Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

winprofile

windows7-x64

1

winprofile

windows10-1703-x64

1

Analysis

  • max time kernel
    265s
  • max time network
    156s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 04:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ff1f6a397a1b64dac9ecc817f0a0a25540e59b7c0fc05fd802df2dbe0252354f.html

  • Size

    377KB

  • MD5

    5e1808d737442b7a245e0b299fd4fd2c

  • SHA1

    fe1a253c0f61fe43ec15f77cb552ea00164f11f7

  • SHA256

    ff1f6a397a1b64dac9ecc817f0a0a25540e59b7c0fc05fd802df2dbe0252354f

  • SHA512

    153aff7beb65fb60c7c70e8a6c5ac71de087ebbfef57199a66060acd0c1def93a9d5002305c17d00118ca07ba2a77f58d418112f1b86e0971d459febad8a5f92

  • SSDEEP

    6144:dr831TgcXSuXnkZi7Gyh+yr5hWxIOOQvxI2+:dri1TgcXSuXnkZi7Gyh+yr5hWxIOOQD+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ff1f6a397a1b64dac9ecc817f0a0a25540e59b7c0fc05fd802df2dbe0252354f.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3044
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3044 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2056

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d0a89dafdc5a42b0b9314ac27e1b9b89

    SHA1

    1905cc8bd5c003fb4e982c0d88d9d237ba1c646e

    SHA256

    8454f40f777714cb84e7a4a8dcced3ed08b2a8f8b1918d199678fd6b4aebf01d

    SHA512

    8517d18ce5d84e6a44e00828102f5fabd6585d534f8e680bf415385907208fc17d48ded388915ebbcc6d76e12e0b06b47889b6c473f23e3a09dd448a08dd083a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4b3a437ef4693c965e3a267478c278d2

    SHA1

    a143763f6bff71e82a526a1b1e20d55a7de7efe1

    SHA256

    aad0bad91e98aa5d070adb09f5d38e50cc1e4d4a095a1d1de1e78d2dfee97e51

    SHA512

    1ea6c1e6c943b238a7c385298d3f4c599b2e234a77761475f287f6837fa9e9d2c963199e7763908ae718f7231b4808d8ad6cd281c3959ab9a322f15c452b4956

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ed115842cfb2d45ce0c448634f779a62

    SHA1

    5879b9d28a84c9717944455f6561cdc314c58a40

    SHA256

    ecd1caf341882cce0ee153495416bd46a2dbd95f928df492aee4e5e0f7831d0f

    SHA512

    209bcdff4d8dcae3eb5fb2b3347a4482f5f9861fb799cb7865bd355aad757e6daae612d92d6dcaf20f67dc1c9dec31e052b6cb41835807a0f45d24b2607dcb95

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b21f8a7777e493b7731db1845ed0916e

    SHA1

    fb7f2abb1247bf722500145eba060719ccdedb79

    SHA256

    a3f6981636bc710dac1e4c61cbb9190a22d4feb2bae72e8838e110d5d97ade47

    SHA512

    027fb8376dcf6695cd41542a7095c2834eecad65031c20f97941fd39199359c648f95d1e4e06040b89f6d8cb65b3fd2f0fb9a90a052b97352c9336cff8d22158

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    516bf62800211040e072e4c9bd7b3d17

    SHA1

    9f44656a97fbd9c2982e630dd1909469aa742e0e

    SHA256

    51ff95dbf32322727a085dd16cb217cc493f48967e7fdf95d2e98a63925fa06e

    SHA512

    0906ccf85dc322f08af2d8c03b8fb1c8b54c1304a930effe4a3d4f6f5a7c8d48b106430a3b2ff7ac3ec1fcd3eb8fc2739c20d27840db35a05f0c4b8015c7da23

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8c59e620e317e02b762f3058e955aa9b

    SHA1

    6a2e7358d6ce9e63aa3061e67223a9ce2d3bf932

    SHA256

    17a23379fa2715648196ba58de0d8a0e86a678b3091887eee6a14dde997075a5

    SHA512

    12e34fdd55094e0fe917b5d4a3c74ce8d5fd77db595fa3af21b11a539ef776323ad6d8a5a6c5cac244e90494a8eccf942d79798e1500357a283eaa9472d7c5a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    95a817998485e701a972bf1070fef537

    SHA1

    ec6494911f7837901f4d814ddf28ac937f3f975a

    SHA256

    3fa7e80fac88d8afc8db2bb9ea4ba4e1301cdca97145bf8ce8764b42ea50defd

    SHA512

    b66f625c19a9ad32388d00fae733811e2b217f70eb6b8749aaa8bd8c2803b97ff865e73f7356484c55186153313d1252615493b721c23c42c9f8cf2cfddd5681

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    141421fc170cfebec259b565a9165001

    SHA1

    2164263ebf07769c50d83113e894074c595d2e07

    SHA256

    8794b578370b3a7c784fc10fa7a94874f0c827b516cfaeabcb74b48cad84ac45

    SHA512

    bfb3d62d5ce6e49f740f9be6db43410998edb93b5e7afb1919ed04e7bd9ef378c07808f9df128f2ac69975851572c8348983fe83403633976318b3e5ce0e8722

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8c037604191ce3e0b3f9cb2ac5fbabaa

    SHA1

    116d14a1d828472ab80c8bb752798606099d837e

    SHA256

    ee06e7d08edd3247ad61b7d92c7b2071af88559a02a78571831d8124a36e1864

    SHA512

    de1d3ca0787ce494ca251f04c27d83f6f24ddf41ebdb4b869db524b509825d3975139d9c5df49ce4d17dcc1bb16509b10af2cee1052543e14fd2ae93850c33cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f384798735bebb6cbd161c48cc6e6c2c

    SHA1

    7efea6d4b4e7965750bb67691ae04e65004c65ee

    SHA256

    a850618fb0086e0ecb8b96747c0ec04ecce8c531e75ecaa1d2c8430a2a52f8b3

    SHA512

    54a68ba121e26505b876d5837d04bff925b32667179722a36ae9c33c3dfa4cb95e6efd1618caeab30a6c0523db26cab559bfd1b65a6a59187a4e1a7947193d13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fbf9b8be43db44ce6a4499a5da9e6406

    SHA1

    6cc6484575408b7c28d5eb5c28b11fa7e84392e0

    SHA256

    7652d1ae379a82b7606750dc0770f75699bf4925433420a70bf175d0769fb68e

    SHA512

    d707a00b1cf25ea016a45bdaeef200f49f6579486b53d888bace657ac9b868cb9e8fc34ee903995c0263c14906f5cccbe725be57a88fd38620010505dc295492

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d1a17c05e29fa7fdd54f019b0903a132

    SHA1

    96fec19903cddaba722813e7f842a706d5293c81

    SHA256

    83faab2147ecc604f84d84c3380d7f16b8b66516977f1d2fcd47480f0c1685b6

    SHA512

    0dfd0f9a6bd4f520d05916f909cc11e0a80fb4577a0aa1fcb4268974fa015c37e953adbd71d8ff2db4d812768a4937b49b181092f9e5ace24ac0476b1c89f944

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    be571a47c498e921f974aff52efdccdc

    SHA1

    79fdda893585ecb86702b245018ba5a42f2aa64b

    SHA256

    c04b30ddd6fc492d8a50d0432372dda56d546b2628425450f2faff7accd8aa72

    SHA512

    eec0b82fbc810273f7f44318837ffa0544945ae0fa8fc6b5ec579973507b73d613ece25ef08a20168005ac2d91376590586be8e9f35175c79de40b4fdf980516

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    71ef60414c03e286c30f515f06c45971

    SHA1

    c91785f58ec63f387292b234a45f0ef7cf5ee009

    SHA256

    5ed899bdaf421e063d75c610ab208fbd2b3abe6af66c857e694203fb897d030d

    SHA512

    a377f7493be77be573a4bb8f362388d53ddcaa965cdd190ca8262238239d1ad5e44be735ef4ff32f357b06a44411108b3c61ac0c7248554c5c00488d3fe5d58f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e753c6791c405d3d1f1a1356aa1422ad

    SHA1

    55a1b80b8204dc3313bd3176738e90a28e184788

    SHA256

    13b1b98941651b727c1233a84d12b6dd5feaa0bd3c5e421cefae5be813430af9

    SHA512

    4c9e3e22383d00433f28a3d1cbb036d78fd00970e948227066949ce34983d8f8af11e6cc0032e363043c1a60637b94b80b8eb25bb16fa192821900dec0a09443

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3a967109f8ca9406a56cfa9ccbf3ed57

    SHA1

    0e7fae9e29b59b07ac9939cf671724a027fc87c2

    SHA256

    d038fe4a8f5dcd0df57068d68c9abf436558dc26c4ef1ea7c1cfad05346ed4ff

    SHA512

    a00fbfe413e3435636aa0b99773d5a2a2ab9416976fc9e7346c0ee39d858f3ae8554ee88f75b0b15db2a924389c6daef9fcc3b590ba023c47834351f6096b53a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    24bcc210620782269dc98ce07a48dfc0

    SHA1

    367a789e48c868a3cd4d1f850ae2f471762bd1ba

    SHA256

    b150e1e322904f91ef8cee0547294b4cd121c044c9bd360b8bc43d7f20796a69

    SHA512

    9e584d17c7ca5e4c8d550c2d95f92173920858418b5d4126fdbb3989ba36f4ce8c213cf6b29979e96bd5e0397f1c99fc348b333003f04d86d10a95b853a63e60

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8c29ed4b894128f27d66532b5bc0cfa1

    SHA1

    6356f4f69a75b48a815b880a00f68601bbb60938

    SHA256

    c42801d64fcf428f39e763e87306cd9338ec29898326959e915e2598fc9cea30

    SHA512

    75fed4309c02ec4067c5161d88e44c4319b1639c72b99861336ae7017a200e9d97419e31d39f0b8449623da43d406d7f2386f23525429efdfcf93b585fd18eb1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    698318b857cc7326a9daa9ffef6a71d0

    SHA1

    3efd0c7227b3b5c3e5d2080fc725b9d0d7f13ec3

    SHA256

    59f3e5ff6904ecdea034842fb750da787cb999bffa23df095686ca02e608f896

    SHA512

    3f00d80500fafd6106def88622bd8ac8bbf4474181180700431f2849b15f323ab0d8c1c148ed000a83a92ffc1b704163fd060bf98f166652d32b09dbcaabd06e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b85484f34d9af13f447bcac9b2036369

    SHA1

    c00c124344d75194e9b943e5a5b0023d53ec8297

    SHA256

    1a6dedfc95f28c99cdb8549759904705207d9b29fbd7c418be22f0fdb7623b1a

    SHA512

    6da834fd6f87b9f5d1d037d7d35d87cf955325ced00a4ea4c8831d88adfda98e1253e8dfd2370ead2c6efa554d1eff5bb145b84c3288a2a9f48317b394aa2a22

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H57AUUE9\likes.7965f6735e8e39fbbe73[1].css
    Filesize

    554B

    MD5

    d11928ebd8a1101a2d6b4476ad292606

    SHA1

    e369a7d65299feb97d8c11525d8c831cc463c63f

    SHA256

    7bab9c45d7c84255c431ca155530532d5ea19f30bcb389db20f7edf26a5cd43b

    SHA512

    f3999089fdd2719f70bc2999b1b282452add77eae62c4c55777ccb376bd0d0a3a738e2492301a9816df4885f2693fe47a9539a31ff47a445b2c86a1b8a6cafa1

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA97A.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA97D.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit