Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

f0cd967e57...8.html

windows7-x64

3

f0cd967e57...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    143s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    21/09/2024, 23:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f0cd967e57936615e0cc5012771bedf6_JaffaCakes118.html

  • Size

    10KB

  • MD5

    f0cd967e57936615e0cc5012771bedf6

  • SHA1

    6330b1ade4786209b92d6c1f8adc6f152d52cce0

  • SHA256

    3f4036b225982ffaf7d366f6f023f93938343204ac84655523078b58ca7b49e8

  • SHA512

    10420b1190e5d2950e88d197ac600be483c500a72e629b729ea1189b65d4e1c173e5f05a85001bb5885b8a2cecd4552a4ace500d3761ecd9eb45faffdd521c7c

  • SSDEEP

    192:IASO0aN34keQX36OQtIQ0RMA93M14Nm2z4OVaU:IBO5OkXX/Qz0h8ol4U

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f0cd967e57936615e0cc5012771bedf6_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2384
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2384 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2336

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2253d04a0a588553b378d5f8bde64f81

    SHA1

    0c6c8921db8fb80a906ce995cc52705afbf2aaae

    SHA256

    50349c10169bb392a155873699e6ade2e4d41ba4898a4af52766067c6aba57a3

    SHA512

    0c778161678d1347db5ec9178833c07f9983ebdcaec2d71332013687f9b65a9b971a1e19edf13c1a4b885d5fe9cfbe21d9bd864462e7a5c8e0ea3edd5521ed65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c0bda135ac86bb200f435cd52ccd2fec

    SHA1

    7dd299e76a175e46716d3a4ae957594c9aa0bd71

    SHA256

    7b165eaef3b62e5220ee5ee543f95066f2fa40e636c0c8485b8513cbe92d9bac

    SHA512

    82e00e0a795f36945dbeb17d7e1c734db514ac5f8c22322609ee81eea2d40072d3339e9b72cacc71d86ab3886860c123c552d61533afe688e7544f6918bcf543

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    052d4567b4728467facc5ca3f0db1003

    SHA1

    c6cc04a0dd617dd701b40b8758fbc6fa3182d9b6

    SHA256

    be540808920b72690fd5506e28314148961e7c0ffc327a2d733ab27d5765f8a8

    SHA512

    db89016aefe45a934b7e7c4be79ac8affac01a381b227b55df9f669f8e9c5a25b941be3655cae7697348d4cf2615ca119015dfd97c986b3af18318445526a5f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ed59efa5c32ab4124334b9aaf2a5196a

    SHA1

    b4c9180a208ad9ccfd0bb78684ed7e1cee1ac035

    SHA256

    58cfbe5c09394637df79a562ffcc5a865644302359c774328ec85e4aed5b0bdc

    SHA512

    ead1a7413664d110b06f737b51c7bd8fd82418384827c9d9387a438e25892dae85fdb38fb329e596099a8c9703d1f21206c391314e7c751dc50b54ad80935d5a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cf4b5d5c316261a8b0b17d1dbf0dd69a

    SHA1

    124970fb0635a89ac042b1882f04b0037b02e3b4

    SHA256

    d4b9c32e97a802ee95c93be5e2cae71074682ff5c9dbd0edd9b649e85a6ca28e

    SHA512

    f0bd46cf7b991678ebe3a1133a1891afabb513eff72d81dc8db7ef1e7679fbef6d1306bcf21cb84c58f537f4fe5caa3e9adf527b2fb355527b45ba719019f94a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7afe6ce6fe06655040c7f51b5d3e561e

    SHA1

    9b911068a9c77b3cda1f7b69532135c85e1b1ffe

    SHA256

    dc98c3b04750909c23cfebb3ad793c557bdb0ce8f0755935cd61ffe785413285

    SHA512

    e991d7b606e16b6e0c7e83fb9799f98d4e7c5c05004b134fa27ed0d412232cb53e11276062675e841bcc87051f3ec0dc841cc42834afc91e18c1bd9e244d89e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5b58cb070fdec30825d6bebcc4495a93

    SHA1

    19de24b929b83d5617b57ca7faeaf84cebc76f3a

    SHA256

    2ba22c67e91463ecbbe149e8e7db44985c68b04bf66bacd55b0d068ae17248eb

    SHA512

    f324344507abd3d420297e28ba88c402031f701b8b385df9b04fd379ea04164e2e2021f116e13ecc92ff607eebc38969d10934b6924e43dc51b5434a72fd5976

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5b48cb8e804bafafe5f373f25fcde12b

    SHA1

    6cfe87db2e6c7b5eb21d6321a57636440cf6bc89

    SHA256

    324ec0521ca957b30b864ef1a637a65fdecdc48f0c1e7744f3bcd12f2cdfa95e

    SHA512

    d4c68c9ccc121415a26cd185dc6ebfc4565e5870397185c29f08ffaf407796f77518ff832c6684e7cd9455541baf2b644c001db1347ddb1e7551cb8f7205440b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    de42e9510b8f6d8c985d8131ab62ec81

    SHA1

    fbc7572aa1796864e1b47bb69a53130475e7b786

    SHA256

    962a9b530a5897fcb2ea347738d1c91aacfd3f305583099ea7b85d4e304e982f

    SHA512

    0feb8421790a44b51afbacebed2ac957f7770ccbea96d9ece257865c89d7d484e4d613ebeec12a87a609a3642f14d4caba329c679e0f81a11581082ac5217aad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d0152454065611924214ea409ee6e95

    SHA1

    5bc0a0f14d9f427c3863fb419e32ae265713fd5e

    SHA256

    8ab7db44109cfd077fcbcbb542bd8ab73b91d66b1bb04d2e3e45d2f596d833b7

    SHA512

    d814a380826bb57c104083c73e494f315db3cfe321f1e14d891963524d558967ad2655b38a44f6e6ebe31d46b78c8d733a5b9149eb610ec1f5abb96133d538f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cb875a9e3cd03e1c62e59c5b0312cae2

    SHA1

    3674b3749ba576f4458c0098105200c671cc70ff

    SHA256

    b6436041e2c7b60463d1fee709cf822c70864a9ba6c82ef10a6aac3509d4ba0d

    SHA512

    ce1965e43b9260875908309c9b4bef54da50e24b79978a38e7660a9e3bd723d1efdfecdd4452f4742549ed9d10afebcfa8ecf3bbd353d27bff905808ee9d3e64

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d8ba436794154fca21a2ad7c12597496

    SHA1

    b220bf03b63fc5e178e904b49af3c831a42a7266

    SHA256

    6e1d0e2ced1f5b4a6e25b8b34c85c368c87c808710dfed714e5dc61bfc75d1f0

    SHA512

    182faa0469b3069ce6f286ec32b108f03b5fb5911e3211e0040555bdf8429424450fe89bc8d047b1bf4a838bead8a246023a744e66e4235f128a7bd91528b767

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b4ca5d9d298b07e4e33c23f2339abccf

    SHA1

    4d16afbc3f2694c950d0709ec0496c95844cc841

    SHA256

    fe70e588bf5bad6ec31aa8a6c3ad110ec70098d13290a52d9740de95828aca29

    SHA512

    2505676d0843fe347196cfe6c1eb29d77fb0fe67ffc8221bcb6a6af760cd9b05bf71350d0e86997dc8418bf7d3ec91ee61fe2cc667097be2362ab9750c350cba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8b907b1bd58d7c0125d4e5b8780ac10c

    SHA1

    47d9418c55c7b188daccb594cd131be33648de42

    SHA256

    d5bc3a5953496698c8e9e42a6ba47a1af17ca85b9402acabcc0e19731f2863fa

    SHA512

    3e1717499b804e7f207cb0b86127f9e357537d2d49b6ca1af4c4682a03889b291a0e2828d6f25b4b01002000eba80c28ac88f84b20edf46e69c72c3ca78a2680

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    493bc2a41bb75d903771045acc839d7f

    SHA1

    91bbd00a2eb2fd62d3d3489a8084eb6586d9ff47

    SHA256

    5fb94d506a7004953b1f1464d3c314f2208eb1d84b2997ce638ee50b180437bd

    SHA512

    417416b98e6b6cbff35d50219669a67c7367bb24e7451140e9053ac1bd0179d9e999b7382b401c565d5c716c840849507b2b9502b3c4cec0612f7be7b374077a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    55c675fc1297c54e3b197aa8f8aa99f0

    SHA1

    a1b4a570203f2730c6ba4843098a81be4a404273

    SHA256

    860bb19b137703c3e42d1bd7f5f3b563623b2d8a7a39ff30c7cfb4e24738ed13

    SHA512

    b851eef20a8758d9f1c3568f42d8b47e66174e6962ccbf69ce73bb77d27e3498b75f012a895873c6f871861c489e2b3d30aa9c1489dcb317295472629a288ed9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d982a1e57271b430ce2d5447248a1aa7

    SHA1

    58383f986f55c234269e5cdb6c98db66f6900fc3

    SHA256

    353bb8c7f794806e50e42d63ec10b48993621d4721f74216e88ea5fdf1afb9d0

    SHA512

    c73547b34b5e465d591fd9018a31487dab0e3452403cf41bf469d7ad19bd2ad023a7e35f7d3f5d2a2761b13d1e31246b0feda09f033869d73b8a0f2ef3a1fe3e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e9893b8c3dd1b918654fdd31ce083bbb

    SHA1

    6a22e2e24c615eee511e63a6e11686e68d7687e8

    SHA256

    5b2e1abea9593ec41a0b7e24163156ae1c96b62ea90b96f9e931942d50cc9989

    SHA512

    ad02d43e8e224f11233ef82716a1b41cf7030e5956f6b496ca9bbdceffa36ca421f8ab77803c9ece5db0dcd62b840f9bf478a0ec6aa77d43e58e769101fb4dfe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6d256f3b24b598445b51674ca98833e4

    SHA1

    72cd2816af9fcfe99fe244d563ba5c8322fb6775

    SHA256

    bfeda5f3d3c310abf50e449f79d25e4f80c6a3140c433d3f6192ae7b24b38432

    SHA512

    2560da7c7a2a5c74b0be83238faaa39d812e3bb6c51dcdb39c9127d26aae311b8eaa4410c2a93e432d0eb9757a29bb1c602306268da78f09be018398fe0f3038

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\633SXO0D\f[1].txt
    Filesize

    41KB

    MD5

    3cf4b4107e0abedec7c70e81d3249d22

    SHA1

    487e5b9dfdaf8aa71acb416f1eeb4f879b1972f1

    SHA256

    16053b78b280462fb0960fa95bb6d10ebadd5cafa5c621fb1256eda0721d5b2a

    SHA512

    55f8656588f91b338e91a152c4f9743bb520fa80f3aeffa4110c63c75079f1702a06ef03d152e57313a6be4f72757ead66411fd4673793555780ba15547d9392

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE199.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE19C.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit