Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

.html

windows7-x64

1

.html

windows10-2004-x64

1

Analysis

  • max time kernel
    110s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    19/03/2023, 12:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    .html

  • Size

    6KB

  • MD5

    0a7bf44a767d8763d772b09fb13cd712

  • SHA1

    3ecb6d8707dd27b53cfd5060a010a6f9802132c5

  • SHA256

    729016d654fa306c66568aee80c30ce71199c5da368a54b86b29c6c5c3c18f33

  • SHA512

    812c69aba683e02bc32727f149129ca31ac1c18b0ac7b1113720133fecbbaeb7b59c9d163a3b95dac58759274180dc0ef6e579228e82c8001411950666d9ebcb

  • SSDEEP

    96:eaR3CRsJ3V82pBYJm8JtJrRjPIvPB8izm2OlgHPvL57p+4L:eaR3CRsJi2pamYtJGPGiC2bHN7p+4L

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 52 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 7 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1048
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1048 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:748

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    61KB

    MD5

    e71c8443ae0bc2e282c73faead0a6dd3

    SHA1

    0c110c1b01e68edfacaeae64781a37b1995fa94b

    SHA256

    95b0a5acc5bf70d3abdfd091d0c9f9063aa4fde65bd34dbf16786082e1992e72

    SHA512

    b38458c7fa2825afb72794f374827403d5946b1132e136a0ce075dfd351277cf7d957c88dc8a1e4adc3bcae1fa8010dae3831e268e910d517691de24326391a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b7f69214de2fc0c385dbd74a1f37f9d2

    SHA1

    aa88abc66ad7856f4168476357905698ed5df9b1

    SHA256

    7dff275dd2981273ab11881733c9e961165945a1d314b2c39857ad91d8b89f48

    SHA512

    540b27443279fd99d741a0750304d4b5666d136fef7157e868f8bd049f035bf5b366c2cdedacef30ca5b829a506f90670b9ecfa91bab438f695f0e32aa94ef9f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee53c46f2c5e794ecd6ee7a2da111f97

    SHA1

    dadf41cebf7414177f2ce66c557e42c262ac3f08

    SHA256

    22b8161aa10f98675290ba262a4441bff4dab48ae68a05fe56ca355309147522

    SHA512

    45636c54f28e20917e511aa373e087f078ea070d61c133bde5d91c78cc69ed4f734f70ca03ce935d7bc3c7c0b7cfa7c853075169eb6a2fb2f4488bce3a9672d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b4cddc66176567c5beeed4db237bfb37

    SHA1

    1208de8b067d4cf1a790f64c78119cba814ea71e

    SHA256

    912f9219b126d189543b7ab3a788c65908e8c155ed1cd3a499bffd791ad08ace

    SHA512

    c6f18d6d1104672dd817de69a0b26e289a9c3025c500f2a2ed36f5661f574b54d73bef915de875c1446c2f5ca647839a9effd4c29a9586c521011472e2ce9a36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    18a5cf6bf1d94adbf269e42b4883ab3d

    SHA1

    0ba606baaf5c7ac081f2a0dbb0cce4ccf80cfb1e

    SHA256

    f068ddedddc74992de541c345cc3a2a4ead84f3726fe710ca8f76f628cd79323

    SHA512

    a8ac29651ce55ebd394dcfb248f4a05e8fb5dd752095d2ccf272b0e7e0a0c4fb13e569fb45f539c3ec29939c44a7bd9291e3e37e622e49d7fcc0c2eda5c8ceab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4ca752073249f986a034a9619d16b71a

    SHA1

    fc29f0b5458aac194b6f3a8e8225db0562204be4

    SHA256

    f0ab9078338a0a29b2dfafcf66258a51b402aacdb7349b86b87a667ff73b1c8b

    SHA512

    5a70387061612a8a9964cc7a24e9ef817100d204b8222f74f251f15721973d4d70fb97617ab5dbd5c933c1b46ef804ed8cebf9da5616a1c218d5738ef6d60909

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    81a49fa742b6cd5e89c5ca2bf6782c76

    SHA1

    4b765cd61f0805a24a985866931e9f1ace55c587

    SHA256

    1f938ba3b4b407893a2d6596a2a779262cb54683a753fd0298a8b9f6475807a1

    SHA512

    526474a21705895f9685c2b9181c4e5b8025b60af020e9283cb98e23b451d611847c6b32fc674d57c1d6f828821a8b2c927019b3965b1d683a2f5474340ff2c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    01d071feb919ccc232f24019922af33b

    SHA1

    9ac7564b9ce401cd88359d534cca662c3ec5fd0e

    SHA256

    58e5d9b26282544bcf886009ded1560266d10456b38abc4ada44930f8952c0d3

    SHA512

    9518b58fd4ddd4a7e484e8e4e385d43e46315177378aeef4e8b7673129a68bc6498ff1dc3b0ffc0fee963e5a918c670626bff4d21f015a491f56ed59d7a727fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    16f7f5d4a2256429739b88163344f84c

    SHA1

    8757ba7ca8974778c20fbace052276c22882eb6c

    SHA256

    8fcdffce3698672250822a6a29e03c6c722697aadb33e35436b1f8f63e1c29a9

    SHA512

    145f911887dd6248c3d3d6138c49299c78b51f0231b1324e8e398223bc6218e04706bddef62576038211ce17831981b69e1a22db26a600a1509e736b11ed8cdb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5ea4ff61b866a679034d1e2658e2cf6d

    SHA1

    e755f1be8d45d0a4c1c66b1284ff97a1ee2cad8a

    SHA256

    0fd74dc786de4f8106e12b854d1afbf6cfb5c6e5bddf27ee7596169543d65870

    SHA512

    6556ea2a0c0d3669755032daeb95b2dcc2d7419700e0f45f604ff2ad8724c39a72c00f410caf87c1be87354169777c6a9dcf8b80bc460e9c8d240f8781965d9a

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UIC7WQYE\qsml[10].xml
    Filesize

    205B

    MD5

    feb0a4d1922a23188983976f0fd2e0d3

    SHA1

    847ecfcadb42597b1acd6c1c7cf170a52fca36d8

    SHA256

    df60b3ce6adafd28a88a4ce0805d15775d4c2de4d6abcb90780d013b9269a22a

    SHA512

    f80fe3bf8e680aaa874778f25908dccd7c8afce843cf9ca3a61f08b591e038479fdf6ab9de3baf680f5e6f28b6ee9a14159ba780fbfef1310602e7898512565c

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UIC7WQYE\qsml[1].xml
    Filesize

    455B

    MD5

    6ac136a17f6176681b21de3f7628ecac

    SHA1

    56d7d6d96295a4c7e6b9df2c11770438fdfb7182

    SHA256

    998d9f7f849b1749b469fddc7c9f3468895699ca385d10d3a5a6073a9a0b3a25

    SHA512

    9387ac822109c23b2a5c2399609fb7e6cb15cab4620168de2067254b4338732b1a137d8f297f52aebd67142d10cec6ed5d62d7ace7e77f6aab40840085035cbe

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UIC7WQYE\qsml[2].xml
    Filesize

    491B

    MD5

    359f8727b3f0529915cadc59e9ac62b5

    SHA1

    9b499369ca45d6420b601ece29864a379285d653

    SHA256

    8ccbb2f2b1f18b19517b8571b703151e7b200ca3db318504563c588e79dd3dd7

    SHA512

    0ca342e0080c6c91d3d77503cfab34d5c68d2c4b80ce350573abdd57e77d4061d7f821c3e9f9a539974ea835043313d9e44deffefcaf3f80da9cde38cdf56810

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UIC7WQYE\qsml[3].xml
    Filesize

    481B

    MD5

    4999b70a83f82a0fa71aeee8de4166b8

    SHA1

    51598f4eac1b1c24f9773209dbd96451b3b7781e

    SHA256

    2375130e505327aa672b98752ba59265f12ab974a7756cfe2bbb2086f9af8f6e

    SHA512

    08d461186283eae7c7ac54ed78dba21e16cf3b6c0ba2873a71c7ccaa07249ee975e4c9283ea1e88cb099f0e9d3b2a82bd92a3e2f246daf7a2c24c618b1a50bd0

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UIC7WQYE\qsml[4].xml
    Filesize

    485B

    MD5

    2bc31cc649fbbe14b1c6feae836aff10

    SHA1

    e1787c1d20f9f1653720064a54546e4798fbccb0

    SHA256

    1c5c097711041ee6f76e7120b4645ac987f761f898270a00ed7c45ab9b97b1b2

    SHA512

    9a25d5173a24b04592f1d74880e0d133823f86b039f7d802886109516e69ce063c97c16cd87a8b38062bb2a3287323af9fa61fcb6a607a541b5829c68977157f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UIC7WQYE\qsml[5].xml
    Filesize

    497B

    MD5

    ebd7413c48c20c81ec30f464da98f714

    SHA1

    2ce9956c0a4982de4dabd9ab44641ddb06e070a9

    SHA256

    3e2a8ce3adca294c04a164fa7a9a160991e499b22eb60428eee140819affd1c8

    SHA512

    59d1fd54b47ce3e7a13a5c4e5e20ed8d6cf97f1ee3c8401906da3c034253582d4beb1e945da529dded366649389b3fe67627d5ea0acc2f1a474a44bb39a7f91e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UIC7WQYE\qsml[6].xml
    Filesize

    493B

    MD5

    11129253d1f53190cb5cd130423314ab

    SHA1

    0ae2fd8a839dc44d83e80d43dcef128a5786f831

    SHA256

    073b11ba9a98be4e63c2bbac39d5892c35d8ed494c65bcb8248270c92280c51c

    SHA512

    1224e6194c60323a50ad90fda56bb856f7382fa519172f12d8a7efa6748e9371e44815813380ba69aeb0bb0714e2f97029af4162f13b674be3c8aaab42fdce05

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UIC7WQYE\qsml[7].xml
    Filesize

    320B

    MD5

    f418d6291ab0a9a660952d04d1904818

    SHA1

    fdfdaf9f5943a26889455f36146bb018272541a1

    SHA256

    ac3ad300ebf5867baacec2e79bc7076114524df123ca6255279dd9a14cd92395

    SHA512

    c0d8ad9eaaabdfde8e9acb0a255d2cd9c57a7d66a233299a513c1e1e5cd81101093da544442f5bf8a0e6c465b5b33c2bc6ecc07a08e0013ab7a830ec93db9784

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UIC7WQYE\qsml[8].xml
    Filesize

    203B

    MD5

    b4c62f449da3d9877fd773640e31b4e5

    SHA1

    13d6bd9dc2c1783a87511fabef2448d41573bd70

    SHA256

    e19d12f15cadee99ced9fa3002afae1301c334d3ef0d784230a436771990c5b7

    SHA512

    d6a2a34707f025e01be82ac820b77ac57214f0e3977354fec8a6e0b3ba87cfe51922e27576e75494bd9a0f0996cc3029df5c01cea6d795ef00d00b51651741cd

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UIC7WQYE\qsml[9].xml
    Filesize

    204B

    MD5

    e9035d13a859e0891161ea3c71c1330c

    SHA1

    4fe5690f56c68fe2a8f61fafbce0a5c6ed8e0cbd

    SHA256

    aaa8c9c89bf5b27e4b165f818c745fa50be29250ce9d40ab5d3843a97e76dbe1

    SHA512

    892e7f04124211a21990cf4b903794060b1b392670f0f3f8a1527a736dd54fec5077916bce8502a2596f51ea6efff9aff8797c0f8026a2edab9ebb884c12615d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VQ77JNZF\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab768A.tmp
    Filesize

    61KB

    MD5

    fc4666cbca561e864e7fdf883a9e6661

    SHA1

    2f8d6094c7a34bf12ea0bbf0d51ee9c5bb7939a5

    SHA256

    10f3deb6c452d749a7451b5d065f4c0449737e5ee8a44f4d15844b503141e65b

    SHA512

    c71f54b571e01f247f072be4bbebdf5d8410b67eb79a61e7e0d9853fe857ab9bd12f53e6af3394b935560178107291fc4be351b27deb388eba90ba949633d57d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar799E.tmp
    Filesize

    161KB

    MD5

    be2bec6e8c5653136d3e72fe53c98aa3

    SHA1

    a8182d6db17c14671c3d5766c72e58d87c0810de

    SHA256

    1919aab2a820642490169bdc4e88bd1189e22f83e7498bf8ebdfb62ec7d843fd

    SHA512

    0d1424ccdf0d53faf3f4e13d534e12f22388648aa4c23edbc503801e3c96b7f73c7999b760b5bef4b5e9dd923dffe21a21889b1ce836dd428420bf0f4f5327ff

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\KB23KNCW.txt
    Filesize

    608B

    MD5

    c12a2fca15414bcfa4188a83421dbd3b

    SHA1

    1d3b2cdab0a87ae3669fe423c4926006e122e30a

    SHA256

    fe77802fa7cd6de431b0746a3042bce1d76db9e47e79daf05760ac080358f805

    SHA512

    0d6e502ca7ce1cc31ada4de13b3406feb944c566fe776836d00e175a4885cb22b3082d90d241c5885099554fa53c05c16587cbb5b3d116da27645f98715e6768

    Download Submit