Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

0052e45706...8.html

windows7-x64

3

0052e45706...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    30/09/2024, 08:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0052e457065f68888e9c8b45ac9e93fa_JaffaCakes118.html

  • Size

    213KB

  • MD5

    0052e457065f68888e9c8b45ac9e93fa

  • SHA1

    9e66972fbe018c42250a1dbaecd0b33b2e9b0c5f

  • SHA256

    8bf76cfe425ccb58877f445921b96e7311ddb966f53f0a73c7186cd11aeac495

  • SHA512

    c63fa31701530f3998edd0fa455a72c2898dad38442340484e7ebdba3e95cb78c7be89d5c3193e190523a52ecb7739449a0da25970c7dd9f3f42460b2a02ff53

  • SSDEEP

    3072:irhB9CyHxX7Be7iAvtLPbAwuBNKifXTJF:qz9VxLY7iAVLTBQJlF

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0052e457065f68888e9c8b45ac9e93fa_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2788
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2788 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2888

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac277a1bddfbcd8c2c652bd72e1d4f2d

    SHA1

    7514b2f46d1e61226874743c1234e5a08f1c669f

    SHA256

    bf45907f711fefd8e7cedbddd4a3201bc6607504937132525e53535426157538

    SHA512

    1ab36b6579138a38a210b9c4c3588f361bc3f6a2bc89599c788f6762259f9b52bd6da6e9d4830b0f27d9e388c913c7c46840b46b1206956321cae9df3e83b16e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b8bc7980b4aedd45f15039e3a6212863

    SHA1

    84450258981907a36ce5b7a02564d1d71d6cdc78

    SHA256

    239c70b272fd2a6809b1af52c98fc0384648653a48b861aba4d0ec6421f87a6d

    SHA512

    7be1117e40f87ad2266111f188f1b08d9e4888f330cba65280a324d5fcbc8ef7b88da64b9f63f154daec4ed416fed1ae75c929c513d04d2e3f9ef6a50bf1a4d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c4469d375e3a8b12d57a95b1b0edff7f

    SHA1

    e1cd331a4077ee0445755f636bfb762567edb853

    SHA256

    9de49335e826eae2431a181ca8d63bee6c3daf762f083f880206aef31ba8c41c

    SHA512

    fc0a306428689d318cef894093dc9eb7b9ed7189e0cb0dc2adbd48809ea56db0924bcfcef27c0488a7810cf481822b83687bc4708965b11866ae090c8347205b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9fc9ad7b043a753f860ed9dea63425b2

    SHA1

    e5c84ad41ffc328c66ced37affcc01517e1e5b4b

    SHA256

    0dc6546770eda3db25b02f22c8adebd0bda6f9e57f884cd3b5ed6fcb384481e6

    SHA512

    f55338383b44c929b55de739233bd643b135b239eadd7e251327c6802d82d1b3c7122906fc9b9d61ba3a02860ccfecdf52f5b6be325d899e3bc08d754896df27

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    50b312f7594f85b0eccc61ca10f90377

    SHA1

    d0d7804e10a89c6006d14e1053476a0686a56440

    SHA256

    b42f76e1707afecaf55a06dfb99327d1c534294eb5f69880cdfdb48b114db028

    SHA512

    45ebd0be4cc5ecf80ac12f47d6b32adb7ffb25d4280d6abfd47c53f3326e4b91644d0e2eab7a666885cbb2c4cea10ac6d843579d4e3196c9f0e1f391e285e513

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    009c4035619f3a9c00ddd51c2e5ad2c0

    SHA1

    97eee58692ec4a6ba395fbfef0979754bd82b48f

    SHA256

    badd1e4df6e3cdfa6858cf25af35591782335ab919b2f61d81d82b20ebe74239

    SHA512

    42d49610ebd64f7c75171a221d06bc812df9d0a66ad3f32c526f068f3b15456f589f72403038a397da35c2e7e7cda827fd7d934a22841db7b6e408eccf209f55

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0f8e368111018bf2141fdba0ab26b16f

    SHA1

    bdb3f1167a9c5fb20552e7319c6ad618d80e0e87

    SHA256

    e9a871e7b5a341fbf1ff500b74f0158d9ca452aafc439c6230ec221d617c3225

    SHA512

    ac8f5991f3350f6b31f0bec45062baa8b8035f2495c4d8693e1b005a948b46c0468fc2c6a28d0ba67bcd64fd794aa9c125ff72f127268d4ffc33abf9ac872948

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c121e14ec768bd651ef5e109c89747a1

    SHA1

    e9d4b4aa1c7eade1ba2e0f0bd38c03c851dce723

    SHA256

    f3dc42f99a048a445162481c4829d9d4b45f41b1d2587a3234aae9322ffba215

    SHA512

    6d6e1434988109dc435f31444239c7a6d05d5dbd237bb00c5cee6040b6a196fd90bec2d6048ffa84d4465be959f0c86a83cbb24a0a1d944b6492167c55b24cf3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3fce879613eb87bb279aed0c1176a568

    SHA1

    37b9608a18c0fc45c15cc0530d2a6802a51b5acc

    SHA256

    ec1700a562dcc6f75c258992efa5b31633169e6020d15904adc307624c5e516a

    SHA512

    31622540012a920d58412a2df89e6934857e9d1f4be52410190c86677bd869f2693477d064ef1b5914a7c370082b8130eb55b476a330201a95dbf239121eb6ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    682c4346a86cd8bc2ccbbbbdd654ee59

    SHA1

    f0306b1892a7e2ad86f6c4fb3cd16aea3d0584c9

    SHA256

    0a9ad56eadb6d677af774957691d59177685d9620e9b86f7b943dc8b4ee941a4

    SHA512

    c8ab349cba86049b7f2a8729080c989cd780516f7cae8df3166e0a7570b39219ffb58e4f8c65f928d99b32772038f24fe8d91904d1f5e3f4e3e31b38c3cab50c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f46e33c43ead80854f3eeb5b0c0c369b

    SHA1

    efbe9166641a9e23d0c1e1400a81d8b620aff1bf

    SHA256

    a09b1391a794bb88b030a6c6877c5d4bcfb36fd28e50d883aa04a42cd279b441

    SHA512

    8486a2ef944661d0eb3cdff841f099d5e04abb4534c636779f34684741cc2d4b6f11fb33cb7d2181027236204de85c6e7bcb9cf228d1788e55e725020c5c20c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c46b9d83478763828f19222add9c2f17

    SHA1

    9916ce6ddd5acbe540f6c7b8d633bf26df854f3f

    SHA256

    772d3793df0c9e353447feadce15659cffa0c2626dc99f6c224b8f61b9ba7b04

    SHA512

    14090a61741be50dcd46e73963fa28bb26ffef9ad5277c396e773bb051c6201af3fb1a550fa69181a54c3cfb7d037d6b0e307bf78894aca03578cc65272be0e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    77929ada8eeb4649bd7098ded3e346b0

    SHA1

    140bec063d1db41063ba4997f58e463417494672

    SHA256

    1c33871560150bf176e5016b0ead4a11c553d11afb7cbabaaca3741cac484ab6

    SHA512

    90a5f4a6de80ef308ca53b67d3130595081bae06cd295eaaf790700a1054020cbbaaba2d5fc71062086e1da5029ff357b61835b0ad4d01e69b1ba205af5ff94f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6f902d85720401bae82ebe27e66cce4b

    SHA1

    cb81b3e9301e5683d20f5c79b7f6d752223d0371

    SHA256

    b0f2873fad36046587f0596fcf0f1d071aa9e3a154d2540e9488ec3675f0ca9f

    SHA512

    59d128e4ecc5271eb84aa749d949b14cbf8f634f3fdefbabdd71f0483645ec08443b41ba4ca367e26fb36420dabc529659024a3e3320b95f36656613ab8fbb8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e754c87d6286008ef85b9cc0f85d9acc

    SHA1

    f8360607480f8219a7463402f151caaa0ec37e23

    SHA256

    0c05983e91110a64499303187f024394ff3002de2915256eeacf3423869f6307

    SHA512

    206d2de9740eea89fdc1bdfefb616e2ae95c58314300ed429e434f57d817c082532abc1b1f612372fe6a635257efe112b50c010c142eb2179064e949245c199e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4c480db155bcb62b2c72a3054c28ae15

    SHA1

    5025e08eca069203a875a8dbdf71352ea50dcb33

    SHA256

    819a1c6465a90ffe9623496a5d89b7459b2246b2fd2bddfd455dbf5cb280fdfc

    SHA512

    95740468d17248c827fb750d75275ec7a7bb7734fe0669ad78b19bdddd4a97b8ef78a4d3a04b598adcb6ec7106b257ec6e9fea49e751e00bb8d2640f98e92bf5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b5f5f498af3f3393ba97d4fa9c290e10

    SHA1

    b098f24dc9f00b40b6f0f87ca8d002b2daee072c

    SHA256

    5c891c5e21a645fbfd9ade9b848b35002b856534cd5d56dbe3d850e503207460

    SHA512

    f5ecd86e3753202f34d47e41ab905375839ebd1c1006524344c6a92ff008f2bcd8369b39ce63f463a36888083e37bbaa67e0d0bf737378fbf831ac35266be825

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    172f4528466055185893f1ff980d4af4

    SHA1

    c1e00cd333da2e97944b05cd244f0afc0477b691

    SHA256

    5f38c51c04773ba2b51d1886593427faeec26b0127889569a2768e755e1a36a9

    SHA512

    ea2b72d021f0f4e6764d510c9248f5894175a05a09458ba5e471838bdc5ddb91e174eb6971423259ef2b9e5f2b0e73a92327a4ff4783589941ad9ca2f4ebe745

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFE5F.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarFEC0.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit