Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

HISTORY.vbs

windows7-x64

1

HISTORY.vbs

windows10-2004-x64

1

arpaname.exe

windows7-x64

arpaname.exe

windows10-2004-x64

1

bindevt.dll

windows7-x64

1

bindevt.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    167s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 13:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch10.html

  • Size

    7KB

  • MD5

    66ec2978e79493da30461aff57030ba6

  • SHA1

    af7520c31d40580d5a56c0c0b59cf40ba1b41f1f

  • SHA256

    c270af1bf807c5db93f6ed12181f6683fd92ce1420db95e0edf727f2ddbf176e

  • SHA512

    c53447b4be024cb9db412a318347a617de2dbd5f766f79d8b7fc8faa94b5a3ebf3527264f248652eb7273f4abe27f6a1cc0dafd9bad1236c721eb915719e80ec

  • SSDEEP

    96:ZBAvOHe5T50VV2yNaLgAAKyfdytiIxN4gYI7XJ4zJa1JUC/byKD+qmWzrzbKpmAF:ZyvOH5OyNS28tJma1tDHaHPTy0

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch10.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2476
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2476 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1696

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    02092dab0338a7dd73bef5976619e42c

    SHA1

    4de4d688c40e86bc0083b9124af15216dfcf5557

    SHA256

    99dd6c78b667fb15928c2af20e0115fc4f6e56d8ff26755ab87c65907690636c

    SHA512

    751cfddce479b6880a0ada240700a93c5d62422f5c2fb55b5a6318e3ed6bc77eca2594d69c23f11c8df081c98028275df1f704ad3d8e20f6c25dc65bd972b979

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f03d2204e93ab7b915046f873b9975ff

    SHA1

    1ba283df7f6dee9bb68cc3ff490e65a4d71fea1e

    SHA256

    529a7d36d824de35f3d7869ae04d4d21cc0292d81eaf4d88c231b81ed12564ca

    SHA512

    e973afe5cd756f64b9d77b6f0f0edd3d7e11f36a080bcf8a0e652cbd7813ca5dde95a6e5528882eed4525452c76361527de1dddead971014b0bae9ec2d19c5ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9c9592d589feff9dbd37bf21dc7e5e4e

    SHA1

    4ab9773bff0d30cf5515c62b97e1c7c525a36bcb

    SHA256

    8bfe2db01859726bfa902d2aad5ab54eeda9ee3c38534b8939ef54b351cd7db8

    SHA512

    3897082189c50e218d7a58eb68eb2e7837f0c03677e2878b1f9e85c51957f5e8ccd549e012946455c55e5a439012d7932fe1631d52892b960e725961284c2c36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d5e62cc91cea5e6f0e07887595e5eb0a

    SHA1

    e3829aa7515c6fbd10de1464bc063851ccb3af21

    SHA256

    4d70eca02053805bd22f6679bcfa1f1fca2a025fcbe3165b2bbe6b6d6ebb0f73

    SHA512

    295c64e71874774d5b2c1d3d4e29956f307245c68fba5d11236ea5780e3a5ddd11440edba05e79094fa2938bc6527f66149cff7393c4ab331113f80a8ef326be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    47f305468c4af02cf542093a77d5c031

    SHA1

    ca3a09938214853edba72e7c8f971081aa3665c5

    SHA256

    ea61251723ca913ba6bde0aa5d6b78aff1e92b26c396463c3fdec8e11804bb16

    SHA512

    f8c0ecbae6ce53455e3f14e9c363b70a9bbab09a09d41b9b8773934f1bacc2c9bb8b824e6f43b73b79318b8915557850ffbcbcd8c5efc6289ac35762f6b1ea7f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    97be839c42ae849aaa03a6bb6e21fdaa

    SHA1

    0fe85f1540c34ca9bd4694c4da6ff0fc7840b439

    SHA256

    f562e03a1852124d34df0b4c4accdf847692d6563078e849ec92103d2bec0f83

    SHA512

    2e0f6d16401463cb41ceb657183f320788bf70bc473a0eabed8cd2fe3b2dc77689a6f87ba11b1f27eb3759d67a1e5b14ae8ddc32423d8a552a08c875ebed4b1f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7b3d6a2ba8878a58e5665d35ca5b65bc

    SHA1

    f8f42984cfb4a3f40a1ad72f1cd12a2eb2ebe38b

    SHA256

    780a56e84e546d741878e598bac3cc84f754385e3844caf4fdbd7baeef2c06a6

    SHA512

    a7aa39dc45df6dbf016e9805d7842e90ce8c517140b3d413d76bbfbf6c54465703325cfaef1b5a9ac501eac5c32d811223278931c33545ef49654c73d51ad31c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    afbf1d72a0ca672b74c773724e85f9ff

    SHA1

    88774920c50cf28b7cd1e33adbf971932a09c3b8

    SHA256

    f1d8ba8e5949f7d29c509b8e6a3c071825a5488b2343bc9fc8bdf32196729153

    SHA512

    7c411993ca3ecd22cd365cbca03d6efc0a03160d57fef715e490509f10838d567c782871391159c610eecd5c17d4d188a4e00a408cf03bd10f5ed623ccba1938

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF3D4.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF406.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit