Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

InstaThund...12.apk

android-9-x86

1

changelog.html

windows7-x64

1

changelog.html

windows10-2004-x64

1

collection...age.js

windows7-x64

1

collection...age.js

windows10-2004-x64

1

collection...deo.js

windows7-x64

1

collection...deo.js

windows10-2004-x64

1

collection...ate.js

windows7-x64

1

collection...ate.js

windows10-2004-x64

1

collection...age.js

windows7-x64

1

collection...age.js

windows10-2004-x64

1

collection...deo.js

windows7-x64

1

collection...deo.js

windows10-2004-x64

1

credits.html

windows7-x64

1

credits.html

windows10-2004-x64

1

libs.ps1

windows7-x64

1

libs.ps1

windows10-2004-x64

1

webview_error.html

windows7-x64

1

webview_error.html

windows10-2004-x64

1

Analysis

  • max time kernel
    109s
  • max time network
    153s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    25/05/2023, 22:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    credits.html

  • Size

    610B

  • MD5

    8d9e3140b5bfb57987ec926cc572cf32

  • SHA1

    10cc07c00b97bed8ae17a8ee4aee51bed28170ef

  • SHA256

    ea944962e34086eee28548914cf2d9aff5c2f1d45806765e691ba20ccc953efa

  • SHA512

    8f809d12359e98d31723a14065e7b54bd0809374126b96b2926b00c5d18885221a3445cab1393e40d26b402d664b95934d66cf94fb70b22f7089bb0308d354a8

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\credits.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1704
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1704 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:688

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b43e226c0b80fdc98fab2b1c6dc9eb64

    SHA1

    881307ce921d5ba930ca9d3d51dd1f87eaf18276

    SHA256

    603b44150c9b19453ef20520b04e5fb97b0cbdb45fa6ce5acb99ea7ff49155db

    SHA512

    0e01d8898187a70866005ebba0437108661f777a7f04f471430ae8ce20f5fe19dd4c9d2f42d4c9dafd4846bf38c6c87beda4c8a574f82d7a1867179aceb9c952

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    669cad70b60fc1805c405c4429cec95c

    SHA1

    f10def6b113aee8b61e1e0c739438921ecc11d5c

    SHA256

    3072eeb7b5403283b934e6644fa5dc075c6f90fe925fd5049adeb9eac1f47444

    SHA512

    dbfd46051ab535ffa10bcb90095f6263da454bc20fab30f2edc9027dd1f31add9dc21f67171deb2bb3e9d40b8923030cc6fd4877dc6acbe051c8f5bcbbb15899

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3ce187254229205b6ea5ca62488195b1

    SHA1

    65db7f7f69c71726555a1bea637117417522a2cd

    SHA256

    a134f69437a57148b5c1caecd7715124fc37c3b7413f70896c8ef5bb65b0e007

    SHA512

    f700fde502d7cbcce972eb7d8c8bbb24c1a725a459a3e8467a4ff7831c2100b0f157c773a642a4d5a2c5cd0de9dff99146c111b1d8a0988710e7ed69df1f1ec9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    018e2085e9b53a9b408e86b25c1a034d

    SHA1

    7e8dae9690f0eb7017086a0e2f7b75287b68c767

    SHA256

    a03bc977b289d11a3199e0309ab223da35b1443f5db6ee3d95a1c93a835597d2

    SHA512

    98c5fea1b8058b394ad52f684e01712a846245ed0e21aa43316cbf87d8f222dd7fd6b0008d8aecafd1f6b835761487e2bfad8981335116d35f1c5776981548f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c14da55edb9edbfc6981901a65bb215b

    SHA1

    875f26e7f916875220e568381449fff2a0e2858e

    SHA256

    f28a1965c9ecbc287e2d1a49ccbf0202681aa341b2e828e358e5a48032a01340

    SHA512

    eab9fb7407a847bb4d25d677d81b080d435740d1cb5ed2afcf2f7b584c44607673f258248922b9bf4ff5481e2cb8eb46659894b3c663a912b85fb8ffe315b03d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f4b558ea79b694a4e8b94910e5d59346

    SHA1

    0607246982397c6faca178d61c76d78e2387f5ce

    SHA256

    b09d0f87e001c6bfe4f3fe3fdfffa9be0f5b05c121b4c8e314173cf5650b0b74

    SHA512

    e1c012ba3196224e94490404de31a2e945c40738de5b2c117b05f39c31990792879d3e272935fca60ce88dbc9fe8a669cb4fa73718638d965ade15ab91693552

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    da2adb2f3ddd25fdf04a544432d50116

    SHA1

    d86434e86cf914c219719aea3bbb5ca3a65db340

    SHA256

    3e5451b629777ea77deef905f4c1500b7458253c23dabb7ea35de6fc5b6d0a60

    SHA512

    de9b96598968763a8756ebed7a18757b56d042b232367552f877a78939f3210cf87b0249daaf7934a92aa1ec06aaeab64cbb2ea5bfe8b7dbfc7217e5633ea989

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ba971667d88ac4c567ddcc9455cfe07e

    SHA1

    a633d642f8b24944db3d4b2f452458efce6439bd

    SHA256

    ad71a5ccfef32b23d84d7308316ec56a6df10a28a0ecaf8a36eadfb32f665044

    SHA512

    a2e2fcc706ad3eff2e4b91e50f2dafac4ee2e988d5293bdff0aef4c45ad013d16385960b3958338ff5465e71b068a0533f41d21abe29c1320ba3e9cd0d638d85

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    15a4a4a8e1dd0280d1c3dafce95b37dd

    SHA1

    a8d120ba580a87ef4d0ab5b9720588e1d5a9c636

    SHA256

    1d2547e9efb5a7c685ee724002f67e14b5dc1a1d19385b1f477d159f557fd3b5

    SHA512

    58176aac76e576681f7e2ffc127315e894d1c1466951527ecc5000f29f63fa1ab39904953da3cef8a8acd1c83a8baf0ecc154be6bc24d8b0a39c469879bff0b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8a1dec8c09f70cdac359808a6a91ac5b

    SHA1

    36ce6cef9cbc6c20c83de43f139ae92d9ec0079f

    SHA256

    732574364a3ff2aa182a8084aed13b77c85d0074bb65ae52225fc630137e90a5

    SHA512

    8db79cd8e4be60b41344cd969c787225e03ca378d27bfb80ce57d28d544bcafe82bb2e873bbf0ec5e6fe66cde0662c2a86abb07d2677b91c01042584367beff0

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UOYUJSME\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab699E.tmp
    Filesize

    61KB

    MD5

    fc4666cbca561e864e7fdf883a9e6661

    SHA1

    2f8d6094c7a34bf12ea0bbf0d51ee9c5bb7939a5

    SHA256

    10f3deb6c452d749a7451b5d065f4c0449737e5ee8a44f4d15844b503141e65b

    SHA512

    c71f54b571e01f247f072be4bbebdf5d8410b67eb79a61e7e0d9853fe857ab9bd12f53e6af3394b935560178107291fc4be351b27deb388eba90ba949633d57d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6B1D.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\A38J0L7C.txt
    Filesize

    605B

    MD5

    93e7ce6f4717fd3a0399351687c2b4a2

    SHA1

    8ff6d85150838548b1347bd5d64213b3219ad608

    SHA256

    703322bc7980f644a86a188f544985c037e2d179e94c6fa765e5ca4de91bb2d2

    SHA512

    0134685a6b4ad739ceacb13214eb5ef04e4f8ff94c2b115588832f7ea11873fafb068fd8d42f6d92e73acd3c8730b323b98057d31554e46d6a21f51ede620cb8

    Download Submit