Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

fd63708ff4...8.html

windows7-x64

3

fd63708ff4...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    28/09/2024, 23:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fd63708ff4ff1c33a69f462acb2cf6b0_JaffaCakes118.html

  • Size

    53KB

  • MD5

    fd63708ff4ff1c33a69f462acb2cf6b0

  • SHA1

    ac49e5677d7a80c900024f9beeb5a87da1f85ea2

  • SHA256

    1c02e0e720d6eada3a14079f79e2dc7732c9a23973798f02bed7905a85b8a73d

  • SHA512

    e3971750c81d8c836c54a14e86e61d433dfe701f5fc23823d982601611ef719e66f118b2e3e1352a5f6b41eb74e70c06d3dd30ce98553e9fbb772b88a5e0c5e2

  • SSDEEP

    1536:CkgUiIakTqGivi+PyU+runlYg63Nj+q5Vy0R0w2AzTICbbYod/t9M/dNwIUTDmDt:CkgUiIakTqGivi+PyU+runlYg63Nj+qw

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fd63708ff4ff1c33a69f462acb2cf6b0_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2240
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2240 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2880

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13cbcad07636fc1c6c7a4217a1336286

    SHA1

    34810d5f920b83dd5e3fcee3eb4e3533ce80212c

    SHA256

    3ae1ee00203a1af3241942788eef3bcdde55601fc75f00880f30916e3fbc23c8

    SHA512

    ca4cced53427ff3d0cada3f241f65976b3be2c061d8be8342c721c316acf84699cccbf30e8ebb29d5870da4f218169e7cd793c55c7f67312c6ba80cd3354f9cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4853ee026b7ba2876a88260df27d7a66

    SHA1

    fe95fca45f2ec61bae6bbd675b00464a3c52e14e

    SHA256

    ab360859be133da8fef4131d6a18225a6a049c1f275a83ab7391a26bd42e5fc1

    SHA512

    e0e5075a6763cc50df8c2997cedcb7c68fe26641dd47ac3bf138263df8b17d2e34ecc47dbb984990a8546b57af1a85cd62f4a51cfee9ae40c42985ed95b455f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2c43c3d983b01f71cf4ff9257dd0353f

    SHA1

    8d6d468e0d1f70c89a40b9321ec4ff942dbc1ae3

    SHA256

    58c5aa547fbca7f9f4f93b4697dd15a92c029c4f2c0f3055b0369bc9cdf7afd4

    SHA512

    80e32bafd04ba4e1b2ea00b64b87ff81470b157cd85e1d43f3ff784a1513325dadb0578141e2e53747b5c7da48cbc38e02a0f86a6a8e8a089569452ca18825ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ce37da4d601d5dc0ae12cfe5e1f2c346

    SHA1

    884fcecab72b69f41ed43889017f1ebcd3f2f9db

    SHA256

    739e3207ee388051b1e1de5fe63a972c7501c2b54153c95b8bebabccc2a9b804

    SHA512

    a0f5f72a45474164bbea14a61055c2ce9ee07f347af17ec54be96c8bd4c69b7f97c270cb14c5ca2468ce23fa968958cc28a90a29a61960727497cf0367b9ee64

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a1e95308628874676d8ac4d6aa2ee749

    SHA1

    0d8feb96ec91a50ac4454100a8faf56560c35bde

    SHA256

    69635097b841c38bfa6da0dcb7d910deab01a84fd860fb5a429a1504e1fd9022

    SHA512

    43c5a3a64e551b014b378dfdd796d89c299122c4acfb1dab32d880db34bc265745912fd488bb8b6c34e286435581504aa2c7d99f754e59e0c4a209cf459a55f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    777b0a8a2246017c7691b88773f2011d

    SHA1

    ee0c9fb0b65b775520cf0d8a870ca02da216f275

    SHA256

    f56cfa2e08409bf0dd06e6db14ebf3ce90ecd920776422534610f00964543a92

    SHA512

    e7325972f2fdc09b82f51bba63fd8c9fddacdf766744898a11d02e3b3171c1ce7bdf0444af50fcb051f31b6ddd5b3972b4b3a0830d670f650054f8214baa991a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    50f5c59dbcd1627c98b132bb5e907214

    SHA1

    0510a4e3e306cd1d222aa92b2507ab3998e9d09b

    SHA256

    1c4f529375f807effb6f7274088b63f07900f7c3a1d818c042367570107336e7

    SHA512

    fcabd624ea4295dc6ccea6df34f057e4440730679d3d1c512a98aa51ff246da49ff17f3d09c95d27be36d035c9808c48dfdccdaac779adcee9c7aea63cd5c16b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0c518adfe5f42e704a4d839f84a0deba

    SHA1

    5b67bbe1b71481371d85d474560ec952e48202f2

    SHA256

    c058e1d9c5788dbedc341a573ef97e12ee7b3fe24cb0af342ea2a6f8047c864f

    SHA512

    2e6727d46e5ed713182e332e2a98a2b8ed255d0b1bf7c470f0eb5b83ce5dbced7b0757c284684e38629bee137e0f0f7dbcadebc398f309b44c090bfbeb2f1c97

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c588d1b5f289e79e2b402751f18ec92e

    SHA1

    f525bf8f85f58eb548b9b8a7599ed93dd02db46e

    SHA256

    8df1350a9c127181fae2351f6c3ca10aed67202dcf78df45394be151da9812cb

    SHA512

    c489d2cd4b03ac26d9b991a05c01b87ab643176b5913727703f961ed28867a23884a6df67a9ec7af5b3d3d702615135aca0a7991cb0b938572bc725143918d75

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af9271d6dc993bc278e2182378816f4a

    SHA1

    48f0dcfaccabbefa4322f6ca9f6b42f46adeda95

    SHA256

    fbae96ac942f49fb88a406d0c666208c2cc87d280303e310922394d7ed890107

    SHA512

    2f87da6dbd4bd1a1fdb091689cf0bd2260364ca0a38c951a0401814c291dc8570f4452f3944bee74b60dd424bfbc6ffc145c9509e9b2dff09e37b78a89a7ac68

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd20c41b15818daba16c36389703e2b7

    SHA1

    46f6d33592aeffcfcdead22ad4433fbc33a48cfe

    SHA256

    42177be4e1c5350399a7152a81ea4dcf2a076a418c29765030226fb5484240a4

    SHA512

    26231fa862258a2e1e553b8b49ad91537b806b994249ef832fa8d17d95004f5923708935d4ea061c832b72bbd7f2fea976192ecf19fae30e05dce47cc3488eb4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    65fa56a25863d2a688786955c7fcfdce

    SHA1

    3fa6be03e07d25046dee4038783a2602527718a2

    SHA256

    14b371b2b613b5f891283e65da1b21e659e6203b19fc68921c79923932f3e39f

    SHA512

    9370f78bb27e3076136d90bb5067a1893bf256e27a46a44f5646510170e9e881efb63f7ea68d52c7fe25d31f3dc1bdd39c1259361cbac753db007e54ee536788

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f291ef1b866e661a9208fdbd4436e5d2

    SHA1

    3d9fb3316fe7c2513f935ae90d3d61ffedd99038

    SHA256

    713bbbbae57abd6ee2ae860cc0ff69565a2535f498e088b2ac0d88f8366f61a7

    SHA512

    4188408aa0a97797bd3a075a62a02146be798908052ad530aa18f45b2c66d90168903a151a5f19bb6848b2d3dfc79b8c45c1317725e3d297e02d49617ae10f4d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    62edfb202a0be00e98203e05954eb286

    SHA1

    00f33ccb0ad1f18ca07e84f1d496dad03aec4879

    SHA256

    45e037fdee874f0b85ea97cd95f46c19361b72440beb1f041fad7cc4bd05c08f

    SHA512

    046ea81a8f5278700f805332d7ae5ce4af4e119d1a9ccf74be465fd763347387aef105fde5b64341275328720c3d2573b68bd10a58d163ec8006c0184e84d4f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a2074e67d90b8bb9681df3d5bfa73ad9

    SHA1

    73bf3294d88ff01a36968d29ddba0f404d1e463e

    SHA256

    0c3c8d5f7fa4e5b38a1cad4968b351d3ab2477ceb3139b18ddba1074b444f15d

    SHA512

    297521ad8a86392deae8391aeb1d209893a4865b7ef544971453e1452e7df895154bf1c40b418d7dce3361bd8e3a47e919cf15efd45dda76ca8f38848a3fc8fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c1175ff7e3a488c236747b2e8b8bcae8

    SHA1

    4e3240df154e69da3e4f9779ba0acefbbf4c18f5

    SHA256

    824832d86f117d1c33005cefede9c530c3ad16892ef15dfaa4697962b693ee1f

    SHA512

    7214bf77bb18730b96259b767598b75f9533327a15c0336f77a1361b807c576a66cd560c8ee22870bac2fd11b74df2a15b003d6a673ecf5fdc7883cf27a3e9a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d2670a76701efb4c2051b6df1ddc0d1f

    SHA1

    ef62591b8a60b38dcbba48724906856135e02d2a

    SHA256

    d646e07b286a12efb72f1bc836a2472396822a4b565697f097647b3c9d1db36f

    SHA512

    db1e05297f117151fe20c14cb45315ed4993dcfb0af6cb3f4ea9b27eb125ba6ef07ccf9c92f997fcf2dca37b3b5c5b626dfd8cec4e3ec673a71d7814480e265f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2cc9fe2351b0b1d9f5a9e7b046c154e9

    SHA1

    e0b9ebda316a6a89d541fadf5f0564d27950f4f4

    SHA256

    f4b7c73aab2afc2c820c4bb4deec0f57b6dca7f467d05986eb9832de633ceefa

    SHA512

    1dd8e4c3795e1504013cb9000371767e6f048b6c6065f951377bcf3393f9def4c9eb99d19032c44add18de41d22265ebc4815bfd227e0b7bcf2552409bdddc37

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cb6cb1c5b7dd6cee0bc8504abd96b615

    SHA1

    0237f830bcba32048e93a32172732f970917223b

    SHA256

    7d1d6d2304f1d92fde274716850b74defcd525beebd01b9387774b26b6250195

    SHA512

    b029c85c887ad7958f52c011ea77ace142e60887ff6e7b7474e770700ccb985e698e3b3c09071698365475aa7a8124496e5e2bab0921267e4fdbb44dda98af31

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\84EXSCRK\upshrink[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD53C.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD5FB.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit