Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

winprofile

windows7-x64

1

winprofile

windows10-1703-x64

1

Analysis

  • max time kernel
    269s
  • max time network
    275s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    02/09/2023, 04:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3defe83d42986c988d5eca7a56c36d0e81ba262aa02c314d220664430b1e31e0.html

  • Size

    229KB

  • MD5

    e158de20e9cc44a9e1c7a21dea8c9a3d

  • SHA1

    e683dcdb56b53ee6a4cd92034df980287c8742ed

  • SHA256

    3defe83d42986c988d5eca7a56c36d0e81ba262aa02c314d220664430b1e31e0

  • SHA512

    e5a699d7dd680f255f2354fa206509bc267d9da7d8ee501504541c1c0d94101b54c7f73b7e504c7f5e5cd329967a6ced181218d632dee9602f09964a9b041726

  • SSDEEP

    3072:Me8T+SjaZ2h+38dz2edsd1K/za2pIQ35dUNQtRF7bcF0bP5Fylw/FcYcPFko/Eb+:Mj+SOZ+bdsd1plwv3Rq

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3defe83d42986c988d5eca7a56c36d0e81ba262aa02c314d220664430b1e31e0.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2584
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2584 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1896

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    08d2b5dfdd743c6e87f4fe6ca3929af2

    SHA1

    dd6b4d8b5c400b87fade3d3a7d42b96b3d32024b

    SHA256

    2ceb9cdd81289e63d240fccd347cdec467ea328d66ef1153bb2f4f72efb7ed4d

    SHA512

    3f898bbbea0298808e7afc1cc3def611ea0de09f8467b3301bbae820aa70ce67d522b8c10c9e977bab42c364b52c55f35c2db6ced331a4e4f7847d608ff00163

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\A16C6C16D94F76E0808C087DFC657D99_649E475F2AC1F765D655CB8DFE21A0D4
    Filesize

    471B

    MD5

    0f7150034af9aa4deb8d3e946ffa5dbe

    SHA1

    faffd8dc2c090767533d188213f3e12d0e6a44d5

    SHA256

    1354a1a7928aa359764cb983a003be339c3037142e41c2b39bf10bef1be20f1c

    SHA512

    7704112765d11922e578f9c5e9919caf03cdc7ca983a05b7b3ac8369c4c72b0c7411a9bceb4a0a7ee2b39ba6b843be3b4b62eff31b465865a0e0ba8eb61facf4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    e5474a8ad15594fb87ac79c6b9925186

    SHA1

    c801bcdb09ad8b8a5a79ac19fb89eb0773274dab

    SHA256

    8a7569dd61d587134a12fe67243041b649ca6ade919ec43e1ffd3aba0961ba3c

    SHA512

    ab8e6b68a10621e1bc95722833c27daa03ae79b5a38542010c4c7fbfb7165678faa598e1f16da71ed22e43dd2b86e234d677c6d04b3f492aca67dd78bb278678

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    130a86f7756bf3cf414ee3f22637bb69

    SHA1

    979cbecc51abebb5e94504ddee80bbe3b64831e0

    SHA256

    7bed731fc3614e91f01b516f33d8f1faa09eac4eb444affe09e915c2431f7ac0

    SHA512

    c03e59886b6396a6e88bd3cd1cd3376e3c06ac811854bb45e2f2111e185717daeea9fd4f3f8a30ee860b27bdc331debd2338863d9216ad8ba8d073aad08f0c11

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a79c3b642aa82f3c3784e8b12c86846a

    SHA1

    5cb8c66d634944e187fcbd054996e5d51fc03434

    SHA256

    0340cfa6365a587a779f929ba906e76f3cad69389bb5327b9cc575a14f3110af

    SHA512

    5a9cdfb488e756e1fe6418e53ae1961b5371981bf800cba976844df140ca0280d35fd0098415eb23b133d8be26a82b5b4f1ef52844f7c1023a69a1f85e131456

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9bc35099987b22efc22e77311e1536d7

    SHA1

    99b195892f5f285418ddaad624be0c3431c77999

    SHA256

    dccd62270846bd0fc2d673860111a284464c776ca24089172d856c77e5d55eca

    SHA512

    0e0319d6f66ab31386af7f754582401d6f256ff21fe3c7ac17ec8b4a65c02f4578ddd9d1037480e344d5cd0672c289914bf40abb03ded4a661fddae5b8acc92d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b7c694005543ace7382b39a9e291a372

    SHA1

    992576c222da1d4de10b8f1e41d743e0eed34c3f

    SHA256

    a23fe3ea4095dddaf7def90bbeaf6c191039762f4facb86b57122ee89027d49b

    SHA512

    e3c6ed5dab78c533e5a5e4d6a35e439987a611312cdcffca6d4050bb1b90cf51bfba1cd2daa79df74155ee668d5dae3efa0c9ef676d20936d3670344000c12ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bc404b00a5a081d652c7e38602a2f516

    SHA1

    32975f6cf69291ad3a5277fec9825f40eefe6dd8

    SHA256

    9be9c2d15e5d895c3cef375c8cdf8b110aed58da53bdff824196399245ba8347

    SHA512

    ac427ce9f5c5c5fd18f6cf2bc4528851d551a4d60976f8b2bebea82a43eecadec42af4521298e6cf6660eecfe46eddc8e0d5f9346ed3ff520e3dd141d8ac94f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d65f203081233be6da3b4a8f4b528d64

    SHA1

    8929793760e121a0d0a956298ffe2a255d9ed04b

    SHA256

    18e47cec1f9dac1974ad5df5ae7609fd310274ad18e9c9992ea1fc1ea3563773

    SHA512

    bd454239ce8af9ca1e615bda45c238a024ac3aa08f3e0052350f0bdc9433eac5cf1cc0fca5247c8aa65ae39357d9047f3c15ccfe1f3fb3a8ee0f22de50f3009e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9c192ed7f55bf656af3a76677c01ff5b

    SHA1

    c046a0decbc2589c9aaf03565bbbe15080a5fa87

    SHA256

    6d9cd5a1c7019ffe701b1bab1cbfdc6f4bca4f1100b221c3fbbd8e045aa36150

    SHA512

    ac03c0ff0fb69c47f86f30eb2571e2451270d35998a1b3ebb010f89038cb702576a12ba432e78cc53668f6eeb13f87cc7ae55a9e2b0bf71d13bb21cf6989c5b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ece97cd7a64e4adea9403f7f696e83e6

    SHA1

    4ad62393a592d2ecf7121bc8806db8b43c158153

    SHA256

    f78e6ca4aab01d6cb3decdf83cacbf34ebac9eb49dd3afeb1e55c8333257d16b

    SHA512

    b4af87eee73eecb6a9df879fea748ed09204c1ee32b85d52b748f9c483c53eb2c313de242c5c32e696f6b56b6f87c4f0602886f54153f0e29898d56b60fde9d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fc2e43f7eb0f78ecf322db85250a5e94

    SHA1

    0232787977e0059b0ceedf02f73d58cb66d5bbf2

    SHA256

    889a30738e3b17f06d7213f44b1895830a4ea0ad0430ba38a6609145fb4953aa

    SHA512

    5abbc8b3bca6740e222768fe987cf782cb4dcc2432a9817645004269bf85406cb31b3de220bc3692d6266a60c08019501c6667bf7da435786be3ea05c4434394

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3ccf62028609fa1b579c8de32d56e0e2

    SHA1

    3283ef361dc00ffe51825b57eefe2e78b7e798bb

    SHA256

    d6b77e836d2eccaf69b950a3a5395b50f5fce19048de996fd93551485def0d2b

    SHA512

    a0d8576b7a0b63294d26f94f322d357b1a17a810ae838641eea0af953a5e9a30f99d674572f9b8c44b6e1bcf437d4471dd589e7288117bd8f50b9b29094091e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b49bc45cf93e3b090dfc8864a46972b3

    SHA1

    0145392bf32da90eb949b7bc9ea85c7346dfe8a3

    SHA256

    0840dde9b07971748e386da60306137c8b8708b23248a8a324a0082e59e5f695

    SHA512

    213df6e538fb99c7d3c7e93e2b7a989894d31210ee16308d5732a6b96904ab2621b5573671b3fbb258c3fac611edcc3f3dfac447888211dc57290eee24486c5c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f11dd13cf93a22e1394ac866d17bf4f7

    SHA1

    f6f805753915e9e6e1d75ef19e05cac2be9ac5b5

    SHA256

    e1b0c30108b221c1e7f0d4956101aba9d90918cabe5a5839d61cbeefd4e365a5

    SHA512

    c60676a40ceffd0cc2fee89b98ccf822a30b43f47ca111d24e161711cfe88dc56a1e23a5b9b59e4f8de5df433a45acca96dc491f01d2dd71d66170e2e0d80f15

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bbe3b11bca20d4555e2c61f81dea22a4

    SHA1

    96fdbf7fbf5fed7b16ec568c5d19d994cd90748a

    SHA256

    859050b5be12907f9ef203df7ceeaa68a2782d0e59b1d4d55bbb44ae7501165d

    SHA512

    df91833720193dc942e42f43dee84d3186fbd6622eb83389199e062c5df710f9bf7304e2dfbd0f5d8b92e5b8cb9389874ea09d95267579b93571fa8cd2561e38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8fdd7ce2e92161185330980aeb566e14

    SHA1

    b6fd1c1fa5ee08a044aa4377e2c6cb4eb95e0632

    SHA256

    19f487e721f61b870d0d53b33581afc678ed01adedd640c7954ae8168904f71d

    SHA512

    5080b05b38a020cd2e21e4ce58291372d1d999e6acec2c33ea109b525c9807311617b6ae13da1ae2f33c0f55cd7113ebaa324e748966a7951be637917e6cc1d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a96e6a11c95166bf668971e04fe60877

    SHA1

    bf2b6a1cc38a9bbacee1b75e3e8ff136563969a3

    SHA256

    2a01aa8cb9edc4e6a40f6a1a2fe205d1488734a70067d75764013fcd2cc2f0a9

    SHA512

    eccf9cb6420816a9cef91af20f151eff13a6980305d30bde3a4fd134995f0962a05135c28e5c1b39ee7cdb23de42f0ef5ce3d983c9d069dab2e2cce349376611

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0586ce8137694f6d95749db3f20009c8

    SHA1

    533c41e554b18ab45165244e6bf3d589064012fa

    SHA256

    a142ce17aae3df3616839fa5102c9fe0dcff1b1561001ae418030c9251f724a2

    SHA512

    4508d4bc4e3ad98f5e21237b39c974671a6360515da9c1fd7f51ac182a40f6a4184e4c1f33f8066563cfdca529078823dab6af9d4b3e319317ab8522ef33bb44

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    14bd80905a1d8777fbefacea50c5c82c

    SHA1

    a91201a93719f87c04239796184484601d9f3810

    SHA256

    b57974b96328c91f145808d4e6541ae091c9552313110f7a66264c5d74b8a397

    SHA512

    18829b07500dd36c3c6e1eea7a243a761838ce08cd518df299e8db71873ca48c681f68671efec53ead9a6d8e4d2ae1176afd4a31cfd2af21c53db6d1a629939f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\A16C6C16D94F76E0808C087DFC657D99_649E475F2AC1F765D655CB8DFE21A0D4
    Filesize

    406B

    MD5

    de745d034fc24e9d4b0bafa9ea16f83d

    SHA1

    bdd09609a7b061be1e87e074f06fd772e7d0b3f0

    SHA256

    eeefd7ada4698bc9ae07437a893fd03855c4bc1c0efdc682fb5bad734c28f9d2

    SHA512

    5586d323677d2453fbf556d2ec25d1c01acf2d52ccbf7892af8125c4eac2eb76ba1ab1d10fcee10aeb1c3d280d4001fe78da874150e09f4b5ed923ef0929b768

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464
    Filesize

    392B

    MD5

    67f7ebd5c01941b9fff278e0a011f725

    SHA1

    4527723f527e5239673f1c6b99ca6f84da92487d

    SHA256

    daebde46b0cd8f6e6fb7c8a683a97a1604c94971804b185520e4b914f15ac8d7

    SHA512

    2060c16b9e5753ef93b6adea1d9a07ed8c43f50fa58f335c69000b99517792b2e0c64c4e1cc3392ba91c59d3cd44b5f8541df299e320dd4e25b9341666400f52

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab629B.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar62AD.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit