Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

f08293c900...8.html

windows7-x64

3

f08293c900...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    128s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    21/09/2024, 20:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f08293c9004608179848e633d15dc21f_JaffaCakes118.html

  • Size

    31KB

  • MD5

    f08293c9004608179848e633d15dc21f

  • SHA1

    f124170d495feb79cad425458826d49b9b78e5f5

  • SHA256

    45edd71e909288d2b82502e5c5585804308a3f3a2ab83a2c625facbbfe5ea26c

  • SHA512

    1f575aaa6840e9b324740a4b318a9177ffd84198d065e9e55fa776fc01e98a2072e0aae78a12d9939bf6120e500e2760b368eb1cd120c117e866bca03bd461cf

  • SSDEEP

    384:ANYyBIOeu/jZ0xLW6kUsQuIfM68jNK0YYK8X:4YyBIOeCmL5kUsQffMXRK+X

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f08293c9004608179848e633d15dc21f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2508
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2508 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2528

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c2fd2c5b97ce348c885b38d90a7c51a0

    SHA1

    3383ec4db27b5b1c17550624351f1afa02bbe4a7

    SHA256

    acb95eb15bad91e4376c1985527a07dd1e8bdcbcb1504d8845b40b0fa9e7cc65

    SHA512

    9198ff96f346dd0114e059486aefec4d418add28f06dcd9f6e2472a284ee5a3dce89220c5675875edfe07924404ab30bc8ab0aa2dcb038df460cf2f9fd6ad573

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f57866a1b88fda6b7c24a5b5282eec72

    SHA1

    123d6c9d236ed171238a0e07f4ddb44bfa453e13

    SHA256

    0cc08187f3b0efff87d655ec1173c2fad477a077251df295985d751ba2aefa4f

    SHA512

    0ed25ee2e0060e4b869a2f1a80a48ee6afd848175de90e7214ed2f2cc5a984ea1ef2c2256632bdff99e69d0ec84fb01b353df291609de36947ea4b2b4b20893a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    23fc1da655429cbe566b3f77ded1d290

    SHA1

    dba4d787710a60cb119bd6d99d945d59be62005f

    SHA256

    e769c6afc94e5c09944b6f675b747d16a01636dea34e64b6af440fd7c0236b16

    SHA512

    1e9e3b1dcc25790f6961e47c34e1f49758465050f0d1fbbecb8eac4b4c14956113db8d5ec5c960f591ed84709f823cdbce97076bbdd3de7079db33af197cf58b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    159a6c0b3288be3752c44b44a3ccd01d

    SHA1

    a7a9be84ac8e3e55132f8f8812a9de71681c60a3

    SHA256

    607d7cfb88daddbdc369c4cf064cf2840c83048f7e724eb08f27d168fa72248a

    SHA512

    cf9114ead111ecc24b836bf9ac0a2a01123d6ca388ba6f4cd1044aaee3876d628f1bfa47cc80b6678170722bcbe9e72b3b955ecb899da40556f526cee03d3973

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5e4bb9c7a2171a45338b7f08d9a3608c

    SHA1

    b21c9008a7a7640115c0404b0a58a67686c093e0

    SHA256

    daa68f08d937926d967d8e6e311a48e5c9657bd86c331350457ac4f2704de3ed

    SHA512

    af1be0304a4bd3167f0435afd11fd5039fb2b0329f5e7cfa8877649d1b0975b869c1ea948e75b093f771ff19a0e53ae109ca7fb2a5984744dbabcb9019b869fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    46b8b1a83b60348193718e2e2b0c2a0a

    SHA1

    10624f87fc87750aa841a81dd7de538a3df4c0a3

    SHA256

    f1304ade413f58d27c69393ed8f9c2bcb71fafb6f68bf965bf053b3b3b6b7c18

    SHA512

    51368857624127d31e06020876cd99761ea46398d9969961e7c917146e6db69d733330f34510cd8b7a33201931b41e8f2dc73cef6d54a7d6a9e89cdd59c7f152

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d5d4f7166406f861c38672c9f962b5a4

    SHA1

    4da3003ce936223cca42737be087d36ce0772f0e

    SHA256

    ccfd8a4c9c80572d2c1aa19b5eba08e7c601aac69f1636ec2796214de79b1265

    SHA512

    b0d68beded33f3c135c62039a418d59490b5f0cb0dfa73ccc09378d44174768501260330a6d8b78ed4e78432e1f5fd07d3287c7a723ad3dc8597b0927981631b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c015349471d1afa39d7f88db3f828d4d

    SHA1

    4ec63def3c0ef2d00a326404d6165938e85c36d1

    SHA256

    0bf674a56dcf8ce1946d0c08273676319daf80b8e31ddc9236e40aa8802c4b99

    SHA512

    ddc9ca870ce7798cb8e9402c2323ccf4435391a1a036c422b58781b6f5d82a126c25a330f296a0fc8de558329f8933bcda53d01a2f904c7eb7264b47eb2cd88a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd7612ce51f40baa2d4b24b1f233d628

    SHA1

    734a032e51df434c893bf68cb01b65a3d6d292b1

    SHA256

    c467dca3f6aa7a22bc7830e39fecc7934f5c298fd72e8ba25d29d1e1d45283fb

    SHA512

    035ebf7921b13528891759c33ac25e11fc95487866cbf6a84bca1708598eafe3a264f73c0bedb33e4a5f3687f586d4626c4d6edd4190e61c6a03e929efb7f1e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bd6bf23352a8dea079d21230709228ca

    SHA1

    df1706c6c979a7108959db799d92c2d28b8d6ae4

    SHA256

    e3dce35014e64046d42319b06410146115ed2a30ffc1ed60e41751ac2ec14dcc

    SHA512

    5476c1c77d0cca4e60f1c11294ca4509761be94f5bf0594e17e939eff3197d6086c215460773ac9c01df063d1bc604005acc0e3a5c298b88ff1ece4d2147209c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    14d1c3cf9b49a148311c61c8bad72223

    SHA1

    a89995113b10cdf0740d07e6ebc17548044d1b87

    SHA256

    1878de6c3ee74109c10f7b7dea1fdcd34a63a138cfd89ad10d2a34b07a6180d9

    SHA512

    0987d7bdea32b30b38df2d600d943c8356259e798078ddf7c47443f4822631a7a393f1504293033e262d6ca3fde6915508ee016b2d5ea7394942c77ece05fb74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6851662d069a5148f0910d1dd5b1c421

    SHA1

    3805fd8753bc1aa8f52efd1313106ffca7ac9415

    SHA256

    a54c4fbbf832622832d5916efaa1c12bbf63811a90fc6c2b2d3a530b3cf27d44

    SHA512

    51147f07af10a630b3688e0bd13efa1bb218132a40773e1fdd4f4b4da95361240bf35060b9ee67cd541ec9285e0e68fe8e9a2ce7d4af0394f0983daa69b1f57b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b39755a0f095c77f87e4d2d3d6671e4f

    SHA1

    f4ec677c30efc4f9ca3d8bec30436f73ff2fd15c

    SHA256

    ba59419c1956b2949ad1510c56d2f38b79bfc482e4e25adfc2bcd300461ea216

    SHA512

    9e07c1cd557df1094706cf0e448f743d956560bf4089fb7ba64db68127540a671775a97210822685ed74cde5ca8b115dafe03992c0d21c71eef0bf3eb394178f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8aa10a2bbbf2e6027cbd26aede0b427f

    SHA1

    1e109a9f6c5b917e6ffa7fdd2b71486d7c494e16

    SHA256

    b88e4a312aff175233a2a57ec69a173ba7762c1657889e209a33045e04561c64

    SHA512

    0b709585e9331cdb8355af4ded02c1732239be3185d1a8f6bd15757febc1560d55e880a8778d102b815234d55c4aa83a0e8865833f842a5aeaa1031631b80b0d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7f093647921f7dadeea693f916de114f

    SHA1

    2e7a7db3427fac920684e7ab9eb0879b09a38329

    SHA256

    f83bc4a926920a7c88680f41015de1329febb67c8fda712f603f5cbc12d4a26f

    SHA512

    361ee23002882617f4e3d4ce1b5adab9bf2ce92ee61d124a497841659a8b7e6eddea06fd90dbb158bb77a8adf012828f8fe61d3f02cafe926fdd933d4bb06c1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    077db4c113840b7fd93d176f5795db68

    SHA1

    3413a8f1ab0edf7aaa1073695822a908c5b20c4a

    SHA256

    9107ddad361ee957ba354927b37c21667f4c2791f48bee26927c08f4a3cdce83

    SHA512

    67f96eff0aa3d74b2390e7d543f9960eaef4d2ebac29e7c325f1bff665ab4d0a46f7da0f9e591ade98bf8130b2c1ba616375356f7ebf226b0b1f7e5182df86e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d84b786916cf88d0a8ebfebfb818d9e3

    SHA1

    2aced9935ca8c638d775cb40c2b7ae9c9ca08b73

    SHA256

    749105b1bfc7c78ae202c1ac9b574bf33037f9d62e5c51be34fdb04572a9e110

    SHA512

    7d3e423127f47b8eb83dcc58914e0a69752db3daec3b4ea8a8c78db40f77609cb1b0d9bc50980378551cb1d5fa4dca8b4e33c77848349cab266ec9d2c3520f69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d848dfab18c3d007efb461b9738f6960

    SHA1

    6227ede12f2f8f2a1a768c6713a35d8e31890580

    SHA256

    bc4539a07c1c3a17d4f4e23e3afe6a1b32dbe99a802d3b3415d4b92076b1df0f

    SHA512

    f6fa3c554e6edb772e2e3ea64142aa0d60ee45326f346dd1087ebbcdf1eda09a1e2b76fe1cea95e8f243cf1d84e6256957c070b487fc297bdfbb2da638954912

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d535325255c39aa7c29a1e355ab5cca0

    SHA1

    4966052e752343b2e9557474d49615dac7e4836c

    SHA256

    a4ffd9429bc7d6272ed12e5ed5fde427e3cbd68c819f0c82f53ba338bdf46a52

    SHA512

    ca747083ef8453a3f9a11ee001eac3c163d48b66af75c70917fdb08d724fada159f7b047063ad8dbf3eecc1da5e31b12e731c49719c59eea50a4d8c02578b0cd

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BQQODH7V\2254111616-postmessagerelay[1].js
    Filesize

    10KB

    MD5

    c264799bac4a96a4cd63eb09f0476a74

    SHA1

    d8a1077bf625dac9611a37bfb4e6c0cd07978f4c

    SHA256

    17dce4003e6a3d958bb8307bffa9c195694881f549943a7bdb2769b082f9326d

    SHA512

    6acd83dfd3db93f1f999d524b8828b64c8c0731567c3c0b8a77c6ddcf03d0e74ee20d23171e6ceac0c9f099dce03f8e5d68e78c374da2c055973f6ac2db4e4f9

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q4648X1K\cb=gapi[3].js
    Filesize

    66KB

    MD5

    aa012028297a26c039c37ab25a4bd17a

    SHA1

    25f23d01b5f580c00778e1c010225e5b8c73b66c

    SHA256

    55cd2316edf7159b623e4ec2c9e3a334027c01e2d1cc386f833ebcd35ed87b38

    SHA512

    d346eb082674fc26d562da9a12f36ad2cc7db1f1b35c891a8734284cf1bd052a967137c1281982070688b2bb2e06c7f4967d1c9397311a31a11a8560b9c45fd5

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ROLMKJ86\rpc_shindig_random[1].js
    Filesize

    14KB

    MD5

    e691b2e17de9ec018eca758518bf5dc8

    SHA1

    3238d543acf53b803dfbd260405fa558717daaff

    SHA256

    438d41bec769ff386a2c1555b6bf9105362f67dc3e711c81c6092ee7fbf6ad2e

    SHA512

    5589a5cb408ee8e0fd473de24224ba8fa1453eba5df6e591570810f992160d4f3e8f60f8ba74d9994861759321f5bfe0c4a608636913a8407b5184008457afc8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabBB74.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarBCBF.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit