Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

HISTORY.vbs

windows7-x64

1

HISTORY.vbs

windows10-2004-x64

1

arpaname.exe

windows7-x64

arpaname.exe

windows10-2004-x64

1

bindevt.dll

windows7-x64

1

bindevt.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 13:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch02.html

  • Size

    7KB

  • MD5

    3a9cb96f44a0b56377ada7f9e5e0b1db

  • SHA1

    70be6139b05347df6512fb0f531b62dccb3bd5c2

  • SHA256

    f88e732730e32af83f96ea16639b2c02a782c65c49caee6cab99b3da5fdfe4f8

  • SHA512

    08df5e4db743a01a6162608cc149d62444404786f91add0be4f3e63a67a4a4675defc891493e00f20b7d9b933cfdb07a8402de9a02f4ae525f6126c4e52421e7

  • SSDEEP

    192:ZyvOHJQlNSgqkDqjaBKmmGDdrvvI16lU2Url/EBzTRcnV3IuFm0:ZyvOpAYjALj+Wy5J

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch02.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1696
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1696 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2144

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0a4ea318956952681f2cee97579d82d8

    SHA1

    976b6480ec8f7a04270568b293fb4111d29f6c40

    SHA256

    39184808aecf8002ce84cce64c8b66eda334bf2317925386b41fa24073242d25

    SHA512

    2e654290f7828a2b456f5f9e628b2844b1d5c4db7ff60a04681ab443be167b741b32a70ddc6194f8bf9a55266b3fc1258feb540d40aebcd48d6babda0b86be95

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    13661b649d9052a4ab0207227cfbca81

    SHA1

    3c82c74f85641e4569f9800974f4cc4fcfa9c034

    SHA256

    44a700f4f320e1439abeb73feac9f7588aab6422a8c28b5f021a5ba47cadba5a

    SHA512

    d321000f1a9ac600c8ae7759646bec5172f65789a6f459fe2edec7c3bfd2e72ea0b30d63714003c8cc3950dd693ddf861220809160d0ebef0d514d637c5011b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cd797246ccde008f9ff14e0dbf7731dc

    SHA1

    1c4438f81fc12a55c43f334b60293f8540a6fedd

    SHA256

    3cf3e224ab82e4b8816c3ee27a6a2f41ad9fb9d8beca9f9438aed0ae31e86899

    SHA512

    2933713bfbdf6d782ba16b6617049776c2f68d781a7059d362c7fbb4a406bf805c4ac027b8368efd681e79954ca8e4dccb2f84f338cde143437b7c7c81858f22

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    18eb1318a97ba4266208b6d3dd5c6f49

    SHA1

    ea585dc23e67890ccdff903d48552d4f55f9b61e

    SHA256

    0cbffc05c29a723bb734a89ff984499fa9b50b365069d87032dc19b8d9229b67

    SHA512

    2f1dda3f18383d705aed1f391bbc4682006e0e5cb9166556dff5699bc40efdf3c721bf6f8e945a8936684ed451d8fa17e9a9101822d9477f097019b50b68728a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4ae404624f66ae31586cdd0863f23c92

    SHA1

    0cbc3d0b830c78246dff4fe2f146e28fd68f0f9a

    SHA256

    4a48736ce0a3519916585aa993c2e5fa1df5eebb95510cedde3a72cac4d2510c

    SHA512

    9bc46c033de80380b2a1697bbd6c08c38529d05a1f684cf025d214414731c31aae8edde58d740419a377f01cb8135a681c23404048c321e48b79e480856a9df5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cfcf6f498bb3f45e656b30007e2b4d08

    SHA1

    86f048561c70763cbc6dda939a8259e3ce48c4f3

    SHA256

    9144d738eeda979285a4b4a17b4d3ddb5c8953dfb2ddc5dfb3f0206bf7b13c9d

    SHA512

    3d380a69b51d538f6775a1fc457ede41e306ecc0c0fa477225adfc71e4fbd5c177633a36b198bc0ce5dfc3f27b21743f09414c3d801e59ec61114191afc362b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1227609f29537c701b9fc516165413cf

    SHA1

    a375b86da25719a1b1374cd079cac5ff1d4347f9

    SHA256

    0cfd631b60e372218ff6f89506d98c26b7a9ea14c787fcf2d1cdc00c698bce65

    SHA512

    1e19dd4510547836854b7060d226fe4fe99644c1b7a0e35edc12dce178b210f8176a77dffede44d5ecca16863ef14cc1b5dfdb68ff8c0d6cc12521b371e5d5f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    730c4f5d7e1a843592e247e241893de0

    SHA1

    44da89cbaefe1d4b2127d8784a255c8e672729f0

    SHA256

    e879d730a21d639750cda0653292f2b5e8f360a04bb7b69fe6f52d839ceffec0

    SHA512

    4511eebd9f4adfa27afa67b3ef2d5d1bd59fae307424185e94be9dedad8a4a203122fb973bea3fbea812e9513a86c04576dda41a88be22f2b2890b879507f338

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    72925ee9cde9d0ec40864ec4db3fddaa

    SHA1

    a0bff809ba9e3a40b7bc5d991ffd20a4ea6d70d0

    SHA256

    6cd1e5d2ab1894098db0109e38a1f72928eb3f3eec38803a9c2ee46cc973e545

    SHA512

    0ab49d95e2d7a530eab22e76ace1415fcd95beccd142ff77ec2bf4f1babc8f011673aef19abfcf004a9c6d8da54fa8ad54e0c6a207b5bcbe990750e6d62fd86f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    943064da3d6b010316c4b856898bdf8c

    SHA1

    b9cf1276fc9cc3a17b330fd7baeb52086b9190e5

    SHA256

    bba11449b68ce829837b377c96b5487482297b76f665d4bd1beda47a04863cda

    SHA512

    14723f0099570c175aaa72c474c291786db2269a7a35589debe7697096e9ad3d07b41dc37f7a20d8c343eb97909998182e7e4dfe3d496b3ffbaa3d137de4e07c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    352494e9bd2b605d7ccd41a1a516bc59

    SHA1

    43ba539226118dcfccd832b2a1adcfe543f87cba

    SHA256

    371308d9ad1fbc63bc206b13e9671cd4f804890d9bb846e693a18c2a089da57f

    SHA512

    cca97fa8f8e9243a9785886687dbf6b3d1cf272d50255df19060c42d461364bf6a0390b5b48784e1093c4841da0936fd69d5e0a30a3b659044b44775b12496e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bfdafea68c9f4260525832f2704a8d29

    SHA1

    972a48d0fd4e9ccbe1b7326c0ea5df1271bcb229

    SHA256

    0a1ed1a44066c9c0155a9bc6a7a26c372d2a3d449169526bdaede748cb81fe03

    SHA512

    c120566293d45862ada5095807ffdc556e06f07fd70a9b0be3fb3e92340bd1917e363b8171c1c31c0c2307440d60016864ae49f2765507056ce6545ce05e6050

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fc0d9589ebffbc74356483cd0e303e9b

    SHA1

    eac21f0509c8f171d6ac912e4a8fb2ca165fd493

    SHA256

    208bc4a007d70241af8665e3dc86ef390fce82da608c3ec34d5dbc089ef75314

    SHA512

    ea0c2174d350aa2226bb66b27d3197f2b5869ce2d7c8f3dfdc1e4f6545eb89ef5330f039dd2a87fb84ad4770dfc4fde495df689f22c0d4179a5b659f9c1ce255

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    25f15f3e5c5b3e82f4eabdd1761c3fa0

    SHA1

    221038646c325babe10eef374a54afcb4695c742

    SHA256

    ffcbd5a159daad663e0636f800679cb8b17b97428d692754682409f40d6415d7

    SHA512

    5a5abe3d2c6b591a8ae76a1e670d322bc04045f5a5b27ff0e325f4b8296c75b34b621f2aee84ede30fbfd585c7e50dfbce8566d38ab12e860b5c16a052619e6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c397fdb4e5a395705bda0b27967336da

    SHA1

    eca8b5832905067e419387f7e01fc5aff1834ec6

    SHA256

    58dd5cb710fed283b3a39e2f28618e5b487f251b62cf79226af729c5aef617b9

    SHA512

    22652dc40692bd17b755097b2e3ef64eeee50b298474a15a7a1d6acd6f8821554d9b75139b42ec52e1ce10d39ada38c1390b545a115d8b6e8dc86c7c1f7986ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b9db116fdc63cbf3dc83bb0774e823a0

    SHA1

    0868ec57b7d0cb380099d7cdc54ecd00305a3cdc

    SHA256

    20c34b938a3be10c068f8ea32de61beb84cb36451ba636ea90c049f4730fc263

    SHA512

    ca4b39b939700604d4cde69ba7414dd96540c3fad16ff3c816f585eee9d61d951d8c1c1c9f4dc2e1d0317827c655cdba515acad87706e5c1d99ad3bbd4977927

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    32676ac2df3cc13e2c7a6af2fae6bc26

    SHA1

    ad7695f710deb918e143b0f3a59e95317ac156c5

    SHA256

    f7cdc817af5a768992473cbf49e7feece7d27760520a72a767bedaa80cd406ee

    SHA512

    5c5146696648deb3af6e7ef1c0d36d6755f30a4ca9e909a1b5a17295426da6396cc3bf12df16f6f75c1c31c7805b556cc471d0f3c181acfbf6f331f22c62123e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4e0d40ccb7ed123b008aa8faa78db022

    SHA1

    030e0744ffbdc80a34150e5cba932f7eb0e7bcfe

    SHA256

    e71b6efe19775dda8c0ad51feb2cbce0657cbccf04f89296f8458a5c05bbd5f3

    SHA512

    eb07a23fa333913796f0e985d354ab84b5fcd2e0ce4482eb88a166f5e7fafcea27f3b66cf5faf83046530e825f10dd4761f73d9b30e9b61197bf9406d45f3dab

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6E1F.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6E91.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit