Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

CHANGES.ps1

windows7-x64

1

CHANGES.ps1

windows10-2004-x64

1

bindevt.dll

windows7-x64

1

bindevt.dll

windows10-2004-x64

1

dig.exe

windows7-x64

1

dig.exe

windows10-2004-x64

1

dig.html

windows7-x64

1

dig.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 14:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.html

  • Size

    15KB

  • MD5

    460b7a60173f12ddd218d9e0d2fc593b

  • SHA1

    8b05a676cd7360371213c00e2facc45b6146e65a

  • SHA256

    d3eaba38e5de82e35a29724920f0f92b2c8891fa56fe001ebbbcda7d0a99129a

  • SHA512

    4ec6e47f3c816a30027435018b3c972042b3e60241ccadd3f6639861032679ee5f300f907c1291ad36e04f9393a8cab3e9d4093e37c21357642a9c7cd012feac

  • SSDEEP

    192:WvOHDepNSpKHksTMISDGjgKrKeY8qQkeqSW5VdTl2SBi0v0:WvOj0YwHkoMISD6OerWpk

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2296
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2296 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2980

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    abd028654be5d138fdfc9c37b462200d

    SHA1

    3401fac75920414fc1eb0a2e0f121331a945d5c4

    SHA256

    b07cf154b5a71ec990a97cba5a55c596277c9129f1864695c61d7baadd80a8e0

    SHA512

    151e2c45bd87346a66801b4f9dfea163093bdb650820ce9ffd22aa47fadb37b468f054f9f774f11509a697a3ecf858120ae193ae9ef8b15e847d2981d212cd61

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1225e204d5a871d01e04f12dcddbd28d

    SHA1

    759c56b62c68da0e382a5790d5b8720e511cf925

    SHA256

    bdfe1bb41c35cac4f3859326e4fcd2e84bbf6e3c3b9db7481968dac8c33429e8

    SHA512

    f9901085e9e69ee422190415ef4927de59d99e2e37c204b46f0a4a689a43f00792656f6ea57fb4a54ed3f2c1ec78dfcf9c03bca10c89b34f5397c7b7937467fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    693339dff9cdbde65caffffcbfeffbb5

    SHA1

    1cb61c1da8c3cf6ccbdcf95a8aca91a0cf8a0e09

    SHA256

    de88895cdf75dec768b0ffe1476c4206dee100f58f630ffee065fce0bdcb4a43

    SHA512

    0b935a5b131b4ade24fb967d59773671e03d96699e707feb64fe1a0538b76a9af08cad5164088f30ba6e741cf9f43b98186f147425663ec758de39601b4c0c31

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    45dcb541788da545f22d956d4751381f

    SHA1

    efa29fa0ea2044cd285cb9b210306a5642671aa4

    SHA256

    fbd4abb2ad0dd06e41e08f196a60d0669f5bb869b0fb38354cd31d84f1366e78

    SHA512

    68f495daf1339f531911cf70034cf7432d7a25c612d92348b857cbe77397455e0cbfac0e02979a7fc00a142c3bb5c682af2d5d846e171efdef685d4bd816ad10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    48150d46870dc3f5bd2327fd4a6b2e0f

    SHA1

    e33caa79222c70b7e247e2a512b44a5336a5502f

    SHA256

    db44a6a3f3dae08d06a7f0efaf306a75e39c918b5e2220c03df28b6945821984

    SHA512

    0cb5420839f98050c711bfe3927e6987b50f1fd2eed4b4694c485dd2cce82bbc6771c8dbea75145222b31beeb10905f174baa597770f2be0bdbf6ac3d083ec0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4633398ecd7d5a82d9000f76364af3d5

    SHA1

    b02e8c6c7d8b95f8daedeeffc4d58b03944eb47c

    SHA256

    562b03784b16fb1df23dff3c60cd300fd08eac5c6fba0144633a18fbde5c34f2

    SHA512

    04291b8df7c8825a992cb1853fb1c3a486f3cd96ec3fc9b241b61087d80a7a67c8b2d60505992540a0759e5e72f4440d1751e3b9cc7712ae721acddf639b99fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    20632e824ab0cfa2e979cad604ba8fd1

    SHA1

    907cc37fca37bc3e3054acbc9a4cdf0931810e04

    SHA256

    6f55f0ee7547762e4064dec5a7ef2d8e3821e3eb4695832ea9e581c73f8c3311

    SHA512

    ef6a2996030c1d93ebb9c890690a096a0676136a1e74d35dc3ec3fa6e1bd9c85577b04bc14108994b5d154271b3dd1d96bf144be4c5dbc37d9ee19c9b3d5bfd7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8f4a5633f74fa196ccc683ebf203bd5c

    SHA1

    cb69dfea3fdfcc81093baf04e652ef869f6d6078

    SHA256

    22614ea6aae7637b579b74cb54080c8782033ae8bee4f72be54b2a9bb73c9035

    SHA512

    ea7e3a8cafd33c3c22f691c4c32f65bebadb9ead276dc9dfb6c1170a3de0d5a2773af22c555ab4388544003c1457b558c667cbbb5bf7718b73f1504f2298d91d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b5b4ec1cf0efa09950328453134fca07

    SHA1

    7e387cd9ef20bb252f512a9db64edc6fe095fa27

    SHA256

    8c1b2bc96e92c4fe31310e84169e88a19d239dcf46dd3953463a5229579c8b2c

    SHA512

    21218fb80d7bf1ed9633145812b3f4424c5f5c14e5b09afaa232dc1a53f9571b87f1db0ec3f9998fd060afb5dc0a8e0cfa8e4b5a8b93b0132ef4130aa3ecce06

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7ca4fdc388b7b1352814ad1905c062fb

    SHA1

    98d4087d91b98f86b5e59eb98504a07c15740f4f

    SHA256

    57b35d0995459ed53406b82a19bc346341136df380c664211939492e4b8c7e36

    SHA512

    59ea96cd9d9b8388059b45080641eb206f2f7dca86d34fc2dbf67e0ba95009b5a1554192fa448be03f70e02d08897300d08bda0e06a9225ab80e60db3fd8a986

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fb58fc02b76b101a3714b4b9512caaf2

    SHA1

    b506f4164df49bd03f4d8e39139b813f5f20911b

    SHA256

    657c5b195f4417c97ea3778060eb113c604f8a338e1e48c54c64c2009afcb475

    SHA512

    5e37fec8c15159583a346265bd1b4525fc031f9e7381ac76d62050f2a42104b46657eaa1945673bababd70cd2bc42e8c75515a31c7d237994c72dac91fc7fea0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ca61a31a1dadea350263cba08ca7f003

    SHA1

    6db9cec7b2016ffde48c7c332b911da97d310aae

    SHA256

    a1b58ea5224b45cfc8adcf9e70358b32162c6e822d6dc84c6a2e2eca266f33cd

    SHA512

    f30e5a0c2af01fe8b4777f0a68e3b550b1dddfd824e0f5e29dc4ba2abdff185d3c8077d07a34aceb32df33ae6b44e9f3c467c2ec15a1da7d348abce8f4f73307

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    44ebc1696b9ae0fed6cdcb8a5fbcd0d4

    SHA1

    065a06610d14b79ca2bb1026612870a68dfd0170

    SHA256

    7700c3f8f2cbab55391b75d1596894a629e242cc21ff34ab990dd8bb07faa471

    SHA512

    3de5020212f5b1ffbd819f1662c34930eafbe9b506c07f40078618fb0d32bf487c7de0ab4e7673054b487de8a4a3551c50ac3d6b040c3673cdab9aae8e3efaae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cf7fdabc59526f6e33449b64b2448186

    SHA1

    60cbe15ba817033b67762a812c6670185d4e1bad

    SHA256

    289b1afee41ac531c5700320294aa4005b20881594028758e7fdc395204cf41a

    SHA512

    8037e76a8084af8d9a3a478b6de56c066a7824099ddd505df4b7a841fe168b4e38ed50026ffeabe5cfb028d8e819ccec91b91e2c2d5232bc5102b5f20aa9219d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea3ce5ee726ce22a4a60fc3fe7b354f1

    SHA1

    99496d4ccae3692400c7624409e3e35dd15cf93a

    SHA256

    0790ca78aff0dc1f4a057bf8b84d5d0de4abeb2adaa9902d41f477baf123dbd9

    SHA512

    b52971aceeaade15c1cdde390ae4d70a0521499e238602f0d6c989df467d151d5c72f4a9a933c295e0b3ac76a2448da18ae19e664f43b021afae0c22231fd904

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ce5e70ed2a56b79d112b19a18afb0be9

    SHA1

    9c09848f4946779ae0907082077bc04b421b6e0d

    SHA256

    307470d14c93d4efda9c0a015e14727a6835519341fde897f49cb7f80ff6f1be

    SHA512

    b0713a5f36f5bd202c83571ae97929ac217e920a14ded888b8418a5ee58344d9058f88ed24f70ba6fb68509ab0d89a9c90fb4b7c5d95d00ee4e1ef3676421892

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7fc70d76c80df584bc83312c342d7d8c

    SHA1

    b15c1ab23973b22812969905abac227643883a06

    SHA256

    d7e636c30cade9ca1aed4e171609dffc3fd3b20487fb59d5ee107ea1de17c66b

    SHA512

    1618fb5869bcc6c14143ca8c9f1beea1211453a838c7f3472318e858ac96de75fd735044aaf3dd470a8ba70c7655c414252caea166de704442ccb7ce7e7d0f6c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2abc9945f51c6fc7320fe16db8e349a5

    SHA1

    9e2c964141357608cf6022a51f2f05578f5ca8c0

    SHA256

    7cc5c1783e83be6d0f93451d615e4fb649b4a01a9626a05f33d25ec63267b3e1

    SHA512

    634c23e7df154e109eb0aaa26adf01051222a8ad059cb30f8f655145fefecfd6b33502e4b191c0af37dc3bb5e8f65ea5ded1c53a48af3c64c384d5700a9b802b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a895e5dcd4b752d2a8ebbdd624b4ad16

    SHA1

    ed75e27f601b4fb3e84c0c79d18cb21dd49f0cbb

    SHA256

    32a89e07b73f6a6ef7818b8e4b8efb1182dea62edf3c424ab2e28c8e7fe19918

    SHA512

    aa9b8282bd51c5fbd2d29c837060e1cc7d3bfbf86393b50ede238af0a113718ea7cbfdada326ca24de52a68db96585ee167ec7a1e60ec5b1296efb60b549c7d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fb4d5db74220db00a742752f8173005e

    SHA1

    755a3b1675dc8c62ca1924520f3b5997f344900a

    SHA256

    4b9512c9c0f0a6d904e184e584514bffda01394d0fd239283c6f66655fb3e404

    SHA512

    a07b55ca02fafa0dd86de27445375bb61187155559faefd222f52bf24033c8f148e64c31c578e28bda776d4a7da893815f819f1f05e74f5a8157e3a3d4a0cf24

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC758.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC883.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit