Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

554a985649...8.html

windows7-x64

3

554a985649...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    18/10/2024, 03:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    554a98564918ac56d127817b0b5e44c0_JaffaCakes118.html

  • Size

    26KB

  • MD5

    554a98564918ac56d127817b0b5e44c0

  • SHA1

    cb6ba6dfcfaccb6dfd0a2e5d634817bd9a7da7cd

  • SHA256

    dba898c5122d30c8b9da4bae182b2ea5395a0fb8ea0e0ade4603ecdc6bfb8369

  • SHA512

    4e8639833f1545df33d5825f04505e67f005d4756fcd011657e7e9948204cd58a31bf6ea705dced90159420370c9f9979b110747205742e64692928ba6c354b1

  • SSDEEP

    768:Slvta/OtlM6k/EwCjN8SD2LsfS6RxgyMl+2TZowZjCa:Slvt0Otl76EwCjN8SD2LsfS6RxgyMl+y

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\554a98564918ac56d127817b0b5e44c0_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1920
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1920 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2320

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    7c1bd15f0111bc181b4ef697e705af5f

    SHA1

    45c9bd71f1f542a9a638646d943e0245b547dde4

    SHA256

    95d21a45cd7c75eb8f1b0cb7e9e5e6384e66681e6b36269abe85a1fa6bea9acf

    SHA512

    1741358e22126217577af487db0b0736f7c68cafff390f83cc311c78205974aaede076434b56bd98755d494ca463928a6ee2c382c1eed7407c3af881434d578a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8680d411a8b177b0362d18414ddd5159

    SHA1

    68638b3a68441246cad69d62f80672a344359174

    SHA256

    22fae0275c23bf82c3f1712404671b34af388aab0c89fe6ebc306bfec2046004

    SHA512

    7b0ee488390f1dc3259fe38ce1a73a4343d61c49537fb11f463f5483df37878f1525be09a04395ae78fa9c8fa0b31716fb32eab2d931f52c38cba72f412efc49

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1db65db876ed5f70502f42709a693285

    SHA1

    b012208ce4b3262669b31c8a80ec02bf65004dc1

    SHA256

    bb044fa61abfc194c66202f1900b92cd126bff4578a60e66b1d7bd22f0a47b6c

    SHA512

    fc59e026310d02c358876a544e6ee47c4c28d178aa93fcbd0d51ca6a1f965e27181c966fce42e5c19279bb5b90d8c30c5fd1ad3529b55f027025f2ce4ae4bb54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e0ac435285777e4a69611af1e18f1de2

    SHA1

    136288d3a9babd296d0b85ad554d164f0e1f6627

    SHA256

    4ebfc287db0fe3583e7858132b91f9ab151c5dd621e4858f6df4af83366797a3

    SHA512

    e62c520d2ac8a914249dc4937728c7b9420db940cf4c58b1176dfa4ef16c83bd1baa116e4ae152803a839c0663ff29a8ce6404fdd2873ff6cc988cb549c28f7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    295d819155e61a87119bfced4fa659b8

    SHA1

    5087266c3ca89b44d8794214d5d73b6b55728739

    SHA256

    ebf04f339707789df72816bc0259514c94539a9e8f84e5e587828b3702201ed4

    SHA512

    31eb5c3921dbc92f278f8f6ff8379ba6f8da0af3a9ef479e92e6ffe38146fd2af4c158f5f208fd7868d93bb3699d24a5e7343d33061e2cbc54b8b47b120a963a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f9fbe9a3c2a345a0af47028a934c9a5

    SHA1

    393fbe32e483d5cc4380eb7599f58bdc496615d8

    SHA256

    5bc1957b252656ac6451154c9ad1065c9e52ca700d03ca98bc586781747b170f

    SHA512

    33f1605a47758e67736f53da495652924ade476cc81811a45c28c902653ced6a24c1d0b3f422ae71f6f02a6c28ea97952a7d31d96ffb859ba686f0ea4d68f0f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    351ba85dab03b0c4607005515399b9b5

    SHA1

    ed97acaaa5946e3dc1fc2107e937fa4e7c6d02d3

    SHA256

    7f9ff3bbf9392cc983e6b4617f5e44ae7e301dadd0bce158dc1e977c68c6ce16

    SHA512

    6fca093ac8c114f39054d6bd80a84036780f52ba98213efb40b4510d6fdf146577036deaedf8e49bd6f9ca8d8b8b58fed2234c82be582e4ff5a27b624db77183

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    61808b90d9bcb3310fd3bb2dd3718914

    SHA1

    abd9f26a1db1723f00e6247b5d121648bd9c3f1d

    SHA256

    52aad8922f638254c19591e93b19425b73a77c507747496f240f2434b9a62b28

    SHA512

    62ad78639928682a664d4364d6c2f0d820b2b09da53f81d0143eb49b3337a98327830bcdb650547f6e4119b37915be0c94c10ccabc938a4a990f7de347cba42b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    152793b98d8cea2c88807eff965fc2cf

    SHA1

    0899adb208cf5c009de46710cd4e8d838f3a17e0

    SHA256

    17977062b0f25fb51bf3cbeca23321ece6354419b34b46af97e49764013ebaa3

    SHA512

    b17e7f71117e384651b68fbe500014b66051bd364263a53d54fde17120edc9203e632930c20d7e7a16cc220164929c15f59293b8c5a4c4b1c48803009255de68

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    065c799aa626ad838b4bf653aec2ce60

    SHA1

    8038575d116de83cae24829802fe3c70bd04de12

    SHA256

    0c6a1c20bfd79fa857323e6b0c43a9db4baafd91840911b9bd448f9425e0f892

    SHA512

    758f9f9685d7d231abeb788c418aff74a7f4acaae6d1ad97f8e3481786b53912cc7784000273a9149f6f6db0abac9a04b413c519b146096342d0a822b7674e4d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d66c14c3ee2225037e2a27605c563135

    SHA1

    c501fa6d8283cc7456161b1d33fad145660d13b7

    SHA256

    007e86473cd59f519a6eb90903623bc7a6f94df4e3a8a44a1be11cac38ccb929

    SHA512

    8d2d3fecaccacc1f24539a6b79564acbe6fae4c7d9f613e4484634f3eb2fdb4447b564a8b6e71db8bec8d5119939a050245b7a91387be21bdb0d22b71013afcc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e371a9014ad531f24a415e6ba0007c0a

    SHA1

    9613edfbddcb0d70598272e09530545e80309806

    SHA256

    9a038bfd8e5cd7834c88b57312cd5b2eaefc3931ac3241719e493650a6bb4ed7

    SHA512

    192acde564dde813723eb5e6e59cbc7f9f0c1f2a71a271ed10b35aa3c45b2ee3715dfbc0a227ba9375ad2be878249ee5dd63f5a2cf4db06c1ef95e9a63e0c82e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac0bbb437e71d476f6bd70704fcf1185

    SHA1

    250f043a4259983d018de220c7dfb9e834a87f93

    SHA256

    39008850ebc5a5269bda484704c54f39d2201c8790b214a05f2e0fbf373c0fc1

    SHA512

    5c33bdecaffd378dfe75a00bb2a6b43187613c4ec3e0159632849ea1c85da40fee434618b0a6c500d13fd61342bdf854e8281dbe6527b47986068d9c5e3fbeb0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3382f3a19ea17a96c0c99c4297e98824

    SHA1

    1bb136f11e62a82b89f6993e7260118c1672bda7

    SHA256

    2f21efe058a7acbf5fbd46629cbac526774c8958dbe17f44635f1abf1aaab557

    SHA512

    9d5d46e71f15ca1af3eb9efac15d15a4e461bdfbbd2a10cdd8caffef59a5f646ffd97820bd31c3641d0b15a8961a7c0748a61c1373b28b7b062599313d0505f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e09c295528af65e349d62e44a90c4518

    SHA1

    b693fba274179497f9b75dcbf3991bd163a12dab

    SHA256

    83a37e40457b584d13611ba859380ef9d8ad2ae53640ca82103e12a9824b0dc0

    SHA512

    483e4a717558cf4d5ab80079d86af84530479fb6233f8267a638d9e32a1a8833fd84f31d43088d8354af6be4deca6f61060e0f43b2e28a9f2c3b3e1384d52780

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d03455af055493f3f435766f5872e981

    SHA1

    bbaabd4b27da5bc8ae2c5fabcdaf873f6a030e5e

    SHA256

    9a7f4d1c5c00f9c486e354fa8914d9f867ef7b69a6ddb98b59269232a8f6045d

    SHA512

    6e740ed31d0e0a594c41eac8847d88050f1c0c0401067f6c659f568a3755415926649a009e431cc8df77584a1eea18c100cafc6059749d19b253c1a580b7f77a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d269c9e3585f5ae4e76edb83619c0063

    SHA1

    4bd4b3c0d1631930a1f6d3267c836563eebb6654

    SHA256

    94d0d854dcc85db23f666cef7b67330218fc9543f828a987548c8064eb74cfad

    SHA512

    8093de2002bbba8d7afaa16e89ad58139833ef213b189c89c563c0e3b68423ed7e453344e35e2f75711e75eea38ae34c2439faee1e4bfdf019ca8943db0b2eeb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    5e261ea327f23afe99af753f6f43427f

    SHA1

    94fc96c3da147f4e8fbd850fd79db3f91d85138b

    SHA256

    9c04554137c27cd1d88df029eeaf54729ef51a74f1ed0b87ca63ebbb650866e6

    SHA512

    1d97e9f66a8d7aa2fe76894c76d8fffa318ce4e26d727e88eabd0f583d8d302d7c9fbb60547fcd1b2c7e9c47da1efa5995cf7f0fbd3661c00e06d836e547d8a2

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabCFBE.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCFC1.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit