Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

08ed3b.html

windows7-x64

1

08ed3b.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    26/07/2023, 13:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    08ed3b.html

  • Size

    315B

  • MD5

    a34ac19f4afae63adc5d2f7bc970c07f

  • SHA1

    a82190fc530c265aa40a045c21770d967f4767b8

  • SHA256

    d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

  • SHA512

    42e53d96e5961e95b7a984d9c9778a1d3bd8ee0c87b8b3b515fa31f67c2d073c8565afc2f4b962c43668c4efa1e478da9bb0ecffa79479c7e880731bc4c55765

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 39 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\08ed3b.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1932
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1932 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1064

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    00479205377dc82f855cf073cadb9f1f

    SHA1

    16fb8f619eb62e4bdf7d560e62791b89709e06ce

    SHA256

    7faf7da09992f86925d9dffbe227ca1bf7100ceeee1eac6e2a49234b33eae59c

    SHA512

    8ff68053614b7849b2da7c9e1ae849f92cb2f36feff2affbf8a17c8bafef0efbc793140396fa8bdb5f06680e99ca04c82f3c0309059786e04b88090b7e0d6cdf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bdbfb43ea3a487b68a989c7d144dba20

    SHA1

    82454248be6e6e0fd989540cecb6c2ac8d2c8a06

    SHA256

    7b8d5a4b8596e2c3454b1282b971354c14654f74f0b67f276e4e3bec0221e005

    SHA512

    ba1511b235d21fc9f4d669ea74d3b4e5964f1d5a49f02d3626822cb71b4e9321d89c9afec57d2c6a372e7cffbd06893d2d16f10d5553fbadd2a9f95a781b06c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    39b4aa3b704321063f7fabd4d4b948e3

    SHA1

    86224861d502ee840027ad656cb19ad427a72577

    SHA256

    85e23f23150e19b3bd595003c93a7a3ec2be62182a9ccd49e2b3c039cf954c5c

    SHA512

    d4f2eb873d502a1d7e54a7f0697d421045eb314f25d1316fb22dea0c67fb9332468cc5c6c0646aa928119164fbf3dd7e485cc49fa10e81f92fa88f741e32edcb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d30a5008686924e3faedd0376444164e

    SHA1

    5ce58e69da8b43cd6a97b83d81972b0348058cad

    SHA256

    13a29624053b1311fa6b43ad8b86dc2f4c7d5397c4dcfed04c25cba9f426d099

    SHA512

    4d58967ee476174015b53c258048cb49bea1ae74776bb3c654cc985fb7f31c3adf068875ab702b1777e1102b0394964ba75fa7d2fdab6c17940a1a10395d2bbd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    55601387699b9eadbf7c98942e705323

    SHA1

    ccea8c08c8201a84da9518071c10fea21178a572

    SHA256

    24ff7715b4d88c5908c24b8d3d67719da43b5fbec8f9bbceb58500de33b821e8

    SHA512

    886e3e27c5dee3caed7bb381e77adaad6870eaf2daa0921a3eacc335a1217068b8d282248e156b0cdc099f296070048291afac0b607cc89bb2d3a0e3d7a5cb10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bf949dac056a8f47176cc4418a09553c

    SHA1

    2994a9086874caa296d1c0a3ea7d7c1762067ac3

    SHA256

    5aec7763eff474d354170ea24bbe0da377fb504bd4e357e76814211af1fa14ba

    SHA512

    506900ceee084a2117c520b1d5257f691812187396f09559869bd5da59ed40ee7a846bc124fab29789a0cf87e52a17b91c5a43a05be319551b04639bc8e875d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c9a42e071fc9bde8eaa7aaec2a3baa03

    SHA1

    580d288612ceb9b1e909129b6081b0c844bddc2b

    SHA256

    d9ecdba594367dae61c72d39d5db3d73e0f3c93a81d46165b05f71718fbe4167

    SHA512

    21519ae01022219204dcec0da7b8e0e0a92a80e0a9e655be8a60c49c9a66348b65cbff3881e5a70a5f528775657670524dc93c9e0aa378b1aa32e6b85c779317

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WEWWZC8O\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA6FB.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA76C.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\M1JB20RG.txt
    Filesize

    601B

    MD5

    bf488ff5f919c4d31d964b84a2ef14c5

    SHA1

    b1018c229ba1fa9e0b3816f2de7b262d0bdec297

    SHA256

    d9f8bde4bdaae5606a2281e571155b49e1f63d1599d41ecd33c3a458b570ca5a

    SHA512

    28575a0064959d9d5966e0c115e8d5ffd374cd667082e20c04ff395bd04f4444b580ce9d172b41fb4b702378fb4cc5ac9ba4a83cddc5b175b2a6134a17a8d4fb

    Download Submit