Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    172s
  • max time network
    184s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24/11/2022, 06:36

General

  • Target

    b09d3658aba7bc982f710da3d8d4a3eb99cbd565f92d83bd71a44c0c6f58a38d.html

  • Size

    42KB

  • MD5

    71ba35e1d99cda384dd16df1255946e8

  • SHA1

    0c3e2c86e5499c65a70b376da2589aa4640b8fd0

  • SHA256

    b09d3658aba7bc982f710da3d8d4a3eb99cbd565f92d83bd71a44c0c6f58a38d

  • SHA512

    d40660333d45f4ef40d5552533ca7b1dbf2d513a3f087e99d698f0d5a7144c387fd72206a9f3874e98d38b9eacd007fa23670b062c4dfb9d06726d264e4b420a

  • SSDEEP

    768:bwi+B04Zyn3kbjF4rZ1EFLxNFdjNRqWdZx47eW7m17u7BlfFi:bEB04sn3kbjF4UFx30gV

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 23 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b09d3658aba7bc982f710da3d8d4a3eb99cbd565f92d83bd71a44c0c6f58a38d.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3008
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3008 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:452

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads