Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.ch11.html

windows7-x64

1

Bv9ARM.ch11.html

windows10-2004-x64

1

Bv9ARM.ch12.html

windows7-x64

1

Bv9ARM.ch12.html

windows10-2004-x64

1

Bv9ARM.ch13.html

windows7-x64

1

Bv9ARM.ch13.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    137s
  • max time network
    170s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 14:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch13.html

  • Size

    7KB

  • MD5

    44d12e80246fdb6b1dd0ccf26ce404d1

  • SHA1

    ba2d8309cfbb8b0d009610fc866c4acaaa0094bc

  • SHA256

    8e3797f3100102d3786fb33e6fe5ed35d2e40dda1440d1ffd2268de84bcad3e6

  • SHA512

    17c1eb176eb72af86548e04f94753014280041e739e8e350523038904b8b3b68d146372c1a49716696df12d8900701b7f6268551db8ca1512f14a18fda142c64

  • SSDEEP

    96:nBAvOHe5T50VVuyNaLgkAKyfdwSt7IxNKgegYI7XJ4zJa1JUC/byFyT1D+qmWzrD:nyvOH52yNSuCStWma1eyXDHaHPry/

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch13.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1548
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1548 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1612

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6bff688f40727e97a3d6976e68c9c6be

    SHA1

    f5f6abc3e16527f6348153b6dbbeaafdf19ab379

    SHA256

    f57e68874eaa39c09342ed52955d71e3fa937be40af47aaffd757ad793316f72

    SHA512

    e12834c57a309bd684f88f3041604f47bb096cfac2745859df0a5721a144a11b819314c7e8ef01d2b55328265ecb2e8704952b1673f64ea5b24bb7c8bbcb2f47

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ff5e261d590d56c523f0ee1657985999

    SHA1

    757347ce0f1a19b08f2aa5524e8d8077f768151a

    SHA256

    eae8d4c002ed9f4acf6e436caac200a822e4d22359f1542fde8558f9314eebdb

    SHA512

    f44ab2c09f93b878b1868e93c7730ac90fb523cf493ea99761baec3d525f0b075475600339413769569f40cdc545107df2696dc38590e843df4b8280f29d60b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    16385b5a6e2e070f0497c256dade619e

    SHA1

    7cdf026c5e3b638dc0c817d8de31f6913b29113a

    SHA256

    11fe534eec2f6d895081842fac0e49d5a12dc7dd9478a93adcb3598a7de5a0db

    SHA512

    04e6424b667469eaa589c6951e70bb97c7db98e3b51ece2dee1cafd83877f119f83a2de7fe4fa6df35cae2318144ea54e0c0a9ae555e53a00e019419aae7527e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e1e9c689f74fc379460555c69d740bef

    SHA1

    4ed1dd81c55f2f829d2bee47a66fb9f06dd87329

    SHA256

    9509a8d54ecd0119c3f414d71541dab8a49a011fe246ae54fb59a7a1f88253b2

    SHA512

    1907ebcfb2cd7d502df3796448b50ba01e623559e0df0b2a3f8f812419758093b2f1076869aeb39046b68c8c6d875138c80f64a92bc3ca02c7ddf2940c09302e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cc737d168c58af6b27ac34c644a08bf2

    SHA1

    9e6f208f5d88268b6bdecc296d3ec4ffc73a7a41

    SHA256

    7c709d1f25636ce0734457a4707e79e56cb37687353d7adf818f0b8c49341985

    SHA512

    ac2a8c5e717782dd7a84b4522a8692ef5134516810bfbef7396e27f889a569efe3a22a42113bdac3ff2e9bb5e796ada47c194762f449e26aed871b2cf8fb60a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    72f8b4db939daec1102d0a6ab3188d52

    SHA1

    b7129a763184784bf9e0c6639cba7d2ecbe4c3a7

    SHA256

    ec0fb4c51aa0b57ef4277973c28855d003933ae68837479eb2f531755acf9462

    SHA512

    8e840fe2e97944fb9cdd11d37c538a485222ef0f1334c488031ef8763086f1fb72caa5a1128c689caaed930679c1e8a77b2a8c6afc193c8f6754a13d5a3b6ab3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    594c925cb6fd63661fd628de7f6f2491

    SHA1

    6f65b9e504836ba3306abdda9c498d0968dcd83a

    SHA256

    022dd6e906834e60833b3d395384048fe0cca1afe0bf7b9edea2abc07fe3a423

    SHA512

    771e12767104221b12ae6f7b52a0aa1b111e96a0c6d7353e47f23e856385ffff8c792eef29fb3892e0ca0d9898a15685c2e6d07613469f322e308aa05ed629a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    94d0f5bd6ebc52553c7b208c31a411d4

    SHA1

    c1a6616e25c62bc9b58070cd8290865919b8ad2c

    SHA256

    2c5d2bb64a1c105743a5ee1ab61d3406e0ba530633a6d4b29f788251f6e25bb9

    SHA512

    108d796732d8621cb2c96e04e4473b754d47e185aa306491dbd067a6946af5e1c98245b0e99cd0c7bd01ec8b7677f1884f80087d77e8dc311c6b82745e642211

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5246530f74a2c96d727188f42a70531d

    SHA1

    9e0c83c495e6eded33125f0c1c5f1ca64cc46a3e

    SHA256

    4ec26d65f30d74a74785dbdeab694e3c8ae8b85e137cafaac45151d43802baed

    SHA512

    3b30cdc0b96aca907ebb1c8c8e6b4ba2cc4e99258f2ddb6acaf2f834c553e6f7a6ef9350afcfb3cf11054fde0770985388f9cd477f3970eff4c7e3ed227ade55

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b4f163e62259f80ca8c5094ff33ff560

    SHA1

    c0c00fb339f93e588ec6628aefe105cb64e260bb

    SHA256

    e7f2cfde1cf4a8c6771fa0961d6a02eb083f1fed71df1f5ae06d6b0076a16446

    SHA512

    e926da03f04bef8004bd5adbaade56d41c28215fa71dcb9ff6f3b8249e9236245a553ab84c6674736895518d03c9f50f047d74da5515190063e4b19dd6871ff2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    71ac6d90576eb9c738e0be1cb5d86453

    SHA1

    1cff3482191579ea9ab0d7589eebe8ad2399424c

    SHA256

    ecb0993f45017ae786b965f585372794a52a35987fd7e59b721c68de8a7cb146

    SHA512

    e8c62b0043fecc99b241c9494d0bacda226df1e89fa99667da0481ca8456fcab2fd2df457961392efd1e0dd449461c43d734921cab2eb8533ce22faaa246c46c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bc72a8ad6000e9efb54d02b345560acc

    SHA1

    a83b25e6f664cc63e1b4dd1470086f439e89ff7b

    SHA256

    05f5d5e34850bc7e2568e4cf4c82ac3abf29231f9627d7aa5429a70262141ff3

    SHA512

    423dacdb5d93c7721c3c282b28d209784d2a48578d38cfbbca5e551f7f250a0958e758a91b5807c2eb2d8c94b56449d870e3cb199dd72c7a4630585395e57acd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5828d3ec8e04084417bf14a3ac9df55f

    SHA1

    6c75a2742787955fe3dee6a073310ffb4547ae40

    SHA256

    25156cd400ff8e77c6eb6605a62be174f7a813feadfd32d17d99ef8c48fb2eeb

    SHA512

    7159da6d25c4fe5ce59ff0478c67c91c219bdb9022ae63a0f557b2af16a51ecc5b44e5545bd74b3a82d349ac4bb81abc7f76febc423e47b9c69f3e966f8907c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8a4177fdc170d0092bd339a3ef662cf7

    SHA1

    03e00183198097f068e3ad6b9905e23182b65960

    SHA256

    7324581a04d6958207f94a72f224fa489d26021d4cb5bd7be3eb3ac433561277

    SHA512

    d2540a13c94290355a997633e8200e46edc5ecd813a85f8a224cdf5fefb3f2db84a5e41ba7eb7ec3fa6e52cbb634d14889c512b20c1bf03ef38c89e625869523

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    754a99663e52f6db95324e6f71d2a3d1

    SHA1

    3c8268d39cbdf3c4865d1e86182ac13d5808036a

    SHA256

    646879356435140b6b9d8f8f98ab58380727f87588eca9b14fb16442d52f2336

    SHA512

    5988c74333a290eb06392dc23211c47e6e12e4a0e9ae0e6b24c76dc63104b03c22e957225f574c140402187d5a65b922ec3f15961882c7a5ac70bc203542156e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f01d5770c7837f18e8c55a2b77e7fb84

    SHA1

    5bceeab0fc04af410e201f0b11792135796967fd

    SHA256

    2a5d956de1135e5409680b12519749ba0475c5d39cbe4a11f0519fa3b8dd7f80

    SHA512

    0aa1831201b908215a54b05806b708a653b5b01db96073c117e884fbfa3ccefe1759265789099d8dcd3aa939a3fecc33eed27ecb8587a9a77ad57c25bd7d59bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    388ca006264d908e9fec8bad7945bfad

    SHA1

    09b16eeb87381180a768492ec0279bc30a7cccb1

    SHA256

    f568b7bc738cb940936870b5276eaa2ac17d466a8346a3205fb69f317486ef9b

    SHA512

    88379bc60c77746d372ad3fcf7dd21562b2c7dbce4a49964c363ce157658b201032a2bc4794ff6481af31c59a58e28c972838b20b5de7d9bfad4300b5572fad7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a15805938c1b30ec4e58db5b4dea6621

    SHA1

    c4d4fbe61492d7d3e3e349c2f9082000833befb0

    SHA256

    a6250af22a0fe37f4db85567f35b2ba5871b020810c132a7b1f5c9a342d8f4f2

    SHA512

    e7f106f51e3ea37ba92857787d4f349e3dd39c8e906b32ac636a393cfef75888976411b4322300eefd8f7ba29dcb1fade7f1b9a7a65f4f4ec41d0e5afba0e540

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8d6b36ab042c19642f42d30c7e083410

    SHA1

    2750468d162dc3eacb1da91a41ae936e2f861a30

    SHA256

    55fef180c33f1ab386a81fb1ab2eac8f2cc6d1dde066773b8177e568cb16130c

    SHA512

    018628a4525b072a607cd0477871035b93d3566c7333983319f7fddfcec14349c66804b22884b275d44eb95e9408d6a1fc937c841db43232e853adc8cd76191a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a494e113a7fbe5ca452af034f51df8c2

    SHA1

    3d8aebaba67ee317f89e88e6c292184726d5b9ed

    SHA256

    dd8f7a968f7e1999b468d00c29bcf21b6893249c8a4f021d8c62ec323674b3dd

    SHA512

    d3f6a149d8ac782b2b3eb0182023756bf80a79feb49d23149bd337803a631a86040516a4c2f4f1e9340f01606c94f184985a8e770e04aef6eb9dff612ab62f5d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabEDCA.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1876.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit