Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

CHANGES.vbs

windows7-x64

1

CHANGES.vbs

windows10-2004-x64

1

HISTORY.vbs

windows7-x64

1

HISTORY.vbs

windows10-2004-x64

1

arpaname.exe

windows7-x64

arpaname.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    166s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 14:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch10.html

  • Size

    6KB

  • MD5

    eb6357a4f651368d5f2c5ad86ab4ad91

  • SHA1

    c16b9cb697abee59933bfe18b2f057768f28738c

  • SHA256

    621fafc824dd36d09d1feeac06bdd3e8ebf954f2cac00e9d713510f51b8d5591

  • SHA512

    484a41c24195b69661cbeef5a1d5e8b1eec32ddc7197e8f5879acfacc6b880246624bb8f0dd9fede812959dc444cf7bc783642b1950cbf3f664d9f6c4d27ea37

  • SSDEEP

    96:wBAvOHe5T50VV2yNaLgAAKyfdytI4gYI7XJ21JUC/byKD+qmWzrzbKpmAbsdgaw3:wyvOH5OyNS28to21tDHaHPTy0

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch10.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2128
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2128 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2152

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    15f897326abceed21df9d7bcedb0f547

    SHA1

    d774e5d00d215466770301a98d093ae1815b3f46

    SHA256

    e069ec054fe827ed7d1cc201e6299f447430125fe0eae5081d00094ea82333d9

    SHA512

    cedca6b0d5564ff9e0eb22b6d0b50d362f43eee24ad57e37ac967f70ea8c439406ab4261f28d9b0444d429ff35bab7cb88c224c9969acb805c2045173b4a65bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    61d0cdff20751c849523d4e1faee9dd5

    SHA1

    c54b7b45189bdb6757f5e765cbd43cca38f522f1

    SHA256

    ed3e9a513737bebcf340eec9aa2a0a95697a24b5e1010a5243d3f7984159d57e

    SHA512

    ec18143a51f7cd5352a2023ec8b1d962199cde3e991af329f1b37edcbc46f6c8d2b63dc9dcf8ebb482762c13542a0f3035d821155f8193ef88b113e7ef120f5f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    adb864b8ee65e7811e31da63bcc8753e

    SHA1

    fb223f42eb2ab8fd451666128e4295154ea0728b

    SHA256

    df97cc4f1bbe309535681500dd0eb3de14ca3dcce059743a78a73ec38db97bec

    SHA512

    affe86e9c0519343e3b2530a9db3758a61cd17f00a9d81c1345153b7a59536ef82000a09d0e145f47c913c7b0144b159ff8f0820a12c7e8469d3d8a53e8bbbf5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5f61945d2b6b05a2f0dea3f4ad625ecb

    SHA1

    ca9f1bf83fd8feab7936d3b1c6760268f779ec6d

    SHA256

    b07c59e703a82e04fb988e8306f2b65e57b2081de07722f41f16353cc01ccd2b

    SHA512

    34c9251faab6fa45ba6d3b43996a446e79bdc219befd7127233131bcf4d35e414888c3cd03db784f20d291889b302a05ad05156f1110dd9a41c5031c26616cda

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    326adf9d919161b8e7fdcb9b13208378

    SHA1

    936342e41b7617ebf3e09c5d2b85a13468eb3f20

    SHA256

    d4bb3f52dbd71917ee6e3c33e2bcf301ca336f0410105826838c1713cd70362f

    SHA512

    bed66d80ec7ee5b803f64862c21c34ee9b6e3b3b172fe941ad25dff9fa7b1cbb6430e7ed5ae3b2457cd71e753982c72951751453c91377dc93c8ab2f9b6e094c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c2fd2ecb86a8062e7e34ff1c80f344b3

    SHA1

    6edb4297e8315adb119299f723e9a41b3b852160

    SHA256

    b721220eb5aa96a82ec1e4dca9c974cf84d768adc91abd70a71cafae7ab6e3e4

    SHA512

    4fa111048e56d07251cc73d8316af2a7aa17da04da7fef8178b6cb2cc24bf868ef7e884dc3d3220b74446ddb56a912ee89fc97fada44a758b379047182484fec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fe0a40a107a84adaccd104b8568ff26d

    SHA1

    6e3d4eba5f630f607efc88381adb475d7d1e6ac4

    SHA256

    0a1e64db1f05c64569434b8a28bbe20600349acb3978fff05099bcf2cbffea0b

    SHA512

    2e1588815850ffefa75d771dd49404db8aa8ae64292cd9e030e4faaba3df74b6cbf48ac95087ec892248aa0a93c40db1e344af3cf4ebb11e785be13f5c1c0834

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    24f84b98eafa4dda3d6b537c848d00f5

    SHA1

    9a3cbb809fa17f9e7769958e8df0f60641b9e202

    SHA256

    8fcfc166dc33634e8e3e93e6fad71758a7ce62b9a9f53c1583c5a6aad7dc20c8

    SHA512

    df3d078ed5611abd17a5e90d9139f35f89888c8ebf9b444f54384cf39a80743af4effc6c3c30fad9d687960f2fbd9c08dfc4721cc66f0f8e35bb487c729c9c26

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d0a7f40a459a16f0e1222b8aabce56e1

    SHA1

    f345342218bb7816fdeae3ef15225deff63d23cf

    SHA256

    c0257c17a9616c85b362371a3b6f0d3c0e1ebf91531d98f3ac0285b73945f63c

    SHA512

    723b1ed36ed8827ff224d863ea741a76074c6dad8bce2904d8bbdec8fcf05d1b6000802ed4be99f4c29b5a77ae5d4b70c16e22228ec51dd1baacb42bc360b0d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4bdae6120310d41b0378393494f3f070

    SHA1

    6ce854ae2dc4860cee6f755a53a6ebcc3f6a1d4f

    SHA256

    c5be86b7666c8d10a391476cc5d14d1fde2378cf3e139a88dd73ab58400a094e

    SHA512

    93ac4788b1d64d99bdb2addbcf65caa8cf1cb5bf529bfe885f33bf0e85e816bb60bd1816a29a930f06282890c759ed2b8a082879dd82cfe62baef1274883a1f5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA834.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA8B4.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit