Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

fee57d3ebb...8.html

windows7-x64

3

fee57d3ebb...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    29/09/2024, 16:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fee57d3ebb422c1ab279e465bd5ca7e1_JaffaCakes118.html

  • Size

    23KB

  • MD5

    fee57d3ebb422c1ab279e465bd5ca7e1

  • SHA1

    646e68dcceac9664e2a416561abfcd02b3daa4e2

  • SHA256

    7ed6b1c0b02cd7d4a1d4c3f868aca98892a3f4ebca6de810f402a9507f724aa9

  • SHA512

    9bd849fd338eaa1f8244a0e19b59d4d856f7385df29bbf004173558fe1f4ed788e89a6c9d8f32b63d6a8998319302cffc6d7f8a0ffaa9ac297a31f35a7b95f86

  • SSDEEP

    192:uWz0b5n1anQjxn5Q/knQievNn3nQOkEnt0+nQTbnVnQ9CnQtnwMBPqnYnQ7tnIYe:wQ/tND

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fee57d3ebb422c1ab279e465bd5ca7e1_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3064
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3064 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2760

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    08a9bf46aa912ba152f35567599ff6bd

    SHA1

    c5171d6fb5a6d39a0ce0ce92b74d5d948a55138e

    SHA256

    6dc0301f1ff81e33f19de3c794d7d3463ea9dbf9c1d44ba4e836a2f3925e0e47

    SHA512

    cb920e1aabc93b9a86d1c538d06929dd4500d26f1874b82e888e92e856665ca41321e33c730b1eb485398d6b9a7b479cf34e81caac2e5023410c60e5f53abaae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    67d73ae1acf0c26a7c03142b542f404f

    SHA1

    bbd7a5c9253e2faa8f67ee0e00c2912f875aab0f

    SHA256

    361d745e926b2e6927bc2e0d6501ea88eb1419e1539f2f604e7d8bd9d57c880e

    SHA512

    ee11b5399fe5f46c8af778d9815581fb6fee08148a82010458e27903f0b80cf35d3347f0e165e0c45360f811c90350fb274ddd16140c199b30d3e0809dd9aaca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    073314944e8791e66b336baf267e6aa6

    SHA1

    70b772125f7d2c7b34e1e2a7595cb031441c8802

    SHA256

    0e92bd91361be15011bfaf4b0c2cf5cf3cbe793951f1ced09aeb1312e3ef37fe

    SHA512

    ab5f6a0155b47476e0eb10dcac4b977ca5de0571c252c0991d04ae507a692c0316dbe1f1211e512b845a4ca0eda22ee2ddead5dabc8df34ebd3d156efe1e50e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    166aa9693779e03bb66e2e0817cf875e

    SHA1

    5b662e14d0a11eddc72c76ef104d75d1149bccaa

    SHA256

    d86e4d1aa16ee60177ef32056851e204a92a4586e41a959a007d4c6975b0367f

    SHA512

    dec04ccb0f481a7c3aea591e785783d5558cb495cc3ab4262551d3d26c283feefdcc859d0ef47913366a5c661708b513f4b5c648e550f3b9490aba1ad0bb6854

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9d128f824737af9435c5a81b3389e5fd

    SHA1

    151962e881247530320ef536484cd219858d8d9f

    SHA256

    6f1126f8551ea0b4731617e6d5d2409d3978e2c0a5f0e6425eaf020ea840d9dc

    SHA512

    773e5f82eb65c948e24ebe5cfa1ecf69688d7c8ba883a51f2c8443a04c6fd15b35049bf78e6c3bcf715496ad5e7541b6dd310400c857c8a789ea4c656687c07c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    28c3f9ae3282d5800a5b97d86c74a950

    SHA1

    09f8a462d640fc75837bfc9a1bdd0c8958bbce5e

    SHA256

    2df7bfe69a52affd8f0db0b151bf2a453bff5ed912ecbd58d506dab1095883af

    SHA512

    c87d398a06d500e3e9c92c630dead102b197bfc96b42d5e44b0464d1fa1549adbc9d41d7a52494aee5228be174aedd2f0458ef2e958f7a1f524033bed1f17aa9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9b966858a80fb9decd5b94267336e768

    SHA1

    5c87f28c3efabe025a0c903707943de2d7cbb68b

    SHA256

    ecfe96b0726784d0c1c8563e6a0c376fbd9485622c448aeabef19e1bbd00a74a

    SHA512

    cc5087717074bdf3bad5dc03c388a315f4add62aee372d87b753d6e500f31f5482e32ee0d793edb5884db155a6479611e998787f59b1b6f3711c792d26939a29

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b0c7e0660246bb266a6935ff5b225e5b

    SHA1

    0a289b3aea0a96fa050637a88a1cb5502fe0fa66

    SHA256

    6c1200656bccde39ec6dbec08e78c60543c0fc63007040475c0f69aaeaeac08c

    SHA512

    c295c9e521ef06d70add91f9bf372d2dd7dc00fcf243cb9c5e70b1983d04922190e54981fb8453795f6052c43ddc15ebfcccaef4cdd374d406e3c459418ea2d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c3b9d2518d1a4376f4dd7e30f9f6ab8a

    SHA1

    e2ef5ebf2414cc83d529a998fab649daddb97271

    SHA256

    49c490d2ee64d96cc82dafdb4e822e5ae5eb53e5149d29e3de029d67b3018321

    SHA512

    5c2390aee925079489583dff5b8e12d0b895a1da46e4d9af0e04357630eb0de3495be27ed434ae1277f048fe2ba826331bcd7a38f192b0a46e718c69f1339d35

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0ecd385d641c67d680a0026218796d08

    SHA1

    210fe6a0ebe9decd3e7d024b8f88652590f3e771

    SHA256

    cf14e9b12b87d3118ebaeb9247d149ef01ee387adff82576945e188f49284b3a

    SHA512

    d5321325dec52baf24b504dcee68ebee381da16ebedf7d6cccc4a1f92f666744189bc5526421b07b939e3ba5a270734215a22fccc76d251a20cf22853729b36d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6cf6c1dbcfdf8639e18dff9620bcf047

    SHA1

    03d4a012970fc168508016356fef17f067384e84

    SHA256

    4a0c40bef597e6bada81752435626226477470cc1e402f8c65d0ec76fea39ebd

    SHA512

    b1fe9621000e084f2746eac2c59204f7aca196a9766f06c6d20027424fdcf21fd351ed2c3981f2f6b2598247d355e88c891ca2a795325ee41dd8278c7fe0d2f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    626bbf5fefcca898145bdf7736cd4e17

    SHA1

    5da182e4e27fc97e43ef993e2d8c4ad683829938

    SHA256

    55a4cac1ca2319db08726aafe0463c28fba4c1eaeb80c249d65a795c92435e3d

    SHA512

    8acdb969984b02f34279b42e4c201a357ea5c108966ab776cf34229e20060a89ca7324a0b34047f3b0969b6062eaa98fb9a0e4d730ee7dab12806cb214ded30d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f1186391f737790233dd3235c25bc187

    SHA1

    50c870fd9e0bb1fe5899b920840ccf6973ddbb54

    SHA256

    70c7e1a78640664849c8a340dd328ef14309465d489885a547c35371df135728

    SHA512

    82c0359bbd92d0d24e650933f7d2a6c72eb6e382942140ded69ae15178f77721faf896f0ef186d9c13c7a834e70edd2d2efd6a26ac92994825b071e712d43a3a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f9fb6d2409fb0bda479ea15128370d78

    SHA1

    e5bf6497dc203f2076b2470d931f2ccb2be4d040

    SHA256

    5c4583c3d342b49d5123cb34f979249405fdd28e133eef02f1eab086dfdb7f32

    SHA512

    8bdc139f1db52d19934cd42e01b3289e1203d593945465640262c4bbf71f1fa1cd569fa2a9da5c44d72f0edcbcf4ab31c62f208e6ff7a4de781a9bc90c5159c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f0034ae0a2168ba2de00bc29d0dffa76

    SHA1

    71bb00ebbb688ec59debd03bc2ccb075e0fa8af0

    SHA256

    756bc3b70deda8125a53e0000805983507c7d6f013790c895d7eaa211bf98136

    SHA512

    b537bc0357d8052ee21ae8a08616b673a67f29137b407260fac6418d946696aaddbbef71996abc94e627658d73d5e8d45dfaf3599d2136f7b39852668fe73502

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8de3239726948efe26235af4a52ddd88

    SHA1

    6e82cc180e65165a7dad1d2f03ea1696d51b5f6e

    SHA256

    63d25c8c0846402870a88173dd70b35df5cf71f86df2a176939e4f314ab62eba

    SHA512

    428d39396ffab1044863dea375f946efb62e9d0ce6b8c1b79d9040049ecb4c1e9b7f701e26e1ffbbd05a447e41d6a5c7f54f98803b0f6920742a0889be277677

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5fc86f3e4acd11dfa60bf589551c0b81

    SHA1

    f23e0d355b3faf931ddc19efdb96687341caa4f7

    SHA256

    4da324bae338618b392ecd092cc67380451084cc1a78daab55fe858b832ebde7

    SHA512

    2330c9542ad1b7d7e8dca37c16d0f6c244f3f632e84374270fe69320907d8fc958cda581f20f5e8de2977039a70cbb3b1883f40ab0a6eff023ffcff7bf558f09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    254565b988fb5139441c18fd7fc232bc

    SHA1

    bb5c554d0e5f526af355b393662594dcaac741bd

    SHA256

    16b153ef2da2ed1ed2f0438e5f21b0d74d5845a1ba8962cea0bd34d9337158ce

    SHA512

    4b7375873ba906c377a7f09456ad536db97bad7d2cc7d8b0bd3dfe4c35492bdc67f67c9bb8f884c8168eec4e2812e4cfa0aa1a3d51d4020cb57a13be0446c069

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3BFA.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3C5B.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit