Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

HISTORY.vbs

windows7-x64

1

HISTORY.vbs

windows10-2004-x64

1

arpaname.exe

windows7-x64

arpaname.exe

windows10-2004-x64

1

bindevt.dll

windows7-x64

1

bindevt.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 13:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch09.html

  • Size

    67KB

  • MD5

    b0b0f2df633d62bc09907e9f6607c2b7

  • SHA1

    395fcf1207d59cc8a9674ff16f8ba810352ab9ac

  • SHA256

    c1c603876500628477b142b1ec4ec95816bef44349dd2ceceac4a5465d3e981f

  • SHA512

    3bdc18f4277d58d66ccfce885854bb62d277f7f15d20a5344b1ba21b22d6c5fdb2db5b8c059e961fccfa39043842de9158603e2d62398114d5882c986ebd6613

  • SSDEEP

    1536:Z0OBUSJLq0gP1W+W2cq2DMrbSxMg3XkuZ:Z0lSSY/2cq2DMrbSxMgHPZ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch09.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2668
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2668 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2636

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2e6f96d2b618640d18c8482a4f8a28f9

    SHA1

    3df5abc8c0bbba9634cb1aaca0d70f901660b9a2

    SHA256

    29f5afb7cb7255b48d181d79e56ba7670c4fb2d9f7c576f4113f08d5ce704140

    SHA512

    b221cd5e78b27f6b11ec0fb58731403adefd07c2f3839e80f0c07459afd92a57c7093310f48175762b15666a6f3a68dc027782a8fedffa95a08343b291434a0c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4a447bdbe8878c25a2ba947859eef3cb

    SHA1

    92f5c19c01e6eb9f4c89dae11c7f72d8568e24ac

    SHA256

    1ec2861ca7ce132a5b148f241e04fcc5750c1a27bfc478354b576ac65ac40b37

    SHA512

    0bd8d35faf12b83d679853b71033837b39bbb34f519f17861010d4dd9f5e1f3cec5873437d3989b72a986ee0daf202506c16410d2b435a5e60188ab930249348

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    69227bcc72814c30b49adb03a8c9b0c2

    SHA1

    c7a4e714967e11850a14bbca38251688ca4c547e

    SHA256

    3551895599bc4b4fb9f13b6f1cf88a51e6f31065a7aeda413eb9b620cf0a2454

    SHA512

    45f815d7d628b0df5ce1d14d3f44c52495ac07cb68bf9a67f017bd250a8873d4a1ed73dfbb47b3a2e19607d82d92d2126883d91750098ce15bab26e99f881a8a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fcacf70380326a4cd20e0837da8b95ef

    SHA1

    c96db1827854da58a3093bad7328ee08f64ddc60

    SHA256

    996ccb33bcc006473c47aef7e4f6668bb7236601bec31fc6e601355c41ad6a1f

    SHA512

    c6a83e71d6ec21b043703a807b7324dbec184510bb99af50cbf91c481c8dd5830d9e8725c2891c2a5c64b573805e784a669f4538720836ea2050e25150924304

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c4a2557f0a53f8025a65af00672d7f37

    SHA1

    a02fc842b3055bb222464de2cedd480dab0ccef7

    SHA256

    f1109b1807cf46bc3eaea4d15be5564119b58de1d06b70a84f989429ffaa540a

    SHA512

    8f5218e089d5d8b1e84274ddea4a6aaada579d4499eb660b4b660a730a1e1624467a939da0eadf2ce8f39a933a2b6a9d26cc08d56874b55e6191375324525a1c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    97737a121fc1ada76ce81c9b6cbbe875

    SHA1

    0731aea11e1c96d88b891c3fa1678c1478c6ccb8

    SHA256

    92c27fec4585ee598a980b71094ff568d073a400ce15e672aa23412d6c454eef

    SHA512

    0e39a1f004634d7f289291425815f5202895ada9a25e54fbc186576709ccf1ebb1058aef8605fccee507e34d0a1244b85532042280d7771269685935c9953b92

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bbf954784a88bbf49906d4c53bd85e96

    SHA1

    68bffbfff6d10dbb23a0052db51d1561dc6e3db5

    SHA256

    4810edc8dc981faee7f9701372b8dd7a5c5eaba404a35ed9eb66f99c65657b0a

    SHA512

    fa4ff3e4119b9d73e131d42c45f468bdf082139373065c458e3de474d4b1689865497bfa749c522d36c17012a8d541c7a7090fe1451613f3a589a5c24be88297

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    241fbf701fd7b7cc337cf6704ea7b5df

    SHA1

    402979f116c1b4ad3b40f7665dc24f38539a52e2

    SHA256

    971274d9438ab2f80673f520f0d6a768c00a6d29b55adfa5d9175716af40060e

    SHA512

    6a60e77e4c74b23804beac3f38c55163fc5a41075ad3585e26d7892a1f4e6d9d3e402e1ed824f5d6992820ed376bf10d154e6c7b74eefe5e38ce9a0e0986dacc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2b398b02721b14ba58398bdd6882f82a

    SHA1

    1f7cc6c8c81b9e79a46f84e55200ba7c74537808

    SHA256

    295db10482a4d63c228a10159dfc3607b17bbfed2754c6b8ad1ab9ef9c4a4216

    SHA512

    34fe37e63a7aa3f34a8ea129de97cc8afc7b59f715385ef33c6e28dbd28109f71107640dc1266f886322ae729a1d63639b45dd6a225af21ada576b9a93850290

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b8419efac2bcfa5c9a6522081cb421f9

    SHA1

    fe579db61c59c08a5ba44e5729812cd29ca1e346

    SHA256

    669a965a7612b82d8592529a8f19d32a030af2e9114242a4ba74888596307efe

    SHA512

    a03a96c53607b465bfb74d6e7288a53854d51e897ef8f21bca42169c53fd39d8bee16a85489a85fc905b123ce3d10ad9495c3ccca0352a5bb221cb0c5ac307ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    97895352ed67fda8ee040a9b16fd1fd3

    SHA1

    64cfa9fadac479842077c51350d84ccf4641d5a1

    SHA256

    647c76a41792f6672198f5cddb769d36bf070190347580adc1efc2aee7f0c82b

    SHA512

    e1ec6a52cd016156db4d656cdafd3540278e11f7863906f610f08382b22a3530947d2827fa298b778c7645b8687aa5b6aba9a9419725d209d48843063604c63e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0e11515e7af8568e4f85baef48f47370

    SHA1

    9e43b2bebf417be47ddcf3d192ad89b8b3f50b90

    SHA256

    093afaa9afdcf8c7f6033218065406de4e8217e4752cb1f96da00c0ff0ab5d65

    SHA512

    1eb2860070239ad587b18b4c6406a82a2a6ce8adcd3c9720105423a4063d20d8eee012cbaf0d867c0ad928d46beac1ff6da42501e24060e927f5041004c65234

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    acaa3556d585df3e88e3b198d65a4684

    SHA1

    e4bf342e0bba694619259be21fc6942cc1d6a09e

    SHA256

    35a3c4cc5c92fd20318a033658648081962d7dde98913865931b4fdc2ea44bea

    SHA512

    bf669b20c5589c87214b2a71f16a84185fe7ea89bdcb6e2791e839a92124db3e77d1e3c88226058eb85f7b71fdd2599c793ae69ca57865e3a0677029db7ecbe0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cc4f5ca79ba1c2f6db9e8efef3d0169e

    SHA1

    3969aa5770f46d564e90a2fd119ad11ad5ee69d6

    SHA256

    03bcbc0132f1f2e0269d94e724b64352ed1a31b7edcf679bc9d8ad26d3cbbbe6

    SHA512

    9536a94e1230accc2e439f6cc1136eb836c8a367a4be7103e91bae5702e5fba42ba6abcce40757347f6603031da829149f3733251136f1a6fd37ad30f2e90e6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3aebf44635a5e074c6ea522733aaa0ab

    SHA1

    156660784772e5e7a93d9e38a00689ee8621386d

    SHA256

    37ed66c7d39bc2a92b47aca2160c7373efddf5f329bca71bb09305eb61c4d87d

    SHA512

    24a02d1c65914d91e0568f3820f33537960858f193ba4b819e5c945b84034003787aa35a34db610ebea66f548107d34ed013ddc5a1bee037cb3d12a294727f8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ac0d2e7bcde3e50b179c9a63ced0d257

    SHA1

    c392602d85800d45fde2a976f59146cd06a44943

    SHA256

    0acf5cde71839cd2f29f1b71a74a27508b982fc5e832b97c8d14c5b9e8ec40b1

    SHA512

    ee7fab1499a0f4b20d3d9892eb208169cdb11561078205c7e8af1bc33e75b706688b80b747fc9e138062a40c8448075b8ecf00e140391eef8b0386f8a9391740

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    84895b7203f85fa5db60282285f25ea7

    SHA1

    ec8ccfadf9eb0321fd68d4bfd91b422171e485ad

    SHA256

    cd9cef29ebde5a0334ecd8c17792b0d4c23d0d7f922e0a4e11bada5242fd551b

    SHA512

    342af8b0d8597409c860556a885f693688519ebfb5722f6f75941b9e695578cb2cf73d42e832d23d54f82a150977e2e6054c7fa3d82613b061204b7f26462a56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8a7df4a8eb4d8f91d648043637f0e4ed

    SHA1

    a570d5ed7d51f2ed4f18a3970fe1eab4eda462bd

    SHA256

    2f9385176ffa6f9b5f415dbe0b1d65dcd921f895e156e2ae01938820af8e1f17

    SHA512

    16915edbedd2ba7cced95b8dc4f8788d2c8b189e0298b0c06e3cca60871313e818c2a75bd7e634ff0744fe188801db37b6283548d0655b58d4a2fbe026df917d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab92BF.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9302.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit