Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.ch11.html

windows7-x64

1

Bv9ARM.ch11.html

windows10-2004-x64

1

Bv9ARM.ch12.html

windows7-x64

1

Bv9ARM.ch12.html

windows10-2004-x64

1

Bv9ARM.ch13.html

windows7-x64

1

Bv9ARM.ch13.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 13:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch09.html

  • Size

    9KB

  • MD5

    7363be9fe084518ae39fdddaf6581252

  • SHA1

    045c1d4f8d7d4cca977624361b2b6fd9b885225a

  • SHA256

    f82abb70104121da7f309f2947b358662d979212e3bd1bcf3aa5e93cb2cd4c07

  • SHA512

    61e615c750a065dedebfecdefcc5f212d0097ec00c5c2848ba869f24531a75c8ce3262c273da2f904a419885bdb1ac38f078443fe754938f7ac5027d37807fa0

  • SSDEEP

    192:nyvOHIjtmNSSurHNKv4JccRYEVJMBIf6+Ovx28w3J:nyvOohmY/xKv4JWknXOwjJ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch09.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2060
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2060 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2188

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7d38a9179e551c8752bc86bd3bbd6315

    SHA1

    c68e4c9cd34e556daa503f05a04a348c014e3c9f

    SHA256

    e63454fd63e033e43be4a6f5954d0fa9a36c765cb6e84a88b7a0f792f78a420c

    SHA512

    3644698a66e30b93ea06931d27c0b8db8f88ba9aaaa09f720130040c64531931088d1b1b2d833767ef30b8c50afd038bb4848874f05c14f899c3c95d1d9a0d95

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b184d7c5a14bd0d66948b976c71bdc4d

    SHA1

    3308e47a47431ac6bf95c362ae408dba50814864

    SHA256

    4997880699e987816680a84904ea9f3d295cc2960577c4b449e268bc1ddbf816

    SHA512

    9ff8ac141a4103503e2f93908f981abebfc2012ce4829234ae7915501b4a80826feebf5b030356e80f04758f5af6ed427997859ead7a3ecd21046828eb7c4cd4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3fb31e1297800656190d35199baa39a2

    SHA1

    d46cf380df37e1c4c43ad46ae0f81eb1ae523d17

    SHA256

    898ef002c3110b3239f932d92e39f63f06c0c6f7bb6ef17c6262b0a157b4505e

    SHA512

    433ebdd72290030cec43c09cde3e6eaceaf5e3c625ac26844773ecb06b4e0e90941b9da8be70d5f91d3ab74fb9589eee51cca60f771d6ca555b1fc90c4872f94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    93a00ec506929aa6f1981e6b166a1f1e

    SHA1

    fd1936ee53f7340989c76ff007a67fcaac1ebe92

    SHA256

    2ecc603c5521e10d84c47dcb3d43ca9c99b8731436453925d1dd23478c8fd9a0

    SHA512

    d7a66f00e97142c30a274cc88485d19c26bba41b71fcfa304270b178a55fd71ac9e5fc4f22b3af89184779135e796e4656906c0a0d4df331bdf1ee709b28f1d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2ebed3ef9227264fcf0cf5242ad25284

    SHA1

    2493f3cce18f713803075dbeb73cef95db535346

    SHA256

    f109586f915eaed611d58227dbb21fa8a3087f1e3f61a64c1169ef0ad5e1e8c8

    SHA512

    447ac5a1086e659bce6fbe3145f69d9362c9cf0b6a2652c278064aae9e8707c4a389a72d63402a45fb80574ea4db0e7623c5c85477c0b0b25ff7d3081e69219b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1d0d208e8095cf0cd6978cf4ca1ff6f8

    SHA1

    846fe873e7d7f72dd1b42dd6ca909d79f86fe298

    SHA256

    871426c204997d7b77b5eb4c114b5b4f2422f5a2ab475cef5b25273c2a10febe

    SHA512

    b3f2fbe14af65ca40a39dac3d6edf1745857070f7f9a0113035efbb31f725b916f10609c5f6bb6113e0405353dac1ae2eb446f4035df487f7b62492939063541

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a66a136cf9f1a9c403bd18ec30edc8c7

    SHA1

    641a6f4e119e8977e2e3e98995ecc8754ae5f605

    SHA256

    0280b067a4e0342d7d4c6575d120b3f8c868ae6f5e8848c329ec8f79e07a6afd

    SHA512

    7d71635f75f80107a7bab63551083982bad3fcfd34e66d9cfac0b367a00c6663ff6d62a0f86610b7c6a37e8d3c32669ac6a31f57e4ffc871eaea22fa1fb8635b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    94941a72e5e29c3b4b057bedcab130c8

    SHA1

    1c8c9687bda2a1b9c85f3384b79b23b7d69af4be

    SHA256

    865457942fef4b1d8919ad3bdc3e6ffe5043955d46c4432bf0ef610b1db7cdaf

    SHA512

    b0ea11a834e60dc0be859d528f570ed888fee06126b5bb536dcc057574318ed6f83d1b51c84f8810b691f4397fc382e41a932e2ea55690b1ccad1f61555bc485

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    74bbf06c2774408aa6e1949ec89fedc3

    SHA1

    4ccd55e7321364cd7783f9b18209cc39be016a63

    SHA256

    f4ab41a96a4f465d1c06dd148e1d1a3558619d2a9c874610053c025dea0192e2

    SHA512

    2b69ba6655cd1c141401a3cadbba6a16b38505f6dfb81fc4da189d6fdfb914eb4c4c16fbc12bd466a4bacc18d9cccb145b2653e9097ccae6b085b460d8f96c12

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    145a38320c8b0884e81da051f9b2732f

    SHA1

    d832495a8b3fecb65f7b8bb22223176e0389a7bf

    SHA256

    831c453cbfe9a6b42a80ff21723546b7a3434f458002e6796d784cb6ed79f1a5

    SHA512

    a5f2242e523180bc8e16e4499d590219836187c3832cb75899e8771c6dfa164ae0cd1a1e0c06ac868a5464faa06ab584e17228943ec037b488e326a5cdee0322

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9dcebc592bdb44846d4675e861556129

    SHA1

    c95f4e6ef453723dd16e8d553f1903447908bd76

    SHA256

    83113f0330a9f5a841fae0ff3407f03c1f8837be1d43b3df6aafc2f3c347cec2

    SHA512

    c6262b5f00eebf3872a0803427494f7074ba4827eb312749315ae1fb1006597886191927230a8a4e07df14d35e0da43ec474779bb4184058acb116ef676c77bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    92c45c287e876756e86df8cee7f2333c

    SHA1

    49b9d5fc0c287b3c637f93d9ef42a2f1e0568c18

    SHA256

    14aee50c17116ae730b5dfd9922682fcc6490e9317ce1c14e21dda19e7ec7c49

    SHA512

    0097fa6b06eeab3774b6718bec17bf6c00c20f63db6bc85a08307059f9606d87518f5f412ef582d5dd60223375d386142cc534ccbdb6c35c07f22af7ccae173d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    20b0d9cdb9f50c03f581465d91cb8901

    SHA1

    b2895f5a8141f9374526c083ff818855c48b2fc2

    SHA256

    d07d4985a152d84661a30ba536b9c64108f09f3b856502853cc5a2fa9f28b8d9

    SHA512

    055c5e5160e8caa6838ee700bd67767f0152a761aeb20e043c9629cb3c4bdc0e2e565bd5beb896730f6dbc26a5fd040e455d2037756dcab483a7ab66798737e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d7da25d9bdce86d391e306d7e11d700a

    SHA1

    04a08a0a8ea8a1c58794a2ecd2598af1826f521b

    SHA256

    1a63e843ab81565ad27bbc92f3c82428412ce66f413a139c46384832c385d986

    SHA512

    391967e0782bc03d9bed6d35de752792b34ebe281fdf34a4ae7ebac528da0a07b1c91475720fa2850155372e52b477833d97898be36d7561f21fc2c748160e3a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0822b81e5dd8d5145e75fbf18f1d825b

    SHA1

    e43b33b95e9fc5cddaf95aaa3fbe1748de8d688c

    SHA256

    81ce9aa932c0ceead65bf92c3e1b04ad851ceec24fa82f2af0b6e3db96301160

    SHA512

    dba097f777b9d7c41fc78ad3fe951a286db25f65d160522a74cf853a59ef7c8b2dc2423863720a79c7acf2e72f97c8be13548d24c55dcd783c24d4d487549b2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a4faf602717fe3d8502daaab4de80de7

    SHA1

    fab6ee107a02e8fa7e21bcd27d4df9a0b946fbba

    SHA256

    8f23e55d3f8dff129d3274377468f2fd52569f40cf66d2b9b20e8784790f2987

    SHA512

    b6fff824d8df2976b7d8b7e2732dccbc119e7555fddd8392ca687493d8905f316f796a1a8b2da86f383a51db8ec1a1f222428b8258beac55ac28355bde341b2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    da512f1b121c95beb46329decfaf88a0

    SHA1

    83ca2e61a6b1605ea19a1c125c53fec6aed6a346

    SHA256

    0da8de294e50894bf5cbebdb8ae9818d47a3a1ddf13182f616549d546d249219

    SHA512

    7cc044738e0e82ecd440782d076fd37207bbfe36d1598b49521e0295bd94ff0db3954c7375c071e337862601d357a7109604207f3f195c89b66c579724cd373f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eee9ce71854d197915e3d7029f61f30b

    SHA1

    d08edf2467e886dffbbf24412bd98bbcb95e66c3

    SHA256

    6083d6bdd2e5af6f46d385c69d1899c3cc5e9563d281c920ed2fc84893e12a1f

    SHA512

    debed0338c17fc7806ea9a78fcb7251181cef4e0765d389dcb50621c525363ba53b51e670e93b521538b426dcaecb42e95eef3de7f4f6ccac0d8bc899195b147

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0d366835e8a905e0c6cb1fa16d7c3473

    SHA1

    346f5cdeb6cc1143d17d97851d9fe08a77e480dd

    SHA256

    59aee44d1c46aea1c8cfa88d220e6d7a95ba783663bcaadc6ed08a9f9f9ab0de

    SHA512

    deccb2fac65bb3ac2187591420ea4716f81a4df338352f4a1ebb094a0690daea6c3422901673d773aade0adf4e6bfb018fca882b1bdee521df97a0fa06cba33b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6357.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6407.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit