Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

0489102811...3.html

windows7-x64

1

0489102811...3.html

windows10-2004-x64

1

Analysis

  • max time kernel
    156s
  • max time network
    172s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 04:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    04891028112dad5b68d86cb5557b75c3.html

  • Size

    1KB

  • MD5

    04891028112dad5b68d86cb5557b75c3

  • SHA1

    2293baa118bf8f4999f9536dc867562497c21b0e

  • SHA256

    464e220114006b5a40a5b349bd3b3be9e84bd7db5166847f434878c389b2a4fb

  • SHA512

    100e749cc7e93afab370db8aa0fddc98227cf038bb71d2619c950bb8c652d07d185c1daefafe0873b65a2b5446c556db7a54fbb20114a474ab91c57131d3852e

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\04891028112dad5b68d86cb5557b75c3.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2260
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2260 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2952

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    04f8ae16bed1db91556f481209003c08

    SHA1

    b63b13b9805a2c3e961a3c018d55b8db1389858e

    SHA256

    acaa47168b16abaa9722e380ba87a8fcd0df187c733bbf1acb3bed9dbb96c120

    SHA512

    1c9a7bb4bef91183bf965be8081c5539329ed8f7dba2e3c2c26450f439bf42a2d6360308a9223bd728d06af7bf4f24ac77ff00415c72924e86fc109b7f1576c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ac706f335147e7ec803e8a632f846df5

    SHA1

    abfce526010780ae9c06b663fe81f39a1e9501e9

    SHA256

    d87280adf55fad842edc0d86dd118a16566f8a1ee0844d15b86f185fddee6368

    SHA512

    752acbc2d6dbd1bc245a515d1a88294f79971c21a1af23fe825d136c8be8c1646faa5f191c1bc89f698e8bb08581d88ed73976aa2946f378ce7ee27b9c2107c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d9e68e58ff9aa2deb4c1334567cbcc07

    SHA1

    b679875d0ed06ba96e91d86ec19009363293c9fd

    SHA256

    d29d94c06e5fcfa07aeb22f8377ba95796baa9b196e6f7bb040e8a35a0cbd7f9

    SHA512

    dc395c66e467d7dbeb4a29cfdb47536d3ffb21db7dd1b9b602af2c0ad7f673d0d5f104b97da07b0231b2de5e0620c3fbe64ceb642120a506b34ca5975b2a007b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d1228c71cb1a18f5daf1ace1585fe6b8

    SHA1

    bd5104494a168e2d84394d103402b7ec3f6736b0

    SHA256

    d0ea0f0037c8744aa7a635551cdf230334f67268cdc97d8fc3d1a81df76335a5

    SHA512

    91c84cec204c5a4787c7448cfeb536902f4772d61d4def208929b0baf04f38085657deff677a454c65f7570d169bbaa9a9fc6e466a4e3f9a10ae958362604f0d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE38D.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE3EF.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit