Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

3f448a1a62...5.html

windows7-x64

1

3f448a1a62...5.html

windows10-2004-x64

1

Analysis

  • max time kernel
    186s
  • max time network
    235s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    03/01/2024, 23:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3f448a1a62f1ecf4e367fde12f67e455.html

  • Size

    15KB

  • MD5

    3f448a1a62f1ecf4e367fde12f67e455

  • SHA1

    6c36eda2c202ed39d87c92de839f05eb92ecb231

  • SHA256

    3dca05f3fed1e4baacb279cf925a730c70b5308aff6217474ccd82e7e9dd5a15

  • SHA512

    66384a83c05e107664afa594ddf5d9adccf387569b1147f637e394060ce1ef44ec4cec4e8c7923fc235a0399230f7ec3855f1f1dc75d75ca9d0e21a9b4b48d31

  • SSDEEP

    384:SITrazu8qH6F4yYIPcKLUo5/rGmW9WxXErQC0CY96ZNS4XgDQD4NcTKTkif:S0rF6F4yYIPXLUo5TGRsxXTf

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3f448a1a62f1ecf4e367fde12f67e455.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2716
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2716 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2996

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6f28c8ae4c08c6f6c27ca7fd5d2cbca6

    SHA1

    443ed7a614eaedad1be0e52a3425cd6f8bac36f8

    SHA256

    e3c680acff604cbec32aeba27aa4863db6ae502b76f802a164d0612bd38956b3

    SHA512

    8a642ea3726df42f2ae6dfa8b67becfc16a5d4bfc6b157885bff9f7cdcab383d3ce5cda46fbccbb60a18c444e2bb15f376a1f65b50937012e2e0c94c430af85b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1e9743b60f98413d207c44b82e30a9f9

    SHA1

    982ff71e8d2c5a029c75d12be3d43e65ecedbc4b

    SHA256

    d2f761d847c66af667301ccd76bba08561a5f60e38fc29f6285186604ed1a9be

    SHA512

    5994932272883d8f59dc44596009f771550def6bb8808d4f1dca218a7ab8330f1b1b0a911d42750be700ae518d25e490986023db84af9c564a1a473a035d08ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f0ac90a81f2e82988958781819fa27b2

    SHA1

    81f635ec6ea9281b048670caee4e06be36d6c06d

    SHA256

    74b04cc2fccec65b3ef459fe6ae4514a72cb0dabcb72790680330e1d9db2bb40

    SHA512

    bd56cb48fa61a8dba14fc6646b20edcaf3d985f20527f89b0d13300f13f76debb3ff7764e3f5df38fc1ea57a7e6ca62b957a84cbcad43fb59d61df6cdf514e06

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6555e42d35e0a8bea42f9cb8569ddad9

    SHA1

    2ac6300d4d0043692e49760213eb5bf092eb9598

    SHA256

    d4d777f926761bda9931e176e6a884660374aeedd49ae4a5651a33ecb45906df

    SHA512

    be7fc0ed27e58425da982b372e172894e6166d17debe25bee8d717bdf2f308b97a66deac25567513f94dd25e88c008d56a8f627997c6179a52117ffa1a336a54

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1B9E.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar29D3.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit