Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

🖨Secure...tt.htm

windows7-x64

1

🖨Secure...tt.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    139s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    11/10/2023, 12:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    🖨SecureMessageAtt.htm

  • Size

    16KB

  • MD5

    eec682344a6ed3f9f85213d34da00d37

  • SHA1

    99d5be29b35e494b6e86216a6c0963793d669b26

  • SHA256

    7460cf41c9ac2740acbd90c0b18e8ed1e5422963b33a9d4f3e672c6074cfc22f

  • SHA512

    0fb595aef5e977ed249a0b16107cc7905f56f9ff0cb977c0774e731e624ce36c761ed279654ae725a561361250afd5f38d6d2a5f4226923dccaedd05e21294ad

  • SSDEEP

    192:5Fd7UE6qn2wRBrA4oo7qB70B3BeBwTBjB6DoBTj2kTHUVqLc091JHQjGf0vBGEWt:5jt6nweMKDMJjUVq/1fOat

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\🖨SecureMessageAtt.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1076
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1076 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2284

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    87b279f80e31b213200b265a50cb260d

    SHA1

    b57259d6699a6112204445a6ef707a37a9939dfc

    SHA256

    1d35ee7790e70ce71d1d0220f9d78f2cb55635f25c90b5e38b3e614582233078

    SHA512

    477e3481733a614b4c51c23bb5c1fbe8babdf19d742ad512a5881fd53461433a09be6afd173a6aa7e94cc256b042086c449bdf9cc892df48b4dbda0ce773e0e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    cbca0e9df3e62e5a04e6711638f2046e

    SHA1

    c8397c6ea2194244c5ef6f7c25d5cbe043094c03

    SHA256

    ae3f081a15185f758fba4e81b4587eb9fc15f57c92dbc24ec1cec55d21652abb

    SHA512

    ea74ab24bebc89c731c8e63f99f2861cf00c5adbd523aebfc67cb95db3d42e6578136bfaa9edaac99f8c76b5eccc6ab46a2832637c08dc7701a045f13195f77a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    ef4fc432271d51c31f6d6796d8e63d14

    SHA1

    c1d8a16c10fbcf346889bc691e4a2215aa02993c

    SHA256

    14f3d951d0b5c158c2713b200af2e13a33ff26339f1f5f978d8f715d3ca818a7

    SHA512

    e7388b221fd74eeb50f79b56ef5e796ae0d63e5c23eb1ed7adfbc13b01cb18554fb3e87cd0261569300679bc2bb21c4bcedc24d99c2c5a24d9c756cae2916b79

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    834fff7d6174caa4811df61538fbc0a6

    SHA1

    2e216e0c2f496a514462f78477f78aaa4f7a9e62

    SHA256

    94c2638ea7b6c4f6ae01d6812d8dc6e61687e03ebe7dd033441b8f97a9105bf9

    SHA512

    944c05cbaa78bea9210c93e83e0b56a21a65df8a3035828173ebc6e942dfa32e16edacdaafc65418ecda6fd84e8886822a449696dac0cc046db33ec2ba4c081e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    4b3df7a7c83595f61c182da174b7418b

    SHA1

    57b86b310bd93473ea9d34ce76828241af7e8701

    SHA256

    b181f0c15bd86cd3027a00eacb850bae150af435115ba97409f38deef04dfa93

    SHA512

    671e49529e95092eac56888b02f0ec4ddeaac79a826841245bf09f6173682d3f27c474eb29e61206ffcd3c21c3336a13b7ec5d2abcbce4cc686f431196f2929b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    b333a56c180bce6f525d994c4a94608d

    SHA1

    e62a392fd92cb351edd79741f714fd20e66144d6

    SHA256

    ffdedb1d8edfdfc74153b96cd7cf5b4b5b1bbe2c304bb13572f3c68fe9e05947

    SHA512

    f4abbd1367196d203a4daaf35cdd525c3ee0e13f76096b363858fb0b84074285074ab0e2360119f8e44b33151cf1c0bdd76f306842da8ee4103c5ae87eee9cde

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7054276b7df6001736ea5d4e12d73cbd

    SHA1

    fc05f33f8698f0fd52c53d14373607dba91db166

    SHA256

    8bfccf75bb116a6de0dcaa6aa5009b202582bead75a89366f41f39078d0d9d87

    SHA512

    5bf1bf21684503e2581c20c3eb1c3bce878244c564e7ddb75d9b1908fd8e8d2ee135cdf7f9c752e24f2343e7d290830a066353527b257359f81ca702ed557d5f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    522605157cdabe9fcb17952727cac777

    SHA1

    2e12f163adc579b686fe4e9fd9e3ee567e9593a8

    SHA256

    c00d7d7cfa5cf376482f25ebe81de73c8ab4a4d3d5f18705c16a918276d7dea1

    SHA512

    9f551d1405141012c1a71e1bacc1fe6b9b797d2e73348b23afd5a99361ecfcd665a2ad9328f1bdc6ac6549f1acbacf965f0a8ed5dcd964b3eb650485ec8d727d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    5220c1de824a1f39520c74fa126fb3de

    SHA1

    1db21d8169dcdec4e5d7174bad8f4d071eae341b

    SHA256

    9310c9ee17068a7dbf3ab4cf37e89f10b18963cef05bfa31e008eeb00c4d7f3c

    SHA512

    75297dc1a407c4017d30c19573170cf9e8d94dd3ad07e14759e0d37143fcdadd0c52dc306df19777d9791f64721179d5e3cacfcacdeaaf1676e088851bcdbae1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7165a0949d8ee8cbd91ab6c87aea4781

    SHA1

    be67075621326121694dde2ad4680ac217dd6edb

    SHA256

    46f4d10894b550002e3a66707f22b5b58a99bfa895c773ecd9ad74b38c59ef71

    SHA512

    c6017cf29efe25d204d5f0363c69c364d6e367904a62d681b76652a635168f976d078e6e0897bb389126dc3c7ef9a3a7dcd0d845aca4a2f824eca0a215799925

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    1004cb3d0d2de4214db8c77aa930ec67

    SHA1

    15b1f81b23dedabd841f568b22d1b58698ef6bb3

    SHA256

    8cb2b1256dd63c3cabda0edee92fa7785ee4e1b710c8644906bb6d269534821c

    SHA512

    5128845b37505771510960dfcf1e921ce92de4c6cd67786f61e10f9d738d15f35213cc4b407950217f089922e13585cbda4bac4306a342b26e95a3933776af6f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    f3e70e92a8201b83c888b432134af43b

    SHA1

    84402744264a0e890966c919517099a50acaffdc

    SHA256

    45c20ab540836587ab16b589b22f1b0501688e127ef4e1ecbfa72a6f6b2898c7

    SHA512

    79df51dd88836c0987abef9b1f9ba183e5b8a9d4ae2f4a4bf95dfede27f5e17b4b014210ad6c6dbeb4ecf478ecff7ff2265a8756541b267f05272f085ae5d25c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    09f6f03496b417a192b95fdeaad75268

    SHA1

    25ac2cd053634476e10ecc4796ef64b3b47c2ee4

    SHA256

    b4b0113c05c15bb60c35840b29b9e4740c46362e3a866c671431624989400dac

    SHA512

    12af99f7ae00906dbe5737c0ca8ae72fd108db485f75956f854773f3fc3a1a0d7196f34a09d5b6503ae06f3d417a9f88fe52bf162a91375209ffed4a2703b2b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    55916d9aaaad888eaf488b52e6456b2d

    SHA1

    0020d38e21a5a3233bba29842948557454034d44

    SHA256

    fb925b324c3a3a1e4f36dbc0a66fc7d696ce7a8dce9ef7198772ccbcf6ada96e

    SHA512

    6c8f5d4becdfb9af8c5a99bbbeb36a26ee615689dca39509bd1cedab02a6456b3dc086edab2e9af2b80deea31a5c9deaf40084f28665b7a95ae3fdf956219ef9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    18d5fcc510c7211d146d93b228720e1f

    SHA1

    e9abf57f42f9d5e7536825997131156db2cfd49e

    SHA256

    d02999ba8c197b2dece02bd85a91b383dc1ec61439ada5dd436cf478a6da819b

    SHA512

    d7c4d89f3ceacdddafa84686317ee07d92fe75dcd21812c6c96a5621831acd514d605d2d300037fc1807c00bbb182129f827e31614722d758193acf7dc21d2d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    bcf78cc35f050e4e3862ea426a9b26c9

    SHA1

    b7ec68a4c436a92c333da466b3e0e07280ce3485

    SHA256

    5b09eb1977077e1276af6298c0e40eef1c51f429361f5e65837edb870fcbd75c

    SHA512

    eb76cc71925de43e2bbcd936801ddfd30d6c456a1f3b30e9a4b138a21f7b3da94b9a40bd77a5bd33bf4b70b241072294ab48614d09bd5563c5eb8a4d57ab00c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    94fedb8d42bbe00390d970e42690e93a

    SHA1

    822a41e3e520634ac9bfca28629d0eb057300e06

    SHA256

    57ce8bd16100431bfe0fbff60f2d0d5e571d78df4befc0d270a5012b807155df

    SHA512

    4cd1b59744e06e75aca0cbb07780ee7b008abed5719bed346e183b0ea558e4af1dda16cd98b0354f14b230d6b1212e5ed4a415f0cb09f8684cc7525e71cdd3dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    61622ae601510b3acaeb737c1ab3b522

    SHA1

    139df85ff9c20e9510f0ece99aabe6e000edc9cd

    SHA256

    ff8ed04d9d97aadba33c1d0512d3660c100bac45252229f3dc3bb81574484d8f

    SHA512

    a6a98924405a52050759982aa0e2868befe1abffb59f329274c03179869e6b4a56b4b0e221c46718556eb37b9bed1dcc28e37f63adff7aa2cc27e7801a12d42e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabAA54.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarAAB7.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit