Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

README.vbs

windows7-x64

1

README.vbs

windows10-2004-x64

1

bindevt.dll

windows7-x64

1

bindevt.dll

windows10-2004-x64

1

dig.exe

windows7-x64

1

dig.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    165s
  • max time network
    186s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 14:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch02.html

  • Size

    7KB

  • MD5

    82ea76cb76e6a5425b590104d5e20db3

  • SHA1

    a01a9688ac12a301041d3c6d38736f7f3a71678d

  • SHA256

    b71902125e4941da5e626cbc04222ddc7674a8866e2cf98239bf64e9fda3d582

  • SHA512

    28de8f5af7e07c652d6074a46da4906e4ae585769a12fae95198005da43a33f3b8582de791edd1898cd160c2690a38f13ce89d4cee95be40087700e99e88bcfa

  • SSDEEP

    192:yyvOHlQlNSgqkDqjEnommGDdrvvI16RsU2Uil/ERzTR0nVdFzuFm0:yyvOFAYjuLEH6KnkJ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch02.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2408
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2408 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2696

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    62407490f48151da8af97a8ee4a42e54

    SHA1

    c37070dfb25976b1799339b5cee85306afc6e257

    SHA256

    9df303295f6d422f9fbbd17ce551943e3a8b4478970b132afdfd5c8f36e9b2d5

    SHA512

    9981fe0bb29a9b75c5c5528961624d4f64d9441baa33840ab7cd0394678e8bb04517ff73731d95faf6717d5cd1b2a7fd2764a99a650e4e233af7c18f6dd638d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5c1364261308cc077ac3cf6036ec77a0

    SHA1

    ecedd7f41ed9ec9d677578ad90a864d3a0167324

    SHA256

    84a52c72c1c945ebadac2c5ce6388aebe1d9e3765cbb449e5ef61e99d8365f8e

    SHA512

    ec27d264dddafaf5300b3932fe6b13db9ce3b703bd8d23eb861456d9f99b2521bb37f04a2cdf9f2045c9a9ceb91aa9d41612131cf0e463903fa97f0fdf4b2ca1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    83799daa7ae9ce82df8997fbe993d09d

    SHA1

    d78fa36cdeff562024e52917f20c844f4f12e30b

    SHA256

    680e8fe8b28365f8266978bdb9828b675bcf222ef32321939c758b6475dd1516

    SHA512

    b47ec26d1f6c41ad83676c6a18741cf0720279a32e19cf657fa2aab167eecdbce4a6c3d978e5004b8c5454f435bfed50713b1d7b724e4a4303ffda040e13298d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0c32bbbd87b991bac8230592eddba10d

    SHA1

    032b68e50b76f0e3a764b941699bb28e70d76fe2

    SHA256

    87a5fb6e3a1edbf509fb67167c5f63e3430c6993f1352513832f94f3116598b1

    SHA512

    304eaf4488c468bc833276001bf553848d12e386300622eb2f251b7562137ccd8e97754116b3e87a540d3b3a223518a7783ea45a24b540d704b3f0276ecfff43

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5ca0f18df255847293f977f2064f5772

    SHA1

    e7e3698bf0db7c4f295c60dbbdc12ba935baf51b

    SHA256

    e736a44ba54e78eff7f7da902d7d8e3dcd63cc55513de5fc1162146b316d35bc

    SHA512

    35fb0ce21a3f88bc04f0ef93c6824708806f4df746899e1cbaa7e3e46bbf654a1ef194f0911444f01331a69a910f31c0c07ceae7d4d17709646d4c80955c04d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7f411200a2982592c843b988c62aafaa

    SHA1

    b5d37c4aeeef1ae3d164dbca07694a304113448f

    SHA256

    62c49b59772dc7e92bc7cc3f714457b8cae98e7579d75784c850ca701f101f41

    SHA512

    6d3ba14368f5838c384300b207984f2f8dbe793907e5b22bb0b2917535e4cbd7e187c1a84ba45f7143c4803847c2ff114e6b520160efa0823c7f5902312024cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7420ecdb24ecb7d19cbab5b3984d3b4a

    SHA1

    ff5f76cf5e5e91ae01f274f5154c473f7a159d72

    SHA256

    fa70978d05f3c73a3b6e0cd0aa4a23022305bf45167efceeabe6988e7a0910ea

    SHA512

    9f6dcced708196f88052c4b861dcc6ad318d92171ad8010950e07fe2a3f7d7a260214eacdd2246604b78064fe3ec8d85510a771d28933818536244886ec37f90

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8cb76a15c1acc23b3abe492baa41c064

    SHA1

    6a9077dfb9cb4231011e6a915bcf3d1db49d0717

    SHA256

    3698989763a3a19654f006d8e163be873219004900cc8114fd8891f29cc1593b

    SHA512

    b066470b4d8b19ac727cf6679f2686fe176d0ba36433dd9f84596dc501fbe3541ccc1bdcc66a915df622d8803c0862b8a31cf93a2e1e108517f143bac26c67fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    acabfdf90a4742234540956d8568e2a4

    SHA1

    12971421031647440d4a7a43723ea10b8c4b158b

    SHA256

    0e1a0b4017855352ae199fca63fd7411cde49394fc10114073a0ee5b9f034bfc

    SHA512

    895c36098aeedb1fc371b34a6bcab18d08667c1d5f319f2200ff94e0be15feee3e1a0f1befa40bcb73e3dc7e5a37603db8cd459ec7a092327959ef9e9dba504d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1f5fde1a2a65dde33284c626294fa5f6

    SHA1

    9a80f38e2c600690cfd8ecf21808040dbcd5c3d8

    SHA256

    053ad64d540dd6cb83103e06a2b6d2bbe2b6722443aa420de36562bb054d598c

    SHA512

    412ca8d48d6a91546f0ceed9c20de66d40e2a6a8cd3fc2eeb735991b52eeb5874c6ba6c0cc379a06973b1dc019bc20efa88d113591aed02eacf49944778b43f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9fe20577a1aeb26bc1c4a6851ebcd6df

    SHA1

    5aef636fabcb77188f25db83c62a6e1df633c4af

    SHA256

    047f469e57deac9dda986ac61e9406db9a1fa0d7ba4bf063a1e3fde71dd5c0c7

    SHA512

    322ec6fb66256c694530ae71d022c45c315c6928a2a0e0a3210312f945bc0a677cf999c9b03e5f5149f9c22de44bfc409ce2047f4a5ce46c761e253fd68629ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    37e80572c32368cfa270e63ea258ea7c

    SHA1

    dcda3845ab0115401394d38d8ea2c4c7afe680af

    SHA256

    875a88e836fe720886b685c9c5a395de9d580b0654bdca29842603013271cdfc

    SHA512

    b8ad267548425ecae8ffe15327e47d1e61a6750845792ddfbdcda2954c69df4e503fc3043da8210863351a1fc278360ca102e0c5e268f80515c0d4e36711b91a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4b1ad02d5b59ad85fc7aaad9d5dd91f6

    SHA1

    78f56dc29d657f3f57717782e4355d608bd1d409

    SHA256

    a284e8678338c39c81da9402ad7eade7bea7a74ace11dbd0572e745a3ddc2120

    SHA512

    918710eb0d9ac2b9346254c8d44328c9110325cc11cf48f5f16e79a7be8355219df0a34b25e1ebd7525e1b192742ce4cfc6d3adfad99dc62f2f277c3eeb48ba6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d1fb22442e680caa9c50f5de6cec3aee

    SHA1

    cc87cca83eebe99e9a9f1008bab9d1b9aef66ede

    SHA256

    7cdc51be999becefcc4c8ade49676bc6a00161638d4e977e504ce20dfa811612

    SHA512

    e83c0494d275811fd99dbefc5c1b631b979646a280a6de5f41c66b82426987f005eef9adf7812e8ed7dd255bf7984817e46ce25fbb8739a003cefcad97126843

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5cadfbc7dfaccd8cb76c1a86806507cf

    SHA1

    5b83b6607e9ea31498ee6e05d0411d20527cb7ac

    SHA256

    de466ba65fd18a55d8a76ef2c1d45cda35d76b16998cc1febf8e0282618fe170

    SHA512

    a7d839da84d09480857e7a546e5c441f39e70c47ea13d5897c03d0ee17002ee2c116391d197c9100a9605d7381d3c9bf3f6f57680c19878e2d461a4170df30db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a0fe905caf2471101284b9952be03040

    SHA1

    26bbce8b19f4c6917903198ffd1ea08022b47aa4

    SHA256

    70b143908de6fabcfa739f786e83dacc0ed7f87cc24240027d5c601aa661984d

    SHA512

    8a8e5ee24a0717e5759353b3ee16851433917ce9a32f625fb188b0ff2a6c9e841942a820906eb4bdbed644ed91bf08bc4bb027eaccf8f98db060db42cfae1d6f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f36c44f5bfcfc6866929b521b08fcfe6

    SHA1

    d2938f1580e22b3f6694f002562937e104b3e7f8

    SHA256

    65a167dbafc2199e9a0bd64f26808c96f6db734f219ec8bdede74bec8e93d527

    SHA512

    036a69b2f6bc64ef3cd3f242edaa51cf4616fed8571a73e5f2374fcd706007d0fb0cde2a8d4ee47ee0cc82b600aae2c72d9658636d4d80988a7bae1f850233ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    724f48fcbfb737a1501d18e9347b804c

    SHA1

    5499d488c6bd3a343a9326ca5122a0403be04574

    SHA256

    d93d75c10f96cda621fca891766b5c550cbb451d5d5a60d50f09116042fc5d4b

    SHA512

    22b109cf39916843d31daf1b2b66ac046d35b541c72f1f3b38e832e2b150d268ff02c509288e7233778fe1455273ee7ec015ca6e2e585570c78c3b355953d5ec

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2E33.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2F22.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit