Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

README.vbs

windows7-x64

1

README.vbs

windows10-2004-x64

1

bindevt.dll

windows7-x64

1

bindevt.dll

windows10-2004-x64

1

dig.exe

windows7-x64

1

dig.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 14:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch07.html

  • Size

    12KB

  • MD5

    0d33a7e3d1cd8fdd5d61e4deb478a253

  • SHA1

    0ac98f275ff21f848153a1f5ecc6ba84f8cdd111

  • SHA256

    e30bd0e82021bb2a7f02c2a8fa131e0cd0234f2fb4403059bb09ceef69b3faaf

  • SHA512

    0656285be117b591558781afc6431845762387fd3121ef755f2a64c2ebcb7709bce2e4e9802b148f612916c693e6d8f80e3bc1248da0e87384edf826faf5c7e9

  • SSDEEP

    192:yyvOHo1FNSMuoTzAbOTtsrrrQ4k9h6B3mrK9ht0PkmP+YCBF0:yyvOIrYOltsr3WUhOPqm

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch07.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2392
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2392 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3068

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a9132c041661b5be70fb5c48e392aee0

    SHA1

    c057731f88fde35a08815f0bcf7ca9890f2a7128

    SHA256

    6e8db3c6f47b0db4ef302faae3165bd78329ef59d0c41affdef8837d1a444abb

    SHA512

    d6a8b9b675c282728bd466c22754b4e848419fda639a65db80e7e3e8950a69c34376f30d8c1f3a8c007edee1914fd864fc174b13259de5f289c527c18469f1ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d935da7b6b2306280a82046855a8df13

    SHA1

    1cf4217b6672c1d1197890f77fec20258f0ea4b1

    SHA256

    ce7cea2d9dddc432fe279ae9d262db88369daf640c3b351b8666155a020d928e

    SHA512

    ec0038ad22089aded7e531e8ff1c6c6b1a1ac0f1d596a5e8d5b4fae61441c6dfbbcdc5eae12feb2ebf15b9110e345f96656331dffd77a26ded80704248b82fcb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d95e7b10c2701d4f23eb0752b6059b53

    SHA1

    17f1dec16054a97ae661be772150bf26550e7152

    SHA256

    a434fd8f846d2ebda2d9281b077465b9a602ae0082cfdb9c2cfc5fb91083645b

    SHA512

    63b5b82c2fa7f6cf6cc39aeaaf9e8e4b787710827c282e78a962439b28a60efb80a9790b211aacc5a9b03a2a3410add5899e54777e396e118750d41318111b87

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f6a43a66555db1e29fa9b0d6c06ed0d6

    SHA1

    1ca39dd860188def2a82bf65808aecf8c8aafec6

    SHA256

    ca3e9425f064ca1ed44363c77e6cc3d8d4ace104c10632a5597582462e5fb612

    SHA512

    ba55d8f3a1442c288feb86d7a15ece934bb875c0e883bd5852066f6bc2ed07636b4187268b65159d43a8d17da4babf3695efffe0e17725b239512d4b4744024c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2327d48618b9c66e4ca657684533ad04

    SHA1

    1d97d540ecc1575db6804f5d3bc3dcb17945ae47

    SHA256

    dfd5ff288c00c2a0fa9ae767f7dfa95d42cb7867dd6153ead0839e797e28fba5

    SHA512

    f834d89916313845d3cc686e3ddd0f0c80b598a0edb1419f1153e7ef0bc2d650bbc3afe49d38790d7e1e7ace58d54ca06aadd0dc7649e2d20aec68f20abebf09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    46bc1f389898638194cb5bd0a7191715

    SHA1

    a8c1241fe5ca55394d01c05d848ce622aa22537f

    SHA256

    3126c0a00efff41f50c9bc6ee6767d52aba089f680c547627aa49cfb475c7194

    SHA512

    a2ab516baf106d3b06b184859d14e9b15c7ebb6e9f7760980964b7ebdb31e5bc6cebb538f609bf08e258646518df622c1d14e008daee50a3736c0c0dd03a8110

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    587341ea7e59851ad4b9684c78beb193

    SHA1

    6608005b8d175fc8b4bb68f87df2e8c3738095c5

    SHA256

    2d104bfe95c7ff1d91ea3676ccb5a58d5d702e814ae524e5f7b492efaef31d14

    SHA512

    eef0e67cba9a2f6bb4c74db221ae6715ed9fef098054e4756f5c3549b5b57553828d126c6fbc510f3c38a24b7ec6a423f99f7f1190362c4e2340c63da4daf46d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    800d38d64b6aeff7c8d37a1568a72dfb

    SHA1

    48cf07a023fa59f0c0a7f1c1aaa215fbc1e1adde

    SHA256

    c3301212b7acadda22761d0f51be1aa412a962be9481ad3c03b9c16914d3de32

    SHA512

    1ce2274c0dc705cf7eaae8e705e98934e22a426753037245808cc16413847b6a38daf5e9d936d958221f924dc2680b185e4f90f6e1cd965cbf4794a526245c56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c84a71ceed9a25521a504d53b1141773

    SHA1

    c77c0f3e2c3499423762be688cdd6205910abdc5

    SHA256

    0fa588965fc3b619472add8672797d45cd9d39028de51f2f97d68ee721f54c12

    SHA512

    450451a6f1d170a8ac60efbdf0b1f96f3c6422366c51f7ef15fcb2f1d64408c117b11ee5528d6e8b1b78dc31404d00d37b7923504e710da17458c8caad2f21bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    189d113a9f8824f6e04b25437a166639

    SHA1

    fada874b64ab0932048313f2e132a6c8b3a607f5

    SHA256

    0295b376c8ecd94ccf2068a63119f8f4a1f406f842f8488f383ace5fa1b55584

    SHA512

    977d4316653f5f50155c5ced5fe32db404bdad8d7246cfebc9eeb59fb0a2b23ca68a82f1a90c07c627a31726befa4477764cbaebac11d1a7ae1a93411dddd210

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d755ac46e1a07d6034d89ac17d056aa2

    SHA1

    1cec9e0c55a04a8fc2a3fc0fee7d31c1af6c6703

    SHA256

    ca600cdb06eb509dddafbce556d600683cc07d2e1b29c66dbb67f9cd0db622cc

    SHA512

    bc1553652e03c08d5994960204602d3c8f2e7a33cd4aa89dd00df4ad4593e81c5f059682776fcfce2587b8863a9fa01020cf89ad54a36033464e503f580dc02a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4338a9f6e0288361e8775d43ec83fde6

    SHA1

    526764140c61ca36f6d9ed23b57361f71dac4363

    SHA256

    44a58a119a4cc75aaf289b2a17c673176a1d09db247601995d7f793189f55173

    SHA512

    14fa85a1ec32beb2423373f910a9cfd03acfbe5c29eb5e2e396ea886b9e0bbe8caba058a3cb93c7ad97023f51333be165aa3477c7d0ce2c8b00d351d1b3d413f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1a3511b669be6258aa66d5711a721d01

    SHA1

    8ffee12f6408d81f507010b8424dd1bec9acd6dc

    SHA256

    44bdb57b2b69a043b9f978fe0b02463a2e2aa2fb92a240f15e7b2fad7c5c4bed

    SHA512

    ce1ee1c56b39b0598c13edae6be2adcec592d57d72457a150f3e7eebb97a1bc3973c7bb208f393d27317f47aa3130daef331c1d958c4b046f46280d4c427c4bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8062be4f0cc7af31d61161e2b6d6feef

    SHA1

    7ab8df529a1de09f1404c4c77596cf0406eaa861

    SHA256

    2e5216c099407a632f0d583fbed4f670e3028989f438fdc60e173c2cfaefa1d3

    SHA512

    fd6210d80b040b2d9cc3cf56f5f41c25312b85780e26f8998eeaf6d0e30eb23b4348051729104c93557168bfe2bbff48890e2931c2984e35c90064817b0062d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bcf78baf0771aaa76ee3257a0349e5cf

    SHA1

    f734391cdf23ad204251ec437f598000539ce646

    SHA256

    5293c98abb3a511e590ad43ab040f91d41f8f4f122392da664a1158d85801ae9

    SHA512

    a4a65117485e60ef050f463bc3321bc10ed1164edd41dd0b6a14f61e245a8583c3b14a5874ce7b3a6204fa072fa9d90417a92057e0809d5e88cbf84bdf6d3abc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4cf9b301e3e6d8ebf76bc88d17ed418d

    SHA1

    6f3cc464040dc0d978a486a5ba39b08fead047ed

    SHA256

    ea35277eacb4902fff6950ac18d0e71f07800407d9ddf7732b62f1e768f45f96

    SHA512

    38a8a86b91524798cb62f74cf84ed6c21ec7ceb8be458bd18f998fb5d080c36ba2abd0e7e4065778b889d65db594e44a0fba49ddac717be96c2a937ce4d81b64

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    14ee92acfdfcce70005ae7a4421912be

    SHA1

    ab23891d9cb19f7ff60836245cf4481abd094a5c

    SHA256

    bf5b172fad2b64c9bbe0549ee3a18fe914af5376d248d8d8ae1b89e47917f5d0

    SHA512

    70de5aaea481e3e70ba780b4d0aefe8297e664c840fa3f533b23e6aabb8ecb75d138885984a339acebc439f1bc47c9dca271db282125ab7d205a6f931e6a0072

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    da4ad8cca693bad21ec6e9b60555f28c

    SHA1

    a11fc13f2a7c7b3e9a0dfef692bf1fac9728fca0

    SHA256

    ed7d4d6444c8cab1eb8a3e9562c90e97ffd69979121f5ae53b9f3dde9c9e9ee8

    SHA512

    1a4e3d460cda62e9323e0a4e61edd9e7ec65edc89906cffa5536b778803091fd3de4fc76ac590b39914374b361531cd5b7e4c284d0faee41f02837780781431b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC7E4.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC845.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit