Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

17a2829c28...8.html

windows7-x64

3

17a2829c28...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    06/10/2024, 10:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    17a2829c28167f7391bfd36222a83ee4_JaffaCakes118.html

  • Size

    53KB

  • MD5

    17a2829c28167f7391bfd36222a83ee4

  • SHA1

    67a585a297f93b834f4c7e6d17f7f551ae7c2839

  • SHA256

    62faf628983012875afb4c0a822325f180e83714073768882c367a7ce7f145b3

  • SHA512

    67ba69a27bd0579adb42eb4bd2bffe104e89b6ad7a16cf7a634c1b7572729e7aecb2e119126c7d9ee7f3e214d650a475d39a423819a768f19d64613f6b8f4ad5

  • SSDEEP

    1536:CkgUiIakTqGivi+PyUKrunlYb63Nj+q5VyvR0w2AzTICbbkos/t9M/dNwIUEDmDa:CkgUiIakTqGivi+PyUKrunlYb63Nj+qw

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\17a2829c28167f7391bfd36222a83ee4_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2568
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2568 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:996

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9db6063ab85df7f1808301adde799f04

    SHA1

    0dbcd9f370896aead4cea8b1cb3daa4f5facf7b7

    SHA256

    ad54bb32b53f8ccab54f5b53ca27cfa338df0276781424687dbfb07785dfacb8

    SHA512

    1d38f2902358cdbb7908ec150a8961a708b203129973fd0389c54f670e0894ca923ae5827673823dd87d1bd2879dcd51f159b5f41c9cfd719794cc472cdc0338

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b0388fd43c6a9d3193d6fc8544e86743

    SHA1

    32bdd046bb2281ee8680d18f25d04d7451d81848

    SHA256

    eb6a4f1f4c59e44e06f05054ec8c35554e13b65429249e8b75ec725bab8853d5

    SHA512

    5b3425306b0a1f31d9ee72779623283913d83d0c3e9c7fdafb4340a8ab3969ca99af3509d032f43dc6fca97df8caf34b9c81f4e7552dbc8bf818b313cd331d36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5ce10489a9348a956e2468a69ff7533a

    SHA1

    4a80d615f382ff7663f5cc65566691edd1d2c9c7

    SHA256

    fa94d5bd72a23c2fff40ade58cb53d5119b5fd67006db5c125b339e20c8f64d8

    SHA512

    2a31e763aa96eeddac996fbf1fbb40c7bf8386e401cf1598a159c51580bf3476bea4b36a0edcc8745660171c740a59b1e7c76b033090220c95d22e3ea5e92ddf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    16779d779e5e1e9f09b0acf39c6d4286

    SHA1

    2925aefe2022f2363312d52675925a831da8d6f8

    SHA256

    2370f54df20adcb4d0df44c5c280fecf6923b9e2e6876f819148ea12ebb80b64

    SHA512

    f110db5129ef55055affd3922318b68c142a7f9471c422306aeb6b89d40cf7a9f4c7419dcddc5ebbd8b7547ef15358ac1c8315c282a02ee71b36e56cb8ec0b67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    57b249d4476c4cdd981e7c21fc3c376e

    SHA1

    5eda9e584d3ddbd38efce077054a2a361de4f1fe

    SHA256

    52b5f53947290a09b41218ae4c4cf46a6e5e9c58f98441b0e969539ca294e076

    SHA512

    b6c18ecf736db45c41d5729abd20dd7c3c4c6a0bb6b324646e9006fa1af5af63a6bff35b1cfab8e7d10dad1a5dae6bd99f910ad2452c9185b8c21e2bcb4df732

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f4fb27ada932aab72d034e19d415f3a5

    SHA1

    9a0839f1e15ce70367078e1f3437faa76b7d1e66

    SHA256

    2e2dfedd30bd5324a97ee227c6e145085bad7ae00892d6b304b7f31bbedcd864

    SHA512

    bc3cd044cc5a3e81160d60d2faed4b26d8ab556544d3eba5e60a65a6d4827e63280a3762ca5118f0bb5eb659fdb42fb692a3ca6086c8b3ebda1b536df38d1ca3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7f66d78e78bc2186f46e595fcae65d1f

    SHA1

    e33b8f41da53f4ed85c48b0d6f38506d20d2387a

    SHA256

    181d5ac8a9206a47f18d3147b254c2d0fd84b760e24d6408e26d2006c1c238fc

    SHA512

    df0414aa5041bfc19b65b0144897f30a89c3de1197049f49f45cc1fc28eb038e0fedce6b7a195538518493fc764ba1a287e5245e5a8d8ab24aa1357de3bc3651

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e218cb85f7972a3d914aef57f984c71d

    SHA1

    7966a05e64be2168ec8ade9c21a7565f47a9e0fb

    SHA256

    e6baab85732eeae617e8125cb614191695895f29ef666ff9d90c1449ca26a3b4

    SHA512

    eb760c0d348af1c6407876e38706935b7b61aa6c8ec6830b72df412d961f783ba1f3e61e363f3a5b3afed026f3a1b517b6dd040db95be5338a9dd0287eee65ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52fe72bdde8ce43e3dc44fd81b79e975

    SHA1

    753f53c636beb1885859cc7f4d9b38354443cf2b

    SHA256

    9d710b63ea3c282fe6821625ad6f22b82a8c3d0c37afd627d3ff609dedbf7843

    SHA512

    843514ca0790ac45f812658f66d3c32f8009d8ad0cf229ff7d944d5b52a68ff0f2be28852be1433654caf42b22b1ec739a25ffaee69d2e61437ec6ddb43b59a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    693dffb7387d08e2732d04a8c0390056

    SHA1

    8c83fbc7cf6d247c304f9e59b7be37f17da6b778

    SHA256

    0d9337a09fef23d292f3b7fbb0d76a349ddad36e2f9c22970331484ab814774a

    SHA512

    9e9605314d8c25bdf9ee0b3f12a1627f49c8d451e4339fa6c07aa21ac1e6704b9517d6d9bf3a087af0b32438463290e227fedcade1a73d20778ac3b1498b1d27

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fe73799d1d984c0eae6f39a70535ce34

    SHA1

    7ec7a22e2889cb2fd6780b95de7b61a6f03e11cc

    SHA256

    6015f7618beb3ac430e1b40ab8c7836a50e41e51cc4c1c075b523857b9047987

    SHA512

    8638b785a40edf4e00d893c644343ac96e7572efa1ddff02e54016e9d03b2a47ab54f711e39d66aeada45477c8c638d0bf0371626112d499785ab030258a6572

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a8ada3cb104747ea809db498c5670f3b

    SHA1

    31568994060778321e72609f0bef2c2aed5fc146

    SHA256

    d83fb56e449cb03ff790bf6c6296ac759194285423554b22bd313f13eba35a11

    SHA512

    1d919422c54c86e45463dc9d472cb53177712742c4f99151f652d68427c0477e4ca8e8d220e6290d7762bd6435933e50c63fd3a9bd3808eb8e5aae6cce29cf99

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1372ae7b4a8f26e56d5bcf1182656445

    SHA1

    5db16117be2237ad69f6181699626f1393998958

    SHA256

    027dd2393a74d16e87a2689fee83865a1556f0c5cc2d968a34c872705cd1dec7

    SHA512

    b6b04f09efcfbd065c0e7b2ac9a611d51ad65e76f5df2a4a4250651edfd061afb2ad50fdfba399e1e69653835979aaf29b19fbd4ffb2a4c0635910fb00651466

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c1f37d509afec2af22771c14c1925d2d

    SHA1

    2dbf125f8cdebdc756cdfee88cde903124d6f391

    SHA256

    799477475d0966e97d67fcfd08593f1875c34509ecb7f374ace3ee2c2c335434

    SHA512

    17e1e84167392308c6ef2e71a7948efce62d813ecd4916d24e497fa43f4b248c7c399a64fdf1aff83e5e5e1e646ab4389217d332e64999b458ac4f7a1923705b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    708f890ebd24ca4c9276c2fc5d66b75b

    SHA1

    17792377b22a9926b6cba3168f55ab38f20433e0

    SHA256

    728454ffb619340050af3d6198f1c37a1850ccd44cec8fecbb9ba863405807c9

    SHA512

    4d59afe76686ba428b497508528ed5fb62afac23966fc74484b9c7741d144377d041d2d4e6ae730f295a53d4a7c73d145703c9621a462a4771d49b175b17d6d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0456da1d78628f48120b5236a691d276

    SHA1

    40afeb23c6bfbdbfc63f922929647917468b0dd4

    SHA256

    9644b61f54af9b529ae28d0d6f3e57b8bd388c0620178f6d0e5982406ab3dfd3

    SHA512

    a2c36646a00b2d39d2ac6e016c19dfabc91e4d6622eecffcdff57528a570b80352afcc51e8590be4f3af1c756e72e0891a351ecf309486036d0c1cd63902450b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2d131df40e1f8af378794fd38f192d26

    SHA1

    486f2ee70db7bef58b32b1ab0373278bfab9c60a

    SHA256

    4362887159b5ac958d000b9628c6da5248218a18f9020721af8d7e4be32d52b1

    SHA512

    ae1919ca960c7cc8fc7283fa657724f5cf4bd46bf62cdfd041b1ee2bea41345aa8258846112143c9672f1f3cc3134708baf8c3713026a4a9e8b183128ef83cd5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0927ada4e84d8241fdb26bb5adb4928d

    SHA1

    5ddcecf87e5c5c9a1285214bf247d458bffb5813

    SHA256

    ea6db8d0bd2a78ab1e38045d7208d307cc77665ddbb306f7019f716b62041db7

    SHA512

    7c01a0e6b1fe2b4541f5809fd194bad6cf63365d32fe48409b3cd964355145c283c4e79041cb5c4fd9a6f36e92d1610d7a2a485b400006a65b8feaf2dc98f559

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8a14bf2a854515e182ac5834a9c91848

    SHA1

    c31f4453a21df3a8c081a306a81a077154f2d4a4

    SHA256

    62adcf1e119357179a84197342fd40dfc7b3defd5c5f93abcdcf5362271ad6f3

    SHA512

    68ce2efc827209180d505f5732991e2e4ebe87daa695ecfefa3237e6fa45ebf20c956eeefaeedc4ca2b96f82825ae7791cfe23824f91c358bb4f150822de4996

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    49ecc7749ebfcc13d045b0535ea93719

    SHA1

    9f9a2075e8968f2f05a021095e621cd19cef53a9

    SHA256

    c135589764be020f1518a2523b6bc2e0931f75ea134ee690f31c116a759a4c7c

    SHA512

    bf476f84d65a83d7395e7748a8c93b9346ed5829e1293d1e8e17367bf464d141a4ef213762613dc4e4ea9f8f533a917e54d125c8d604148e2abc8d7187f19f39

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\84EXSCRK\style[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7985.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7A25.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit