Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

0ff776e2bc...8.html

windows7-x64

3

0ff776e2bc...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    03/10/2024, 17:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0ff776e2bc762f9796f97190ab45d560_JaffaCakes118.html

  • Size

    43KB

  • MD5

    0ff776e2bc762f9796f97190ab45d560

  • SHA1

    dfcd97c948d64bc3371443eb944caa4ce4bef227

  • SHA256

    50c1a160fc48d690ce011c9e1b2a18f5d08968e726a467f3cfa92d39ddd36dcd

  • SHA512

    12285d2efb880507fc30e57769aa0e01ec8ddac48ccd5d10c634d8a8e0d99ef1641ae3578225e0c88f79723c8a28b5ea46cea136d67cb9e1b45c29f5cdf75441

  • SSDEEP

    384:+sw3m604vwuXDadbX8504v9WKGDirTEwgM90y3AqsE:+sw3/0ZuXDGMOSMvDirQZ0AqD

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0ff776e2bc762f9796f97190ab45d560_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1628
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1628 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:856

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    74a9ba8a5052eefa7aba8ab888589716

    SHA1

    f762cb669f898bfb8e751d698debc486299a878e

    SHA256

    f984239e78b722a335487f62813cb9ddf7dc4cda37234ff273ab5c307668fb0d

    SHA512

    beeecb8e4f23a9fb59005ed13c0600c62e79a536f392d6f9f7b24aa9a27f18916f7b72d6034f804375415fb62258e530ebecb65b5a25bba537ae1ead49a22c1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b2baa68bb4c3cf080fe6f07b1fb35b84

    SHA1

    d396cfb04db42dcb27cc09fa40857b1bde9ac55a

    SHA256

    efab4f3e84ef5a33996033bfff17483ff14fcb513f341f3a3986f9bdc975410f

    SHA512

    97be6d4024b14cc6322fc020606c0ee68a8d0db5955175c137a7633515257ba81d786b486cadc732140209aad96cb609daad518d9b428e110264ece08cc3c445

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dab8c2db49f1727aa15fd58060ecf3ac

    SHA1

    eac4f23a93ed5cba30b51d2e18f14f677faae432

    SHA256

    eb9e13be58f35a0e0b8a5a00da371cec00934088c5751c8bbdedf5bb5d4c6bb6

    SHA512

    4ac1f6bd0f406cec1e544a13415f311216626c469d026c5fd87a6d7c99d2a4ee39d90806e3dc29009e10df788fe215aed0772618a66686467426db4198c9d88c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    799e29bdefaee46a23111668e835d1e3

    SHA1

    2a98c1e655c3e80e58759fa1d0ab4e56e55a183b

    SHA256

    01b8d7ad2cd69fe31fb8d8a247e5f5847fdeba6c9a2242f7f17c7ded8e6f3bcc

    SHA512

    55c06b372041ea3d7716b3cba4c5037a0ca9a2e0c2d35d7f7f50464af228c198ff92ef63307a087dc6397371b7876504309f6bb55603418522c5f3f926e38b32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    46e86b28473b063da096651f76ec7eea

    SHA1

    cf22947cbd19fde67490b9e913cf97aa97fe004f

    SHA256

    025cfcc838151cada21fb098f57dcc2ce17936d44cc9d890002507eb6f86e739

    SHA512

    c297fc133ec326eb864e137da93071017785e16d22fb6c257a75e510f8338286bd1608a693a3e9b91829ff7844ef4b2a1f97cb4eac66108d2582888f64491bb3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a29a05207a9c5bf371aa109d70b07857

    SHA1

    14c1bda8310111261f7a94345a034179f7ff407a

    SHA256

    c9818537fa3f889b6215e22f40736ffbb5e75073d978070e96a5b3be3f86ca78

    SHA512

    7b7fe3854aebe19cec286abc2404cc5dddb9722b2498e96aceb2914ff789832cbd49e87b00e26b9b54f1ca0686198888f950dffb82a5d4f1e8289b4f8a71e62e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    68b26d0f2bf99d06009dab22bfdbd3f6

    SHA1

    8de511a42d487f88000f9b43fd868e6da9675ce3

    SHA256

    29015de13ff54edc116b85d07df3494595ec720d8b17c4341f3856443afff858

    SHA512

    b9bec65656e5bfa6367c84043eb70801354e86c3bfcfd3a3ea73a3f3a57854da3c324ef8e7cab46a492f537334d986db8ff2eb58d19de1ac23af46a265fb18c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    845747eb3781dbba66924d6e6b70b104

    SHA1

    fa7dd19d1e9bf652b21109a16ee074f8853b14d4

    SHA256

    e63f50c95e096d5a436fa38d48081b40b95cb32865589d4c633aa002f5f14758

    SHA512

    01978cdc9be235743e340bd3ef04d0c6c8f7c752ca0920070af0eda05a1b5f9303bf60414ba362ceee4410cd652c850049691cb79bd91ef14be7140956ba4789

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ef7d74034f2fbe0fa4f3695020833566

    SHA1

    4c260c5682117d6df371c282bd20874b6049cfd5

    SHA256

    754dffa94f31a4d07b585f7a15534c857c11cf5931e4a4a1fb79f7c4e7946e06

    SHA512

    22d91b660adceac1b32e419e93f8574743135da4a67b45aef9045f0b7267fb5a04a73bb49e7416476e6610a0fcfaf250aa3270fb1a88844abc6aaba259a7bfaf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    269bc15e7725ea13883f3dc32150cc72

    SHA1

    b1e0d2f6c3c9524085035557bb669dd738467ef5

    SHA256

    3a201c70567a846589e85ba665c910fa20a5b319ece4505bef6c805ee64caa80

    SHA512

    8b81aa49bda2d969212db84fbcc56fa7b6d886567e7d4ec87b9937df389632c8ac58079166cd5f624f717ef18ba9a9776880ac555e31ae3d4a4e9fadb622edb4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    36fae4d6fe50fb55b5e49bd717fb57ff

    SHA1

    6e152db4fca11f838c3f7bf68919f9f553bab204

    SHA256

    8d2029e02d4079125023cb599cb7fff644b5a169714b656a0e1378b076789ee2

    SHA512

    f96eaa9b778701acda6bb68ef540a93eac9393f0b0ff5e725e47326c9998e1a15fa6525a96c68452be47460750c3eb4ceda2c599b746b27a845b7d9736e1861b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eb2452e6407e41c1f094cf3d08a9c94a

    SHA1

    2c749ffffc9dd57db43a9735cbffce6362da21ab

    SHA256

    1c0e7ed5e07a9849fbaacb65ff14e6c0da83aabded57fc6b3cdb319d45621aac

    SHA512

    b911640d5a14639806c6e5a0c6c12290c9c2aa9f72c625156efba595f22b6068fb092235899b0b88f9a3d5a7737efc318920833fd682ad4e2a7dee8ba3b3efe6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1eb62841e3d66c90d4046759d6f44995

    SHA1

    6e4b08cc0a1dd5db85bcaa4d7f47f6e6a5d63c34

    SHA256

    27c645f9b38853f3d3fef95058426b288f9eb26306230b07f9f1a44b20e5347b

    SHA512

    0d1f031821ad953c4d5ed3df769ecff0f9bc4099aa12b70f63ee8dd07b701f048cf7fb3004e75865b7d0455508c59e0c4f96cb4c57791d89990cd04525156273

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e1115832824280e86cab487a31778294

    SHA1

    6a6b8861d7d0b0b2a4566a682c45ef60e1d43ddd

    SHA256

    4d07813f2903d629893bd9c21c774704c4496f885e4e1646287055bf3df01f4d

    SHA512

    ea954547e7aad2f74527dac7cf690b153e1cb34a40dd8a7700cf66398adec4f0a2a90365eaa613dcea66ed655fa45c809630f29cd2b1bafcd4b96e6cd50e55b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    481a3da515512c13e62710a00bec9d36

    SHA1

    480f91cb5ad7fe4d3dabd3e3dfc5a0b8a74b9a58

    SHA256

    6649eec85d979fd668818a4277668b9d03a8a26a135e30b70cf50681a5bca126

    SHA512

    ac03210b453681e36974dfe5593d59b69e44b948c043bd1a59fbbe3a504bc0d2b22daa33059fa58df422475c9e3f2372d13deef2f5d8ea12a23929d5841f3e65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8d7b2de20562b9ce3dcde88b3eb5cec3

    SHA1

    303636524b9d8930514401d61b6e6c948bdf8846

    SHA256

    037f1d0b2a661f7888392c3f50834d49ab44b3b8accc1d284f43464691b5d7db

    SHA512

    b5597998fa300d1259d416084875201cea1be7ab4ae29ac486df3616e5bc7cd7864b83ac247c2bfd6312d212b43d8a22e50ec77e41f4f87d2278c8a00ef8627c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4802c1f707a991c7fe14a3abc4fdb334

    SHA1

    b7affed1dfa06947ede46acca389fa171e96d1ed

    SHA256

    6b255be0f45a6326f3e278f3e92ca04d1de6dcc67950d1d5cd20a188ec157ae3

    SHA512

    e06b6736eb11d3fd898ee556fb253d0948f9e9e34c89a24a8dfdd54c4ceadf6f546b337b530cebf1a726cfc52de0bdd367b635db7f517dfe407c9c998e950b3f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA670.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA6C1.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit