Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

13aa9653eb...0.html

windows7-x64

1

13aa9653eb...0.html

windows10-2004-x64

1

Analysis

  • max time kernel
    139s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 09:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    13aa9653eb20fd9e7577bfdfeedf99d0.html

  • Size

    39KB

  • MD5

    13aa9653eb20fd9e7577bfdfeedf99d0

  • SHA1

    0cd108bc77fd7ef6e837e3d403608c18466aa1a6

  • SHA256

    c57ab792312840cce90c36c3dee8221988f6017c7545849c5ff9df515c10b97c

  • SHA512

    c84ccb64c8f5ac892f920926ccf4f6e11f5f1efdfd305a35d09dc0e9e012cadd1b0d0c3368c62e77c64f616784e979206aab6cc32487c3ff3ebd5c1c311cebab

  • SSDEEP

    384:/rrb3JGbnukKVS65uKgruuhQdtD4ZX2e6LQ2Jz3KoQL4Ow9HgwALWAj77R2SJvQy:/OKP5ng4tDaGeEPJzaoQL4v9uz12S6y

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\13aa9653eb20fd9e7577bfdfeedf99d0.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2040
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2040 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2280

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    3c4792ead59fe6538329c1a375de28c1

    SHA1

    041fcd353eb1830a08e060606b72c61a2ee434e7

    SHA256

    1f673e580daa5b0943520e86a6dc96d672aa637cc34f90172a8dd7391f637cbc

    SHA512

    61f6b03ac30a600d955cfdcc51406edcfe1a6416023a6fcf50c7e0f73093a84bdc42059e9e8b5ccf7284897580a1cb00a2f578eaf9ac35aa38ae8ae917c22e40

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    df674d4e499967722c25b9e12983c826

    SHA1

    ad7eb914848e40d2be721e3fe4f2fa40e0184588

    SHA256

    cbf57bfa790b86ae48324e5dbdaaccfad5fd2988789c49742c057e7827aec05e

    SHA512

    f0d2e41ece79beb04533e20349661bf8bc83e8e2fafd4f2c59ee490d3869b58bdae22d611f7a3e6c18fa7c8cdd0661d951d872b0dc03bf82d4d7d673393fedc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a8ff20ed8604ce181d5a2d1ebf791af1

    SHA1

    8da5e05bb9d4b4b89348f565d725cb5e9c275072

    SHA256

    0ae183ed430c251793fd1a1cc94c3eed1abe8bb61a52b24b4055d4230281966b

    SHA512

    6370270561879cf40741fecaa57d21eda74505cbdc1ebca60f24ae1611f0d412637ee5f504fbfe5ea6c17fbb53caa6aa5640b57b851eb26831cd5a6ab7661d78

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6a60018ec03630d29e5e0f44ada8bd8f

    SHA1

    893a0905ad6ba705e320ad2bb735a025bdf4d11a

    SHA256

    8d64c89fd0c2397b0fcd520a220d06839d345fe6f878602cb7f7f948e9ef8b3f

    SHA512

    1757b02c38f23552f595fb9381aafce0c6192057daaa103c89931a768347a558594af5cee47800eb0f0e27460c2aca93bc1694b3950b2280ad29600735a02bc8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    626e9bf3ceffaa22bf99332ee0ea524b

    SHA1

    9fec7223a1b6528ea2a01d61ad0e17366d2232a1

    SHA256

    2f4c6f5a248ade54492f11b0b7e3a20ea43a7326b4916c381f86557ead6f2ac7

    SHA512

    2ba0392b3282ff36cc804e06546926424cb51344a24586405febe103ac2dbc95318a91726e5fee1ec233aad46edfa9c3038a5aa9dddf9d114e7f0a3359eec2d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    637536dd7bb19a58f3f0c69c3bd72132

    SHA1

    9cb5529081862f39e3bd9797e0452d10ec57302d

    SHA256

    8c70864e9609d68fd019f2b05a12f98f06e6d51cf938fa1eedcf28c3b0038548

    SHA512

    39a2c369b6f3d239487071967e925be0fc55cd542eda7c9130a4ec357fb50f74d527c70076331689b70bdf90f1bf6fc1c386629ee8670c4058000d2c52864b24

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    754b89b5c1e81eee6c129eee95b578c4

    SHA1

    dbb705e1d3f64f1665dd5924b19e92699c47ea50

    SHA256

    4618de19876ce4bbed5e6d0fb213e3672433ae4d4b59cb3aa0449837fca6549e

    SHA512

    daa7f1e2bc59374ffbd527dd2a67ab642d3ab903f2c3424ce53dbc3b47706495b28da11112d63c99782400d8fc61119ed205780d0ecab08f13106bf9ca00214a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fe8e353239537ad0447cd1a050863ebf

    SHA1

    2574f4d93ceb367ac63c027530529ff34b4b7acd

    SHA256

    906a67cfad90e83c6a1b87f961fcd248da30a7a96b2b3bda140e553e0fc1a6be

    SHA512

    72b1fb952e6db33cbbccfd4a043ed3e335418bbe0f300a7d424c901c576cb6a434ce618b0ea3748d45db889820ceb2d7393fcdff13a15458507e2bca5e22d0ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    10abde48a92f4ded7be1fbc2da2a1d3a

    SHA1

    1cf2acde86bbb9b047bdae7412bf621926d1038f

    SHA256

    6e2db837ae5a880f683bcca7d5eefb4a8e682b8b6b97c624f581a1f25474dd19

    SHA512

    c7bc2a1df52f74f40c7f0606e58d82cc27be9e8a4401363a242af36a96e2c8f05b3ba5b0655c2c5635beefba5503f7a04239bba7e4eb077194eb643fc5aa91a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ed18cb835912835fb140e8e2e0734c88

    SHA1

    e1f3fb257527903a11db8501163c6c325247dfd5

    SHA256

    ed635718f592899fe1fac051c83b5ff2ad304a707c02a756538f2bd5c4858b1f

    SHA512

    9fff09b482405d02748be4fcbe8b640de49d19eb014d760a3846344697210c54bf96c4ec612b562269e696e73825da13c052b97110a88a88315f670bb32b3187

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A89I98IL\cb=gapi[1].js
    Filesize

    133KB

    MD5

    288c5ba5b7001fe841c32f690f62cc93

    SHA1

    29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

    SHA256

    c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

    SHA512

    e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U1J1BPYJ\platform_gapi.iframes.style.common[1].js
    Filesize

    56KB

    MD5

    f6140cf2e81a9d5b9bc96970fe1946f6

    SHA1

    e18cb20a08d0c13d44b72e36e9560aec2187abce

    SHA256

    68cc8a99c8ed5cc0eb3aa2146fd34bee0051bfd98faa3c03b83c78b4a12a8bd5

    SHA512

    1f61bf7228ae9fc1b36249223f4ca0675da05beaa6c00b28b7fff500e0527ee237d139eaf6793ece67f8730dfff0207bf945a848795aab7c57301433449a8acb

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabAF93.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarAF94.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit