Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

1ff2965887...2.html

windows7-x64

1

1ff2965887...2.html

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    154s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 23:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1ff29658871a4f46b96b8b031929ae62.html

  • Size

    40KB

  • MD5

    1ff29658871a4f46b96b8b031929ae62

  • SHA1

    865482bd1c7c5e6cadc3a91738d532186613ac3f

  • SHA256

    9630369002e03aee43ed5b4d657916a96a5117696204d360a75d51fcf7f0e214

  • SHA512

    6501ec6a87c8b28ba3e5b9313654fcbc2fdca89bc8897e7f7fcaa8c1f5401d1b377fc4828ab9d72f679bad5e88ffd49bea8d6e4f902cca212d79b38e25931d94

  • SSDEEP

    768:E+WKsjU5DdYZTUXJ7NU7a87NfH1Myfq2TNUocoplTjR56zd1WC8RfqdXHKh4rF9T:ER5g5gIm1MRRoplTl56zTW3fqVHcO0+f

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1ff29658871a4f46b96b8b031929ae62.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1696
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1696 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1936

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d677f9604aa6becfa1421511601b7698

    SHA1

    cc0ea62eeecc35f0dea5d8e3751da5936a62c53e

    SHA256

    e92e3f33d199c7a3a18e18a1178996362d6123a579024089fb0fcdae74813568

    SHA512

    0464c1f4a1a0ed58492090eb1caad263b7f45d9a8b64b8f2d1deea46cbdb7b72cb5c4fb637dca29a3b31783c3c2e26df8e43df5dd82ba12c70ee736b09a326fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0e0c8c4bd7a8a7a02af80bd25e15bbb3

    SHA1

    292281efda334331b8073ab0949be5e8200fdfd0

    SHA256

    e92e2274f13f2d73eef3e3bffc5f138d87aa3953c73c50cb3c612e8933ee4056

    SHA512

    ee8966f5b944e252858b98911acaff2309f9de5eca5993f0e05ea8e43509ee874787dcbf6cf6c06c8a121d2d9690a0529c14a6bf6f70006295ceebbf9cf48e66

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6cdb06dfb32f9d81913bbfdc7c12f2b7

    SHA1

    edd2fb7bf79063d44bf28fa93256bfe988761943

    SHA256

    72f7a06c9fe3a7847f287a65c02e1962353d1b6c68903b57b5384ceb9e98a69a

    SHA512

    da869047541abde6e043eacac5305e5ba73ff40b27e5b9f4d187011804a98c7399320a4e45027af8d1f55f25763a3b4d3e29e627f7c3721e1d65fca9080e31ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ce531760715d58d905891b949cc3a2f2

    SHA1

    60482c860244fb31ec265e4c3caecab657e998a8

    SHA256

    77088bddef7e84d716ba276db9e8162db72bc7ee67213a6cf38c978e876c83d5

    SHA512

    1a7e740e6e5c7e544e7d70fbfd929ccec13324f2ba54639c203cefa08720bb89d4f1386bbedcf61b7b134e21692a48014c4f540da5402fed8510c712ee823ca2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    598c75557766f371739bd01a080d9352

    SHA1

    a170ffe03d0a812c4be9c0d18df5ee53c4760530

    SHA256

    c88ef7dd95fc471e28ada8d270dda6fcdd52f671878ae8cdbb960f367f771436

    SHA512

    d6ddceb8144e538b6343233213b62ea338b54eee79f0581268760b2f09b4574d5c775299e69db5e11ebd3942ceaa0b963ee111a9a532cb9992c69d4b3817bee9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e9c656e1a65210c0f933f464e39e91f2

    SHA1

    c8cb252cce87dae00c579f57d325d53cba965432

    SHA256

    3300d4fd75da0a39c19a8e1aca2faf496afc828dac4b174a44debe1ba4527de3

    SHA512

    ae9f6fd402d3ed6d00a2b60c02e8ac5a2a2507e2d8ee0fcfd7784d74a984fc858f87c98719d9ac799f534d82d6fe9af625d0245f85dbb94b4f797a428cd1233f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6f119e43aef6403158257bf733b82d19

    SHA1

    33be3e1f33c2fdc857178d781434515798a338bf

    SHA256

    b430ee0a12a3f1189255e401240cab399dd4de9b0b8d43b442851b368a8c9f23

    SHA512

    08df37070841e44039c2423432d011f6830014abf51164b91ac3c951124756ea214f97f989029675a50c121e2b7cb7ff6410d17a1849419c8939175fe50d3462

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5b38e973ab96b344f8472a395ca6be6e

    SHA1

    02042e27de3191013e9d11901238b16994562354

    SHA256

    ce5e13abecd8f4f0d23182767959b178966e6c3ca16ff56c373b4d530e8b4059

    SHA512

    c0425e9cec0d98b91b43e1407d6b6e98cf3e9d23dbe2bb618c5887ae84055d28bc3fe3ac617c41a325f4c1f7818d9cae0c97fc3cefea5906510b8fe467b63172

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3bafab6516b64f2ada060ddbeab2fa46

    SHA1

    d5b01a8222bd05205fa876b43740add63e49e8bd

    SHA256

    173c75de3f8b93f0dde1683894ae4b7bcdc398b4aacfe3f207f488a465b79b98

    SHA512

    0cd82db63e8c6182c1a8212b761b9b65f50996f3bc20f170426292b9968033c6e472d8f6ffa07396fd0abdef96e67a9a91620f4db0d386bbcf6df48325b56a62

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d8f0f3376618f569cf28a5fa2aea35d4

    SHA1

    1c84dc074bd3b8bf2cdc37ccd012ea648ffdffa4

    SHA256

    01542cdef7acea02eea9e8e69e524d9311f0a2f5c4c45dffbe15cd46f2a839ad

    SHA512

    6a130232f9c09413feda82c2a86e50396a466ff278604cbe2619945d56966b529ebe59d2e0f22ee35f7c686083deb0db0b57d83ca7f3648fa1ba49f630982285

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    33cb6fd537c453bd67300266db59898d

    SHA1

    ad8cd5a74b435439c030c8b5f748cddf3dee04cb

    SHA256

    fabe32b5a330bc741e16a0b7a22b5d68b45f1984dbdf2124d9a752ea68172d00

    SHA512

    211012abd1487335d1a83e7b821c76ba81488302f2c58fd0f4b931062fddcfe12fb1c49a0f0a1f34cb50bed7e6fd23cc0ed6881d562c294150648ddb85d1826c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    491207d9bceb1c888c16ef1b15947720

    SHA1

    f1f8de5a21a576eebfffef07376f42b00e6ba688

    SHA256

    d57c6ea7ea31c166247a689c6c1f3912c28756968aa16c7d6137c7d80e3bddc9

    SHA512

    ed266dfc20293dd876f8ef924635463c8471d255f023da1eb6b911d26fd60f09e4879ef763723e1c77fd3fa1890151387952d7c1558d1f8fe437910cee15ce61

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a8056b43955c5687e63076eb52c1a0b8

    SHA1

    6632861bf0d175b36b2d12b734d5bec6b0ebdbfe

    SHA256

    e8cfd5706b7eb9cb2de32f972ee083f3a6a915d81d0473e954de6ee0aa915452

    SHA512

    60544a6cdfc0ceaeaae9b3a24dc8a151714650a5af6ab540dfc56b3205d366199db6521b7fd503b36ca0a3b684a06917952ecfc992d2c461e6ba8c4df0b93711

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fb6fb162dd4cf7278c1cfaf4384d50c7

    SHA1

    9ed777c88baf304ca553db83cc4b44e7ec6dd61e

    SHA256

    97558bd1825bf1d0e2dd74e0995d9690b964b48769fe6f30dbca41a1a6487f02

    SHA512

    0f0924ca4878ae3879a4fbaaf0511bea8ece6007611339b40787c0bbc2c4ff356c81c8748cea4cae3dc51aab8fcb9ea9c80cf79bcde4040c990f368fa4619852

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2d618aa0e6a91497d3cee58bfdfff882

    SHA1

    3aaa01e8fd1386a50690ac7a7022ebbdfe3666a8

    SHA256

    bad97765b4fe4a60df4136c7f8f2d448d2777e550c566698e6bd16d8230bdfbf

    SHA512

    1a85e05a600c96df8bd7d1f6fddcff2188457a0eae42dde9fa8665b0dc593177f9b0f9967d855b3d152d1f880ee77d8d648a1c1f414edc52249bc8e260ac520a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3eab46e37b7eb8dfa1f387536b000f14

    SHA1

    9e56d8e924f3daaef9aa50f48aadc8dceb7805f1

    SHA256

    d4d1f3ceaad18bd41c2686ea62fbb6f50a7ed4783943b8accf593da92f55cee7

    SHA512

    6d1f9253a98dbd994fe1b85963ad26b55f0378ac18f7e280c36514682cb70d79e410e1758b31dbe7c38bf86b00aa080b00927e84da0bc6c0ac2fae6a5ff421be

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U1J1BPYJ\cb=gapi[3].js
    Filesize

    133KB

    MD5

    288c5ba5b7001fe841c32f690f62cc93

    SHA1

    29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

    SHA256

    c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

    SHA512

    e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YV6H14B0\plusone[1].js
    Filesize

    56KB

    MD5

    1944af3661da46249991197817b6cd8b

    SHA1

    f952df40ec79fafc7c798f37aff92878977376ed

    SHA256

    63326a1c4e0eddd3501f0a064b06a2708eb0362f3ae934f53145978d3d0799b5

    SHA512

    0bef19b32be337cfba179ed9ce4533a207cfe645d2e5fe0da9fadc7b01c72704fc89749670d1ac48b8d494675bc62ac089fdc4d8495979226f10828225594376

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA0B4.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA421.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit