Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

f0b27c131f...8.html

windows7-x64

3

f0b27c131f...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    21/09/2024, 22:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f0b27c131f87387b981f859cc5891ff6_JaffaCakes118.html

  • Size

    69KB

  • MD5

    f0b27c131f87387b981f859cc5891ff6

  • SHA1

    3730994a903f9977b3f5c798f49ea4e51977b1e1

  • SHA256

    65437f05d6887f980723734e2f6e3f773c3ffd9194161f8d13144c6ea5021d64

  • SHA512

    ee087b44c9aa618f5a4cdaa6c58a122e2043b944f0fb6f035439de68a7ef83df54dcca084e51ed10399ac515c0d453c90a965cdb50448ee363850767f25baa15

  • SSDEEP

    768:X9m3lWb4swZZRVg9PgNxmlnvZP/6SUWSPLFzW1TNi4DirV:wNx0BPB6wNXDirV

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f0b27c131f87387b981f859cc5891ff6_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2516
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2516 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2424

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    854B

    MD5

    e935bc5762068caf3e24a2683b1b8a88

    SHA1

    82b70eb774c0756837fe8d7acbfeec05ecbf5463

    SHA256

    a8accfcfeb51bd73df23b91f4d89ff1a9eb7438ef5b12e8afda1a6ff1769e89d

    SHA512

    bed4f6f5357b37662623f1f8afed1a3ebf3810630b2206a0292052a2e754af9dcfe34ee15c289e3d797a8f33330e47c14cbefbc702f74028557ace29bf855f9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    82df2edc28e6f493edca68d037e1aa94

    SHA1

    7b4f2e94f1b57e014d03235d775e4841d7afd2f7

    SHA256

    c4ede3644a7c6f7046208c2b0802fc24c838f097192bcf2cd1abbc25ff65fac0

    SHA512

    56f1de1acc3331fb59abe2a1903e7c893c57844e4ca121afc37d0fee72d406c0a528adb21b2c5b399447d392aab58856962d59c6ea9b6c89ad14c173bafadb93

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6980e05329f2f6d5058c59f1be89b9d4

    SHA1

    39cd8502afe9705bb236643edf66663f6e1d34df

    SHA256

    dfb36dac6c8f364a94cb579157be23ccf68385d40d108c19d882829264f39a1e

    SHA512

    a9918debf6cb41a246d30a8932faed9bf3d02ab5163c0bffb80570245e85e249cbf87127a04d5ce38d0dd804405ba872c9ca61743a499cfe88409b0571a1591b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3e7c97ac06d6b79efa749fa827d1c8a1

    SHA1

    eb03920b7de5147813fc83242e0306585cb4a229

    SHA256

    b32d3425eccd3d67ae6a2473c979199bdb605ab3b9c490d35baf022b53752610

    SHA512

    b670d0259f83f828dd8e4f107973d7a5f1347265a60b53287796fe7238cbebe6326385eac9b35b7bdd8e7a5a557d8e5c9029511ef3c6e3ce1bf51f767e0e6369

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59f1317d75b0972067204071107da433

    SHA1

    1706c8d0af43ecb55685a8c706e5ec8e74a2797b

    SHA256

    69a71200192b9b46c748bb18c0b922dfff32db5ac0034a830c7d77e3f3292cdc

    SHA512

    4b7c85db2c1f03399a8e549ee3e01a1e8999728949868c3c8eac928faf3628f657722dd188c9be9dc69bacec46658536af5aa998750211ba5a468d17d63ffcc7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a15c8f8bd05b16f5af2897b1561a0768

    SHA1

    0565b74c3d020c0ae19f7b8f9a9ff565abcf9706

    SHA256

    fc7d136fa25978309c2f87bccef2f7ea2e4b5e31a4f306fa606e8a997ef4d52a

    SHA512

    bdd04ebc6747b6bbcc6a58d94b012b2baf1d4510d44091cab2492d142c2cebd60c0e6fb4341108cc9502ac54c6aab77526b63139c6236f067be5643d19e42a2c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    63abcc5461803c3763c8dde9f91c3250

    SHA1

    06590980cfa4bbc0aad64533f7d23902f4961d92

    SHA256

    0e0111aba1ee5ddad75f1c04d16e353e713cb5c115a9058c3df42be91ade5b56

    SHA512

    7c8cf090f840283f4c04a7a1d388537f08a36191957e20af0d979c4db53e3c08653c738d030c3f15528de33e2ab791cae0d1472c2de51ac471d021789b7fc5d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    71d07e06469a4b5551a7180cb9a04b34

    SHA1

    04c12cdb740962ebf56448396fd175e62589ff59

    SHA256

    74cf5b8d83e4c40c5a08f817ed390fcfb7edabe3857eed27bb007b82cff56bd8

    SHA512

    126f82acb6f0904eb9a7cbcd41f37c3c07363db40444afa4b3d7c5bb0bd88f6efa058e733aa4ef3212620ab92fbeee2bd5e91bcf6dcbeb7fb96ab4dc3389a46c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7bc20b7aae9717cd05d6b0521bea7870

    SHA1

    99e6e10aad97578f9c380dbfea4e603479e6c0a5

    SHA256

    9f420453b205a3c9d1830ccfe47380e9da46b92232981634f3c97199b68c11fc

    SHA512

    75452f0fbdb0be526594299e260e1a59bbe437c453acc317bf4d6ebb58823a0ed598a472d8aca885b435ada35653525762d17b56d098532a72a7a7513ec25ec1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d4e9a526cf4a48852a4a7d8f9f4cadea

    SHA1

    a24fcd3c6af26cc8593be3d5a454e6cd36e1bf62

    SHA256

    fd171c1b779c502f5dfc8670a3dc4da4ef231836a89e0d304169db77a3789c4e

    SHA512

    9d7bcb5e4b1bab689b190f32858fd50b20db438b0a7a8991ab10f815f1f7c1f8fa9a6926bd305910e424c6cb07ae36353020cd54b385209d11faa6c304a26e8d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4d7c94feb15caa7365130ab82e6c5e2f

    SHA1

    24ebe8d79025022809cdcb48c432a309a4fd7925

    SHA256

    82a0f70eb90cef5f6fd6c3cc12a1e5aa5a2842f8828cefc3e2c319857023e0db

    SHA512

    4f2d31358cf476e782322d35958e074d5d63a41f8553d9c2997c2b9287a908d64460c4fa0c7aad57f258c044bcf25c739e02d923f953358a18b46b7625b1e688

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    74fe06acdab659f59cb1fb0fbc44c27a

    SHA1

    26cca8383e8b2b69a26269871d91fd71623e8a3c

    SHA256

    1bf22b6518e226cd75a9b1c26b1798b809f243c10443d2e69c350c9961277017

    SHA512

    26167abf610b632d780f445d2ae8898da3c6164ec8d52fa22a7237155e24a70cb6e23f46492cd1b4289ab0f1057ed5aff735eea77c971d9fbd93ffc0ca2f2649

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    45377ce4ac83f617b7bff1e94fb88ec6

    SHA1

    aed2f08b128ac15c04ed410431ef15048bcc56a1

    SHA256

    c610c44348a827e108ead7ab85e36c66ce561bb480eddc182db4b103711c0337

    SHA512

    0d0e8ba32bbe8d8c0aa408ad27437f3fa578d768613b0667802f5f5ebd60ad7274b16a21d5ba023278203a230ec967acc5b467f2e2514d1715740285e9c3b413

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    37d92b6e66e71ed4d37978cfe336f132

    SHA1

    16fcad553e2e48543d7989f56b671216e9dc2d86

    SHA256

    948ef62ad6161b73f266437251e20460d46477a388855aa15c3db78aa7a7f252

    SHA512

    e35740d9023d5e188c041e463ae77d0360dfecec4ce00833b02aad8eea79c9de7ea9094d97b879db88813203f3c3f279db58b1ec0cf247348d8fc73737f3752c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    65d391c99af2b026e77df566e203349a

    SHA1

    40efa91481e392941a0ebd47e88e85fd504bc729

    SHA256

    4b6320cfc84329f98d802e7b261815ea3617af162ccdd919e509f23efaf93871

    SHA512

    b6141b4069fd5749a7532b96e811d9a11db4729b24b6da87d71ae9cdfd12e172dcb29aa262fefd8e30be6b85cfde0571d813b37db36fc48db23623be11b28f32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b6ca72b5121f4eae20d357b71b8e1707

    SHA1

    830103501555bd15003deadd50d9b93bf32cfa85

    SHA256

    2b1b412a1d330980ba4fe10cc33bd88cfeeb1a8934983f33a46af40b92463498

    SHA512

    e1562719488305c6115842cbb8b0fb8f398ca5a32ae9db243d5e0c4e623502228579c00564a5bc357ee2cfffc884d770ff801610c7d4646c62bd0a0e3b8a26c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dff403608b05786b7e3e29a205c7baf1

    SHA1

    682dff45c163f794902f1623354171950a2b0a8a

    SHA256

    0c2f1cac2854d9aa70ef63e7f5f5e2c6a3b9cde0d771ca28715c67ef4dcedcae

    SHA512

    fdabdd1578577a0c3615ebcf0e6625ff79603e8c0cfc6ff03fe87e0e95d2987b793454608179c8fa4929068b5eb30368df728c26641865cae859363744e3253a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9eb1ad343afe1520f5a0d03ab09b3c30

    SHA1

    fa0f794d6daea97ca1402dbc9b5752aa7b852bb3

    SHA256

    1a1cd28ad6fa6223c4d0ffae92569d10f7d08c7132497e7b3c654f0ba9cb681f

    SHA512

    8152214f83324434173e0b06db4354674eabb7941365765434340452df759ef1f21feb3272c07985bf6e457e033d7d22a563582b56715256ac6a6ebfbe13341d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    11c161b2b85b9e82d041416d5b90c931

    SHA1

    6ac4f2984172ec1975d2bf78bd34e1eb5062af17

    SHA256

    ca7f9ac833e2cb33415f3a7a56addf778e5f2d1fb54d85a7b95cb471ee851307

    SHA512

    21db9f591498d1fae0c91b1a36b8bc1bb1dc481f55bb8cc5a8b9f7ce5c62be2b2c1588407d3ec9cccf4d2090cb6d239f90d966d644c57317c8ed75bd35c6650e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    50469e2068f3a34df0745bf7ab43dfe8

    SHA1

    de88a53a185322e83c04d662a34e612f10b79da0

    SHA256

    cc22fb6a630958307398f531ed72e0dce3b4682245c720c16621e23173a226ea

    SHA512

    b9a52bc25d8545229197bd60f8bbc207f580404a0c4dde011115d1be52a788a09d617dc000d6ee9992384c9883489dec1c2ca80c5b5b251184ede7cd1cf002ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b10063d1d3bdc3fdd083ca602d6cb88f

    SHA1

    86cb135ae15e69eb6044b4ffeb60c8c720a9bb00

    SHA256

    0db6a25bb2afa17f1a032b47184b15bc2b0f9d0ec3ecb07044944c4f81ff8017

    SHA512

    304059836afa5c47ea0573987dfc92a2a74e071536e00d5cebab54a1bf0b6a19429672604b27d8460b76e296df370a1ea59e66825291d494a6d25aadaaa3422f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\F6W6R698\www.google[1].xml
    Filesize

    98B

    MD5

    bd9713d9d1eda8e74c504a2265623fc3

    SHA1

    5a73c53b98c941d576b74264a60c7ddf9a872d60

    SHA256

    5fa694cfffff24c5e7778bbf30204b48b259f50c3529cba61d9bf641a441dadf

    SHA512

    dbdb29dfae09c6b497d66d36263226e383b24ea69090a055a5025e2ebc7a30aebdf6dfc4d268a2b9f609b5c1d6896cd4fb0be55cb6a93d5f2ab7a0213b2072cf

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4RXRX1VH\lKPp_8x8SVU7b6KN44fvdWMof2HELUnUniMVUZmLxyE[1].js
    Filesize

    25KB

    MD5

    d79fe6b03d76ee6e31126e039d9e14be

    SHA1

    e0053872adb800706efe2d5bd425e27a9afebeee

    SHA256

    94a3e9ffcc7c49553b6fa28de387ef7563287f61c42d49d49e231551998bc721

    SHA512

    30c9ccdad80c81807da0045df2d950d5c1dea51a475597ecccf36ba3b69025412e5fce1d640d6c5b8cbfb7a517ca0d1195bcfecebbc593c19e8eb77fd9373da7

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\84EXSCRK\recaptcha__en[1].js
    Filesize

    537KB

    MD5

    c7be68088b0a823f1a4c1f77c702d1b4

    SHA1

    05d42d754afd21681c0e815799b88fbe1fbabf4e

    SHA256

    4943e91f7f53318d481ca07297395abbc52541c2be55d7276ecda152cd7ad9c3

    SHA512

    cb76505845e7fc0988ade0598e6ea80636713e20209e1260ee4413423b45235f57cb0a33fca7baf223e829835cb76a52244c3197e4c0c166dad9b946b9285222

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OX8Z8GR5\styles__ltr[1].css
    Filesize

    55KB

    MD5

    4adccf70587477c74e2fcd636e4ec895

    SHA1

    af63034901c98e2d93faa7737f9c8f52e302d88b

    SHA256

    0e04cd9eec042868e190cbdabf2f8f0c7172dcc54ab87eb616eca14258307b4d

    SHA512

    d3f071c0a0aa7f2d3b8e584c67d4a1adf1a9a99595cffc204bf43b99f5b19c4b98cec8b31e65a46c01509fc7af8787bd7839299a683d028e388fdc4ded678cb3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7541.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar75F0.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit