Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

HISTORY.vbs

windows7-x64

1

HISTORY.vbs

windows10-2004-x64

1

arpaname.exe

windows7-x64

arpaname.exe

windows10-2004-x64

1

bindevt.dll

windows7-x64

1

bindevt.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 13:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch08.html

  • Size

    6KB

  • MD5

    255d59d149fb815e947b630647729242

  • SHA1

    d44c5452012c75b35aa49afa1fb116347a23bb00

  • SHA256

    79522adce5c93204792a8966c8ae94b4011c716c82622760c2a259eba52d3e45

  • SHA512

    65e600e5c72a4cf4dc3c7f2410352a96c45bd88bf0f26b3d01dc4e48b7ca7cdb93b661ce345fd5ec61bdbb07d19b623d5e5c83c2c51a12d7daca65209d2e97c5

  • SSDEEP

    96:ZBAvOHe5T4P0VVoIJNaLga+AK3fmeeXQKDT6e8eN4teh3NedL3n2AeMgonFPmnFG:ZyvOHmDJNSig94WN2XFmyGivN80

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch08.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2876
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2876 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2888

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c497a947c32792272404dfebee0558e1

    SHA1

    8d7eb9b808cf4af30044e87bc3e4447dff7b1cc8

    SHA256

    a017aa695a9d494fc6415b7aec30b503eec2e2a8b411582b2af31c702d973976

    SHA512

    f0abbf71b0272db896dd98f09ddc082a8fdaf4502af2f53257594bc4827ae9a59d1d195b93262c5e7ae126de8ca0d8a1a76affefcb874d4ec22876b7dd1b0b92

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4d856cd97cc2c7d951013136e63d0565

    SHA1

    affd857b93770ead8b05328f7953ec507e3de325

    SHA256

    b8b22fd969e56a59266d5f45bbfd95594f0d8dbdd3a85433656da618b315958b

    SHA512

    8da7fe83c8434619318cfe121bf8836e434807ec49dc2722edc6039e57e81fe8a09a274b6c80475c3703a5b80f78a9d5a0c27e5f7be2a7116129ce15d0198937

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d1da348951d27e17df1a3094d235aee2

    SHA1

    8c3700cd917fedb4455dad8d336b382f79655368

    SHA256

    512bac060fdf0f404eaa55f7074e076d1293e9dbc1896c4db3de67651239eaf1

    SHA512

    772a975f18452221926f8f4faaa18a825ab749e1b9686bed08cfb8616a0447cd917d6629b2b266d0f8356ed47fd00b40720bf6a200df6cd84dd235421c014af9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a1a588384726d9a541f793d707489135

    SHA1

    008ac49bdd1775a8e2ef0342e01d051261402412

    SHA256

    4f9342f964544162c88dfec6fa9014f01faced6736812666bf1e5eb880eb89f8

    SHA512

    2efdec46e65fe625b471a1d46dd3ff16f74b618cfcd01aa46ec79d9bee04a3dc46dcba503534c198dc8671f36fb785cd7054afba2826f1074021b5da2f751968

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5aef84a981bbea539410e70787d85cdd

    SHA1

    4aaa15ca3fa75ac5966361c51deab218ec242edb

    SHA256

    cc407b03d6b738dd54034bcf24afd194710149fcf97f1ed812e073ec42d9fecb

    SHA512

    e8df28fa39702b7bf61e523e8973de5f2ff30def6c85f269e851d071cf2cd557adce9c3204c6d3f48f85d7cba5d3d04c24b61bd4905cf19c9a0aca658feedc4e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    435da8a026e4e5821db1175cb7e09e8f

    SHA1

    341e5cce621fe6dd4087f6fa6c185c1c87b4f4ed

    SHA256

    c11d8a285d794682d3eeb7365f53d2b22da73374c7e51880ea6f0c883960e608

    SHA512

    5b175309615cb7d2ded602bb78e1650340ef4863e1bd902efe721c448365cc3f40fe330a709e516df5a3d5d3a6414f3ea0a667513ccf613ae12360d1a0748215

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b1def588e4976e34d76873bef146be57

    SHA1

    b4b9555ccc2ff2980f7dbd9d3a87f4b36785a377

    SHA256

    3ed826bd0a5c61190702b1f863395e20fa813ad61b5d0f55c9db0f98aeeefcdb

    SHA512

    3feb21ccbfab9069a68f6676aecef58af7390bd1f7b824d0655422a77ba73aca0eade457b695190502de3f206f19d233644e09f9d2d3d178ebdc052188637c3f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e84dc7ffa5594170b0b487de99a8e431

    SHA1

    85098595503cf60d5cb648b4e1a56ebc157721d3

    SHA256

    398127d7d5eb9c6f121aa890cdd175c7fb8e541b366c5843448768fcab3eff83

    SHA512

    98cc974689442c37d58a4f9f0fe65928033e5572563b0193660f67b9def37faaf5d188f228f3c9f736ab68b6f6a6da6285c29513ac937c6d8d2ebd3c20c1f32f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b8c57cef2b3f7503977a6af4781c5dad

    SHA1

    20f356438dc227fa079519364e78c530ed713b30

    SHA256

    d0dbd7e9e80bb11c5ccd535466e2901a9517af720a5578aa23d2a2f5215e06cd

    SHA512

    e23a63ecfe5015d59126397a9ba3b9be2ae2d7491fd4e275f072c600f8691bda2ff95a3a2d4a00d643581789b9abbf6a533375800de18712f631ae8faf01a9ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0ddd625a8fc60953eff27f07fd2f6fd4

    SHA1

    bcba593f5832f87e0ea5c2145c327979407e43ea

    SHA256

    66c6c21e967f346a740691cba2096dde7dff1611045edf8649c1f5bb816f4013

    SHA512

    8f802c4273de3b502dbd5705e734b2377acb6d6b63c7720eda326a3f16b9f11923d151139940eab568701d25476e60e98135f618b6d29c87db2890d8a0412af7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c6bbc53d35685366a90cd7840ff9a5d6

    SHA1

    db37228234165e35e5b44f5d6f8f34cb2d8e040b

    SHA256

    779d5581cbe61e0fe0753af6f0b680ff01ae7fe52ec158b9b04f5929dea7bb71

    SHA512

    0d81b99fb9c533d3a680c2d1475dd72f3d323e92295973fe6496a5284d87786f2fd72e18785350709a640624e62199178bcc7ac79f736ffdfaeb953a5ef302d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0e9f7071d8fd5d11cee8d957101caac1

    SHA1

    67d7c4d1c47c2a0687667697a9e9d95507084e2d

    SHA256

    950ab88fedf863faca655fd6b38f6c48ab5e82db3126b3d445573c9055e64a2a

    SHA512

    21eccb6b19eb276d6ebe75fd7537d21ccb9815c60f101a5ac896073bac0f627a624e921205973d1f89467e361bd1cabb5a5d05e2361dbfe84399347fe4f43db0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a6be2ad08ea827f15ac40e1f1ee17128

    SHA1

    9eba7772947f1b7d59372b5c3c919c38c44fa116

    SHA256

    de1ab395de7ab07483c98a65ecdaefbf3b3e5079b8e86d1cceee47049c9a1a19

    SHA512

    b877cec71d1f353d587e8248a4df1e3183758f09b66793caf7710772f947e52a418ba7bc211827cf9d4426e187e059e5c8dc0b07c19676f6f6b1748338b6e4af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    22563683ef6606ff68849af2d33e4862

    SHA1

    22d967700b15c5d5f506a55c92ac1565cbffb7f0

    SHA256

    2663f2855d01b43b2d38761858021030a313e56d8d2a8ba2499ecf84966e5511

    SHA512

    7a7b4e5233437a5d31037993622dd714e04a2601b02b536fa3bb7eb0d1ecd64e992540c96e83284fd1f4970b82ef7e040677d58bae6c74956ce1f85ff29f95f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    82d17a20b4a69775a6310ed728d850d5

    SHA1

    1c227d4f17dd0a801a94645cc17ad26d1d0db084

    SHA256

    cc38a313b9eaa73e28d5133f25aa5fe217c7f5da503b9c022507fcc1118e5716

    SHA512

    9a8e004c150a06d615b5267fcbc0158ff1ebdcc23c46d2bc7f62a2176dbbb3204f06e998681c752e07efe588795c2353f2fa9ad9287da27d43d72ebd16dd1b59

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    42cff26ce9f1d7d618f9b6778aea071f

    SHA1

    92c4eb2322897ce4dfad6a679632226ad7939fd9

    SHA256

    45a9c3d7e56647b34b329109997ef2c091e876c3442f17b59609b6f98fc8ad35

    SHA512

    ff1add6aa0d512f6e26739bdadfb8677d5d0317805c428b4a8b7735974884ca2101aca6d9d0350d961d7c56efe7067d538603d40e6daf0ec967afd564df08254

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e143effff43c8397454962f99a3596a8

    SHA1

    bda9dc3cc34fe05379e178da384b749f49ca6e32

    SHA256

    819cfb49ed97a501a161e22e8f4400e19265ea9e0f8986392172773526cb6683

    SHA512

    aebb7277a73a36cea93a5e59ec8e3e59a922731de22cc7e57419741dcf57353a9caefbd931eb22bf8984507dc04fa38948414853a0fcfe5924c5cca48e15bf44

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    085d4d726c2091e6c68fd8ad686dac3f

    SHA1

    27d3e2968c661728dc9ab8360fdaed76daf39bf4

    SHA256

    2c9dcb564b40c3989d6db51647a4ee71693632d8c2de500565969c0d4be5f169

    SHA512

    ca637ab513d46d8a8cb333fc351f9fbc7a578dfcd261148352c4d8000f64686b7382920b202863decdfcacc1a6caaf031cceb3358e742649a0e44592bbe7f083

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f51a762a9b8616e48563f194d48a2d4d

    SHA1

    e42a7912124a386798e90596f61ef37442d80f2e

    SHA256

    416ffdebbd5f935673832ffa66f6dbc64139c49c4eadfcea4e0479f000666052

    SHA512

    6569f8a0692ac522586b28e0f8641f842266ca7e31868bbcb79aade65403300b589ec084e3bfdfae952482636aec3e761a3750c16f965d9f5f82aa47d98618f4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA5B3.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA5F6.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit