Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

405c46a7ed...8.html

windows7-x64

3

405c46a7ed...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    139s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    13/10/2024, 14:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    405c46a7ed06fc25b0250e49e76c6f4d_JaffaCakes118.html

  • Size

    5KB

  • MD5

    405c46a7ed06fc25b0250e49e76c6f4d

  • SHA1

    a29dde6269edce56f9618392347f713fcace47e4

  • SHA256

    18fdadccc963014d25b3fb49e746c0840da198ba9c742831c10749016eccab9c

  • SHA512

    704b902469fe91c2dda20415e913a55f07692bcf7b3abcba513b9b589ea53282c3551186fc1fd6618d102b66814d26d014ade2e92799f58d7cdef4b19671c64d

  • SSDEEP

    96:T9Ha2Bc0s+voUbDGDJyjXIRKDeWo/nym3rV8l9:pHaacCg6GDJyjXIRKDvo/nymby

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\405c46a7ed06fc25b0250e49e76c6f4d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2512
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2512 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:304

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6fffde5487f4f0fe2db3d8fb4f51db79

    SHA1

    128255936a07dc557c61f48682352ca63aae68f2

    SHA256

    840ff18697d925b3c80f565e5ee934a15fc0ea70584a0281496af678dda608e9

    SHA512

    299ea08d457021795cc4833f4a8c59324d2827202759789cd673c7b82288c1298f3368bb8aaaf767f3a7cffad50a5ebcb0e25b6e2d28d9414f8e71185b845b28

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    10cae935763d147d3e12fe2a8ccb20f5

    SHA1

    a98376d40322d3a65cce521cff7782d71ff7b538

    SHA256

    10b86dbdb82fe100a8fb1f208650ef1c02bd3a98323b1a41af18fdbcfdaad0f7

    SHA512

    86fefc993e657eacbe0f918f48534a77dc8e6bb37f3119c5c84f56541724d03fe9f35458db4f1e322a5cbc5d72b36ea959aa8307f1c4ba3e614926c360bc85b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0200e4ad004760acec4f96c15c6f2a1f

    SHA1

    969510d098bc260d9b53cafe50f09c5356cc8762

    SHA256

    97d12faffc10583bb3a925d8248aa953e834031c37bae2e51b7095b538dd7233

    SHA512

    aa59695b77103d9d7c867d754329537d904743230647e652312e433d3101dfc7d447a713efac156927b55dd4ecf5a3cd472f07f494d036db6957c4e32486f1b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5eef6adba29e3302b6f433a0b6b61e46

    SHA1

    32eb9f9e52e14085a9b561d6bb07c16b3dcb7424

    SHA256

    8e1ce586f917034b7e1f069acc1fa24dc419bec4115b0aed93cede9a29b3d624

    SHA512

    7fe2c787779aae3e72e3e9d3c83ab3ce7eb7deccdd903a2c409f70ae0d3aa6d30d55bfe14d52d3ab98dede1e9c3a46a5c423c0e4755f9a46da34ce51701cb379

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2e2be7eebcca73e6b92a6e3a23ed93d1

    SHA1

    cf02cd5ae61f5118957300116d6f4cbdcb83f89d

    SHA256

    44902aa12ffb265f38af9f96a0c6874be1a296edf1ac7be235b178c17e08467f

    SHA512

    a124540f9188bafdcff78923242190b6ddb7adda6d88e92b9f1e25df20f2f3e725351fff011bcf78f4987199f007652518f0e73a189e0b44a20bea833309213d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    20a947a9c959072b0fc60ed7af397108

    SHA1

    2532b1c24a1d7c797346eb02f36c4647647e27b8

    SHA256

    89f13502e1d79daf15923aeae00d679621ced12032cdc0a2aa60357390e4e09d

    SHA512

    ec824a44080ad042311639d25336a542462860ff213f12bbfada44f43c6ddd094f53cdc9a6e78c7616b9c9ce476bf2ab1869655dc5ad784b45dfa298c084d146

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    78b5f249bd70ee024b489497c50fb3dc

    SHA1

    26f9999440aec69af84bf5b2a5d3130c0c290e1d

    SHA256

    b9db0f70e954a72551b651fdf230bc968fdb5e204e7bffaadbcd63b3544a8885

    SHA512

    0f64ac26b952f203cd782a5c925fad420af0c841c3b69acfd3ca002ec906e6f6b3ebcc20885fea5cdaac976eea78f091e76eaed7a248ce694fb9bd0b44764e9f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b3b1afd18e7c172ce0530fd70ee1ad3b

    SHA1

    f44409af368af23d3c38f29c4456feceb92c6b3a

    SHA256

    e399f3b2f0b45e6961f7d9f383fef91fdbe14726e0d261a67c687c44316bdb0e

    SHA512

    1e9c497966440467037a5c115ee754d7a1330320aeeec14b2590d63d5c6bfa5c5c9aec6d2ecefde3a9b7359c5b276b2d258110db36d1f280f72c02f4dc84cd60

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA3D1.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA3F3.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit