Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

Incoming w...t.html

windows7-x64

1

Incoming w...t.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    19/07/2023, 14:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Incoming wire Payment.html

  • Size

    86KB

  • MD5

    f5fe4851c2dc625f8b7eae2c6d0b0cb5

  • SHA1

    5dfddf84428c816e43b0a950ebd512c76c28229d

  • SHA256

    d9c8331ae1175a6946ef090eb0ca08934268fa3beed1e2a40cc944ba80052aef

  • SHA512

    feedc796f11f65b712cc45d4ad32af23e1a58284b4ec38638861cc753dee5fd19f6b13f86c272681a3a09a4fa75eef7d3b5587c7a45f208092184c19e71b925a

  • SSDEEP

    768:RnUtTwa0FXRCpL2xsDq5K5f9SDb1AEiORd:1UtTIXva24f9SDb1kWd

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 39 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Users\Admin\AppData\Local\Temp\Incoming wire Payment.html"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2200
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2200 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2224

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    0de070fae4053203f8d06c6756f18b37

    SHA1

    b459333cc5588f1f1efbe40a2b777fea07f55010

    SHA256

    fabc5f9b06a9627eaf7342e2298327ec011f30f30b2dbbf05c7f081f79a6cc62

    SHA512

    36186970fa179e349091e1640dd799ec389f7cda678ecc6e9cd384048e3956273c3588761ef2b046bafe9b37ae5cd394467ae8513c201c3c392aaa338b010a16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    724B

    MD5

    aa62f8ce77e072c8160c71b5df3099b0

    SHA1

    06b8c07db93694a3fe73a4276283fabb0e20ac38

    SHA256

    3eb4927c4d9097dc924fcde21b56d01d5d1ef61b7d22bfb6786e3b546b33e176

    SHA512

    71724e837286c5f0eb2ee4ad01ac0304d4c7597bb2d46169c342821b0da04d8597491bd27ef80e817bc77031cd29d2182ccc82ef8ea3860696875f89427c8e0a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\E87CE99F124623F95572A696C80EFCAF_8CCCAAF453E2BC1BE9F5F49170752275
    Filesize

    472B

    MD5

    7b0c9401fd756d7a381a9d338f78b15f

    SHA1

    9ebc63de2e26e4899e90fbd81bf1f3e1e5645989

    SHA256

    82b8861960da3688eb2d4c52a6d507264fef53fb3528bbbab67afadb254706ac

    SHA512

    cd75076971ca76d3654852dd74b43ee6cbc6fff1d2f4a32dd30ee3ae015fdf8a8dc3fac11314162d16be53f2e76c59d54d00992af8a58144f45281357295a0ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    c4ecddb95cd88c5bae53b333661f311f

    SHA1

    48ac468908eb5080c9ca47ea4433a3f9106ed0d4

    SHA256

    0ab469b67c0e373beee2aaf743cf611fe92883c29b389c678554dc666b14bb27

    SHA512

    cce4184cccecff8aaaab225c8b5a9f92d5412d146059eb7add82c8861334639dd5198a60cb1d3ebab11f320dc3e008640ef29a5db8a71b03149a27f621c70f4e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    c4ecddb95cd88c5bae53b333661f311f

    SHA1

    48ac468908eb5080c9ca47ea4433a3f9106ed0d4

    SHA256

    0ab469b67c0e373beee2aaf743cf611fe92883c29b389c678554dc666b14bb27

    SHA512

    cce4184cccecff8aaaab225c8b5a9f92d5412d146059eb7add82c8861334639dd5198a60cb1d3ebab11f320dc3e008640ef29a5db8a71b03149a27f621c70f4e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    411dc2b12639140d3a1098af7e6ec943

    SHA1

    11eecabeae849caffdc9087d6c1dd61a1f02b9c9

    SHA256

    fef069c2457628b1954152d3d9c15dab744ade49bc52c8e83599cfbaa8ce4797

    SHA512

    6dd7c1fba0a0e3bfc9d8421d7fc95b388084379eb5278f4d7c8166fb458eeb8ceef2d5c64bfcf36b11df4dbc1d8fc8dabe2dd1bbbcfb6e5fee78a21e969884ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b9b63dfa111b914f1716d03d4ef5aaec

    SHA1

    fedbd4a1a68952d451dc2e49ab8c0621cdc6a9a4

    SHA256

    a8a691ce1c77151d3b0d0136a25df83f80971caf0065db9aeb51fe2ebc3803d4

    SHA512

    0ee4c03519324a84514875de442c084aabe2899b8817d3ff2390f5b85122663a858473bf15087e790af2f813fea993324f3e53c7b1321c58789d34e01c7bc991

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d0737fd76b62668b7ec83ce4dbfbb79b

    SHA1

    178ebf3145513e14384811ccd2cfd98a7c859009

    SHA256

    aab756eba1b733bd170fd8c8a8960ecff87bfbb411c0e9c834e8a7162153d021

    SHA512

    245781cff834cdad442a42288f394f18db17f3c6bf64117b790420f2ff3f4828fe0a9b735732d2a4a7fe9463e18a0f7b09a523900544f2eaf3a10fb3eaa648f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1a88a235ace905d50868415b4fe7ef9a

    SHA1

    34818019c461a453882c0dac7cc91fc18c974c03

    SHA256

    3cb786df4d0618216da7f886444767aac0e64556544ee82bcf8c153b561729a3

    SHA512

    72868e2471123ec2c0925f858b20f1c24c970bb2c7b0137ead3927decd5827f04415a668c6e79219fd6ca391e5cb818983997efabbfe1c099280f36cb09e59ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bc17b2edff5345eac0c66e507765dc2d

    SHA1

    f91f5c7bcb463636c578a9e5e243c3db7b9fb3dd

    SHA256

    3c14796b8ac39197014ddfc39b3a5099ada9b917092e0d804c10daa24bbb982a

    SHA512

    ac2e650a2c672f38533ebf8a6f6b7de044d08f5245b42489c9e138e31608a6069a7551ac44e26e632c93b8276cd6e56dc8d91cb36b1c3013c93165625474eaaf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d57730a40e2548c40a5a6d419c489350

    SHA1

    595888100278f3add1efcc618280366b9fcc72a3

    SHA256

    82c64ef3487dbcaa11f01cc9b4606bd1d9cf186f966383445f843d5aa6d5c51f

    SHA512

    a0f76250cd7c5b853c4c30017b573f5835c8e55935664bb9ba541b1d9a6a6724a1fe85d42b15bf199ba828678408f694de250d98387d9ed4c650e9881025ee9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ef159dbbc3d8941baa287ef2efcbca3b

    SHA1

    248036de1a7b18692bf68e0ea7fb15fe9e7e5f70

    SHA256

    a970389e294a935a1cb759b75974d9dd5ce03194b2d0064a17024a9b96190ff2

    SHA512

    fdd825d96c09ed8a78433b43fadff2d2e7f6686d267ce2d8fdb51fc3437040ceca2fd079315541ef2db26d189446dfad750875e4ce1d77b086b37b52b4c7a37a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c3dc5a5128f936c095609f1fa74ac68b

    SHA1

    970ec9696a83506a9bff166269a281d1539b332b

    SHA256

    0f5833de24b93d4c00c439ce3fb0ba67c3c892ded2b5b6ba7d9c8c816e15193b

    SHA512

    46af2079b058904a033b6a16b9aa163c6a5cd50b4cab8b79232a17c91eeb0ddf34f636248a7036fedbc98c511cf075e0cb2f95fef3664f406cf1f85fce28a1bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    86c2d997a7c6d386bc36f3d0306a7452

    SHA1

    8d89ef820cc8d0c741059c9200aeeca854a5632b

    SHA256

    918d3a5c8f97938935eaa4a8220771ba75ba23626aefaad00167d99367b30399

    SHA512

    0ba296e902d72b0174990204a1fdc140d3fbd9acc7c545adcc569cf12af0118f5eba28b34be491d8a5d03d6a6991449b0d85c3d433862f52b0e6fd22dd95976f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5c72969831fa6ad121de0b3a5d243b6f

    SHA1

    217878ae1ff02c5e63d2428b2ec1f9ced9322612

    SHA256

    b7b66b5cc90f5171337a81e713f7c5c53e3f648ae5716a04b455f23fe5405fe0

    SHA512

    ea926063fad5768749e436854b9cdf5cefeff91dec35179f3755a6920cff696438e1191fa0548398eb1db964b0a3de9ac138d713d1ccd966614723d21742f81c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b2ab9d0491454ff85cdfb9233f566cc9

    SHA1

    cb1bc1eddeb439ee44994280f03cd429f4b570d7

    SHA256

    3908e4ad28f6487e16e3b4f91b3d283268b4fddce8aaad6bf15de4bf839411de

    SHA512

    f406443152356075886473218a2e05155d8acf165496126185821beb5bb6cacd107a5d3d630980bc2cf10ab1de1498e9c89fa3e8bdd0ed6b1832d46f15242c69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    392B

    MD5

    11ba519ca76442ead3687cdc3157a950

    SHA1

    fe21258dd9ed2ff5b9ee8a9f848b3a112752a025

    SHA256

    63d80b973290b1a063c69ae0d208c56b2beb83027d45c0074c4af9c1d4b23204

    SHA512

    c9bb05d23acb4bbb7425147c13cde0ca162735c5f5210722292c60b0ddc3610b8b0c6b5b5f9b1022f0eb248b18ffb80cd0ccdb59e8bcc5b0e06ee76e7aee33bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    392B

    MD5

    4b4146444bd5325cf81cd56e6c8a569c

    SHA1

    0d1a1d4d47e7c9ce9923b03048736e62171f0168

    SHA256

    65631175cc0b27919515c75f60d81020d7adeadf677c23f9a0bf61c22af2a74d

    SHA512

    20230bfe1d6bb8b2631120348c69956bafb49d4d5f9340b5e8785df4dce0528ea63cd73229091e59e024edf88d454928e907d90cae2e5256470995f6eeadf5df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\E87CE99F124623F95572A696C80EFCAF_8CCCAAF453E2BC1BE9F5F49170752275
    Filesize

    402B

    MD5

    1d3e503b023162be42468c1158157845

    SHA1

    57bc8b919295b3f5ee4a0c41c07ae9519ce71ba2

    SHA256

    026a8b21a41092c1ffd0ef96fa7d2bc04c711831919b95ed8e20be67f122bf31

    SHA512

    8140aea239269688c667e1de610130de792bd2392b2d9704d0dea664284268d5a2206277371ac005aba5420b3909c8c01d3407a42ce80c688fcbf3860250683a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\E87CE99F124623F95572A696C80EFCAF_8CCCAAF453E2BC1BE9F5F49170752275
    Filesize

    402B

    MD5

    c049f51eb1b4b4ca32085024f67b357f

    SHA1

    16562c0e000cef64cbe93bc7ecea56fd95103cf7

    SHA256

    603fa3f9a0ed5d2bbe1b2a7c25de0be5f07f31ce56fc1c271c52f5fdf4679148

    SHA512

    80ae7df0af5d3382b9fa4dcb255bbdef229c543ebd3b3999b079cacc567ae05a5e98e16162cd57838dc41603258dbffa502015692edcaa8f539ec4bc95fd5d28

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DomainSuggestions\en-US.1
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab83C0.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8490.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\H5F3F2O6.txt
    Filesize

    598B

    MD5

    9b0a2876fa2105ce68e825eac83a812c

    SHA1

    fb02be64494148d58dc69e1df04010eca3484242

    SHA256

    598a647c21b1181959a6bcf16e943292571edba924ff7f66928cef8ab6d316f9

    SHA512

    17d9c9fec74764e9b67469709f530380daa030b03ee39576b8320ce9ea0e47044b76f018d2fd9bbf46feaed2ef4bd787a115351692274116081dffedf1142f22

    Download Submit