Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

5601320b66...1.html

windows7-x64

1

5601320b66...1.html

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12/01/2024, 08:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5601320b66ac922afdcd9de237649681.html

  • Size

    90KB

  • MD5

    5601320b66ac922afdcd9de237649681

  • SHA1

    243615aa4de84a7ffa4e6b4c268cf89ff487b4e5

  • SHA256

    522e5b87f61714bd444096b70d2d65c9d0dc67609df12a80422eb71c0bc3b1f9

  • SHA512

    8e0896d79df65ef9caae99d975ad40091c7303f41cccd393c52e880209a1b6706f2ed3ececbf6501d930b8832650f36df720c4614b5fcc47b1c280005e209f43

  • SSDEEP

    1536:2swDAWVhtPaEMJD+JLjIYLJORhOFvjM1+lXJ3R3yhXvA/uaq:2EN+RLkTX1+hJ3R3yhXI/uaq

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\5601320b66ac922afdcd9de237649681.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2312
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2312 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2788

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    4efd39d710f594189320153618811a37

    SHA1

    d46ed9200c706c4956f83d7fa65ec5d15fdf56dd

    SHA256

    15e32b15a06acc166f84d26421ab949c1032e16bd4ee9b2e4c4db036b096d7e1

    SHA512

    861b792a366219b709d4f0c1db93e666818cdef2203597eb3f74d539045c12c8b7bc6930422daf0eae1f3360e625cc6a6bc4d19efefd56b6d5e4ea9c256e6a3b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    0206cc830312c3d5ea9e098ab51579d7

    SHA1

    8fd64c488595b05eabb46b195cf894b570cb9043

    SHA256

    660e0db1fa49bb457952dc73891191ef58ae8318ea41eca08fc6eaf820e51a3c

    SHA512

    b2f7b96b060edfde316799354e6f9ba1b2f1d4b597c8a6249b659c2fc70a3895445e632e01052f08a25a016b17ad4a543d5a3e01d587766c6291a5aa7d3704ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea6eb11df007cb610f8ee4272ba7f994

    SHA1

    bcc2273491f861f8b03d83f873e03d620772c560

    SHA256

    ae4323aeeba9a2c5a7cdffd234d2775f28cb6110d52a37a1d7a6c8668d0c3bd5

    SHA512

    e8e3aab9b3f5d94a60ed02a84d0e510a3e7942f5d170db32043388467f30f85bc2bcc5184f801a3416861c1ef5de3fd2d48d2e1e14f08ea6bfbd396f3d2a3f0c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    489e861d1f196bfece120712751f6200

    SHA1

    2ade6dcb305113928ba0bbd1819a95abb198f63f

    SHA256

    9068539269e22b6bd66ef5cbe8cc2ed962daadab69eb156ec786fcc99ec49f71

    SHA512

    6bee66f82ad1edf87336e4ef5b3c1816ff11a0529b0dbdda6f4a357478fe2975ad3614f99c724e3021087b72ef1b3e9af0b77ecad8985ea0447970f8ec841e0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4cf98fc2b27ea3139020b85b5958e3e7

    SHA1

    866cb30ff059c0d2cf9146f3c850c5bd00854c2c

    SHA256

    228fcac5072f969b09627eddedee1923faf2e13c8457e93cf448499a840ddec3

    SHA512

    69a661065b52aa6f1104d07f992843e2701314d012f4220397fe55df96b5455410be4485a2685ab15d83e43e84195c7d27c95075281f25192dc1e182f1e3086f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    392B

    MD5

    a216f4cc46c20849ee0c74d8566a0721

    SHA1

    c6a38946977597f1ae9c64c3ff1f6279e80e65ba

    SHA256

    b56b6a8d6a2a1d5d5025ec78ea31d3344186cb7bf73d1b1d8b0d4d1c26094aaa

    SHA512

    1de55f70a6e55d18a970df50836b68ddbec66decd064c7204f2aba4e08fa6aee73aa530551220afa776dd6c667b074293a5b71bb4b77be8d6787b93484b6703e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\53STNJLW\platform_gapi.iframes.style.common[1].js
    Filesize

    56KB

    MD5

    f6140cf2e81a9d5b9bc96970fe1946f6

    SHA1

    e18cb20a08d0c13d44b72e36e9560aec2187abce

    SHA256

    68cc8a99c8ed5cc0eb3aa2146fd34bee0051bfd98faa3c03b83c78b4a12a8bd5

    SHA512

    1f61bf7228ae9fc1b36249223f4ca0675da05beaa6c00b28b7fff500e0527ee237d139eaf6793ece67f8730dfff0207bf945a848795aab7c57301433449a8acb

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HJ0GGVIM\cb=gapi[1].js
    Filesize

    133KB

    MD5

    288c5ba5b7001fe841c32f690f62cc93

    SHA1

    29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

    SHA256

    c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

    SHA512

    e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6B41.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6B58.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit