Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

1c9089c5cc...b.html

windows7-x64

1

1c9089c5cc...b.html

windows10-2004-x64

1

Analysis

  • max time kernel
    67s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 11:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1c9089c5ccc3bca418fffcaf0c2fea2b.html

  • Size

    10KB

  • MD5

    1c9089c5ccc3bca418fffcaf0c2fea2b

  • SHA1

    d03715a490fd95b8bd71f5275b57922402ebcce4

  • SHA256

    f8165ba9c37d21a1699b1650625e3f4dab34c8b7fcd695ef5265c3b1c3481345

  • SHA512

    46f07b9a1a5a59db3f8c31d1633a01108a06c3ca4b2cf5f8b7c7a875097e3c0be6bb56cf9386e7f418bee60e0850dfdcb11893d501d792c6818b8ec5c3b672dc

  • SSDEEP

    192:SIjlctG4K9phIwH/3xVyhxI4UFpMKHTjQaohSiuaMCtLfJPpfBC8Z8zuAmTe:SIwG4K9phIiSuM8jPu/NMCBxhfBYy1Te

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1c9089c5ccc3bca418fffcaf0c2fea2b.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3056
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3056 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3024

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3fd6617466dc26b060c08f9d60ca99c4

    SHA1

    470a4792663e76c0aba9f3735498459288ad167b

    SHA256

    202f8a9da1ed14e05bf6b4962fcb9da190a2e0c0855372270fc3d7b9a3a52000

    SHA512

    761112aefda66b0627cac0916b2e57c92c483553ecabc6c3c6a41f4a55d67e7880ff7ce63ee70bb9cb5eb861b11b34b38dc882b1e8929b0b10ba0b38aefa53eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f97e53c67f324f5bb2cccf2ff01b4e54

    SHA1

    c5553aeb815ed314699a70a8e466fae279f8c693

    SHA256

    6a98e750cc6fbe6331580f3668578ee36457dfa5ea705ff60a30789252f129ed

    SHA512

    fca5a7b23f2a9f3a880b933f49f77f858aa82e49139146a1a1dfc71d5ba64c4847a53ecd60ef15edd7420e53a00dea4c31620529e12f6282d5fbee22f51703b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d46c3a9c99db8ccab346df10ba7af313

    SHA1

    42fdb5474d2e88a89840953e0c25cefc1fee3830

    SHA256

    be2ae92837e219ef5a8b0ccfeed89b13489e540506e38fd9d1743309105fbfdc

    SHA512

    e2c1686a3fae527b2793be3280b113945a07a9724ff41b103f9b59ede1f2d3606daa85ce1fb2be7d92dbf13d1be88ff6cd29514caf1dec1e245452ff028f33fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e9834751a92866499ef4cbbd5016a49f

    SHA1

    14654e2b667f8579e31edb7a533af5e086d03458

    SHA256

    7c66b8fbf92349b17ea89b9a3c827067eeaa3023c96f795e46ecb9ff8bbfef30

    SHA512

    08e727b4474eca53777f52a6734d5d5c5a126317cd2af19292c69497f9b1b4447d83e2d8c43673958ba2cbeb6a74462b5b49adc25a7728a9fbabbf9948411fd0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0eb3a1c683cf27f6ec4475274e2d4641

    SHA1

    63f2791d5c99c707cbb54fee84d6610f57133890

    SHA256

    e6fcca9f207c53b03b879ac13356fef1bb226a56f86bf05742ab0bbfce16d527

    SHA512

    5c7e8f974c891f6d35bc48057f68a23b429f81db9707af9c42e8755d4100b350a84de21965a0a39450c2407db9ab9c9ebada68bb238c20bf5a376b18919f19d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d80ed8d2e8ea37f2eab04931bba89453

    SHA1

    8f5f58cc86f2c52f655b483fbdf218c595d80d44

    SHA256

    93ae2bcaba3f60d493f266256b19aca4fc2ab2c5e918cb8550b7c78d7ece5bb9

    SHA512

    51076e3ad8148fd78c812d48625e7be20cf570910f84e2b179d0df18dc2a6b06ca7d3e394ab8da6c5bd8b9d96483773692370a4630a7a5036414c219f78636af

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3351.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar346F.tmp
    Filesize

    92KB

    MD5

    71e4ce8b3a1b89f335a6936bbdafce4c

    SHA1

    6e0d450eb5f316a9924b3e58445b26bfb727001e

    SHA256

    a5edfae1527d0c8d9fe5e7a2c5c21b671e61f9981f3bcf9e8cc9f9bb9f3b44c5

    SHA512

    b80af88699330e1ff01e409daabdedeef350fe7d192724dfa8622afa71e132076144175f6e097f8136f1bba44c7cb30cfdd0414dbe4e0a4712b3bad7b70aeff7

    Download Submit