Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

3b87430a39...a.html

windows7-x64

1

3b87430a39...a.html

windows10-2004-x64

1

Analysis

  • max time kernel
    0s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 20:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3b87430a3907342bbb5c2cbcb9bd834a.html

  • Size

    136KB

  • MD5

    3b87430a3907342bbb5c2cbcb9bd834a

  • SHA1

    cffb9367c25abb0d2cbffdb695d744d71fc60d0d

  • SHA256

    68df348529080a75fa40b3cb12e59e909aa17950be41008f31dcbb1f9b75939e

  • SHA512

    efe1c72250eab5a771bbcb16907442f5fe977ebb3d58752dab861ce5bd9217bdb7ca52f8d32cebae66d64e20b175513a36014398f9747abe905a8d57de45854d

  • SSDEEP

    3072:5VWQ4SPZD3UcjvG8rMBhFcXmNRS74EMOtRs3vJPNSf++n47bvarpdT6rntA:7RJzXmNRnS4nvat

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 24 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3b87430a3907342bbb5c2cbcb9bd834a.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2892
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2892 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2220

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\4A9377E7E528F7E56B69A81C500ABC24
    Filesize

    889B

    MD5

    3e455215095192e1b75d379fb187298a

    SHA1

    b1bc968bd4f49d622aa89a81f2150152a41d829c

    SHA256

    ebd41040e4bb3ec742c9e381d31ef2a41a48b6685c96e7cef3c1df6cd4331c99

    SHA512

    54ba004d5435e8b10531431c392ed99776120d363808137de7eb59030463f863cadd02bdf918f596b6d20964b31725c2363cd7601799caa9360a1c36fe819fbd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    aaa2d2913fd5406c2bda3d6f79c2314c

    SHA1

    a9e2612f3daacd9f193f44d5941fb3979af5a961

    SHA256

    1b7a36ee08b65bf9c119e83191f91ecad504f9990945493db2e60347fea9cd85

    SHA512

    38b2582ff2b6c4e2b0f38ba6317abf572792c3f6fc0f8f27f15f03865a83e7ee86d9ead5dfbb284e67e9382005fdd7b157434e1385c4d4f4df12b40ef33817ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\4A9377E7E528F7E56B69A81C500ABC24
    Filesize

    176B

    MD5

    0600ea1b809ddbdd47ddf29a38f575f3

    SHA1

    356423faa38317bee55527e4e0c77222bf2186d1

    SHA256

    148bc3fffcf208812d92bc37c270370e4ad9b31ed64d624104485f61aecb7735

    SHA512

    df62fa5916e5a7a88518108079f771a9d9c7a9488cae062cd3d57909efc66f6cf6d9ec7d32a9ff2da333f95769396f36c4c10c5b44da45d09c0d18b6409c22f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3786af9b15c72b2ba596c62a82aa5c1f

    SHA1

    03999ed2f950e8fcdc9df936673c9e8f8c63876c

    SHA256

    4ccc6f1917c15b8eaecb4106f3f181ddc674302e9e2c0bdf0ad69328ff95dc6d

    SHA512

    d92e5f5c784a5683e273a377a8d37e3f12c452893919b97487409d7b9fcceac8268f320bd8c3775168a605b52d4b07396238d7b40f6801b64557815f72c8be2b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bd07d6f1f23fa924f7b998f3f35a1225

    SHA1

    42ba658aca4d05ca8ad9088db2b0284f1948083f

    SHA256

    39ed3234f341b2d23ba41ab774f0577ce144fe419f70700c30a86b7f7b101353

    SHA512

    66056aa9a6ede2e435385b352d9adc548cc01ea9e20c6d27e38a7d5969188b16c396bb54cc1a8530388a696ad3d0dbaedf4f4bf526599684be4bea09c1951854

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    36164332fdb2b80a4770d334ad3ece89

    SHA1

    30f45ec894684bcc7875209957c82108bd486883

    SHA256

    6688ffb5c94bd20ee3d50b975bd83c276efc6b0b4beb84e10c001b962be3c5a3

    SHA512

    782b5b9158d4931bc5a14d479e9b0478bc984d122568555134bc1eec43622937bd61286e7fe6d8966570dfa7023b6a0710f07078503e968e1c84f0bbe615d6c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    8e86bc122c02674d1b9e182f9dc21182

    SHA1

    f94351a6ab45ea658e4f39a0f89af14800f3a9b1

    SHA256

    e57a8f5b7b2b2242baca4477cb6237eb2c85d8a16d0bf06b1c43ec10ed1fd307

    SHA512

    bf4faacfd649531de6e90f088a3269052ac43639bdc56ddc0b32b6b762b254aff4aa4b66624ee2f21c9f1d2fe35a496748109b93e9a88f19b1ca6f0c6050a7cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FITIQ1XI\platform_gapi.iframes.style.common[1].js
    Filesize

    56KB

    MD5

    f6140cf2e81a9d5b9bc96970fe1946f6

    SHA1

    e18cb20a08d0c13d44b72e36e9560aec2187abce

    SHA256

    68cc8a99c8ed5cc0eb3aa2146fd34bee0051bfd98faa3c03b83c78b4a12a8bd5

    SHA512

    1f61bf7228ae9fc1b36249223f4ca0675da05beaa6c00b28b7fff500e0527ee237d139eaf6793ece67f8730dfff0207bf945a848795aab7c57301433449a8acb

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NWN94P0D\cb=gapi[2].js
    Filesize

    133KB

    MD5

    288c5ba5b7001fe841c32f690f62cc93

    SHA1

    29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

    SHA256

    c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

    SHA512

    e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA6C.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA81.tmp
    Filesize

    92KB

    MD5

    71e4ce8b3a1b89f335a6936bbdafce4c

    SHA1

    6e0d450eb5f316a9924b3e58445b26bfb727001e

    SHA256

    a5edfae1527d0c8d9fe5e7a2c5c21b671e61f9981f3bcf9e8cc9f9bb9f3b44c5

    SHA512

    b80af88699330e1ff01e409daabdedeef350fe7d192724dfa8622afa71e132076144175f6e097f8136f1bba44c7cb30cfdd0414dbe4e0a4712b3bad7b70aeff7

    Download Submit