Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

1

182a482df7...b.html

windows7-x64

6

182a482df7...b.html

windows10-2004-x64

6

Analysis

  • max time kernel
    150s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 12:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    182a482df7900f41997893da3b86e8bb.html

  • Size

    170KB

  • MD5

    182a482df7900f41997893da3b86e8bb

  • SHA1

    fd3192c83062a7fac1f9c2215f1193c5415b88db

  • SHA256

    9a0735858024e47cf77fe98fb4acd3c4fbe2fe3e01c2c7e68cd2a7297b1d0b1d

  • SHA512

    5a5168e9db03f1b0e575f2b61b47e669642b48469ed8ed3387e18a0500f61c2981f2d539e04f92a02629ad1fe0468c61657482db40a026c91574747803344362

  • SSDEEP

    3072:ZGuGuGADrR37RQWV/lnyK6CV5a7Sdm34W1LDiI6Fovv+P/ue57bAUSzZFKl:dD51/lnyK6CV51ue5D

Score
6/10

Malware Config

Signatures

  • Legitimate hosting services abused for malware hosting/C2 1 TTPs
  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\182a482df7900f41997893da3b86e8bb.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2892
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2892 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1948

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    ccfcddc5783df222be32334d1e05090e

    SHA1

    fe2c3224c7592c6dbc3e3b96ca06052cc782f4f5

    SHA256

    6a122ad36040054639cfdf034849cd5bdd95f20abb48a81c0b75802784a3adf0

    SHA512

    5748eada6302b4c163067adab7a63164b593c26a45d58e43216e73f99709df68a264267ce22a23a5a3a376e8ef3b3cfe0eb27b4b5d160e45575e1abf6dd2b335

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\4A9377E7E528F7E56B69A81C500ABC24
    Filesize

    889B

    MD5

    3e455215095192e1b75d379fb187298a

    SHA1

    b1bc968bd4f49d622aa89a81f2150152a41d829c

    SHA256

    ebd41040e4bb3ec742c9e381d31ef2a41a48b6685c96e7cef3c1df6cd4331c99

    SHA512

    54ba004d5435e8b10531431c392ed99776120d363808137de7eb59030463f863cadd02bdf918f596b6d20964b31725c2363cd7601799caa9360a1c36fe819fbd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    7a4fdf4cc845f8d94d1f1a50fcd48371

    SHA1

    d69ad0800e43f334a17523440cd470f32d7a597b

    SHA256

    879c1ca2bbe8e68097d65dcebf52a9de7c8f47a3895049b1fb7ba5421484a650

    SHA512

    ccf889b98ab0cf9377860820e842ee09eba6064a9cbe62b19e84800e2ba75deddf1374082e8463860c64efc07ce7569cdb6088848640cf9a2f2bb323522d49bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    aaa9e67d8d7a1dae2523d90677463db3

    SHA1

    195eff5b502850cf6434e4081a1eba69d6f5547e

    SHA256

    196799ad4406a7392927e50213b5ccd8f8bbbf4c36d0f52ec5d119d13ac8be00

    SHA512

    1876f5cdc6a8688d2d9d7586a1f503b90951c913530d5ac67b35650880904c8def640c84d234054205f15137c4755446d124663edad66330b8866ee39bc0a625

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\4A9377E7E528F7E56B69A81C500ABC24
    Filesize

    176B

    MD5

    b3837a53220a55b2e666dffe1676c2d2

    SHA1

    63de982ab07d30a2a0bb5d21fd1d68eb11d564f6

    SHA256

    99cf06381755220badda647ecf956d10047c4908e48d4bb3f30afa7671bb2609

    SHA512

    b8d13f9474ee2065a6333f65f05d1022c015279fdb1c6bdd5c865d72f583336054ecabbecb5b6b78570b1dc1fab9201f0cf10d3fb62e4b77a5bdc56929dacbac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3dc17791d449289b97fce16a76c32825

    SHA1

    b6e9b626a2999b54258ddd9b6fdc7483c66ec74f

    SHA256

    823488765264921cc2d141cec55e8f0cf1819677c66642222bcb422706f3478b

    SHA512

    551b282e128aa598c3a8c3d306a4d20781e7bbe2ccce29ea2975082587e2353f34ed99e1a9bbb66328b5aa7ab3916ca93c75dd4132ed4f102de28e4e03c7e80b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1927a8576214d329d7d97d136611090e

    SHA1

    1ea748d45427cf7f335614f9fbc0371e7f6792f1

    SHA256

    481aaec073c10644270a99d034fc1dd03335c147f7ce691715e69205b7ebc3d5

    SHA512

    eba0dccb41c10242e7afb82f406f866f52c3afbd961c4b915c8c73035ac522a5efbf4a50923ba8759ee479982a38730942275c6cb94515b90fae30030dac9a62

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ec654a01582256f6c1965c74b143e46c

    SHA1

    c2cce7e667d4b8cc1700ac21a6f7a23033fbeac2

    SHA256

    74a59a88c53390aa06a4e3acbbed873ef34046a055c14e1296394c589f461163

    SHA512

    cda25a4e31137d9639d66d28192884d13523b58bf9735747696cbf1b8d7d1a7295732d894c029d78a8022cd7efc7cee2745263bd0440cc2fa698c53e21832e76

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    733b23fa02d28a2b0f82035d5df73c53

    SHA1

    702fec7083cd167df7e032c21f4d01a2ce9494f0

    SHA256

    10d8ba94a37c86bc05364f3a01f84b3699ffd923dfabb37ca81640403b64eca5

    SHA512

    ca5343576e4ae29d8d7a2ea218549bda0da7654efef43e828ef19f1277eac795c6a5f99ee4b9911a1e97cc5a47ddd4850828777c58bed9d8d6e375721677cde1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    21097c6962227ac85564e552ba3751a3

    SHA1

    16b674389c8f87874d45bfda103f322e21df6c48

    SHA256

    e259b82caa13c26406072eaa16051bdb9495f4d2f29864d5192ecdb436eb1662

    SHA512

    6694b292598428827e6dabb5269ec6814aa5c14736a0a6ed32c206776e94daacbcbb6583f460e84588427c455c97c4301f2f14480591201bd4d7d8d88226de5f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    54792e4fa7d75c051bef1e7a6134dbf2

    SHA1

    ed1083ada0eb9c9a3863d2c2c9cfeb8001304973

    SHA256

    0a0b82cc8723d5e9083ce04e1869fdb2d8b6ceb79ffba29775a098f9389894f2

    SHA512

    2cfbffa6dd0f20aed581de3586a0b7bc419346656682c0b53780f577c9a4bfb88211f805a7f5516728f5a40d02e712d689dc893ee7122c08dd92e3a5a6df4de3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    091c619aa7df4010673ca33b35df6279

    SHA1

    e027cda2926d1e00892882c90d4652bc6f49bf80

    SHA256

    645321ec553e0e93b6f5549a8e3fb53078e7f882b4cf3f73003661caa186731c

    SHA512

    8cc41b6d7c9bd91792ec3c3149119c1e1b94e373b2645aa0fd23bf37b3c095ad964fdc1600436165a11b180c0d3fd75d83c4a358d7fa6d65bfde64058674f408

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab5E.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar73.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit