Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

48199ef9b7...7.html

windows7-x64

1

48199ef9b7...7.html

windows10-2004-x64

1

Analysis

  • max time kernel
    66s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    07/01/2024, 05:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    48199ef9b7a10bbc47ca1719d13f1877.html

  • Size

    1KB

  • MD5

    48199ef9b7a10bbc47ca1719d13f1877

  • SHA1

    165de92273e62d955c32ad6488dd14fd1fb5b9c9

  • SHA256

    10c645d3dd4ef6573000e212bc5e0e31e2154a86dba7edc8108fce67d587a48b

  • SHA512

    96e3c08bb4cc85915d926c59a5487d7df960965fe87f3513471659741a9641c2b1645cfba68f04f0b09a044bbbe717a5382ea0148d084b6ff1bc956dfe6d54c5

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 32 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
    "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2296 CREDAT:275457 /prefetch:2
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of SetWindowsHookEx
    PID:1952
  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\48199ef9b7a10bbc47ca1719d13f1877.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2296

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8cba10d3443790fc6c9ebe7563294cdc

    SHA1

    8a0d2fb343f2e3db166beb95fb29603699dbe661

    SHA256

    d76f2f6b7a58425dce48a48665fce838ed308fa03c5ef8602fa44ab17501414d

    SHA512

    2d28583a3d60b27844ddd2b50595f5067f5899e741c8f751009536fef3eec551ff42ae18f6ce4e9bf7c8b57bba70c5c44c3fb0f0cb2d160540191aa4b10653c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e67dfdf27f9f394ec90aa10622668a98

    SHA1

    c23e2faa6cb7c75384b2fb3e0e71b235c2b42102

    SHA256

    1312beab4b4469c813715b6181fbb03fb3da11b87bd44f485e473ed112b74bce

    SHA512

    2f2924a614f4301b39368995b67097191fe8c8029102921c656ca2fa20ea16308087e8a95490dbbd65edec2807648239c7ad30fc4edab6ed9914561e58b79714

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0ef79a1b70ab1752e1d6521e726bf047

    SHA1

    77ab2e26527fd9e18ff7462b36ffe3f025cf72f0

    SHA256

    6e376390cfc37dd28f0c1f5708bb71bbc97ff6a5df93cef6402381a4eabac0f3

    SHA512

    1d3f97891066882497981a53bcda7e8c56a2ea79f145e5218ee620a2a26231a5c9602def135c30fc861e14e38ef3ceb620cfd9ecf038ab7c18a108b0f31f0f2c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d6acd980784c61e33e4be2f8f648a06f

    SHA1

    f8b5278ec10afcdd61d1020480e632c3ae8c673c

    SHA256

    83faa81d1479d8773a315bf1a166c41ace01b6ca18387813c2ccfa7f64743ec3

    SHA512

    f8350900c65dc87d3337fed65ec22620977f313c8070683f4e25142cd6aa2fbe0c9f4008e2c42fd7f7745eb24a74e490177bbab7d26c4e85425d058d5dd0824f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab57F3.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5882.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit