Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

01420b4988...9.html

windows7-x64

1

01420b4988...9.html

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 02:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    01420b4988177212b7e7a57e6a570039.html

  • Size

    31KB

  • MD5

    01420b4988177212b7e7a57e6a570039

  • SHA1

    a5048a95372358570d54a4ca6782c6502cb143a3

  • SHA256

    e31df3e985ca1a9dff6a7ca4f3a5059a8754482869bc0eb75afa440b03fd1d33

  • SHA512

    aa76ccdd3ed545bbf77dc818e1ff1718a2ceccf6e55a311b0eba5112bc9021ffd087b0819e0d02ec80fbe8bfdfe9460195d682b101c3a278ae25e4b9f72b6a56

  • SSDEEP

    384:sMlIcktu4/JGTHIbuCiAt49MaTGLtdIa4t1udHkxiDt78r9O/gc8B4Yrnh8S520I:sDZpgxrbExLZ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\01420b4988177212b7e7a57e6a570039.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2932
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2932 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3064

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    788dcede8da8ec5b4f3a29a3321b1244

    SHA1

    b9577804826fccd0d86ae21715b00ac6d133b99f

    SHA256

    4c5640528f13256b433cccef7d4e8c24725377c0c1e4a33f8cb8ca31670d5cd4

    SHA512

    e1f8254bec1bf42e5fa0312e7b02c03f11a774461813b573251031bf35d25c859a633a4c37aa5a899924394f2b3ed17b9b8eeae66038e8064e86900d7cb420c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    50caf90812bd6898baec324a16177bcf

    SHA1

    48975979e2a948135706d00b4f21a34d32420739

    SHA256

    ca6a2128e1c676797394c62500cd80a75b6131dc33be5fbe83d9525e2dd4eae1

    SHA512

    03a3f33cfaeba320ad2de108c6f862346203fa53e25e07fbc3e20c5d8a53ab0d2a004461363422d4e007d57cb7c7fe0b051f7d9f2e9698e875a1386e9d2d1216

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    079052f041d2ada21cbdb07c1bd36725

    SHA1

    d472f457a23d2499be471a08e452372057e23e05

    SHA256

    c3f5faa81088bfc6c4cbae87be1a645e0cc7d0706b14b5be90ccc9e2fa4615af

    SHA512

    30177c148e38679946cfa9c57b79c25b20b5e1048798d5e0b292ee9723d9a279f3f236c4f6ed4491fd7bdcf646e26b51050c9f3354b767c313047721f991c59a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c4f7cf67d7bfff6614dab890fa10151f

    SHA1

    937f8219c4d8223e4ff636410f5d2da4e86d7175

    SHA256

    3b88cf9b13373beff32370d09ea12def2490017a822bc84f020c1adb983264a2

    SHA512

    5cde515b2c4f2c8b8f2f6333cf79113a3942ff7d28acfa1b85dfc4659fc513ebcb0aebb9bd5053014f8447d91bf39789c65dee26a53bbf40ae2cf27a2c3f16a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    39e33a61c366ace8c156de0c3dac652d

    SHA1

    0b9540c4db4bcd3e2206bbf1061973f720eee8b9

    SHA256

    328a8f4088fdd48a76c133dcfce041a340473e19aa6c95eb01072279fad72f54

    SHA512

    b57295ed41c77e3a6cad0af88d2f1dbb2cb5e9dbc4cedf038014dce4c575cb6e384db0c2cf3551214fe6a3db6b45ea627e9872261f5ff7c5ff60107f2bb988a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    aed6d5590735e86c29579666665a057c

    SHA1

    72a1021576be06b3e07e2f68e0797703fd49d813

    SHA256

    fb94405a69a9c84499f4126c8585b4f38ae80a15510dfc391aaeadbc459d6e9d

    SHA512

    a4ab6134921889de1f67b2cd217c753e6f8241743d950da1af616b598b666ee453cfd1a0e727beed090854f2e15f20386dbc205591ee3095c7b8c6d451baa6a3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar286D.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit