Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

sample.html

windows7-x64

1

sample.html

windows10-2004-x64

1

Analysis

  • max time kernel
    27s
  • max time network
    174s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    31/12/2023, 16:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sample.html

  • Size

    408KB

  • MD5

    5a968c44627945d22d8582ae1be2f3f3

  • SHA1

    e1044deb5b56424404ab7c31accfed86024d52a3

  • SHA256

    f632de7de78997b448353a4636c53ffb1d6ca25fdb2d2ea756374fc620682794

  • SHA512

    f9406ef725cf9de4517481ab67f175e6e8cbada32f3cd7a56649d68c636efbf70aca08e8413ec763356edbc030800ce428bfef954fe82e95c665345a8d3ae7df

  • SSDEEP

    1536:WX+giWoVbaRvoI4nUEiMPLwfA0CwZL/l0Xe4EylwZ0nyxxQd:WugZoVbaRvodnUEiMyL/yu4AZ0nyxY

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 6 IoCs
    adwarespyware
  • Suspicious use of SetWindowsHookEx 2 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sample.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:5112
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5112 CREDAT:17410 /prefetch:2
      2⤵
        PID:2288

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\VersionManager\ver7308.tmp
      Filesize

      15KB

      MD5

      1a545d0052b581fbb2ab4c52133846bc

      SHA1

      62f3266a9b9925cd6d98658b92adec673cbe3dd3

      SHA256

      557472aeaebf4c1c800b9df14c190f66d62cbabb011300dbedde2dcddd27a6c1

      SHA512

      bd326d111589d87cd6d019378ec725ac9ac7ad4c36f22453941f7d52f90b747ede4783a83dfff6cae1b3bb46690ad49cffa77f2afda019b22863ac485b406e8d

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\58G7K3A9\adsnativepc[1].js
      Filesize

      20KB

      MD5

      99b44c11698756e240c74c7f302345de

      SHA1

      3a9a6cbc3a10c3e9be9a900a977e341d0d786daf

      SHA256

      afba8e7564c8117817ad655c9bef0c2ef4a248783837a70bf42c51dfdb7eb910

      SHA512

      c8ebdbc1dc1eddd3dde9bc04503f6cc64a8036e5ecb4c9248f13d265f80b08b46705ed01fe3b37d19ba32de548eec8130b120bdb2d19e9b0a001ef5d5d5bfea3

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\58G7K3A9\suggestions[1].en-US
      Filesize

      17KB

      MD5

      5a34cb996293fde2cb7a4ac89587393a

      SHA1

      3c96c993500690d1a77873cd62bc639b3a10653f

      SHA256

      c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

      SHA512

      e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\MCZQJD7V\style_3006001[1].css
      Filesize

      4KB

      MD5

      56891d2076b78ee00820348a8f460aac

      SHA1

      5844353e1b3fb10564af42bdd971ec7759709a26

      SHA256

      ad649b2cf2de1814eac68e7ac5611495cd8f9be66bf7e565e9e9aef5c7ba9ae8

      SHA512

      d065f14710ddcab5efad10dd25e1ce2ba5f2dc00bea5e319d889fcbaa9007ad35a1d39e2d03cce00ebca36da023a11c4ff1b40be34ad22ddab798230bc041c05

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\OO2Q27PV\P120503hirobaOP[1].htm
      Filesize

      138B

      MD5

      aff950cab4c0265e21d401db15f1026d

      SHA1

      f03e18461817f7a6546c8bf8fa8d686d7e30aca0

      SHA256

      753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0

      SHA512

      a1f0f6f3dd6788a1d7c922c6a8fc81d4709dbd0bf28433023fb8fbd151f645daa096c6e9dd670fb7f86c1699942514a11c183aa09f0018142f823668fb2a0aa2

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\OO2Q27PV\hja4sh0[1].htm
      Filesize

      154B

      MD5

      cfbeaf604823f038b8b46f0ac862b98c

      SHA1

      7b9eb1dac48e74fa5f418bc456cb410f88b81d98

      SHA256

      20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319

      SHA512

      c99bf4f1351efb28a74fa2504429875d9a63eb2d6a145a060ed487f83ff3a42b6c85d94165b960edca90aceec58d16a6ed37b25f44452bbacd7f5204c15c23cc

      Download Submit