Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

542df48bc9...8.html

windows7-x64

3

542df48bc9...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    17/10/2024, 23:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    542df48bc966a781b404a12cce782968_JaffaCakes118.html

  • Size

    27KB

  • MD5

    542df48bc966a781b404a12cce782968

  • SHA1

    b6e5632bb4e22422b2bbf376ac514bd2f709ac80

  • SHA256

    817a824dd470eb9acdf9959ecb495e5d0be063a38dff1a430376308eb6745052

  • SHA512

    2dde637d209a598147fe9c76709a2e214e2a88fe2e095063f98a72638f8b7bc1595a7225617c5f3083de7cacce2a6049d2ea7ebe5d98f2f9a301a34aae5deebd

  • SSDEEP

    384:4miigGNeNq0unxg9c1Xa/igqyYnqPUhQvpueIoIOMY0r9heqq0unxg9T:4+eQ0unxgu1Xa/igqyVerjet0unxgh

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\542df48bc966a781b404a12cce782968_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2480
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2480 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1368

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\103621DE9CD5414CC2538780B4B75751
    Filesize

    717B

    MD5

    822467b728b7a66b081c91795373789a

    SHA1

    d8f2f02e1eef62485a9feffd59ce837511749865

    SHA256

    af2343382b88335eea72251ad84949e244ff54b6995063e24459a7216e9576b9

    SHA512

    bacea07d92c32078ca6a0161549b4e18edab745dd44947e5f181d28cc24468e07769d6835816cdfb944fd3d0099bde5e21b48f4966824c5c16c1801712303eb6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\103621DE9CD5414CC2538780B4B75751
    Filesize

    192B

    MD5

    e3c0d1bcdd7dbbc2e7748514de4b4763

    SHA1

    f2f5af1968edb176ec6073a78552a7a6a1f7cdff

    SHA256

    7800765c7ba641423e82a7c2d58b6f03e0ac24d606a7b3accfb2b8f4afeefd03

    SHA512

    bc492718ab15df37bae72108547247b39eb4d29ad27087ade3aeb3c0b95c4d2ac091651f3bea4885f483f35c767f133ffead15c726300618bc455521448798ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    c0964986fd820c26faafcc4f2f0e6c74

    SHA1

    863fcddd55447046b26a46c762ae9784c2d743f8

    SHA256

    2c51d0f233c370325d6e9ac133e908625a01afc9d76a0347c0ee0043eea8571f

    SHA512

    b668632cc18b6ede8bfefe07061593d1e897f69785a2b6342750e6c84df1df12a5e8185405c29bfc6e5529ebd490a49cab44f18a0cdc44f5145fc7c409f60d0d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c0d196ce9911d22c2253b81262b4ee12

    SHA1

    3c9c5abd3ab8ba431c3010c6a4d735a7387a0050

    SHA256

    eebc462353812cb68fdb98c6248c375bacda24c4d19e72f264d1ed12d96e7047

    SHA512

    ea7bed58287f5e7753a607723e7984148d50c0e3427760185ac0bd86d91faac69a067d50cb338900b51765a721f88f839371b2ac1543b07da0717b517ba245e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a5da036e7d25a02ce745143a6f58427f

    SHA1

    6338a1349c5ad56cb7649ffee9ee89b00344e384

    SHA256

    851d17ff8ef8c599ed915da63b5390c220933c49fb35031097e5ce67327023c2

    SHA512

    91aeca8e62776e1e8032bdae693afd384baeb99eb6825e3ddfa583f0021113da19eeba9e832ebd36e55647880796478814e67b5a27f59f15a3bed7d7101fbd4a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0d84837120edab559bc507546e6ce547

    SHA1

    c5ac0c3a72693ad7ae1bcf4c74b39ec707a82d1f

    SHA256

    817916c3f658eb578ff1db77b554b89aa27b835df821397a8720aeea8de42726

    SHA512

    089b2eab0b565581cd03b2a5551bb500e67fc412b43dfcda68a893174312d07d21106bf7ceb5ce8a9855b005f7780f227901663fa87674b06b9ea5493d3e9ff9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4e60edae1741732650d3081db154a36a

    SHA1

    fa106c53aba043e98273ca7fc3f60fd8067492f9

    SHA256

    aa2af16174e88370286b41a26cb4bd90c75f8afb329cf4492c8254b7497eabff

    SHA512

    86d05c9f9ef4776810c91898125ee3452c398b531ddb088f7fdd68f86f88d118bdd0c42a623a37189acada40c7f3fc309a77d3f24f712a47edc363d5df4ec423

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    72ec4c0f3e432e49712f16fe43c51c15

    SHA1

    67151249b9df86f2ee3fccef455f644429b55866

    SHA256

    875bd678ca197f754cfcea1f110ccdc5baef0b4982d783b2e96591d75f8459a7

    SHA512

    eb390eac09341dbb29251dc7e0d01120e0dd1f3581deed98f6cb14db80adf35e95a68015e10b1c3e7e562afa40feb897b023abc0429ebb6ab5ac8ead8e29d3a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1126e8ea768b41e19ddc211c50a3aa16

    SHA1

    88d4ef0ec061bc9133693f7aafaaf99aa8afd9f8

    SHA256

    0b2b8a1d739e26ff1f99eff649bcaac5cfb46936c91d4f32a998e35d964bdd05

    SHA512

    4dd7d7acc867815a16d4bfb3ddef8c15108996d78bcda89a0d1f60385f953c93bfb974bbbb5ea1526ec5c8c9b165866f7fa97b1a91424d0c0705ccc86e0b87ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    61c1d14750522da599da0737d6ce5f52

    SHA1

    4827ad0f0ab0dfebeb0ae79c4eeb39cf10076815

    SHA256

    1acebb628b46bb68c532a8dbba0a84762e344678818f7a96afe62d121acb74f4

    SHA512

    56e1ad2d8bb61a7a18189ed801d9409a08faa8adc25c393c3f05a9e94fefd5137c15f78975f127f9d820aaea002af6385455181ed6bf1e78acd8cfbdece49750

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4c814127c7b74708c2d55f54bd62a278

    SHA1

    e8b311ebb6653d595644b37663e16aef6c2a3d8f

    SHA256

    89cf64e14059e42aa7601f0f3c7b6e92a90463b223148b9b600a911ad3cb577c

    SHA512

    e30525d6b9a4a6dae85e6505cd985239836e410aedf49343569d8eb0bac1692a9e83cfc00c8a4ae0e8bd1b53d9fa822cd276aa21204c1248b8b3b21efee5a48f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    87eede79ad66a527d802eac65eec3cab

    SHA1

    df92a93efc09e77d96cc18be1a5db8d915942a0f

    SHA256

    206a4f1d19c8c0af4e78df442b42638523c9c262e8834e409b703aceb1af3214

    SHA512

    92ee0f89a7761a4719e5011bdce02ede1ad23aec1d269ac63a5da12ad14c884e3b1b533ebdc89ad98819a808566cd5e274e4a2ac90a79ddfb95e0af07b6a3bda

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    300d3f765cf9039cc8f48ae5fc404671

    SHA1

    8011ae9e63374911536bca2b48539674b01f7ca1

    SHA256

    b34bd68a65c015c1766b5d5c5876262ac2158a52a0ef6a8b57043df202e5bf1e

    SHA512

    30ca62d38dc288acaea06cd066c5d55635a2c3d22fba4f1e8572314b3b059da335a9a791044ad86f2407a02903fb2866638dba069a9808e45a131291afc2461c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    089ee4ec38178a12ae0d903705f82348

    SHA1

    e01610be03244c424ac3246c80aef997d5120335

    SHA256

    1ac936b2f777c4316e9c6ec541ad79ffaab74162ea738193acd76eeaec296aae

    SHA512

    ede661e9787d18acb16c6db2aacde529382d401c376ae85b0f2d969a9da22b3830c6dcd7f893148aaaa9c66e0a77babe7eb04df429a02bd7be8e2fdf96d32bbf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    3a9c7dad324893eeb8b5bdfd3c8e76d9

    SHA1

    d2bebe18d435f1534aa4c5c10b28d7943fa0a8d3

    SHA256

    95370d133df41c112f71f47d97e7978ab260c075585afaafa24f3bcc074c3635

    SHA512

    026855e81f0959108dca9a4e1481c6b4abc9b333962f070d7e69c408761d6f8504eef66524ff94642da360b667cfbe2da26075fec294d438f5d101989c5f3e16

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K3VL8XEP\searchclose[1].htm
    Filesize

    162B

    MD5

    4f8e702cc244ec5d4de32740c0ecbd97

    SHA1

    3adb1f02d5b6054de0046e367c1d687b6cdf7aff

    SHA256

    9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

    SHA512

    21047fea5269fee75a2a187aa09316519e35068cb2f2f76cfaf371e5224445e9d5c98497bd76fb9608d2b73e9dac1a3f5bfadfdc4623c479d53ecf93d81d3c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE071.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF6EE.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit