Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

4add681b30...3.html

windows7-x64

1

4add681b30...3.html

windows10-2004-x64

1

Analysis

  • max time kernel
    136s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    08/01/2024, 07:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4add681b30cbadcbeb4a07a7a4df0d63.html

  • Size

    124KB

  • MD5

    4add681b30cbadcbeb4a07a7a4df0d63

  • SHA1

    976d7aed932a2603224d4b9a6d939341df49bf17

  • SHA256

    f715bd5cc2a9c83f0b70e5549b3d47c4be5b5e9e985532c20eda3a6577c3a3a8

  • SHA512

    726f23e69db157399b9be00c655a95419e4970cf3b668f98e4983940136675de2684998787f23452b79373001b997936447e19ccff194b0f7f393c4eb914acae

  • SSDEEP

    3072:JFUYFFPoBub1QBGRXRgIyxH4VcZcgclcLo+cXVPaf9YP1SkkKwEp8:s0Pl1U4XVq9

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4add681b30cbadcbeb4a07a7a4df0d63.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3064
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3064 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2672

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    9ca625a30d5ec8d24ef2dcca3ea9b113

    SHA1

    30e5ee255e4abe2d1e6a9fdc11c60515c0336ba0

    SHA256

    bd43154e8ca7cc43b57b55a1166e98838ecfd6d43f8453b5eab91786d6d2b232

    SHA512

    61b1a7ab6a4d14890e93ebd5e597d0d6cd19f222c4efe9d267567aec5ba2c3f4754526782da7f957750c8f6b405872d0acdd04e4143e87847804961949ba0854

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bb6c93b3b9195185333c5c6789058048

    SHA1

    09db350bc314dfe90d35b711cc235aa8a5716690

    SHA256

    ad6817461b93990ca492c31f80d7f32e65fc6369ed8e418503838dffb1049188

    SHA512

    f1a313ef889ccb7149194ad6c433824d587292fc33674d18314efc071474c227c89772c50ff1ddb4c7bed67fa1488f1722e5533bee670d7a89bf74495c4b972f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8cad57ef001cf63100413201a3ac2f89

    SHA1

    39ef4abfaeb5e05b07d9945057adb10b6ddf3c7b

    SHA256

    1ffedc18e81118a5fe1e0de1e2923abee3d61eb787cf3324810919063ecc0f2e

    SHA512

    ae0ddc4c26f7fa46a6a552f4b1277a3c55033b800b2b1be628bd65eb7bf445579d0899a70749c35a2bdb3de144e3c58ed21b8ab81bcf5a0b29639818973462bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    21fc93505cc9c71797c5b8743b9c1359

    SHA1

    88062f0b0b9f117930b106445ec067e500749e78

    SHA256

    ab74ba21c0474ef06bdcc89427d70a233a75b6d73eb7b67807f8d452c7d5530d

    SHA512

    c3cf8ed5748827d60928a5fd5c2aaa37ebcc6b5987c390ed581f636d92e584fdbe9c430c6ea313646dc4bd1b7aeeed05dbab3cdcb593b743e7d908533e50ccc8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3e374b2fad24f1ac15079fdb0de4db55

    SHA1

    1e650692ed2a6d89cad1cf341448b64a89662714

    SHA256

    3cb7cfd21da12f2d3e21e408f6aafa78ef31cc33eb27256d4536c4332e7b8e6a

    SHA512

    7d2d7a847bb2cba01735b02589e159949f193847ffa9efc543ddcddf449f656a26180081499643e7eabcebf98de25a394194de4755ba3ed4b748a275d14a96be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2d4d7e7c8ba5811e94809860f141b982

    SHA1

    4469b4eeecec46dc3a904fcb34d93afe58b7c382

    SHA256

    b34944ff478e9031cee05caa8df26a53623f1192e60997951a541f0f2a4734fb

    SHA512

    4e332bd39acb74c1739ed978cedac669009122817c472298d8753cd5fdd581d95b6f27e7c3450d60cff437b879ca6edff1bce5eab7d7ddc931f35016228e122a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    79123098e3b500a6230498d8cdf2ab6d

    SHA1

    5dc4a466b45f0c5611d82aa20ad9b27469b4b650

    SHA256

    d4536f43f2cf576f79174ca6ca4c334d28c87eaf206668c7693f5c5bb70bbb2d

    SHA512

    83ea86f840f91f4acb67193891949b969b5e805e29d65d60eee4960f29fd60d1e332398f27b68080fcaf9d5b964bb0b62043eef7d7a56ce55956f6990fed259b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b178b0e586a05603e6aca7f7ab1afc9f

    SHA1

    eeaca5abfb798e48a07e7c4acfb4de7eb1bd2782

    SHA256

    6de6a48cb5eaba3bcfa0e6ff8892090cedc3e4aeda0aa2092ec12edb820971e8

    SHA512

    1034ccc26ba5f31729ee200919d9d1e48532126a84a5dab98f5ae9c06cd00d2af4b3125bd540ce1bcb0ebf2118ba16efe2fd3811a9e2536c701f079d2babb49f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    acee1b5569cd428250ace92603f471d9

    SHA1

    f4e3cce9e14b728b45b698d3b0ec269cfb3b5fd0

    SHA256

    005cd9b7ee485b249b3444b457b2006c128e1131c64064c08c57911291bcc291

    SHA512

    abe903ec3bd2e56a03d1b2424a2f502657cd84a3d780934a1056935b38bd2d2f6f64c4415134e92417b6e40685a06f5c2250ab1f8e50560c4db888004a682bf7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    951df91ba3b4ff9eead7a8f7286752fb

    SHA1

    616e73357619dca9cd69df8eaff190ac91fbd6e1

    SHA256

    457d5c58d9ad902a8e666410b977abacd53dd59a9f5578d909362447176315ac

    SHA512

    059b77c5ad789fda38de8cbba9163da32868e213371883a1d8880a160431337ce51eb86a8f5a7dcebabc4913666aa0c832c445e86e47605210d7235b31875f9a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0ba62cf933cf9743b9138014aef2db86

    SHA1

    f65ffb98beaacfe9576f385107fe3030840e6265

    SHA256

    17dc4ad5c381a7ea057423f5a908f87d89cfd56392b283450f8090039d990643

    SHA512

    3ed0948d04692f8a84332b5bd033c8b83eccc5fae1208cbbf9d60aa75013b447ec887a0b32ec81c8a89a8c1233e33aa5a52519406c231dea5ce808abf910d2d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e295f35d5c3ec9ad4f63b2f6e2505440

    SHA1

    74d2d4905d6b87f224ed210391baf9bc0ad10f24

    SHA256

    2660e06aa00f8c96f4145ba77b38691ef7ab2aa9af683261103df6c543e6e250

    SHA512

    782ea02045531b2d113832d9c0df649e5b50dcaeb79f366650ef82d27ba3b9109d586c02650694b498bb0c0ea04be1464da7d6c4abb9896877babd172f225011

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    92fdc5700b8abd84ae4262040af56acb

    SHA1

    c7c7e0117b40e960225908bdca9ac05964ce62f5

    SHA256

    b8d1a14df3a5fbd0c8d5d4129a9b43862c852f7168f7fab96726703813d9b196

    SHA512

    b8b4797919f0160ec83503665391f4849867c5a22f9bf818d1fb94bf3841f3424b4a7890d334b1fdffcb6b82c66de633a355a2af3c64b713b1945688f2f1f4ff

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4R90HQQX\478691279-postmessagerelay[1].js
    Filesize

    12KB

    MD5

    92169c8a0fbf6e404267d0705cdbdf42

    SHA1

    a5cd88b74ca5ced239cdbfb458fe25540d671f46

    SHA256

    dba668b49a111527aac8f616b9053ea57c944e01a84ebdcd02a13da921223384

    SHA512

    8c5d35ea512fa7be367cd9a9ded2f23822dcce730e5502a355ed0d48949ef763eab13be0d50a66de6b0f8419d6a002c12c4ddbf20d97f5393ba922e48a4f02e2

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4R90HQQX\platform_gapi.iframes.style.common[1].js
    Filesize

    56KB

    MD5

    f6140cf2e81a9d5b9bc96970fe1946f6

    SHA1

    e18cb20a08d0c13d44b72e36e9560aec2187abce

    SHA256

    68cc8a99c8ed5cc0eb3aa2146fd34bee0051bfd98faa3c03b83c78b4a12a8bd5

    SHA512

    1f61bf7228ae9fc1b36249223f4ca0675da05beaa6c00b28b7fff500e0527ee237d139eaf6793ece67f8730dfff0207bf945a848795aab7c57301433449a8acb

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E25VF8N4\cb=gapi[2].js
    Filesize

    133KB

    MD5

    288c5ba5b7001fe841c32f690f62cc93

    SHA1

    29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

    SHA256

    c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

    SHA512

    e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E25VF8N4\download-album-3[1].jpg
    Filesize

    68KB

    MD5

    2048924a61b2131973f62040dc0c2613

    SHA1

    0466853204e382fe6221cd41e8d4e0fc29467bd2

    SHA256

    8b114c0fa953c462c1afac958f9526549181a466a15f5d911d1ceb31cff7e356

    SHA512

    3d4999a5c2934f3cb9c28cf0f06b06c2af7e8d7b04c494ef9dc6ea030a622b98fcdeb7aad17191a7565a641be1f426bb5780ec59cd13069c67ee18c1808e84b0

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E25VF8N4\rpc_shindig_random[1].js
    Filesize

    17KB

    MD5

    f019fdda31635d2a31b151ad8ad56c7a

    SHA1

    6adcbec55f66ffaef83d9a134423aa98eb2a2189

    SHA256

    c7fc0b1526533002c956ebf8e8c42c3ad3f96c41ace73fb4063cc89051944831

    SHA512

    fc278c12316e098976833882a38c788d812f9d36bd1b9b2b8c87dab4dc906af26a860df95436ea1b7d509236d44d0533d475a153437f8f5d42653fc28a77ad64

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab785D.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7D02.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit