Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

0074ccf51d...3.html

windows7-x64

1

0074ccf51d...3.html

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/12/2023, 02:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0074ccf51d51f6d063980b5a59ff8b23.html

  • Size

    30KB

  • MD5

    0074ccf51d51f6d063980b5a59ff8b23

  • SHA1

    bc58ed2cc66d84fc4c134f911ebc4f6202cbf21c

  • SHA256

    0e984a00a3d01fc92560725cf1cfaa5a372b0d4cea6d81eb685363076f37ee0c

  • SHA512

    d09357e2e6031b9e98d25f93f9ce8c4b8eb619b2ba005dbe31072e0f61e108d5f124ea8212611cef01e73077db58fe7639c415e2459f1b1ae2c71834fea0d661

  • SSDEEP

    384:Lc98o7+4HXZZkVgyqs5JVs0Xqs6ybEBUjeTmuwa/nt1JopOFOy9mriBmNd0mykv2:L08uxHJwPegOzLNSVZX1vu

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 35 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0074ccf51d51f6d063980b5a59ff8b23.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:4556
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4556 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:4476

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\SB302YPZ\suggestions[1].en-US
    Filesize

    6KB

    MD5

    7f40653d6b7f01fa9d6031548a57dce1

    SHA1

    2d004fb1dbea46e8528344f57135c9803e316dc7

    SHA256

    ee38719f0056a66baf189f10ce2284923bf1859f3d3301c6b02a74b480f59062

    SHA512

    03282912ea3c37178630215ec9dccfee05d3174af853ec1c1bb4f366063b7935fb6feba7ab2cbc230fe95d589dba02c95a7d0235e498e68cb027dda43acb73ad

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\UG0DPB4T\errorPageStrings[1]
    Filesize

    4KB

    MD5

    d65ec06f21c379c87040b83cc1abac6b

    SHA1

    208d0a0bb775661758394be7e4afb18357e46c8b

    SHA256

    a1270e90cea31b46432ec44731bf4400d22b38eb2855326bf934fe8f1b169a4f

    SHA512

    8a166d26b49a5d95aea49bc649e5ea58786a2191f4d2adac6f5fbb7523940ce4482d6a2502aa870a931224f215cb2010a8c9b99a2c1820150e4d365cab28299e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\UG0DPB4T\f[1].txt
    Filesize

    34KB

    MD5

    177f413f34f6226df1a1d91d2958ea4a

    SHA1

    0f70736bd5035ce5f3ac9d3cfd65299cd92d35f9

    SHA256

    71c78f0184044c0b81f320c30cbc41136049f84b951901edf9c36ac9949a3d5d

    SHA512

    a2348d8193fc1a5fc76322956d9ed7925fa7af7e0aeb5c43a7151fc9974b3b5af7d815486551864b9404db36611433b70d4e7f3f5876420ffa7254840b4f050f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\W8BIYKF7\httpErrorPagesScripts[1]
    Filesize

    11KB

    MD5

    9234071287e637f85d721463c488704c

    SHA1

    cca09b1e0fba38ba29d3972ed8dcecefdef8c152

    SHA256

    65cc039890c7ceb927ce40f6f199d74e49b8058c3f8a6e22e8f916ad90ea8649

    SHA512

    87d691987e7a2f69ad8605f35f94241ab7e68ad4f55ad384f1f0d40dc59ffd1432c758123661ee39443d624c881b01dcd228a67afb8700fe5e66fc794a6c0384

    Download Submit