Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

f0c9878acb...8.html

windows7-x64

3

f0c9878acb...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    141s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    21/09/2024, 23:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f0c9878acbda76219c071f58884d05f9_JaffaCakes118.html

  • Size

    66KB

  • MD5

    f0c9878acbda76219c071f58884d05f9

  • SHA1

    38043549dec9f6e9da2c9075e4d74fb4386f508c

  • SHA256

    d13c3ed189d9bdc5c77d005b34fe36dff6c6ae2684465011d0e85aa1e5079aa1

  • SHA512

    796e80ae7867e2e43a9163343a0adcb3d3fc90f8d014dc91b6f84d57b1f5344471e330714fa1318ea22c0ebf0c90142a7340575c52a48a414e8984b447837ed6

  • SSDEEP

    1536:bjZRW/HJ2XYRcxvcrabdYzfC5wjVRnodEh3m7wn3tj2H:bTW/HJ2XYRcxvcrabdYzfC5wbodEhW7h

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f0c9878acbda76219c071f58884d05f9_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2736
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2736 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2568

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    854B

    MD5

    e935bc5762068caf3e24a2683b1b8a88

    SHA1

    82b70eb774c0756837fe8d7acbfeec05ecbf5463

    SHA256

    a8accfcfeb51bd73df23b91f4d89ff1a9eb7438ef5b12e8afda1a6ff1769e89d

    SHA512

    bed4f6f5357b37662623f1f8afed1a3ebf3810630b2206a0292052a2e754af9dcfe34ee15c289e3d797a8f33330e47c14cbefbc702f74028557ace29bf855f9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    82df2edc28e6f493edca68d037e1aa94

    SHA1

    7b4f2e94f1b57e014d03235d775e4841d7afd2f7

    SHA256

    c4ede3644a7c6f7046208c2b0802fc24c838f097192bcf2cd1abbc25ff65fac0

    SHA512

    56f1de1acc3331fb59abe2a1903e7c893c57844e4ca121afc37d0fee72d406c0a528adb21b2c5b399447d392aab58856962d59c6ea9b6c89ad14c173bafadb93

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    170B

    MD5

    40d55244ef0ba66eac887dfc454a37e3

    SHA1

    848d8cddde7f7385ce85697d028d8e01fbcbfa3d

    SHA256

    dc842d822489ccbd38771a15851c9eb5eb795aa592c162ecc1060d192ba7e9d7

    SHA512

    07896f93d0485b98edbc71198db68fd7208a123f5f78cbf4905fb799506e0f1ea85bda21e5a9bc45f4fe83537ec85c22de662e3ef4c1aadd46793822bef2af8b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    b63014657996ca455953adff72a17efa

    SHA1

    981291811ec3047ca350f4c166bfac7e42db9428

    SHA256

    bea7bd15f0e5632beb9041644e002d77fa08da430c3d2ad8ca19a28eec63a704

    SHA512

    0b10a603f8eb89b0e46a4db0ba04d923ba931ada4cc4f788723d612ff5d8ec7b0b0c59c249563e9636743c0dc617136db922fa7fc6c132f0a31c67d8a89ce444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0d419e1105d39de8101102c2a3d9ddcd

    SHA1

    dd7c398fdb86ed673862935f42e702ed2dcd2b8c

    SHA256

    748bef69eb2098459fb717907f263bb46f8f67ad726939f19d229e277e209670

    SHA512

    4a76155f5a6582f0e212a08c4782aac03f9d908780338b3f7421119e1564e7f02b2b45071371c25eb851557fe5aa6ee6258099f5f8587b0fd064cd8cc755ca11

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7f80357e907fbe176b0aa02f9361c9d5

    SHA1

    e06ef867285950251dc1262691fba814aea3b061

    SHA256

    fd4ee43f6b20cf9e2406eb339247a1ce03c6d499ca93193b533d414b57cd4bdb

    SHA512

    1b48afb059b3ee1c0f3250225c21c4656bd342a9e1ff2c26aa4d0033c14ca2ec7eb6fddeae37449072b2c43f0df625874c875fc10059a62906d193ecb60fe96f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8d88e08168f2f24c1b6ae85a3bc48c09

    SHA1

    949a7d06869a3e12d6306af5369b35fe2ebe5963

    SHA256

    1542161e4b38f58b3eb0d7f73aeb0fde86377ab8154585a473eadd4e11b912c1

    SHA512

    71b0353dbc59f480982deee0a79171094337132ae98876b25ff548f0d86387f06b5695c492a2a14c1819482db325ca0430b308293287fcd44b608e988a1520b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4735df7ce1a2480c7e3d4013b662bb59

    SHA1

    028c1f4794952e7b9312ccae176e993705dd8c14

    SHA256

    9ca724be621dbf1673a93a4ca082cb697c469ae5d7bedb98173a8ba4f5106a31

    SHA512

    1f030b68651dd352a71ec98dd1a11e6b15f12263febb76741039ae1a43cb9ac390cae17be522c28a9d207390f719148dc035799064b600d615f8376e1f525bab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b0bdc5f165ffd799495fcb338ff733f6

    SHA1

    37adabf571e38a8b69f9bdff8ee1f2d314b60d2c

    SHA256

    e70536f31e188a419d08a6ebb6e5447f819d7ced4212073a63d3ef1c6977f3c0

    SHA512

    0ffe2b6201051a297b22a876d3da398337360aacd83b7e2a1f262e2c2a7f67aecbecd44a43714c488aa584210229e18fc87607b31348276f43c421a767cc0554

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    170325e49efd7b1d7657cb6864d1b450

    SHA1

    d6689018bc9610d1f01f6de49be5d57524f6c364

    SHA256

    941dae56f4e838a0460df97c76b86f10ade175de7a398240cc82178efc31391e

    SHA512

    85bbbb0bd3af269373301b52faa1cc1facbb1e37999cb4720d3d83c8ee621779fbba0eb73f55af437c8d75bb1d3fc57fbfc24a2967ed8bc606312c9f80232715

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fd189cc3b038358074b54e5b1c27045d

    SHA1

    a4e21dfe5d50ec6b154a643581b8c315a73894a7

    SHA256

    ede2299e8cfaac5ba6e39bd75297433bdaa933442d35e9f52c543ff07f986c96

    SHA512

    90d355ea58f0cb7a846f3aa76e1f9da2fd76469146e5d2b22bfec4cc9248f4301c5c68a2b3f9fd49520cbfe9152303fc78ead98320fdeb1588bd2b5086a0a451

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fb1b80593f4f1a5e686746ce8a1dcc3d

    SHA1

    234607a14940b081d823129d31dc3567db306f41

    SHA256

    44b9b9fb8cf589b7319a469035d5fb2431cbf9f3945039ff0eca6f856452a828

    SHA512

    c8880a9177b43c22983177c169d819f38bb953e97b2b606e4310de139b7ef7c7f44e12fea2de62a96b8b4ea528e220dc9073d5c7eaaa0ae25e9ba3029c5189a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    710adc0debdfcc5485e46cfb2afc1c07

    SHA1

    31e41a2d2ce41956920755e0b17b1479128709f4

    SHA256

    333cc4e145659d0618818edd76c25c373afbf092810c9744ba39aafaa62a4106

    SHA512

    5227a7df34c3b965b407f731792b5cbda9236c8850fdee070f61f4d9b407831db75c2aedd9e09249e453edd30d3ea23650d0d70b2f1564f78bb1baef49d54cac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    12e30c82243221082e2414230c0dcf6d

    SHA1

    97dd3d99a2e080725c439851008f015106d650b1

    SHA256

    af80aafa5a67768b2126c4f32d598dd498ad1971bc51831ec9f610b76476f72c

    SHA512

    548213109b375268adfae0e796e35ceddd1021591c5037e5cd5518a7370066da5448224e7f8e12d91cb67945c83f3d0b8dd12fc645338e1bf8388ab267ff91ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    36639380533acc389bb0338d9831ff14

    SHA1

    30ddcae81d483e09398b5053fe03a4102a376e4e

    SHA256

    1d499ac9be8f54f5b3b947228ebdf856dcd2f382adaea00dae7a2bf2511128ad

    SHA512

    a7017bfb56c9bf7ce9207a008e7087c5415ce4fb78a5504966608c3cf46ae873037a57befe4b99f875622680b1bbfa045497119c08ef23473a5738f12be917c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    98ce2fbda29c4ce6733585c622023a74

    SHA1

    ae98a43f766bb4c1b1913b99301d21c7e494d7cc

    SHA256

    3c27658eb3243f2c3ed324389c3f7d4b406e01dda26fd86f0944977396d7d60c

    SHA512

    b83fbc396041fadc149eb1616072d2ec88b56e31dd311ccf53dab15597049b893cdb0ec68539eb6386b968ab1c68d5172d04bb081b10220ff053534d7bc0cc7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    24abfee9a63b23e04142e2c0b2ba8122

    SHA1

    7c168358eea94455fe73b80ba6dee87d3dffc72f

    SHA256

    e5c697ca1c043d65ad751ced0aeb7f9f847d3ea95c73db4404f8539ac3a87c28

    SHA512

    e00031ed15b394767f68ee759407cebfaeded7c3564234a1c69da53f1ca76729ac9ac30985f66ff3acff02fd1c1e5755a2e3946992aa59853684b324843e8a95

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e354bd2e2bbd7a192f06acd763407269

    SHA1

    2b88c91dd751dbeb3ed81c6399a3a84262da26bb

    SHA256

    c6895bcb7cdf9c61df416a4d9537bde64df34d3551170c28d187386871271ee1

    SHA512

    d9aa25bfe2fde899042293e38245a51a2a26dd74606a1c13ef530961a66dd647f28e38e9024c04210ea23bc525c4a015438dcd605e962bf78fc276686dcbe16d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    69354b64761893cbb6dcf05132232b1c

    SHA1

    437a46b258bf941ea0ab08d8f5c45091d5b0a587

    SHA256

    ded988fa4352bc62e91358ba9a6403721b5ffcdfd8da4607e6df25c56b1f7c3a

    SHA512

    fa01030728f060c4b658fac04d8f62c0f09d94c9269b7c967771f98fa34f30c94696080c0c3d1a5f28549b11191162903c02d9de8768fbc0ad2fa7b70f00f1ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90ccf5507cf8d5e6b26578927e0f0d3d

    SHA1

    6e91ea61c9bb31337d5c0838ca18a6abd013998d

    SHA256

    64c7c562a6af2d07f097ccb2666448780ec67dff44d28440add34886d2e6ddf2

    SHA512

    447b761672718ea46c7af3a6b0082765952339c71919fc6153de824eccd828c3147ded51e5a4355c9dafd8361df7917207a27a88c47790cb7a5705e0f5c22785

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bd1e4e9ff630a6cdc635979c62cf694d

    SHA1

    3323760a6e9c2aa2811540b2c60287fad6d3e210

    SHA256

    ca6153ed36d056cffb2b6d03e7b00a17d9f3327e787b102967eabd3610b9a755

    SHA512

    76e2310f0eec88107022b02da2e458170a1e80eb702bcf9235d9b8c242b68e20dea5de8d0581cc3db7b787120ac5915f6f5256272120b7560fe590cd791387a2

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1LNUKNV0\cb=gapi[1].js
    Filesize

    123KB

    MD5

    c299a572df117831926bc3a0a25ba255

    SHA1

    673f2ac4c7a41ab95fb14e2687666e81bc731e95

    SHA256

    f847294692483e4b7666c0f98cbe2bd03b86ae27b721cae332feb26223dde9fc

    SHA512

    b418a87a350dbc0def9faf3be4b910cb21ae6fffc6749eecea486e3eb603f5af92f70b936c3d440009482ede572ee9736422cf89dcdd2b758dfa829216049179

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab785D.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar785F.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit