Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

4be1021d0e...4.html

windows7-x64

1

4be1021d0e...4.html

windows10-2004-x64

1

Analysis

  • max time kernel
    145s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26/12/2023, 02:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4be1021d0e2ff0ff3b6ac2c35158e0d4.html

  • Size

    16KB

  • MD5

    4be1021d0e2ff0ff3b6ac2c35158e0d4

  • SHA1

    cd577f328f537330429a3e82629fccb4065bfc2f

  • SHA256

    ddfaaf94fbc8f59be06f4fae6985578525fb34ff959750fc43b3e42e77698662

  • SHA512

    a95d253fb0a4246b94bc0ed4499f18641644423d87fd75a1d9f761e536e4ee3c23a609f873d42188255e9c011646dc578eb862b4529ad2eaf159008760c0572b

  • SSDEEP

    384:HpC/cVqqkXcxB3snqHjbb93YrazalROWhXo2V:McVqbcxdsCfbZYG9Wr

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Modifies registry class 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4be1021d0e2ff0ff3b6ac2c35158e0d4.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:4724
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4724 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Modifies registry class
      • Suspicious use of SetWindowsHookEx
      PID:2660

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    392B

    MD5

    753384d641e4542d10ed2776df3fb8b6

    SHA1

    9a4f6335d123adab36f157781f0c311fabd6c1fa

    SHA256

    6f3a243a2a7517ae1e4cbfc09956232529d3bc56c91975028b88686c545ea5b6

    SHA512

    2947f9dce2f35e6880c5be3a0d6874fd93552f8c6dda19ce87db1782e3c4bf7311b72b9eaf57adcad387759f15bb0b31e656848fd16c6326dd637e16beb5e4e9

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\3XV8HP1D\www.google[1].xml
    Filesize

    99B

    MD5

    8627ea14e1feabb2c6c0985015e1eb51

    SHA1

    014a86a1b60de274b7288924148fc017ec455681

    SHA256

    397e37999821da59b23c670e569b9a906bc720ebcff4269f27c323472fceb160

    SHA512

    4515117d150553790e97bb1bf822d8e64dc8c9c602e0f08dff5ebc027238d30114c17b64f3d60e3bffa6b021b0d9a481c9aafcb2297c01ac31fcafc56c452f76

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\9XGJ6ZK1\www.youtube[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\9XGJ6ZK1\www.youtube[1].xml
    Filesize

    229B

    MD5

    f30a7dc0edb35e1195b3015c5f18bb13

    SHA1

    9929d4a30178a068cf8a40fe5b9af6320e04b3b7

    SHA256

    bfc970ddf875edcf5f25d5d8627c1e50f54a006346fe6993d93925a5dddb15a5

    SHA512

    7a5a4b563d1faf2291977d3f57f69fec7a40f9ab5deb2b8d8acbbaee48c8ecfcb378e0d0f615eb6bd333f9825c4f61219a03adc2f8638ca031c2597a09a295e8

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\VersionManager\verC90D.tmp
    Filesize

    15KB

    MD5

    1a545d0052b581fbb2ab4c52133846bc

    SHA1

    62f3266a9b9925cd6d98658b92adec673cbe3dd3

    SHA256

    557472aeaebf4c1c800b9df14c190f66d62cbabb011300dbedde2dcddd27a6c1

    SHA512

    bd326d111589d87cd6d019378ec725ac9ac7ad4c36f22453941f7d52f90b747ede4783a83dfff6cae1b3bb46690ad49cffa77f2afda019b22863ac485b406e8d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\flj0k7l\imagestore.dat
    Filesize

    1KB

    MD5

    e50187092cdc965be8ecc1b99ef2d33e

    SHA1

    2d16826fd33abbaf49dbc5d986d83e581727ce55

    SHA256

    87a566e03d88b84382ca04054eb446410f3100f54d2c84d17adeed9d8998d54d

    SHA512

    db9bdfb4e54f46bca04cfacee2a74d5063f485dcdb605eee53e79c5424253eb9e2e21cb1a9603faeee974169516903169e4e99afbc6c85941979817278c50791

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\BJCNBC62\analytics[1].js
    Filesize

    51KB

    MD5

    575b5480531da4d14e7453e2016fe0bc

    SHA1

    e5c5f3134fe29e60b591c87ea85951f0aea36ee1

    SHA256

    de36e50194320a7d3ef1ace9bd34a875a8bd458b253c061979dd628e9bf49afd

    SHA512

    174e48f4fb2a7e7a0be1e16564f9ed2d0bbcc8b4af18cb89ad49cf42b1c3894c8f8e29ce673bc5d9bc8552f88d1d47294ee0e216402566a3f446f04aca24857a

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\BJCNBC62\enterprise[1].js
    Filesize

    974B

    MD5

    af2bee43df94fe1199040d3aabe8e083

    SHA1

    e49b31a366891b2b59ccda75d9c5342ff517155a

    SHA256

    32b2b25fb2aeedd3d10f5e851c224a4ce0cd0ae69976db30ddd4ca9ec823d6cd

    SHA512

    8120e2ed5a2edc94b7197b64e89202568685c9b90d9198b7b35a4f09417ab13206cc025449a3035610dc5086e1fd6935ee8519d93433136ee385068ab9f961a9

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\BJCNBC62\hd-js[1].js
    Filesize

    23KB

    MD5

    6761faa022e0371e84e74a5916ebaa44

    SHA1

    5320c3d53d5447bad2a02c63208deca7fb94b655

    SHA256

    da17fb5b54c0fcd77c7358ff274823cb6a02ba0c4b6fcdf347c1ef611818bd9e

    SHA512

    a8cdba92942f299b648e87109d193a1f7eeb8f243eb2bbe4224423b512c400fccf930d81cd403a925fdf99220fdffcf89da69305cdc054963a64da470072d019

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\BJCNBC62\intlTelInput[1].js
    Filesize

    41KB

    MD5

    0131b7c96ef8eda32ab47aba87d481bf

    SHA1

    0e5cd24a4797f3d3649254bb1e7ab1d22b7718c1

    SHA256

    1aafcc8aa40051234444fd47d973660991991d492048adafa92610c410418f83

    SHA512

    e5fa133d8c4b8da05b739057bdae7ee154b18fd5e317a21c50ca9aded6b3713fd534c919200b55930c1d37537a6c0a20be47bd62a947125b348e6bf97c4b0b9d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\BJCNBC62\style[1].css
    Filesize

    92KB

    MD5

    72031ee478461d2627be7c82c98ae793

    SHA1

    59a568847bcb53d1768d26a826097daf9c0aef12

    SHA256

    a0599d9d2ed8dd7f87739fce8c3c181075149a3a23f49d2c8af646811d7e6ed9

    SHA512

    f0a2d89044f4c97b7c37d627b7465d6762628f4cbe652a5c161c61b8878e46a52308e4a2c0327e092d9f1f2885f57937c9143d05520edf293a260417e12a6991

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\BJCNBC62\zyw6mds[1].css
    Filesize

    1KB

    MD5

    4c2e266587bb622926747856f9bdb65d

    SHA1

    16999e0d2a01b96b70a0ef191461388c5047f1ed

    SHA256

    cfddcd1ab28963d8219ef42d0b455b1e062521bfe7b100d4c47e0b9dd0a79023

    SHA512

    c9526cd6537aa068b48641fd2dfb93843fc5f535faa4cd856d4d3427c8f1e97d79c969215a9291fd50a96597c43dba3c45a3fe2ad32c78677e38f93dbfc32ca0

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\NSWVVUXL\common[1].js
    Filesize

    8KB

    MD5

    56b21f24437bfc88afae189f4c9a40ff

    SHA1

    a9d3acad3d4c35da454e4a654bdd38f8d2c4e9d0

    SHA256

    cfece1b609f896c5cd5e6dbe86be3ba30a444426a139aec7490305ebf4753ed4

    SHA512

    53d4718e60a47526be027c7829f9ad48f381e22765790f20db35ff646bd994f8085b12b8fbeefd5b29ecda8f71f4c6c62b64652bc9a7256e001b5e4047c21651

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\NSWVVUXL\favicon[1].ico
    Filesize

    1KB

    MD5

    0106d4fd24f36c561cf3e33bea3973e4

    SHA1

    84572f2157c0ac8bacc38b563069b223f93cb23c

    SHA256

    5a6c5f7923c7b5ba984f3c4b79b5c3005f3c2f1347a84a6a7b3c16ffbf11777d

    SHA512

    57b77c5d345eca415257e708a52a96e71d3ddf4a781c1f60e8ba175ea0c60b1d74749cd3fa2e33f56642ce42b7221f16491cf666dc4e795ecc6d1fbfdb54ab98

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\NSWVVUXL\jquery.fancybox.min[1].css
    Filesize

    12KB

    MD5

    a2d42584292f64c5827e8b67b1b38726

    SHA1

    1be9b79be02a1cfc5d96c4a5e0feb8f472babd95

    SHA256

    5736e3eec0c34bfc288854b7b8d2a8f1e22e9e2e7dae3c8d1ad5dfb2d4734ad0

    SHA512

    1fd8eb6628a8a5476c2e983de00df7dc47ee9a0501a4ef4c75bc52b5d7884e8f8a10831a35f1cdbf0ca38c325bf8444f6914ba0e9c9194a6ef3d46ac348b51cb

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\NSWVVUXL\js[1].js
    Filesize

    84KB

    MD5

    06aa068a399b0788ed067a60d42d7e2c

    SHA1

    430060a594ee46f14b7e8440b9f32499e50597b8

    SHA256

    84b4883eeb866ce223166a3bf431a243bb9a070478054c6af3230edb47ab12e0

    SHA512

    3fc194410fdedf2f73ec72064d6584dea379a0737a23bbcb0e04bc594fb4d47090edeaf1ae389bd8d0b1f817c31aa97a577fab6440fc30593c9ae5a4a2e69cc6

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\QSO8CY24\banner[1].js
    Filesize

    62KB

    MD5

    b2661005ff78da597b5f57425e2acd80

    SHA1

    a52654a2828f287c0d0c3c1b958601dcd2db88a8

    SHA256

    970ab9e5f1bbe9bae34a6a9990fb95480d60675d830dd768b7aa874d32cee40a

    SHA512

    181e6813e01d206351b299a64b633fdf36119ae476b944cb17400481ba1c54d119968291fcb5f34a477471044679e9382bee83391f840909fbb08eb083c695bd

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\QSO8CY24\css[1].css
    Filesize

    530B

    MD5

    0a127ad39a8ebe4207492293b556adf6

    SHA1

    17d3dad64e4f9139cfb85bbcca6659a8aa532a48

    SHA256

    c1294965425b5028a83bbe5eeed0cd9b92733ec41efd07e34532522d4c97b6e1

    SHA512

    5aa845c5c6c20259d9c6bc0c9fdbd13ff178ba4008865f7113387767db0ad39cd53c1d276cfa4997186fd39f21d30bf00caf8d092e5c04119d992368b1563df3

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\QSO8CY24\jquery.min[1].js
    Filesize

    71KB

    MD5

    70b062c5da33dc5b0a1324366aa64e6b

    SHA1

    c1429d2da67199e7b514584df715e9230f18e967

    SHA256

    df22f7f5efab23303a34ffa09a96da5b42c33343d29df6e583914aac07af2a46

    SHA512

    43248aec0295f0ce6a332b0ae2d6ac7b98590ada4e96bde45c23970baa2c814b3dd7fb3445c7af21ef1c14e98bd4beb5bd865c5a540234fdd1cc207ebb25a4d4

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\QSO8CY24\js[1].js
    Filesize

    78KB

    MD5

    d2b0800de8f3f8b7277b50fccc090f42

    SHA1

    39dc5f9f8ecd2624d1e5a4bd0be8142747c92efb

    SHA256

    4c2e75eb9aaa21cfe31967953bafdc2fa873b77a9eb4ec0181fa010dcd95fa9b

    SHA512

    1ba3efec8c64be913831816b2f4c06d303c75de4f6c040a823680fc384c6daf3ab9f78a3d15aec9f1d5087656a2ae6ba04510aa46f1ef7cf4f8e8d8380f2a25a

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\QSO8CY24\recaptcha__en[1].js
    Filesize

    180KB

    MD5

    ae03ea0a290b842d8368e4ae264b82f3

    SHA1

    f09d2ae6165854fbd76320db74a25d718f0da318

    SHA256

    ea3b278937ac9968fd549f9bb29e0e01f1127eaac18da5bd8d51374503a5fb1e

    SHA512

    fcfd3560081c7c924ad6f1cd0b00c9bd747a3353bcba37534f3593e19cb5ce3c403197c5b1e63dd784ed4533cee9e5bc3564041f756d10f73ab85a1c4c925599

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\QSO8CY24\responsive[1].css
    Filesize

    66KB

    MD5

    781608aaede6e759fe48d7967b0a6c53

    SHA1

    bc595134b15c604ec6d42dded9f6d167d94084ac

    SHA256

    7371dd376a195424e3df2ee7877a045a2d60c307b3b3a119789c7160b7c21b92

    SHA512

    0eadd4bd38115eee3db9c62508143e7b93b5ff5fc5f8f05489af21c6499ccfc9e741d4de740e75ab933a32de2a1ca5cce7777a60b015ba53e503196e75bd0c71

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\QSO8CY24\script[1].js
    Filesize

    9KB

    MD5

    defee0a43f53c0bd24b5420db2325418

    SHA1

    55e3fdbced6fb04f1a2a664209f6117110b206f3

    SHA256

    c1f8e55b298dc653477b557d4d9ef04951b3b8ba8362a836c54e2db10cda4d09

    SHA512

    33d1a6753a32ec06dcfc07637e9654af9321fe9fa2590efc70893eb58c8603505f2be69084fb2bcbf929218c4e7df9f7a8bc3f17a5b41ed38c4d8645296ebab5

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\QSO8CY24\script[2].js
    Filesize

    94KB

    MD5

    95e8ffa91ef91c1e68f9d647feebe119

    SHA1

    efbb044430afe01e2987f5f436ba0303c23e15c1

    SHA256

    693880fbbc65bb93b95798ce3559971dda0c635db8db33b3dd6d1d3d0414e6f5

    SHA512

    af3349e738142f141d4b6bea3aec0601dac3c3ceb40c38c6add87c1d7b0a54d4d9f9b4274e2e8215d81ba15803727a7751ba09295cbe86dbf1d42b9f0e61070d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\QSO8CY24\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\R977VUU4\hd-style[1].css
    Filesize

    36KB

    MD5

    e7ae0fcd873e942c583cbc0be10b36bb

    SHA1

    e87e118c228ba3d2b44292d967c2c2284032a560

    SHA256

    f671f659fcd63ee8c79380431c3fe3005702b0d374ba286d4dbbc68c7cbf3bd4

    SHA512

    c00feeaa2ea6acb0454269d44fd8eeca911a2af6737f470cb3a9f3f4031f8841d3ae096c801389e3cd873b0bd11b61356c33fbba553386e901df24996bb93e43

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\R977VUU4\p[1].css
    Filesize

    5B

    MD5

    83d24d4b43cc7eef2b61e66c95f3d158

    SHA1

    f0cafc285ee23bb6c28c5166f305493c4331c84d

    SHA256

    1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb

    SHA512

    e6e84563d3a55767f8e5f36c4e217a0768120d6e15ce4d01aa63d36af7ec8d20b600ce96dcc56de91ec7e55e83a8267baddd68b61447069b82abdb2e92c6acb6

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\R977VUU4\reboot.min[1].css
    Filesize

    3KB

    MD5

    51b8b71098eeed2c55a4534e48579a16

    SHA1

    2ec1922d2bfaf67bf3ffabe43a11e3bf481dc5d7

    SHA256

    bd78e3bcc569d029e7c709144e4038dede4d92a143e77bc46e4f15913769758b

    SHA512

    2597223e603e095bf405998aacd8585f85e66de8d992a9078951dd85f462217305e215b4828188bf7840368d8116ed8fb5d95f3bfab00240b4a8ddab71ac760d

    Download Submit