Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

ee8cb186f7...8.html

windows7-x64

3

ee8cb186f7...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    20/09/2024, 22:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ee8cb186f79d032e5064b47a97596480_JaffaCakes118.html

  • Size

    27KB

  • MD5

    ee8cb186f79d032e5064b47a97596480

  • SHA1

    0043a402c03341334aabcb9724a1970cb81b900a

  • SHA256

    dd54c7f022b24f948de867c40da2f4c17abee4a5a181f4292f31ab718956f479

  • SHA512

    996a16ad51ec9cfb10c88fdc79db72f6738812d9ff6ea17059e46b1259a23447f28378921003464675aac30028abe726841389504ee63a5aa9360b078dd56523

  • SSDEEP

    192:uwvsb5nyWnQjxn5Q/ZnQieENnsnQOkEntjTnQTbnxnQ9eGQm6uREyQl7MBkqnYn2:nQ/cTIkEFSWRe

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ee8cb186f79d032e5064b47a97596480_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2984
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2984 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2804

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dc41a6458b8596c54a58d71e0b43c60f

    SHA1

    bc901f0003a1481591316521a2bec0df0eea5e53

    SHA256

    cef548153000af1635553a9a9a0879c807f525432a9589e76e58a5d0604a91c4

    SHA512

    f99b8998077503c7dec64497789e0f9e94deb749acb85e66bdb3997549957fa0a58959e9b691e3ef9e28c46948f085927dd7187c7d325dc7a5318bb63560b888

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fe4f5100500bf60ec8445cf9ea3db12a

    SHA1

    b1ee3de39657f93f005efcb3a6767f5a38f9de80

    SHA256

    b308ebb927102db288110e2389902689026d02a08420c1dd38d77fd94677dff6

    SHA512

    90d169c1df90ac5726cff60307cb5c12e6261856e48f2082a2a1a9bd08eacaf951b9d34d99bbfd5f9105f97525c51ca9c1a4c9eed67d9d5c743a698d82ea7ab3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b84788de2a63d1d03b32347e7dccbc36

    SHA1

    f9ed1231ce24e2da6389d33bb721907f4da39a01

    SHA256

    f2c0450182a995f40a1092a4e85f083edd223bd3247b4be8fbeee1c3798faa1f

    SHA512

    a782694e592962d5d0b7e8039ad68fa510661f21ab201b3096c7238be898479aa7a80576f8d3504c222c4aa7b33f36764add3f20f22ff9b67265b76f8ea27902

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    85a997d98a72fac985008edc7caad486

    SHA1

    4f5d3273ba286bf897ba31ec2d23e2ed993c87d6

    SHA256

    9ac79259497daa871b9fafd128854c47e79fdb1aadb26474c472d86e828c4b34

    SHA512

    d0bf0d98e870e095bc0e7a9a54eac27a083afbf085d2532eacad326e7997929da0d4ddd46fb490c4f604ff6fdb5a3f9d57e51af211d3ff80b1ffcd019d1d8258

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bcbb83caaa3355fa109d410f96133205

    SHA1

    f56583c9fa2d1e5d15a20555a56d64e08bb1fcae

    SHA256

    df10338eb076824a19828ad48c595cf74b4e2c5f5f2ff37094868c182ced78a7

    SHA512

    8abdd671aafce518f909d2096cc8482eb97b379e63436e6b78b326828489e2eec96f1f4107d8e2fa2e0c02c8dedaa700cb32083ff2fd005a264b241aa3f98316

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f2dd0f2b4b9f5583116d1659fd5e7c66

    SHA1

    b45742c84f7e04dc59c631700650f07c3be7ca47

    SHA256

    87352b1a839acb98135f8fa5c5e587095f0525f62bbeb875baf6a7599a12c7aa

    SHA512

    fee0127e904a127cf12210aae83e8c619b0632b293d94fecf7499163aaa14050d512bdf5bd9c23983145bca68cc5736c014a88faa53c1716b928c536fe8695ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a62ea495b897d9e49e6bd3334b13e93d

    SHA1

    cd2ed46373d5b4b66532ee8e5dcbf2c90dc3fdd8

    SHA256

    df1021ac87dd9be38c109642cccd1d7355dccb610ab5d6acb31444cdc0b36d6d

    SHA512

    e0efbe31758c519c880e395161835267c9be3447766bab6db41d26ffd245d4b0a9a638f86b0a38ca34a3607274344e97d3222e723ddd5e86edf8f023ecac1696

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    db767e85a8767ea77db4361844cc310f

    SHA1

    4f830eaade603fda50f0d03fc84762df90ae1656

    SHA256

    658911b64791a231a757dc5fc7a96fd8f6710e66142461e0292d485ee609651f

    SHA512

    d568add2b37b633a15ee48a404d847edd77934207077505b893823baaedc424f7b91eedea18c19c6e1ede2a35d6fd41b05c657fe80d6e3bc3e39e7c20699f9ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4607fa2d34bf9f1beb9b6fff0f35f7b8

    SHA1

    b7f7391eb321a5bbccd59701b5da5e0a87409820

    SHA256

    684d737a68a332e5fab15e3466a80f639396e3ff568368b3526a1dcc30f60b54

    SHA512

    03c4dbeefb0f3cddae3bead1dc75599bf3d63b2d8a4306cf0ce83b393b23d36b96c2635bf72465ae879d9972bbc63b957357dd377170cf510630d7361404e0db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2fe0be5871c9fc3fda97171015206d01

    SHA1

    1d49d1bfdda96812c660e218264ad8d57fb0427b

    SHA256

    58b5a1b604e7e7a38496608f538fa23b8c31ebee9ecf89941899da8918ffedbf

    SHA512

    21664f40e49198bfef78e4eb52a7ebe01c006c20eab4338af083df69b89cce6167706d96e29044ec6a9edbd2a0dd4804970152f2797d2a2f0cea240aca4a56c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b005b9fb133c18b47b0b979ef7e3f177

    SHA1

    cee2842d3a0d4a315c414ce6435608bb2342353e

    SHA256

    47e74ae12d6324f988d8fb19daffdc4cc7bff86f45cea8b2a549cb320c9accc1

    SHA512

    514e589cc5e39aedc3234bccaa0780dc82c6973f81d5a3e422337e8a0d82b39bf865fa53721c056a5d8f537c727243273e7b965c7b702253c7b459bf10aecb52

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f274504aee7403a446065b7fde1d970d

    SHA1

    157b498f7f3f3c7461da83ee1ef8012386fe806e

    SHA256

    ceaf99b95c39c8be7ce9c2706c6f1ee07b960622fe88e58aed5dc89039cc2c62

    SHA512

    5cfb3d63ad513436e584db8893ab5e72a010d017c4aa0c65159fb7829799ab81aa41afac240f4e5e3e58909180115b5c4d2d255c36197491c71559ec9e429c65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9e6ab318cf14585f5388adcbca3342e0

    SHA1

    240889be25043963604c3705c31bb28a6926ad94

    SHA256

    171ab6b5c4f0819df00c2a44f40f3963f5e978c938d0d19f394f842ad929b4f0

    SHA512

    409a4842e9f30eccb24c2791242d86839e5fb74f28f770b315b1ab530d342e48db4cd730e651dc470fc68a51bed7e50c51ba41ce9a07e75e14946518fa3f9fcc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    445228f238384a0df2751a86bf8232dc

    SHA1

    6642c28f6ec587cc13560bbb7d6c4e7fb88ef807

    SHA256

    b0ef1c079ce9ff1eb4c16738607f60aba6f6da91b432ac4ee5f49fd8b2f0f8bc

    SHA512

    4b0fb70e46aa695a6347044c7817e1f8f2269172c49eec39ee83091ba2baca0e296eebc1f6d6140ae9e3b9834bac9795a674ba10867ce63def1a30d09c8e23ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c734dce8173e9039bbce85ee7e4fa0da

    SHA1

    607f6093d90789c6959058318d31f77cbd3fc6dd

    SHA256

    acb1c1f2dad3d57a06f6bbf7b2a9b66cd98847121d5bdeef9836f89b4556d7e2

    SHA512

    b9e8752d8e54e6191a0485147c7b076e04693bb08b775580e40772d920b0709eac101d2e2529eec68e078271fc6a751e7dc2d3654f837faab094684242bbcfa0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b673439f3d645752997fd559610d9a3f

    SHA1

    b873b6963f9a6c0b28baae8f50c34824bad26706

    SHA256

    3a9c0d2a2aeee6353ee5b4f058f1790a4409411cbc163b1b7da86ec7a49dacb2

    SHA512

    ae9350c2a57ac4368c4711f996798ef9fb7e465e4acdcc83be1e6bf145963b3f51608c86da261bd5b80f35d15a3b8fbebbd9ef99c4303fe80b24c54867707206

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    78cc3fb945ead320b02000539442fe1d

    SHA1

    d37ca437b3444c4ec20b3b4ef95afa2585988b2b

    SHA256

    c09ec4bb13c40b411347d8d3fc069b3dca9ac1d0f4160f91f21a4ca092e32a53

    SHA512

    c5d4f07f88796b6f78dd5599cb98a7c579c609412b295f53d4f13c4e0cb07b9acda30ea58aca687907c51fd5ce9eff9336f8a5e85162af21219f8a463bc3c2ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    56132f4f077d789460930fcbeadfa7d7

    SHA1

    867111fc2012e72619cadce2f4b1a0241cbd75b2

    SHA256

    e92bd64383180d2410de13406ca945f91636b87facca0127cf36752d1a1172e2

    SHA512

    fef8faf7058c84676e2a74676dd0d3eadf3f3b5bef1eaa116886579821fcfa27c48e4566201570641f5c1a8806395180466f35bf8482dd39fe1afbb32f0fbcdd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    80b6859755214f027eab9aa348b7188d

    SHA1

    b39eb818f8d94b94740bb14b0f956f3600c5ac02

    SHA256

    74893a843b8cfc54d00266654caac4c61f2c0193a22eb6d5b38e323c5fb219ce

    SHA512

    dca1eb3b23c50e0b617f9a0195e6d85acc9a45842bfefcbcc5ffb232e3fc1ac66f5a2be514b2901c2d370b3269f131aa940db5f308200c5eda13a56dd428f40e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8D53.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8DC5.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit