Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

1376d4a6cb...8.html

windows7-x64

3

1376d4a6cb...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    138s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    04/10/2024, 13:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1376d4a6cb6465ef41dcc6417745eceb_JaffaCakes118.html

  • Size

    91KB

  • MD5

    1376d4a6cb6465ef41dcc6417745eceb

  • SHA1

    598fd20a638feb404f156004623fa945a57eda8a

  • SHA256

    64554b80d18ecf9bd9583b24517e55e3a583f239d5acb9d080000721a2535c1f

  • SHA512

    2494fa9a0f4dacd84b61339ba1fa571140f4ed1bbcc3073745c7b35e0d448a6308540595534aec3d5be28eb75f42d691a807d8e31bbf73942f8866557eaf176b

  • SSDEEP

    1536:gQZBCCOdf0IxC4gYai4MOS1/N5QJDaEnIQsu1yMTSaO5xmVCQw7f5TYvuRpDIxmP:gk2t0Ix/zPd

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1376d4a6cb6465ef41dcc6417745eceb_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2848
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2848 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2608

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ce9dd7a5bda0e17659811e283985b2be

    SHA1

    42f2365bd6b07c6abbcfb0744e43c68ac4721a54

    SHA256

    276bda7ace5eb6dd9bb5901a6cd0980d4fa2522fb8ebcc23fb96edca3f919164

    SHA512

    36c4dd7cb6fd2515aa664a61a1806009ef2dfc08a7df48f35b87810f188758aaac08726832697642e74eb88a986db2f2e401a869b230a3aa71a46730207cfefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    456e14f1b03f9711f0d71e1b5750abbe

    SHA1

    a84b082d69fb4c513a9a7683a06a643c2a090985

    SHA256

    fe53226e70843e9e68169c02ca78b5363cb08bc90d6b03391b49fec0f8150b50

    SHA512

    184e7ac423335c7359c6a1e870725f6b6755acf48177e526df80e3384c26ed72cae2ccba3f9917f7ae41c10a34aa350c09fba0029233233e4c2a6a9374a74a81

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ca7d199623aa54fdafa40c2b41d37990

    SHA1

    05f5338118878be95ef618b5bdc88f8bfe99eb70

    SHA256

    8f9713c755d194b4e99cc197945ff4f29074e307a4d145a435c41b15f1dd5d3b

    SHA512

    ca8dcf4f9f7a5fd17c1f4d20e2745563706810668a1aaab0d7d426893fdc8e2cba5e11bf01929e46432a684be6fe75662a25b6646b0743c691f92d8a2f5e5ec7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7c441a0ca0de806e6dc106781b685bac

    SHA1

    c88921377ead126495dd0836f660815fed9fd19e

    SHA256

    800449d983094dc7fe7038c66c6d3e6f7ef788ec05ee51a86024232444dd476f

    SHA512

    57441bf0d150588a16441d84c9f087035efa95d93de742be21f1d15b87f1950e1f48319ec335ee2c01c9ae7c8fd0094fb1990cce1b4ee020f68c0bc0818d1119

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1c58363e649e2fa76de6e24d96ca5afa

    SHA1

    98091b2ea88c391f2fd810afe94379630f5d7523

    SHA256

    6ab955984c3ce2181e67c65093eb716df4f4a4efaaea0c8fd6ce4adfef3641fc

    SHA512

    fcecd7d44e4b41e97f365af76003977f447e94d228e4b4f9634b93d54155be6589cf3ed5b1e02e670d4072d902085636b7fae79c7153fe687937cb09f11a8739

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    152a84e5e92213bf151196dabb73285e

    SHA1

    f9fdb806dfbf84850ce8aa996dc70ccb1bdbf6d8

    SHA256

    a14b5c1da4a067ac8a38a6e5ce0091ee6bec6af40ca372ef3fd17467a9e54022

    SHA512

    6db70f6ee9801f34f059ce905045258fdcd4e6affdb8f3075f61b4c585e313539a6c5b89625c48585996d0e4a081db3a6f118a89c9785fc1a59b6bcf56494d03

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    415392f8eed0b16862d88b719332e321

    SHA1

    d93c2b1c58aaaf4e9b8e1b2cd1921fa055649c93

    SHA256

    7d5b1dcd60ef6c8a7a6ddead8e0dea104842531c6a88871ff00732e77fd2dd77

    SHA512

    ac02ac6e1c7e69480f13c0de2ff809cc0bad9424d6dd2e1b46a75b5c64bcab82a057e3d2cc1fe9692bc52e50aa0f393b2b8a0092af52fbadc6150716352d4885

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8ca94d5f319ca5ddfe840e98a026e233

    SHA1

    519792dc45a9f08fa5dba3f80ae1060cb6d81328

    SHA256

    3b9da381fa8670c8337e473fcc82313b6c0285f702d54f958fbc5a0ffb847c5e

    SHA512

    ab0e753e5ca008530ec86325bcb42bf8563b354d3f82ffc5f1893983ee22dab76d689bbc86060b78bbec3c6091ed0e7c292b885027995606d0b06b5d13b64d69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fb301fe5bee85267f51d4ad7792fa554

    SHA1

    1c810f86b40d0b84873be26699ec50ec694ea55a

    SHA256

    8bcdc058e592bafa050559e3fc267c4f81a116eb09a2117a25c6f42b6e27c3ca

    SHA512

    be4d76b3da20aebf5680826b10f2d3c3d6ce9d9979c07d46c1ec928a235d6e97cead9c714ee2ef64689e8f6727dd122ebaeba9c4db572f7c7713a1bd0ec79462

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    666de2f1f9f6d36e37b1023dd96566a5

    SHA1

    ac732323089634f426f684627b1ccfaf07dc6626

    SHA256

    c6dbf6c63f90ab39adbe33c0bfd1860f53d18889c12fe2db8519e8c7976c7290

    SHA512

    faaa223cc5dfada3c60fc9279673e130e71afca6144ae0cfba191d3f96c28d49d96ba7248d293f08fb3ab9889c2590669d95df88c8313a1834d71ecb3ac8a1a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    578b21eceb9ad8511ed08e3daf2542c7

    SHA1

    dd353f7b78306a7135562ed9467cf177d621c607

    SHA256

    b0db890f170c8290c8e8c3b46c89a19258abf6dd01060f959c151a56db52cb72

    SHA512

    5cee243474f64fd3dea416ea8768e0a4a38452d40b870de7a2933d6d89620c94f62623945c21dd5a718091b5360c485b1c2b184f3c98505a7ea7d61688f1a8f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7542f8d141beab6165d06187eea63331

    SHA1

    530e657c6e366116346f0df43a4f96dc19846831

    SHA256

    f8fde5bf3cd7b1ff4cf873cd9f4ca1a6e98db6a39323f4db37e45cb9fd3c8688

    SHA512

    19593638ebe0453a4c050e7acb08ab683275d316b6570b642e354334e54961748156732f7413f26cde7d47042d5cbc073f1ab949417136be40963744c5b4f892

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e0a7ceff5bfc9fe8de33a8aa337e9b7e

    SHA1

    b5062540ffe946f0e31aa492c118667df6e18564

    SHA256

    8d4e46a9a7c16e195dbb551d49447290be55582805df86fcd0bd0934d3f1783c

    SHA512

    65053619705126374137b0d2113ec3d3b27a8cc65e08f0d3ae648c330b8b6b63f911d9cf309b3fdc1ce8bbf7b8aca5fd3d76f0e63219e103a4c1e315ab0aa0d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1a6bc3dc77def448d7cd20f6c3060e61

    SHA1

    97ac2adca47529a92ad318d788b03bb5663afbb1

    SHA256

    396bd7792729525b708f9840698f5c8c4ae5449d5e0e33716b82e862139bd61a

    SHA512

    af0c960b8f7acbf9e48fb83af83a13ee4d183d8c20fbcf2be8c3e7ac031da492061a1dba2dcc2452fc7d0a09d470feb4f5e4b6f1e18dcc84f60fabfc19056f4e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b38cfc9f7054bef998890db01d67f6ce

    SHA1

    b3e2b56527198047c03aa59e86a4b652eddc0874

    SHA256

    81a55795dd0eb71eb9aece58f565946206a6a29f7e44f6f060fbeb50fc355936

    SHA512

    98f631b646ce9fc2ad30c9e35b6f13cfcabf3dd6d56e3564c4882f68e2012f4bb417059336b45ddfcc25981b11f63e4b130aa666140f43784e9b0a3e61636b92

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd8019420fa5279640007d1ef03cfaef

    SHA1

    651a559733dab2898cb9c2d5c44e9f4ea2bc4d4c

    SHA256

    f9718c1dba101a05364e91726ae80053530acefc92a328e218b38434c326ceda

    SHA512

    30426559f82d1664294503acd1ff305da4e420940b41ac30197c11942436abd710a970c3a1f5cc0ecbbcd9be166628e6960714d83bbb688089574fab87dcfa1c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0550108e465c954f6a8b6b918063d844

    SHA1

    4020f7d22130c16d59951ac696d6ae18aae5828f

    SHA256

    2ee5bf60994dc36712365160eb73a991cf6e8589742b413f2e2edaf07c8f628b

    SHA512

    0f60e456427254bc33b8294dbd9e7e25635eaf9cb41128724bb90686fc61d7f6a18763284c579780b7221cd5b7f8278988043a995576389cd77b4d6be8856eee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b8e638c9c2d5af7d070aaea94a855bfe

    SHA1

    5f894059588b635a6ef72fee5ef3d1230856e2e5

    SHA256

    2087f328e5bddeee8361423a610c5be03eb1246ba540acf12c3111ccef8f3612

    SHA512

    93d44fee72d38481ce187da727ccf018f83dcb6b0bb5773bec909a33575e2def50dd2467a8a3c0693f3b18ca9e57996d9ac8a9358499a67b588ef031c504865e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a61c7edbc82bab983ce91f97fa6355a3

    SHA1

    1600202518b38b32ec6ad8f609e660af07641114

    SHA256

    670a024c8cdb2e5f239ddf60767d2e490563168eada3eb6d84cd7cb8f6cd3dc7

    SHA512

    326e2b9b6baaaf0965038d81d7094d3b1ac06e97c0cb624265089006d84b27521186e8b7445ce754f6af083d2bd07771f59107c623dda607852798c982900c9b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    143bf64709c56aa1999ac2b6a4f15e74

    SHA1

    35637da6ea0d2a16ec241ad9ab859c4b1484f51b

    SHA256

    fad1c4594f29c725d46cfc81c7d6f5e21c6e4d9d38d0b2dcff493b991451dc02

    SHA512

    dd4fe8a1e537ac2e2b77ffb9063d748ecb57533c0dbe9a6625fea2ef2cc155f1b77cf42698fbca0605b9149a936a93df26a64c54976acdc9c586c81e88a7e6c3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab825C.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar82FD.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit