Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

f06ee2594c...8.html

windows7-x64

3

f06ee2594c...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    142s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    21/09/2024, 18:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f06ee2594cc2482030c6c45350cab184_JaffaCakes118.html

  • Size

    110KB

  • MD5

    f06ee2594cc2482030c6c45350cab184

  • SHA1

    4b6358333d5c3a367b366ee1123eb147d22f1b4b

  • SHA256

    bb611d56d19f6d8dca264f144c886d53446fdc6a9789c417a666d412646c0509

  • SHA512

    5d0737832e9c7aa5725c5fca6fc9e9eba04d41b6f19ab3c433e72287354da4629657cb96f5d73aaa4654181486ff1b0750e3c884431daddd1153f804e677d62e

  • SSDEEP

    1536:pbMjw2fMk1D3O9Pj2fcYolHA2DALkU6LScZfG2kCp:sWD8Lzi

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f06ee2594cc2482030c6c45350cab184_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2748
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2748 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2688

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    056aac24b6400634a71e94cdfbb88304

    SHA1

    b64aa25cf71da0a1a65394a82e14c5b3ee67161e

    SHA256

    6f582e5ba6c7cb4a491a9ecf497d1cd1dcf821e360eaafd7999e4978e58c18b9

    SHA512

    4a028066216b3f68d8c88857956cc04479bff7e61015e2e5a00ef22967e1840de8e053832e8c1962197ab2d6056f2c5e96d42f1308e9a819429a43c2b3fd940e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    da4eda5bcf59a73a39c89f0ed90d9cba

    SHA1

    1177da25c199ee5e918ee1f549aad85021fcfd42

    SHA256

    fdb8ab46ae413b71da8a8bdca6b2df6bb1c199f0bbc895097d897d752ea2e495

    SHA512

    9c4c9de489737e5b1e0c0aeba3fad63280ecc30049c53b8881857527f3b158f1f8a34102414828a715964bb0d7a0216cced749ef2a22ff57e8e661f248ef5f1e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    68aa173724d4e556f8c6b7d02c1d0f4b

    SHA1

    60c3e0d2a547a3f48cb86f290c00139b089ae63c

    SHA256

    a366b56a165a68b23dec1b5856e7c91019842e76627ef883270ec5de682381e0

    SHA512

    df8fcdf0d00c5cc0fdf307209b846112081e47161f7cdafb7fbceb040eec589e12370a1231494c914d1df853b1c969f73addb3f4f3e8e2370828fbf1f4a8012f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    18a3a8d747c7630d44a6dfbb691cefdc

    SHA1

    b922e209ff561c4849d425c5e51dc2369f5a5e5b

    SHA256

    a027b758cd5989f7929ecaabd8573e38c48ec73f4854474bcdb0b487b88e6906

    SHA512

    2a93fda8b4a2dc032d803cba215f00b0b4b009fde9bf36d5729c1409a265e8828014f3ac9ef62cdb87601cf90d8e9008cdd0900810cfeb0192e1bd720b857ba2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    94c0db02527a6d24d8cf2904062a7d85

    SHA1

    c39b9029e01635003468dd5e3f4a6f5ebeb268e6

    SHA256

    df3d479f31187ff98104867184886007b38021fdccc86fe117bdd965b819da6e

    SHA512

    3819f239e9d4282f8c6b2ec06aa13b7ecbb5bb22a988a2aba49a5a4aa4fc72b49d9f6cd558112f5ca0761a5c5a09c91149938a6d2ea25c5009a908a3aa03f6a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b88d53f459efd8bc52ec4a9e555dfa1f

    SHA1

    850adb44870d1705c650fd7fa03aa233986cfaf2

    SHA256

    ad666a5c21bd79fde451fab429bff606cc7bd48a5d84e967ec19eae97d13f3ab

    SHA512

    04e73b1d06d3e3e7b63dc8f8e70d29a4d7f56525ff2d5edfaa0d8e0dc55b01da12dba5114371560b6c43ce97bbd57310c050d737a1440c76c5e45451fe0c6770

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8285ef62056e8312a351c9d6649eeb89

    SHA1

    5d39920372bf9f1266a68727e466a0ca8dd50f21

    SHA256

    291f2e1b90526bf20d0fc5e919306b630ff20dd86f605802127ff372857aacbe

    SHA512

    500ae207043724d8a382d832843bb6b55582701f5e60be64e3c4cd1d63aa69a3313599af9a669101512cd004eebc9e13d994101b9696d3dec41c6b7f9e4c408d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d9a3aad075702d58211f1d622c161e60

    SHA1

    158ee99e8fd786e41cf0ffbdf17ebeca05642852

    SHA256

    e8b6db5ec27e3ff716c63b70fe7be359c5b38f6efd3760e29def2503792c514a

    SHA512

    6fed3e078bd94cd5499dd9080bc11e5f7fd50417d0114384113864bda0d3315f7f2affdd7f704b968fca5c4434fb87936bfa18126b765f6488a2729c77beee66

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    870524a7dc58a549312c5ab8d2e9d993

    SHA1

    eac74dc657aa9a57be35d21ee98187fc4d3a55fc

    SHA256

    f7653b7e64715d12a86b499dbe472eecb2af0acf5bf30bda05215bfdba639cbe

    SHA512

    353f7526b39d13d4c0b708220a363d745b4cf9b453ad4cea46f9498e78ecb6c86a20e54548d0d79df45a3cf8a8e48ac7cb78b7c5ce0b22785c0cf8d86d67c3c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9047b9e363b6f2170e63d05d4351b21b

    SHA1

    1b0057731d2f035e66b25700a7f8f67263ddaac2

    SHA256

    e7e9c4be563d21a58e61e4ba8edaf9e26ea499be33d7780975524a578d2c57e0

    SHA512

    3e4cda13ae0ec98394323f301835720ab74975ab76a6b8af0c9ebbdb940e65cecefa4835a8d55f5b1976eeac720d59c9864381a75f68193abf767fb6434fdcf5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9d07cb759023feea1fa30aecc962e44d

    SHA1

    f6b52ecffabf80bd1f9399963e1a56c81efc9ea4

    SHA256

    0d16905f5be6d7c69ebdd45ab86899e72e537a055a5171ff14211f2ad97ebf88

    SHA512

    e014b51fcac3b68b4f1bc82e39aa2629faaa88f0aaa4d98ed7ba99de3f8746e9fd25690ae401fd1205778b1e9e7b7ab50b0e875d2240417e7d52f7747aae7b53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    45baa384c1cd600c124a6728b2b36880

    SHA1

    bf5f356a737e023813838edc63b61c6cdb4730a9

    SHA256

    6e03627eba6ad1e6246e7d3e45771c6b7a111d1fbd4edb38d9ad46939227c1cf

    SHA512

    08e3318f7515b2bb6d71cc4ea217992ede91e09433d44170ce8ce492970e1c7f45d4b6acaa1919df95d48e0f0e57f976ab5c3aaf6938fef3f13e85ae3e4f69b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ebfb4eac4c8cfcd0cc1bc83ce2603638

    SHA1

    81e01dceaeaa24f5cc890a0de3dbf9edbc805c5a

    SHA256

    cd6d43a29abeff99c1fb60caaee2830d74a3ea57e634d3cc0956490e491a3735

    SHA512

    fbe7b3b6b92aa52c2ad9c4964727375febe28009748ed61fa31b122b3b801b96aa770afe60f132d268d88786a19f7f8245e8f0576bb918054e0ef4cdd000b299

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ea60b723c1cf80f18b02dbdad71cb30f

    SHA1

    546de39af8dc07ef3a73d8c868e552f133a52f2b

    SHA256

    7304538e1188dfd3905c85dad335d36f68e8849e1457f929a3cd66c7e80aa958

    SHA512

    52abf7ded02fe0e354ba524437a546ce02493e6e15c6509c6a8b2b197ea1920cc265b38c197478a61b91696459fc7f45e33b37346dc8380b9982d409129821a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2b1a80147a0036aa31b5fef0d6198d83

    SHA1

    d408687048ad8025f52f360ba19c999dd72428ea

    SHA256

    46424f9cab6922adaad01b90245485365c08a5eaa234f3248d25aa848dccb8c4

    SHA512

    903e2ea8a6389f4bdf4d1997de9d3f63a4a715aca25dd85f730e5ab3cc2d56f568a29d5eaf513564c77c393b355547ac57084c699bc8bf563ac155958c791b34

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a3f0870ff76986db57e1cb62bd81cb21

    SHA1

    4d15d6edec7bced718d48d8f3170393d56cefcab

    SHA256

    2075da161758d7896450f81e9857c84f42be482360a5d3146394410ee598f846

    SHA512

    374cd509983eda383cf8a324d999dc43ea8764508a85818a6c863a751e9a25e0fe73237c05bbf76423f870b0787bbaad5a2422a7de8d8b36b8071635fd7a88ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    86ccc9c6e944f15592d70f332d8ac965

    SHA1

    1ec1c7cebd1bf9c592e66a8e2a09f5e337e15fef

    SHA256

    8989eb5b1eb8f01a94ea88abb711bb4aa5eee9d4e29de23752171b37ba28d0dd

    SHA512

    b14dd04c6033223d9b33bd9e8140386fa676e9c6f6ca14db384a930e5fc59aee675b390c5a261af3eaad5880aca7a48e32a52b763e8b4892a50209fbd70e2606

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bc81ffffbfc567d7f72047e049337c67

    SHA1

    3fbf50c79f8e8e0555d72ce1a662fc715a46ea8b

    SHA256

    49dfebc62efb955d91f6cedd58a6e136eb8088ee069b0ebb35d825b37c89aad1

    SHA512

    99eb9feca16d51b6213fe17931f74461fb9ceabe5a7ea5463295f15d3052522ca4b603dac5fd4b881a5eadda0d6f35cec47eec65fafa64cf44a3cb744da3eeaa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fae7e105d88f7af074884fecf9e2e37d

    SHA1

    9cc9295b257e4c0f910dd500d5045c6575fecedc

    SHA256

    bc6a83edec3584ffae880b5d7e604d3d5192aa041601da23e9c3dac68278e83c

    SHA512

    1d0708a3e7308d610fa35953fd92c4477b6f198199a7e7b880349b768fb31e5f42b1f9426faaa5021aa8ddd84b21d4cd1e57b3c70e51a04906abe11d306dc03c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4df8ab520603fe05611270d83c416b42

    SHA1

    dad76fde5209178118a5a2e7eeeb92e291fd6e4b

    SHA256

    fe9ee4dc626c4ce9d2f8f15b964017012e3909278b52dca04d37252b48877261

    SHA512

    c2087430fcd6ec08048244ae7f2926c7230f33526f5bd212272bcaa85e26ecdee9947d6a9cf6759ed511e43d58c140e0e81d70590d318305cc12c2eabc13d5c2

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFF57.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarFF59.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit