Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

fd95e9b2ce...8.html

windows7-x64

3

fd95e9b2ce...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    144s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    29/09/2024, 02:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fd95e9b2cefa5bd2ac07c745f8b30624_JaffaCakes118.html

  • Size

    139KB

  • MD5

    fd95e9b2cefa5bd2ac07c745f8b30624

  • SHA1

    fef2d8f13f77c805693444ce9954382579d04500

  • SHA256

    c4f426caf47db5ace100448840d52fbdb6ac4b3995319c22710c06e5abf44504

  • SHA512

    29caec29be248db1532f6773312a9075fa74ac0a7bb68cb35c836a3b9cbcb9e8bf0a03de8906e33e46acccd39883f580067eb160f6ec334f6b4d2fd4c6151de0

  • SSDEEP

    1536:ShLqMdnlMTOyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBw:Sh7d4OyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fd95e9b2cefa5bd2ac07c745f8b30624_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2072
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2072 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2492

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e348147b4fe8823b21dc0d17f7e04f04

    SHA1

    5cd796462bd7f5070f161062c31de96ec10e5b8b

    SHA256

    8647b599173e39ddacfe1907e79d7a3cd3f423ea745742fbd702ffe0829b24f2

    SHA512

    f5cd256228151d7002142658d04713b322b1f13f6a2521d4ea199d351e6b1b5b11f89e8b9212119e8b6f9703bec73f227ea19354cf16fae1884e1ea1e4fc1c16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9f23830341c5531b3e019b58b8042001

    SHA1

    23c366f316753801a61a9166a82b66c23fb2ac51

    SHA256

    128927f7bd6b8e577c2481626b2574fd85496fbc523bf034a4904839d727b999

    SHA512

    54822a0d429bf572a4e2370f26763ab5ae50c0e2646ac4c8f10894742a47d1b5559a911a632b7df971066c4e775419783d0f94a0df69c46512bb2f4d1b70d3db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7f02a51cb4ce1b81bf58d27ecb6ef530

    SHA1

    73647e1c1df3c22e6a53abcf65bf8212761dbc75

    SHA256

    204d95c18f75bfd2c392f2c1eaa2ffd0856acd9ade5830f5f54883193933282f

    SHA512

    fd1a3e575add447578b3053af96349a2e778bc9d9c195ea98c58af339567933ba934359ace183b6cc3080f64439b9675b5b559da06627c1992471597b57666d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    04d59093221b86b0cf36e9856686c435

    SHA1

    fd6aff743d820dfc56b7ce1b6feb4c1cc1e6d3bf

    SHA256

    b6f01a10e52c24b564fdf6957d28b0c026e0d03519f81dc6bd1d10436e7e16aa

    SHA512

    62d46fee9a2d703491f9bf37898e497e456efcdfe31676a595d9a90e9490409d0b164ec88037df6f06d3fe0e052e06f396644cf3c75fd8dd1fadc4e247cb7405

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    404a3d6e076d655977f4bd7294a41044

    SHA1

    540f97b8656db6831ad34cc78dfce3a798701786

    SHA256

    df9aae638a7ae7bbb1341658a50103fd888a44cbf4466d7b21cfbf5d54de9e67

    SHA512

    d962e5e3a750c227353e9cd664a32a4b19f1d7a866fd19805a136378959396b0cea9dd6e198cdac96aa44437b3879cf910279c30c468f13cb22c4d21b5d67396

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    75a8179b0c68d290f4b667c21d136875

    SHA1

    1035775cfca376c74c8ff06de3cb60cf9607656e

    SHA256

    2415219b559dc65648be5dd161eef1c9d1545f4b607cbe48408e34cffa6e338f

    SHA512

    23ed5910e1175f10c3029ae4e21baf4c51c685ce6d099c413c49a63f9668aa589a6442c06eef5b889b17070bdcbdb55ba4ca939a898093271246dfb8265cf167

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    05ddd3b22cdd49eeffa9ae9899f2d167

    SHA1

    23a44992ad7368931380cb42a959f005553c7336

    SHA256

    65c27af6921542aa9adb9f8c4b51151566e55a312d37e96b02ac80ec8257a20f

    SHA512

    cd4f637a9e171a4aaa5eeb858b03cfd90d0c7737ef663f8ad150fdf8c272bd7a390b9fd11c805573d5d0648498235800edb31348e1a52735ab634d52cb91a1e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3200c9b2b8546b427b2afca35d0b3150

    SHA1

    0fc869ecbbb0092e255f4cb04d9fc71fffbfa277

    SHA256

    637a095a0cb70c5df58693cad1624f4a7d94dee6ffe0116e4aa45a90cc6213d3

    SHA512

    be3648ba4b35a92c2e35269778cc3fc8cdbd37f90c333f2f5ab5a778cb7ba73df5e34a20fceea2a09759127da9e68365c71b293d708c352bdffbe5f97250314c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    26b2cc2d4e3a473bd60968955b70d8fb

    SHA1

    2e7c05d577cde06d1aa1bd8ea8cb10707b0ba79c

    SHA256

    05475f939c23e0cdee2c773599de031a4788cc15b73ec44758ac7bc72fb5893e

    SHA512

    b23cefa389ac726ad87ae82fb9cdf6f3a6d2c2313797998d0fd21badd6c3441d44a334775377970a07cc19412db04319c7a9334cf6b977e51a7b76b2503df31f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7b9172a8f4ec8e708fe8ee7b6ab2817a

    SHA1

    589a9dbb03d06064bc3a259837c034e2777e712d

    SHA256

    6fb762e864742d87df38c0df747d2a74aed190ff23b535ed4ab0362702d4e9bc

    SHA512

    ac9f5cd150fd6f7f21930bf855f1302cb283670a67b057e0d2142cfa9d2a47c6608092fb831a013f752b8b4ea3abecacec7c6e81efdbd52e456bbb4c89ab3a33

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    255b91f348e1660cbd924028f5ae3c78

    SHA1

    fbfe958ffca40dfe31d6ae211824c5367a50a307

    SHA256

    865f668ba24c3f784ef1cf0aef894c855c4634043201faa9a6c216a5337c56e7

    SHA512

    6471931de9443ae408802e7a9cb30268a4fbca50f6cc175cb554e32b603cbd8ec6ff0bc446d7ed6545972425e85390728c2ffa0790af97d6608fe77d2b6e3153

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9aa08246663cd1a9a8d1f041fae4ebdc

    SHA1

    d55c509d7978dd7a9257bf6c37c325be3ba92a66

    SHA256

    3d673b9546ada6f40205d50a973af6489e74d63ccf71c05ca80e300344dd20d9

    SHA512

    d662457ae8d4df17b184c4e07621bee5200bea6c2af8eafff98de79598150fef2edc6b2ad19340a19934ee9ab062fe7d3d0ff99dfadaf0ad0e07797b1ab872af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4045abbde54ac2bcc606874d1c667521

    SHA1

    90da0cb4b09ee621853455c400ebc3de7fe2be61

    SHA256

    ec8422b427caa6b5617bc30c7d8d1bf3462d56e6eafa5bee1daa98f89a823280

    SHA512

    e3acb7b82a187b6c4c7e9af23037caf14f780733c844d7d44950936cb3a834b789aad058cac52e02870c3b1dd9c74f3d87199fb6fa5dce787f63d2fa89467d78

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ace88a29ae2f1be55a87ef4f820dd46d

    SHA1

    11aff0cbd2b151e9ab8b395073a3ac9d4b030865

    SHA256

    88498642bba95c51542ffa3f990698502b2aad31b6a74c10f808db1061f722c1

    SHA512

    66ae309bda21125d14a34833a160a5e5fe09f1a00c36fcc7d39d7f2660c82741c3988d4d07cb11791425f9e6eda011bfb7de918f3273735be54599a57663b6e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2ebff36816ee4d2e31d36ea17f2e8db3

    SHA1

    75cadb539c3e21c69f09654fc32aed67cea4c324

    SHA256

    25a373d4e0ede91b51d8031b3f4c9def2e8050be723ad77ffb861d8d3c8a3db6

    SHA512

    75edad389586e35e792fd59ecde93102f998917d125581d3cb1556596d6defbfcaf95a68ebf99c1def9a06bddd509a66965ba80e23d6c01afc91c50b740f45e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa58d09ffc072015ec88dd7425d2663e

    SHA1

    53bc6a4164c3902ff476fd710fec227816d37558

    SHA256

    42bf77bea62147e3337abee12bd0d10f53fdbd526db40f2f8e298011f9e9fa9d

    SHA512

    8bd4b568160aa4def4a235b76642c57990462b8f96291107e26118b8f0201ef275f8b7dd82b2d8d123ba73001d7811e5fffd1f58d213c9706d1179026b87c2b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a970ca3862edff0be690e575b59e3478

    SHA1

    ce3240d2ae6edfa05b660335a970cb07498648da

    SHA256

    79620ecc54914cdb4e561c346908b22a7805a93d8d69ff971d7398d0bf300a95

    SHA512

    031353bc341cec2fa9be4a38c1c575d651ce8d51319be462d9237ce624d9b0e49da0f61641f9054249f5b1445bb41e579bc85cc91bb64dc630ee8a07ceee5f31

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f752300c7ffb011675db612534f1c43

    SHA1

    f4b9fb576bda1f677a908755d83a5434a8ca3228

    SHA256

    63cd0aeecdba04c30ff28a5953984649bce916c6dafeecbc705a6a96879c92bd

    SHA512

    6e62daa99357857db092ad32f032f751a9b3ecde11c005528f562879dc2713cf6086e500d28671cee40433e3efab59d47700a3883a21944f8bcd81567440142a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2450e04cfbb7b96dff06c0840e9a79d3

    SHA1

    659ae48d640149befae0a94ff1b7e808d83d60ca

    SHA256

    92552d86f2b8301101b68ab09a14f2830a06f3134717186a863c435af03f3723

    SHA512

    593dd5c4af989e4b6ea68e6b6c9f55541daeebb9ecbf96250be44cee96030e7b17037f496f761aed384a372ed64fb54baa467b376e3c6d3d5dc3976d08f68c04

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabDCBA.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarDD0B.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit