Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

fa6af39af5...8.html

windows7-x64

3

fa6af39af5...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    138s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    27/09/2024, 12:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fa6af39af55c03f69a9a77dd2271abbc_JaffaCakes118.html

  • Size

    434KB

  • MD5

    fa6af39af55c03f69a9a77dd2271abbc

  • SHA1

    34ed862da79a16cc1ca927a2ee9772bb72a57bf8

  • SHA256

    13df4a9dfd13d7bb673bcef57858ac83ac6221e8dc5fef6782db4a14a2c9a340

  • SHA512

    5c690d18687a78fff595b77bd197ceeae4a13333f22934825d706979f1cf7b60f45d3b6667e66ccdeeaad6e5e3ff5ebbaa4d564271911f205b1cbccaeca7a5e8

  • SSDEEP

    6144:pz9VxLY7iAVLTBQJlPz9VxLY7iAVLTBQJlY:Z9nLYWAVZQX9nLYWAVZQ0

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fa6af39af55c03f69a9a77dd2271abbc_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:780
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:780 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:576

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b5926714dba3cb2a36202f6416e1a98a

    SHA1

    328206e1d40aa532975c352400170f4b2bfbf69f

    SHA256

    c15947e0acfc3e9486213eff85b0ed8e4ad4ad8b364916df076b259bec6dad94

    SHA512

    64892705ac1174c6a0c916e9bf624f808e2dfcf5c65831b8679ca468abe43c9e978959cd76753fb997a2290752403c9e45706ea175abf732e391fbb8d9f47300

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a9a079f67cfaf6094885c68dd759b1c

    SHA1

    7ef7f25e9740492c96afc9143b3705e3f5033c05

    SHA256

    11a2b5586752e8f7191ced76af40421be1a58e1bb06a4b27fe3647436591d854

    SHA512

    b7c7b438d518957c9e488418950784c762078cf5f2f5309c54dd1ee40bfb55da6a891c99f5955a535ee1ee2c9f32cfce7ec3688dd19f5a02b597675bc57a80b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    21b6773747cd0f1c8a119d18dc190c8b

    SHA1

    b2e776ef75c39087a1072215c07d1840796acd22

    SHA256

    3c217dec789c20426cf34f136c6a39dee4d3d00c794805342bae3b1d7f3e6948

    SHA512

    e1eff4e3959ea037d89d3ea8762cf2eb34e8b3b5142a725f5bc950f1673d9859f156734621e05c8b5d0b5058f2fcf1e454f5dd45a0b50e9183e7544abce0ed8f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    02c621db5ba5a8605a4b974072e3494f

    SHA1

    b78ff5bb1f211b84142ad165b3129028d50ada01

    SHA256

    6f7d51803ebd7f8245a3f6923bbc950e6ead53761a683eee3f6cb97565aafffc

    SHA512

    6964be53403136c67e83b2619b29d160e2ba904ae1b9358943c8d16b5927d21622263d7eea9bd78d857ab959dfd2ecd026cb6bc85cd5bcb907a84cd859c40d3d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c4b0bec9499378fe0d8c4ed1fd2092a7

    SHA1

    95c14b9c9d05b5f81c65e91a7e907d62ba18144d

    SHA256

    592a64b048356a7be45a5539ba0c152a0b6b95427551b07978a8894cb08f0342

    SHA512

    45dd9af8363b02c953694361aee9bc165fba84694a90b888ed10486725f5c9860af004cffef33fa1e05f7ec2067378e203d738bfc4f6ed53e5b852aad3b40e5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    457488942c3620ccbb40be1811e871bf

    SHA1

    2b159ed74eb11de8d607c8ae48a8ce4bd6a46a92

    SHA256

    f66a05aa41b715ce66dcd68a9d04120851e7afdaf05503b110a6e6a10afdd1f8

    SHA512

    9270e690f8a15ee2b61852fa340aa8e6d18901cd620cfaf11d642ae301d0b4efa78218da18708886b2594d9c3ef62388f14f08cd0887d7fc3905ca3ba2b3cd23

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    447d27db33d4977b03d578bec4281842

    SHA1

    a57d38c3f745564bcec8de9b7c57aa5c87f41e8f

    SHA256

    16b93cc681ec704f29f8a201cc0b2cda4e80f98f11895c398c05316b0961fb60

    SHA512

    c2010f07dfaa7f6c6f643ceceea42388cdd0ac8d0fa75e6642d26e355013b90c228bac09e6ab436e0ec6b12a8876e674c038a5ad32ad342b8521ed49ec4696bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b89a7133c79073f32c3349fb1686a59

    SHA1

    ed89a38d915d6c73ccb51ca6c6525df0dbfb34fb

    SHA256

    797252357479a1def6f4a3d452057d8aff10ff9c195228018207d1b2b98a355d

    SHA512

    2d9568691044d2d4b8f0a7dfa62b801aa68661c7fe3ed5309c55ea35d71b4dcde0b315f911c44f1d341928b0577a27925f7888ecb1963fa022b8aec7a26dd086

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6a4693ccd10c56a4b0a380351b3bed63

    SHA1

    e1cc2add69815d4aa93a9252a22d253a27af7dc9

    SHA256

    2487abbc3bb273fe45c00b05626c50188ba8258760f93a362e098eb59bdf326a

    SHA512

    366d9ed70e9c271b76e0bda997e8a76d3aa5f107b592af94c0c96ff3d6bf36235507dd311cf3e9e575492c07cbaaee5435dfe362b171dd4b06e896b7dcfd6d01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2157ba2c5016a98ef007a7f9c94660b1

    SHA1

    80593e276da8f34be939e3d4e2936c62081ca583

    SHA256

    36b74a39ae6888d23e0904a2c766a2538bce9e016ac94d5e22c05c6c99b0995f

    SHA512

    b3894a7327358b0c291c430dfa1fb2999a85aa517e5c39708fa08984497b9acd253de9fc6800724b0c2c1de86860b076a444d0c1a1cc65e0dc5937fa37826352

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1878514add87b78ee6fe26bf3f069ed4

    SHA1

    670afec5b1737c4f3b00cadf87ad5e4ec200305d

    SHA256

    1d111950816a30a1d1ce13c669d961ed8b3361adebe74dc9510b2661b6334806

    SHA512

    76704e13d085d674304d52a0ef055fbe963ee9123de879d0f202eb281115da4012368774d43d398067f3eac75049f6cb28dd46d492b8f278202307b786ab5162

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3265d9118069ac92918161d3cf4f1d55

    SHA1

    93d0c7704513128f57607bbddcc36c55a1756243

    SHA256

    dce448339385033090fb91a74e9198f88725cb81c5ee4beed23a4421b92f0a20

    SHA512

    5c04e8dde8471ebd3be7056ddddfd069a858b07358ba5ee5a260407c1b30c452824cb1aacdb0fea0fd8c3119c98218f9f5a7f096fda70804f1fd6749b6ccd079

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d6a099186edb888d1f897cdee60b45f3

    SHA1

    57cf7dbf6fb7068730b02606b2f9fc01a99dddbe

    SHA256

    d4dd4bbe43eabd38c631fc242ab47135e34f47d65ff800eea67e55495376f005

    SHA512

    ecdc1a71093183f2582af1e905628c40dc5b20304b414f8089ade839a5a1d2e316a714c0270276b1f4f2f163f8ae357dd6b3f548d12e5908dc9630b55a020893

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b6d7814b7e52969e6d604a34f777d230

    SHA1

    2a0a6ae6dfa0e29de63b8c56c8b1cfe8670923a8

    SHA256

    846794e27ce1b1664753e4fbb823fdb74a35a05b859dd737d4c64e193cd87647

    SHA512

    dec63de1696e44d43feabff69d21fa089279f7b4e833431fe37afbe00a74fff24ab3c2688cdb087f278ac4b5f83c8f5c1d829bce10c2a631af079bb8e1db264f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0f482e701f5798d668ab0092f8ea7ef5

    SHA1

    f9566d60d3c8267eb18e3a6800dd7df6025f67b0

    SHA256

    f6c1bdee44eb1811287855261092d24864d636f264efcc94fc5d272b1323514e

    SHA512

    c6ff88ba9d6829749933b9cbc727ec82d03f031c29c0bea30692cc0fd5882d296bdbaed253250496673a54e42d79b97d9b233ba8ec84c3741b3241c4b9bb5e1f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    927182fd96f8a109eab310648a8035f7

    SHA1

    43d2dd0422b32c9148b12889d936c5191f703324

    SHA256

    3e5ba058ff6cbcc1d86fa4873b9736f5a3e3543a702ac3505b6d6b3c355b8b3c

    SHA512

    5b4bbde343d3670b2612c6d48e9b22654829bedf83012207dfa7d9548e4a39ecb28029f9a7181bf34fa237d7472c9079cfffb26e03dd232ce0911555869fcc80

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4ea3a68fe4fdb96200790e08a21bad57

    SHA1

    28f0512e3cf8d8384f17ada8cadce1ebb8e3ca84

    SHA256

    24da7a4442594e24f2461735f2d63139db1da61186da372578305d5a1635bdb9

    SHA512

    56da235e1eadfe0540f0f3bfaf5cb10c1e8cb2b4cdc3bd95daa38ccda5e5882ef0d53ac57bd960a76fc1e9532a3014688bf5c31c6be99a9e7bfc126932812c63

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    981a5622118aa5016a75f9dccc73f875

    SHA1

    9f7bf2b89162b1028b841be88cfba3225c1c52c1

    SHA256

    38867315d868c52de35a0de80cbf88ebb89bfc3d3581af48c68dd9f5f5f18992

    SHA512

    3f83d3cd2c66bd0f93a10411dd28e493994d9d368d00c295df3ff35c37fff1cca4ba1e32b581a373790ba80c9df114a8b9b31ca218e20ebad4880093d2d89074

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    da4d0ec19cc4265d0180637af6f036c6

    SHA1

    14920dc99a5de12edec05690c0a7ddb66ca39dcf

    SHA256

    5caf540dcbc9caef3286f8aa4e787ef8fa4becf18e7575a682f5b8088dc2c394

    SHA512

    1ebb4704583254558403dab9f92ace280b9501e7f62ea5625360f553b5cfc6228842bcaa88007cacf672eb35a684cb5c4ff5af820f499c45d80c4bedfee5a317

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabDBA2.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarDC41.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit