Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

HISTORY.vbs

windows7-x64

1

HISTORY.vbs

windows10-2004-x64

1

arpaname.exe

windows7-x64

arpaname.exe

windows10-2004-x64

1

bindevt.dll

windows7-x64

1

bindevt.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 13:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.html

  • Size

    24KB

  • MD5

    092838df80020bcda038eef223ad9185

  • SHA1

    857cb7fa3c5bb7888a3eaf50ce4fc931803b45c7

  • SHA256

    710b91bea8c281b8d824d29265af3a77a042cf873594dd12d1c657b2e559041b

  • SHA512

    50fe74dbd94a9d88889e1f166efd21559ab70e88c2532a20476c8a535e610fa8f48891f397fc652339e4a63c8387d94ff5dce4759888a91c8eca5d295c91a7fb

  • SSDEEP

    192:ZyvOHNepNSpKeT4Ip3hkjUBrAoNLc9hMZkeArnb3dM/MSBZdv6Jma1tDHaHzz0:ZyvOt0Yw24IRhwoNk1eQsKDHa0

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:768
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:768 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2324

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aa7526588f35d56c27d98949cda54b50

    SHA1

    e70e12323d57b405701251951ea3848f2d275af6

    SHA256

    24487225dfcc7b21ce1730d66cb2f0f293daeea3a67525599742da980ca09350

    SHA512

    5cf3c9d866385c481308d41be1c98567ceda1e9f3e5f16c19019999b30da8c4ea5bd26c0bedf96f06b9fbff18ade6210fa117a9529c64de45eff801d49422792

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    faed533e6aedd3d6217377bea7235abb

    SHA1

    9a35a9b4f85f36c0cf9a57d894a74c60459bf7f0

    SHA256

    8d3e2db7dd15b24e0f276df86578dc8dee29f852efa27ac1d7ebc3b16647c15b

    SHA512

    519e84c6d3608c80918e2487f263eb29ea9183e326831ea1d7ed4fbe7929d483e2b4a9f5e4f3ad54e963b3a7abbc0685bc41858f448a93c5c0366b82635a7c9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cabcbe60fda8540fee516e6cb7025ec8

    SHA1

    09ff2dad9cbb1fd226697cac69aaf9dcda5edbfd

    SHA256

    c917c3349a963978211458dbff7c4cc61ea33990289c156296fc20ec97fc1198

    SHA512

    5dc6e52968d647ad762667e26fcb71f6e6743ea4ec61c59e70f8b73070ef1e05b14e00c6d2933fe36205301133fd65ca09d042492a5c50276f86fa6465bc6de8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c55ba9a9c80501bb7f7896c4bb87224c

    SHA1

    c1c4aae58c6a08c6814596456e8168a480f49fc9

    SHA256

    5f48ff363107c6b481826f6736614f749596fce659f2a7d6fe6c8d71d2b7dcd8

    SHA512

    b9f3182e3f466054e963de7d6b071a705d515a75ef97e04573177c20fd9728fd34917af1760500648354f89b30abf500b4006cf55dd07ac5388bf47861cb1034

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1da9ec087facf475d8953917b84c7a8d

    SHA1

    d8fe65e8611cf76b8c2cf7a9712cca4a96438b73

    SHA256

    292aaac59dca1a02dfa5fa1e6f0053d11378579f9a8db62b561fc05608e7a362

    SHA512

    372e0009ebe39945350509b63ea3b34ae57c8c6cb481a51d4ff693c14b6463d7eaf578de3e683e3ca3ec1a8581712e513cb3aab08745790688ef0b3d8181b570

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    20c8a245c140e62ff1eff1bfcfa78230

    SHA1

    c07126934cc15bbe669e6ad3ba80f3cde3710c8c

    SHA256

    f9c30e603769cd553b3470c6867d4237e3b5e18d5da9b7865a0a27b104d6d3f8

    SHA512

    cad582acdfa9d415d797056c3fca1a9a3cc9c56b5401702a9c822fc2233bfe76fa50c198c50bff4a32440d65a38073bdf548726085b519d4655845d19814d90a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    31ae877a6c9e9981512f737f8ba41bf5

    SHA1

    5091ca6d091c0118d6f44f2bb174ef7122c90aa1

    SHA256

    c616d49bc1f973a5ab7112aab768522e1108aee4106dcf17c7dfcee65de3bba1

    SHA512

    594f9574c6e5a3bf369263735e8e676c7ced976998629482bd9e5d549c5e866887128f626876199a2c8c52b8778b7951a61df83d6843aa91927328448a32f798

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    78dc253a2f18033d833576d9fbece51a

    SHA1

    e936db7e7f1f3440ba6f1a5d78d72e47bbfd6cf0

    SHA256

    f8231f04f95131ca024941213c86325a3a1f5eda31cef7de7b0d956f96deade2

    SHA512

    dee4eaa61d31c51809e09c90a0937588b6849fcf373c4c51a8af799687fbd78aca8698aea640c4398b341ebb6f3124dde17532dc0fcc65d73505b336fcd88d67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ada3bba5620b26d888903c1e71394811

    SHA1

    61356b1fce854d1e594f72771fe4a2ea11882f37

    SHA256

    b2b02bae31badbbc87fe2cad5ab625b26e8520ace31f62867939258d83bf09ce

    SHA512

    0c4ece9167f3683035422636cb58ff632d8b8bff645a9bf03e782a21edb6f79effd204c08cb1f6a76980155ff950cc5fe288802405f2523999e76e9a0895b840

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5fee0ad6e2daeb5b6c4d58cb8545b9cb

    SHA1

    caea3cb598d04c81835880763210dcf36c13aaf3

    SHA256

    16799ea4e2bb219945d655bbffcd149f3270944d44264d7df62d4c7e9f021b78

    SHA512

    2a4a08a03e02e5c557b7b0895df38c3713cbb69dcb2b4b098b173493cf25a329d9b8d347d93ac01722efa6aa17f0e5c1b072fa19ce0650799e62dc6150fbbd58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8fcc06d6c47c50e0031604ce49b9df2d

    SHA1

    41fdffa4144b9ba47ba4a41514265125d5012776

    SHA256

    0c6e14ad96f92e1660705e8faf9ba7f0c92e1d6157ec9801a7640ca8f9d80da0

    SHA512

    dab9f95fd4e02e43904894ad2f4168a8a65282e5663108e5c29082e246e58a3d85798f52f70d3a3f25ad2ef78c5bf3c03734e8e30c55b07db1a14bb88b4537ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0dac4d4efc63a025d5817f8f0e613da1

    SHA1

    c4d779fdb150271788e05168391210e70c7f182e

    SHA256

    ea9e3a145c2832c6a1a569a31820599a4d33f33e16a175148bac5e2eaa4a24e9

    SHA512

    f95fc2c8d4c9d59e7d765efa5402f6c0b28e465a192edc1e4c93c488cac621b03de038e7b4bee4683e12b222c2b349a0ee0e524a70945f80d81814dae294d3a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    28165a83e298f564c79ef3c7b59c37b5

    SHA1

    073194f26c8173ac86d05fdcac97cc8d712a06df

    SHA256

    9e11b146826b595a278a376ed7c68983753edfa62ea4c071cd9480ae37121136

    SHA512

    ff9710a66cc499d9206f7024fdf526707961240418d83857ee184997b94ff458faf0c0a46919aafb66f6a52ea37b6323e8014ceb2c34ba8a9f6d697fd832efc8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a936d34a46294abc65a686ea01a01f9c

    SHA1

    3fcaf73ec2beb76bd82bb011ead1673559ebcdfb

    SHA256

    48331d972e5dfe2d829626230ebc36714e2504abd73bc60f110f5108d53d1dd6

    SHA512

    9abe6c7a81f9ad4e9aadc5d7fd5c3ed75ae6a4b62ad05c4554eeea994e8a75a91cc6dc0b670cb5746535e9c9e31fa6dc20e7db464773508a362269b174b7872a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    09b13c7f88c5811fca3970fccf8afdc7

    SHA1

    8277089cd2efb9a727393be9ff60a5e2e50ebb52

    SHA256

    f39a1bc74901b3ff76457c3cec7226036dbc8d276407804f40fc126e93565096

    SHA512

    100c3a009c29d94df9f1bfdae365d7a26baf463fe2a1b0d503039ae8394f78dc11f48d2cf443de4e93a832d4d85e4bad47c669509b457e509dc54d26267f79d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    15c46d9d306e2ad574553016589afb2c

    SHA1

    d33bef3e4a1644fa5fd64f90af0f1a609d0ac475

    SHA256

    3ace63030a0a25fba549b05bbbcb3c1606cd37847059f4aac3b3f3c45fd21fc0

    SHA512

    bcea49698ed22d9a0bcf27e819f247a3922bfb1bb130c1874f3d14ef3f76121f1b3e9143c290b0b2c4c042d7b3f3bf336c75c6ca00b9e6cd688af89e6abc2319

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2650a0e421285acc2bb89859ae8f7074

    SHA1

    3a05d6e355eb1d2e6b92f38f25a476dc64567a9c

    SHA256

    cfd62b5daacadb5267f2f668ba4cfdd3cc17d7a495d46cfc344ae134acba202c

    SHA512

    143581ae7566928d0e0f37e66a1a1422ddb42e59cb297727718276878353c6e627b41a9f634ea2ebd7e204c9c39afc1ad8e02d47c62246d6c9a3811753662386

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    37f6cfdfb29d180f27e6c069d165cf7a

    SHA1

    797bdc92220f2a260dc41f06e0d8440b7d13ea0a

    SHA256

    4ba3bd22194af3b02fa3a3773f1104547a4367cdc262ac19a88f5d032a1e2839

    SHA512

    347ad7dfa5293681c38617cc9e473aac31d27a52d52aef7d5c6f761cf2672ca1998cb88f5a4eb3e1254639001d1948ea23ef1ab246ad38de7733e661bf2748bb

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB06D.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB0EE.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit