Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

ff99c5fdec...8.html

windows7-x64

3

ff99c5fdec...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    30/09/2024, 00:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ff99c5fdec7df10e162c129aed11fdf0_JaffaCakes118.html

  • Size

    155KB

  • MD5

    ff99c5fdec7df10e162c129aed11fdf0

  • SHA1

    5991e927c17fac98430d031999b86283c08bfc1d

  • SHA256

    1f183f259bed45e01e21ba988829008215e1c64c8a5ea2f53e0211e52ce9db07

  • SHA512

    99343599ab038482f2893c12249d0f68725b2df5873bb10144569073998d836d989437f3c2b04da571dba8cf40fbd920199482305b4ece2acfee7f04ce1b5316

  • SSDEEP

    3072:S/rrJ27p9LJwoqyfkMY+BES09JXAnyrZalI+YQ:S/r9ep9LJtPsMYod+X3oI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ff99c5fdec7df10e162c129aed11fdf0_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2640
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2640 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2880

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90dd3ddd7de4a8e1cce44a51e60d5dd6

    SHA1

    bdea5a3dd9d81eddf420a08ea2b31b088fb30946

    SHA256

    c31d323c2d7fa3a7cdd28a14a52709f5a14bb0d086028c0772575182f7a5a6c2

    SHA512

    373931e06611ba4ac77c8111c7a0fb8473d454d9727354fed9e7867fc3bb4515ebad70f072bc6e929c347d7d55dd7f90135954687c5edc2e9d535005f9bd0de4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e5cdd294c671aa0177652cda6fabfb5

    SHA1

    27723b5c44b1e9a0d0e4be63019fef4661c39308

    SHA256

    c712a1335c5951a3a80b877a74ae114ca4d7ebe35a43023ce2bcf0707d377394

    SHA512

    b71c8cd799acc2d109249948e7b4ed3f566d7d94c3092ac7af0f91a9dede8cbfb601fe572e630bb9c0c891afd975206a3fd0a4d54051c2a8d2d79ae8586527d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fcdb2312c0d4c6ef7dc1122ac8d04520

    SHA1

    3199aaddc2035d4647df80238733ed2a31f9b8b3

    SHA256

    973091b519559ed3ceb38906bbd54477c1e4e6b0235b0c48afc8c2fc3210e6ef

    SHA512

    5e4961095f24402724ee50ec9b02de272eedd363ca1dd7be55fe3dc2182e36c3c40c6c898eecc9408ce1906b06647dc0dd9b337beeef79f99d60a765b76f3580

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    27fa04d2efce9fcb6dd2029dca95586f

    SHA1

    f54fe684a4e78b78955e8d8c649d002db80dc8d1

    SHA256

    bcd7d10d7d8db1c8603b0e5834c4adacfe49a8d7fb9befe0deb974e6bde080f0

    SHA512

    f0b32d0c476e7107628e035237d449f09469065f24e4a45e544eb12024e4b7580d0dd782d186912a6b1e92832020c4c30ca18dc504fca1d15e62f563bce3b9b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1877935cf97c2db00e73a25942a61e63

    SHA1

    ee9086f09bbc9dcbc7572adc19fd90fb48c290a6

    SHA256

    a9441908cf61e718bf523d9c511d39eb0d80ec00456c8ef4446f74706d1565c4

    SHA512

    d9d63589ca03817d57223dd80864ad600e4799b01b80c8c57aeacb08548ccd968d98dc05674de75168e23745668b17ae13a34b38a42a03593620c96fcaae2e49

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c99fecaa22a622971a2fa0cd1bddeb30

    SHA1

    259c1d0ca4b9ff2a164993e5c8434c77b97c9509

    SHA256

    ce67301325c981682d693c4fab9c77152ceac6a89921f8e2ab8cc9e5c9448c42

    SHA512

    9aa9930e41f7ab02bd306f96b4434b11426fa459e178a6f9a7fd5a7b2b709d2170aa63aa1c4911de23e6ae5fe02c2547563062f5d693388e5daeaceeb0447d9b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7c6f41d143e94fbca732d5b0906f4103

    SHA1

    5c65f2bffbf2f7a3e4d6e88a8baa39daef5c3aa0

    SHA256

    84c41bdc63e8a6f9d5cd016fd090c390b5da6dbd1f79dd79b25b1a548decd96b

    SHA512

    a078e0b32d0004dba8a93a04cd6f44316dc96050d3134c0cb2fe6759bf5c4cda400d74403a551e27ea902f9e233121b4c3d0814de85052c5c7ae6ff5dbad6cc3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3778dd37f050abe064e3b32076b16a46

    SHA1

    3f500b6960c14ea8926b9a44b122b260cef8faa9

    SHA256

    beacf574bc3fd8af71c262ec83cbe5076a7052267ac61954801c4f7660f96c66

    SHA512

    c2e0b17573562b6e9bda827a6d66ba8014c6f8d89c48d6c8ccfd4b3e2845a116bf187c67172ffcf4f842f69556a98517923dee737379eaa7793da1443744e986

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fda6a6bfed8d06197778823bf84d85c6

    SHA1

    852ce0a40c657aaf6652a7a55fa92c83db967c0f

    SHA256

    a0a5718c855bfa157ebf7543e30ed8379214bac589c752f7cfdef775a98d0e59

    SHA512

    b384c19cc7e151147c443685f457ed34da081039c55ea85a677c37535e2fc22a1bd4ab820d454357106074a80eaf21e11f922680ad94f042b999137f6188729c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e772ff5e9ea04c9bb0707c490f1c614c

    SHA1

    f82fbd7833ef3faf0b4205f9d92fdf5042dfcaed

    SHA256

    1c8131d72ee3fe10cbb2fb5fc005fbd9ff9450796e4ff9c2b236df22da588207

    SHA512

    2ca22a702f6285b05083eba0b40e0c98a23b9d8c4709c5ad04f650180d2feeab87395dabc36708d31b4e5f1101fc0b0ab895eba0d9b2c81c7c75bdf9064c4f2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    02b414f952a115034dec2342712985f2

    SHA1

    91b698c8fac0bb69b871ff290754d2b2288f60fe

    SHA256

    c145541dc5a0d981a2a596384cdf967a71518720379955ad94d9e4a2179af855

    SHA512

    c81e6779971b5f7ea7097339423f91c5c87b9f25bb312e605f4af86c8de6332c226f59e2331c36906bc3c2ba44f467a7f15a30a5c66fe9596f4605294d6f21bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c2d2c069d8475661b233794a2b1e0a3b

    SHA1

    002607cd8346aa4c1a961332de3048806acab9e4

    SHA256

    0d5d5bcf8ef38acdf2ad38cca70ad9fd465190b12f65ed8ab60fc8a61c3214e3

    SHA512

    c393b14fd41b9da5d6f2f4757ee4faff2680ae58f30a539cddbb619e4d96c99905203a530a1bffe5fb78e19d57155f095cf8a4d45c26eac2efd3f09a2c51f15c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cc80f1bf5914f98399a40926f057b0c1

    SHA1

    f6b1a1e426cfa49d48ae30a41f818517f51a6e1a

    SHA256

    0762ab193ff93efed94fa763b4afaf95cfed4d8a209ee70c6109dfaac6306486

    SHA512

    361e1661a8686e60b5dc83825bb8fc4fdf7e61c9fb139add402c3f14d5be26d9d5318b7fba4569513b26fe9e502c334144c140333c027dbe91d0cbf1d8f29d52

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9fb69262b641dc650aadd3105e317287

    SHA1

    da54f22e017d60e67978ef0afef569df0b9153ec

    SHA256

    3858c8ddccf0cfbf2e985fb1aa8deb5e3dd4400953e2c3ddc04624ba9bb68d70

    SHA512

    e9ba9133ede4b40bc8c320e71be1bf7312e428c6c9c5fee96c666a2f180a306323b77cd95dc5617e33439bda0f872524b2cfe40eb8b5ddede6fca81fbf0a91bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1acf37e3ace451eb0e72e9de2002a8a7

    SHA1

    9e12a26af77fe6a62eec01624b725a5e661cd2a8

    SHA256

    74cd2813b9adcf2e8dbb6e717449f0a8ccf9f5c7d325ef49c56f5253055e521f

    SHA512

    c11eb7c832ef0a7e39a1aa9bc7b6d8de72a3f543853cb543503692cd8f2405655a3f2ed6969151f6bf876db121025f71ac960f80dbc9eb40fec85dd9a148acde

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ce671dec196a472326427724da84d142

    SHA1

    0f1389a5f915a0399eebbd5a37740d41666c39f4

    SHA256

    49350b1b19fe3743190de6d9f94114ea2a3f781d5c7a0416cbd994aacd7bb33f

    SHA512

    95efbebb1c997e1e4309d5f3951398a4d456bc503c519e367d4dce9a46840fa9238a246c5a4781e197be1f859eb0e53895575248b1fa21c3b7905296e564ec59

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae630f31e36a89034ade5f3d6d4c1baf

    SHA1

    23889fd77807550fb64582140038046b8183d106

    SHA256

    1483d02677c0a62a9789db9842382ab79f4a8299c762c67308e8f4bd3e0f042a

    SHA512

    e0a4806108ca398ed66122496ea232fd376e73bac23854ca13fdcb467be5ef465298b036eb6f00c980a598cad587e888ad476b20c7cc74c65b79f037113ddae4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    35d4c8e2eeb59948410150a41a330b71

    SHA1

    65b4c67a9133f9874a6b1dd19ac6b56c2ecd8150

    SHA256

    8a9eecfde943c05703a8ac4703defcd0051b71dd625f7edce7d4b87db45b7d0e

    SHA512

    9a3c6cdc4cb0e734a932ab4b18e2676dcf9a82f3f2bfa5be6124c6fbb0190b596cebe54ea40e6b18c28461afcf0c4eff82a1fc3c812b84829011744a2ea674a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    319105199ab6057812bf4e4f5930facb

    SHA1

    25e82746ec0259c3055763474fe3b8104259772c

    SHA256

    4a28973338bbb04de92e6b6200114982087016c5e546b208130a8acdcdf27fd0

    SHA512

    441a560dd59e2784dfd9f5f004546e19f2dd00b6e976f57201442b4987b58de3dac07e5db343a819fd18875982739844bbbe25dfe3ebb208a9ff8adae959fde2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f92ba166f8c94c0007e63c71ab624b6

    SHA1

    0f65b4f9c6598e7b6489ba7a3e46499261c44538

    SHA256

    c6bc8fd09f43e917edae6e6bb0c1523a1de640ef836fb7433dd381f89d9874a3

    SHA512

    214346d3a225bd8eae909a1209792885b3e67120dd41754dadde3f343d06bf73290e3559fdc9112d50ff53c83e658d65ca736739ec3d022b9276b87b4f64cfb1

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4617.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4687.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit