Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

1696409ff5...1.html

windows7-x64

1

1696409ff5...1.html

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    186s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 10:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1696409ff5d130088b49c31a4fe2d7b1.html

  • Size

    61KB

  • MD5

    1696409ff5d130088b49c31a4fe2d7b1

  • SHA1

    07351e4d1e111c5ffd4cbc0987ebe6fef40f6108

  • SHA256

    38e4bd3b013837f1436fe8def35aaa01521e70aef0d2ec0aa686cb304a43f0df

  • SHA512

    6cdf832b6d71109bc55ff08bf53504685a118779dafa0c7098b67942cc594f06b8016352eddbcb5bc670411e4919fcef678f361f618e54c50044715063030128

  • SSDEEP

    1536:/6S1gGkNO81ydRoblTVCCoOy+6fvvQFTnLUitQL:ySlHoblTVCCoOy3v4FTnLUitQL

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1696409ff5d130088b49c31a4fe2d7b1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2632
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2632 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2628

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    2aef979b942ec6a79cac9ebd5e6790f0

    SHA1

    8b2fe73d5771e4fee20f5d7e8562923f39480095

    SHA256

    d6932f1c5e810ac10f67576f79996c969e1bfd2dbd2e2f3bc3a87d9d30d7f1a9

    SHA512

    6f949dd59b00ca7f10aaa24d8f6535ee28d4a5d0ead2a4d7f57ed79a8f6daa20bd2f69087322808b5577d8545aa373ba610aa71602fc45ad856d2d0956cbe862

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a21da987537f8d55e08f4aaa9b3eb6bb

    SHA1

    7640b9b8fd28a5509cf265bb111aab40e0cf7d4c

    SHA256

    88b90fcbca6a6cf5f0e65fa5b675a163dfc3532f88828278ca7966dd8a757022

    SHA512

    eb7800ae54815ad395f6d0e947988c2ed913833c0c75c66f1a6cb889e69e476b29bab8eafb1fb6b9ccad553b5efdbbfb1e0963bd991dea641408e9f03e017b33

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f7dedd6337705795b1ce436df2ea0ea2

    SHA1

    8fea453acc637b2dc57a6a9f9dead454b7a42572

    SHA256

    8dc3d0b4291fe7a8531b5e72b0cffd115cfc301ca81bb4cdf661b81dc11f6ed0

    SHA512

    26ca30bd8495a167980857de85559bb550d19386cd1f9832c4e978cbf7a0af2ed0c788c61ae89ff1701216b1a4ca36e1f621496ef4189c29571d75ada62fa1a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    62ac8df29332f199fd98363797ee4ab8

    SHA1

    9c5f16a9449701c3ba3bc776f9188efa9f453d26

    SHA256

    6eee18970bdb75380385722b278c4fdde9240ba337990014af9c8889a18d845a

    SHA512

    35a8db4c62d1eab6301003b5177a7b4c74266c10b4381f462f4e9b5d0949cdc674b1dfdd872ca9faabf607857d061e8af3ae51e7769566de3d501d6555356ef4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8e29b03acc709d087cd624a22bdb6b31

    SHA1

    e1b79961e6d2df1f5a0b0bd8469b110248f510e3

    SHA256

    ff92ab9cec34430c7f68b77a5d4fd87b8e9da783671df92e8178c678582ee9ec

    SHA512

    35820b70e0124068d1d36890e72cc97c662b0e1428390bd6111ba8afdd5097577580e4d032e66d6f4489b145c6116f38cb0f56e880effa5427d86d30ba6e63f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    897e6d8b0befd6e9f5094d74e9661989

    SHA1

    f3ed67d6c34d369144e9319941ece1f82038335e

    SHA256

    59e8301d363a9dbdd3a17fdb99417273b3771e157e1c852a94e83cfb0b4c65b0

    SHA512

    6ba99c4092a49cdb4bdf279e7f87f118c553cd6ce78db9518c78badc5e3f9e2c9aebf3bdce834b834309c3a95ef5d594056aaba3981c44ee1de2bc6d1b099688

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8cd6e8880bed660c5ae6f52eb8b59648

    SHA1

    8284525f761bb936408e0ec4d0d841f83829f784

    SHA256

    3f54766cb3c868539cf5b678bbfb22c731eb45e7589c186dd415103041aadea3

    SHA512

    c5fc3c491573ee4f52c1c9cfd0893cbcc21ca74a6f30f02ce862460f4a761da6dfdeeea2711086b73ffe7401fed7615596124bfd074d082b5905b86b8190dbab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4ac3c0bdd3039cd80b59752578d11652

    SHA1

    d9ec76399c6f8d73f373113d1c4eae73ada3686a

    SHA256

    4801c0dd491611ee1a4b8c07a4af970ad54b1bff011b4c3764bbbe86859eac74

    SHA512

    9a5fba2e4727938218da7aa7da4045adeeb4c4d749808eba48c2a4b518771dc863f69b71713ed154c38e1f72da934fc200e0f309ddfff54c64bd5f8ba46add58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a91b8719a45857478d8256d011f15beb

    SHA1

    c37404357b1cfb47a3cc77a899a90ab42b7a2898

    SHA256

    3ed8ef914fb6554d96fb1366c1e1ab40075bfa58369c1cf7726d6a170567dcef

    SHA512

    ca6afcc423bb3100bf0a21acf2fff9bbce4896e3e8fd02a25ec3c2a371c6d74710957ea33863d0a1badb036ff4964469d2529cf96e71043918d299aab4e6e2ac

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CFHPCFFP\cb=gapi[2].js
    Filesize

    133KB

    MD5

    288c5ba5b7001fe841c32f690f62cc93

    SHA1

    29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

    SHA256

    c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

    SHA512

    e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CTTGCPI6\plusone[1].js
    Filesize

    56KB

    MD5

    1944af3661da46249991197817b6cd8b

    SHA1

    f952df40ec79fafc7c798f37aff92878977376ed

    SHA256

    63326a1c4e0eddd3501f0a064b06a2708eb0362f3ae934f53145978d3d0799b5

    SHA512

    0bef19b32be337cfba179ed9ce4533a207cfe645d2e5fe0da9fadc7b01c72704fc89749670d1ac48b8d494675bc62ac089fdc4d8495979226f10828225594376

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA0F2.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA7D7.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit