Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

URLScan

urlscan

1

http://prm.africaoil...

windows7-x64

1

http://prm.africaoil...

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12/01/2024, 10:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    http://prm.africaoilbusiness.com/4JKUqe2564GKEk306detqvcmvbf14030UYKUNZEIDLYQVQJ17064JCGN9091q13

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 40 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 7 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" http://prm.africaoilbusiness.com/4JKUqe2564GKEk306detqvcmvbf14030UYKUNZEIDLYQVQJ17064JCGN9091q13
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2336
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2336 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2732

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6403ab31b012f93d8b52a983bc221e23

    SHA1

    2463cd2526532d2077dfd09e1dffa6e4112976eb

    SHA256

    2ee64207df0606237961deed38bc34934e02a542df8ae829f92a63184af772f0

    SHA512

    17c35e8bdc7a9adccfa5f1e2cadbbd0009ab906889a6a833a11aa9a6f4021cb62931950506d4c7f79938c622cbd902c9cb21bf060e5657f2d517561d44d8702d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    47f8cf80aadf36cb3ac8e3e493816fb8

    SHA1

    6c2fe18964bb6a4c1337b49174f8d6fd1b4b488a

    SHA256

    24056fcbaff65015c3e25db019c3d54955773b37ea061457c4aa07a606f44147

    SHA512

    ea606666f4a59cf54baeefaf532fa418dc892488a44e0f356adc483985f8f2db4d6600e88349a5ba85585a999c9312036e831ee41726fcbfab416680ca99cc4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fd8877eaf9f084fd20c93990a8f700b2

    SHA1

    5e9ebd3c722d73e413b7bbccf578b09e4e0e19d4

    SHA256

    984448c1c57786be309a61b085d72fd56b8ea0ae6fe28829ea0208b24b8a8b55

    SHA512

    8df677f248f17f4be87706a754e0680bbc53e1ae63465b7dd6970102f4c1d97f1b01e0d05c1b92d5483e9cbc89105d40ee8490b175b9f2192f94b51728843f3f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fd808dccc062c8f7e4445eb3b851c2b9

    SHA1

    1f6671dbb10756eff0f011133826ce6a96eaa869

    SHA256

    34a31a0081b0220c2dea7c13c149ee912028a351279e3b8ab95f3eb6f6882469

    SHA512

    1c137a9547c4828033b2fb70664e240a12dca73703d39aaca3b20e120b188473a72d489c61ad628c14cf1da0ad4cfbb5b99ba81ba6e69ba3429d138f1ed3ea12

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    480b634834ba69d7a907ede521e2d8fe

    SHA1

    781106e5ae26ab012cc946053337a550a79cc882

    SHA256

    117185abc7379041e38014baa617f08e15a0ed1fce08f4662e9042923c986ca0

    SHA512

    c98d552c4e2fb76ba2b23420d66ea339f905409eaf44ad7663dc48665c2ee662e19c97fd22a78b5ffb55efe7e028bc36d3b30070c33ff3974e107b3038da5b00

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4e0611d777963a0b4de21ce1da48ce07

    SHA1

    6ab5b19791fa81510267c35a4d0c02cba548ab61

    SHA256

    3db2dbeb0950409a55943b7b3bfc44f502f4cd36afbd30df8c8452d11ef96be4

    SHA512

    0aeb63c89cefe42543b8f25975ea6e2ef59c7ac220afa3adf695c2abf00294d99ab8f6829525b7736347b724ee099178fef504956ec677f35ccf813e6e691a5a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    11e39b02710bb6f0f489c19d677d6554

    SHA1

    dfed3014df8e424e94acb73792ef6c93e8b8d40c

    SHA256

    ea2182e2718f4eba9efc7f3bba0139851982af82afb11e33327af2bd2363ebef

    SHA512

    ab8e767c55f9e8bab0e7a8f2ce718d74818f8997c0ce67b2d59e09a5530faafa5e9fa34db19b1dcd8c08678eecc8a93d4157f56551f2a3b857c971ec6a26a7ad

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8105.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar89A0.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit