Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

ef87c9f687...8.html

windows7-x64

3

ef87c9f687...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    137s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    21/09/2024, 09:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ef87c9f687aad95584b75641c76e1935_JaffaCakes118.html

  • Size

    139KB

  • MD5

    ef87c9f687aad95584b75641c76e1935

  • SHA1

    bb602d51a31e9bfb5e752b85fa961873c9edce57

  • SHA256

    b4bfa3f1bb62b55061dcc7d2592fe9165b29dc94e2d9eed24731e7bd8a8de7c7

  • SHA512

    c09dc275d47e1a1ba9c7f651755f66392f41dd280e888aed87ffb77a9f8dc48949e7f4c2234798b120c30ade199b574d4055b8743151edd285cf1c186f389065

  • SSDEEP

    1536:S44vMXfjRR01aoxlEyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3p:S44kbUaXyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ef87c9f687aad95584b75641c76e1935_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2220
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2220 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2804

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aff4a5e3956071562fecd0e8dcb5f37e

    SHA1

    6773766fc34a8db51f7a9ea1be0edd8f15bee245

    SHA256

    486e3a33af44b5702756b153d88268b709beadbc1ef6662adbf5fe3d6659b5f3

    SHA512

    411351ccde0808c0623821660364cd39dbaf8ae658c481355beccaf774a19360e9247ab67938f3f4195f3342d129283c473bd2c61040fcb55af308c17cc96132

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d17846b635f694b57d00e23a06fee71c

    SHA1

    13c3f62247660feb85f8f40420a40b2686055ec7

    SHA256

    aa135be4475de8f0180ef389c742b3f7b66ebe28dcc5c7df099a81a5e889dac5

    SHA512

    296203f9ecfb99aa4cc90e0158d87d90a59a0e670893d6531f375bfb230c706db01336d7bfb81a673315445930764589adf930c0d3719ce257b3ef19c8a1d46e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5fb4336488b981b66a1180b5767ddc9e

    SHA1

    ccb9d3331d0d8fda9a881fec1f868ea587543e1f

    SHA256

    cda3aa28532353be209b1c6a684325cb3fa9ebd3d216cb35a311480f1d58c686

    SHA512

    fe9658e54d97ad7f5034d9aa9213de78f9337119e530f697df115826f35736878638905d601c336c47af3b9e31948919276ffa7bd1228d2cf46e5727f7560251

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cd04d0f7d23edb8056447a56ae389c83

    SHA1

    ccf0f3a27685040aa6caaea372d9a83856e8783b

    SHA256

    9a26ab54e10eeaff721d5da995a550d5d3a714378d6b3a7eee9e61c84a365d8e

    SHA512

    16434e38a676ff27f0f492d320294557f074f348b9b574ee9ea37494bb3071fe6ac19593c7f7f2f39f1ff9e4f6d1ea949ab989d2c47d32796588ca6e53db243f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9c6750b1c9d15225aaf3bd5cf96be342

    SHA1

    8f05f4b59ed7725674ad8d088ce04f40e0da11a2

    SHA256

    5c4dcb5f76a1ae79b68831c5e16f46745f538feab6025d0e1797c2ce58ac362b

    SHA512

    47f16b2ac27e882d6a2f651209d676d624c3c43841c451b0e3e77279f6eca2f11d59c82f058d6e4ba1b55a88bb01c685d796d60760541a14d673dbb33a2ecc74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d0189fa994c5aa4f9b1967b7d508467c

    SHA1

    1a9e9266eb1faae4f0195fa17b86a7447a98b229

    SHA256

    6a305e29558d6293dd733f26a7e86ebbf6d4dbb546e31d0de58501ab4a4bf8b8

    SHA512

    6b3f407981ed70ac2d1ee418a390f91dc50a1f0cc89182e1473e9dda697e4164473121012a157d48cd788d19845ee1ef8090e8d7e6cf068951d4c98bd109d5df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f8f45e4eb367386313d336f31d2edfd6

    SHA1

    e52824431daa9b5fad8f0acc849fded054435168

    SHA256

    d20311134f17e7a8dcc62f95e29dee5b93aa51ac90f5d557c4dd67ace125d4f2

    SHA512

    4570971830e46a79988cb4c1371b98325cbbc20e0b72f0fdf55cf0cc09a0c963cc8126703e49d393a103d9d1f11017163f7ef59d90cda1c6a23050a27367bb31

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1e6b6dedb63ccb818a4109d74af8a7d0

    SHA1

    bac66c211587c3b2edacd6f248d8bf3bfa91db3d

    SHA256

    847de1e8e8d347fa17dd57119004a17066cdc1d119f79b01b50ba51fb920bc1b

    SHA512

    9097e61676078a40359043d3c010d7fddd9285b01c02439a8e93c601da6394c0be61664c16a2fe01e9b9fd4322c96a377c332dd7d114af6eff744b30961810ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    94b28a46da109c72803ae3c09cb706e8

    SHA1

    c61669e08eda5602845b61f749a9672ed64dd576

    SHA256

    084b684d5e6c467245f6d2641423e820f80e3ff55343d599a2e07cde9814bab3

    SHA512

    3b95daaabd061d44177ec92333470d7a559828f1044838f48125bb8e3780ddb2c5d1fc29de7dd29765a20cefdfac28f9becd63d100412d5124880eebadb39ffb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9d826840aae6c156f2a7078bd6c54a22

    SHA1

    e8de59ae74d638644506c01894e346cfb376af27

    SHA256

    e13e71de4c70bd6033a4189beddbfb0935ce673d2654fbcd52f859f326bb6281

    SHA512

    5403899015787143c216ab88475b62471f0e52febacc6be8360ac9c02930a40a529164a9d4d88aa49b766c83329bcdecf673d683713ffc495f7c1d14ca373e3b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a1e094905ed11af8cee3334bd410faa

    SHA1

    d65419150b5838a04eab47796081794a7c429fcd

    SHA256

    54b8eb16b44b35054db541cedc099b4f7fd24834b9ff7ef8cdff52492fff46d8

    SHA512

    bb9afd378b7089c1690e5b7a56ec877323ba4fb959d3b287cfa88858390fd08d7f2323073470bf545f10ebf1a9ed75b51a61eb732bab71e64a718525b23c88d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    236905c8515b51967a2d121b56a6a7ce

    SHA1

    44b9b5821aff24078d0de858e421dbddc69881ee

    SHA256

    5394c9670983f047eed7c96fc92cb1cc303dea8f4b33f81e39822c28bc1222c9

    SHA512

    f34c59e61fd82ce77f152e1bb58be21a0e4bfcfaf8c6d18cfcfe006c545123683c989b059945390c00a268593018a4b54d9c9b20133686a4c368a5ab1a4bc10c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    66c808f67665c059e8563e33cf3e4efa

    SHA1

    36979307f032889479d165a9dc405e8f56558f46

    SHA256

    8f934e34e85df37855887f8f69843add954ba1de0947f4edb686f42aea97512c

    SHA512

    0b58e04a488f63b64d3b1e7265ad6c7d67e1e9a2105a8fe12c726ba089684944cf27a148b0eedf5f597edeb1274db77066b835d1e5a7adc9ca8e9f685d632aaf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3a6e369a5cd1b8b9c9f86e39a23761d5

    SHA1

    dca3a8259135c6e34f46ea028ea2c22cd63b1bf1

    SHA256

    d5d335bcc36600614ca0b780ce9ef775bea343db221e55a0e0c4652f1f695478

    SHA512

    554f3acbb0e78def87a645cecb6780751eb904e477d2d793975eb07efab69def01b8c70b22f3d473b44d375cebf0d9d344cece67e1d7b853bd615c57588d0b2f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1496c4c7db39e7e7d8ef76890c9a8164

    SHA1

    793871d73d0b85d7fc9ca38da1387d30d4bf0bcf

    SHA256

    98235776699e1b193a80647c0184488a085f45103c410d79e9fd7bed687a35e1

    SHA512

    cf8112a56282058a79508174ec88a0efd66f566b49eca7ab91f38ecc6f9cfeb82e5fd2407bb0d6302b1c9d95db0558e40e9d77fab0c846b639471a98094a3b17

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bb8447e94f612a0c185c5ddec2b8c443

    SHA1

    b3e2c3355d5af4531b2629d964d08b5d6ec0d588

    SHA256

    4b4e1f5a2a0f398c29cc5931a700c0e10e156424bf32930e2580305a1441578f

    SHA512

    90b3d6a5b2df2029d4d589b620dd58ab3050237cf13b663e4364c043ca0e99d6ce4f98b6c111ecd1aac83ce40338c74ee641b3bfeb2a8eac75349fb7406a2786

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6d0c9d1f6df9703be5390aa56daf1e18

    SHA1

    4a512cead1ed8e31872dfdcea4301e13ce237a40

    SHA256

    b8f61b6c659665e84daaec6431b61611d131a5d5c1aea04e6994a042df086096

    SHA512

    8a77a25084387751465393f5ff22b1effb4c14f85811c4669ef3c33a5ac261b50e57c44fca702997c9f924adcea9553fe08527e3280d628e0820d7421cc52019

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    801e9ef14da6774377b334097ac53e1a

    SHA1

    88220dfb9ba7171a55dcc8f3bed6a1f9f33f1a65

    SHA256

    8af0e50f3a3d2d3cd10fc4acbdc889478ed248b0d1d6cccda57170d9488c4700

    SHA512

    af3573e01b1156bbc625c6cc1cdb2469d584fdd7d30926cbc1f9290a496d04e796a321b19de689be5da24c48a9d53c2a972f6c3ea3d00a7b9eb9799a375abad2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59f86ef4931bfdc0611817c5e51196fc

    SHA1

    b5da8b70d2a598013b9eac2b3b34c1853da643eb

    SHA256

    396e2db139dc11c5c554dca0e11f9e4d61a2461c78619bd6e9c4b1eecf24b197

    SHA512

    a3ea2226aad08e54e1b3df5860fe04dc740bc3c56746d7142862e076db07e423a721b8115e2c7f7b43eb1165b2e9a418ac585357ec9bb3ac81f8c3db91dad64f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c40ad17abf0f0f6518aae8c94b248024

    SHA1

    58f9e621e49a466ca374b047fb5b04b9536637a4

    SHA256

    27a9cd83545e0258d7322530d9f1b7cf95081f4da890755f5f4dcc908d87fed5

    SHA512

    304d18b7ed7d32a22da643c18514b715e2fc10140288fbc92d6cbaf1ab39cb2673f77848b97bf8f2ec30f49599720011c5581166aa00211fa813d61dc886824b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d1f5c8de609fe71b02bae1c114de5617

    SHA1

    4fba9c678565e116ad77b6d05422b263a8b7346e

    SHA256

    e4a77500ff173905bb84b9d2c31ec071263bc12187ac3ab91fa5f693849871df

    SHA512

    ce8ebb1884f55fa071fb0497c52d832f5d3954149694ee68d82a5b3193d3601d39f12ec43e663b306fc114f29d597c769d41a9a0c3001af0ad280a91d35130f2

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1LNUKNV0\domain_profile[1].htm
    Filesize

    6KB

    MD5

    ef21693cf359d5e5ff9fe6258e199916

    SHA1

    c1cfe2e9b7d448eaceea60196666f140ab87f2d1

    SHA256

    bebe0232514ca26ba62e24e044c200f826fa9a3871a172a077a361ea0e359933

    SHA512

    3b933314eda8e622010ca223334ee21ea449eb215c114d0a77cad8c073f5a8a78be9884f538619fff890fedc0850e58bdb8524453077ebd07c94ce13a146830f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab170A.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar170D.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit