Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

c5c5bdf7-c...c.html

windows7-x64

1

c5c5bdf7-c...c.html

windows10-2004-x64

1

Analysis

  • max time kernel
    100s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    19/03/2023, 16:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c5c5bdf7-c807-41a2-b092-9f605393bafc.html

  • Size

    71KB

  • MD5

    9c11457ca38083b0745b80460bbc139c

  • SHA1

    464e4597a92400125d67de052a4c6382a5d09b2f

  • SHA256

    adf1cf81ab99a136cf5eab983253ead5db93765fafd25df1c06f0422907901df

  • SHA512

    7469f42dfbcda8f54d7a64dd2b91625f418bbdf4acb3ecb73afc831203782618ef490ad854c5e104eab89c30d6e1f1d70f05c8e68fa2c241f4e37e70200a6c2e

  • SSDEEP

    1536:hf+pzh63wjhtQNlNJa2UdOll3tvreyxeclJnTXpwe66H1pa0feMAAFNJ:5+B43WhiDasl3VeyfKeXH1gW

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c5c5bdf7-c807-41a2-b092-9f605393bafc.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1736
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1736 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:436

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    61KB

    MD5

    e71c8443ae0bc2e282c73faead0a6dd3

    SHA1

    0c110c1b01e68edfacaeae64781a37b1995fa94b

    SHA256

    95b0a5acc5bf70d3abdfd091d0c9f9063aa4fde65bd34dbf16786082e1992e72

    SHA512

    b38458c7fa2825afb72794f374827403d5946b1132e136a0ce075dfd351277cf7d957c88dc8a1e4adc3bcae1fa8010dae3831e268e910d517691de24326391a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f6706386baabec7c193664dfd455e37

    SHA1

    36776304c7aca716247f3b41bf7e167bb1d25411

    SHA256

    bf3dec1d041d7222234b20f3b7a84a2be942fbd1f20ece433fb09fa9bd0d14e0

    SHA512

    f31dcd080529cdb71326a38bdd46ea660902debd8e2810c9b23dfbf32bc9b8e1f89124bf79bf783fe0eb518932a1f7dd9f392bc41813978a5f5f67adef70ef8f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    70cd7f9e404ff32460d9248164d5dc5c

    SHA1

    8bcb8c08e02f5e8db2eb755ccd2b57e8a4c45df1

    SHA256

    d62ba84db473f0b857fdb7638c065ba6aa8815cca5dad95f1888ef5ab979ddf3

    SHA512

    366bd10f5db947b76897d7380e120c2dfe8b3b48a943b3d0552a8531eafaae9bae7d1ffe089c4b5ca3980eb966d72ad81caecc76bc52d01386fd2574570b8b95

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    535f2f0a21cdf3be82fdb73d463c9d5f

    SHA1

    37b5b90fb6d18dace5a1d6d20c457ae79db069c0

    SHA256

    c9b032919ff98dfe5fcbb9089dd393ba2ff4e60b6b3f61b359fe0d1c04b53424

    SHA512

    2b36c8b36ffd9af7d182aee7d2d10897fcae238ac6680e70d0f50fa56c58d9f99593912ae25befeaacdeeab7cb269e75a15b486f5a233d480ca329770f9818e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9fd80fcfe69264f7991305a21365b4ff

    SHA1

    c935c18200b6b00db536ed2568434edff3960b8b

    SHA256

    846365ff1153487445e057e3705f099274fa93bfce275617f1e61c4f29bcf32f

    SHA512

    11eb5a5129264404e41f6321b4aa7ecee17aaf9705dc054b89b1e254660c90e5116195b51d49ed11faa3a13dfca96431c68d113f1d5556863618f114f5581748

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2fb202e696d4579d157ea5e8ee74a564

    SHA1

    a7e9ed66dc2341ee67a124b5b5e9e7caedda08c1

    SHA256

    cdaab229abe41c058d366ac6704b6a26c2ae543485b3e1b9c24a3f8fe4561a4c

    SHA512

    cd2a7447f88b65b12991a369272bfd60a68d3ecd7fe073038e6293c6694899cd1e87868d4b041f1e380fea49624d6a43da3159957e1562bde866df088dcf26d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7af23da1d7e6ea814e1db3534b381311

    SHA1

    d1d7dc33a09b060d4ac1562f96305a897f17125f

    SHA256

    cc8f53c40edfa18e491398cda429e343ff81d618743043576c1aaaaed9000c3f

    SHA512

    a7ef873b05bbc2bdd0a1abff2e50367ae51f40c967efa08b52119157be746c1bc19e9654bd819eb6ec67e7263b4fb184512d744bd8b2e45bd6df22ad3bb0ead7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6124e3632e08e3971c0b0b1b9bb56c91

    SHA1

    ca59402dc3e3e1aaf29cc60eea7ab67bf8d08b15

    SHA256

    b2331b6e8e287520dc1ddfc2d33d5cb5058b774af5d4fc4b7b750bcefd538267

    SHA512

    98412a2a544189499c2e10f401c0bb7cf7476f396956efce3e209611fbf503e44dd3e260e89fb18875eff23fdd10051090794ba317d9b80db1c808826ddd8216

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    181d01806349d871a4704fb2c6bce9b9

    SHA1

    77a3b9572cbd42c4c85eb7b4f00c410d71e5cf89

    SHA256

    8ee2acfa8c9fac05e592ac09207617fa16d0f728622708bdd0f4a972537fc0cc

    SHA512

    d112e3537c5a2ec94778a0e6fe50a4425a7a5cef8b2f5c0abdb0ce2ddb02d1494d756557985fcaa229423c52ef1098ea5a450558a52fd2047a888fdc46d1f075

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S7FIT0B8\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4F7A.tmp
    Filesize

    61KB

    MD5

    fc4666cbca561e864e7fdf883a9e6661

    SHA1

    2f8d6094c7a34bf12ea0bbf0d51ee9c5bb7939a5

    SHA256

    10f3deb6c452d749a7451b5d065f4c0449737e5ee8a44f4d15844b503141e65b

    SHA512

    c71f54b571e01f247f072be4bbebdf5d8410b67eb79a61e7e0d9853fe857ab9bd12f53e6af3394b935560178107291fc4be351b27deb388eba90ba949633d57d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5240.tmp
    Filesize

    161KB

    MD5

    be2bec6e8c5653136d3e72fe53c98aa3

    SHA1

    a8182d6db17c14671c3d5766c72e58d87c0810de

    SHA256

    1919aab2a820642490169bdc4e88bd1189e22f83e7498bf8ebdfb62ec7d843fd

    SHA512

    0d1424ccdf0d53faf3f4e13d534e12f22388648aa4c23edbc503801e3c96b7f73c7999b760b5bef4b5e9dd923dffe21a21889b1ce836dd428420bf0f4f5327ff

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\X1UVIMP8.txt
    Filesize

    601B

    MD5

    0d8a32ff90367390bbfde13c8f365747

    SHA1

    731612c256d9cc64f9c6b5c0efd030f275bf6ab6

    SHA256

    1cc6038a563962d7ad1127086b5185d16e2ceaba321bbdd3776c93002db63170

    SHA512

    1d5f081219cb66fa903ac6ef7f25597c57f7802a2c647106688536095f143ecabb6156e217f4abfb330b35edc88f4bc6445900f4a2ff2b52d377c1eaf050ff3c

    Download Submit