Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

27e6e5113a...8.html

windows7-x64

3

27e6e5113a...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    09/10/2024, 00:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    27e6e5113aefcff7e4b05e312d524962_JaffaCakes118.html

  • Size

    31KB

  • MD5

    27e6e5113aefcff7e4b05e312d524962

  • SHA1

    456ccd90c1f6d76a89b7d0477cb992debdfe665b

  • SHA256

    7ed8bef31f6a59f1e3caa10f5ea2b7c5c37c29ae37f2a9a1d1f0fe12addd4eb8

  • SHA512

    f7ab02ae0c08e934af01e7ec9942ea3b0b39517ae5cd18d8b2f1be615daad1c763158974c6a972aa7e11aa598b90d5d162de793aa574c24016aa52abb3fe010b

  • SSDEEP

    384:SkswWJhC5d7YwxeXn/vl/yxT/+ztfHCYFXCaNORxyttOLZ6E:SkswWJhC5t7U/jFHPxkz

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\27e6e5113aefcff7e4b05e312d524962_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2488
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2488 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2616

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    09dd173858d55c23c82d5dbe4128c9d4

    SHA1

    406a1cf779d2a6a6a3476101b2097ac68222e547

    SHA256

    c02739416d45c6353ec78cfdc2c549f782f60a576779a45a2f6cdf1e1661bec3

    SHA512

    6d7b38ee7b91eb9892624b1e71a19a51a324c2c9cfc383445c7239391e8ce31ecfff02363a758ef097bd61475290e493dd5d768b71a92d0c6af4740822591b05

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6d973be798e01b2e785eef7f1cdf516d

    SHA1

    c71d4de38eb86b62708bfd3855e65d7f1971e239

    SHA256

    87fb78b6cf598ff2c5e9af5101a6ca5406ee85edae22418c4173799eaa47c1ca

    SHA512

    86c8e43d4da4abcebb7bb898780f75d9f0b12b0deaffa51ef05c2dc883cc489b1bf16194534de29fcb7dd8c5daaf2fc08b00b797ad8ed52d1160d22f196c3d53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a00112f3b810e487d206b7e7684b012a

    SHA1

    56ba95e75e3c403ac9ee26f342b793a56b524151

    SHA256

    89b82bb4c97fe4788c8338f881854fcb9e6152a1a6ee95cc821f845fa8068415

    SHA512

    05f9926594155dc54eba06b1cc220930d2d221b09b5bc27f6c0ca78b2f06e1f93267281a8ec593cc6bf3c3453061cc27411cab311d55cb301109e25ecf3f3efc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3faaaa40f4d8f87e815ce283291376d2

    SHA1

    be835eb5d8bdfd266a0e6b968671535e857b4597

    SHA256

    33a2a71897fe369dae6798e1c3ae6d70b333052b2e0aae712eec4bbe098bdecd

    SHA512

    b4621ebdb024baf84097df6a1d426b16ae38aeca1ae83624c35b7c43bde14ae3510ec8dc708cc64cb5f554908e33a316645234c866fd3ecac170a6ec19fa8b69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    368be3cb0aa64dace7c76c03a1c3a1af

    SHA1

    cdee9ddde43ae0b43e42a15e221f8dd32011c337

    SHA256

    5075750924c26369779e7f58f3b73360d83fb9b2011d06d64a3d34fcf4ed665e

    SHA512

    c44fb813e35d3a919ef90c49fe2ebd046237f72d85c2282069fcc6e0b5fbf3c63e029938a4d0696b03063e8f8fed5a1c020a9d166e0dab0e84eef31281b41cfa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ba7779f38f862d36af37cee98cc1356c

    SHA1

    3be5ae44a820bf9f1190f2d55e960b9def90e2bc

    SHA256

    a6e593a3416d9896ce8e1f749639c13c46e38bee1c577f5521d65f9d93d4d182

    SHA512

    31bd015a3aa80b20dcce233150d9b2de73ac319c271f5fc84cab9f6444e0cd0ab7d8a22ef333175fea989730cda4de9b0b3cb805e1d37d5b23be02513286d220

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    41b37168911f150e41678faa89ad2ce5

    SHA1

    ffbbc11ad62a4afd3a150918785b18566335e244

    SHA256

    256a4761642d7cdbba6d1f1e910cc085c0a76d6f39727f1bbafb753dd11acb2b

    SHA512

    fabe154aec2fcdc8d09916f720120561f7bdf4ca51c34e3dfe4462c44c299277edbf9bf6fece3a88ed0f1052447656dd8746632b6816e486d753525e37c522b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    78de94f05352d86cfdd3fa30d772f13f

    SHA1

    df448d5f96cb445fddc5867c8163f7dbed9fc17e

    SHA256

    773770c74ebee1b7f0238de7006b4588e23e77346d85c7df5922e250cbb7557b

    SHA512

    763952a1325ce13c5a728e7c2e74e327016cb3323b32a608490946ede2531123be94256e475708bea4e9f89fec6b45a947ef950e4f88b8e3333a71e82b3cb975

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9b269f429ee9aeddef7f6c818f388d67

    SHA1

    3728643e7bf77ef2f02fa43ed67e5f062f426b68

    SHA256

    3f8339aadb3ed125ecda69c22130241c908bede5a5136e84bb04adf911fde5cd

    SHA512

    499bb016dfd2bb52d58855d5a6f552ad8fec90b1d3ea80c43840807ce0e6ecc11fcff29d8414a4d2adc7f4cb9a3a8471b87c3bf0758d3ce4b260b30bbd8823df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d7c161a6f5254d465b004224243a8831

    SHA1

    6f8be719dd3e97269c9797389e5d5390f4dc6a15

    SHA256

    d0ef85ddd85a250bdc31cf85661251f9581eff26b9dd71adec227487d883a547

    SHA512

    3937a425dfdf52772fcf06ee6ff6fba82e737e59240a3bf764a7754d31d9eb96fd02e00fa7c2e0df26b1749ff66ab79df18472dd116fdc43febac2c88fb06a4d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3798fb8390ef78d24fc18be098b8a004

    SHA1

    289dadc65b713a0f628d1692f6babec850cff28f

    SHA256

    9dcc08977039bbca108cb9fe43fa77a1628aec15a2e9c548d6809c6f8e6ac329

    SHA512

    39ade5cebb3af32cbb7449bfcac17c3102a4084b49ee23202429ebbaa36506dec544b713ab953bb4011dbb2300ec1a7a65d747df3b7bb34b9339deb4d7b18009

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a228b9a652c901b09be14688c9bf35c6

    SHA1

    7fc868e4fb157fd92992fccfcebff571919ba6fd

    SHA256

    bc3435ecfb1af2b2c995daaf529a408161b70614722bed34eb6b999b28b0066a

    SHA512

    bbe6f55eb0ff62f7f42ca9a01f99c6d86adda4b9683fa23c14d2ca4a7a6130d0e37736bcd85691b164bb7f04d250994ca6cca8f61a3bce0c76a68b1c4536b694

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c9dc01b601ca62adb53cd31444ee46de

    SHA1

    124ad9d100c9aeac8a1f0e037d0f9d654269eea3

    SHA256

    09258b1a6285ed871eae5ff093ab3b4cb6583b975cb895ec460ab2692f737933

    SHA512

    e6411b3b9a3ffce2a3388c02132a58f899454e753d5b591f082775defd2e9dd2fa9567bc5390fa270cc4ff068b0c6aa69be03e4f6ccede2c3743b9b83ecec659

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b88e8a4d285bb2bd0ab1c784db2bb29c

    SHA1

    b6799bfb38c79112acdf7c3623472f1ec7f2191e

    SHA256

    eda255159be8274c76c462f2320915273a4918305abc5026b5e541587b68b36e

    SHA512

    391871f29272fc9d9e98f317b3ab36e266602a38979f133414f0e97488bc5cf5b61fb11e0760ef8b29afe3f631240008f51c8630bc096bc2bafb993915a54417

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8fa218781ede1cbd7d70c6c3e5cc2997

    SHA1

    1823ba5ebdb86673a6a2a7df3d9edbec5dd37a57

    SHA256

    c4b602d565a3faafedbb71a90fc1c074fd8065036e101e0382a5add99bc31245

    SHA512

    da4a34f276c14c13ceb77d911a0a5b544023ff3bb08c1bf1684174e5d860c1bc37a69140a1dea430dab0a1af741e4f172a5636f23a5c4f4c666cdc39afb48aa8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9f3d2f755d9cfd1b742f592d1eb80ec4

    SHA1

    8fef267b9b582bbc40d1cac4cd19ac8868d095b5

    SHA256

    015fa65ef536bccff8185738f2633b00039a4193291f1e0c316f347efc7c5085

    SHA512

    42923094875d55de9e02996d6b17ea3a9eef9d647da1425b10878b10d1f30648ddf54405e552c8190b2d4165a25c25a4508ef770ff137efa5d68069dc8390b74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cb6beccbe7d2619c3e99045ad85ebf18

    SHA1

    c15acb05f4e491b0dbc79513b0d2aeca63091620

    SHA256

    dee5d90746f07cb811a2c0db5f6fac8394786538ad8082b3733d5d8dc2450c3a

    SHA512

    80d59079a751ebb97dcc183cb587f75284b12e636f7ec0821ee2a735ceda06fefe68f1d1561d3214fe0e64cb6350a8b2e4bfac316d90dfc7dfa6cc6a6dfeae67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b6b495126c956986e4df788b4a76a50f

    SHA1

    b7b834f8d24f7c747f56f12ceca69caab78fcbad

    SHA256

    58cef0c09ce57f2291035d49cbb256c78522e69519b47fc598b291d1c0d5b749

    SHA512

    b480376ae1f54f64e304b9c499760736f7d9078f7d940827f740ead363fcf0a51df9e713da9b36bc9ecfa622814881d9838c7ee76006dfc4a2e5c057e5fb897d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    820b36f110c08aac6a0dd2a0bb0c0518

    SHA1

    0dd706c04f9e7cd9a58fe6992896c69b4cd56699

    SHA256

    096fd9c3817f6660edf8970ab8e6d30439ed5e0128d92ff2c1a078535e5b7ec0

    SHA512

    f544bc3377cf3ad466ebe3bdc63605c5fda65595335b1c9327ccdfd93e3e2264d53517b2750073502e2f51cba1045e3c9db97f522a553506c7947403a07b6ee4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ec9e6d50c0f3c705c802c5ad3032a818

    SHA1

    4c0a7fb2e434dcd1b5feec946953e430e60ff591

    SHA256

    70c67f89882234005789352c776e57000a075368b9988a39596ad89b0662c822

    SHA512

    d7aadd6743a37732d80223610fd709a970ae2bb738800549f3e121d45b7105e573ca767adf16413a307833d29695212a7a433c20136cc34ba3cb88035d327fdd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dca5c65214c5e9dd6f031d791cc837d9

    SHA1

    10aedc905d3b296f9ab7bebb1a4ef4358f579aa2

    SHA256

    7fd4191d69969ebd8729143bfc499eef67f3b55eb1124ff059416180a98abc46

    SHA512

    00175652d3192ba8d276eee723d79de3edda4207a61c5e6294f677e355bdb5724936f158be0c3524f008fca147a568166085210c2b92ff54f0b0599388967ead

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF6ED.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF750.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit