Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

taoaisi/Conn.vbs

windows7-x64

1

taoaisi/Conn.vbs

windows10-2004-x64

1

taoaisi/ad...ut.htm

windows7-x64

1

taoaisi/ad...ut.htm

windows10-2004-x64

1

taoaisi/ad...ot.htm

windows7-x64

1

taoaisi/ad...ot.htm

windows10-2004-x64

1

taoaisi/ad...ce.htm

windows7-x64

1

taoaisi/ad...ce.htm

windows10-2004-x64

1

taoaisi/ad...ce.htm

windows7-x64

1

taoaisi/ad...ce.htm

windows10-2004-x64

1

taoaisi/ad...wf.htm

windows7-x64

1

taoaisi/ad...wf.htm

windows10-2004-x64

1

taoaisi/ad...dit.js

windows7-x64

1

taoaisi/ad...dit.js

windows10-2004-x64

1

taoaisi/ad...up.vbs

windows7-x64

1

taoaisi/ad...up.vbs

windows10-2004-x64

1

taoaisi/ad...ss.vbs

windows7-x64

1

taoaisi/ad...ss.vbs

windows10-2004-x64

1

taoaisi/ad...nn.vbs

windows7-x64

1

taoaisi/ad...nn.vbs

windows10-2004-x64

1

taoaisi/ad...es.vbs

windows7-x64

1

taoaisi/ad...es.vbs

windows10-2004-x64

1

taoaisi/ad...ex.asp

windows7-x64

3

taoaisi/ad...ex.asp

windows10-2004-x64

3

taoaisi/ad...tch.js

windows7-x64

1

taoaisi/ad...tch.js

windows10-2004-x64

1

taoaisi/ad...n.html

windows7-x64

1

taoaisi/ad...n.html

windows10-2004-x64

1

taoaisi/ad...ut.vbs

windows7-x64

1

taoaisi/ad...ut.vbs

windows10-2004-x64

1

taoaisi/ad...02.vbs

windows7-x64

1

taoaisi/ad...02.vbs

windows10-2004-x64

1

Analysis

  • max time kernel
    137s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 12:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    taoaisi/admin/SDEdit/HtmPop/replace.htm

  • Size

    1KB

  • MD5

    b02bd914ad8d027c5d1fa60e1a1dcaaa

  • SHA1

    a81d35cfb4f9bcb7504b46daeafe626dddd41b30

  • SHA256

    75deba78b2b937cb47695581f6f9085b984fb6a045cfa28b251f200a7f27b80c

  • SHA512

    07b3cb1c4b0e4cffee1fde0460c15053d156b937eb3571924d10c1eaa446d945096dcdec32387e82c3e3a3ff5afdcc1e230ba19a20c0beccd3d997031820d2fb

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\taoaisi\admin\SDEdit\HtmPop\replace.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2180
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2180 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2672

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4d9fb2ea755cf714f978026d779ea779

    SHA1

    9fe2683745dea50c07e503edcc499223d64fbf60

    SHA256

    fc72613199e872e7c480730c789776ebce494dcc9d9d10e42fba62cd6b37538e

    SHA512

    daf4bf149ac5b86f12670452d444bc93be0bb2811d1943105f2ca72a8de1df9d17b0bc9bc5317a7eb18e675b7e4002f66f4efd383a43c045ed273bb6d83dc95a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    499ed8c9f4391583c83ede7ed66cbff9

    SHA1

    2765564624e1644042a2cd2c39901783270be6cb

    SHA256

    7cf7a449ab7ce9bf5ccb790c9cb930765c0cfe08b57c0d8feb6ee4afba3f7e51

    SHA512

    b25cdff6419f248f0ef7cf243669f9d521f964415ebca672b758b0bb8f173d6a7a2442ed52548d87ee9e85f5b2fa9ef91bfd3da9919c4535beb967e0d286d066

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8682bc8c4f611cf13e114fa7111796ba

    SHA1

    39f237a5ccef2690cd23149a9b9122a051984c77

    SHA256

    849ef1ce26498db6d0d503eaaf87c8c5a6ae4d479d31253d24f6a27b1de424ba

    SHA512

    f1b498438a4f568706983b3131f2e794b9f87e2dd6336393f6bf8adf72ff22d6c8448a51abdf1c27d1461ebd3973ce728574108239866e56fd3e0304f166c11b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1b7d7f83fe9872ab6623ff09357d8566

    SHA1

    5620f297c20f0bcfffa4743ed2cbae552a95774b

    SHA256

    9bca2000c873b70af6463a9ca728dd4bebb6c09717ac3a5e5bfe7a92a161d5e5

    SHA512

    847827e8a95f4665b07355f434609443b346154567018212159da3c8ba7b585b5daf3e28ad3477fba85efb48d610ffe7a2f485a32fc9442866d4bd00f878d33e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6ccefa0cf7277031a7cfd590249ccca3

    SHA1

    81965dccb2e8e5fd0a2a51d522077f54867fbc12

    SHA256

    d5f897ee6844dfda78fec160f069ac0cc580bf2f8f9bb87429737b07692568ae

    SHA512

    4c4dffc58589680cd217dea49bb2d413677f02a2285c411b59bd22ece87da61c9cb74ec79f3ecd3f5afe6cec66b3956be8e31d4439508569f31066a6e997e219

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c9261b668544ab8f1c036d9f7aa84cb4

    SHA1

    5dffd85d706e9fee8957890a09f00b9dc22722df

    SHA256

    2f2fb1f4fe3a5ee5a98e19bdd310fc6fed41d8f7d1665abfafe7210e02cab3b0

    SHA512

    df77e5aa6af33ea26e90781d42e425c9326eff6c8756356941850175fcf01eaff19bbb45af956cdb0a18a071017c42a2acd61c913e86736190757a8dd0502a25

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fc69b307b9b03efb54fa92af2cddca3b

    SHA1

    b563181dc748f55b97eb61e1a8514e18b4692deb

    SHA256

    d449b2488c612c75281252195f7f5469d67312793a4ef98cc7d1ddc602f1f885

    SHA512

    7cb9c501870f8f0a753890e026119bc105f9bb09f14fac9a50bffa451499bcefbd4487d1e40b726d700e4896a34049bd3e7a56a4082a036705ab3b015474b53c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    92263495778c4b79bf896a34c24c57ea

    SHA1

    546ef1cb2f97581502d4acaadee96be5271f4165

    SHA256

    e3b48799294583dfa4fb758fa0b734df78d12fb59fec0fb8f19e71eaa82cbcf4

    SHA512

    512f1552a591ac56268a1726e120364fbe1d6631fcdd77d125b48f14723dffb7b73ec04d199b9c966b8c19e258553b269e78138779fa064351a6249af8ad2294

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ad5108d246d5ad50d09dee86665bf3bc

    SHA1

    96673f394d4a74eca5ca5ea98d76897a0891ca4b

    SHA256

    84690ca3a098a4ca5776c032baa414fb57b012451d4a4685c6718c3ac31cbd95

    SHA512

    6169fe64611a624c0580879ebd53b3e245a885291a1e90c49f1a97758655d94f3bc4e8725428c9b6d50e6792ec348ff20cb1194a2b26520f369f3d37fba4aae0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    018c0a726e492e7029501bd6c2551d3d

    SHA1

    4228f98653878ecbd249f628cee394ce24520dbc

    SHA256

    1d56b3ed182ef0d378d3287dfbed4e43785d5d0ca33744d4d798d3922f5d5bb9

    SHA512

    4b8f65b61afb32806b4ca363d7dfe6995cb9b06b7a3e64c19dc5f5618f7c887b0f3d57f2e45208dcc484995d55b259f0ea24b8182f367a44d305afae73558466

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    037e65d06f4666ae5b5a66fa0003094a

    SHA1

    e17f6d6029e8f48baeeacaea19e860e0f2a10c7b

    SHA256

    95ad8f88df468e933b205b6de172a61dc822efa112bbe0cb7697e6c29eed5e6a

    SHA512

    764bd70b2dc0d63ea4f69ab3c86abe1797033d282a1099d8456097a31f5d54bd48a960888595ab4525b38126f825c8ab57916d508a6a46894a572acf5e9c3d9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5eacb24fa098883ffc3feb20f83bfbae

    SHA1

    a0ecaebff05779fcb27b11a3e88e182df274aa21

    SHA256

    ef89d0b26529e1804cccf97d511ac1591a1c53d793454d0ff057eff0d0e53354

    SHA512

    8fd0d374885ee36e3d5f2164501b0862b6f53c13f662214872579e1d5e4607b8505b1d7ab6a7b923967327c1c044379c0f0bdbd2960099e66b7466e1e56f69a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f1a72e3c4cf4ec347654e8b76e50b5b4

    SHA1

    94d9dab7c31859c304da67aa94ad138f202c138f

    SHA256

    26035db991a20db071457196240da9c0f45eb9b5480f43248b6a7e8ede79fd5d

    SHA512

    64a8ce11393d73814d68687dfb9f9c22585f1b8e704d9ec8d17502a79cd1ed66d6e1a0ae2d914be3619372955b35677d0b90c706951a423550c9f08722de8bb4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9c23df2047bac835e30d24c47f93be2a

    SHA1

    2262d15b7bb790ddef74ebce6fbb4dc62b7d81d7

    SHA256

    55052bf7986e039cb12e9d624cdafb56030669592c276fe7bcd50378d86cabb0

    SHA512

    3e1eb9763283691b54b3f5ae73e7433c60a5f341065ba062973ad8811de10e295b7bab380db74736ef5bf9c938fd20bb8cc39efa14f30c80d549f1b1e3e734a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7c1627be1313e2eda47c814e6d1da7e0

    SHA1

    eb2fa39d841cd567d0a9fe6dbf815ea8081adfb4

    SHA256

    4d4e7cbcb5304b508535be36b1b939645e05a093654139876aa0f182c1dde66c

    SHA512

    b224cd10e5196cc3128c5c829fcddaa2c8f40633305065f30628d0ac0b1264126cc7d67e590ffcf96dd5f60e717e504906685a572fd153bce7e2c3d67d88ffb5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f8bf741c185a54cb80323889db18b347

    SHA1

    5f6b05160947463a261d2b53888ee410a8960204

    SHA256

    472cd07a8f30fa428457dadfa31795ba8a1070b4f960138331ecfae45b2611b7

    SHA512

    8dd2bf1d3476d2de2292b8e01b1a1e1ca77efdf0b580010b8d48681da848a7c9f727c1baa213cae164b0e640e6be7d9aaaa82defcf763bc51d297f9106e177db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    74979d2d6501bb7153681129e99c612f

    SHA1

    f4de242413c430bd078342e19173fb28fb7313f5

    SHA256

    64b946a045e9e5f23071003bb418520c3e1924d2c58e2f283d381d6de383ebb1

    SHA512

    9344c4b4251fe625b9acf5f913295e4b4d8af1dd967ff8bf61993d6a502bf41b9adb7c00491563598a82de12490e362ba9deb7d119733aec156950e139867337

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2224.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar22D2.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit