Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

CHANGES.vbs

windows7-x64

1

CHANGES.vbs

windows10-2004-x64

1

HISTORY.vbs

windows7-x64

1

HISTORY.vbs

windows10-2004-x64

1

arpaname.exe

windows7-x64

arpaname.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 14:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch02.html

  • Size

    7KB

  • MD5

    7f5de7c2ba662dc44ead50e5dc837db1

  • SHA1

    ad984ec69e43a2f225b9422899dc6c2bdd439936

  • SHA256

    679ca5a9d1335c25c545a0bef68ef1a534e856e80d6564317c63bebe0e1e4f14

  • SHA512

    2237279c66289de445a08d9ac335d29431e7990857d67bfac4ea914b117164f36f44c6087ef8a2c8bbeca8e2b952e566976417c74be72af371f091ab27f55239

  • SSDEEP

    192:wyvOHJQlNSgqkDqjvJPmmGDdrvvI16qU2UOl/E5zTROnV3IuFm0:wyvOpAYjWL4His5J

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch02.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1948
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1948 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2100

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    51bd281c85e88e1d73e7c1358bf3b61f

    SHA1

    8591bef9ba4f490448f31ddf255652c459ad5d70

    SHA256

    80dc8067f82fcd9808af8a6929a509784bc3b56aedc475f5551a212ecba77756

    SHA512

    40a1361ec061e241a3d03140fb6bacde1c25b02da1a37ed9ac162796920d6dafcea2a87741452422c67f152ed07af79d908077f23e039269b831f4b911103722

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    51bd281c85e88e1d73e7c1358bf3b61f

    SHA1

    8591bef9ba4f490448f31ddf255652c459ad5d70

    SHA256

    80dc8067f82fcd9808af8a6929a509784bc3b56aedc475f5551a212ecba77756

    SHA512

    40a1361ec061e241a3d03140fb6bacde1c25b02da1a37ed9ac162796920d6dafcea2a87741452422c67f152ed07af79d908077f23e039269b831f4b911103722

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e20dbd2e80090962347728f57efdfd67

    SHA1

    e2e84e487543b8c4e9579ec28eeab42d97df81b3

    SHA256

    13bfab559c9bc59945429a89b687ca9a574a034a093a7bfd22ca9dde96369ba7

    SHA512

    55b7565f162f5a6d9d0c69d13cf2ad1d96fe57dc8901e2affec964ae0304fb040dcdad249e87ca1681cbc24cf599b35c83146bdc7020e087eaaf63814c91d206

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5c847891533a77aa8e88cdfee80254b2

    SHA1

    4c71c96b3ba0b058fdbdf22fd8c77fb91c5f96a6

    SHA256

    8991bf900f1fbd8010d01966dbf61989a55be300dff0d1ee0bb5fb3606dea7f3

    SHA512

    d4ec7d0e7e3f91c60279f2051ef9d307c5343cabd1de006c5de28aac2f6282d03c3796e82bf84fbdc971bb825bb8d19c530435be1eee0ad5de29dfae1518086e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ffd9d05727f34ebab4d7316dff8d2d02

    SHA1

    43194cc679e735c2bb1eb31f955d6f43b90ebee7

    SHA256

    f7519d74dba5c9404b73ae2c60b7a0a7e22cd717b1454f8b25dfb8ab952047c7

    SHA512

    254b7d56d475969737a9fc90d81a8ffc39b469f2b0a8c5277e8fd2ff15a9856524f354978f10cbaf0681af98b10fd8005333cd6c5926ed4d20a2d62b94715843

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    baba8a5051a47fccf5fb350f8c9de198

    SHA1

    71d433bd4a7f9160101e253e46296b17819157e2

    SHA256

    2c0ba5ca1b3b5721c37fb0c54bb53001c42a1504fa745a0484afcabca3b13797

    SHA512

    06b14221d4d9791ab3d357631af3e5109340bb70a44fb9e47a7100a3956917baae21eaf69a28230ec1b9b63280188adbed0768e05b83989de5b5074b487dca15

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a29545175f9dbc7b6aebde3511ef4bd0

    SHA1

    9b6ce34b969c71e3cc733a5df51387805e999dc1

    SHA256

    a71d54e516a525828bb55c16b0a1139bc8bff4e5237d47f1c6597ecb23a1bc4c

    SHA512

    d221d7d0e60850411719a33922cf9e7d7f3dbce7e84a1c04721c532de9c65e46a41209cf4ee80529c5846cd1efa037462388a4c170f4ba2e239fdf5a41c8b6bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bf1f8ed7bb34cb4f31db00d3b81c7885

    SHA1

    3f7a913921d02159a1ea35c10fa29ae856fa540d

    SHA256

    9f5bf42cd37bf05aabdd5d46111cbf7435e1c404076acf13fbc464a78dd24e22

    SHA512

    98ca8e0d1ae3f2f2332002f06edcac4efea25c4f8a1ef519756b7acdd928852916434c2fe1e001ffda3968047a8156c41b3612170f4788a84defa2a183356afb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aef0d66fde3e714ddbc2349e6b500439

    SHA1

    135f306e41641a451840623fd52a83b3f766401f

    SHA256

    d2385145ddf025cdc6656651341d71f88984c2ade8eddfa96fac319a5734aa16

    SHA512

    230dc83e573154e3a715cfb03d097fdc9aae615fcd0a7a10f7d640163e6cda5bf2912de7e7182b3d2316e0e774d76217446b6c677d01f300717ae3b6552bb8c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    090cb6e670898857b9627e388abee180

    SHA1

    3f537a39c6d4b5fcab4291e19177620294efa893

    SHA256

    e4fcc6c8ebe5ef376f961e42ff4f6320d9ee51db60c6ebf93d8ed48ce1885f12

    SHA512

    d33870f3c5df31868ecd85206ba43b110301b3412d2e197b8fefe5b38bd870b6ffbea8f1125301519dae41d0b1b7e0a7a99cd6d0f4d23cb499e436052d9ce2bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f7fbdf0974377b37683898ed056b416d

    SHA1

    efa3162b89f0bbcb347992142617dfa27d20622c

    SHA256

    d3431cc373c448d0581a9f7e1523d7537597fc9b630cbe7c8b0fdb19048721bd

    SHA512

    930bd66e3401346c3606753f54a8a9f7715856bfe2f9133d117343b92ce78359f2a6a725b77bcab8508bdf9437499b8a49d4020b7102dedd42a97a699c1ccdd6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a0d40ff99dfe4f965ba4f0ed5275590c

    SHA1

    971b5da6c0e6aa523faa628694bc7e8cdd5018ee

    SHA256

    6a1c5e9df14c9d2193857f7999ddcc8d6d7b26f8c2ce7019613d4d969250fef6

    SHA512

    dcfc71aee0d0deb75f8861309f0a5182adc5b32f1ac1041c69e776aff0c16c1be9924c1eb5d257a312979364560bda5ecccaff4449024a53e2cfd6f726374235

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1e973bb9fceb1bd862c1aede109e97c6

    SHA1

    12e1eaaa818e46b81f5aca0b757d28f367b4bcdd

    SHA256

    b01f9848d23479e00b5c952ff8e3943cc1fde003fdee3eb7a6f217cad7cb0fd3

    SHA512

    deea0b1f38817fc5051568a55f96008197c828dabb12c956ca56afc40b0d32507e6b1024edbd474eb1eada90eb7baeec0d8abe5eed2b89ae00225815f11cc92f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cd14ccec56e27ee1326701be8679fbe1

    SHA1

    c216066cb075a855c1ef3362bf9290cd8416807e

    SHA256

    842b1216e59aadf0cca7aa425d75904d17b1c273b0bc7b8c1e6e3b3826b20c24

    SHA512

    4a55d3c12f8928505cdc511a014fe7a531d29e3ec4db758a70ea96e47f9e5824bec67c8e4b6de95d71e8bcfc7878c5d2748e1354e259e40c4b8cf3cd540748f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    994ba0ebec95a26a59dc8bd0a6d19c74

    SHA1

    73b7601ac144dff2239d76c9309fdf3826e8b1f9

    SHA256

    b11d4b9c4b0ba02bf13d20260d1192aa58002ce22a703115eb2a01e9b2d21011

    SHA512

    aabc12cf1338231fc339af7f86086d82625ee08735b26a489c09581d8a7a8579fa11493e16a3b0c021f66ca5c1b08682851b6ab325fa1d4c1ba9d5d6496d59d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    19abe8694a624eb4115b1f99cffb81e1

    SHA1

    5111928b834de34dc3bf0c382138e67fd57d8a73

    SHA256

    907d51983283bb1fe450f5680fc11fe8312fc321e334bb29a461b62c4130b9e7

    SHA512

    35e9bb7ba9800ec2d16a3efbf8bdaee9c433f34826203ebaf351a24844cfaa7eef50a21ac0eee3d60a8b882764fa6ba07449870470b64de78ad19cacef173e32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    539e90852a730f464c6c0312c6f094b4

    SHA1

    9984e319e9c6875b049963a637b6d9de5da843c7

    SHA256

    00aa34554667c145e135ec5666fc4cccd1d801902b49dc7b0017284a93fa393a

    SHA512

    1d1a53200f3f04590d7379f40addbe4fedffaa6c77bdc9a9234603efc8096caf3af4aec3c45a7bd72199e2cf9be4f02e493a502d1ef7efe227428ab750ede87b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9c88ea1f92156def2c55d516b7b40398

    SHA1

    4c347861aa8942a6f58461fe5765ca26f79f1bc4

    SHA256

    80f5c65e1764313539862a3d3e5780887838a1a2144fc02efcfa6e4f05a466b6

    SHA512

    6b94b4aa0a9c1b131a015c7b17548abc79a752065fe899312312418c322056e43b95c88ec7baecf762b76423d5b9a8921a270cebe6ce5bb54e7cb4926652275a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f9651115848de1d4a599e68d343c2895

    SHA1

    db75b77473e2c8626ccc92e864f9fd2228f77596

    SHA256

    4e059cbc4682baa17747fa35f9d0b46fbcf69da63223330a3c6e237fdfb8c462

    SHA512

    48a968b47cfe63d8ce70682ee95787a3843067e138930b6de1a08d69d3de617b5437b2ae071551eed73f6fcfc3ede2534bed6b324ac3a66d107355e9a2223151

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9676.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA653.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit