Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

4935468f35...3.html

windows7-x64

1

4935468f35...3.html

windows10-2004-x64

1

Analysis

  • max time kernel
    142s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26/12/2023, 01:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4935468f352f6b2527adf0b59c4c2903.html

  • Size

    56KB

  • MD5

    4935468f352f6b2527adf0b59c4c2903

  • SHA1

    ded270ca30c943cb047841caffc86f7193b7624c

  • SHA256

    a4505ef0d7bae2e0289ab819cb83c8ce1e6d4995a667d1e90111b0d5b21ab989

  • SHA512

    b946d3564d8a20da437ab21204bce856ed9763b81290e2d4959cf57945d75d780e095afb9339630e4741c5bc5d6afb07da82160c3ed251935689a691d5c8337b

  • SSDEEP

    1536:EPsK5eeeEPeeeVzKeeekeeeUeeeT6FeeezeeeQD4PReeeleeeZ5VeeeUeeeBeeeA:EI7vEHaamaYjB

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
    "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1740 CREDAT:275457 /prefetch:2
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of SetWindowsHookEx
    PID:2668
  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4935468f352f6b2527adf0b59c4c2903.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1740

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    334e9ab95f4e655415075b77d7d2e4a0

    SHA1

    ac7e3a1eb80f20acef0aec635dfab24a57ae6617

    SHA256

    7719ef661c90a30986d8788da6a8abda53d4b2bdcca023e9837527530e87378f

    SHA512

    92d48d73a0718c22f2b48aff832415dee1e836a61d4fcb3fe53d4e3d95d6ac8787d2618fd2264b592065bcd3d1d82a575969515b599d5fde3bd65b4e2c0f9bbf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    364095e2b64e8fd2ab10faf14c67c3f9

    SHA1

    83d5d1709b7fe9cd0a195718a566b23b7ea09642

    SHA256

    d0acd5c97e3d88e7d961591b53394f3d4a86992eba771cd771788fd2446a9fbb

    SHA512

    fcae298e79d2f9a521b918e63fab9a31a9bf665219347b96096109a9afea5d7444d78c88a1289f02da578178778dd526abbae968f2fc19fd21730a0daaa23a38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    804754e237e29274f90b0b4a5520c4b3

    SHA1

    dd4c5cbea849fb51cdc7bd1d263657eb8b5ec964

    SHA256

    a5321c768673213864fb94d452438fd29a439b3ee41a5ca99b54f53d806ded4a

    SHA512

    051a10d10259e45c2e3aacc35fdfccb3e2dbd4a3613d2a1e9ae84df462a0253997597814d3198fa8e6d3b583710ca19e0242fb4eb6241a793204a01e4de43642

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    384b72bdb17a55a05dd650c73a507556

    SHA1

    069c0041d2a3891a19a76d6beb0c74b914da06a4

    SHA256

    9c00ba82718eec7e5a8474b3c184e39be744ba0301b2be2abc655cea5499faad

    SHA512

    afd2fa04e8ba45428594c55670b4297fd59f480356f4d6886b5c1ca707ce7fe734206f6098a6e11bba422ab896865d54938ab1e8a5b210dd1995e2e892a2a919

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab649F.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6924.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit