Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

2ec3b1d92c...8.html

windows7-x64

3

2ec3b1d92c...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    149s
  • max time network
    151s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    09/10/2024, 09:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2ec3b1d92c15fc32139670b4f9dc7b64_JaffaCakes118.html

  • Size

    27KB

  • MD5

    2ec3b1d92c15fc32139670b4f9dc7b64

  • SHA1

    0215645008ddf63175100374f187ac37bc434aae

  • SHA256

    ab72060960323f34459244f140cbc18fded967377ae102f83358810afa40bd67

  • SHA512

    f8d0709a98308034b306dafe9bf33d87ce1aaafde3171c84017dd09a530f3a03642ff8dccf5cff8f9cd4ada838ac1ee21ca048f124d3eacd4969192dbda4922a

  • SSDEEP

    768:SDzdsFqvfudlQVV1C5m1CCCcmzm3C/CnCQG2GkIpdAeV0yjtz2:SHdsFqvfug1C5m1CCCcmzm3C/CnCQpD7

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2ec3b1d92c15fc32139670b4f9dc7b64_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2148
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2148 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1628

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    4a4bed374b4bd90d2a1dbe71e246411f

    SHA1

    1a4de264f9c66bdfba3d2b96672cd46df594248c

    SHA256

    ddafab094c665844cd4ce35a595d6576d3723fb1a7947b2d85b717aba7607766

    SHA512

    5361f6b1ec53139841a6a46297d94c414fd0ec09b1fa890e81072045b5ddf4708ba4fc3f16a8204260467432415b3dab5e51496f2078ae219cc873ce927133f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8c197c0097e7645a25eafa3fadb279e1

    SHA1

    d73bfd9328e707843fa0a688fbf24a94045a99b1

    SHA256

    99f82fe9062cf23dd549515086117228af2d483de8a4d5ed0bf68227e131240a

    SHA512

    6be79e3e4b9857f01e82807a98fb43871e24f1a7f21b0cafedb9eef2ec7a277b46c5f233936a546afc64cdd022253876fe5ee77dd32b0acfdc3442f3fd0619f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    36ea069479c819964e08d7467ed70678

    SHA1

    ed6cbf8a361ca0dc1bcf84c8d1ed839b89920a7b

    SHA256

    02600788c930405bfd56ff3b7092980782db4df9387fecf296ce581f1822ee92

    SHA512

    9d4f47f6272b56132a06e8156637b60e7f4e78df4d91e92e901f6c51cd1f60e75ac1424e5d0492fe7528fb6273466049769d6293da63ee22a2a8266ae8ccf5f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4971e33edee7d4b8fb0490d0d386b03d

    SHA1

    52a3527450740a5ea01f619e6a052f1626ecf61f

    SHA256

    eb9bda5e307396e7fc18edcb4c51f29218395346991189bdfecac8579cd74232

    SHA512

    524e5bbb26087695925a562c532a29448e4d06ff097f942b5cabe060d68143e8cc9b5461197e711f6a40721a8c4edbe712ae482fdaa19985bf2611e9c7dbc592

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    21a5e3b081e510a7d214ba65771f445b

    SHA1

    b0c64af1560c5083915e3a299bc45da9437e4b9d

    SHA256

    b7e59e621f58e59e1d64e3b09dedd829389d62df8f3ca58d02166fb95a709661

    SHA512

    06d66ac262eb7cd2db3df182adff05c15ea19328ee1c67d7ad0fd30e61da5a8b048b11a504c3e3dc517d3fc69f81bbce151a8909c1a968125141fa028f8cd419

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c141b14bc116171ca5f6754e21cfb7e6

    SHA1

    3027f7cceb65df4c3d3fdc27f83e5a1515f1bcca

    SHA256

    32e46614793f50253698e9c9e7deda10effb491da3b3b6fdd46e03d7c501023e

    SHA512

    09385ab4f7f9e71fb56a41b535cb6384ff9545ff287d7820d57bc82e5b1a3d9c02a2aff30ad639218eb26a5a04123555d88f241eb7eb1f7e84db2a0446c05f86

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dc27f2d9fa5d5cb2dcb8ace3fca59b38

    SHA1

    b475760347c761fd5e62ee559d3271c7dc312d4c

    SHA256

    324df1007996a085275c453ac9c7ad21e2ad56bd70630af3725bb9fbf56cb890

    SHA512

    2cb603a4cb7062bba02e4ccb2536761db345f701a9604175a3beeaaae86fad0bb5f99e37a14a87975b39cd9c6baffa4193842d34593c901a491bfa360588716c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d8aa6949fbab6f4f5fd2ccf11aa2f90

    SHA1

    262a7078874a8106cef75c83ed57003d7478e704

    SHA256

    ae5aa656b05d3092d1accaa49055195a7d14ee5c31aa6d602a9c3c5125d4e108

    SHA512

    45fff85c40bbb30ba061937a5b48d03ff14aac3237b68438b431e6726025a8f76801b801244af983628508c3213ffecd576c85d9d805f480d9dc64cce2983ad6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    934f05b617078a77a8269677f5de1a59

    SHA1

    087e2359f1145bf91c2c6bae77546fcd74cf0920

    SHA256

    4d2130a80eeee048914511cf812f536c264914e03fd3f91f8597d8d73e8b9c19

    SHA512

    3f5a6f93f4daa20d5c8f1e2b9994cbb91022bdadbfe15b0ee37e506a9c5a104bdd834efc693ea74cddb6511cc07e6a6367d8a3bf1c3c2a3ef7e9c0aca97454e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bc2ad10dd59f0156c4ea97bed15fb456

    SHA1

    d48d69750a3d091c27f2867c1047af2b04d41d46

    SHA256

    d11232276bd355c8d94bdfbd4402fb2d6193e08e7c6a50d85dec4bd85e176c7b

    SHA512

    8ad70ae25709e600572860442154e369c42746f3f54e214695386ed179ba82ff2e09ab938ab507bd42028da804353bc370088e80ff3370d8af562a8ae84da03e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    00037e43a9f06f2d972e80ea1532546f

    SHA1

    2c601b3a4e8ad8458dedcdcc937ce282e0e44faf

    SHA256

    df5b1b23d5377a498dbabc4a5ae488496ed2b484951c907c075d0a23af2e24f6

    SHA512

    8fbba14903d7e331f367205e81d03997f69abd444c1d20edcc7b4bea4ba1334a919580db044b18cc9eb8aa288ef674c109fe54c2fd302c140f5523545dcd74bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    54075fd5ec77a96deb0520b4b9fcc265

    SHA1

    81137202017ec2845cab02c6014d0365f3508760

    SHA256

    8fb7ced5a4ddacce474210f33ea0faf48037ebd6019029b9ce805a6d178b5fb6

    SHA512

    12885b1659a38af346cd64a739c75510e304229e177e663c57db9aa48f6260f9daa8792aee75bed86b76923c6b507f66344a02b5886d65469fbfc61430e5be18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    fd8db93c2de8456bcc9d76c5ecba7f9f

    SHA1

    d61afe829b6101604e707fd05d8ff4f08d43c654

    SHA256

    6e5ea025c4136675b3b3cf21a78d9e4f352540175fef397f0a9856e93fc64f1e

    SHA512

    85f217f8a8df91a3604e89afea63a03ff11d3003bfe7e6969b643786b06ada86a405a95ea2cc41f068a8d3cb94a7bf4404d1bf3f13942dc0973b9d206d52e6b7

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0I0VVMWQ\style5[1].htm
    Filesize

    114B

    MD5

    e89f75f918dbdcee28604d4e09dd71d7

    SHA1

    f9d9055e9878723a12063b47d4a1a5f58c3eb1e9

    SHA256

    6dc9c7fc93bb488bb0520a6c780a8d3c0fb5486a4711aca49b4c53fac7393023

    SHA512

    8df0ab2e3679b64a6174deff4259ae5680f88e3ae307e0ea2dfff88ec4ba14f3477c9fe3a5aa5da3a8e857601170a5108ed75f6d6975958ac7a314e4a336aed0

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CXRG2YQS\superfish[1].htm
    Filesize

    122B

    MD5

    00d64a82ba2d055e5facd3a30efac924

    SHA1

    308e275068e3bec5effca608fe9df2008c979650

    SHA256

    aaa3feed097fda6687c7c27860c24980f3ff105b6f326d10c98854145e9afa6b

    SHA512

    1151e227086964ec19c11eb388ace411a56a6e1da96409b2bfdb5313fb5df75223add437a653decf3afdfbd2be2cde421c512f9de423ad74f2ebbaf81119d8fc

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabBECD.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCE88.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit