Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

1535baf6f7...8.html

windows7-x64

3

1535baf6f7...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    139s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    04/10/2024, 22:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1535baf6f7e75e17ecfa64724a789d5a_JaffaCakes118.html

  • Size

    139KB

  • MD5

    1535baf6f7e75e17ecfa64724a789d5a

  • SHA1

    d41b4410dfcf408724797bfc2739a5e34723ad9d

  • SHA256

    555658afdf18ff741e6fdd8942c66bc604cd9c120d9da7949e88141347365039

  • SHA512

    cfb08904916b266cdbdf115060afadfb0c060e45b20e1aeddfd24f0397e6bff547b6476f7965531303c957ab670368a66167f78302d398c223e5944f173ad22c

  • SSDEEP

    1536:S9RNYINSlJiayLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusG:S9kIxayfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1535baf6f7e75e17ecfa64724a789d5a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1152
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1152 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2352

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    05b50ac4174011df3539d913e026400f

    SHA1

    e934af394ea6d4d8842d608acee9ef21c705cbe0

    SHA256

    3219ad363838f57af0ab46402ca59e85817d505526b90ae4e33012b58149fcff

    SHA512

    92af9e34c4344a344d39ed51362e909e95d5336c5df9da98b7215195da72f2ea36641acc33f2cfe3be1eb4f6d4087e607a49a592bf9b09a7796be7c8dd79d5b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1ee8e41b116160af05fbdb5405024810

    SHA1

    98335d48edc4b58ba17136e0a3b4e549ca41c3de

    SHA256

    fab2b3960b1643e783e51f81d38ede540c3025b0e20b84984b8ae783c782a99e

    SHA512

    09965fb864cbc03cfb235f81702a09d667698ab40a26254f9b516d1cec37f1f2e872f10d54c694afa9497211a4ef419cbb9166dab486df272d20a987a7ab2000

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bbe080f6878c9065fe15b2ddb4a251dd

    SHA1

    b6962014b753a30dd8cb38d3458d446effd2240b

    SHA256

    5fcda92ef72a3a9f6d2893eae1d27b96764709df45e3584209de94a25247ae35

    SHA512

    a0a3ff4229948f13982de1a64ebb4d799ae3a94b33b69430c738447fdb6b67d4bafed8723f08b0ea9bb39758aa93c491f42aae18981a21ab9579394f9f6aaed1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52c98dea763f7676ace1a650b35cf27b

    SHA1

    dd408af6c444f647198298b55cc0d45495badeef

    SHA256

    bc989d283e667bb399ef89a5f0d0d218d63f1bde25149816c41ae14748906734

    SHA512

    79bca69b945056e97884704df88d19ae96dc4bd37d41bcbe0b1d202ff95d8829822d43deba633b32caf89b268e2baa508383bd26619923f5bb07766b94be64b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    128d23f9a563284568f9f7fe9a44c759

    SHA1

    ed032cdae3172e5c57b4fc31b95d2207254c1281

    SHA256

    ad27bfb0a20789f05337479e65076bbab1267c5d620396130e3d4ba4108cc814

    SHA512

    5df550bfa008ee60f8a393bf642096fd2f2e403c3c3fd8b144576d0cd4dd03103cdb825ebfbaf27e0d773afdb1a0c84817054e93aed7e8d50e2cc3cc6e5782d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    917f27e0581b5e9fda7bb21f37bc922c

    SHA1

    a6dbfaa6ac47fcf0bd9350b68db62be56d38f8f8

    SHA256

    dec2e1f7c23fee44ad045da04c836918e5f0ceaba1baeaeb13bb0e79c7665bfe

    SHA512

    19e59f16aee440aecfa14917a2b436890b0da80099918fb423acc5445442d27a2c714af29074042b11a34d3bb6c54578959d77e8270bdd82393be104f9511685

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e77f207474c8c84c3fa71885cf65ef9b

    SHA1

    b1fba0c30a0318c9fc6c2d95603c5e71b64ca4ff

    SHA256

    f3aacfc8186e7782ccca4416a4772e30cf9297c179291690e2e5d5df991a6b3e

    SHA512

    27826204c321c64dc861809215d13b2c9d42e26303968d127bc6581d8e85c3a26fd045d0bdc5fed5c50f66c9a94987d7c5524be2e8f0eb32cca09ab5aade29a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    43c091caf2b04fad932a4859417be0a2

    SHA1

    94d0669d1e0fd05e46fb79abe545db9d9686b752

    SHA256

    bbd14034105004bcf9038ce3032ad937ec4ac4f63bf5344150c0332b05adf114

    SHA512

    2c92d47e7e369c6b4bdaa22fd3f7f40e571a2be161aa9847f9d3b3f7d89a5c8b042ef24c358133b7d0400edb23da2204ce03cb9599cb619ebc81c9f949cb6a2b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cae7bf5f873481eb962b300e914952af

    SHA1

    c4aaf54efb01e82fec421c1d410320668aaa8d9d

    SHA256

    8e206f72ac66a4088bb68d2138819272b84420a5ccbbbee4fff1635dfadc0835

    SHA512

    79458b5866192d1ded280e4c6ed5686638156506dde99eab0cee73fc091cee832fd84156eb38889638873fe396ab475be392ef12644164b0824ebe852f676800

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4995f4054197b4d058b69dc3c0a8691b

    SHA1

    1bf36390c441bdd99e575a4bc8c2b2024d776214

    SHA256

    ee42861b07cf3340ecac608224168a170a22d9dfc76d18fe18297b877bc632ca

    SHA512

    b9594a797a9cec04ac491d2c703de8191b84c1299ad99607dccb2c471c1d882d44139f17f2f6ccdf049c07048b193e30343289b473a867b9a461bb9f5f9469f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9e34810359061cdc1c009805e7424cfb

    SHA1

    072bf8cab329402008ef4828f07701886a22b6ab

    SHA256

    fc0af3f7331abeb528c86f2a0603f4127833b4f9df184e2462c6cf5cf40952d4

    SHA512

    9fe0f7363fed3549cd7ca19adbe6cb2cb434f944b92d85a16e7911f354b295f402cfbbc2f15fd2d510f2fa532de6cf923df47fa7c5a20298fa335e0324e18c32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a29f952df869bceea608d92fedb327a6

    SHA1

    096135051086509ea1aec83898154680f23f65ca

    SHA256

    e0ab43a5467a07acc67c0cfdeea2538cefbd070d71d439eb902c957a94ec0397

    SHA512

    dcdd91471043fd63f7e17694bc09932c82d2a09e35602794b82c4b7eefff1fe64ec5aab89d88b1c4aecaa503ea9a1736558890558edbd071c309236bb82879e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    107a7f3a059092cab7db216a94a78ccc

    SHA1

    78e4a4bd5665e8d33d11d64f9d9ef9dcb01f7cba

    SHA256

    4ad121789fd2fad455ca4d88c1190018ebdd46fdb7301ad6b66624706df098c5

    SHA512

    73badfcb115800e1585a3e67e2dfcc53a610bc0fdf6cc82ba1caa6f1f4fecc2d90f535ad30c156e1a8e152d6c1df92f25c11774fdf88fd23974d015444bb0a17

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    39a4e59c53e4c989d17416d346371529

    SHA1

    dea9f65e7e21cbaf7cbfb6bf8605c884deba0719

    SHA256

    4e9aab9caa616851c7c5b56640b32542ec743028a95054515e478989a31ac276

    SHA512

    c90f0dff2b983821d45e949accf8d370e44929656b33d802378ebea83434a69552142f1ddadd0e691fe91253c0be0c19ed6a8abccd54eb0e4ad46c114680cca6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    df88e863ff94f223abb352873f028d75

    SHA1

    bfca3496f3ea81ee03e23e1d41e689a8256daa49

    SHA256

    fca2e6c773908f20cd237adf9f9edb533da1cd717d9ea4734828122c46b797b0

    SHA512

    6ac5655aedd965afd5d2506c9d77b6ec4eb5b858776178a3af4b926fea6e4df8fa8a00fbcb227bcd17de431d13610f10906b0a01720498e962e2d954084736bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    57d54e3e44563d4436756853df5039e9

    SHA1

    0d21f550421089bb61cfb563de2f3bce649463fe

    SHA256

    4d9c24b0fefb344b45c17f7a88077fda3edc4f5ad7f5127331ea898bca9fd507

    SHA512

    447342e943683ff65e04af73adcdef6da06e6624d60b6e70ae845e07ad3f396a39e1de3e22f6e4e44ba5a8dddf5b409be05e53a744b55a5b09d5113ef51b7802

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aa1dd1d7555273f00e2817b4aa0f7f02

    SHA1

    d665549b4c1213e0558b40c7b728bbef5fccc83f

    SHA256

    16c1c22c1dbff8e550f12fd7563bc6b0c19748e688a547297660a301aa58ce34

    SHA512

    df71e10c57d977ceccc6b5194a797014c355084b18c9092b77e917e0d98fb51eba50c9fa70eaa13f9ddcc3b901ba0d3192e0a177b67893739b6393aed15862a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e013092919f5d8b035a8f124fbc16aa8

    SHA1

    df869c53ecb06141978dac7a791f2a98c8540c99

    SHA256

    848dc5926f68e24c0f5bac9e2eee1639ca078bd6ca6bc732a8297cbe0b818a38

    SHA512

    86688614b706aaec7aaa52880758117160d6bb877c4b2439281e8aff2356eea90d88a6c4a793f02b6fb7453385ea8d917ad9b1efbf17ab4aea91ca8c39bfee08

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8df7835b12d97711cadd1bead83baead

    SHA1

    70f7211afbb1f906ce9d30b58d62e49b5b872d2b

    SHA256

    b87b8bbced270daddbf6b273c569dfbe20765820089e79e918f94e6c4b08da33

    SHA512

    4e09df3f6af23d2dc9d2436c1bcaddab35eb01162ec54b1ff3f503d57dcdb67692ec8c37c98be806c913b1ad0bd02bb7fe1d974f63a3ad365f123043ced7994e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa00ee959698c1d10e1266a87d85cf3d

    SHA1

    151d380ffcc187cb571370bb894a0ecffffc63dc

    SHA256

    a8ba5a45b8de369e6deb2a59046fc10dd10a450f96ba09b2670ca7b5828c047d

    SHA512

    68e7bf96cb4f82f30c3b98f9b80ac74d3b57745085d8984145cf9b93e107689f8566f887d04b7e4156053d719a4d3db75a6edf8ae49fc494ba9b3e72144b8ad5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    70754f02ae369ec3e74d89384bfc495c

    SHA1

    cb5e0023f606ae5b726d5035c938acf60e4bb375

    SHA256

    e61305f54a4f389cebfd3b13391c1c85c52b8a3126ca968bc1ca0d2b2a8100d9

    SHA512

    7282e3bcb7bef6c2a315ecab30f6e565681b950d98dde1df2e063078a4cfa3d6043629f2ca9aeac2ceb6b7926b48d3dcb0f82d3346c9b5c59157dbded7fda863

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabCED3.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCF74.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit