Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

2f5af9e5df...8.html

windows7-x64

3

2f5af9e5df...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    09/10/2024, 10:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2f5af9e5df5d61eaf4d8ac7c0ff47ec1_JaffaCakes118.html

  • Size

    143KB

  • MD5

    2f5af9e5df5d61eaf4d8ac7c0ff47ec1

  • SHA1

    93db8fa2a6c152880830adc2b811e5550e68ff45

  • SHA256

    2eecb33c8c5c3d0c31c0d2d459fbcb52769f5fa7358fc8eb40b6600a24d3792b

  • SHA512

    6c03ad5ada8c09a86f564fdc34380257871dbfc0c7ed8cf38ad84de9f681bd621b814552dea5c358cfef0fc0b60c0c95119f346b5a8371b2756f431cf5c56533

  • SSDEEP

    1536:gpSMHWRNx3fyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBw:g8x3fyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2f5af9e5df5d61eaf4d8ac7c0ff47ec1_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2584
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2584 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2196

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fd9fc740556197e995a467bd0bd169bb

    SHA1

    e8317abbd068b932892d463c18048f157be8a2b8

    SHA256

    ce061d4a4399dc5f0eb6135e91bed0ddf51215e7df3941dcc0462f536e714ca8

    SHA512

    4cec20218045f94c0653b1a8045ac6b71d51dc2e12d6954ca580b52eafa9bdb66c406378c153f7cf83f72d75be762fd33d5ef98ecb68facfea989f415321958d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a6c8ee790abf5463b099a3d43a0e63d6

    SHA1

    23e21c5a235fde674baf3e33253c4b6c488c2783

    SHA256

    b15222578706287c34d823f226cfb9b152ac84d69ea9c8709937e3e7aadb9d2a

    SHA512

    b022c2496c7a797a3a22ea61ffcb674a8e704c75fb7e6159de41027731c426965f737b281618f2204f0d3b6ed8012c5950e2fada6e4f5ec9685872b761b62be5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2047dea32a8c8b810a2e5ecb659b5a3a

    SHA1

    6bf95a01ce863a3c3bffaef9b0d7e18b7c2946f3

    SHA256

    1e9e6148838aa03af4147bba4d2f0d4806e44d12326508bb7c3cbf29fe15eaf7

    SHA512

    e332c7fee8a4ba31814c71adc7de393e4edfe5ffdc15f23b5ab8efc2979a192514158d2ca27b98c3f8371e8ea5338d5487e49ca2e34a8cc22ed8ef6b480ac4e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    73f32033bd01a612b6ef52a51d62a3a2

    SHA1

    0b75bedb95eb8ce6195110c580ebc1845cf98c08

    SHA256

    74c0bb13b126497cbaebfcf8bfe1707a189cafb32155903f333fcf65eee34c66

    SHA512

    422f265a5e2abda9969324bfe6487a10471cfc639ce4c895940b238b1d11a355bae98920a90659f651889f61ed7873bbfd8fdfb5b61fa2c070cc290704747ab5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a765de6bf749aa10e5497d4d2613b664

    SHA1

    224eac05a90e36e5aed2e3f1fe6273b80b6770f8

    SHA256

    baea5b016c26200aaa59d836d1944677c2caaf9a5c269901fa4209d8ad9186d0

    SHA512

    453f4d4b8bc84ffa0c3206d689295382d08e9d3265ad8c059078f93e515365820c4622f36b4d4e3640713415234759bf631f522d821bb7b1083312c2ea1776b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    165ffdd0c83ebd62fbbca0d470496117

    SHA1

    e46f5263b7c5c8031d690b47a2a9aad3ad0df03a

    SHA256

    d5fa4ce033bf4873002ff25e5b8faa87ab80258edfb1643fb6b9a6aad6954a93

    SHA512

    cbfced1fdbb40c46bbe9120e781dacc4a23e3067022efc30527ef9577b1b0370f5f1b31092f210c889878c66a8eb551b98f4d223e3596305afc136c8cc833eba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7b1888e0124efe9e08496ca8a4339b04

    SHA1

    9602f68eddbe0b52c11422ee1dd024843411f2a6

    SHA256

    45cfbb8f2f8ecc6d66ba561ce0fdb2ab5536ecb87220061dcbd645391066c02f

    SHA512

    97b3848fb9b4e2d802fcc736769af2d922a1b7d12865666e4dcbf3483a1265eb492bff98f95703d0bc7fcbea108758cbd1e4e297925978011991ebc0140ddd96

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7b14139ceb0cc6de9ef72fdd553da439

    SHA1

    750985a468a5f495136fcb8042145200c3e42378

    SHA256

    f8135c4cad5c71ab31210c0a586bc63c37706fd080ce55227aa90c481c5083d7

    SHA512

    826747dd43746dbc3573f0e345bbfea0914a3a03c493c6eb50ca9ab413d1d6f7a628fb59e3d6c3a42247121f1caec89cfa46bd70e62c6d9e18e318a08dfb9b17

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59c774b5a4462627c8799d14ca66d5c2

    SHA1

    3b4368f021a4f183763fc49d1d895a0282651f01

    SHA256

    745aa501733617928eb9f5afe994e86ccd213364fe412acd932af6194a63554f

    SHA512

    6247741dbdea3239c59257dc28165358cc1d96b44be8a5c0848fea879fce8b064ee20cea8c4e2b16e06d4272e6699e8af79757c5e5b7854b816f8bfcae2e6ac1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    051e9f2c956ee8e4a0c680b2177ea503

    SHA1

    988a0a6343f61fe84fb22800b3199a09d715aea2

    SHA256

    83d2e4675ae4d9ed42d5bba3bf942aacd4f0114da0842523c616089dd1566a54

    SHA512

    45f3ff1dacfb7f090ca59f31be89c2826e3ff67a1b2331e6d89b994da6b1865e38aed55d339fec526c6a7eb59c3ff32e1233f3c39fda2625f34edd8c3b803aaa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e06694968545f991acfac04c17c8138

    SHA1

    41fe6b7848736d4508a0d2db73f24883347c9fff

    SHA256

    73c57bed503086eb4a35ad5262b3856f9ad5b1b92ac729df15383dfcb512cfdb

    SHA512

    d192a0f1afb9b99e624a10b1cb813f504041ea357f5d73c38fdfde30021a432f2b288e4dfddfc5131705ad33b7de59fe5b34d69b772d9603ac9cc41a88b21cca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    50f51644cebf94dc425ac93d657f76a7

    SHA1

    48bb38d89cfd5d654adfcb96e0c8bc0ea42e65fa

    SHA256

    5e4ed63dc001f17adeebcac4e1e2463ac0a28c98faf85ab76ea9c7565b6fc7df

    SHA512

    84c704cf2b8c509fdee50854e52ff0a229181304b57ac3dae9d02b71e417940e1e434aec5c0b46f42702137c25a7a1b5b40b5f96543e2698bf9f5a3158c88da7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f6628e73368dbd45a5264ed1f90b5516

    SHA1

    53a24c318b8b78e7f21820ea8a26d3172e8c8416

    SHA256

    9da151f803fc1e003e058f8d1112b217a024763e683933a63e432122926b27ef

    SHA512

    ba2a28f54ba177172f34a43dd0641052f86e25e0ee222199c8d4bde3ea08667715222d9d3f418ed9559343b902a3eaa6219e2087d7addaecda0bad54cace5847

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c323222642a5830fa0d64c94f627df02

    SHA1

    41289ba2331ee336b6502116f81fab472192eca9

    SHA256

    2b4b59defd90a08af037b6dfa4823dab7d1725acad0f259daed4acc04eea22f9

    SHA512

    f7b346086d94b2b2900702e95b36cb349cbeccf90f487468a33ea695407182dd80d886d8c0a3baad15ea7a1b962767b77b25533b73c64ff849c79bde4b7d5c9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ce007aea73bd9f2fb5ef2eb5b0f98ec8

    SHA1

    1d50c2ee76ae6f7f7229317d6f6c88a1c1d9b0e1

    SHA256

    fd2bbfa352b7c82c3e177be4f7325947e2752e4efb7581c923fddb686739c1e4

    SHA512

    9300f2267a13d7d31a473664e9201399e1c16fa72f6791c09e7985bbc078eb22fc00a925a76f2b9ad3cca7dbc3a1828d138c8806bc545a6918810f8a6a0fe68f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d8bd5e5ed26fa7e2b37630ad4b2feed9

    SHA1

    197b572418c05907c80db47239dd0727095bde89

    SHA256

    f465fc0a74552e56a4df8ae31fa856e555239820ed0583dbf388eac1aea03730

    SHA512

    129db1175b137786075d8e638d02b290cd8907bc448815aa8acd2df983bd9470aa2eb7043b484089a75ed86fb2bffc0feb84190ac9415b3417737e24fd4eb7b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b8c39a171a5c63398aa6d14583ba2e9b

    SHA1

    e50fad85e2b993c2181c4fa23bf8d41bb1e216ae

    SHA256

    af1acf916993e8b0d237c75ed09c4570849d20809d452dc1e5b9123440e69fdb

    SHA512

    aead8825eabdf61482e5f044e65f9185e3fb8bd07f44eab0e1039ba75b3121917fe6109bbc268f90da60d24dcb86d6aa34ad9cd645a699d2e7b0c95d6d8fa728

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    731c29d2adce7f00f55695a8fa040870

    SHA1

    8eb9649fcfdfc4b39cf26c56e254fcec51b8c268

    SHA256

    03b32c092c3848d235688d509319759cdc5583b2f54a7c56037a349ab7687b02

    SHA512

    2f59cfc57233fb913b79ee182a0b3495ac33fb9062d5f76ac264ae03d1741b987ba86595f072f5c01ec7340d2e5968d31c3de357817d65996795b17b4404e00f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    176eb2ff3c7edcc59b48b698dcbac43c

    SHA1

    d226b88dcf9e16ecea0266eeb93c2610c23ee262

    SHA256

    625bd01d5a4438fd27653b268b0124eb26f6e1d307fc32a52d05c657c3b24e10

    SHA512

    370f9cd2927fafde0a59ec004000bcbc97726747d435296b8feffb94a0bd086cbda521e5a98a1c0e3ee781045c1bc27e5cb4e45029082e024f54e0485dd735dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d96632feb27b81dbe017d65544ed258

    SHA1

    dcad18d2a7919d695cb9a17220faa63a4afdaa97

    SHA256

    42f8df4f4fe3c314391a19c410f98bd4a73fcde09d7bebe90a8ed58fb794633b

    SHA512

    f50cde31714e030b0c77536cb8e7f3790df9d32ebec5725e984187ed594cec13671cca65c9e3a1fa2f0afa44b21077bfb7f61748ea1cb9e84f703a092602b838

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    757db467badeaecf1934618ab562207d

    SHA1

    d213ae9471cbd4e7ded7aaa21444149f0ea78650

    SHA256

    0bedb09605981c32f615d4734f544f8c92c77f6099b5036cf8dae11d3921627a

    SHA512

    28ebb304eec1e54761f517a3213e26bc3975676f8fbf751252a2b0bef647bd1a8846fe524cdd4387dbecf0ed1f8b5524a46603040015caf33cee8103ba580e9e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabEE87.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarEEE7.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit