Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

GB_b19741fxj.apk

android-9-x86

1

YOWA.html

windows7-x64

1

YOWA.html

windows10-2004-x64

1

changelog-ar.html

windows7-x64

1

changelog-ar.html

windows10-2004-x64

1

changelog.html

windows7-x64

1

changelog.html

windows10-2004-x64

1

clockDarkTheme.xml

windows7-x64

1

clockDarkTheme.xml

windows10-2004-x64

1

clockLightTheme.xml

windows7-x64

1

clockLightTheme.xml

windows10-2004-x64

1

credits.html

windows7-x64

1

credits.html

windows10-2004-x64

1

e0012.png

windows7-x64

3

e0012.png

windows10-2004-x64

3

e0231.png

windows7-x64

3

e0231.png

windows10-2004-x64

3

e0537.png

windows7-x64

3

e0537.png

windows10-2004-x64

3

e1296.obi

windows7-x64

3

e1296.obi

windows10-2004-x64

5

e1299.png

windows7-x64

3

e1299.png

windows10-2004-x64

3

e1300.png

windows7-x64

3

e1300.png

windows10-2004-x64

3

e1302.png

windows7-x64

3

e1302.png

windows10-2004-x64

3

e1439.png

windows7-x64

3

e1439.png

windows10-2004-x64

3

e1440.png

windows7-x64

3

e1440.png

windows10-2004-x64

3

e1441.obi

windows7-x64

3

Resubmissions

06/07/2023, 18:35

230706-w8fqlsdg43 7

06/07/2023, 18:32

230706-w6mfdadg35 7

06/07/2023, 18:27

230706-w34kgsdg32 7

05/07/2023, 09:21

230705-lbqjfabd66 7

05/07/2023, 08:59

230705-kxxdfach7v 7

05/07/2023, 08:41

230705-klwmrscg9y 7

05/07/2023, 07:15

230705-h3aqhscf6z 7

05/07/2023, 07:13

230705-h2e9lsba95 7

05/07/2023, 06:50

230705-hl6fvscf2t 7

Analysis

  • max time kernel
    151s
  • max time network
    155s
  • platform
    windows7_x64
  • resource
    win7-20230703-en
  • resource tags

    arch:x64arch:x86image:win7-20230703-enlocale:en-usos:windows7-x64system
  • submitted
    05/07/2023, 06:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    YOWA.html

  • Size

    648B

  • MD5

    00afda385226fc12c0ff63f0fc065278

  • SHA1

    b40143e306c45e09b99f3431ffdb02c0d70932c5

  • SHA256

    e36c965275a591eb12b4eb64bf9d69e59b73526d86fb6bb1ffc2ddec12523d33

  • SHA512

    2ec7d3fa444986a48a7f8ab3707b7e45518bf6408709189a2c2a1fa420e8919612b1136deb2d1dacd7bedf1cf6e3746fff985935aeb92de50808566bb8f6c91b

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 39 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\YOWA.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2348
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2348 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1724

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c1202898895095797dee95e67d8a6090

    SHA1

    dc06dc1cb158800cfac7317f3d9b521493e0e8ac

    SHA256

    2c9341e37d7f418f6e682c507099f35ca8869c7607b198787eaf2b5c42abef96

    SHA512

    e014bc78ad8dbfb19371d0e4c45d1c9baae0ec7a9b76d14be21960e7ce47a858dfc5cb83429be4f58cfe3cf692e94c97d7a05af39e76b8fefafba739993576c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5bb4afe6d8bfce5ee6d473fa70f9d1f8

    SHA1

    ed2c5338dcf4517b14a7650b7a3605fe66a78d50

    SHA256

    1f38af5620a03815a01da5af4f91401e030eb2da853b7bbbe4507aec46342fcb

    SHA512

    6b6484278e17b1405a52a97762935631236db45696cf37d3625383ce204574e3aee448d6dcb286ef96dd407746010a829ef51fe0000daca4c90b4f059bfc2295

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f3b29ba3155549aa26721b85b0326808

    SHA1

    008db10f77b82dccb46f898133319a2f13eec43a

    SHA256

    d02e367bf53e440c2d5af952130ae0910597190584047c283117fe6f8f6a1899

    SHA512

    df3caf8392f5064b9630a233d8316798b2fd3c781465e9299ccf6b473180c21ace4ec19adcb79191cec77f13817bc0f1e433886e3f088e1a4791077efef51b8d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7cecd93821a81534976bace696ba5a71

    SHA1

    6e89434b8bf378dd76d3f1e46b0d1d8b33820512

    SHA256

    951da21772a52fbe6b46bcb0a5cd5c05a9d0ed0dcbf839384ebb7f4fc25fca7b

    SHA512

    78a992c8b670b6ca6ce0186ff7e149cf6e71732d539304560d8d821cc1a7b449cddc04e8b09c3660e7414fe8517a23bb2b4edb29c00f9e3e57cb476f4e36ccb4

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M70DY8PN\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA4AA.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA58A.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\SNH4DAXY.txt
    Filesize

    606B

    MD5

    174ef3b3a11521c9b35201aea8a37e7c

    SHA1

    6191ff49898042e48b426ed0d3ac8b9087ac687b

    SHA256

    8efc19dd01317763de213b8c5ca5ebe28a4b4b8fe72b4a450570cf61a683d025

    SHA512

    da04532b69816f153f02b76fa09c34cf28fa504cde8fbb78e9fa54d54b0ec1098cd720855c9a3f0b5d08e2dad0640675bb72583ff4747360477ab7f6dcc47851

    Download Submit