Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

README.vbs

windows7-x64

1

README.vbs

windows10-2004-x64

1

bindevt.dll

windows7-x64

1

bindevt.dll

windows10-2004-x64

1

dig.exe

windows7-x64

1

dig.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    155s
  • max time network
    172s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 14:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch04.html

  • Size

    48KB

  • MD5

    05d4e3ef701b5102fb3d5e532883d411

  • SHA1

    1c04c4f02ae626b3e69a92beeb51d9c4ac0c04a0

  • SHA256

    a600704cddec6e5fba50ab95e13c22c477abc93a3621fea7fbd172b280372d27

  • SHA512

    268273a1fa14039dd4a8bb446cf7f7745905bd977ff6535a5391bacabf6bf172ab56ac192778b80b5661e274fdf5788eb38efd0438e4461f4ceb3f91c0fa7703

  • SSDEEP

    384:yyvO23YRL/IFjo1UjerWQShXEE6PIT/WR0V/8XAq1gsA5Ezt4fvLAIFz3niV8jE4:y0ORT1U7Xn6k/XbsXkyGwcxJJgm

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch04.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2780
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2780 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2808

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8ef063171ceab16b68aca73d2567115d

    SHA1

    362358613de49033b4fb65a9b7d9fd4848a6f506

    SHA256

    840672ce11fb9234bd21c0a47578ac9c96af9ba24054c5ec4df0c685729ba7b9

    SHA512

    1c45a2f7356cf6feaa9cf2f6069732f821a0a1861505d1a3f8cc0fc3f790c7794a0848ba9c29315a578858fde78e48cc865b1dbf3b4095ba7e721f4669bcfe2f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5edb316c01f3fcec9f85e66b095f0ff3

    SHA1

    00ef2ef61c4794a0661ea7eeb4f6f924b01f41fa

    SHA256

    1537d34faf452bb728a93b9119d0ba8ae5dd161f13ac3154398ebded4e0896db

    SHA512

    a2dfdcddcd4de6d192cc7a7ff460e362f43c3b42f52f20c093994bb610195e5250a51aa612c302dddff36573ca3f5ebc33f14dc0199c461feaccc54efba38e55

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    09c784d99736ece358cce994cbe732c2

    SHA1

    6798cea1c5181c4330c2fe45ab7c8bba8aa03fb8

    SHA256

    7a613dde4ffadcda20b3fb4d9f6bce84fb6327c21122fd87e061a7ead64b918e

    SHA512

    b7221ec206d48a860e7b20365500500fae8ea058170ad9f049098cd83638ddc511ef977c7d1309cc0b3fe3177ecd644963679d4a06db6d0824d0008458150e3c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d53d8bb20610cf8d037d223e951d6b53

    SHA1

    b5797637e20a9e3a4126aa19b8f24214d5af091c

    SHA256

    8c86285d20b3696f66b7ee897670ca02b6bc102f1b25014391a3999bfb83a58b

    SHA512

    ab9a76cdfe0ffde6f8e0cebec28b2aa1a08b202612de14cbbe1d18a586355f78f0d4d6b58dff3c57e941922257f2cc7550d11f914681f59865e7618ec84563dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cd45678bd5f0fa1036ae391cb977b024

    SHA1

    b15aec994491d2919352b4c841058ccad41cc112

    SHA256

    ac134d67ca070f9b84fbacf540f31fbc8735779c920ca9930c4868baabb5fd4d

    SHA512

    6444ae5dccfedf97fc1dedd40f80e4e955771a95f428703b7fe908c9e05fdc4f696ff79b04a2620d5146913fba9edd3b167f8e64563d3c34037236e38bf1cbb4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dd0874db73ba2f487958427b6f2acb6c

    SHA1

    fed3e99304658a6e107fffd64eec687a2230f253

    SHA256

    7013e76dfed07ee2a8e89746704d72457eb48c7931f56484b79045349425e9fc

    SHA512

    2b1d0b20a00a4c6b75c8c92f65dc50de7c821025e19810065f65c4d3b4cf2f4930f8eb673055fb4de1a62e84e447baf55f777f8776efe4c1acea90fa1538cef7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    89f64a07371a01f914c0559aef570542

    SHA1

    7679c4fba6cb793efe3ee5ff78bf3c6df607cf6b

    SHA256

    7477802b9135d53c412efa118be77f5b79e9e700894df589968f5be7f058adad

    SHA512

    84d89a9ce430748434b068fb9ec4e9b6fa90c5c85500ad3404079f6192db90eb38d33eb52083b9ad67f619497db25d13690ade6946ed0369a1482310cb186e9a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    187015a3b4483b73dd5abf7c8f7e74af

    SHA1

    0b02787de247ad486217ab7e48374e2455e8bcaa

    SHA256

    3b9fc90a4f96f5133b6a02e7bc5034cc434f53aea467ed7e03f5ee4c365fcdef

    SHA512

    2e72f292f935003f98a5c5811017a6f02cac0d1b47e6dcb789c048e26029ca6151a30355153130a509c328963e04f19dc15808a4c4ef668f3030ca9ce7207b29

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bf6b2e5305e588ff241569f561cd4bec

    SHA1

    6b7d454c37f9e0ceeb991614fdc36215d17b16ea

    SHA256

    17a337c65d69529be63b57a3be2f7dbcc9ab1ab4fc628e1ea88bedc7081d30a2

    SHA512

    da3ebefeb57a2436c5fb199aaa37f471f01f50912f33ff57899e9179ea157617c99c6c61fc9bc5c7f9e245aa6191738d80a134e2265daca1121fa528dd7bc1ca

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab733.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar32F8.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit