Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

1a38bb88e1...2.html

windows7-x64

1

1a38bb88e1...2.html

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24/12/2023, 23:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1a38bb88e1347d5149b23008d3dc1342.html

  • Size

    141KB

  • MD5

    1a38bb88e1347d5149b23008d3dc1342

  • SHA1

    ffac3deff4cccf3e6a9e20ead39d6a70c810156a

  • SHA256

    b870b3d93f57d08d9eeb16b52cfc7f23c70676deeec39e054d2efdab54fc7230

  • SHA512

    418897ca231d874ee5ece6ec012c27cd57e0b0861c86261a880abb7572f5165860d5f146c70795555dbe4c92bbdf2416ca56d8a18dae6cb179c14a7bbdf128e5

  • SSDEEP

    3072:1BHsFiu7pcO8A2jvYikZI/nyGFdgBI9qeY+tq:1BHsFiu7mLEEFWSqp

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 42 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1a38bb88e1347d5149b23008d3dc1342.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2084
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2084 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2316

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d5b28f6603304e2dbfa6a556e504fe5d

    SHA1

    70255a5fd2ca3b9ffce14de3309ec607e55280cb

    SHA256

    acfdd4f9feb1d25cdf6cab21c57c9412f1a06a280215f64d38b5d5186fff9186

    SHA512

    49f3157020234c7bd1ae2993d8aa88c54c1c684391233d6070632bc8d9f1f5dc400f35a97058bbfc5cfea944645d13e24f4f532d9d38bdf22062ccf4d8319ee3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8122aeb0718f187722e5eedb781289c0

    SHA1

    0112364ee7865ebd56711f6122a422c7fe7e130a

    SHA256

    6cf6b8c121e712361bf815a58ec57bfa79a82b7ced0c3642d5294738d220691f

    SHA512

    b36321f1aafcb8246092e97705223b05e58f0648c6623925554f40a49f6d32cb0d5f507f3b766515985eda832c5fc53ef9b4338ed3c9a8f591ac03f38530ea34

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e46b741c3c267a8ca44e234ee2ccb279

    SHA1

    09c18177b5e820ac1c567dcbd7549d9b758ad4bb

    SHA256

    bc2fd78538a0db47a280a4fb22bf25c1fdd6615993bec85a87e84a62dfced1cc

    SHA512

    8c9211cb35b5f26a2afb508011935a6951541c62cffc78380c5d59cd2d40bcb50703fa528ac3f05c1b3c0fa133e04c117defa430d98bd5a1d9d96f3d1d76c201

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    423825f2e2c086631f7c4ec563f8895f

    SHA1

    d42c8c6b923d1388c73f273c114d2fa73caccfa9

    SHA256

    143126f25b4fbea38d6fba62120619544d54a0937ef43fdb9b345458ac071758

    SHA512

    09adf94a524135e45abc7c275d172b8832640e2279103987d8785729258122cae2a74f4ace97ed55a6476ab4f16aa329ffce802a32c42b1d7263e01558eef021

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d09ec21349f09bd3bd26567a97247ed7

    SHA1

    2d3888681ac0d8c21b979ffb63af14561b305714

    SHA256

    2f0dcebdb7b8aa4338161a6c71b03796d9a130ffedee82c556fa34e3ef2be515

    SHA512

    0d958b8269baf178b6a83ba4a232b2fff2ddce6403e91f67fc21349218f47b34ae2b6b707c16a667b87fed32a3b9a2ef7a8cea2b195c2596620d183faf9534cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1715d0f083f943e27bc5b682a7c1d6b9

    SHA1

    cecea346409821a13bc3f1465477a998f576affc

    SHA256

    d762d8a93be174b34109e847ec4c8375108940643a02cf851524d41b8443e893

    SHA512

    34a3525ae64f6948be35aa7c4de0eaf2055806af50da77b02929cd4f8a4554e1cc06c80ac8db6dc791acafe55959a687f082ea6930149ed013f992e57e28050f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2ec83acb569fc80b3871ecc6e981660c

    SHA1

    174cb3ba8eaa6d7a2d5c96de1062acb80a76905c

    SHA256

    f5b428943836157faf048c0b9270bcf83b7cdc893bd3f7a213b8b872f2b053d5

    SHA512

    41ad01e158d85c0202d221063d9788e77abce993fb9edcba25a3a6930e36e2e7647bc78e777ad65c1aa66702b0288304ee0a36265549c3cfba7cb7958b0db9ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0e87046afc9ed23d571d89612904732c

    SHA1

    df7631905703fff1fa22f278370508e09938ef7e

    SHA256

    3c42f4d6249206adbd24fa54517209555883cae8bbfb79d52f4a3edd9cadb991

    SHA512

    6b188df2b40f94c74ceb12b67c64b5c0b437dc8cb5794d54a75a9bf40e43e2b3786df8a4f7324c15739145cee1ec50511bae17bdbd038c8572439da3e7e6e995

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    459da7749131a583bfa1bc8176e22d49

    SHA1

    6b8fa0af1132e58cc81f14f93eb8fc88a35f2a5b

    SHA256

    1e45c0538b87bf26d5e36ba1a01b017fcd2948855ffcfdaf3b0f13d37f5c9e74

    SHA512

    18e6c46d1dece7784699344f168c9bca954fd947763e29e674203c8ee936fd9f21ef4b1e282c9d45412c18c8be198eb971d470b5062d9e1eeef2eefc629eecf8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3eb065246dd9198b885d48316a521760

    SHA1

    7b82f0411cac69b5eeab338e0eba4973db9551db

    SHA256

    3e7bb6e7ab612e3547f4aca1275439038d15576078e5c9d6e9942d24a416d626

    SHA512

    1b80b4a7622bca85f7577fec0cdb88ab2598dfd55a2aafd13eb27757a21b866fa5432370919b2ddab214d262aa940a29e5fe5d3f059c8e9026766ef828044a48

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HJ0GGVIM\platform_gapi.iframes.style.common[1].js
    Filesize

    56KB

    MD5

    f6140cf2e81a9d5b9bc96970fe1946f6

    SHA1

    e18cb20a08d0c13d44b72e36e9560aec2187abce

    SHA256

    68cc8a99c8ed5cc0eb3aa2146fd34bee0051bfd98faa3c03b83c78b4a12a8bd5

    SHA512

    1f61bf7228ae9fc1b36249223f4ca0675da05beaa6c00b28b7fff500e0527ee237d139eaf6793ece67f8730dfff0207bf945a848795aab7c57301433449a8acb

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M2VO416U\cb=gapi[2].js
    Filesize

    133KB

    MD5

    288c5ba5b7001fe841c32f690f62cc93

    SHA1

    29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

    SHA256

    c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

    SHA512

    e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M2VO416U\f[1].txt
    Filesize

    34KB

    MD5

    94baeae5a431d3f4b6a82c4a91f59511

    SHA1

    42afc199c30c4adf7d69bb10cc1b7674102cad6e

    SHA256

    df5d165b5af8ba63c3b606253a8c73dbdc132bc66153c867b4acbe47efa55f0b

    SHA512

    866c5064e7a88ff99696a64ef6cb3a770db74ae99d773754613422f6fc4d850eb32945d57aabcd0cbdbb9bec74ab2627a7d7a0cd14bd465086db0083756f0017

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab85A6.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8693.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit