Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

CHANGES.vbs

windows7-x64

1

CHANGES.vbs

windows10-2004-x64

1

HISTORY.vbs

windows7-x64

1

HISTORY.vbs

windows10-2004-x64

1

arpaname.exe

windows7-x64

arpaname.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    175s
  • max time network
    198s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 14:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch09.html

  • Size

    67KB

  • MD5

    1ed2542d6762d87e272da51cd9bf59ea

  • SHA1

    e6e23b2bd3a9215acf0c493cd3f69dc519946481

  • SHA256

    9f21c8a3d74875f3cf707bc4fb80f1dbfaee35dc786eeaa32621001808d49130

  • SHA512

    295c3d5d1207240169a94c8ef4c50731837f397aa564089d86b74446de95c84ef60a0d180f3bd41433011ac7e72fd755e79dad0e9a45663581cc359fe6ad4f44

  • SSDEEP

    1536:w0OMUjJqp5YPgW+WecqNIM+jSxMgOXkEZ:w0QjHF/ecqNIM+jSxMgixZ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch09.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2076
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2076 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2668

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d9f08fdf0edb426062260d9e5588065f

    SHA1

    165e42180950f6c640a848392075f3fd33b2f378

    SHA256

    01c3e06259325272195881791daf56f0e7d3a38b976a7f2bbfe74b797d3afb37

    SHA512

    61988de909196e841dc3e9f491afbe08a023b6f5bd8503f246959662c4dfd599aebb94304614859bcea26b18dc1ef9f9998e50a5796f381e2f38a4fc8b82d4fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3369a8fe6be1da70f30bc54d929c8845

    SHA1

    6965ea33547500af94a79c6767da0eaf47b57d18

    SHA256

    1cd08c271ada974e3fbbd061d20875a11807bdd7fa80e9fce3a85f8ec111242e

    SHA512

    c7743d16d5202b45f2413f3fc3e4f29ddef579267338362e96103fd2fef22f94e20fb1e76b1975faeef363608b3358f2d7934729d89cfb0dda86408d5a0054c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5e38fe75c8d31351b0a1e945b8b18438

    SHA1

    a8e7ba1019838f25de043c08919a79ee9f049b84

    SHA256

    1035cedf4fb350d2db38f589df129ae6bc256424e458c706c5e02d25f2eedd12

    SHA512

    c0c0f2c64a7f7961b9a0897a9c0ed97e82b05b1e38578c079fea2574e891955f1a7bc61d3f830d06bd95055d7f616735ab98d8f3ef3927694abaf1e6f6bad293

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b4adfcf1b7177af2683b1860bac7aa7f

    SHA1

    599b6008692313e0a49312eb512e53ffbc7d1b68

    SHA256

    916062c5546798795a35705d78081c9ff50da5c1dc2190dafbc10ede4c85b3ad

    SHA512

    2b0f1bb5842e83c19ca4c2c34265e8577ec8e6d27ceab2157d62ac5e32ff585ab42b50e46a0aca19b0a1b74a25b38271368c1f9cfc2add959f7eb5e0ab3104c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3fdfb6a860e133f066ba7b9055e3cb99

    SHA1

    9a0ead36cc7562efa7724727e77e41c9d4202f37

    SHA256

    b56496a3b895cc58febc1536739ebf328a13baa1e996269b1573a2372896abf9

    SHA512

    e4f181d5e26cf80c86a69fbdd8c3165a9a699662ef470904b5f3c6e964dd7fef27053c2864fe2bc0418be834c5111efba4679f0da911cdcfbebc263fee6cf2be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    040fc0472fd8fe4f7752506beb281d49

    SHA1

    dbc90a945adc93e4f51a53182873c485a4733e15

    SHA256

    9decb1cc3c1dbc460bc2a09a90794e88a164276b23898af8aa46e3ff40aa58dc

    SHA512

    a245158a7058c21859a61a30d0ef3dc3ba25c61678672a162357386a6ca51a11f6ecf3db925f21b592168ef5dbad4c3f713942b8ff0348c9ff4d6439020a8b73

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    44a5a58a7822b1c87f4aac6c7a222fb8

    SHA1

    3641d43f398861d77f07869a36696df462e87725

    SHA256

    c66ca657db43a6f61e791419fcd24ce88efb8cffb33bf99ad07f7fd128a226a2

    SHA512

    e01df694ab730f47a6004039dbcd4efd7a69d735824156d056c66cabc192cfb32b2c4fceb8278d3477b3434bab46dd1835697854f721111f3abaf935df596bee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a1b064ff216ce41a1f92b19af9c23007

    SHA1

    bd9796b5c892d843678fc66f6f5d6f10ae4adba4

    SHA256

    cc8c737f6da116d24986d8cbf028a9853cc395e4aa636322b6d1d23e3c106746

    SHA512

    87919a15ebf99d3ba8b6dabdd6f292fd70a43f12a2bf25c9448f5b15dbd7d89881434247c07f12abc340f373b25de373c315189df59353583942cee6cf38b8f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8f2652ab26376b202b7e166a24333cb7

    SHA1

    342ce30f40c49aedd891fddebee37c9a82c7fef3

    SHA256

    a2afeef9f20581945d9a1730028c53769000449209f691eb8043dd246493f223

    SHA512

    ff109f83148fcb6e946be9193c2531a51ae21ee9cf862a7241f0c77441c734f86f46e75d0f8505dd653f0b6db824584db6987fdbd273bb6a09615bad871b2a73

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c580f7f3912ced45a9b331bdf3e6acad

    SHA1

    2755a8691878cdfacf2dd8b16184aeaeb8d5f351

    SHA256

    959b6bcda11b46bc1e8bd970873ae7a4c2fbb1b4805d14e843de9cba18280f12

    SHA512

    9e4270ad2438d93ee7a599acc0e1b95c2148b33e8a8ecda457898a80342493dd54a9c4f1f5d7118eeeb1f5e032995ab6c9f1010f35433d9e0c0a84ddd7f7f500

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    76543c60e0a04d4318c85b87d6adae0e

    SHA1

    a87bed15855724102e33794bd184261df261d297

    SHA256

    ea49191debec32fcd1ef3a49db937f7bb0dea698ad66a43ef7e888076f1742fc

    SHA512

    803798ead7208620eb6b346dbc8dee817c683e42dac441325aa87a7c66d40f4c30be7f58b2f65335947f481dd9e8db76d05dda1f2aed7ffcb150fcf5a9e64aee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    31443d625965fa0d104a2ac90465a173

    SHA1

    d546a930378e473d0ce1b6a79589202ad2e33459

    SHA256

    b511448a093a29635207f4d7cd232f17e4bfd1793b539045fb5f65709fd07d88

    SHA512

    10c44536cc05a579320798a646b7e39abd6c827930367f518c48c398a5bc28e20f3c88ae8f11b67c9979de09730b178871a4991e6db6bd2103008b4facb8e888

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    61add4a15cb849e50255ac65b33db016

    SHA1

    802ab32cb77b43924782a0bbd93c6c53f9606452

    SHA256

    625d40e95305560dce501efd18786a2aad3fd4746f505d3e43a78bbb9786dfc9

    SHA512

    5d8264b4956d10b12715b46f3d228487d1868eaf083301539d3ab5bebae14364379640feac53b9985e875ff7472915fd74b3ee55d78ee92e322e4200d4903de0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    62d46ccea5a8e0294d549f136a34f2ff

    SHA1

    76513bd213d053878ab4cb657b3e39fbe9cd4cc0

    SHA256

    c11f11a2df356d11439d1f189200922cdb48dd122355c79a79b5172fc8ba467b

    SHA512

    ecd4a8d05d7a5516fc6a26bba1d5945625d84aab88d8034e7272e1112d1abfebacea5ea6a6de3363dd70a5efc105f58f3007a5526a9040ddde6baf002faa9e92

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9f6a16b25cfbba032be1db138bf55333

    SHA1

    0bf84d3c97fe33b79e3bb12e5334312b78a86202

    SHA256

    694524c985609d43a869dee7dfc05082fd65e56ca4077b88457a6a431ead6aac

    SHA512

    b93e215fab526f3fefa6f0e7b8017c984f759b8d9c5022c4bba3826d5db35d114df7b6f7bad0ab22d2abb8bc68d521184a273ad6ee25c59cc40893b6f31d9e6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cdf8cbc3f9255bddc45c1194f1b4a1dd

    SHA1

    48d8aa5e4b2e91d2b5624098d1d2861db4296180

    SHA256

    955b6aadb7ac48a1a65ffb6a0067433e9c6576358e84bb7e9ff5f8359f3cc025

    SHA512

    82f628256daca9d40b6222f5091bd0f7baccf513e1f7df95955fdb161d2abc3c4217faa5ff89a380063fbb76072f227acbd824f911529f6095da9bd8f233e28a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    18420848845dd4b04726c273e0b717fb

    SHA1

    dabfd87363c50b2b620c7f32d06cd78e8110c09f

    SHA256

    63649c53961fe058aeef815e382b131e86c671e833fd3b7de945aeabd917e373

    SHA512

    9fe80588b83aaf7c2e5e3b36f65fd5ac09fd2b83c6135b2d4cfedc0cd861009229f1df1d6ab04f40e957680d6aedd3d72a5df39195b176de5dd7cb090f93791c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc18602f85f4d5803ba50bc07ef40801

    SHA1

    9857ecc14b713beb92321105afcf85de26fe3267

    SHA256

    51d04924f9ef7aa2030b0c5b7c1301b1000e975289e72d5deb61837371c82217

    SHA512

    108a56113d745feff2565753e271344d6f3c8ac645919221f9b506fadc0fcd099e50dbd3dfde751ea7d2d1871e7beb5b886b8d3c1e83cf49f3e19cd9d220da01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c0f98916812621a4b044c3ebc4510d5c

    SHA1

    2ca6f0f09f2ab17b02d60d559dd600f573ae0170

    SHA256

    15bd469e77804c8567d56e266ad5a3cd0094c202c8dbda2bea216b84c0ef31e7

    SHA512

    25a465d70115e3bd95703f6d4495d9fc24c9a7b8ceea8b0a264d1927c2607d6bde203283bd9dcc4effed554d342abd9e134c66066de82bd6a345c87a88ce0882

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab5BE9.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5CF5.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit