f101b9549e726c2c7e889ceb8012535685e388c2edad973b90a3d116437c07a3780f8b0d33716dd3d9712d7c452dba99963b95931b745371af6b1c71362fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    09dfc820676e52ea5eb7c064a396d142

    SHA1

    aeb922b4f3d3969e1e7657b1fc0cad49690ffa7d

    SHA256

    8459f7802247c01758690343e47fe69697b0ae55fb7840986d7896549e5840e7

    SHA512

    57bab709ce79fea65a411896dcb8039ff04b2daa82e800df8c579f86465ec69f94793cbcc04b4ed87f75a68f14f5660d15e7b13aab7823b062de821517d4dcda

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ffda6152b378cb3e1f9592eed03b96a2

    SHA1

    c74d388c536213bd56cbd0514e9a6e805ff6ed15

    SHA256

    754f2e2c9e8ee55847415a9bc20f5e11b1ecc4b0f6e296e74592388e3520bbcc

    SHA512

    4075876b87aaa788644cbc15f1763c3a409f166e318237ccc4d5596f971e5ddc666976fab7c57c3575bbd1ddd9049de6245a06aa06eb10f259869943b082545b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e594b2ef700f0e49d85a864852c74bf5

    SHA1

    a2530f0072b1de5a867080d275f3f7c12a2d6e15

    SHA256

    180b6030b05249d06dc58f70e49be2b7d70c1b4d1c40335d33d9060e67fbd679

    SHA512

    f26ba6aab962cf4bec137a088d79840dc2d758edfbf0500e289adbece5872b6fc9677f2ab3fa7e1a85909e86abd5ad49803f0f6395fc72eebf240eb1a767b4a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    61d72f1129045a82f3a1ce98ef82ecf8

    SHA1

    09398c9094dded7fe5b6b619f5dcde53e479eb42

    SHA256

    940f1737488c28dde82b519d59d4a03f9a6755042e5349690a055bd249b59e26

    SHA512

    10f002ae9a143ab8243491c5c7667766a09493f2e5711ee8f7c55c4fd689e9ffec236c4dba429b39d99c3df6ed659453df7ea01df1a6290427f9bffce6841199

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    174f8275430ffe82f64f04a4244d89ed

    SHA1

    ecc50998405c846d7f1c273171ba9e1e4be78f57

    SHA256

    79f20b6197c7d025e65511f9a545badd6160554598f1ee0e3bed3ab6684cf35e

    SHA512

    a7a0d1364eae720aaac8effe7906ad40791db82083c64e99b0d0b80ff27bac3779a9275fc05fc1fb893bcb1fa33dbaf4966efc5204d32aaa3e845af305fad39f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ce688bc7eeee6dbcf9d556f396e6cd28

    SHA1

    6a679f709843f585c527fd1004b9d5555903b3df

    SHA256

    c036f43c426e0b46e87ae5b3ed475f7a20dd3b3ed1d77bd710b5943843b3f55c

    SHA512

    5d160eb5ab03ff1b3c2e93717dc1940732def326b0f586a0ad6b59cfabda9df3495ec94a5cfe31b5d82fc9d5375d465c8b0c9e3b44f78b7e2ce6b35e011c53d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    181910c9420474c90e79a7b80ebbde66

    SHA1

    ab1e8670e5960f6153edd58814cffeafc4df0f5d

    SHA256

    c2feffc1cd95d4fd67f1822aa5e4533cd795d38e62da6874292721477a2eb921

    SHA512

    9960b5a30b00572db2c55744e8ccdbf9bf9cbd73fae087710fdfba567fcaad9e75c7e2f0de8a99923fc06d8375a309971bc3031f1347144e66ee89bc8b883dfa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    920767f5229c546fde336c79796616fb

    SHA1

    82e3574168225fa31f6116f21d03efb6bb97b783

    SHA256

    b92d22d1f81b67d36b34b66353af77b400615e5d8f40bda27b1039107006e89b

    SHA512

    61735acb71938b31671ebbb77fc9b71f86993fabe856cba8c459dd8f2bc013338d6eae468063d0cfa1a7620255daee079dda52967ff2ef0dd5d32a1544f2bf44

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2832740c6cf8898e725294045e80e567

    SHA1

    56abbc9a6826a40dd084039f50f5475ac4bb533c

    SHA256

    4c20376151e5d15d1b9dcdf85ec07f950cefa044ff1459a2b8c9a458ddc15990

    SHA512

    50b6fd7acde8fcd6c46f7b149298a4d8039f22ccceace17674bed85b63efb5deda584e66c948e13b4aaff8cd104cdff9eae2d807b6c9e1d3d874fbc35681c763

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0fb1b0f4c9a156b8cbeb529d752f6401

    SHA1

    3cb82abfec55916aed372a65c4e75539aec94671

    SHA256

    e0f9e169dc8fb4995e9d963224603976ffc4f3453a37179ca9b9f1be97d81727

    SHA512

    15b3fe4d951fc718c1a5ca9f16cdf75873c1d4cd2305760f8f88fa5e7ac076334ae0c96ea96926f00bde595d84fc796d3e82710af4aa8e7af193cc4f1565cb21

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cc3d5cc57af95bcf27277f5640c4f579

    SHA1

    ade0c9e8903e79c2c9895d50ef2d06a82ad0e1fc

    SHA256

    78dd219e7c05fc14d607106768abdc65e16a2594c6626fd5a757f466873e4cf4

    SHA512

    4a0962e9517c3921e65fd0862e6617df2c8413110cc4c1872b986c9906d37cab40ffc7b056d3b2cd54c1dc0716192a1af486fc71e5118bcfe2559bd3f3d800af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e90d3adb12aff2b0ce832d8827bafc7

    SHA1

    2936aff4e63d49093503a467b2a4b517b53abe45

    SHA256

    9d37dd3930134e0072853ac0da01dd72092bf3523f2cd844ae8511938aa56205

    SHA512

    435597ecc10d922a2f58a8e73862409c9458d642a6c580f9da8e042429450159cce5704b2bd32d9da81139f997ef97aa966ece96a3a87aca173b2f2d3a8ab25f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    395130487bca432dd1ff9321046c27fd

    SHA1

    a13fab8b2726f5c35b385357aff715633dd92139

    SHA256

    bc211e845f97b3daf3d2d83a5610ba380de4d9d269440f88ebb44aff313ceb11

    SHA512

    b5b5c6ac66e0de091e8883d5d445b6b7687bcaebb71f3abcf5605e333b51453f722b4358bcec1480b1d6185bd7779d2e4755e2323a2c9385eccf1391d03c0606

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA170.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA1B2.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit