Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.ch11.html

windows7-x64

1

Bv9ARM.ch11.html

windows10-2004-x64

1

Bv9ARM.ch12.html

windows7-x64

1

Bv9ARM.ch12.html

windows10-2004-x64

1

Bv9ARM.ch13.html

windows7-x64

1

Bv9ARM.ch13.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    175s
  • max time network
    174s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 14:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch03.html

  • Size

    28KB

  • MD5

    d03e4de1cc338edec63b69d22d64aa12

  • SHA1

    a8f9879e497d570a90cab5323a1a1b2ab70000a9

  • SHA256

    78291c4244a42f472ffc3445c9e7d44590cfe9f113b2debd32fe25bc67be1b5a

  • SHA512

    0c7d3599df52483c0f5b5cf226ed6a8b999bddb028d3cfbbaecfa6e0ff8669816c8a3f45881da345af0dc31dee8f163dd7170ed6ee70a4ba7d81febe80c32365

  • SSDEEP

    384:nyvOtdYSEM/tRfDYxJCIbdjSO7vzpkjLTq7afdbYG7ReERCqhL:n0O/tuxzbdjxvijhfdvRCe

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch03.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2836
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2836 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2000

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1d5ab3d15382966d0c7473831a455d16

    SHA1

    e1e451f9898efcdd5e42122f00d300af9e94eb7f

    SHA256

    76a218ce699a7313a92189bd6db2941be71d4a08de2e6ebf9b288a1c97b80187

    SHA512

    02ba2b09d8c8ba787abb8b6021421126056ba8aca3603dee63d0781cdc512cf070f361d9a9870d5dcff5890ff7a22c0c508c733d7376f358aef55af17b0b3069

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b6ec4e9434584a0961d69525968423a6

    SHA1

    d28bb24f7ae78333c0466f170cdf920e047e8b2b

    SHA256

    0961dee25eb491d98489286d6790936e2fb12efc1585096df91dde3c5ee8235f

    SHA512

    35e68cdff5885b1e80a9d7a7ccebbaa89490daadd94af178d34259eeec0d095ff5a28bb1063025ffbd0f8be6827f26bd30832b8fdf5c57fd37397b8add0fcbff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c569f1732adeb282d85a7ef3c704c9c1

    SHA1

    74b9ff4fb4c3a6067be9cabcf57ccf1b40e877f2

    SHA256

    3021f183633601c4d8effe5bbd82a501c0450a2b26230cce81cd6905478a2592

    SHA512

    4bf67a144e9514bc9b5b5913f5753e0e5e3a5fa42c4aee6cc4f646c7c027990b19c7430b94d1bcf323b84221ee8947ad167eeafdb719425249b58809792645bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    149c18f1fda9144f82bb2554b8ae1045

    SHA1

    39188fb8463a874e8cf5726d276c470d446df1a7

    SHA256

    5d4f96e505258c717774fccdce0787c78b4bcf8e36377be53506b97e517c06e8

    SHA512

    22dfb96682638dac8b357cc5025f4818698992fb9ced117fd6f4dd4fc57d5c2730da232bba8f6fc3437b67aef7277a15d3888ab46cf0c3a9b09c4d8e4c730075

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2bf71db7ad4f5286221c6497dd04d493

    SHA1

    412a6d04948ccbaed7b4d034d59c944e7e8c511b

    SHA256

    ef055f00325ddff32779d83924dfee16edc1f5d2a93821077eafc004d952a36f

    SHA512

    e6fba90756298e0ecd0c506bfd29d4406440ecb94b1246d1fbb6735c23383db4e11fdebe1a1e9ef031b7e4aeb17e873ce75f49025a611a9199eacba08fcd8f14

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    503b8e5b770a5803bef38e03303a8080

    SHA1

    51faa0ce1466b69c3913cb80ff25393b486e907d

    SHA256

    95563d9e125873f84cdee0dac7373d9eb8ed65019d980ac39166aad4951fa439

    SHA512

    28d7eef6ab924991c7c247a7007abe8af91a7b2727dbdb1e6985d54d68d4a9511fa0bda7c0773e616325bf221cef7defce8e619b310ee20c6820b7967c8071fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d1a58a12cc97a8fe34ab0888f6f3e40e

    SHA1

    89aa0d360ec53e31c5d01cf8abf73a05c92ce44d

    SHA256

    339a3fa7b03ffc4e0a99be9c2a0764e96abd89deb912574a9a4030a1dc32e012

    SHA512

    1e97af0b50b5e3f8f064d2cedac0623d0537309fb863d486dfef069e050a381e5e3726d70bd4fa737ae76d54fa80fc51928949ddd87df75c6df89d9e30c4873f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0be81fff8fd8120476f7decb8cbe2319

    SHA1

    a5bbf9af4d07bb7e0ebcda1de6c082837550fa8c

    SHA256

    0421c38b6de54e97c332ab7540066f0322b1735f08abdc6d49577bd9d3b9ed89

    SHA512

    be928097cc65c87017a144d3596c60dee241dc7255a52768c3d6b6f976d6dbb8add3eb4638b3a3b299db3a05a7a1fc50f5c980970bfaad4dd090861bacf1efd8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    53160c5867c1e4c04866f6165d972be8

    SHA1

    b2abe8f95796f6d5a7612396e9e1ed92a81ba26f

    SHA256

    789fbc5375db44cf8f68f63025222a8a3ef88d065ccb604090acd1384102df33

    SHA512

    d406fb089d18769942b437f962bd7cca4f83fdf939e376ad617004484323ef97f23b5b7059b6c9eda6e3a23fcb92a4a0f0fa61bfcb684e85de6071aeb7b6319c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    854000bbbc220c106f48281f8578719a

    SHA1

    f7a714da057cfb8cedf3af8855cb04fffedea4b0

    SHA256

    d11846d8d76929c2a8c736431c922cef7125d24dec80b6634df8c712b6cdd2d2

    SHA512

    014ce8109a61b2ad9504a44e4ad4e0a08328a1a721a733f5dc8b2e5b3b58b615d9ac369ce03b32002f104a482c84f551080a47aa8d8c155be8a08d955de0c493

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7d2fdb4fccc36783fd078b2cd2c76f85

    SHA1

    2c0e09fc7909c5ebd8878d8172933178fb9914e1

    SHA256

    e0adfb92c7369b82b44504be4256b04453f8e55323fa3d787b9f33ecbd2a4614

    SHA512

    36b68ff839351034f834852133f9a68b0729a81c6f6b33d78af0f8851a7d2b326f8600f31460615ce89a6adaf3fa0cabea866a44dc2954f5f6e3efa5458f7bf3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0e0015a9c30b1f2c9750301961d50e1e

    SHA1

    828ceaa3eba72abcfbdf08de7e1b56fcbefe2cdc

    SHA256

    1b8679b32b33f6557e32861eaf0d95052e118f87a077cef70afcc70c66eadca7

    SHA512

    1c66a3f1a77dff06d570df6bc1fc78f832eeee8a37f1e2e7db61a579387bcca6cdb474ab66c009db3f031e0ec951bbe2e69ba488f6f686072c25bc46ddcd7fae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3ca6bd2886330ef9964b576a2b875edd

    SHA1

    7e693b4abab90aad56c6c00c3ba7304b784d8ac1

    SHA256

    9c9805ef77b6a90d8ae187f14f4723395fa4c9f34e41fde0f918b2ac2e9a9dee

    SHA512

    cdb7e669d9f6d9242f71cde6746a43b15c36ae1b20b1b2f6f99548cdfe50fab2563961a0b873fa2c0e080e32c8e86d50e48e34ad91e0528ef69aab7451a87318

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a1ff76b1bf334decc5cf6038737654ab

    SHA1

    15fccc4d8267988b3f11e929d03dfed7b7df87ae

    SHA256

    16534a688bfbbe21a2001cccf4be53c9889de616e636f5474297c20cf1249f95

    SHA512

    788e56be343e8b413cd9debe6a9b37a255b07f150fbbf97c4d5f4075054ec72ef3eed3c98dcf68582278177765b17ef58fd02ec0b7e1a300bb6127db1761aa13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d61b6cd7e426f59eb8cc96be77fcece3

    SHA1

    34710777bd863fe1a196fbcf277413dd47c00ee9

    SHA256

    11ed6e11e6f10d2d65c2ce941bcf9fd81ff9ca3029bed5c9b842cee3d9d40647

    SHA512

    445585cf31eab2769c2121c490defe3a4753f987b3042f3393067277611f875235dca2b3d8bdf6de7674ade1ffb6eb908892435ac6114c6ca5e79fd88647f316

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    66731cb621577329fd3cc5deb2579af3

    SHA1

    b44436adfd4bc12991d30db4b80ac975f4801e8e

    SHA256

    56d2c1ad2d3f7e03a777025fba93a75e41c1fad46b262d6b1d8d94140169f089

    SHA512

    e2dd96aa9ae732e460b2017fe930aa2e822d261c84a23732251f842c746f5beceef8627abd0856f9f29d369a89bda247b9b0349c5e15359f1cfef1c228f2d760

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4c708ef1f84295480d4487d90d773b47

    SHA1

    bf20a03a20173148c2e4d3b4feaf0896ee28979e

    SHA256

    2055b945190c5747eba7776376ebd75fcaf2a2efa38fbd83771fc64c86af4b54

    SHA512

    2fafba8d91c1c960814f2c6a4aeded5d7882f6545f6ecabc2e4194559564658ff8014980dd56485c2d36f4239db344b509f98b348838fd2312e7eb6524085081

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    60e9acddb5cc84d80ee3926c7f787e1f

    SHA1

    3e9d2ed6b4b55714b994a4826b89328bb11745e1

    SHA256

    670213357e57fc4169aeb897e942e837b046e3cb4565f5645235f2d0dcfac3a5

    SHA512

    822c54f677ce9637b1d63f347421f3932f47834be900c073ea99c3486366f4286de837ad5bdd21a8563427e130684826d949dca2f52c5f3545d879e0aee2cdd9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    75199a1bf72bd40e7b9eca63459e745e

    SHA1

    c0e3ac643da50c5efba9409bd699fd5b600476da

    SHA256

    f89f702595210ad35dce9385b522f7aa2ea11d3227c3c6013c00db4ebb5a9544

    SHA512

    cd5affc7a9486e935357ba5f98c12303e4b70c6cade754d33aedff719f5eb26559ce6b057bf882ae91e2e1f2a0e0d468279f829694436b2cc5925949afaab8f7

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab171A.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar178C.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit