Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

f6b76d6b7f...8.html

windows7-x64

3

f6b76d6b7f...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 19:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f6b76d6b7fdcc37c16a261a971c93a0d_JaffaCakes118.html

  • Size

    6KB

  • MD5

    f6b76d6b7fdcc37c16a261a971c93a0d

  • SHA1

    a8a98487132d8d9aca2ccbd0533b834aa92962c3

  • SHA256

    927ba6f0285a64ab5cb8d7921e2b1c10b0261ccee4e5c3fbe3cea2d6789d9356

  • SHA512

    e1dfba271ba2a3b113e87adef94a412aacb17ef494dab6f2ebc322c08534f8f49f777411cfae067633b8eda16e1e2e7f140f0e40f34e9fdb863060fbfb96c83f

  • SSDEEP

    96:uzVs+ux7q6LLY1k9o84d12ef7CSTUnccEZ7ru7f:csz7q6AYS/Bb76f

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f6b76d6b7fdcc37c16a261a971c93a0d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2464
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2464 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2636

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d85469c6bcd669090e030ecfb65838db

    SHA1

    ff776e5c5bab22dfd7688a544f12c8f2ead42791

    SHA256

    f7b991910a1e6a39df7da68708253aff5fe7da0be59f288c7271e7730a4ef915

    SHA512

    633cc9f361945cc055ef2993bdc9ba05767fecaafd58edd590a7295f0b80eb5ec057d846b92083d88a277bab4848d846c4f1fdad2c3b0743f643444f27b6e68c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0cbbfb375c708cc2422af1cce4866b6f

    SHA1

    756b2b473810b9430c6c449b23d642b4c7b11699

    SHA256

    625301e9f32b722d8124de4581afc184f0b280ca4166996b6ce4149072ff1ea2

    SHA512

    74259461f51a7322c6b45d3d6c77127d4e1179f4cbec21ebcdd51ff25d53959b7615a5e1a5dbd9f315dfd5665eb86eb204242bbe0d55c2bbf977b06acc7292c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6f7a137eff814001290364e380aa3e6d

    SHA1

    02a74fdace2e30f0c04e026d6c950134b4a087b0

    SHA256

    fa3fb61674c4d00e00dd096d8b91aeadb012f1699152a4e761dadfba2ddfc4a0

    SHA512

    05f5a04e031a58d40eec73b88235c64b007d020d151437f7cf01b513083cb8fbed81cd4b1202eee23540968f1249a49309aec09926c4248e37d1708ff4aa9113

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d92b31507d1a2f4c226e04030dd23b6b

    SHA1

    a965a561d20aee39bb6819dff9ad10b54eccf6b0

    SHA256

    69e1803f67e75b416244686eebcb08714b2d0042cb16323b4d28ad8bc1297cdc

    SHA512

    c70dd04343f30c4160b7e086c853786992ecd76ee3aa23be6bb7d6ad8842fe86f5e827303aeae0d7640f5ef24463c5f43fec790a3c496ea06cd29d0b7d3df4e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8c0a963003981c2cb7a70ec83b82e9d3

    SHA1

    6d4238c8a476361c5e1515824f6afaef82990c7b

    SHA256

    b1a3c50140dc10374f25d252704610db07b3e47782f5b816e4b7facac7b59373

    SHA512

    1696a9a43628c86bea5ff28b6f3d96fff8455444f851e96a8b5f7e3e04cb33d0253b12c7839fcffb2762b8d5624e8b2cc5a6f9a42b5bae9f46d2a4c25879da87

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f615e39de8e990c99ff5b71f280780de

    SHA1

    c150b1e8b2777fe99c8b42a21df9aafce161aecd

    SHA256

    84f23dafaef42205d54202e3a162abeaafb184a2c338d5d098676089b2838012

    SHA512

    b78cbe4ecdfb7be47c82a70fbd67e8bfc7335dddce7b26870d625036502f735208ee6359c63bf1454c9fe16ce099222104af1111dc4fde5ee978888795d1bb3b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8802dee68fe0eb86bbc994d7268f0a7b

    SHA1

    a7fe82c0cdf50774b58eaae660f875262a906542

    SHA256

    9b0275cc43e585e2ee42deae22a76b4ab68bc1981a763178ad41b9ede93f36c3

    SHA512

    658a09cc09721c0a681a48250564c4e59b933c53aa399f81477d3bd0d38d8c6d225f09c439a203409d97901d8f19df86bc6257a0833cb0abce721d500cc43815

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b68af83eeacfcc1daa09d7832ccb82c1

    SHA1

    f6f9c506a7115fa7f2b32829153b04cf4b1a5bb6

    SHA256

    22f22a74c8a062bf1659bd788adab209fab8ca819bd4e6d5fcad78fb269a6774

    SHA512

    699a9370dd591a1469c3a1efe26ac1d90eaba2c375c55c5f6fbe980185deaada72dcea32a82f5b98389ae2ea39f7e9fff4a68da2b63a23837565c570a1f888eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cf82aab2355daf21cd38242f30dd7ed6

    SHA1

    b8cc4f2256447983aadebe159eb447b486fe9094

    SHA256

    eb7afc94c3f682f61236a6a8e05af05126f7a6b74cda0c9551a61cc6bdafcac0

    SHA512

    5406e99c47cb5c5dd1109ac939ecb19d1bb7e2085fac63fb56687059bbd1c2755828c797678709971d1c055764132bc712b2239c95fd66356e8da22ed7c6e721

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ef93ed9526cbc18e3b0522f469c14d48

    SHA1

    a89690adea50b50b2c16b040472fce180001e964

    SHA256

    f2c42768390af2993344413f077f0ca7dc18ea3d26c638315982c4163ddaaeb5

    SHA512

    dfcf0812b81c2767425eb3dbd3868ac5bd405ad50159eaac73558db460098e8c2b884a840f0933526d023bb528b67d0759f7f4106e8f1e20bb57ce496378c45c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fd5e048c32b90124067fdfe409ae465b

    SHA1

    37a3396182047e1fc59193044b217eb602355223

    SHA256

    324fc20b552e6e8e1710f9d6e435909f768ba2f95b511a5c623befb38862f984

    SHA512

    e347eb14553350c8f54fedc11f7f2c019f9a19d1fc6dbc76aea25ba65ffa0af7a046fe46ba49bcdee672f48084a88e3bb09ad3acc0bf30d3daf1f37937e2f347

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f7b026e291e202d78f468b933b6c87a

    SHA1

    8333ca7081f4411dbb37912260b34cf7b2dcf478

    SHA256

    71399decd9b1462f6b53e073a217c3fce520220cc3b233c91ae51ecaf284de00

    SHA512

    05ac7073df49096bef1406a09bf26c60e0689daf9876e9cfdd123b23f7bdbf43c5ce175bbde3dff4c46d54ab069d2c5bcec5db5bf6ce3b18bcad671ce609e013

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9c3c721223aea36ff55c5ac49b74021f

    SHA1

    aa47d9a382acc89ae7c307c691233c3526c13cce

    SHA256

    c38ece735f9600c971528ba4510149ff302a95d0bc3831823034edbef84fce15

    SHA512

    68cc93c9dd3aa3169ab824c360ea624522ffd857883877cb0b03bd0d7a8ccea44fe65e146e63ddc2483bd966a177d3396b4f66b47ab4f3a4f117378cfbff9a67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cae07b58ad578726f04aa86c74b2e02c

    SHA1

    2743a0a4833bcf1017a63edcedd0b30454f60bc8

    SHA256

    c71cdf01881d3cd3fbd75f9a62eff0e1fc783d69bda10b46e1c6c58f9e6c0328

    SHA512

    f083e8da6747cb758b2a4fca85e96c358b5c08b834deb4a64baa6b0c307030cfd80daa64f0d95908bec604cd53cbc7298ee3225a4f1f607284a2f5513b521bcb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    08dc23fcf6a9b7a909e7d5dae389ae0d

    SHA1

    a3951f01e5ed82186add2df88198b33b5430f800

    SHA256

    aca749c7d5c6af4a307e28590c5a3a7326c09c88b9d82f58695dc64adedf49e8

    SHA512

    aa6be05f80dc39c62c44b7d9667323d98c0aa621ec5a3c076ba1d7bd8706dbcd56bc3788c236134947952ad002648f94c59c7c284d48f2ae2515b767e01d2e18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0485fa858bd8d5b971fd32ff648daaf5

    SHA1

    455148e3609c760942719ecd889a402962ff1df5

    SHA256

    70e383609619eadbda8c2287e2aaa24270e0784a04115fecd621ca30e1c62a70

    SHA512

    45aa7de419d34ad77f8b378be970d40ea619714b3529e889909681bed2826880c7e219fddf4386e1e6ce4331cd011ddc17e76a730832c6c7ee87fb47f7e281e2

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFFE3.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA3.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit