Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

©Contract...71.htm

windows7-x64

1

©Contract...71.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    68s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    17/03/2023, 10:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ©Contract_Agreement_Koerber-supplychain_6CMOSK71.htm

  • Size

    655B

  • MD5

    839cd7b10ca755e709b36bf885e8d449

  • SHA1

    0af8c1a4634d13220e3774d12ef19a3225eafc84

  • SHA256

    c1918edb8d2bf99eb71a219e53741cc028561230a1b8d1e1d28ab729f0f64f64

  • SHA512

    ac7b8582d166f7ea726b2db1ed782d80643352aa2720639f05fa25aa072942fd520f524779f04b00e9851f6913753d259288844b7854bf0569fde83e721d2f18

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 8 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\©Contract_Agreement_Koerber-supplychain_6CMOSK71.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1956
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1956 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1568

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416
    Filesize

    1KB

    MD5

    55540a230bdab55187a841cfe1aa1545

    SHA1

    363e4734f757bdeb89868efe94907774a327695e

    SHA256

    d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb

    SHA512

    c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    61KB

    MD5

    e71c8443ae0bc2e282c73faead0a6dd3

    SHA1

    0c110c1b01e68edfacaeae64781a37b1995fa94b

    SHA256

    95b0a5acc5bf70d3abdfd091d0c9f9063aa4fde65bd34dbf16786082e1992e72

    SHA512

    b38458c7fa2825afb72794f374827403d5946b1132e136a0ce075dfd351277cf7d957c88dc8a1e4adc3bcae1fa8010dae3831e268e910d517691de24326391a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    61KB

    MD5

    e71c8443ae0bc2e282c73faead0a6dd3

    SHA1

    0c110c1b01e68edfacaeae64781a37b1995fa94b

    SHA256

    95b0a5acc5bf70d3abdfd091d0c9f9063aa4fde65bd34dbf16786082e1992e72

    SHA512

    b38458c7fa2825afb72794f374827403d5946b1132e136a0ce075dfd351277cf7d957c88dc8a1e4adc3bcae1fa8010dae3831e268e910d517691de24326391a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ae8731fd3223bda43fa543bfcfa5745

    SHA1

    541c304c0625b3ee79992f1a58d1c693b1247bcb

    SHA256

    0ed7c2b0c516c59779e5420e6e74c6c4577f40cfa839317cbd0a408c2749a1a1

    SHA512

    7e5fac99967e9408e5672db0194df51f21de83cac24b7feecb3b2d58d374672cbb1b9ab59acd05040f9bde1be73713806b29a53f2e914d8e618238d5f06ccf94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    735628edcfa73f4694cc6e51e6dab44a

    SHA1

    a5305ea84b14a197277756f199b67f12ce7a1a7a

    SHA256

    234274da2f2eb8d0ab0e96f30fd6834af6d031b3ad4b59cb529c84ada8dd5e80

    SHA512

    0da2b98fe8714be9bff9412c9a9393ba8f87dd67f8e9fa0efdd15996b56dbed2ac0099983cbcf079b52aead1809991309520bc22b69108caa083140b3ea1197a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a44aea8f568069bc26b50b62c4d55405

    SHA1

    d208a3eb7b0b8678012f6e72cffc2b220fa59a6c

    SHA256

    701f3ae3cbc7badd55015a2dc31ca825d4b72c680a753fa89ab9df3a94cc98d2

    SHA512

    5caf98a87371097ef5ab35ccb499ea6564e9a09fd8f23e6bd5d013f9c07ce4f4bcf5129073961e249ac8591f216422e4c95c2a93e68fedcbf3e12262ca850112

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    95bfcbb26d5157c803c6795a045ef18f

    SHA1

    7c13b2d66ef2831b0afe61720a057028c56b4d9a

    SHA256

    a50b31dcb0e429ad430d701152e47b96802d456ead34a211c3d3d0fa726a77f0

    SHA512

    656a5d72d868533782cee1d95c68b6d61fbabaee01733b32678f2cc196578a317b14cc3dcbad4b20aa3339a45c3ac2abd279ebb78a66a6dc2052b76b8ae98532

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13b1b149fe259e7c809a90532aa286b6

    SHA1

    fe047a3e8dc1dbd4234274e852dc6afb561965c2

    SHA256

    b62b20fd6e2826cc9d84d5467002be77a3a70f6506802d73010a570e72a39a30

    SHA512

    e63946f7ea9d6c82c52060a83e725bb73cf3c61f7b68d4a6c2ce1b3742bc994183c711c6b97e3ca20b55dd723199d0450db36d07c6bdc5de3511fde19fbeb2b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    87ad5cdf97bf6d7e8e8e68d64c9e66c1

    SHA1

    cb962e07aebf8c2b2608d3aa5391295ba23d1750

    SHA256

    db773313950c99927670eed8b3865cf105bd6e2b15a77975a7e73fc9195ce1ef

    SHA512

    301b5478af996553b4eeb3e65bdca8d483d16acbf579d61d32dd73ece55994e0cc206f72e3718582533e9f6933b68cb021a3d6835f1ce80b8ebd63f2dcb8aa1d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    28b9c54f603561a10d92e3ec26b8a220

    SHA1

    1f867e9243db5d6e1b173e23850c2cb10e7ebb56

    SHA256

    f577b31087bc223f4f30d3e8bffd57f526a987c20fa90c74b81e9d370e76ff28

    SHA512

    c57091595a77e01a12be5a26c0e4086666c48ea07fbcd8e930c1f1158f14edabe31bf6115163179507fb1c184d9921ec7f784e92b24aeee041ee0948b706d31a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    426f2c026c5c89f5597331951ccc168a

    SHA1

    d60e0730bd3297dc9248d7a42484127d8bddfadc

    SHA256

    4ae2054f64397fd06b33fc93e5482a6fcea532c10954eb9561f22a4daf72ea28

    SHA512

    5244d397f717c32e650f86962cba2537ff927f43be835b49d293ee40f6d54be26cf05987b8cafe57d20c8876a826b83e86fc468aa3a98594d6ac182fd15b2bf6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a55379556d1c0caffc6ae1e44e2719fd

    SHA1

    6ece1a3d01a23f09b17e8e80db8eb6ec11b61517

    SHA256

    009635053e552592a022ad62fa103bc0bf646c9d408d24942db2a75eed89a059

    SHA512

    5fe29b5388b712d6ae134bb8a81782dfa7d1bc584837e728eacfa65464062a93a6bcc31dbde1762da0ae75d7c1c33d4a28f1935bbd1404c92034c3e49c7ea1d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3ae74f3bc70af77f1d3b0e8b6c8b6c11

    SHA1

    9ce54ca5c93afd77c257dbbbaa797eb93d0fb743

    SHA256

    ef3d9ca3e4ee0da69d4e946d29e8e7d67934b9c421500d0969d68b324e63789a

    SHA512

    e1b385f5e1adc78a5f8e5682d2022cdcf10a25b414e8fde0d2dd9c7c92dfaf96527daf1f34f6dea9013fabe829fb1a43a79421e456aef6212f7b21ff721050ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b197639130c7d23470331602adfba336

    SHA1

    072e82a26cbf3ef36b2224b278edd0aed4fb26d0

    SHA256

    236bbbeeacfa875a2448caaa2081d6fa492ae1882883a00b8d87f20f3fcbd191

    SHA512

    3f1d71f7e22617ae6203fc4e10cb157f9a84c5a3cb2071346f55de5ebb0d03e14903ac1a2475e0d04733c49b8168a5aadd73d4c39b38871531d3f56483f6cc41

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f4ef4c9d358d7e18c9e03fc2a1bf5dc5

    SHA1

    61bd9c7f08ac93b99362123293e461660cbffaf8

    SHA256

    03bf485c681fea1df1accb9af227e4cb9c16f533fcc9e9c714041ae1e1d078a0

    SHA512

    97d47b4c4285f6a78bd7e53d430ed809003dffd8c107647579665b6b8f8fa9c0b37abdebbee7341b9f4112d092fd0dbc9a0962610bc95039dfecd52b78ad6e94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c57879c5fe702d5c9b1266c1d1ce886f

    SHA1

    bc70f307ba9348bda7964c79a98a9092f601ec56

    SHA256

    334a6303ec58601b7abbabf93c36104c2429313e46acdc4b05db5347f9d3e9bf

    SHA512

    38e440354df1444bf6b233a11e901ed1e91602018c39eea5ba4debb64fc8a3b9fa9e296fe3461b7705eece1733f4431034a0b5fb9b26a129622539882cfdb58a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    43b170215e542ecf4b3357d84b49b8a5

    SHA1

    143d945851e4c5f594b36d2be984e9e8afd360b2

    SHA256

    4f681edb9d5555beefcbecb176cc5307000597bf2070b26aa2972560404a5a03

    SHA512

    e55e776c5df7fdd3c0b68720d236480950be3460c8712e9758c4db1cd8159a2bd8116b10c63dac0846dde66bbf3ddc0609ec8601c2fdb0e48f3b1feede620c1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    097cff0d9135c75d6d9674974b8f3aea

    SHA1

    a96ff31e184f6792c43ae23a4b69fe2c0871dcd0

    SHA256

    0f542af963e9d896c918b77ae1794cf170edf45a0d5080769056727322d22b19

    SHA512

    8bd22d50c1ce47422301df0246d4fe21beeaf4f1ebf681dbdaba03209a128319db3f899a1609d3b42ff0a85f5a016e96bc08b215e69074c33f51e24bc6646b99

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7ff03bca7f2a5a15769ed6c67f10cc1f

    SHA1

    54cb388585ff6cfda2123320d83490bcb1c134dd

    SHA256

    5f131c0bba3ec68164c84f14c6edd4ed215292b1b4c45d2b6b94b4cd87800335

    SHA512

    41ad23a8edd7cfa00fa76f2d0b0792c2a6b61b866e83dc6760effae334a0d9081fe2b343367d0ca24adcf4a82a035e6f49c60abeeb08e3b20639fafe778427f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5a90297264d0b530da3fa7116f5e5959

    SHA1

    de988dbcd06b0efe21865f407b544029b7e3929b

    SHA256

    416150d9a2e1ae472144b7cd7ed472f9ea0614390b875e111ca8f8176be6ee46

    SHA512

    d25d5ab4869a58d534363a56148c9bb162da4f4ff52f174de6c095070434c2ce4a24e0695000a37b611dd03dba0654ba3734d2d75c766010a2d36d74c473247b

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7BYN4WSI\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab624E.tmp
    Filesize

    61KB

    MD5

    fc4666cbca561e864e7fdf883a9e6661

    SHA1

    2f8d6094c7a34bf12ea0bbf0d51ee9c5bb7939a5

    SHA256

    10f3deb6c452d749a7451b5d065f4c0449737e5ee8a44f4d15844b503141e65b

    SHA512

    c71f54b571e01f247f072be4bbebdf5d8410b67eb79a61e7e0d9853fe857ab9bd12f53e6af3394b935560178107291fc4be351b27deb388eba90ba949633d57d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar668A.tmp
    Filesize

    161KB

    MD5

    be2bec6e8c5653136d3e72fe53c98aa3

    SHA1

    a8182d6db17c14671c3d5766c72e58d87c0810de

    SHA256

    1919aab2a820642490169bdc4e88bd1189e22f83e7498bf8ebdfb62ec7d843fd

    SHA512

    0d1424ccdf0d53faf3f4e13d534e12f22388648aa4c23edbc503801e3c96b7f73c7999b760b5bef4b5e9dd923dffe21a21889b1ce836dd428420bf0f4f5327ff

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\FALDOQOA.txt
    Filesize

    608B

    MD5

    bc88e87bc3c3f58bed443dda06bf3592

    SHA1

    72fd0b54cb2833214a226645bbc5742327a653ba

    SHA256

    71552e5f6ff02c17c4a686b0d971d2f7a526d53e4fd17e1235ddf49495e17021

    SHA512

    a012561808f442801dc546940a8bcb58db2df74f16e255f754b62d0c51fdea29b04b2664f1d0438d0f19c1eb3f7324ae165b8fb14f43392a32205ea0bfdd3783

    Download Submit