Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

0d1d8f1550...e.html

windows7-x64

1

0d1d8f1550...e.html

windows10-2004-x64

1

Analysis

  • max time kernel
    137s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 03:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0d1d8f15509b28a5b0574909160e82fe.html

  • Size

    123KB

  • MD5

    0d1d8f15509b28a5b0574909160e82fe

  • SHA1

    5e84f55ac1e5164a965b8f170488c4cd2f25b607

  • SHA256

    a45d5ba6e646c258fcc1db6e9b938c3e9f16400b2d74597ea0fcbf38178862cb

  • SHA512

    c0457d59d2c840b6eaae35536b1e5756a884b598ed12ed7b108a38060118b1c534ab97efa6adb346e620ce7de1e1db9abb4e492ac12f7e13689afe0bc2543842

  • SSDEEP

    1536:S0K1DpMyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9w:S0K1eyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0d1d8f15509b28a5b0574909160e82fe.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2020
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2020 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2000

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4f7c301cb0fabe58cbc566d455ba0f4e

    SHA1

    fdf6ec9518e29b95e3ecf057628737275d343028

    SHA256

    1b312a3bbc17f6c8b909c9e20cc2128fa59d68651a44f4338c2c4f5a36216b6a

    SHA512

    3dcbc9502d61ba1310beaa6bdf34a02a3a1f383acf226399fe61d57c545cb0eeea487bd3b5af7cc330f017677330cd138c9152d8af5ea8b6506e2371786d31d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2d3de8caa7943cd9eb4ab97cbca785fb

    SHA1

    ab11df23517f0adb3a89791d9b98986dc1fb816f

    SHA256

    0e7293dd4bcd2e7d6fdb6d33fd87c8dd7c0e3f975f4e1dbddd725112d12e316b

    SHA512

    5ca76a60c2ec02ba4ecd527c4583dd5cd65eb4c73b3c42cae2c74558e1f3e0600c13e3850638fddeed3ca8b2853b6901f263ffb45299280843a905339825efe9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9ed358db68571763a9f46c38c989fc42

    SHA1

    c06dafd48c7df90123dfa27e9117e66e1b1ad9ef

    SHA256

    5ac5edec7c4bee97fb1e182142327eb0327c22e311896e82d6d6a02bf4bac3e3

    SHA512

    dc167c419f01b182f92296e1bdc3bad297767fbab822244b4dd32d57aff0f7f2f74024a0c19e59dce15a4269cdf3422174a65275f092d7e72e46d43b2462d689

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d44004bd7a35ed698a4ede96f6078e05

    SHA1

    bf21c223f0b5d0e296b8fef73161eab86c7adf22

    SHA256

    075396cf73619ff8a5f6be21ec008d27b25f275bc5590a7bcea51c56dfc83ed5

    SHA512

    7f3d2c4039cf9477e010727b811a5bcee8242b4c8344cc40dd8096e07e968b9ab1588b77edfd1681a380c7964e3f8df7210c2acb137529b71407815e75553b02

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5d638d4a5518c90352bc4753fad98475

    SHA1

    b1b3a53a9037f2ab63a60d9c8f10efa7d1af0f0b

    SHA256

    f5ab793f11d34186e5f226748b5c4adcccfe578c713c9329620023aca492d04f

    SHA512

    28ebecc70a284afd13c2f18e376d29b1b1ce15ce6cf5699b03662cfa035040acb0dd500e1197cd5849fd118c582adc64652d9405ee65be8d68e78ffaf818ac86

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b481a24ba535e942e62f2b374ad803fd

    SHA1

    9c93a66e9cb29b5a5496ff12fb1304dcfae4f67b

    SHA256

    a27ce36eb61a2aac387f0d75874f18b5b9c105810c3f97cad8d4f5545ad69252

    SHA512

    3b47f50a646fd2cce3281074df003bb10f1b2873b7d697600ed7d86a18e9653759881a41be62eaf199f5ecbb797ded1059a3934eb52b50b527724e564e79c7db

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA30.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarEC5.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit