Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

f71bfe527d...8.html

windows7-x64

3

f71bfe527d...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 23:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f71bfe527de5ab74ec4e2fab8fd72e1a_JaffaCakes118.html

  • Size

    27KB

  • MD5

    f71bfe527de5ab74ec4e2fab8fd72e1a

  • SHA1

    057ba89c6cfcbf13508c4c8b9b2613300bd4a682

  • SHA256

    c9eaa1af67d1cc95db8d116bbcbbacd036282a88c58311671f025e14d924ca47

  • SHA512

    ab34ad80983efd7185a5b328b7a132ca745a9b6f59072c74be454dc4152f279132ae1476210f3fcfa0e5d95b4e7ebdbdbb598a30f2c70edaf0037f9c700e4ae7

  • SSDEEP

    192:uwfEb5nwKnQjxn5Q/LnQieKNnNnQOkEntl9nQTbntnQ9eMKm6MRasQl7MBqqnYnG:hQ/TFiCanSADw

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f71bfe527de5ab74ec4e2fab8fd72e1a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2168
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2168 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:1972

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f4f2746296d0f65f32cd59d898ca92af

    SHA1

    5547167f4e3a1f08ef7826137c119a5f55df60f7

    SHA256

    42a5eb79bdb2ed7f3d24cc3ad821c0c29f54142332b950545e041f1071e17b0e

    SHA512

    a4056c5e1c76f22cec92912edfe3fae67e46d0ce48aed705736b6bbc0f461a9680e859474aa75c83f09cf2e96946844acca82380778def0b741262895f553e1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    70d90052d7cbdd21b36410da0c83fa60

    SHA1

    c8325f98640c69066f31242bf895a6ac292a2b3d

    SHA256

    19bd6398d07bbfb411f05704d6bc12db04902f81fbc97639d0520ee7ce5033d2

    SHA512

    7341bfde3832dc6620f1a9c59190f3712ee4773220ad939c544863fb36f5a3fcf37106026e74bb264088abfaa0132a4bcf620a9f62707c9ce3c62d4daabf855a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e70cd507e6042eac85de336b400f2672

    SHA1

    aa4220f59b98b338102426f7cd90e70e56b3b196

    SHA256

    c840045b3c781597be6c184234bc1b9d28b4d120dca4f08900dbab9392af6651

    SHA512

    725c7f6298dc7f77b07aa7947db0b990c898c2c36ed4cd686f99a90755f0b2506a21755026c894a764e10341968923fcea93cec4b5f727212ae47444a0e78714

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cda3899b779d3feaa6f30b3df5ae8c70

    SHA1

    cc79174e1e16304c1e2288e064518b0538b76228

    SHA256

    c9254e671911483e7e92c396b932257153167d2735bb85106fc242b4943276e4

    SHA512

    ad331771147538e7e05504d92059768f4a158558c9d8151090c2b1c20e0621cebf22dc64c86eeca23ea98b8b353e5dcfd6ba4c932f07fdc75ecf695a7b3a700d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a4af6b32e67997538d18d64af6602601

    SHA1

    2d9f820786f3013079c6af9b97b2767aac77d2af

    SHA256

    f2f3a57a9c6b397fb589e5e975c6fa9bfe0a708b0a9a955f03a9ae05f0cd6518

    SHA512

    78d774cb7b6a1fc1540a3510cedd3bc47ea34bb3d4967af6e686444bb99e274f0290e0bfad782fff72251b9c364091ec5b702d05da5564c23dd992d45636bbf2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b3ff1bbd3c68469d13b79d6e968573d7

    SHA1

    fbff33f85b0f3881c89af541b8f34ba83effbcc1

    SHA256

    a226c8cc18c3e555b824226a2b7f212baf77d30d5fac40396b566f4ab7cc00e4

    SHA512

    2b1a3755fcc05fb18216cad3d5dd658ea2668ceed192ac9fa95e4e6a7eef9700103facda5775208260f5629c39c809884bcf90355f3ced442231409fd4afa271

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fb3295ccf17214a5e99e0cd9f275ad73

    SHA1

    8f1128ce8bb062592d4d70f6dc14ee4c1d3e5031

    SHA256

    1660407a2d419f446b16694d6f124e6f5285577a3d4c4041f0cb1b1ed936b6e9

    SHA512

    cdafe4dc877a616687e2ebda3a34e9ac787405737a3195020afce0bac556ea6e83b110b27efea1e7374f339ccbf658214b3f7f37881f9315322da1ce3eddc455

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5c14527b76f3eafab3b244cd0f916903

    SHA1

    dcf0ea5c6c7795d1ef76bccd7bc7c04c9ddcfa95

    SHA256

    aac125d6822ba2b9c4460182ec5d068e16d99520c75bda9e828c899d895b7ad2

    SHA512

    76954c808f976be979818cb0ec410e877a9bb98a0fa6ee262c20ccc4082da0f5d01160a7d6e4b351302b192c61501165f69985ed426dd7318984546d63afedfe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    784b4e29b314838185d9ea2e175348b6

    SHA1

    dfc8746fb2ee120d547a70f3278bac371e8b1302

    SHA256

    0e243922de5dd61871206658c6a843563261a6a0c9feaf4bc19f85ff2a115323

    SHA512

    28478885012f876fb6b952e9786463defae3323f8c44d5e78fcdcfef1560fa95ef32e4c6db4d08246c486b7ce84edbe5c26478c1a38dc6e5749828258b652b85

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    67b584f59a236d7444e886c5037d11d3

    SHA1

    34c829437efc59adfb2a4ea42fda3735ac278d16

    SHA256

    0b72d6aa86bb933ec5a4c6a4035c997a1d85aace5dc0478ed3606ce4862f3b7c

    SHA512

    844e96835e020c22859536b5216dcd20d407cd4c9f532a1ff2400724d05a98f7736b7957bb00ae3d7e2b5e8058172ce87ec15d7a8d8002ff0a20d69874530704

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff133289cae2093834b741bf2830d9fe

    SHA1

    38b891a5a937f88afffa3b7e074519c016710309

    SHA256

    b973897bf963427724f566d409375d275cb9fe107a7b1244b72cd356d2740295

    SHA512

    3093faee843fddd86feac8d0506564cad5c32c49a078a8625af3a8699e6c59046217da2d524ae9002ebea2364a4d4430f14cbba1d5cb7937dd9989df30b6c660

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    914e1cdc27673e8646918e5d35cfff17

    SHA1

    e250f377ec37e907b5560e79d434a175ecfd8b14

    SHA256

    1efd0927e7bd622461df6c4f7965c59819e29a4820dbbbfc376bd192f1eb1acc

    SHA512

    98aaaf4258de9970f8471f7ccfea92ef008982649c96fc2fb14ffb5e63614bde1a14abf0582042740ac07e4b2552eed879190bc9b8eb6538c1d2e7f70cd12d00

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    249458a69ede5aea233f033d0521b6e9

    SHA1

    e6e5fd4c448300e4299616b1ac6a062d05063c11

    SHA256

    09796a376b59ff3542845efd8e8dd3db153b9b0ffa65d7a96567e531ebd11c92

    SHA512

    d8550b8fdca3cb1db3fd69c906cd6c0c241b55d79bfccb2700d1f27762738b9482f8144af9cfd2d48cd87ed0d4b0aa6b80fe6f2a8e4c3d732ce8e2061f10be07

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4c1ec58b8fe27d27e21e811dfd43ff8e

    SHA1

    9cdbcb6bdd193f08000a67e019c4a75187bace55

    SHA256

    a53a140c161042eb12efa8192ad7d3eafa8f8b73549f8b7094210f3c5ec36019

    SHA512

    afde17e493b74de00618f5f733d6b846ec1a278eb9277bfbddfe10fafc23022b309c01c2d078c33e081e517904f255a082fb027f704a50e074293c59fe86b41c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    572aca82c6155b0fd8c1e13a8d36dc07

    SHA1

    8c5712bcf0a7c58cb2a7e3b1586eb358b616d1c7

    SHA256

    67c6ba4cca76c6b99fa9d027b7031901911c89d1e2f52887a18d121dfa6b4974

    SHA512

    7ed200fa1f895eeabe37dae7555a4f467cb5c81fbafdfae14980ba325edc56f66f9faee29c3b6530969eb786dd6e17f30153988e8aa1faa6bf0cd52115433874

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1f5f83ffa8e2e2d38d045f2acb49ebd1

    SHA1

    5630615139b9d64534d5c18b0f418325b9e87978

    SHA256

    ebe0311165e96fa519270f97814475d037dc7ee9b564320fe9c652876e8699ef

    SHA512

    a8d02ade681ae82022e117dc945e2403ba5b1e87c032828165baba3a0a6e4d9b26041a338d8b940df7052e0105817f94b9af205af2f47ee8c1ef7e368dbe98e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f577db0fec179ede62c75daff49cecaa

    SHA1

    640f92cb3c026573e9f324d8c6faa4a540f03c97

    SHA256

    9bfeb4d1bcb2a7183e34febca3550415e30f5064dec2281d9be4c5075b1a7f80

    SHA512

    70e43b9f7d2054da27eb0c0e1bcb65de3dd387445341c59327ae1948b36aa383c3754b083e45be3c3df9b52fbb87cd9c74bc2067bfee1d6d16a3b9eb6444bf23

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    71f3d7e3fa30c95b1f7fc7a0343b50e2

    SHA1

    d7a021e494533eb3c20ec4df9655763d40480b2e

    SHA256

    1454e167f3f51a57ae035beae39f88aa5b9cef05dbde505a29324cfecf0d5e65

    SHA512

    8901d54f5dda32630ad3afd844a13c587321bb8cbf2b467cf885a3702a3f032778b3e7ed530d171c8bf6a40cf644b2856a385d80a4d99f932ffdbe0d3c8f955f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    303178c7598417510533f3698e2d5e71

    SHA1

    c7b8f6409855de07c8e2fbec0bef7ca0538eea5d

    SHA256

    b288826644edfada8e2dfc728bf91fddd88add2400637c37185ff125be223f43

    SHA512

    bd07b8ce33078831d870c53b4aa103837ced94f97af24354d733767c48c2bbe7bd97351a77eca84c6ffb042b46cea3515cf9cb6fa09a85be84349098b9ffcf30

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabBCDC.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarBD3D.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit