Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

3.html

windows7-x64

1

3.html

windows10-2004-x64

1

Analysis

  • max time kernel
    66s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    15/05/2023, 13:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3.html

  • Size

    483KB

  • MD5

    24e97115428951921c140610cc1c6fb1

  • SHA1

    4213dab145d03dd7380634ca5b1199de38bda74d

  • SHA256

    178f306146a432ec45197d922c2bd532aa67f86b5eb6409a7d48547705dd627c

  • SHA512

    90b8c2b5dcea7edadf2b547b62d7cc954e95d0ccc964d02105940a5379a285607438dd52ad7091b44cb8464012b982f756eb18bb3d56f901010d606c959649b4

  • SSDEEP

    3072:rmUv/+I0e2vstX1Eb50jzMjE0YSi0HlDW6V4W8ZoZPqZ1zgy89C+jKMsCvsQylxx:v

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:920
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:920 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:592

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e03e0be6d687e1b4443dead58d1ca5ca

    SHA1

    a5a766213f8d30459d3050ed5f462b1abc7c85ea

    SHA256

    18700f5893771c71aac27ba83172a91227d48f699aa8dfce0055c63266c15d69

    SHA512

    a950fc8e680a71025da363dd8f25b222d7616e0e4a8dd5c35a78a7e15fb19b97c3c5040bacbce476c951993b3733b7eb0a1ddb92f2328429cef15263fcc650b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    909df338ffa3998fc806d7cc653e80de

    SHA1

    fc4cd1b6aab1352985e182782bf9672a254289ea

    SHA256

    97123584495209d96242bc4ad03a246c3812a9aba1f7500d363e1676aadd3151

    SHA512

    05c9c9250ade79789205b4401e3e3948faa4a655c96a13649305fe95df5fac933af42001be374ec4ec454b50e7e2892894d7ca90cbdf8555765d3c39292c7dd3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bcecb10bc866b1fda4d236a3b5fd0154

    SHA1

    cbe48f530040b53f29460414d5d638eac4d78c1c

    SHA256

    abb91c42835eab8560869edbdb6a27396f76acce13a11b21f8f60359cbfe214e

    SHA512

    b241bc57a7b75a0701ecbb7c131b28aff94e49d1f22890e08243dbed0498d8653871293c420e62ad42a867fe04c14ca0dc3421d4b0283a0602d9a7d4e29833a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    08564a633a393f5a1a264611929fe266

    SHA1

    0afeade95ddee91d01bb5bbd0e5409df7290076f

    SHA256

    9c9597620ab44f26f3f19aca156cf5bb5a554f8bee39b2f1f9bbda9c79731e30

    SHA512

    a42b768fdb9e9b60038f701b6647a101686e5f07030209090aa749b5898f8b683f3ce69e7d28746883bfaaeb57edd84d119588ee18bf7f1f4df1a1d2f9bb0f35

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5ecf0cd19eaf3fa2ef8e39be8a3fbe06

    SHA1

    7a6f1e1ac3db5d9ed787c92b1ce64348df857127

    SHA256

    f6c64105d12780d6eb438dbdcef88d28bb6c0f6d091c318861853e756c2e7874

    SHA512

    e85b177a35168da2eb8366cd510bf07970295494a1eb83c01fb88cff887cd606965ec0b8f1fb7e95376a0f18d5ec13337dae2091231eae64336c46fd31975cee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d91215e0896b3468a07f82dd62efb505

    SHA1

    59a193092d98af756426d3abbddf7ff8e3e39e55

    SHA256

    7b9da3c34e6d695fc001a22176a7829082161ef07ba37d942888cbd84b7f42e3

    SHA512

    2cae25042aacb8d9e8f0dae4dacad0c6774006cb6f70ef688b83b851937d7969b5c7ee1d38882b63d58c89086accd055ad0949694debcafc203b614794474574

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f0c14ce91f7b2d447ffd55b87eed22f6

    SHA1

    12a1de808a2bd8c112bcbf969c49f1eafb357d66

    SHA256

    d945ee3debac01d22fb005155ba43e54cadc0962f55e1a7f68b7895bc09a304c

    SHA512

    eb445b97a491b75f7048bcbdbede409076b5ae3febaf796f57586535963b19e7d0655df13c6b15aee985a577cadfcb179c28055490ed15b3927da15148b54805

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    57adbfb9830160caafc58a7f671be436

    SHA1

    ca29d5ac6b62b286138bf3165ad26c6dc1eef817

    SHA256

    fff2c03c7ee09788aff9315b3a9c870f1fb58d2b716e81da844968e9da0b88eb

    SHA512

    2c8be3c9b1efd2f396dbce8b5e1e28418ea4db8854416dfff49c1f39e75ba97291cc9cc0239878fe8becabac9fce670eaaa1b1f372ef3b91aacf9f437e8f09fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dd603d2c2bc8f72c53d9bc63f232b995

    SHA1

    c7591b735f3a951547d5e2a2a36afe585afb8012

    SHA256

    7cf3c4ff4ff5897174c01def94b1e009100850466c205639c0801cd01d69deba

    SHA512

    f47823be63cfeeaf5212bed96c6e2d67180d1daf410507eeb03bbaa875a4bb9e7888098fa5953810709ffc6c49df09925546c5d968039e2ed32e4b53bad3c4b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1c6dbf57ad2589aa05f741f74de5dc86

    SHA1

    ab7acfb6d9133f48734c8a126750a12209c514d2

    SHA256

    38d8e87dd9dc3a37824b54027695078250d1f0c4300952bc064e52425672e456

    SHA512

    d2196d824daaaad929cb2cb9aeee1f76c476df309dd17447e7570797e3042305fe0cde23c09d4f1cd8fa051b30f12c134bbc6e632b491d16f71f526b37bdd5d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    771d46b33755d0e7130614a6759eb79a

    SHA1

    682f753485d21cb7be733eb6db1e6a21c391a6ed

    SHA256

    842b94e01f7b2e9caf12b82453317e56e9a2186ab0fd7ccca1fd820dacba2b68

    SHA512

    1ab2259f431283eeedc67af92f8c21292ebeab5dc55a48b906fbc465138e8449ce82b15bb4dde15d3e521a242cfb83296f155d13f2e3bdbbb06c01224f8a8636

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TOS3MI7U\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3A24.tmp
    Filesize

    61KB

    MD5

    fc4666cbca561e864e7fdf883a9e6661

    SHA1

    2f8d6094c7a34bf12ea0bbf0d51ee9c5bb7939a5

    SHA256

    10f3deb6c452d749a7451b5d065f4c0449737e5ee8a44f4d15844b503141e65b

    SHA512

    c71f54b571e01f247f072be4bbebdf5d8410b67eb79a61e7e0d9853fe857ab9bd12f53e6af3394b935560178107291fc4be351b27deb388eba90ba949633d57d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3D87.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\QAMY162P.txt
    Filesize

    608B

    MD5

    1e89b63761d93a547dccc8b5237a9838

    SHA1

    3b5075285894fdb625480739a85d0807174991a9

    SHA256

    bc4e405679bae5cd4bf52329332e58501e3b1a7727e209d6479e8a0499e8e1db

    SHA512

    f187cb3c473cfeae5193be3908e1b5508d6fcde31ba85d0392e8ca928be5e4c23805da37958c7a1fae3b0a74def9332c34f587c3c1c5cca2798abf4de6e0824c

    Download Submit