Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

ff0e3e4559...8.html

windows7-x64

3

ff0e3e4559...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    29/09/2024, 17:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ff0e3e45599d64f7291edf531e06927a_JaffaCakes118.html

  • Size

    24KB

  • MD5

    ff0e3e45599d64f7291edf531e06927a

  • SHA1

    0dbdc7b38a8983a33bebc88ef579b92fbac1e8b8

  • SHA256

    cfaad3467a7188874e85913592b930d8b164f5c6f0a720be77da1fad5d10cceb

  • SHA512

    3370735b9a79cbc9226cc2a2f3dbc5a644981c6ebea7f654270ec56daabbf85bef3d3a4c6d75288aafb555e44df086abd5a280d863c8d71bba789e826e433e84

  • SSDEEP

    192:uqN7HRb5nW7unQjxn5Q/fnQieZNnQnQOkEntFYnQTbn75nQeCJVevo7NtIFo+NzC:nIQ/DygcnnBK+

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ff0e3e45599d64f7291edf531e06927a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1236
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1236 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2020

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    120a2668b2ae4ab87bc0b168ae69eadc

    SHA1

    5f4021d3574c86f327359984d65b7281509f05d4

    SHA256

    c411f60b728e6c14106ef48ccd373ae5c0cf085ef6da726a0f35209edb9c2a3c

    SHA512

    e6e17c4ab3f657fef8169ee9fcda8747c24d56dd4e1ff68c8d8117bd616b6e8d63ca39c6445d6b037f273a725fb9facfb3aaf4c49608bf03f7bdd1fca50497b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5b21d9d065cad01ccf851f80f2185376

    SHA1

    ae9ca7cfddbb57815db70e5e25be25d2086400fd

    SHA256

    4253f62f9bf4f6299ddc8435b5f300930a11b5cbf8a3c4d91a4b4a3d586bbb76

    SHA512

    69b21e5d79cb3f706850d51dd2daed286829ad055a3e802af52d5f0eacb0a25659e4e101c607d288d46333bb31c2f63a55d92c8bda138ccd603f840649795dc1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3bd56d28339613236a1722403038f8ac

    SHA1

    3c3dca93657f812d42d27ad48b9e90f5139f2138

    SHA256

    01644275a751df75df9c0cb2cef3b36b90711f21c91277be66f24744e54c58f9

    SHA512

    b574478e753c264864111e9c04df174b87d1ff4472468e548d1a541ee15072d2cee2bd16e1c390e754742e43401b2de66427755852845f4fe1fddc8fcce3d209

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    72a6d406a0f0b006b35625264af02628

    SHA1

    6a5d71579147de97f0984ce8eb797d74cf82dd74

    SHA256

    6913304026cb3e3d234477d87d4d47353ca6d7e1fa75902d43fe9e432ce76d96

    SHA512

    640e7928908d2e8329c580363aa953108ded028878d79af25098971fcf0fc6303dc573b72af9292a6c4f448c8aaf94ffaa56094550f70f4c511d34688c5497c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    741a738868a60af39a0dbf12fe6e6d0d

    SHA1

    ee86bf7f8c249c1190f4f74b57f6cac9eed5fc13

    SHA256

    b5502c6be8592a1fbb7993a35f6fa39e28e43b57c1be7c3828003f62d7401922

    SHA512

    baa7c5e59bb9ea104e6fbac19ecc6b40830b14be4a195ab9db5a038cca7328aef842a6a9241ff28bf2564329f89bb4d7056427c00ff0ff73c918ab6585163650

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4569f8d57cd90088e97d0f8fd4f58ef2

    SHA1

    513184752892f97eba6f8e438fd60432fe57e262

    SHA256

    bc31fdb1c901c542a8d51cb49430c559ea93da4e7a9ac7f1b5828cbb9b046fb7

    SHA512

    11ec258015dcc36ef97462d154d02a514204946a08aa2e7c09e0b734dd2db8e731641546c2e7161e986a09db77b754593083edb841b28ab2fcec92f1c7b831ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a4aeb57f08df7e60e92d134b7b796de3

    SHA1

    cba3c5b893dd725f7d0ed896e8ba57da6afafd3d

    SHA256

    90156b675db6d519a014ff8b5aa04adaed6b58fea5716addf50af7e31f91ecdb

    SHA512

    f8e657db6db7292bab39a634cc121c96580009809b6aeaafbe1f1cacf24beebe81669f952726ce25d390745e85e2ade5eed59d6790962cfc0aba5cd387a2215a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    94660a7d1ba0c3e41f43e9d66934b0e3

    SHA1

    c5e83ba0989b33b87b119507e4cf061a83dbc7b6

    SHA256

    0095675dea40be6bc376306af470ac09bba1cd50e2bdac8cd22d50011c4c3edb

    SHA512

    2eb33826607f54e555ae097436100848d0c87bd8fdc7a7a2b6410b03150d4b63d33d181f9ab820c7840566a7f12df16fbf00583989c13775280ad71dff492908

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    236e1afe210cdf0ededc87f8c10bc4fd

    SHA1

    85b35e4e84a65254096936c4f46d60b00352a794

    SHA256

    2e47c5667c36ed47849bbd1b3b7273f62538f0d74c0734670f799e8eb7df8868

    SHA512

    0e4ce9dd5b2869b2fee3edbd8b1cebc36e757715ceb8f6fb3bc851ead519930fb8694a3d581d3525b2a96a93f1d65f3ecd16d85107309f48953714bb455cd1ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d83d31cdf09c603345dc6595048535e0

    SHA1

    ef9e6277cf5ac21f0ae5fbcf62c4fc46cb2941da

    SHA256

    10b3d32ecb0e5b6ba46d66713ca30356fa39dc78327a4cd73f0de2743b94a2ad

    SHA512

    f99240c60f8219cb5ea49f4981262731ee0b17af45b3f62ed94fa9679b7dea7a0365465c11a57aba542b057cf6bf9456c5b88d136173741fbd429cecee67ae77

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5761a3f8b0e4b7e8b81c3f2b850c93ff

    SHA1

    5f7e960a5436b61089ce7497e4e2770ae39ed178

    SHA256

    277861df85f2c71b03ec3b7bba5a44e90e926418629bb4e4600bbff8bc126b60

    SHA512

    e39964c468b9a5020e73077e8a96d3d2fd24fdba9fae4f2e08a94d68d95264446eadea5c7aba7dd963cf25ee0e20d5f418f14fc804558f96aed2641da00b46bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c481285f919dc161be53501f134cdf58

    SHA1

    9bd8968e01446f83ca66fe78a32240e31bcb088f

    SHA256

    c98a1de645213c4672f9ca5aca8d201314740214bbe98e99539c7058d076e8f9

    SHA512

    62b4e9d8b720b95e917c799a8c52de8aa07ed28377f4af5b4b7df6e840063f5402c0a7d4fd36698b7f92a0ed3c7a620a57db92ecf4c78887bffdb14b443c8b5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90e7d1b51cf82ee6f012bf700e2198f5

    SHA1

    67bb5110b66e9a49064eaff0eeabfe67436a7f2c

    SHA256

    5e1734a3315de4e9ac083186c8163a6c24a6896a4bcf95386ae1499f69e5eb2d

    SHA512

    69d736b619f85c45d93f6cbc9289b4f55785463f0c27fa2a69772aceafacc4a936b80f2bb09a96cffbe8b8a7f7f8002d7b4d4fc18f97f6a40ef74fcbc0053669

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    566e5214a6dd9f7b769be651bd11e8ba

    SHA1

    6fdcc02b347bd58d293bcea886b5a1f823e2a542

    SHA256

    70f37e96477ac95106ae56a4204f53cb5c2f12e2ccc91dbfb541af310af6d9ea

    SHA512

    aed98f23e012546000f8fcb1c77f6598cffd1b772ae83753abbf03793a9042514eab371868e078758c193006863c2186689f9eb28808adb492e185d9bd25a80b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f03dcc15a98066e82960015fe58a3116

    SHA1

    341fc37dd170ca46f94d9d9cd7a4e029d1e941be

    SHA256

    e5bd6441f8266fee5ee96e7780cc674d9d9cc741106f98f12f30c2220a31c517

    SHA512

    53ee3b26bf6b53a862ea8a56fc740a02bd34140265d1038a032e4bb47201b1a7e6e8b5f71aa4ff8edd1a384cfe1754bd703cb592417ffeecf008a28aed1db665

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c924d83ce0ecde77de1a0582817ed9e8

    SHA1

    bdc4c6a73d42873470ad858ee0bde417ef26c450

    SHA256

    f44424b8a9dcf2816be3fad3cd06242edb71d2ed083a70d450b7907b9bca1b0d

    SHA512

    a1d788a7c83c744774d66de4960745b36db1d64ea605e7ac56c3377143054e91d791ae496ec465f6391f4dade7604a6dff94e44a508e532433b891fb18c08499

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e009c01c6a0869c5d398abe9326b745a

    SHA1

    8edcacd05f9c1ae43f42f24354450989a729400a

    SHA256

    48f29347c3c86c7f39d0ca223dfc358809052122f051be691fa788a5ba50826d

    SHA512

    9a3fea485a115bd561a14ef9d21548a42cfa8ee107e7d05eceabdad63a17d409c6bba68ab2e35354304a5fe212eddbf6a0c98d493e674d3db0fdbc06f5e59247

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    15b21fba85498ef6f9dfd3fe0686b41a

    SHA1

    4b52810d4723cb962a97563055799fafbfe5f0f6

    SHA256

    7b8d87be99498c69e01ff1972253af23cc3be0f2b0e763f0293358fe935b5b43

    SHA512

    b33a76ffd47cd18a9f73e6a0c28eb62db00292c32092689cfefe5fb3b796964cfa26644f12571d015aa0baae41105b5fa95726ce7af78c0566ace2f6d95c4db1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b39c89b9ea364ad87f97ed7ff500db38

    SHA1

    96f28e73525328ca2a5575aad5ffb0a296311e66

    SHA256

    823d7be93bc4ff8c3a6a7afb1b72fd27c813e99ee381c52e4a7aee1231deac4c

    SHA512

    a5a5f0135f056547b6278ad487fe85d2c81866a5ad3b9b7e2249c9b502ef4441d77799c22b5f2c7d4860e9f719ef6573f0e0a068d3e0befc8a9e5100b4f1b6f2

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE3CD.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE46C.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit