Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

4fef2a0139...b.html

windows7-x64

1

4fef2a0139...b.html

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    10/01/2024, 07:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4fef2a01391e495047bef7edd1b2addb.html

  • Size

    65KB

  • MD5

    4fef2a01391e495047bef7edd1b2addb

  • SHA1

    64979987b25edd7486638fc4c93cd3acc91d0734

  • SHA256

    ec332078ec2aa35cdc3bda90ca0c6e2f439700e11daaf33b4991528f6dc85ee2

  • SHA512

    ffe5ce774e98f5b40accb5ea20448e8441f2f70940ef3c1b94496589541f669c900a3fe18846b51452bbf2cdf99f317081a33ab48ac9c43ad99fd1db6313c727

  • SSDEEP

    768:/ZjzJZwpD3gGOxifL0A4P8+gy/vRRwww07gEZsqsoi49lG2SU6:/ZjwpD3wxifCk+NRwww07gWtb9lc

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4fef2a01391e495047bef7edd1b2addb.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2056
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2056 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2312

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    a388ee301b8710e2fd8f371ce4e929bc

    SHA1

    c9f7f3d9b310ead35f6b1a710e55c6ef4df06c25

    SHA256

    6a1af7fdf7b33b1fd0a042c2e23451886a051cc7fb3a25270600422ffd8bbba1

    SHA512

    9a8172d67d8becf06ca71a2e9e8cff12efde9da4f9c694f40c3f18d078378fd3a03453c078c75ca443e5a369087b143d9cef870744821a4ee3f3ad1d4ec10151

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3ec0abba14571519e2c526d15d8ff3b5

    SHA1

    3065f94194aaf95e7f3045a907625ec9e7542816

    SHA256

    a8e0da91ad5a231bd92be2ebc081fc291632f1db1cbd2e243d0b2dbefa8b993c

    SHA512

    a4ea734f0e1b65f8807366a9aa5f7dd4e1a02768cc8f739578cbe00f398782f7d34981129332815b3c3b705881a2959bad01bca01fa662d4a13043937d8e5cf3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dddbbb9462c579e8aa19c97edd771ff3

    SHA1

    efdc06d4d5a4d0d0635d2e96adb24256248e49ce

    SHA256

    956a3e93111c3ad1844af7c763422503a847bb4112cfcde74ebf8e3337096f1f

    SHA512

    6518290736776adc7adf49e5e499466934b5feb84426ac32cf7eddfe1dc20d2b0a544e7ae82d18b78c9230a4b1142f2a18b84c7c43278cf5f233e58e36597a97

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    518a1c27ead132a8bd9cab8f70b87d29

    SHA1

    bf9f02a2e8507470ab6582991b3a838ded4005d5

    SHA256

    dac1d3aae85acf108ea6a528fbc265fcdbb56d8f99a7882db4760cdc82a1d51c

    SHA512

    7601bd6a0246786431545e8eb46bf282bd0f14820563c95429f3cfd5a5b5d2b105c6fe8beae9255f978a6db7d11c99198ae5cd0804105c0d61e422667be0fd3d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a7f43e4413dfbe00a3e6b5963217bdde

    SHA1

    b43441000a5612a284bb8dd0af2429cc692fc3b4

    SHA256

    d4c4bfa9a104cd34670642ce2a669e115842f5072892b29f63c4616e1336ee32

    SHA512

    578e24f71d6486060ff1a53d53103d79db4af372d83383eb72bebbd1e3cf165c348fc951e4a7f18d1e364141a88ab63adbb13e245967f4e3039d07f813e7096b

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M2VO416U\platform_gapi.iframes.style.common[1].js
    Filesize

    56KB

    MD5

    f6140cf2e81a9d5b9bc96970fe1946f6

    SHA1

    e18cb20a08d0c13d44b72e36e9560aec2187abce

    SHA256

    68cc8a99c8ed5cc0eb3aa2146fd34bee0051bfd98faa3c03b83c78b4a12a8bd5

    SHA512

    1f61bf7228ae9fc1b36249223f4ca0675da05beaa6c00b28b7fff500e0527ee237d139eaf6793ece67f8730dfff0207bf945a848795aab7c57301433449a8acb

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W79VKSP8\cb=gapi[1].js
    Filesize

    133KB

    MD5

    288c5ba5b7001fe841c32f690f62cc93

    SHA1

    29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

    SHA256

    c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

    SHA512

    e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9F3C.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9F50.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit