Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

fb1571d106...8.html

windows7-x64

3

fb1571d106...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    27/09/2024, 23:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fb1571d106a8a7b729c95ccad7c18b1b_JaffaCakes118.html

  • Size

    41KB

  • MD5

    fb1571d106a8a7b729c95ccad7c18b1b

  • SHA1

    7dcd62f45108799722c8b86992f1d6bd0c15c0d6

  • SHA256

    8eeaf2ab6bf1fed32c58ce4622e3553e9f6eadebe1881fbbb967e04e8b0df275

  • SHA512

    0f33b7d1ae3d62134c63b444e398b4347feee1575911b9332b6ed16319b9475654eaa480b0914289bb155f35de165a096c9dcc0918b2cf1b6e08cad8419c58b0

  • SSDEEP

    768:dFcb01bIpub2vbvOPab/e9bFqdOjdmoGeb01JD4JEYAX2VIQnP:dFcqcpuSjOPab8BqdOjdmhTdZG6QP

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fb1571d106a8a7b729c95ccad7c18b1b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2168
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2168 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2580

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    573468c99aded65d0733a8180d24186f

    SHA1

    30a599376ed8d67dc004d4706aedefad3cea60e3

    SHA256

    2e7b1918c61a6376d76b9a414e6dfef3cf27b99878b27dd11f5dd4a7701223b6

    SHA512

    fa20ea269bc2c4768f2a930aad65c83137dc241893fea39147568322556898af2b53e0d3e12ea6a84007c71cba212cb39e712575be4d66327ae9c4f0a379cb61

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d42a570653adb49d8652c20a1961ba4

    SHA1

    fd1bbbc95f222142ffd17ca0a438dd55007a6f9d

    SHA256

    3528a298e16dfb6bb92262f4e916870c5806a01443a2ea2757aa4cd098dfa73b

    SHA512

    c7249835de446b4302d547b89f8832f437292c2e1ef9e2eff3a0483891a461c957393496f0306479733c2d2ec3c907ca4e3528659afdeacf56bdd6c542ca2960

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1bbe7e2f9272f18da1c319a11093f096

    SHA1

    9dcbc7b63df958c7518ae83c6c95b7781bb2cab1

    SHA256

    5d5d4bdde86934fa889b701933b99066c42b85f84541b1e4aa63ee4d70254def

    SHA512

    09b9bd0cb65856551512ab2df1c70bab30693a8d23a5a8a9832d5278efd7c063670316e6f4f724a16b3b5d0de83ad0e290fcdc011d58b6ef70658485d1c1b9cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    631c300df5e1d9bb07a361010158b67f

    SHA1

    612b3c9ef3b8d32b8ad09852d53cdeb8d3da21d8

    SHA256

    8de68f5f5a5c30a7d5afb2072cf2ecfa426b354390807ec556bfeefae1624727

    SHA512

    b7d84b00dee7eb7eb9aaf2ab1faf365d18cac3919934f530299cdb98898083d833b17b3937999bfa836c360fea27ed216885feed8ee374d6b0de9a4b5ba6f8b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    63bad34e4767aeeaa74e0e76fc3ab4a9

    SHA1

    a5cb18e03f2aba5bac15443b39d66cd929c58e32

    SHA256

    569aebcdb2f79c7608af0fa64f3a267b9f777e0a250efe19db08100ae8e0e78e

    SHA512

    cfebd0756fb774bbd838a207787b878de06d5cc136e0a52d6a571139c9faade211a6d4e80bf3fb124c15213fe2c7ba7740adb1c2b23c7671a1baf4f74fde3f4a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eeda488e44e2fbf05b799e102db064c7

    SHA1

    7e606b3644cbc32bee5e8f4636104581babcf634

    SHA256

    fd33fa3d7aa2bb802c24b6b22037a4675c334fec037ff4c27cdc2ae7312502b0

    SHA512

    eb7ab8662215c2e1f78a9dba9eb4585e578de88c8b484178aaa4b7033e1a7c0e42908fe5b1e13a566d27276d5ccebe05b808ade92fadadf83811c9db4803b8fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ecd992a928932c13f8480d074e7257c7

    SHA1

    f31609bcb281829aee8c5dfd779b290af569c759

    SHA256

    0e5149fa7a6a12d2815321f02799b1056dc1cfd524e0ceaec5487059909b952d

    SHA512

    d8a493ce8794b8d3cec72d28e664ee31bfa687df5013216efb9c1121af8ff0aa97a0a00af496e5b617ae0a4f6ab0f9ffa54f78cc399133b3277b951f58aac8b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3af9f05d080f38a0aecad369d206160d

    SHA1

    91faf7881e68589819f1bae5b0ac7756361b931f

    SHA256

    eb5de7be0be423a6efef30657669597836a5250c18e6fd7f30e7f55fc2ad7fd0

    SHA512

    6593fb263d2cf0a92532d1117eae469005c77c85665fb37d8173d3e53ed86aebdf03764f6b468b34c1dd11ed10e13c69157c38a3bcefe0962934b2f2f904c84b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e7f85058a69216ecf1dc67cfd20932ab

    SHA1

    045201ac21e7ea9e5528cefa72a7cf145ce9aa63

    SHA256

    d52e645ab4308299c5c57ff05e421ec5e072c3393051c59489dc5e539862fe51

    SHA512

    ba5d8ef322ee9d2804d8d66bde62a95b45c95fb18a5f25261d2013fc6f6648c34d03d4088ae925e8cac4eaa8fabd2c6691ccff5dca562d2e60d9b70950852e39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6252e5e49057604ed8519c0b97fbb48e

    SHA1

    f5081ab79d78c376681c9530cd11bdcea75b89e0

    SHA256

    db9498b19f6030abfa6b6185abeeaba8ad0246dc314cea651c8221484f5ed418

    SHA512

    c0de919ca5a21fb101e8ac3e7847db3b70ec1d0fbc7177b70e5dd6e4de02ad7efc9cf1cf5c27e5603b5d2c673b55d1f48df7e8aa9ace9aa8c1ffc743e79d62ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7caffe81bf17c0b36289dbe642f098a3

    SHA1

    96e34b00dfc81feaafa278e53e98a85bfd216fd3

    SHA256

    e451c35778fc1af867d783b40f2e49af7c7a54e03646f1864e9c5b775f34476e

    SHA512

    cb9c0080463f3d2ef99bff531285c1ba3d32b9a057f5282d3708ac3d5e2f6b0f62e026ff3747e13b9b35b13e0f9219da84ac1dd68d79ef9ebdbed56591e1a9ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0406c7d9192fe3e3d389c936ff1a29f5

    SHA1

    4beed05c87f0a03df0e42ba140ff3ec6e6b8fbcb

    SHA256

    2b8ffb2e6296bc80f72ed4748c4a1e2a1ad379c005f95bd64ead30556fb60a25

    SHA512

    45098f73eac9b25150fc7d9a7f53329c4b584729f04f0852ea3589ac4cfa7aca605891011515cd70eb927f251eb4423fb6c805d4d2acdda6cb7c9c8d4c05614e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cdb17ad6743f9eab879ba3df052901ea

    SHA1

    eb0792ac4401fcec20f1e6c74c11cda3309d266d

    SHA256

    a7a4f571d5a8be8b326b3c3c4af1f1a252d47ba8dccccbf524dbc557cbce807e

    SHA512

    f52c3fffc20490dbff923febb2b171a02333a92b1367216cc095da9455769f19e910ed946a406401cae342332f63889857f694dce5536d213bcf34afd169e810

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c34585ba878b18d39ddc64291df5ff68

    SHA1

    032a2b703d08116357bb54cb779f4adec8b66c5c

    SHA256

    5db9291036ef57e22ddd1e34cb85a17f4e152eab71c5db7935f1b77cce7d61f5

    SHA512

    a29a4bc37104f1ba37800ae8813a87f99765dd03ac4f276b4dea7676b10b2eb88599e704fe830e011604037677ac606df9608064e57721e9a8ccb222e6b3249d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7addbb5336781444045a608b2fe0f5ff

    SHA1

    1dc440ff8a13efe6cca673320ff271567345b8f3

    SHA256

    14b953fdb11c44fc1308c3ea4b8d1518fa421b0cea5601b4c593e1b9e7b232df

    SHA512

    33fa02b5a9f95a352dc3a9dc123201c3b0773a1d099d5e20ecb315e2d4107a0376cbd198a3a84653fb1ad10d6d14d2268b3f7276184352d702ff337652bf4b05

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    982113efa74ed9c026d5bb85e54a932c

    SHA1

    4b5e9aeae30a3579415d35df74c2f1c23ef2bc93

    SHA256

    bbdb24abdb29c5e4b665449085a7037de697e1cedce705ce7a8e257083d10d9a

    SHA512

    776fb33c10ee05edfce61ca61e30a9b35aae979cfc7c59b220e633b3418892e4f49904582d24560b03a1f5dfdace10c47f6d1b3acf1fcd323ab52cfdbc2df702

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    89776bac97ea8b68f849f5e914351a65

    SHA1

    3e28a2d19e8ae253acc89ea3c6105275ea835ba8

    SHA256

    a29714941bf99f3bc86ea3b7fa9df6cf41ec6b3591b5c4b69b0eef3b6b645e87

    SHA512

    76c755bd3530dcecd50253f6d1330b3e6c70d51770261ec90c2cca94446559efe6ee8414b0d3ba5628b2eb2c1c90f07b9e30903175b449d97bfadabc44bd620d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3edb84ab502cdff8f4d797fc3068968e

    SHA1

    69fec599410e3b362f98acb213f2f3c6b8e76e48

    SHA256

    31a5c5a7fe756d05d801b316fbcb2aa5526fb0ffec775a734ebed402f76cd062

    SHA512

    44546b52f9e1d4aa795698d0e825975f4d292d8fd36a16978f428cc522140149a0d9893c916a7f0ccb98178bd4077dbc2593f8f5d085a4688f406809ff34d501

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bc112cb499eac583d4c48ed53d87134a

    SHA1

    de3de3bb95e974b6028a6acba3b6bb2f3e5dadc2

    SHA256

    d2ac3c18b6e513e818866778524c27d48d1cec55db3eb6d7bdcf555e169fdbe5

    SHA512

    855a70954b6de7497b2d7f40898e8708a96887e06afa27c4f7f9b091fbee64d0fcc9c38cb3f4b674ed2fea0fd53452e9f656b09ad5c584ea4693b095b046b81f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q4648X1K\2254111616-postmessagerelay[1].js
    Filesize

    10KB

    MD5

    c264799bac4a96a4cd63eb09f0476a74

    SHA1

    d8a1077bf625dac9611a37bfb4e6c0cd07978f4c

    SHA256

    17dce4003e6a3d958bb8307bffa9c195694881f549943a7bdb2769b082f9326d

    SHA512

    6acd83dfd3db93f1f999d524b8828b64c8c0731567c3c0b8a77c6ddcf03d0e74ee20d23171e6ceac0c9f099dce03f8e5d68e78c374da2c055973f6ac2db4e4f9

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ROLMKJ86\rpc_shindig_random[1].js
    Filesize

    14KB

    MD5

    e691b2e17de9ec018eca758518bf5dc8

    SHA1

    3238d543acf53b803dfbd260405fa558717daaff

    SHA256

    438d41bec769ff386a2c1555b6bf9105362f67dc3e711c81c6092ee7fbf6ad2e

    SHA512

    5589a5cb408ee8e0fd473de24224ba8fa1453eba5df6e591570810f992160d4f3e8f60f8ba74d9994861759321f5bfe0c4a608636913a8407b5184008457afc8

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y8UFEBH5\cb=gapi[1].js
    Filesize

    66KB

    MD5

    aa012028297a26c039c37ab25a4bd17a

    SHA1

    25f23d01b5f580c00778e1c010225e5b8c73b66c

    SHA256

    55cd2316edf7159b623e4ec2c9e3a334027c01e2d1cc386f833ebcd35ed87b38

    SHA512

    d346eb082674fc26d562da9a12f36ad2cc7db1f1b35c891a8734284cf1bd052a967137c1281982070688b2bb2e06c7f4967d1c9397311a31a11a8560b9c45fd5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF5E5.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF5E6.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit