Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

42baf9ff54...8.html

windows7-x64

3

42baf9ff54...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    14/10/2024, 14:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    42baf9ff548d09e608db46811a6ef809_JaffaCakes118.html

  • Size

    3KB

  • MD5

    42baf9ff548d09e608db46811a6ef809

  • SHA1

    bc4e1dbaf5ea633b9a71d80401dcd764f48a86ea

  • SHA256

    ea80814f64f4a935608f23ebefc9e57553c9b5d517886867c7879daf47627e8c

  • SHA512

    915ca4a39c99f21bda766afb2965faa11ccaa561fab739e70a6753ceb364ba72b319455ee9bead11dba8c54016005292ed9986963b1d366547d165e6e4e72a4e

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\42baf9ff548d09e608db46811a6ef809_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2280
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2280 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2460

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    41422352003924f4fe75a7cddc63a98b

    SHA1

    f79507b37a71d1867bc7e3c8a1e1156b269c7c05

    SHA256

    9e7be2b8e350b2cca90fc0a51961fc9e5b2615e7cc0500122e5790a97764c521

    SHA512

    1190deb571ae491518e092d5cd65f88c56f743562aa11e4a001d2037241acbf06ee82a888242c8e6640f475abd20e514184cc9cee1ba43ea12a2e30052496483

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f20ae58ea756522ec0ae338999996089

    SHA1

    586ea6c1adc9615ba81665e95de623ab9249d055

    SHA256

    15b80bc164ccaa52c7cc6251db0eb4247c1ed9bcc15d92e068a677cbf5a74061

    SHA512

    4c5d287add56b3192fe7b829ba118f25423e7c30ad4f0dde51497963a6842469c153e7b152c88790e1416d433549c98a5dd83d41870f9e7f289540cee27f7373

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    08f8f3ba4116255c352f99e795027747

    SHA1

    6b96554ac6f3b52f71d3442057623094e10e6b8e

    SHA256

    7474f5b5dfb93458dcb27bbb5c8902ceb2b5b033b967fd8032c4bda5c209af02

    SHA512

    9009a8c36a40fe5ff3c7b1a54caefbff8cbd2bbfc22d5732257dc376e1fc51ee443957af7fdaa60dee4f2895b12f63ee6a7e3cfcbf904487d346bed69e76352c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7c3614c1282750bc05c9f09312446b21

    SHA1

    53058836e7f1d185b1defadabe6ddc79e4618690

    SHA256

    5553b0974ab165f5e55208f8556d8622a9fadfff6e85b0cb5057216863ce434e

    SHA512

    caf5e8aa653875989e9eb54d0f49423fbac21665458db55680baccf09ba890a5b3a4fa5296d47afccfef1c087784a03512552478d9eab407ea63e32ae26a0623

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0c62fe5f7a15443307fed99aaea3c05d

    SHA1

    e4c21d044eea64c2851892aa128c7b9308df8220

    SHA256

    bff93a32c7edd06766d971e91c8d1fba5a69183f65fed3dc6611483f2aea8209

    SHA512

    44c2e746e58fc754894fb03ae3faad9648fd70beb143a73c84be83be5e1942d587cfb729dddaf405da63c18c0a9dff110bf0b2639ebeafbfbcb00e98193dac03

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a0c2839294aa94dadc4b5dc7dbfcc460

    SHA1

    05e9a378aef4ceb8efcef1f00ae44405c5916c2a

    SHA256

    494073930933a199e22dce22c2f0ef3ce12022a5bf6f8f0b45f3f0ecb91def02

    SHA512

    3b215f84d55ddfd6d8aadf4edda0899ae7c8fb65b0c24839b20aec387d2d4b6e0265a59ca1e4785d0169c9822d554f2f13c365fb7f6f902056a61c630b9e0767

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76fce1d0ad0fbb6dac35d7451faab1c0

    SHA1

    25f9616bc44250f38fc9c9ac9662db5268f78611

    SHA256

    f021e1479a34428e6ec60ff37cb3756c2600aafb280cf06224ecce05c1f43ca0

    SHA512

    3b83390fe157a21488859b364da0373ef735adcbb38d40942af01523dec14404e7d0941cb4f314f79ff3f4cccba07cd86636ee5c64b860d3669b04226a9dbf45

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f205cb01f0736e8ea6773e6fbdb2b7fb

    SHA1

    3ba3e1473f841b4171d03fdf6297dafe57bf03c6

    SHA256

    109992f8fc5bd12af8b07f6efde9d825bc612350e07eb49d5b423db83c946b6c

    SHA512

    c81fff76bf4642d33818713bc67550ba38ea1af7eb311de6aacf8082f985486cddbd3c4c8774dcad5fa9e1d92b4f5f5393544b3a2881332033b4d35d2a48a876

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d85ba823c20926277cfca305ff70827

    SHA1

    2fd93b8faadff013b8ced84d8a7acfb0e12f4da4

    SHA256

    0b171ca7f8eb785a6df51b9e1dc7cca421dd4c6f96a27afe74d421631f661f76

    SHA512

    ea2e9328182f3e18f6849358f22196d3ce0387d4f4a123f71ad83e6c854e76a99666c1fcfa1cf0cc67d5406fc85951058e88ed35978276cb1356539c818af23e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a78374e0be686635d6c1ca6039e59144

    SHA1

    97be11c9c3010f749e43fef27bdffa3353e6709e

    SHA256

    8a5ea4eece42ee57f6f9597fa0b9d4302035bd7d606c29a151e65ae1023e488b

    SHA512

    047d55b001b90cef38564f47f69f112533d772424343beb9427898088e9f2a34a5f708d9a0dff8321d1ec42a76012f3bf6112e3cc3e53be20b1dcecb144e915a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0438cad13324dc29ec745b10c6c1f55e

    SHA1

    9e8d070f66da5a3c4c19d9e04ca209374c1d96d8

    SHA256

    8284f6a10fa31f775b700162374c69a2c49eb535978f33ee9c818a3e8002147d

    SHA512

    b147c715f7eb3249d80f8f2459bf120f6890e62cb36057903a240886fcd53483411722a228f001252f126668cb510875a41b3ee17d685b13e1f198c1d90d10c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07ea883a2b4fa565e1b3fc726bdc63d7

    SHA1

    3ea83015912d433bd32b439508139be759058076

    SHA256

    071151400f16ffb96cc89df36701f7b641aa895ba908e3fedc0fb58e02964e91

    SHA512

    8d59238449b7d885754a0cf1b2fc23c5024613441e04ab50393b2de2fdf065b683871ad2c29efd732d809ed36cae4fc12836f8355c6b5a2d7916ac38fc4f4e86

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac573aadda66b9f517aa31ff03dafd8d

    SHA1

    7147b769114f3cee0a4176eff737392edf406d9a

    SHA256

    5fed46a9aae6e75e1133690c1f011e84639df4a2d7681d50a8d81c0500bdefc3

    SHA512

    838b619e51d4302974aa7c6f8666c6837e0e6f57824a697b25faf252e29162c0cc5b0f7f55288620b4d4157783483bf08760096481a55056abf451e7d7de744a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aac0aa127deebb2ef7edcc3c05853813

    SHA1

    40eaf90a4d496f92fcdd4f10cafcba17ef742faa

    SHA256

    e1aabc918b9e462193b97b9f275087476347577245d02d0fd55cfa4bfe018fd5

    SHA512

    f09871915fcd3bc453f374ddfceb0828ee8e65e7073b8678225a02cc425ae33fcbe7241bdba88b6d5d78ff99c983a1e8a28323568967fb6267236e5e7bf36f82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d9668463cd23acdb4046e5f1639d8fee

    SHA1

    d2debd3bb66d4beb625f166b29024425373c6fc1

    SHA256

    2ff211a66451b250fda9f19c7d454752e8d4d1f0e5bc588f92016373b6a53724

    SHA512

    1261e398aae1c3654fc9022cd54ef488676c26ded8f25049ef61ae450cb98c8c7196c96e41fb2bcd5cd275a04133d8d2d11b373d839f44f507ffe1128085e7e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e79053cdd415e00e9356da2820e1cb01

    SHA1

    7ef91aa7f213c00121ab328a2cdd164d3258c876

    SHA256

    bf70542f7c11338adeb6dc49d5084b15ed3698188ccf5450bf9e1c78f004e0a0

    SHA512

    8c817113c7efc4d4a1a4f84bfd2a47881ce2939295d63db66a094007b3747f3e67c2961ddea16fbdff3bea295e3d709c2856057326d8cc8a89b005daad5f34c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8d695b667ab4b1ecaa46bc7de6fce01a

    SHA1

    4100b13caf18f74329312e60c5adf15523456b5e

    SHA256

    834522095f8620bf33114b6bdeaec95008ce5b2fc3fa2e71f20b8a49712a4c2f

    SHA512

    09bad26b10f20525deb695076ba5774847db0f2e108b31ae25855b6493e8b631c13ff4caa6ab38e480cee6f01b8b5852aac03c1de9081f66eac458066b848aba

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab11B.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar18D.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit