Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

ef1b8bd256...8.html

windows7-x64

3

ef1b8bd256...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    21/09/2024, 04:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ef1b8bd2569f079207c78d27905a63cb_JaffaCakes118.html

  • Size

    27KB

  • MD5

    ef1b8bd2569f079207c78d27905a63cb

  • SHA1

    80ae243a0f1b98f300f49eeff92b04a1323a745a

  • SHA256

    7ce73741adac3126f64b282f9233d06e2f0cd9f87c5394a1e28dd8667e226ac3

  • SHA512

    55ba0c15ce62006069f8b769be5989346df71418f80153a7bafa333451c7971f4e631e5e2f4dc0269ff25c77227cf6ae1ebbee9bcf5093a847e0b848ac871798

  • SSDEEP

    192:uwu/hkn4b5n6OnQjxn5Q/dnQied6NnVanQOkEntzjTnQTbnhnQ9em4m60KRBKipc:jQ/cvgGMRSCS

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ef1b8bd2569f079207c78d27905a63cb_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2552
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2552 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:1704

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b4a825f05660ea04a4f6b7cdc538aaaf

    SHA1

    a927ad1e735ff6e83a62bbd9c3146d8dd403bd2b

    SHA256

    b09fc1b1cd4ae6ead15669b1f94391ff31f48ca99364946ff6109eafd1ad0fec

    SHA512

    61bf6095c273bbc29e2ff57d1fc8da46737876db7b1da7364e76034a10ac70e3e4d31d026ee24dc2eec55d7fddfbee98dbfe1865e9053473756671dcfec6e9a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13555fe23c75fbd57a12e923664ca1ea

    SHA1

    0532c6f0cc1f9828a672b49095bc2074e904bb84

    SHA256

    7f98cd8337f1a90bbdf90b491302349608361b80d3f69940264e739a2697509f

    SHA512

    2801da08a90b88d7eddac8d31bc070eb62277ab4769b605b0db312a5279c9583e83957b418db4f577cf5eb372a470cf9644af75ca053edf86d58cde17c4a3c25

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e1655026b05ae32520a66f0db01fa1a0

    SHA1

    1a66c58d73084146d1213a749c88e2f23650cb75

    SHA256

    9e2521b8da3b51675fbac5ffd9f8b9ae0d55acd24174dd81bddb78eef934fac1

    SHA512

    15714309661702308fd8285e121b3537c46f8f5eb162d5895d92b04fa7af37da49caaad02c22e00470ec1af69c0e5dc128d1e5533821631351b63cbba5daa8ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cae5f578aca36560ad94fb1376182aeb

    SHA1

    92ccf10c43a6986af26277b4a97cf95067acbc19

    SHA256

    8b0752695f668200b0260902985b0f4881a963dbec71f6aabe7fa57abede8632

    SHA512

    15bf70040027557b01d271ac33dc2386de65aecabfbfbf620b0d647704a42d8728cbdfac18fe5612c82d00a7197543396d9f8c40a4dc499b401d311cdb1c8b67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3bc4bf6b20ecdc7665014830388bb67a

    SHA1

    bd4343259f9d3c4746658f9fe0b1371fc9b18fed

    SHA256

    b50649438c264e4841498a656d9a35a62128b7a6fef5a55c71abb72d9fe842cb

    SHA512

    ef82934ab73e14d53fd7f4c703bf29769c3691ae3e984041c012c7ab3b6b51c303c4b2edec48eba46f3cb8344efc898696af2a5998730c88d5eba744fe8ee0af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f03561bb746a746fd8aae1653eaf4e25

    SHA1

    54b100fa59d4562a56108d66584ad5c41f0d160a

    SHA256

    fd581d3400dd7507d8a41b6622e68c515f02a70abbcc63c1e58167faeafe9985

    SHA512

    ff39d71ca8c8ab0794233a6c3ed3b7896f32cab88a16a00524fade95df1e4da340afd7ffb23ed3e862ce2265160c291dc14975c85ee412bb47b4cf64de9672bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7e36a950a5ef572af1a37344469f17c7

    SHA1

    8c6b2ca9866c725f6767996518553b0d37e98cec

    SHA256

    f704a0263e624a90587afe519140fc44c162c2e20e64cd5c5e2534c651756b7a

    SHA512

    b4fe4a7a22414a7440f56d267b447b24a49770460480ce5774dbc321b7ed81ea5ced12263d29c8293d486c250ae9938931ffc11592bb2b2bfbfd6911a2cfcb58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8406b12f660e61486058cb8f50c49321

    SHA1

    15fd8990438e5d37d2d08fabe6f97f7b5c1341b1

    SHA256

    aa15d1b89fb396bd63073cd2dbab288880512670b4658f9007c14b8f614ddca0

    SHA512

    3dca6d5f457c4d97134550641a9009d8af5bac92b276b883eda484286210cc2808ba68df38b1fd466b6623a801db6261747b6311d3a6e965c70d96e4b1b88185

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a310ec282e136e6c4582b296d0015cae

    SHA1

    1c1c832cfd500f43369f073e5dc62521a2ac181a

    SHA256

    56047a256ef28df51dcced2cbd987d8998f04e9b204ba33eeb45c5d24804c55e

    SHA512

    97922c30e28a587c9cc08ae0015243bd3c88324ce07c7f82be26cab4b4a7e3cf0f15673ff5268e5895eccf8a6193a346057d50389f4b938c61131e3c9d1e8aa1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    216c36f90d9f55f4edb647b165baf5c2

    SHA1

    e9363a757cd64405ed4e58091d2479b84159bd33

    SHA256

    7817346e830233bd8efa7c23d9c62e5729b6b3ef70a7c8bacef7b452bbeefeac

    SHA512

    f7558f2cce0e4c864788f740f6797839a4c9c8b7b7b710959f49e832ee391af1e9b42bfabd1ad68c5cd512987d3f7349366becedc3820a671486d2534f5d4429

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d1bc3acaf6d9a21d2af412b4808eb8a

    SHA1

    c9588b7e1e5e30b191a6915a194ea58c06578c42

    SHA256

    c3a5c4938408231a4a36fc620907c2c1521017a9581525cd61963da2855dbf8e

    SHA512

    5e7bfc4679f0bbe335aa8837a3c97adda81e80149610d16b4980e7bc1dccffd49f55520482838af50b457072f6c671ee8315d472fa9afd03660d177bb42546b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a82486628393428bcef2a9258fd7fd6

    SHA1

    9ee42afac62db4df4c1e191b57af345d6782e37f

    SHA256

    f9011690d395ca2d3f9de25cb08636c0c2a9b4be31f7cc85c7f835dda9b55093

    SHA512

    cfb25a8b22a735634284c98c41832ed0d4fff4316c4a6c1b4feeccb4f28ed177e04ec38b7b2534c98ce6f0ce57de9258dd7736ba513ff1035fa1229fe9c82da1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    db08e836b95cfd6fac4c4ab48992cb6e

    SHA1

    af1fd3dafe6e15d57655e1f34096409981d49d9b

    SHA256

    6d5da6a4662ba6d434cd9141768ceea2c79ab2faa6d064b8b0fae8ebf5f22b5e

    SHA512

    be15ad8b4cadfd2213d7895669fbd63da8f8d1b721b5ab3931d7e71daf0a75efb9089410d32ababb862c3bfaaf71d287cdb0f7dd656c8dd596b27bb723b58465

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a20fa0a188237ed3abeb171a84099e4

    SHA1

    c84b6d7785034829c2fcc33422379ed2c00738b8

    SHA256

    45ae9fdc86338ba69b2fb50f6213f0bbe8ee62a2180b00805ed0781bfc5d9106

    SHA512

    b89cfc248684243faf7f99e675410fec75df11b029b019d4e01a87a36d306b3b37e5de1cc13b2ccf36cdbd1010260ea1972dad3e819e52048bbbd248382572a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9761fd249d6ec8579a3ffee0f0584588

    SHA1

    c5fca5aa8fd45de79c9e7e5049362c8a21e6c10f

    SHA256

    43fc2d76bf2964e8893515163abb279f22e220ebf51723a18fe71cd36bc09ed1

    SHA512

    8a4bcb4443512e7e91237728a902ff33d6ce547a45ac47905aa5845ca95d55d0c49ec4ab5d63698363d2cee85e847a174b88cb04568a0eeb44411ff589d2b1bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    237a28e6e1b99af67a065073d39be604

    SHA1

    1c468b96cdfcba7e4610ad909ff006aa5a2789d3

    SHA256

    89284e874aada7ce409f4ccf7433be3aac95d5235ff59ba82dd81272cb564989

    SHA512

    66a3e24340ce2be96a0483797a2800fa987f44a98428eae1eb81c43cb8c58769a783049c3fff784165d1cc62b687f32d5229533120cab3c753a9bd9f212e211f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    42a461c61d348e6bd4c3f0a549a792d8

    SHA1

    ba3fbdf6853bd013b69ea29fcd39dec6f2ab7a5c

    SHA256

    8a143c254fce52334111e774a1e3ade796d0a92fddeff78bc65164ed5982d1c6

    SHA512

    53b16de22e503ca3369f7a3e43137403d2f9658b2b1dd59cf700b110fa10bcc817f97ae81300a0b651c37ba313307c0a00ed2e8c2633f7f0e2c65c46a703851a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9c6536d66365e2f755d0882a759ffe1a

    SHA1

    161f0db6c2c799f25c50a34b88cee1e858954c63

    SHA256

    48bc63d6c4062ad5a66179f18f055c00004004f8a30c4cada6773f76df7b54ee

    SHA512

    c3124f852b4af5793e4068eb0dfea766f972b6dc5dab8ee12fa0aa4cb0cf291090157aa5cda4f2d9aa1c43f0021d0d37959d7521ae5a5f8dbcde53acbce840d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c3d0b212048dfd2d8bb2f657601c24af

    SHA1

    09662eac5a08b83ade32404918bd9475593e859e

    SHA256

    37c83f8146fb4d4c8eefbb4866026fd33655ac4fbb1d82b16c21a61901ee7c20

    SHA512

    8cf07ce0292a86c740c60224c4182a96d1c16b42b52bfa8ef6799fbbf970e867eb9af0b2fb315bf522e74d52965db24504349b4e6a53d7ac1fceb08e26dacfff

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD397.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD436.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit