Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

2c862ec4bf...8.html

windows7-x64

3

2c862ec4bf...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    09/10/2024, 06:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2c862ec4bf656cfaf6f1a4bcea7cf653_JaffaCakes118.html

  • Size

    20KB

  • MD5

    2c862ec4bf656cfaf6f1a4bcea7cf653

  • SHA1

    d5d3406c65598f9c0a25df97ce448353f7e2b150

  • SHA256

    d462b998c804295e48898c31ce47d9d70f6550a9a463bed538fc47e5873d70e1

  • SHA512

    d5084072688ff5aa03a2aaf58f46f7b5eec1e9e906d5ad2e7c68f522375be382f40e7e8d49bf4cded0d77b6b4d4f107374921ee662ed91c8e0f4e6baf6f77690

  • SSDEEP

    384:UDkHWuKTFvFtaQgEZ6l2qJNAGx4iwoedbvfvdyWjLvucGeN0YSWk9XboVu6uw9m7:UYFYzaQgI6l2bGwljLvJ0YSWk9XboVun

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2c862ec4bf656cfaf6f1a4bcea7cf653_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:808
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:808 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2736

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    0230c6672ddb3cb7a6b55f5519b2be8f

    SHA1

    7d2f57953fbb7526f7478d179a6325c3ebaf5478

    SHA256

    d1ca2b568db292a644a21b3a863c36bf4f4a63666a9d6966fcb39140bd76092c

    SHA512

    2fb2de58f9849c7ba68456debb3567397cf9d8456c8bc9966ca8212ab3aadca4f6949fb8abe1e0e136baf20ae1c9bf7fa1a0de7eb7593309cf695f3d08882a5c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e9398f48beceba0c17f497828166f3df

    SHA1

    9b4c8827a44b0d67e1b87cf109cb0a5d532b7b83

    SHA256

    659dcc8a779e73f39d896e0b6d0b851ecee2f8ad9f9e9f97540e51990d0667ce

    SHA512

    7ee79220f46291384d0598261bb51933f3678ba204e0f5346adbd34e90666bbd27cbee9b1ef8ff33ed91af2c2ff55579d2f8d8e7b12bcdf048e71b5fac948e10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    82c568ce103b8e791947801e914e7ae9

    SHA1

    edf7d3eec1354cde96e0428d2f4d09612d8ebe66

    SHA256

    1a3c761c75e1cd142c4e86af55bbbe3abebcbd8767c63832d609073741a3679a

    SHA512

    34bc095c29a9c47eb189a01788abb06f58fc6d0528950e011cc9a725509c68906d36ad2a463ae96bfe92f27a9852f78ebb723c3e4cda720005c8cb3f2df75bec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    df18db2647eaa6fed06af5dea54425ec

    SHA1

    5a222d54c5d6e063769a55c4b57b275337b712ad

    SHA256

    48b9cf08e687a3d1b5e7cdeadfb961199f3c76a71d3c019d3715a1ba74650e9c

    SHA512

    d483a65c774ca52c8592821e31c3ae7728b0bb62deec043a31da2bdac84d8ba0868741748f2bb7fa07de4571b7e8c8cc2b00feae2f84a928634ce86d4b6d1b96

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    56b22683e387b295477a3e0d0bf10550

    SHA1

    d468eb45125206470359cac321c16abd616fb328

    SHA256

    1190e16feda193c6ae4e1cf67f289c1cd52ad92a704643881f75b76b11b89f52

    SHA512

    b48ec74129da585b08517637753dc1afdabf416322d34b22489e50b84550494798142f89f215d70fd5c4e086a76c635af48fb2981619987d6005626b40df4754

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6d6b0ad352b1f050ad8b15e4af38549c

    SHA1

    7500caa804fdb794c34812adf6e9f55c7c03c6fd

    SHA256

    1e06b7af0c274f6d0928569f952208a45f41e979f4c037f28fb55bb0928e693b

    SHA512

    f60bad882991e27767c13f9076d3586a8b998bf359c13a8fd06c220f588cd389531b80f30aaf7da3891ab44b9f6101f8e82a2cff90db775b6a727fffac96eedc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eb41b72dd06405cfd9ad70254dc0cab1

    SHA1

    b46609b0abe6eaba516b6d68e8f7afe5de7156c1

    SHA256

    bc55ab25f9add5e07670d06d826d59b6d92ccc88dcefb7ceee1c1d9f7a3ca335

    SHA512

    444d44fba23bb14f0e207b41e2c1754568057b9e86519fc5398f80f6b23361fd4d0256ed8a1f95a350dcf82de57e8b747c6cae0268e4e4434636a087a345caab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    248bf632c6f474196a016b5d3660011c

    SHA1

    5acbe8f9df337bbada00fbdd5b7a67d8461c579f

    SHA256

    ce3e863a50e6aaa71bd6951207b390c37b4b61f546a4195d9187b3bb7bee5c41

    SHA512

    b7ce802b3124d6fe58b456f8c967276b3a62473e9ddbb72ba44998e361bef2ecc56659e489aaa282fea4b208912b8e1cce18f8e8b85a24dd450bc0d3a3c3477e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1dcd8ea4b54e06315506ec7501652574

    SHA1

    44ac9cdc6fb5cfa1e747df6b3f593d1525de6736

    SHA256

    e1201ae45159b1bc1bf73a210f4eb2c21ec7a359c053c0eca7f34f477e23828f

    SHA512

    5f77507544fc8d2c9dc0fafcdbe5c9eca8a1b3dc1211c73a487e9c840d1999042b14e6386393241776966951e7c51c3e7bc86fc0b85366217a4454558e652b55

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    580c32a6e5308b93a3c09aaf9ec9b36c

    SHA1

    87b8967e55b7166197557cfb033cdb214c3fcc43

    SHA256

    5681fdf4232f3c620e34d393b83a4fe75149f0c8a873d4722099b03d53aec7a9

    SHA512

    3d9569d6b17cef57b04aef05b78c9bee75b76cc6186ee6db561207ca2ced3da9bf15636118930929985eeeb063781f241fe2b4a014f416bbf7802e6491ab997a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c54e0b21fd3fc34ca061b7f3968c8bc3

    SHA1

    1b8473c4740f9c1a86a223b4bef79981a0942fbe

    SHA256

    c7ba68b6456ff91a7013c7afc59cc4eb12977df80e140318f023553ccd7e788b

    SHA512

    13c89c8a0c33598b97939fe9ecca963fcbabc70008b41b08d975bb306d0715390ba3818981aef9e3662d9782ca8d68ac6891367a444e12964f0203d990f360ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d5a08608cf43bd3665458e0b7d1257fe

    SHA1

    526ee8bb8b8e356527e46cf2a7835497c7084c6d

    SHA256

    620f66df51ee3c0f00b1ba7bb46435e95f4a576002d16dfd63c1b919e56ff466

    SHA512

    cee7b7f45c0ff133f529eee88ffb07869ab7aa26e9196ad460728ddc1cd6fa5f0e54c065a476fbc3428c046d9411c13e3366f006ef19ae85bbd9c182319323ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b7f15bace74ffb52cc908b15cfb6fad8

    SHA1

    4814686cfe45ca4f897354056b199dd0271f4dd5

    SHA256

    36abd900e3afbfc641a21d989eeb233664fa907e508c2385e37ccd78cb0dae41

    SHA512

    a63ad94097cbb85310f02c4cfddaf7abecdbaf80518a7b388bf35e261b112d55ce5b87c37a839b21bdd6f8251d10b800e0f18219dc5152b6c9b7949caff5409c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    a9ba2e8d5777eea47ee34955ac43ce2d

    SHA1

    dd3a3ab27b04bc2e15aa8b3c8bebb353064f3be1

    SHA256

    36b3698352e3387fd1a8ab1b1382f3c6713dedb70fd8101dbf9c585bd8c3d137

    SHA512

    288d8cb5146b122c25cffc1d7c87d3d1cdeb1bdfd5086e394792a4aab15949a2710150f16656628900353e25a40a56110ced318afc701c572395cb0362fbd82d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4RXRX1VH\ga[1].js
    Filesize

    45KB

    MD5

    e9372f0ebbcf71f851e3d321ef2a8e5a

    SHA1

    2c7d19d1af7d97085c977d1b69dcb8b84483d87c

    SHA256

    1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f

    SHA512

    c3a1c74ac968fc2fa366d9c25442162773db9af1289adfb165fc71e7750a7e62bd22f424f241730f3c2427afff8a540c214b3b97219a360a231d4875e6ddee6f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabCD6E.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCD80.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit