Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

4ebcf7c0b2...5.html

windows7-x64

1

4ebcf7c0b2...5.html

windows10-2004-x64

1

Analysis

  • max time kernel
    160s
  • max time network
    218s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    09/01/2024, 15:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4ebcf7c0b2399c8cc1e37437949edd35.html

  • Size

    134KB

  • MD5

    4ebcf7c0b2399c8cc1e37437949edd35

  • SHA1

    a07b00ac4ceafbb279d2c053d9fcea86afed18db

  • SHA256

    842f86602dcf8b5a093efe728b3f75fb06b04d2fabc66228603a054b91f91ea0

  • SHA512

    45201e000af0c437438086c94ac57dc9daf8b111a5a6c8723ee5f6d0b2df268a0fd1bb51dbca39025e42a5cc21c1c3627b815516f4e73871cb4e7bdc4e8a2549

  • SSDEEP

    1536:+jBHv7ynvdTgtIAzisko1n3bDZi1+aiU4aWHdbdt7R2j2JT+JtS6czIAKvVf:eBHTGd0tIAziskgbMs2q1IrczIAKvVf

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4ebcf7c0b2399c8cc1e37437949edd35.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2600
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2600 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2800

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    34305e3b88dccd0ebf5d6faf572948f3

    SHA1

    e520a074004939011b7ac2f82336fba11967e0ff

    SHA256

    cf57d00467272775af607e0c53eb928e23fc2916b3eda7ac6a964331c563ddde

    SHA512

    cc29931bbe8733e7bef29dafa839483fe14719e75d5f83c7465531280d5dc74b61519814ef98e1334bd5c23e084fe7053461058c8d7eb943711ba1c4659c3db8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    680b0f13998812b1a47abfbc35e5612f

    SHA1

    0ed4b9e40e3fde4ac43c69b524cddb8b07228f98

    SHA256

    bd470f03f7778291ccf383d946ec193760359e669be572a33df5aa6362ca4908

    SHA512

    f24bf39c36ae0f834ab249dbc1b7301ed5a1ee9aea06a2e57129755a76c945d4b7b8bc17f81e65a6d4f9ca75810161dd3aeee912dc9d82d9b1eece53015d8b07

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6ec566fd0d3071035a46ff61bd7f24f1

    SHA1

    2551e6603ff9a5e672493d72509dbd84b76c3ef4

    SHA256

    a9b8ea99829649edd731454b67276d623a0fd461add447e072bcce68c31b25af

    SHA512

    4453760cb6ec31e8f5564b2871c2495c8c8581896b75571a2f5a63d111de59a7fdfbf454fc0a89c7c12049a704f313effbb151bf7433402208752a4e8a9fc485

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d2f3becaa9d7c0bc0a8ca1eaf148e903

    SHA1

    80ad3d79e76e129cc2073bd158262c38afe56340

    SHA256

    1a3c7e4f3f9ee8469c5ff7e43cff8e232a560dd0d3d80f6979c480b6a713b4d2

    SHA512

    898273dc56129f734bf7ee2e5730f1ccac05cf154c7daaabea08723326e0cdbe5549f243f150d315a7a4182d053adb62d616b2112970d9dc670096e7805c0e19

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    926e0ebaa84deef90761a3151a79531d

    SHA1

    143e8e3253f2ab2aa8de26ec7e262468890b9b2e

    SHA256

    0eee5159e7cedb9a0e81e59593fa4ac3bb2cd71b85db206136f9397bf1be7b12

    SHA512

    31f84b564565a34af033fbabdae76c415d7bf7adb0a98779cb78c851f108eaf007a1ebb7c6e76dedb794dcbc3b86bfb263bfb94571e9e0970672e2527b6d4a74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8513f35c07b3400d27f5e2914412aaf5

    SHA1

    e40357d5974e3f46fa5f80706bc03ac2832b852d

    SHA256

    937a2691498b4d8896e8795e7f0e72c0b468b689b9586ad0392a2e00ace18939

    SHA512

    807f54593c885b76472424929bcd2aa1b6e218301648886512c234660252ad705bb51695e6753a8156a293797b0e03cc00a1708080e01920037c0b0893fb97ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d8a65af316d42513ad9889af62f78bfb

    SHA1

    0fb771ee1f3efb9b056ab0a590b844373be0e268

    SHA256

    72e9b6b016614ca71e85435c1ad652e6c6875f3b10df15324769b80fcaf8343b

    SHA512

    85df403f2874ef6d8ef9669241716f44a0fe42e3c830ee582d73b926e58f1ef5f1310b2ee51349fe3bd8ca4d7cb883e1262d32e516011ca3b0730bdb43c7627e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    87db7f48a9e7e88fd9678a2e60f98b3c

    SHA1

    b04461dcf73333af5db6897f054891b81a5e376e

    SHA256

    6d31bfbcd098f14493ed81380b374600a556e376f49d4b945325595e4d9a9121

    SHA512

    33a8484cc385afe3f4249d754c984b8c6e2de20bf4e575f099ba4e64e493983c3a8dc9e07de214111227853fad6b01458c589bb142d997d58687110187115666

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2fa156e83d7c0d8b79ccc8103561e280

    SHA1

    bed8866fc979b8fae1ae94b65f52185937793000

    SHA256

    79223afdc0c919b456caf2e4bafba74bcaf9ab97de0f069523baba248fa05792

    SHA512

    542dcb07505674efda99253b999a8084adc5a1199180e9d699146dfe6e06c662e4d2b3718fb9e54e4a33cf75b57500d9deb053572a11d313a996dbb41d59b8ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    86101db1c5b762ccaad6bd5eb864af10

    SHA1

    6d64d5b5bc5adf74dbedced9b46b3715cbb4449c

    SHA256

    fba893885d052693a97447edc5b37bd2d7cf8d75605cd86c8ea3af60fd80d5de

    SHA512

    08c5fbc2771f0639f3fd17cb3db9d7db46fc56de589ab7189aadd8bc2144d5113b5920985dfa3fc45193b7b386f108d2982a1565d1057c685b1faed8032ac6d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3f3c27e25509cfb67a269bdc8c1b9b65

    SHA1

    31c8524db5d9cc5f63a73105b41d51a30952527e

    SHA256

    f6823093e14cab0add8f06738c9ec9fba5d4aa3555db90e2587d037c337a8a0c

    SHA512

    6ba58b3313f3b7cfe2541854772a3fee842ffaccb622b0736730024e1a3398d09c4bd0cf88afeb09b1b533871f6c84f70ae5f5f22c759b35165347a16de43afa

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1YVWL6AI\platform_gapi.iframes.style.common[1].js
    Filesize

    56KB

    MD5

    f6140cf2e81a9d5b9bc96970fe1946f6

    SHA1

    e18cb20a08d0c13d44b72e36e9560aec2187abce

    SHA256

    68cc8a99c8ed5cc0eb3aa2146fd34bee0051bfd98faa3c03b83c78b4a12a8bd5

    SHA512

    1f61bf7228ae9fc1b36249223f4ca0675da05beaa6c00b28b7fff500e0527ee237d139eaf6793ece67f8730dfff0207bf945a848795aab7c57301433449a8acb

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L6MCRSFJ\cb=gapi[1].js
    Filesize

    133KB

    MD5

    288c5ba5b7001fe841c32f690f62cc93

    SHA1

    29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

    SHA256

    c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

    SHA512

    e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabBE70.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCB20.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit