Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

fed0197b84...8.html

windows7-x64

3

fed0197b84...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    29/09/2024, 15:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fed0197b84b9e02527c05d722be19b93_JaffaCakes118.html

  • Size

    66KB

  • MD5

    fed0197b84b9e02527c05d722be19b93

  • SHA1

    2c914b1b659f0922550fa312ee8d54eef0d832ac

  • SHA256

    00299fda976bfae9bf42991e1d4056c1d3e291bc84adbe07abb9ac0ae50ff249

  • SHA512

    beb00b360a5ac0391799119c97caffa43d8601e2a791531aacd4f45ada036ad5b31f83670bdbcd2bdb1dfd5225975f0253cd6b1e17bdc1e91ce404945ce3de7d

  • SSDEEP

    1536:Idj7tiyaLoVtayfR9+VhaRsZ7v9T8gCJgangfG0L90Dyc0yx0DO00kf:IF3aLefR9fsZugwgIgu0h0D30Y060z

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fed0197b84b9e02527c05d722be19b93_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1852
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1852 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2364

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    816e2f0b9248e0e31d61913900eaaf9d

    SHA1

    6c52ba2bdb9a69a65237b6e3fa6b4225b96b6b87

    SHA256

    cf4256acba444ab3874d0a8951691fa01952a7c7633ce6fe6c280c9baeb34aff

    SHA512

    de4b658dce8a2c9286ccb6f5c2fb87e77522164aebcecc143499fea0b5bb5992e02f0025eed437f3ea02b7c8555c0e1600364f35bb023a92b8c38b51319bca1d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bed1f8f3930d67c48ba449734fb4a207

    SHA1

    f4ad9640187c77f2d31e5f1de29d1c18495a3854

    SHA256

    6968c1bf5bbf9cddcbe95b12d59cd10e3e3b2810070564d98dd2b6250afddb57

    SHA512

    7966086644ffa81f44c8f95b29f8c383cf564fa73aa32268d43fb839bd3369186762c62012d018e29105e1b33d6cd9737758418b1a2db218bb417cacb5d04523

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0a098469cbf227025b5df20ee809beb2

    SHA1

    2c264d2d4d8630f33b88a07d1c6f35b37a42615c

    SHA256

    a57d92f50130ef811b62fd67d8ca27950e94d9d023457bf94ebf23e90c4ecb60

    SHA512

    9662e91446af216f98dfa6ebfec7345b892e3c3ef801e8ca13bac5e38e23cc67e80abeb3cc6520685fd8d2564a88fc7684dd903ac85379ccfd8119b38fc8edd8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    06338d759bb1fc18e3cd85407668d55b

    SHA1

    798fc84739d071020f79b1adf0d19de7b1899cd8

    SHA256

    7471c57d00b1d5ecac9e30390cd23536e645ad81400f7d96347964fcef6ff840

    SHA512

    26183c15bde7c6c79c5fe87ae2d94f96b3ee2dc5f9e892f6f52eb4bb8e5cf1388201b3fd21a3b35d0a39577b2c524e15be21b49411bb042a1a27d4cd9e617a5f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2bbe290daeb288df56828cd3fd6cb3bc

    SHA1

    995242e4e73b56da0ba1b60b6b912b995ab6be89

    SHA256

    3f6c012f00feb5ec8ff7ae7d86925f5854484b3a023ba2f6eb70c6dba84eb31f

    SHA512

    b25a10cc61b9bcc3015079a293ec91708159e6498774275900d82053db8c236951827bfa8a156ed7973eada79e545b3ace1b560e7a25f9140b506d05c9be2a54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a8e67c044c23dfe62a1e64db2aedec54

    SHA1

    4ef37738c4510a9222d9cca28398f6ba751bbdec

    SHA256

    7334c8d78a0723b74ae8ed6a04c1f4f94129adf144130bf1dd773108fb1d9591

    SHA512

    b75cc1cd7e7a6533dd641858b3e2d9480d8947ad532474852b4ca1a0999bc5ecab260cb8b7bd06f377e2634f1e926445d978d8cb206dc3e7499663b6fcbbb3a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    85b7c9b35004ca1feca7b60de19f3236

    SHA1

    b0e107284a3fb5e466aa1d538b618e1dd258ac35

    SHA256

    faa74dfb13853cdc4fb02645ec4839f61d050f52bd4862ddd66123525f1d34c3

    SHA512

    11a8e1a93aa896f699231661597219aa54c40715dde44a3baa6c6cae0dff6d459f6ab4ba400084b00bcf5ed78bd0613d7862d0b718c43bf688695078020e028b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76ad88324d36f19ea0669fada3c57789

    SHA1

    87adee54c13a9e88ce579c337382a488aadca2b5

    SHA256

    d046cbdcf66a86bf74b19a6cbcbd2a86b1135ede611eeec91745fb6f979ec713

    SHA512

    a9a3567e5eb11518bac3e615c54bb53fd8645d920f666ee3c76e138ff14687ffa74167ab872188a9e8963fd28c30c18cef09b8ef19280f164c6e290c2a6e847e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    318329bc3241a82d166264181b98ff03

    SHA1

    1df308408862664628edc1baa80713befde72898

    SHA256

    500e197f43736a41607575ad5ad4f447038513b27c5609f9f6ae13865051e79e

    SHA512

    2f4455503cf95afa45a6f88aa4440f7a31ce68fc76b76940d4f54d2c8f6210e2a4ca4196c3a050744a8d7455afe9070e5ec5deddd5c99794a03e439856c843c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7c2ca90465bae2e0334b7d6f49cf5bc4

    SHA1

    ef9763d060b51c9a1951273ec41c67fb5825d4fe

    SHA256

    8ca7076bc6944678950d1bea12e4a6b41f3cb77a33998f3e5c150c8432bd5f74

    SHA512

    17d2a80237a07c4124b851e94e7cd8e21ff0f90c0984f5e7a85519404c13dadb3c38e7d18f4ecdc40eb660ca94c82884f457399372a308b95e1fa47169b18f43

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    826525e0deabe91de0f83f76e01aa923

    SHA1

    11d55f6c472654f46b970c514fcc4d5749625d0c

    SHA256

    308a569bac8d4d3280bfa254aa2be2c49647e0aa27baa776242c39c2330145f1

    SHA512

    134329e57604801bf9704447cc7f83e533199f5487557b679457630b760767447cc8f3642a068edc508febeeb6319a1782f8be857325f4452feb06dcd07b0d0c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c08aaa7852c5e5a73e8c3777ca0cbc8b

    SHA1

    2b6d408d497eb0971e8b674d7b4004b0c1ef7877

    SHA256

    a5b5af26747df80d9826c6c07b7a9e528b51abc6854e2b8784e8684397bbbe79

    SHA512

    cf1c1441ffafe989cd02fd3da059661457a5f32f84b01ee0a8e97391cc69011836e07edabcbe9602590603b65388b002af798c2d9bf2d1c0cebf7719b3585607

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    79a041cb9cfa47d778e67ac823ef5727

    SHA1

    edac1fcb9e557eba42ff60d8ef285bdbb090950b

    SHA256

    48a248393a2bd2778d8c7ff7ea036e99d60f3019035452156f00e338b4186a8e

    SHA512

    a401a75c5aa1d0c39c9ac58f134b71efd02522aa783242d64605399159a6fa0cec4a79f261b3c18dda25022bb703ab595bb850fcb47a78ef8fcf208aecba67b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fefec6225ae93637de48a79ec1f816a8

    SHA1

    d5be9be075ac34f14af941a770f35da6bc1ab4ab

    SHA256

    475dff57db6382c418e6bc669731c5a8eff8b53e0d399dad7336c8201be14ef6

    SHA512

    4d8eecd0a57d6f3c1d1d4fa9817382ec516dfa50ff37157f8270fd038d060bda650db4574323beb75f9b5dc77b05210e39489a9800b9326ceade9ef103284ee9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5682868d869478bd7a357fc43c449422

    SHA1

    88ff9a72533ce43967c9455209f9eccc5c55ad05

    SHA256

    0180b44546b38d36458d430aa95686746aac6f36dab52eed0056d76238c28768

    SHA512

    a1d44823c74124b9aa749845236c634508f43ddfaf16e8f229f486c021acf13b4ff58cf8a70a76ba17cc9bde9aaccb53ccfc2c220923cb52c8366f5b70cecf70

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    65450e51d701c3a0a9090db0d8ce7a55

    SHA1

    305f75da6a02ddc7b94716f900005cc3faea2f80

    SHA256

    0ebbefafff0f99780c4db8abdcbfd5c1bb437a06b8e5f62079e202b1778c5132

    SHA512

    1681411c4eb0b0c11cd1e0ec4f1e9bc6b36c8dab54eee1c1795c5b028bfb784029468372a942d5a2779e9c34a6b966ba75f002b798bf6ab58bd8a2e2bac321e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    87bd7f3d4e08a01ff6e7c3b3262a7a04

    SHA1

    63be3855ddee551464250bfd109e51f8b43f30b5

    SHA256

    b1b1cb3f0896cc05e3882656b4127f0d030d841f391d8bd2d94735797c4d61fe

    SHA512

    3d134e73377a1dae2439a174b3dc57eac7494a4f7b6c0db34cc39e708ebcba2d44f3aa2a1daffa0a98b070a7517b165dbf6145e18e4a6eeb32526f477fa009ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae2bd8424587573ef5c5fe734c12900b

    SHA1

    19d296c0f288de745a6761fd9939784cbab1c91e

    SHA256

    137947917dc426216221a1d90e7e64d4410f68576ab13d9e0d61b79e30fbe1a8

    SHA512

    8f49cd90dff32f69749c42520013f31d64ff8ea32ca086faa21820e1f5eadad3e9754c61a1da5431d84bbb077656b274b0a2369a715dae113a3108b273fae76d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d6b6485ccd605156be865bae55efdd37

    SHA1

    63094ccb70c38f7a604c923edcbe5d54569ae98a

    SHA256

    7d98f5ec7a0732669db8048c6e2a9c5d75af05949946965baf7b88c2533d9528

    SHA512

    b4db5f51e3a67c6ff5300cf8c00fc7324a788a4718b670e3c55664ba5ae80ef10fde373275369810a812897bef58a6f8d6c61434c7499421897eac953f441b48

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    961a078ea1fd21f0ed67cbc389ea61e8

    SHA1

    1daeaa6bb1dc5a27618b007ac612287e87844954

    SHA256

    d24fa958c002c57bb1eb547f9751b3ee44d71beaccfbc8e4fcc4af033fcd78de

    SHA512

    5bc27a2c6c496b02f24b7b726e71ae3d7d9f4dcc8f23384658ffb0696c7dc964c2aa34e9c15f7fbf96255f9685ef7b34203b4d9fc65c046b561e73a3ac48530d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6e9ccc92b8c5d07670b9d00859eb8ced

    SHA1

    6245b9b7be5e91f736fd594507ee2a5e550b79fa

    SHA256

    00038c9348d2c65aaab4ef4f00f109c465b03f1caf9b7a6a5c94c5b95ac4add5

    SHA512

    969f4879a85872fae28c1f59edfe5454884b3069ee0bbbd3ae6a6350f2f1e6f3238703c6a84787efbfaaec3d18eb8e7ac086cd444a405fe4d1bd616b9d42e98b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF182.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF195.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit