Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

149c7fe64e...a.html

windows7-x64

1

149c7fe64e...a.html

windows10-2004-x64

1

Analysis

  • max time kernel
    142s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24/12/2023, 22:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    149c7fe64ee75b6a6e91aa6cb91cf8ea.html

  • Size

    6KB

  • MD5

    149c7fe64ee75b6a6e91aa6cb91cf8ea

  • SHA1

    42eaddfdd1d6b20b6b6e203d72838699bed3c581

  • SHA256

    e0f5485eab0b7cee5396b98cd85e7b25b474e6f7f9397e9b15025592199bc6a5

  • SHA512

    825f99c66e2e8b126a0f43db76ca7197bda519c6b9abe7037476a4595642981316f15fb4ceaecded5b2d6c008caa3d2436667cc43fe8cb548b8be252f9dff56a

  • SSDEEP

    96:uzVs+ux7g6LLY1k9o84d12ef7CSTUrZcEZ7ru7f:csz7g6AYS/+b76f

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\149c7fe64ee75b6a6e91aa6cb91cf8ea.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2024
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2024 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2132

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c9adacf7ce0c9ed3be1b7026709fc738

    SHA1

    3cdc265567611ab80b6a40865794a35f9fcbd971

    SHA256

    5c4d2c86fdf2409b4b6451eaecca36577d7f7d0a00a75966a3491161fc4ad471

    SHA512

    d139ff5bf998b04559f9cf4c7167c1f805abe616c6d9600fbb834e1f13078d5f589bcd9b14da18875fe5e58577740f231a8f64356e1a77d033bc6af32e3c5c74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ad343a7e972104a27ec3b3e4ffb567d9

    SHA1

    a9ee4240b992e6091e5fb778374dd73be1a6202e

    SHA256

    83a61b56e419dff54f931f5c7e6b8172f9b5c047e0d5468fe63dc2fea0934b64

    SHA512

    83705eb310bc9ce1362bd563468a881af891414bf70caef2e4a850ee8c749a4d63e1d9e684673fea8d6992c68169b9f2eb280b990b0f3591749835761e684547

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    665e50540408e48fd0b567a6a58f4be9

    SHA1

    e0278de928f8b103ac4f0d1f12f6b869f3517bfc

    SHA256

    c1bdcfaeef77e01a64807d2598bf01cade155f1c51b1a2072e76ae42d4124c16

    SHA512

    e4ccb9886d15e933eb37735e54de9495f02600e749ddb73f18363c0168fab79e3c69b0ebd54f386a636d0d125d3b53dac0b36358c4dd121d938a7e7b9c9ad6fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5c6fd754785d83f55e8dd288bb27a257

    SHA1

    ff7d111c3c3ac3162a74b5e123f3073b89f09c59

    SHA256

    faeae0e2e02270bafbee25e7cded205086a0ce0496ea9c386fe7af001f15cf7b

    SHA512

    ffe29af6097ec681c59df3f6af97c9d1e4453ac5ecf78c5757667f25be1560c5edc41838dba55dbd009a845f42748a4d200548313b912a5e43aa57f1b8bb5e17

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab65F5.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6696.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit