Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

40f49faaf9...9.html

windows7-x64

1

40f49faaf9...9.html

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    04/01/2024, 13:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    40f49faaf9305055fe1f892e8d0b6319.html

  • Size

    96KB

  • MD5

    40f49faaf9305055fe1f892e8d0b6319

  • SHA1

    a60da8e947ceae64502491233cc53118bcaeed3f

  • SHA256

    b512d983b5e7d72b77073ea1c24b860f46ab8a14a35281d88c285da381e87cd6

  • SHA512

    2c993446a7535a2f0934937ff9a391bc9fd3ced24ebb9b3d3d839b70ae95f25caaa85056725635f4ba28e38dbbe609ad4738293c329637ea99ad9fb9a71c378d

  • SSDEEP

    3072:GQKB/j518vxSwOA4WQI4HVTqBEMpo+DYGSJ:Gv5Ug4QI4HV+G6gGSJ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\40f49faaf9305055fe1f892e8d0b6319.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2496
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2496 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2700

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c87abd67cb8d0c43b77493702f3b17d6

    SHA1

    7d2c216cafacea8ed823ff78861e1f1d311f304a

    SHA256

    8c3e8de5437b2b526f33881661f2df777815b536d446f4f8854f15fac6aad426

    SHA512

    b4b689409dc9a724101baff19bfdfcc09f1337a9e55808013187602073d6c083a3bad1535e7487d45a8b0bd07536edf3da988b2026342f54f27cc420cee302d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    824c2259dc05a59bebb4778f4eecd477

    SHA1

    24bd4567cb54b141cb91eaba9c271637eda88938

    SHA256

    a806dbe69210c5ccf1dea7156956bde238db26be792cb040b72a297423d877a6

    SHA512

    80c26d4d3bfd3ee8201a9cd491f597d4fd4d9ac3c1761005a5046e50a997d265ddbd4c6b892f4fb06f01ec58e3d95c163bde9bc4b1544ed32898e01193cade0d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    65bd1982a6d40a6ecda5259001802727

    SHA1

    30132c70fb14afabf903c42c1ccb5fe0b5ac47b1

    SHA256

    00eb0448ec843bed4e48fe5028577d9ed672d89572063cf993aae40bddcfc77d

    SHA512

    26dcd440f506266bee0ec025867d24d2f2dd1c6b5905f11f06dd2165f02ff709f114f4df88b8261d2501497fbaa22324914e906ec5d0370855373bef1399a51e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2526ab1b2ca9178f270a5713d7a709d9

    SHA1

    465b24bc224cf9a379d2f494088f46c343153c19

    SHA256

    8ae67e337d5c1798df0b1dfeec8f5c7fec9456a9b1aa5cc02241752846d40074

    SHA512

    ad41d7dcbb9a13f21b9196b37236560b8228b16e1aa7a9905b82a49c61f9134e82d9f14914d7ab476b0fc95825b417974457cc35e22b8d986b46f9b9b8331d58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    59c64bc1fcca203b443dde465399e870

    SHA1

    3e37a31cd33e6bd69cf27c365a94c6be25869070

    SHA256

    9e2c9faabec2b69962850b1a92a2a74cc45f60af296b1e2da0c63520e7e319df

    SHA512

    2bb5ff79deca9ff28f655ab8d1a2c1ff750d167779dae7d4bf5c92418e4095f9c717ee7b9f884b2587497b0bcdf2ea906c94baa6ef7c179027abc355dbcb369d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    53b5671d8cb6c6274a725ec55efa9040

    SHA1

    041f64b0d9dba3aca47c27d6711a8501e1bec2bf

    SHA256

    95555752bb57fbc2a8104a4ef54445b9901b77a1b0d0517f2d879abc3ef934e0

    SHA512

    a3f74cb64c0f8c2dd12010189a9890bc9646f61562817834e0594c758853ede43bf2da807467a1ff13dfc543637c32fc072712f4d59e66da922ab0bdb32a0f73

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    10b8c3f732463fda095accbb624a7cd6

    SHA1

    f3025b7ea5f14c20e334c8fd961c98889c9c6e41

    SHA256

    f92ababe6743c4f329d740261864e48aafc4ad56b49e564bb5155f75064323aa

    SHA512

    b36815af950684631502dc33850bf303df22a7448e762bf9a6eb0e3f6583719712a99dcc94da418337ecc6e87312715026331e44f47ff503203403103725b979

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1900c93113d3d400ce488d73a2c9e15d

    SHA1

    84f0fab843df2201600c086174020b87ec6987f1

    SHA256

    965bef544aefe14eb055e87e1114388863deb39da9cb4fd00eab8915abcdb932

    SHA512

    2f3fc25e0314db4fed8e622ecb4abe59390b59a8c476ba74f72ea934f5b461034adb3b5b3bc4f16b7dabf04bea9b299e503a692eafed27cbf2b59315a8077859

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8a5b13e34d788956da5dea2d5fadf68f

    SHA1

    7953758cef510c5867bdb7295cb7608016cbfc49

    SHA256

    7de2263758b5883c5f220843af1489e9eb11f3d7ffc14d8a04d4fca35f55f6d1

    SHA512

    3f029608269f09838a78d90261da5b4fc35437b3e2d0b905af58ff640194cde1eff347d1a5e6653814247f7355451279e84455cd8ec7d3a1e6ed90ea394ffd2b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fb9c15dee80e72ae8408eb395f262fe8

    SHA1

    52aa9bebb9b0d0cba4f0b918757015c069628b94

    SHA256

    5ae08c1f936c0c85dab67f1a3a1205ebe3c2bc481e96f09c0c9a0a758d3e8b00

    SHA512

    15d4615fb9d873450542a5fda9c6444ce1ee1e3dce6e68a3e5015098ad6bf3816eb3fa2e5d54cebc668d56a6f4f343959ff64819a23366ddb6cb41fee9863945

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3ece9b6fcb5be7927edcc3b784ba9b32

    SHA1

    893f0f4657364d91148dd41c638a97a4d4e75f1e

    SHA256

    85d5585376cdf8fb74ee94de442c924c7df6935b41552df60c6a29cdcbd044f4

    SHA512

    bf2d9e04927860c87579b2e7dbb1fd763683c76e5def34d10acccda9a3dbf0a5a3c8edabe2cfb9861b122ad34a70326535bad00bc73dea080392d7e73dba1303

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    edebdb400bbec25faeb3ba0dc45f612e

    SHA1

    63eeafb0f56bae01ac3e246ac4a8f8acd75ae26c

    SHA256

    2d2a6c0b2bdfaf68d1b0ad9112a6bb7afebe8149fde611e93574663dbdc7849b

    SHA512

    0ea6492ffdcb7a4ade5e5c3ab9a68525b7a4e2cfbb75fb5cd67f0ef764c70a452ed4014d0f131c285a8fc83bc7769eda1fddeb4b6b5f71a5fcaa2351dd12ac49

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    05d8bc597ad38422bc3398a609ac2273

    SHA1

    b14aca0380434d4c7076ac9eb0fd56d3c34f10a1

    SHA256

    8e0680f496e71cd7faaefbb4e7d75544fa06b538b56028e98ac7835051e6f676

    SHA512

    5b7c4d3b064788c2cb82abea2362838948b4909687629d5fb97731f67105d404270307628af00de5ad51968db96e6820c2db5ef9f59e2629d800f513696069e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b35ef52c6196752b4a1b9d5b8446f593

    SHA1

    7ec5c1e11abef459931368fc976835896fb1db77

    SHA256

    50f1ba78fe808c18f275935f6627f9927fb36b26923f9f24e08232bbed1808ab

    SHA512

    4ea416187dd361f4e62edf4e19ece7d17f2f8b0b1dd958ce7f14719083ff29462e7b0975f5224d19caf76efe9a624257d3ae0cd14e1cc4084f20e9975699b812

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a8c895de81b0a9b22707bd789a7f69e4

    SHA1

    bf3467e46ec578b245bccc8cc9f8f4578c1be60f

    SHA256

    debda75d8c4bce6482b0b418275402ee9a968c0186638515cf32c1546e023168

    SHA512

    146116d9a3ade1bb471483435b87597826ab15066d4207193330d1ab80cd420ce940c130f0e129b9a61c3c04b6bd3099db9dbeafd269f051325db1b436645268

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c889628c6054e7a301fc4f642927f092

    SHA1

    d733435bfb8d0da23af4f56947f0f32d07a6bdb2

    SHA256

    6ea6cedb6af94abe7efea7e210e4340cd007c62c2f6f9ed4f1fdfb996ed96f99

    SHA512

    c3e3ba15899d22960b616498a8c75689f0c751c4f34e1307d90d886384c4096bf1588cdb641ddf4b7549cbb4864ad6a4b580b02716bfb601a64e99cb05ea7d58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d36255a3805478239db93dd901e24974

    SHA1

    d1c329fd8e081d159470faf332a04a9a95105bba

    SHA256

    4c5c1764a495fcf28d88ddbd7c3ae27270247ede235e4ccb1bc8328cc01b4d74

    SHA512

    5492936453821a611ddfaf5c342aed0e9604f20fe396583aed07bd0baa16dfe3c1925ce42a2e3a77c8580d44fd7e3ea77e77e6148c9ecb1a5d2023ea9398eac0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    208a500189a1721078287f081cdb2429

    SHA1

    eec7b59b679d8fc0b52891294a3051aa659547f7

    SHA256

    ddbead1eb48c35ac40ca7c029af26bb6e738c7345f5b7a3d2b4c4db660774406

    SHA512

    a5715ba230c3eded1561eaae3a9cef9f045ed9fa0d1e3391273b02fdcbb01f515f5ec324bafa61b1ce7d7c1b309d4e67214223be56f56d8d9d98217f1c61529a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8e81e4adf08a7d1dd0bdbb1d950e6b4f

    SHA1

    e6977f712930fd7fd6799f89240f620a1a8edb47

    SHA256

    b9db5515e0756f4d45aaf68ecfaf64bac3bdfed8ac2ddd9a5de2e227e68691ca

    SHA512

    8d9d3bdb4d9b6b66bd0ce89aa00759a835e718d4c74174b91c6dd348e1d218db35769ba3cf69bc2cc6231f5563c14bc43d61007aa73879177e5c71c3aee9c332

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    58b875a376a01a2e9a5b1370e37986e8

    SHA1

    e16f0d1710f5a659b26c7e0465129d7e6298603a

    SHA256

    6ecdb6cf3cf529c76d8c9197f9364b7e9a9cb6144c47a4c6596bbda58bc7164e

    SHA512

    0af8049fa65b58978053ea80e40c4529bc2c6c6ae2331ef7ca898452499f96510475f9f6bf36370193435584ccea92eb718751a9dcac9c20eabad4c35c1d968a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    909359c2faebcdc244e443c22a4df953

    SHA1

    013d1b45e7e425a2537d0e95a2c8a1edc43f0973

    SHA256

    d4ffded8810c65c7c1f3f2e9d1f1d153f9e8134d0681b20320999cb27e912a9e

    SHA512

    c601b0ab9865631480506e412fa7dcd57997b0f61bedcf321bb08f784ee08f4d505b661c7d430624179bbc4c94d8f15fc8349f5d59c5db7e0163948a31003854

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    390b30c8c1e4ed6e0446359bccb26fb6

    SHA1

    a1ea68870884b21313c2485db9c442737ab83186

    SHA256

    6df800c250f2d3b2ba68925cb00d8846b418b62a2682d94ce03c15be2969b442

    SHA512

    3eb34818badc7adb4480d7228b37e409250a9afa592755b4bf78a56efdeee74356af12211fa033e98b4a511da3f0b3329dae8b3cad9d45abe7166fdfb0b00e32

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\05ZIV8W0\cb=gapi[1].js
    Filesize

    64KB

    MD5

    ee01651d160cfc55249d6011a3c45916

    SHA1

    79d6121df6575974ad21dafce33ec98e3f2f0a7f

    SHA256

    639d75299973c7d3794eb7eb129e3b5a6139f9f521e1f14383abd0fd501219c9

    SHA512

    8a39dfc1ff2c58ac106225976aafdaf7befc0a28903a0c65e2c272e1967c3336af2b477ec12604400bb8e16aecee6567c9cb9d157e3d54649e28b9b2f920432f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E3F2LH07\478691279-postmessagerelay[1].js
    Filesize

    12KB

    MD5

    92169c8a0fbf6e404267d0705cdbdf42

    SHA1

    a5cd88b74ca5ced239cdbfb458fe25540d671f46

    SHA256

    dba668b49a111527aac8f616b9053ea57c944e01a84ebdcd02a13da921223384

    SHA512

    8c5d35ea512fa7be367cd9a9ded2f23822dcce730e5502a355ed0d48949ef763eab13be0d50a66de6b0f8419d6a002c12c4ddbf20d97f5393ba922e48a4f02e2

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JIH1AB02\rpc_shindig_random[1].js
    Filesize

    17KB

    MD5

    f019fdda31635d2a31b151ad8ad56c7a

    SHA1

    6adcbec55f66ffaef83d9a134423aa98eb2a2189

    SHA256

    c7fc0b1526533002c956ebf8e8c42c3ad3f96c41ace73fb4063cc89051944831

    SHA512

    fc278c12316e098976833882a38c788d812f9d36bd1b9b2b8c87dab4dc906af26a860df95436ea1b7d509236d44d0533d475a153437f8f5d42653fc28a77ad64

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1815.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar18B4.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit