Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

CHANGES.vbs

windows7-x64

1

CHANGES.vbs

windows10-2004-x64

1

HISTORY.vbs

windows7-x64

1

HISTORY.vbs

windows10-2004-x64

1

arpaname.exe

windows7-x64

arpaname.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    154s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 14:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch01.html

  • Size

    24KB

  • MD5

    b23590eb3552aa4574aae372726e527e

  • SHA1

    8f7f213af6f7f44fb77872fd7050d864021b9479

  • SHA256

    cda1265e34c9bc8b83a5b544596a0ead0cb942cd6cee6c8ce67f9a34a2fb1f8d

  • SHA512

    dc77c8c747abd9e8779986e0a3af3da2d8fd55e1e7f970bc94f8e39fed947f53f7851de7113f16671cbc666745d09a947166a4a7bc4aa19db7a763b0364d9734

  • SSDEEP

    384:wyvOXFYNLznYbTYLz9lS4VOZ0ol+IQ86gtGpW8W:w0OurUYAZ0bIQWsEJ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch01.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2184
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2184 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1620

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    94f937b5e695b8c835d05a7060db2372

    SHA1

    6d12a3013cf521fca209d6e76477b7c717f1e470

    SHA256

    8309f9d984685d5eb23ddce3a5caf32200e74bf5a99bf2e587a578bb7d9ac628

    SHA512

    e787bde45811f54ec9e7ed004aa8f926fb4814466317ab33741f1cd54f508b7c4a4c8a2e4df238227c02661337b07fba8768b1436c814cadf13d5251ea50abee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1f5476756b67f1bcec1fe52388425621

    SHA1

    911e8785f08742555168a082879db3be95d60a96

    SHA256

    8e48b099a9e8c8f5c7b998c7beb2f4aea090c8c81c296ba5f6df12d6a6c45b19

    SHA512

    0ce4364443eb339d786c1be0bb940dcf40f5725ef8ba49d7a606af9917865c3432596e5cb34756d4049f17c786fc5ea4d37ce621dea90b38b5ad9ef2a09a3e22

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    11eee1033bec73132c599191d74e1ec2

    SHA1

    8d19ac332a601059163651eb8681154b9d183000

    SHA256

    240522dd224d9ea9f16b0963de19723efa3893050544f64cbf5f5e9ef35afb7f

    SHA512

    74006ad3a42dcc4111cca6041a927442c541598c0b20f5d73cc048de84c6dbc14406534cbd1babeb4825f5d62a8d94e9be0a6fa392310b3055d57558f591038b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c67a8fb5dd757b3171180fc241ccaa2e

    SHA1

    12af7d1e35fec2709ff3e5790805c3c0798def75

    SHA256

    1148cca185845e81dfe9abc5f132c28b257f77654cd95875736a77ba9dfd8fe3

    SHA512

    c51164a166ec40673cf0f2bc6596c897d8ece5c721e8bbd64194a300f6a8a81dc66248f2dc1b190920cd925d77bbebb8743d40910f902cb95fa489e840563380

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    efc0c40abda51e3d1252b220eb22ec22

    SHA1

    8586ceca887c92fc29ebdd9299a04ca09da17c9b

    SHA256

    d148bd0b124c4cf1a740482783869706cc3cfb2723b8ee080eb73665bd3033bb

    SHA512

    f2cd3d38f69bbdfcbec4a23243bfe5badc7a7de9667e3dd211ec0ae854c171297adb9bee582b998331df6852f3424037fa763ab3c9ee8e5f2cd12238efcd9740

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    43a5113568855c51c3285aa73265a4df

    SHA1

    a31923fc136e4a55f12a5bc4a01a8332239a4171

    SHA256

    1a6ffea06815ad071895651b7eed531ae4ddafb5c57484daed657094e786d50a

    SHA512

    fd9fff1677fa85cd4add265627ae5ca90e62cbb2dca4adfa32053b661768820eb639b1d988505240e53a066dfbcb5c72c0531c4cc60f9ba474ebfd3f84a4f636

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ca8be24e6d6916f41aee83420c5f33a3

    SHA1

    44ce551d9866aefdb39b6103875adc6c1b95c836

    SHA256

    054cb226827e3370df4565107f8555109ff9a82843d11f300202bcd99cd0d1d3

    SHA512

    11f6323c8a2ffdeb2b1b6423a13b4999dd9896869135a1bc24f149b1c34decc928de7b437b07601e543e68a4d9c908e42f8d22bfb7f495e654d7cd355e6ad400

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e1359b0966e58d827b49424b300dade7

    SHA1

    3bfce780315de767cc449044f64ca7510718cf85

    SHA256

    e0fd6558599197dfdce2fd502fb419b2495f20824a0414ba2e968b08df4ee066

    SHA512

    d4da5fcd61f4d0d713e42e7c27a5e4bc4f61b661eb419229a6860b501ce658e14e7c88e512d407f167760772f36880ef85ffc01bda4ba72c7a0b1e83b7e6c568

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2634d5b1d85b6a417842f048fa0c812e

    SHA1

    fd6a33337c3059ac096ed09a57eafe18ef97e723

    SHA256

    c743bc1297a589e0be94cc4caa28576f76909ce4c04027330dcf1f27c20667b4

    SHA512

    6e126963ab16f0ef0aa329f0ee687940e755e86ad4e435dbe347660042d413830e22ae4c60b29c7f478584efb3fc0559f3ae19f37ac5968c2056bc4ce682ebdd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e011d9114cc1d68998eabb486e2e8d49

    SHA1

    245bec4023089224d86e4c7666010d3a0b1abdcb

    SHA256

    0f6efe51cc1bcb77a0c365f02057f5b747fe550f240262532731166892f414ce

    SHA512

    ebdc16a8f95d95aec1928de4470317de897082786cc7339bf766235b418108070db7c5dc0e8ae02b3b4e82713aeb9406337b5694bc7e58cb9b6ececd2f57fa28

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5687bd4c7e4beb4c7d173a80987a5e06

    SHA1

    14c669ee518630e1483b816518db66baec948df1

    SHA256

    c51cf36d4b437171c36c0d84fd377bb929fa9f1ad467f98fc7eba3974f200455

    SHA512

    a952d470d36b6f1f49475cc7dab9110db204848f547656c14d30384e51f08d8e0bc3b17975968e1205b79018c5c585cec424cee0ea950264a6f1fa2353ed681e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8fab2a41d2d1b4184e2cd9e7c11c5a00

    SHA1

    d97a44a33f6a16624caf1981fb2ec933577a4ef6

    SHA256

    f6d42e1a55ea67517c8f6e41ab918caea61e8cd036efbace15814bcc0562aea0

    SHA512

    9b92810ff662afb5eef7164d8b58af8d2fe3f105ba270f8383affcf912c71aa4ac45a71146e61ef6b9bd980fdf08e8379754010154cb5a40f89c28f4805352ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6fbf84e154a9a6cc15a8376207fa9d62

    SHA1

    13a251e5e71b23466378832a65be7015a3156ddb

    SHA256

    302c23deef1767bba6fa027523e3876fca0ec1c36eb8bb13573863ecd18e7530

    SHA512

    095d946f68db7d4ea5118c4c16f954d07bfc7edd8c13eec7d69dd330e129cb02a39b9e44e190bd64389139546a7c9fd979655ffef6dfff16069d40ea029e7bbd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b404581694ba70f9ad5c4f49aa2ebcc8

    SHA1

    73c8a304d4e0d50b53b9ac204d54727c60ac0556

    SHA256

    e22ccf9300180487ade0bcd20186ea6b809bdb0694d4a3fc13246a0819d0fe5c

    SHA512

    42d01d8d31475e1a07fe48ae3e901d40e6c94a28d7f8eb71efad6348cb6540b4d681983689752269eac748342e649425c5998aad6636c978c549060f63029f73

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e20599c41d8327077bc35ee070bf7343

    SHA1

    2e4a6bd1e450af8b79e201aeccd229deffc9ede1

    SHA256

    79d83c86d71c02b5430c0b66223520780416846513eb36d2fa3b52ac747659f4

    SHA512

    7be735f927133aa0321b65b431527124f9d530502c3d5cf23265d4e50c775f7fc635cc525bfd2bcb6e045cf496dce89a73d016212b3c39edb69a12d0514ad1a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    156f44b2ae282fc09fca3a1691f79fc8

    SHA1

    b33c9abec363ede12b643ce91490778a96be0f64

    SHA256

    da3efc4b472e7316bd2e5345786639b6434fbe10a5bb98fc50b5f2e1e1b1a0c8

    SHA512

    731b6c1feb902d1e0edb703835b4896c9f21ae3ca0c440884300a3e1b4ee3de6a9e0b93e96f5d6f73b0526226092e8375ecefd78db584bd26c52708ccefb9adc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    204795df4012af044f2d206f68cd08e7

    SHA1

    5df44cb4e45a1912bee106d841328a6eae825099

    SHA256

    9663a1d82510604c9ce598ae6c85e583b515d6b2d18c9c208cff6d4ae06fe6b9

    SHA512

    9bb122227c8ab5108934d9accc1d2ee6c90a9ac92172162484dbbf0787e0f79feb18da6f201faa9ded7af2441c5d78dcdcdec63680f402a84a2c7dc289a9083c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc393509e38cb771e81b3d7f41f89d71

    SHA1

    5e53c2eed2a744f3b7aa8ddbdcdd2cca50f678d0

    SHA256

    0fbb48587533b8c8b0f9bec41be176012b6a77f7cddce7117b8d320aa59d1db2

    SHA512

    756bccdee88f308b56356c4e261c863691a8d3ce5d60fcb820cc1e3f919bcbec342029d34051d888c6b306bbb71d7cfcdbb89e07737a5e8668f70dad47ac88be

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA112.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA1B2.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit