Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

1c020bcc8d...2.html

windows7-x64

1

1c020bcc8d...2.html

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    139s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 20:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1c020bcc8d478ad807fbc91986b5f002.html

  • Size

    76KB

  • MD5

    1c020bcc8d478ad807fbc91986b5f002

  • SHA1

    0ead9fe59b54e68927e10540bee77b3dbff8d962

  • SHA256

    a8bc99aa3bb59b9a877dde00017726b91801b5e324774dc0f6cd5d2d12ef3345

  • SHA512

    a8df7ea6c226adb2be4e079f76a3763054457c502c3d1843f95527a401e6301cdb7e4afec1ff244b1edb7683ef96056dcfa72fa80b020e07252c2f5abbc115ae

  • SSDEEP

    1536:xAe4vJ1wIbM+as/uzBndCfC4upNSL3eCJxBxLXXFjbpw9CtrobwpJqw9TGg3lVGO:xUvJ1nM+as/uzBndCfCvpNSLeCJxBxLv

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1c020bcc8d478ad807fbc91986b5f002.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2820
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2820 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1944

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    00d05bdfae83dc1a7581977aa309749a

    SHA1

    ff38b1f051402e79fe43ce11739af1f10eb2af15

    SHA256

    ccaf3f38f64877ad3553e8f7b568ac5acc04a1133ea462733d7ff24cf27b0ce8

    SHA512

    b8aa97b51fb78d583511882ed90c9c1b8de17f5a5c338ec80b928d1728e923777e0b3855d6e71db0fcbe2fcdc88cfdff0ba36d55c946fa7b8e4e77fcde0639ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\4A9377E7E528F7E56B69A81C500ABC24
    Filesize

    889B

    MD5

    3e455215095192e1b75d379fb187298a

    SHA1

    b1bc968bd4f49d622aa89a81f2150152a41d829c

    SHA256

    ebd41040e4bb3ec742c9e381d31ef2a41a48b6685c96e7cef3c1df6cd4331c99

    SHA512

    54ba004d5435e8b10531431c392ed99776120d363808137de7eb59030463f863cadd02bdf918f596b6d20964b31725c2363cd7601799caa9360a1c36fe819fbd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    c07602eee3904c2d1ba7d5b5b1f77c75

    SHA1

    0f4c80d292afa90baadbfe097b206c70b94097b0

    SHA256

    370ae649bf56c850d2686bb683ff5ab6e9509e82d0aae3053b93e744c696ef63

    SHA512

    bd36a0afec943174335b8cb25942d27b3a5f73d80597fad532b1780e5e2de73d5ec57bc49069d6d29b7329e87070aab4a2c46dd1bd19f53cfbc232f01fbb5332

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    ea2570337c43cfab25a677cf99ef0c71

    SHA1

    28477bddb5ec5f3ff4d92397db27734532f751e5

    SHA256

    c3a2b5bbe329f02b9abe298c3cf701c20beb4ca2db1797da869b589b54e3474b

    SHA512

    34ed12712771a04429d865af39064d596d570d4cfb66c2a200d8cb8765a1df8cdb73e0d028bbfc61e68d31922f54019cfedafdef0f4d5bacec0265ed08eb14b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    35a57f24887e03fa91feb03d6885290e

    SHA1

    fc9753d2e5154554c887a67a08b2291d2d8458b5

    SHA256

    0bddd3a6b0ab92f817694364a1c5ae431126829d0f4b1b08d4afc1af0ed435d1

    SHA512

    fbc908a38341eba38e4a4420fca99c9b56e22a49461d730c04c996a94e05c376ee756284f8b34d92b54c402fc74c2a968bd0921e20b5f947e17bb501f97564a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    256b04d36d4c465ab827c1fc33f2b302

    SHA1

    71fed4edf0ca93e9d5d4971cefd71acd768af03f

    SHA256

    469a73bd5047f85a847a118b655fb6abab535627a93bdee757d73945546df308

    SHA512

    4e2f4e2c863bdb63f4863e98126844951b24250f8ec7c7320104e8eb411e3d0a6fca38446eb0c56c4a0bb216c8a4e33888790942104d75480622a0b4ec65e5dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bc0b821f39f334e2b03a05d6f0483294

    SHA1

    257501b34a4765a0c60bc8c79c7def5a5a1599ae

    SHA256

    e7ddfaa4cb3d31a4e58a97004a9c02754b8a17115dd6e4009ed5e95a3d4e4d8c

    SHA512

    672831563c5661b26193eeb9755d1ce12ed83d7d7f3d1a76f7caba60dd6dc2a81705cba04af827ca8143f482263a2db8d11ec4fed8e6ea127d6b585c9bab6c5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    17278260ddf6c6253a3107a6b6ad4e2e

    SHA1

    e08a1b52e430c8c8f7b7047ca5b0197de977f5c5

    SHA256

    c7e09fcd5c9833a1b668e1bec38edf94a03b312a84b227824e5c411ca26e15c7

    SHA512

    c362498b6ad025c1ad20a15fda7925ad3a613132689f84143ddd8a93aa72c614aff6eb31b8b5c12fbeec7031c653d3009ba6ef54926d7e6d3e9831cbbd27ec80

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6bb64937d49ba63de2b00b5287229b8b

    SHA1

    cd1f2a3fa2e7b6fa77b122b0fbebffff7fde3aa6

    SHA256

    c338cdc143318f651943a1f28f9e3438bcd7ca73fa5b7a99574b187583a14aee

    SHA512

    86e3575e5b1395a1eae1494153cc3f8d57a17300ed4da442167232c3a84cc5496f55b3541436a8e7f775105133f246b49f413c3fdda2a8c61cee4fcb4c3d6563

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    76e6e984282de5d95f93d8b0ae6197f8

    SHA1

    e578e1055887ac15a35b5f7c1e65c9d5b0f4015f

    SHA256

    ac0fe175a862c5b07c437e246dcf33a4d0a31396a7cfa9f3b4bd00594231651e

    SHA512

    5d15457cf47571210e9cef1d866d0771a75827a5f8514bcff792a4e5bf10b16442323a97ee69d560a308bf22af34acc11d9fa7fe5db50e04eae19ed254b3d816

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d77bc96d82c90bbb076aaf1c902c015d

    SHA1

    6235f1bc9535bd7fad0e1760a58dfab2d37f149e

    SHA256

    bae46586a88235d86b68905f280c70067366b5ee9d28d52d4191ce76dfb53ae2

    SHA512

    a9f11f3703af099b528e104d8859523c8fb76c2b13c4b82dda47ac1c4feb09ccedef5452d9181923e4e9cb8a79a7d4107641f546daa2b12355748c286ef97ad4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    052442268492d1e82fc7251bec16a522

    SHA1

    9badd23681f7ee6532d172b8860eaec79324b308

    SHA256

    bfb5b5d9480e45f8588a76dc3bb58ff14b857a09b3fd79857f28c5852431bdc1

    SHA512

    c98a853381858961d3a65594a2dd2596bf1b9861b1fc7a1bebcc6eab878aaf9e8914c23524d65f73b8978fa82a2e28be523eb0f37978804468f63983f6025433

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5f61fee746d75c5bacb8b4f0780ffb59

    SHA1

    3bdf01a8d3aa340becb0e0dfcb1cd86b3bc40613

    SHA256

    08c36e1b270adfb34fa6b6176713150bbbd72136ef95cc6f781a0dc9414a3e44

    SHA512

    ef24cac9951771cbae2506c83ab073dff5229454183f9d608209ad30aa5b1bc0d0d74415cd79c6135543cfae0bcea394eed3d9127223d9cace5abda19007cdda

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    392B

    MD5

    917f51586c2f7057c26c593e7a6ddfa6

    SHA1

    1b9f90b3041c612d785565135e188915dee6276b

    SHA256

    7e1172ce95965377f8811cd8dc6c7740c0281e2d15156e8d1ad7b2092ea2db4e

    SHA512

    5bc985d72923e4fea1b1ad2176c84e78855aeb5bab14a7fa2e43a7248e9c6c7891bbf012f0c1d72746e861b837a895a632a6a7ed3164269407b78d7d733086f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    e7303f4a93777fa31252876096531391

    SHA1

    d475a41510ee622e277b5fcf17cbda89512a3c8d

    SHA256

    39fabcf24f1dace12b1540a8c6a566b465078a6ce24ad13983581dcaffdb0db6

    SHA512

    9a2890f95965c5c5fce466c560086fb0221356cdc71dcef84629be49d84c48843c38a216c19351056b4d28d29c9e0570b6be40f692a58a09596e8645aa1eac07

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF13.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit