Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

610c75928c...b.html

windows7-x64

1

610c75928c...b.html

windows10-2004-x64

1

Analysis

  • max time kernel
    138s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    26/12/2023, 08:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    610c75928c6e80d03b53ea3a0c3b036b.html

  • Size

    53KB

  • MD5

    610c75928c6e80d03b53ea3a0c3b036b

  • SHA1

    40bf39b4d2038ed4192158bcc2c70c0fa3fb56cb

  • SHA256

    e7741a53cd5870bd50897810fdd096bcbf7963ef079d621745b26e84256566b2

  • SHA512

    8c699cf8915c6e1ad6845daa12a24d0b92810494320ae9903e1e7f47c8aadf9da4ffd6efdef54e3b41b3f18ccf9276921a64263e64e9b9f444c2767653b1888a

  • SSDEEP

    1536:CkgUiIakTqGivi+PyUarunlYC63Nj+q5VyvR0w2AzTICbbfoz/t9M/dNwIUTDmDl:CkgUiIakTqGivi+PyUarunlYC63Nj+qq

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\610c75928c6e80d03b53ea3a0c3b036b.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2736
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2736 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2436

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    45f677a49ab3363e506d343b834b616d

    SHA1

    5b125871a72efd57094a6e249bc1e35b1cabe8e8

    SHA256

    ef591105f998153df67b8a5e74e907766711e6d9db6eee8c5951b17adc7772c2

    SHA512

    961e2ba600b87b1824ac0e50ef3cfcc0b4cb93648ad562d9248dbd5b4a8cee270c18e31a5f10702185d1aa44aea04c109cd56c3e893bceacf0ed032d3ef5db5e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e8c01fad98b26c5e8616f5350eb2f342

    SHA1

    58f1d13f77de6dbe3033312bdbbc169e30686829

    SHA256

    60712d631b2fb8ec931579f405734097c1c1ef2a58b8bd6b2285d794f28b8740

    SHA512

    fa175db076017f7590e0650a9b2f9962950517faf1a9f4b7427f9f1c68dc3fe73b6b0356798e3ad0a0d6ed6ecadca3baa90cb0edb8852891fdea96b0ea4e32be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    516a79eec6a8fc4ff42cf5d50ba2768c

    SHA1

    673b7945ba8ec50e827b7173bf3fe9c46434fb65

    SHA256

    15d0c3ffa35b8b456a009c787a0e83d7ea34a53b77049abec87a52d53a9d165c

    SHA512

    7ebfc2497c5386363a860deeb8fe0b1785ec2bfc083a8d6f117ec75c3a7d8ad63b1c5dd44a467ff30aad105949b4e51107425ae23b6a87eca0e1daf2104fd3bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    337e1cef19318af3319222e6818e0aca

    SHA1

    5a90b2d73ac624ad7f63ec5fd9587ccd6f10c3f4

    SHA256

    2a345552734ae779cad8e20058b9e605fcd78bc1a6be3dc5a66117a2020f8497

    SHA512

    ff8113b74fee33839b2179513f4f191feaefc209a277146f91c99d78d8f29b7967491fe7d496048863f2e10f29774ceefd94fc85736cef5798faadd2275230be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    af1fa7f23f72b5cc869256dcfe5e1585

    SHA1

    ba8fa66d3f3310b8e330e20a9f6bd297ba02039f

    SHA256

    5cb3c3d5c132cfa7ea17b596a85fd7effe3f0793231de72e1dc8c330c0e9ce13

    SHA512

    1973c609ece2b1a21530c8f30bf5c8d1addb99ae6b5ae55e5127bb9edc7c2e6a61cefd95c05b863eb75b3a344d01589c16d37f93c39aa1697210b1ab5b9df0ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    04632bbd1c85575c39dda7f615383041

    SHA1

    a8dd8f851e01662d20fb85ac9faa958cd0d6419a

    SHA256

    4df676330352b6671035d571c2e2281cea5490037e8cc308e86b8c77a90df14f

    SHA512

    f7629f5cd738ca93d83fbef8be56e0191dbc41e964fc6ce12c61c2374936e5f7953c0bb56ef8d24dc7519b8137b920e62f97e6161453a94fa9c3c76620e4430e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    40d0eb25de6bc8b5e894467977bbcb3d

    SHA1

    a38c8e6d6f7edbe207bf50d8bb09d2778e5350bc

    SHA256

    caeadcc6c4b76947d18cbcff79982c6a3552e905415bac807f254ce35d03e1d7

    SHA512

    d658d2d7cf5efbdae9c4564bc0f78529d4b66753dbce8ce2d4c1220bfe33d35ef14cee76c541838b8d31fb433d7af454185ef9b626cb6bccc84faac27f717aa0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    daff7d8d525e33d581739b5c67a136f4

    SHA1

    d526d4e90843cf40c79f45ace92856f7bc12b443

    SHA256

    e38c4e7d8de99e73a2a28bd3c41e4df84ee8fed18f7903b9b1ef822eca510191

    SHA512

    e5ee647d63f7bf21a8c49e5df86c81aa2bafcb782b353a2c38f4abd41df29f28f06867805367b39d0147cd5dd6f6ba67c1f9da25750f920d5e57249dfe6e93a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4cf00ef859ad259bc2536fbd7296e785

    SHA1

    3c89bb058302ec97524a268077916732965b21d2

    SHA256

    2c5bde6fbde189742520fa98e2e80e0fc59c25cf02e0fd869535c2b4c7467668

    SHA512

    bfcd9b9eb3bd8f57ec6604c232ad3048337f81253e007898e5b2eaa3896850412a224bc4f4e139971680c42e0e8f39a8f15cd2989004820999f2eac6cf9ebb06

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1c1458464ded7cf8e639aa5f2c3e2ebe

    SHA1

    ba5af73a39ec7fff4671b9311b6daa9fde69d87d

    SHA256

    d3df79392c6424bf83f2a33dcac628c7f6c01136b40fc167a347b9a3260bfa70

    SHA512

    bab06b33407c899cd586e650ed0345fd1ad59badf936311aec12f6cd565cb4f4dd82ee1dc61469eafd1a59e0c75127f46b3660e276146402760cda1000f0ec60

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    05c6e18ee3cec41b320957a852550cd7

    SHA1

    573fd9f9e8f17035ba6429c04519ba89e208f2d6

    SHA256

    3e32b9f2b7bc9351b3bd6e338de5758ea350048d87668b015f21a6a98036bf6e

    SHA512

    0160c844a7545fd8c23082a99ad020a4cf32cd36a49626602be8769624fca3a23183722bbd7c764d917bb7b5d0a40d35e9bbcad742998bb770aadab13b8c18a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XXB6CUXJ\wt-logo[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4FDB.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit