Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

0f91a1c6f6...3.html

windows7-x64

1

0f91a1c6f6...3.html

windows10-2004-x64

1

Analysis

  • max time kernel
    94s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/12/2023, 07:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0f91a1c6f65615889c7c0550172e1553.html

  • Size

    15KB

  • MD5

    0f91a1c6f65615889c7c0550172e1553

  • SHA1

    fbf3785138b91fd493ec754615b1dac4f932556a

  • SHA256

    e2f4c6f1e95630828bb920a90b1ebe9743175e40ff49ef03296076eb8896e09b

  • SHA512

    bfe73449ec69760b7e2536c51f1833fc50860b1709dd0432b044cb6de77a43c63ee4cded6ac95d97c85968b9c48094f53162de78917f76d5cd1d9537223da43f

  • SSDEEP

    192:lV7fQhA5jcx1NIrAlpRXP9eqmkHsFD67CXWJZbCAzy+/YUNEYi+f/0EmlmP3KTA5:lNYgcxuKpZyDAJZbhmsYN/2V

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 61 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0f91a1c6f65615889c7c0550172e1553.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1944
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1944 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:380

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\flj0k7l\imagestore.dat
    Filesize

    1KB

    MD5

    961880b19cb0e3656311f636bfb35031

    SHA1

    3c746422ae86928325b7a6ebed1b1e714b959648

    SHA256

    c0fc3e6b64981aab9a1cd2cefb25e81b7fe576dfacb849d189d14682468aced3

    SHA512

    269bb79c5933d105fd2f4a3ebbf2add06615a8cd69173318cb6b6f49daf082e01d9d55d8fff6a4bf22dd67ea3aa69afad6ce3afe1e80f71c50201a9953cb92c3

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\BJCNBC62\css[1].css
    Filesize

    530B

    MD5

    0a127ad39a8ebe4207492293b556adf6

    SHA1

    17d3dad64e4f9139cfb85bbcca6659a8aa532a48

    SHA256

    c1294965425b5028a83bbe5eeed0cd9b92733ec41efd07e34532522d4c97b6e1

    SHA512

    5aa845c5c6c20259d9c6bc0c9fdbd13ff178ba4008865f7113387767db0ad39cd53c1d276cfa4997186fd39f21d30bf00caf8d092e5c04119d992368b1563df3

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\BJCNBC62\favicon[2].ico
    Filesize

    1KB

    MD5

    0106d4fd24f36c561cf3e33bea3973e4

    SHA1

    84572f2157c0ac8bacc38b563069b223f93cb23c

    SHA256

    5a6c5f7923c7b5ba984f3c4b79b5c3005f3c2f1347a84a6a7b3c16ffbf11777d

    SHA512

    57b77c5d345eca415257e708a52a96e71d3ddf4a781c1f60e8ba175ea0c60b1d74749cd3fa2e33f56642ce42b7221f16491cf666dc4e795ecc6d1fbfdb54ab98

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\BJCNBC62\jquery.min[1].js
    Filesize

    83KB

    MD5

    cbba3fb1405a7e0f1a6a8c7667321474

    SHA1

    669ff0974a1c82400b59198f0dd3c968e35f9bbc

    SHA256

    b4ae7d4321e1d6d38e79bea6cde31f39787744c64cfd07daf87701350234e4e1

    SHA512

    531e1ec24409f60f5524f46fad4fa44bbe3ba66d3a02d5fb32bd0c49b3538186966e12eb74048bcf68415b44e04ea93583312fa2ee9871a710c163b29fdd85cc

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\NSWVVUXL\analytics[1].js
    Filesize

    51KB

    MD5

    575b5480531da4d14e7453e2016fe0bc

    SHA1

    e5c5f3134fe29e60b591c87ea85951f0aea36ee1

    SHA256

    de36e50194320a7d3ef1ace9bd34a875a8bd458b253c061979dd628e9bf49afd

    SHA512

    174e48f4fb2a7e7a0be1e16564f9ed2d0bbcc8b4af18cb89ad49cf42b1c3894c8f8e29ce673bc5d9bc8552f88d1d47294ee0e216402566a3f446f04aca24857a

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\NSWVVUXL\jquery.fancybox.min[1].css
    Filesize

    12KB

    MD5

    a2d42584292f64c5827e8b67b1b38726

    SHA1

    1be9b79be02a1cfc5d96c4a5e0feb8f472babd95

    SHA256

    5736e3eec0c34bfc288854b7b8d2a8f1e22e9e2e7dae3c8d1ad5dfb2d4734ad0

    SHA512

    1fd8eb6628a8a5476c2e983de00df7dc47ee9a0501a4ef4c75bc52b5d7884e8f8a10831a35f1cdbf0ca38c325bf8444f6914ba0e9c9194a6ef3d46ac348b51cb

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\NSWVVUXL\js[1].js
    Filesize

    153KB

    MD5

    6bbbc8ff14a577339d63b97add9f1578

    SHA1

    248423b01b80f43b58e0eea176a4ff2bd6f4e4c6

    SHA256

    0883a210229c7bce4c86f1f90a9e57951249576059eda756b8046ea9088533f2

    SHA512

    1b69bd3777878f3dae8f57af142faa9adc11200585f448f88361fc6c38a4d8adba68be3a723cf8d3d668cc7e7fcca72616227a73a2be938460daa9340b6022e0

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\NSWVVUXL\js[2].js
    Filesize

    76KB

    MD5

    5736927b9e180082f960bc512e0f0bdd

    SHA1

    51739ef62325829a1413eb4f8895152d1be52a1c

    SHA256

    89befa2bfa882c664925cc12547012d6d110ea10c94601f3891d0ce1bd7c1a97

    SHA512

    b3b736d64ea48a8b0177205b1d6708c5715b690975d1fb55633421d4dfe7458eadff28b1cb6e3abf6b13ea94c2884e52f35e7d242291dd424dffe29e0b55ffed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\NSWVVUXL\reboot.min[1].css
    Filesize

    3KB

    MD5

    51b8b71098eeed2c55a4534e48579a16

    SHA1

    2ec1922d2bfaf67bf3ffabe43a11e3bf481dc5d7

    SHA256

    bd78e3bcc569d029e7c709144e4038dede4d92a143e77bc46e4f15913769758b

    SHA512

    2597223e603e095bf405998aacd8585f85e66de8d992a9078951dd85f462217305e215b4828188bf7840368d8116ed8fb5d95f3bfab00240b4a8ddab71ac760d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\NSWVVUXL\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\QSO8CY24\responsive[2].css
    Filesize

    61KB

    MD5

    d2e6c2c19d8c33b7e98d6c854f663240

    SHA1

    2929dd5620c700e65ec7c8e0863af47864808201

    SHA256

    e83013a60dbb0900afdf640203daf2d2286a5314a42e39724605fd86a085ad05

    SHA512

    952a1fd302bb831e5c6ce2b9f3a4a19f3bb81023c4c5f023506700f028ae984718af5805b1bd628bcd68e7047bcdc64ec3856928d4f93901215b9507faf418bf

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\QSO8CY24\script[1].js
    Filesize

    9KB

    MD5

    defee0a43f53c0bd24b5420db2325418

    SHA1

    55e3fdbced6fb04f1a2a664209f6117110b206f3

    SHA256

    c1f8e55b298dc653477b557d4d9ef04951b3b8ba8362a836c54e2db10cda4d09

    SHA512

    33d1a6753a32ec06dcfc07637e9654af9321fe9fa2590efc70893eb58c8603505f2be69084fb2bcbf929218c4e7df9f7a8bc3f17a5b41ed38c4d8645296ebab5

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\QSO8CY24\style[1].css
    Filesize

    73KB

    MD5

    563141a714ce0611954bb9ad34daab91

    SHA1

    3413b136e00019ada150ef97c8c5e427c011d244

    SHA256

    591db7ed1ef2e74d009ec36807243e43025dd56c7581d60199739192ec9f8a74

    SHA512

    afb2c9e735dd5efea288c368c132194351e7a4d12e6f2f386ea25effc2e16dc8bbaa7523e7a48468260a8d23ab467de59538f722c5c9559c8f50ffd90ad1764d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\R977VUU4\p[1].css
    Filesize

    5B

    MD5

    83d24d4b43cc7eef2b61e66c95f3d158

    SHA1

    f0cafc285ee23bb6c28c5166f305493c4331c84d

    SHA256

    1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb

    SHA512

    e6e84563d3a55767f8e5f36c4e217a0768120d6e15ce4d01aa63d36af7ec8d20b600ce96dcc56de91ec7e55e83a8267baddd68b61447069b82abdb2e92c6acb6

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\R977VUU4\recaptcha__en[1].js
    Filesize

    95KB

    MD5

    99b4511e1f54e2d872e809ae7e19b676

    SHA1

    c4f244b9883ae4d7d2c79590e81ffac0ba8c32f9

    SHA256

    100afe12f102269add642c8fb4be8935685ecd4a17ee5f4c0dfed44433c7f9ad

    SHA512

    c4ec71178662295389c1ad8796f5e3a17079b6b90e8d8092ede170b2d75c430a6d3b9fd2c38e4d04b8158510d07d7e2b86683f2d999aaf59dd39913f7eec177b

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\R977VUU4\styles__ltr[1].css
    Filesize

    53KB

    MD5

    424968ce7ca7ae7e0fa4dd398c5bfc41

    SHA1

    8dfaecb29c2cb3a476e41a6b5ad7ea8c6efb6648

    SHA256

    d9d14aa184ff83084bc32ddf86fd4c13616cf255277b22fa6d79a231ed4280f1

    SHA512

    c1b7a6c8a9223c9bbf15c5bed85eae5bea0d7b09e8e9ef6df1888c216492c6d5ce6ba06a029d384df0d56de41a6f4ece3676bbf1f5b9e9e7adaf82f1be2983ac

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\R977VUU4\zyw6mds[1].css
    Filesize

    1KB

    MD5

    4c2e266587bb622926747856f9bdb65d

    SHA1

    16999e0d2a01b96b70a0ef191461388c5047f1ed

    SHA256

    cfddcd1ab28963d8219ef42d0b455b1e062521bfe7b100d4c47e0b9dd0a79023

    SHA512

    c9526cd6537aa068b48641fd2dfb93843fc5f535faa4cd856d4d3427c8f1e97d79c969215a9291fd50a96597c43dba3c45a3fe2ad32c78677e38f93dbfc32ca0

    Download Submit