Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

HISTORY.vbs

windows7-x64

1

HISTORY.vbs

windows10-2004-x64

1

arpaname.exe

windows7-x64

arpaname.exe

windows10-2004-x64

1

bindevt.dll

windows7-x64

1

bindevt.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    139s
  • max time network
    225s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 13:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch04.html

  • Size

    94KB

  • MD5

    5d48202e3c739f2f1e1141adceac2fb9

  • SHA1

    268e59eb46163de0ea0e23803c4df327bf212be6

  • SHA256

    85dc290707eb468eb43fc02e202865e9e719cddc45a92313c30939dddd0294e7

  • SHA512

    43ef94e59ad3b330c0283d08abf1137a6b100af55d8b9774ce110917245ee3608ffa4e3ddda59d89ee004b0ae1c9cc3aa5c93b11dbce6a7b089a041b9946b9b9

  • SSDEEP

    1536:Z0OGXnAmC6w4TqoLJCx8UVWBUW3mW5YWgp1zf:Z0bAmC6rbX3H5VgPf

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch04.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2696
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2696 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2768

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    32c4eadba5fc49811fd147587cb13a06

    SHA1

    540314367914605de2b6b7642ca4123cbec73de3

    SHA256

    a704cb4760b0bf5f4cdd47775140b6966954b4b16e6401c9b6856901235d95bd

    SHA512

    092ebb26aaf1ce8596411def92e3a6fb1c91aa7102ef86929583d2f99205b2119704ca46c16f072749e2466aa9afcafedcf3df2e69d32a2f7edfc300fae340d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2a36c24b8b5f9ade1f56cc2cb22b805b

    SHA1

    154fb7c09afd6a339c134f052e3ac0e8c77bf90c

    SHA256

    57c69e0713511a41aa4a1da9b5b397c78befa66e332c37a1dedd6f1c0df9defd

    SHA512

    dbcbafbe7d0b3850590112ac24422d6611d74fd7698dcd3ea371d34f171484e602dcd43660a1fb410cc88a55dd93312c4d17054afd73526acb502bae53ae97c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2e8329c433621af863b2787ed0e3cffc

    SHA1

    bf773a34fc004ef8f174a8e616a5c20e5392b1f0

    SHA256

    7003c431d60e73422bcbb67c2d7628f019ad2c66e2c11811a10ac62ca2cf2c6e

    SHA512

    a01ab1fd0307e5be3f475d2dbe2fe158e041c86718b8f7a2a72f51f11a32c7709ac240a8bc9bb15730545ef7c84cc246198eb0f4198fe6e2729c9100259ae799

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c1f1f05d98abb5c4ea68a685f9522ff5

    SHA1

    5ca5a7fbce08d0aa42626ac5571452f9acda7330

    SHA256

    a361ac5fd4f1d95c1e4a6c64d9b6e4e836acecdb176daff80c94fa2efe172fd4

    SHA512

    2a41a0719ac4bf26b250940cf46e0a413ba6cdb77567c320e94e66c24a9386db90830446a95f270e0e142f0141121c8787c005a136bf086eb71ac2089a837d4a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6d9428c637e03a90b7bcbd98fdcf362d

    SHA1

    233fb8a05361c654a9f933b3050bed946bef04ec

    SHA256

    4511632670b5915a8cde9f8d56e49143c8d807f5e89bedd5e860e899ee786ae5

    SHA512

    a27cab6a7de8cebe33de8280f2eef660a32fd9c69373242dc2d79da22e068b2d73c673c954415ca7a4de375f43737b765e9f56ec7bc52c7f56de6520ab11d464

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bb321f03a179b804f0281ee5325bff36

    SHA1

    c58a80d16d596dfd69af1b7047ee5125ea4a7f46

    SHA256

    9cc44d213ea70e90723b51f3f642a85097bba6d5337ffb3c1ef15a7cb8492d59

    SHA512

    b7a467048a97f891dd4712248f464ca6edf0b983a71755b0a20f3d81086ae6da19d5033e0ca63807d0f67bad620a3853080e49de8519f22916fc8c156939c00f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ef4f8b7497c469be6ae94d8d62c0ae34

    SHA1

    987924482f70e7f3c811a166f5518b3b70c80535

    SHA256

    ec38bf206b80a92b1d04f826b6785999a7a7c71fb9164e8333216a117f69e990

    SHA512

    56e1e5efe4d99f545ea681ffbcfa9231359546957c689c7f744c866ac23d7eb1ebaebf6ba2d7094d08d15b4105a67dea256e454a17a2ae6d3a2b9119e7cee610

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    168f6502373e70315da6ec94b20fdf96

    SHA1

    01ed85dee9c5516d9c1356608bb3326e25fcb976

    SHA256

    5ba344576b1de69a1d984b5e2052a55e836cbb9f839a3a941bf720e0e30951f1

    SHA512

    61d58252f84c3ae90f905891c6bd3c64f463f4157163f23181a083b2b19b65b52e955ef37b96cc91772a3bdae62498846c6d63e30e308e8a238222731581ba07

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cd4a1cbe2005c98733e69517db8d3568

    SHA1

    6cac12544bbb889fec04de307370de83b18c4f63

    SHA256

    1d19afda69174ac1d7680ca05fa1ae830f6985737527e46610678758261a6bdb

    SHA512

    c2f91e4a898d5b6a1d571be4316565b3a49f9d4253d905a560c3fad2b54116c06ae123521c5fedf070009c28f237b2e636caf27b5c7a4180183727796ff61d2b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8df885316eabb990440d041544ef22ba

    SHA1

    ca0120281cbfeb8b6cf6e28588fa861580d081c1

    SHA256

    b32be2f954283b92428e19572186ce071efa43286a45f88c850695f61b576d70

    SHA512

    ca246f9c849f8bd4e4fc466485b7acfe2f7b5c6b48c29aeb9259b8b4ba1c031a6df77f3f3cf612e910d1f6ac8301e8629c498eea379a34da69d0c9dc695fa71d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4f2bb2cec101742f6fdc90e42eb27ed7

    SHA1

    ee7b1a6e8a540812df8f32fa679e941d9e2b9d4f

    SHA256

    3504b1959be184a84b3d6e4c0b59842531253712c0a6e67798f6a70e19e5f308

    SHA512

    76b411b0c5551da00f0c0719fc73735120fd22ca1fecdcdcfc2b62ae9e5c8be35348477df40a5aca20235b23d88e2742ca0a84e147dba15941b38eda86d1d633

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fc71096f6135c18bbfcc93aa05abbf31

    SHA1

    348f87b51af2523469d5aa6125ac74cf43d35c8c

    SHA256

    8a6fca48adea7478ac37e462a4dac6efd9654699e43ad68e71fa1168a115761d

    SHA512

    0e78a9971e29a7a617f422713ed96c3a5351e206902595c9071ce59d79f647e78ee0e995db1a0f17af300efcf86f962f0d482214bab4cf2353bee1a5cf3e8f88

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    79907c5f04bb99a888ac1136e0ee73a6

    SHA1

    96d3eea4bbf904fc7853648c6bcc2f8fb74868f9

    SHA256

    97fe4e9b9497a80464ab321ffe677242359cbb16e6559bfe00241260614491ed

    SHA512

    fe5f35a156a6c732d0447aec06f4af8b4609a6534d12b74d92cc1b480d0ac25644784acfa4fab295483e9270767cdba37245eb5dec35c7250cf0b4d76e60ca42

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3320fe2aac80f9dcf1bbf4b1b01a743c

    SHA1

    11e49849376f6b81e3f38cc2d35bb37bc543206d

    SHA256

    3fd57b2549be80edb71872a18cdbfb12598e7e8503502724b50abd17a6f82eec

    SHA512

    e13613c81d26f1930891a3c53251fb4f4f08a4cb5281594158364559a7ac9e8f8f52165edb7d5d675cf7c4cc545e202bb6074299f5e98d74aa9d5c07d21c0e32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4e3ae45d741f6a8cf262c635e45b02a7

    SHA1

    f31dcc5921a920c76e5a7daf2da844f1c25a2e40

    SHA256

    4c377708e1d1849620e7fd3e8072df2f0fdacbe3e0d1ce2c28d9d6b650f835f1

    SHA512

    4b9a4a868de6f9f60d285bd13156d486b1f96eb2fb7d0095067a130ba75687d32ebc810984a3e003feed99b92c1d81c9b388149c24bda333f09f306e40e5c49c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    916ba04e743e8dc2508953394709eb95

    SHA1

    c25b21904d55119064b379001086faae1ee9f15c

    SHA256

    d05df676e6c51094aee261052d5baedc3e2080f02ff87eeedc4e2c7ce29c9e45

    SHA512

    df479a12dcae43fb424c44f5a07f2d60df25e658dd4ad48607172bf7d733555998e23a05df0e60a23ecee7f1d8d3d9385568e460ff06181f4c8c180e0ef7ca2f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    08638698568d8478dbe962258b59b0ba

    SHA1

    6b2760adff5a7c0865f41230971c91e79de82832

    SHA256

    6852c51dd34452d883f39a684afcff352cec5a3a02995b25690c97ce02666466

    SHA512

    630e7b5ec33a0342220de81c1a8bbcf4a5b34162b3bfcd543c47ea2a9f3f63b3943857c0caed451c479072bd9e5df35d13f15aff286a8b9f744332ec1cc9c380

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7b202fa87f7b8eae9e42fef656c3ef8f

    SHA1

    584fd2c7a8722d35d3e6b220a6284732ef27c0c4

    SHA256

    22f1840310263b667f56b659c9cd6d144cad161d52cc869bc668231eb7495377

    SHA512

    35c01477030fd07366af1cd60afc983a25d374ff4a8d365c7ec8ab7594041cc3f52a93a691c96a569e735b0f4f5fb87a5702c8ce5d37a237abc8a78809c39e1e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabBD29.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarBEA6.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit