Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

f637e29574...8.html

windows7-x64

3

f637e29574...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 14:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f637e2957465c5ab4cd7938019db616e_JaffaCakes118.html

  • Size

    3KB

  • MD5

    f637e2957465c5ab4cd7938019db616e

  • SHA1

    59052770592133e0e4d8a2ed9db55a19180baf20

  • SHA256

    ce5a069a6179a9502e67a4dcc6eb6134a5c343a823b08913b257d87bbd665114

  • SHA512

    bfdaa0782fbcceb4b968cf54a693126c687d8ebf4134ae4a2e46f259574f00247b8451d9dc97535aa8ed28810ff7ff5926227b5a646170815c66ad7df165f022

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f637e2957465c5ab4cd7938019db616e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2308
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2308 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2456

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e42668d14fbb2e45c60991e8227c887

    SHA1

    b81e8152736e6ad1fd5ba6e5867ec270281e3d86

    SHA256

    93beba28cc698d6d74dd32830adec62b1036eb966049da0679f084ca9a1d6bf5

    SHA512

    b87866337490a327e83a1e410611902d89c104dcf25bc2033e10aa8ec80074873c23bfec87793e463d8dae75738e69276a4f4901a5670d0919d1f8a3fdee4528

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2804eac14aed1e932162d5389241f4b5

    SHA1

    8ca2c9d2e7005e73e8da847c28529a3f34399b12

    SHA256

    758c882413fde2cdae12e616968fe7b5a98def40dc611f9276c2323a909f83e0

    SHA512

    debc5daf3924558bcd998afac8628f2cfb0f0440e1098c8435575bff435261f4fe7f1a1038f361a93cc9ec1b608afee7dd6efcd86041cbc9eede55be54d4ff8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a870e3cb440baf41fa60cd1dac86c175

    SHA1

    f82498ae44856a25c7bb572b57074068ae9b75b0

    SHA256

    83f40096011818ba3111cb0878930d4135e6a9f2d766f7d1c0a46375d3049e75

    SHA512

    bb5170890df61c68e88a09497bbdc62e72ece34848a0f0738a99ccae09475c53358b0dfd91fe511e00a7aa194b3fd5bb4cda086d1daaf055bd3e16b0ea435105

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a290a2e9c02a6283cecc948ba483e495

    SHA1

    fc712fc8db72d2d2fc43bb353dcfd8831b9d9834

    SHA256

    88806f536cb3e7f12f2cfa775817dab8d878ffa210bfeabc439e4ce0915c89b1

    SHA512

    dc3e290d186b23cf3a63ff291165c21421d3db1caf4c3b4851527aa7d9b081d686ecfa0d80c87af3ef268ccbbf5c48da6df0b67e630096c3ec5ce06c8e6b1376

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3edf97d67f6e93a70a885982f3c72078

    SHA1

    ecdeb5da9a2e99d1c9cae041010a9a42689f1e44

    SHA256

    b21bfca69c1ef4af81f01a620f689d473730f34bcf39339b1ee62a7ca35fb567

    SHA512

    9e154394763ebf9a39bd883d9197c5c89c2fdc03f0f651c7a5b1f0f322b460ecc150d1dad2affee5597f5163586ee29cc0af5589d78ec3a785e63799da4e8a80

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2ef296a67c19beaa0054852a78a2dce0

    SHA1

    463c578965a849b536f8a0388627a9bf266cba6b

    SHA256

    2236470e3c1904d98b10e24ea97445dc545bf381b6aeb669db9d2f2cfccc5d93

    SHA512

    b1789d03efb1f5543af4d1993dc46e96d2ba9a62eb8c4652f0fb0f6022a003127a7a9ee48e9697793b5fa4464af4a79c3ba75014a0eae998ad6bba454d28fbe7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    44f94f434186135abce32efbaf3f621c

    SHA1

    c4b808200971c3ee39cc3db4cbc69fa457851ed5

    SHA256

    fc0ed14137c19376fbf1c2761c72fcf998175b4915cec1a8eb217d131edce3ce

    SHA512

    96823dd27082ecee7d8ee95977cee340e92e598677b6157de2b8a3a47f1ef554771d278cc5a69044d1cefe7fe753c8e5fa39a60ffb3b296bea558dac5b5cee7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3682a9a7312c1f5c2a04705ef9cad2a4

    SHA1

    d1dcf20f55abfebb7c570b7e08c433ca2492e86c

    SHA256

    6827e4bdebfc14b7c919d167623eb16f36c5a245d0b4621175bc7bcddedc6bff

    SHA512

    9be4d9f3cecfe5352777e26216a5859e9e976bb4fb92481c448d158d9900fb4ae36e5a8c660ac70eb56b6e9d25edbc27e50a293979cf234d249568aeb59065be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    92bedac9efa11db69404b4f7357e7bd7

    SHA1

    df1b0d83c74029867acd49c5fe2fc2c4da454107

    SHA256

    1ed01e0ab0a7a67e712664ab1583404bce7a0456edf2871d57ff861a0f699977

    SHA512

    794961ef2e853ec16303781845234a17ee29b8bdf360cff5c76fec0556159c0d0d61fe243aed566d2a773dd49f4ebe8425b85fd445a3d31e329b1a74beed826b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0272690d3eb1b5a9134f470c05aeed9a

    SHA1

    ed876f9d96611e430e9acfbdf8370ad68f95c995

    SHA256

    21b683a87f8c3d8afc09876c1da7b25b8e0b555e06004e01715f16d456c69715

    SHA512

    043f9ed695e9e4fdcd89792b929a659fb5d02e4e8751224f3cf0eeeaf0e81040c387ebab8c7ad2f16fab0bab710980b6a162e4e9ff74909ee6c1353dbef879c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4fbba498e9ae146da5058fd15c3442ff

    SHA1

    5c7aa45aad5aefdbc5fadf6f91585a2982759211

    SHA256

    0223bae772af763a8c78ebee9ca35e37b250635ce27f7b648d24bd29bd09718f

    SHA512

    54c7433cd375e0a201f90f41745022a3e2ae5e35d33aa21fbebe767f03833441167299be58f8a9b7edc6d3b6a336a4bb9ce306acdf90dad95fd1bdbd62282348

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bcfb23e7c4127d1505f35d2c6220e63e

    SHA1

    3c40ff5cdd29d2d914e3414bdb8454db8cc000db

    SHA256

    323c8ebbba684973f38c2ff587fe63171d767c912e8f89ed3918a037926bd4d6

    SHA512

    594e8079fcc8fd2106533debb733ab32f7f4ba6ef6e2d85ea2adc63da5907fed608fb505d1bc1e4b5a66a319bcd3f33ac6829da6855ca7a55ce90657ab1c317a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cf30beac0eae34469b8dddf8f14d994e

    SHA1

    ba96fa7c157ca20b682027033086941bde0bdb3e

    SHA256

    144cf8497c23d08381bba1550313e072cdbc78fe064fc6603bf580c8472f4da2

    SHA512

    4d45d8bf43101ece4ddf300677c17f736082accd9931acebe41336e686f9430686ed573bf7adf03677aed152be2dbd5e6be67289c47a8b868d5c0f21d2e43711

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2cb754dd6da668c211ef0f1a2b62aada

    SHA1

    d7ad1fcf69c491f0f086511cf196d3abd20b21ed

    SHA256

    5a74cdf084d5ac6bdbf0b80495088840e1aa790cd36bf0645587fe4e547796bf

    SHA512

    ea255b0ae299f5f8e8ea9f3ed71b5381175c639262fe60194ee81d475e16c89a4a5dd1855f1dfdf0bfb2e2755496b1d01ba4f4852614a85294b4d4da0ca91f30

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b7f2f4e81ca90b53b01683a0d82e6fb7

    SHA1

    b12429ddae4afa46a97a2354b313a7d5abaca298

    SHA256

    6ece09ff175be5cd3c4a7bd21a5e7680239a6ae7ec28c10d3c768fca860f664c

    SHA512

    9ddfd7f93a736841b39af27178cd6d46b58ad3bd2746605e8a4d849f8bb522cdb1b240969f66aa496440cb977dc0c9840383f32a5da2bdc83cf7093b5b80a1d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac35d589b2a88e3e1227c620c6ab268f

    SHA1

    ac75e0494c975a48ab7bfa4e794e97bb79d4f6b1

    SHA256

    4829e1a2af9a9462b4f51c559ede8cad1f6e85b90dc8bd2932f612e1ad9fdb2e

    SHA512

    dd356227f8d8ac5489b81d31affffc79a10c95254ede877a23585d0a6b9ab5156bdcce6fbee3145d124eeaf4efa7f9f291acb5a2fc9b04d39b1ec75c9cd6ec5e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6bbc8501d78c43bba9de994cf7b795c3

    SHA1

    6bbbef6240585799ee80c10ec07048a4fc1bf2fd

    SHA256

    30c6126bac01a0b1d6069e540a9a19023f10192f25d3475b4a4ebce2d2fdf4b7

    SHA512

    d67d49045c5be947bb997dfd3d31cbc6abe0546e9dc49b59ad96c05a31ed3e0d7fefe8d585c1b28174d7b2366227966e347668113cdfb0bb87e6d7d38a2b0994

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e0516caa757a3dd785f7e7a582326310

    SHA1

    169c2c1e221b5e0cafdb088562910f169d48f5c5

    SHA256

    ad8cf5c06302091caf39db20416427206aad2c279006e96145f0a579f81c6a01

    SHA512

    73b59e991fab460740fee5e4c3d43f51cb9d46763d02f0845cc62c4040199423255d9ca567c1d862ca6823b1714b1cba40f7b10ffba137478abdd79f8731d51f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ec8640cd27f4dd2882981822b975508a

    SHA1

    1974475bae3cd82ee4bba69839c1f32fd013f412

    SHA256

    4972e8314647c86c82c0f5227ecd330670ffa64246da289dd680c9d2920de74a

    SHA512

    c6b4e42bf06ec2d5d007c78d4d3f69a65e94b8988504edd72e68f577a33e6c1ea0e70d22a7025fefee05f38b1d5c50c368726e7c0886249bd3f2e0a42926093d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e56dfa49457ced167cbec2ae0fa3f1f5

    SHA1

    86ec8f19725e11145482fd0b6ba7f3f89978e3c9

    SHA256

    779856778646269333f81d2a3995e6638fb16410adf923ca6cfe7815c3f3b722

    SHA512

    06b44a359992c53f22c40d022ae5e20858d00f50430fb00b811f760382debd906f4377ddd6313e05c52ea5f33843735441c09eeb4377ed7135e31fbb2a42ea69

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1A9.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar20A.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit