Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

winprofile

windows7-x64

1

winprofile

windows10-1703-x64

1

Analysis

  • max time kernel
    186s
  • max time network
    259s
  • platform
    windows10-1703_x64
  • resource
    win10-20231020-en
  • resource tags

    arch:x64arch:x86image:win10-20231020-enlocale:en-usos:windows10-1703-x64system
  • submitted
    27/11/2023, 04:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6100db7eb6149eb1c238475ffcef92dce19ed5ab602a9e1818745130abd07eee.html

  • Size

    542KB

  • MD5

    44bfa56cbc3568d872452c6ff4fdbf45

  • SHA1

    41d5e37ccaa42e216f328bc8661cc254c624c3c0

  • SHA256

    6100db7eb6149eb1c238475ffcef92dce19ed5ab602a9e1818745130abd07eee

  • SHA512

    3058396d00bfe7351889acf80035d4a2a88535cecbcfe8196cfa15c781ed686a4b35253dfb8bb1d6bd83f462089e4954d12f50dd4248fb9e13daf2044c9467e6

  • SSDEEP

    12288:vK91TgcXpwXnkZi7Gyhkyr5hWxIOOQ82gr:vK91I2I

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 59 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\6100db7eb6149eb1c238475ffcef92dce19ed5ab602a9e1818745130abd07eee.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3852
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3852 CREDAT:82945 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1596

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
    Filesize

    4KB

    MD5

    1bfe591a4fe3d91b03cdf26eaacd8f89

    SHA1

    719c37c320f518ac168c86723724891950911cea

    SHA256

    9cf94355051bf0f4a45724ca20d1cc02f76371b963ab7d1e38bd8997737b13d8

    SHA512

    02f88da4b610678c31664609bcfa9d61db8d0b0617649981af948f670f41a6207b4ec19fecce7385a24e0c609cbbf3f2b79a8acaf09a03c2c432cc4dce75e9db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    3b86c59d9847d0d93969952a54a4e542

    SHA1

    79f35a9bb571190a19c9e049472863a464e70736

    SHA256

    ab487200e126ebf2636aeb4f2d684c93c5b6b06ae9a74d0eb60bd7dfbb34aaa7

    SHA512

    6a70051ac0614743d04a8ee9468e56f2494ff2ef54983844241c75ff697eafe445b39dcecfc679d54f9ef64781b76daa796f655df47a2b9ba80136246499dee7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    404B

    MD5

    b511d8b4c554e6becc7a6e314b32f99e

    SHA1

    bb63856bb09d4c4151b16fc40dd771a9895f8088

    SHA256

    b695cc7e4f55ccd429be15a544e0d035a186efb780230fb156d220d0c4923bd6

    SHA512

    8ef1c3ae7d244287fbfd832eb9ca897d67ffbe8ed9efd27970dc5b62023b421ce9dd2a14161d75fceb9c47afeee989bf51d9ac2c091b798261629c07df4690cb

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\VersionManager\ver15F4.tmp
    Filesize

    15KB

    MD5

    1a545d0052b581fbb2ab4c52133846bc

    SHA1

    62f3266a9b9925cd6d98658b92adec673cbe3dd3

    SHA256

    557472aeaebf4c1c800b9df14c190f66d62cbabb011300dbedde2dcddd27a6c1

    SHA512

    bd326d111589d87cd6d019378ec725ac9ac7ad4c36f22453941f7d52f90b747ede4783a83dfff6cae1b3bb46690ad49cffa77f2afda019b22863ac485b406e8d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\JT7361OD\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\TCMH1DO0\likes.7965f6735e8e39fbbe73[1].css
    Filesize

    554B

    MD5

    d11928ebd8a1101a2d6b4476ad292606

    SHA1

    e369a7d65299feb97d8c11525d8c831cc463c63f

    SHA256

    7bab9c45d7c84255c431ca155530532d5ea19f30bcb389db20f7edf26a5cd43b

    SHA512

    f3999089fdd2719f70bc2999b1b282452add77eae62c4c55777ccb376bd0d0a3a738e2492301a9816df4885f2693fe47a9539a31ff47a445b2c86a1b8a6cafa1

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCookies\6BX1RJI4.cookie
    Filesize

    541B

    MD5

    fed839037d4898bbf13cf0ef4613c60a

    SHA1

    49f43be1626fb9c60141411fcba8807699b74a7d

    SHA256

    d371f8613ea93f612068788e9a06e86e4b7858b1209e9c2cfe283fbff3c16e7f

    SHA512

    33ee805437e1340a9f4fc93ec216334dfdb5fe3ff78380702a93c640ee51dcd93cc499d17b11fdfdbafb6a4c7caf3c1ef74f8200f004e5905fab093f946ef4ef

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCookies\XU11H6SC.cookie
    Filesize

    540B

    MD5

    a87a54e6e59455a5fb3e50bb1db445b4

    SHA1

    4adb521b3585acbe9575ad55d6e73668511074e9

    SHA256

    c3fe5a062459d795edc52131b4326f1a965e22bae5224b6e9932ab982a77fc18

    SHA512

    a1398e4b9f3c7db6759a36fcc69ec2ee307b9ba1051a61e31a0fdded4ddc65c37f2db2cf1109624144539a8a171d9e1393668302a245a7246be4e8a6700a79e6

    Download Submit