Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

66d98649bc...d.html

windows7-x64

1

66d98649bc...d.html

windows10-2004-x64

1

Analysis

  • max time kernel
    137s
  • max time network
    159s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26/12/2023, 10:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    66d98649bc5eeed182f2319be025abdd.html

  • Size

    12KB

  • MD5

    66d98649bc5eeed182f2319be025abdd

  • SHA1

    c422663499459f9b20f338d9f979398a6b44e412

  • SHA256

    f4adf01aaa44fab80fb1642c2b0bd2103de12faa70da7c19a2805f2e5964a3e2

  • SHA512

    ae1fb737ce91fce4e5af0160fff2f75f326af4ac90cb42fc427d38f2ae5b634d7ee3811514650253394363aa03bf61ee156f2737aa623fa9afc7df2636832b6e

  • SSDEEP

    192:mrTvgo1UDgQavB2zdL1nnaNS8OpL+hn+L65m7N6LqzkiBlTzYUBl5tZBlaBljkME:mfgoEgQs6BTBpL+hn+n7Nj1Bv5oVkME

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\66d98649bc5eeed182f2319be025abdd.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1736
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1736 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2116

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\E87CE99F124623F95572A696C80EFCAF_9E9C5BD522DEAFF0AF9BF0B0877DDF33
    Filesize

    472B

    MD5

    079258837295192fbd36b2d727ac41fa

    SHA1

    8b25f32e6baad41892d6b252bec32824c7b486fd

    SHA256

    f3a9118dee303e3bd16aa6b86444b5f89cba0c1940ae6494640cf4bbe3e4aea7

    SHA512

    91883689dc064ae6be981e2f506a604a1761054e20efb6502d3ba233b0640e804ce126c8525a66a74fdc65cef859f07e73e73ed185894cd595cba50be35d536c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8c6b5cbcde4f47b3aaa89e908385cf42

    SHA1

    5dd841d169a8339fdf5936f75ba26c0d9e3cb21d

    SHA256

    4f14d8c976c2476ab755dc9e7a4da56bbb527bdada7c5282b4a8dcf19af79470

    SHA512

    3c459c04e2a470205fa89a63fd44caaa4d16b320d622d3af2080090541764c0739897d89c42214c5e6c6802e2df0348d5da742f75b4366dcfb2f76bea29cd8d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4ef15a034d11b5a0a97e3a74e1f97df9

    SHA1

    fcaa41a7ff07d6beeadaa3bc064ce7dbd2dd2dc5

    SHA256

    36c67495a4b6124e1f0d7d7fcff93c2b74ff3dcd175fe3d965ee4458b9959cda

    SHA512

    d3570d5415a2875c1ac0e6f1aa5343da373f2ae412be36de1cc69bfc9929940feb9f6e5aa5150f2967cdc716d9beb527d64a7bcf8b69b1ebec2c7a9f214865d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8e98b0a55def013b105f9e32e588c292

    SHA1

    45d0118960a38cb96def89a9e76f1ce6cf40b6b1

    SHA256

    675b1892c1f4413ff92919bcd7fa1dcd2287e5566bd4a468408a1137fde0078c

    SHA512

    f5f3326a82229192a5fde84adc59f39de9772a5adf9ac6cea8adeb1317a90586d48efc4d076196dcd45c0a9d2c3193a9a329c0733d729ad44a478ff1f794bd06

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a334da9431b62747811f03a94c292e61

    SHA1

    5c9ba1e8a10cc0c4c1e5b6bea3fd7244e78d01e6

    SHA256

    f50936f4cda9f87fd58e324aa6ac1c0fc98fdc77aca610c5e9848c92e3e95c4f

    SHA512

    1de47a288fb8a773da8649c82fcaff7887f31e85b5191ffa6cae1a694ccd39fb5955d2a38a93102f6da59389d0e2441ff17ceaf6c3067820e47005841bc4ced7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2fdec6b327bd34dd3f8116c171d27955

    SHA1

    2d130aa9451c444f6730852daa481f9806a363a4

    SHA256

    bba0741ae82508416a73eb98b59a7a9799ed3156630d6b48fb0241fde5bc2c96

    SHA512

    5fc6bdbfeadd6883cfe7e3356f4503e7ce3bc8264ba1346b6ef9f165a0d3ad2ce72f7a90a0ec7fdca7ef08ae2bd31e21b102af0fe4fcf64798f60c13b89b5af3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7bd1b44f4d450257eb5b3888e237ced4

    SHA1

    141cef444998dce37aadc2a1d99e3ae8bfcd83f0

    SHA256

    e07bbf6be8b3969d31c1bddf3c0fda72d9fa2dbe3fefd144e57056554c91861a

    SHA512

    41b8158eeac7099803b3811e90140b235d3a181cc7799732cece82893b836a0f469ede0915a807e24a3796d7d0bd5b627df819f5b77e4b2a052a86f3a8ca8305

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f43fd0b6f0fc4a94d48a3877dc6082f2

    SHA1

    3b5697e589322a2c7f5bf411ed206d1e194ce732

    SHA256

    0736218744ebfa9ca08c5c6b6aac2657271f4132c74c0bf324153380553f0e94

    SHA512

    62efaab4062f0b31f980cffde228d6f4e678007c89433745194bcd59362db0c0963beeec7213a0acd1a3542639e0d3e4b43694eca0a087dbae9a21b93281fa37

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ef043cd47499afc318a0b29b2583e5bf

    SHA1

    35dfbe57b7385fef924922535305066f3ac5865c

    SHA256

    dffe84944386a42a142f1aa6f018fe832970294a75a11ecfe364fe21c50b49b7

    SHA512

    165821dabc0e0c6919b497fa0049ae213d80cd232e3894bd9c09d7edc1ddefeb4e5eb696b8d1baf5320d8d85eb66d6ab799288e858111174c3f9374050d110cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f97c58895f4a55ab470812a2df5cf227

    SHA1

    a0f5a965dff4ad659f4ae7a27787a8ec74da14b6

    SHA256

    8e2743141140aab994a38694ef45744fefef50bc5c8ef0459d6ac17568de49ca

    SHA512

    0267aec42628240706398c5e76854a281274b966b351b77c906fd564ad5eefea3dfc07887ccef27c3b6a56fdeac7ee25ccfaa2e7e3ac4a837df53378ddcd2b90

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3a483f00a6af525fb02d7cc8ed7475c2

    SHA1

    251f651182511c75f6b2c7b07749d680f3949ca3

    SHA256

    a6f7644541f5c84a78a6fe59e8238582e85df9273ea46d9a4e8fdb7782eacf51

    SHA512

    c3d5fcc1b857b7c6f5c7c025f19b1a39c3c5640f097d6d5cc561519f135a2c26350fde9b0f5dcf9da25cdb85b116a15a6d387f82f42c3fc135e40433742850d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    339461266f53569e2af2f59b946bc69b

    SHA1

    52896470dd16efc621346d4f969e9719ba3c8218

    SHA256

    7a8598769402bf7d16d1a1a9f1a79195b202b63c17d025ea6283a294d00895fc

    SHA512

    eac26e7d307c6261c3dde7e6a74745647414da5308f2eaaf461f836029d55af0215a158b7ccc34e95e5563d35e1b3fdcfe9af5d74c240040b7803750d91c5fc2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    87d44b1d8ac6b10e8b60a1bf258b1013

    SHA1

    4793e47b651f66c0ff0325233c1d3e951d65e1a9

    SHA256

    7f8bdde91d44049550e63af420422157f93e895123d4e9315cadedf030096a2d

    SHA512

    b552d48a168cea1595b612603b5d8d2585b02037e366549dc20ea86442a68bbbbbfbc19ff51dc97fcc92f3fa45b72164f123eb57dcfe33a1cac6918c128349b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    392B

    MD5

    ce12a4008ed52af1dbc83d0240b1ff43

    SHA1

    a087c62bcabca40652e823df1ba6b4484cb11a6d

    SHA256

    c66ea33963e1d4f53a7ad1d7f82150393a51b30798cf8e6c51447238bf2b0912

    SHA512

    6153ca1308762366f2b2975dab6acd9a7f5e58278b0424f5294e983b173b19769d75809ba4c4687d4fd2794aac4d768df46f8bb9901bb172d6fe4fbecd1acda9

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\KCT66VZJ\regbu[1].xml
    Filesize

    14KB

    MD5

    2cc720bb88efd91e5caf04e9dce75c47

    SHA1

    052487a858b7e1c0b59f447a2ee99890be1f321e

    SHA256

    b8a2ddb8232fa91311428f97f9da1f4cfc8e4cb4a22cb4d2d7c9a223dd15fa13

    SHA512

    d12aa84aa6e4287b7560da5ea9f21a5fcfd698367738735e313e28be73c5c673bcca854609340f75bdf23a6b0dc9773c83119e2f1989c048b50b304f69a0eb12

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\wz5r4lq\imagestore.dat
    Filesize

    4KB

    MD5

    2339c03e780635a480267c10aefdd726

    SHA1

    6e5bd69f533252d5c0bb245e1a3ad296cd835494

    SHA256

    62663d6571123528bde5011096c6e8ab7915a2654d9fddfa844283249c92047f

    SHA512

    87f87826e83bee92e2254e340bbc91dd11881aa01751fec847cc67dee8c9d7c7ab1db2f0cdf05a0de94edca5120b6b9eb67b294789e9277a6798cc28568086bf

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JGM5U0T3\f[1].txt
    Filesize

    174KB

    MD5

    1e853805731ad2441279616e46acc22b

    SHA1

    32e56d54f3cae1551c07df5fca522442dd81b111

    SHA256

    48e752a8e8f0581d090197758e149771ea46e19783e15786c5deec0bdc67f53d

    SHA512

    248a79d8e78e0f3600bf01e99d6a7d16d883f8f9b5e8df9e9ffe2b8defa162f1eaad9fab71b178265bfd2087f8d6b5deef183f0ec9db582d55908e1474a5c7c9

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SP6DRJYJ\w-logo-blue-white-bg[1].png
    Filesize

    4KB

    MD5

    000bf649cc8f6bf27cfb04d1bcdcd3c7

    SHA1

    d73d2f6d74ec6cdcbae07955592962e77d8ae814

    SHA256

    6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0

    SHA512

    73d2ea5ffc572c1ae73f37f8f0ff25e945afee8e077b6ee42ce969e575cdc2d8444f90848ea1cb4d1c9ee4bd725aee2b4576afc25f17d7295a90e1cbfe6edfd5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3738.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar376A.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit