Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

56a7cfa73f...2.html

windows7-x64

1

56a7cfa73f...2.html

windows10-2004-x64

1

Analysis

  • max time kernel
    144s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12/01/2024, 14:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    56a7cfa73f99acb7fc19095e9e197412.html

  • Size

    58KB

  • MD5

    56a7cfa73f99acb7fc19095e9e197412

  • SHA1

    f06a32cc4fb4b2b23326412a1abb999e7d0a24c1

  • SHA256

    63a086b640d7e5b025bdddfff237ad2195ee5fdb1e66022fbd25ce265ec6bb03

  • SHA512

    92a5a2f1ea5bb46e0c73300b653c4d757a74bf12418f4c01067fc503a299b62b298cb9661577cf3f090f0a3a7473bb89d9e507ad9ba9d3f88fc28d37f3f6fc72

  • SSDEEP

    768:AywIVwhHrA+OC2aWaWS+SCyWO6amGnGjDkUnKV7MdwHfeDmTd7CiDUYggK:xwIVw1rASmkU+YdnDm5ei1/K

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Modifies registry class 2 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\56a7cfa73f99acb7fc19095e9e197412.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2492
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2492 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Modifies registry class
      • Suspicious use of SetWindowsHookEx
      PID:1040

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
    Filesize

    4KB

    MD5

    1bfe591a4fe3d91b03cdf26eaacd8f89

    SHA1

    719c37c320f518ac168c86723724891950911cea

    SHA256

    9cf94355051bf0f4a45724ca20d1cc02f76371b963ab7d1e38bd8997737b13d8

    SHA512

    02f88da4b610678c31664609bcfa9d61db8d0b0617649981af948f670f41a6207b4ec19fecce7385a24e0c609cbbf3f2b79a8acaf09a03c2c432cc4dce75e9db

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\BIALIPCT\www.sledujfilmy[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\BIALIPCT\www.sledujfilmy[1].xml
    Filesize

    206B

    MD5

    e9eb8e24d0b5d33e2961311a1dcea799

    SHA1

    1217c6cf47a70a3234ef12ebdb12b80e18b97d98

    SHA256

    a277c3bb4cf6a259bdd3763f6ff8e679329aba167ca2b8e1c46bf24391e28bc0

    SHA512

    70be7f6d86e36816b7f0efaae3991f13907aa57309da2fbbcbfd85240e443c6254bfcd6380a656a492e733e0ee8ce88b4eb55e95b799d3ddde3e1889220a6705

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\VersionManager\versionlist.xml
    Filesize

    15KB

    MD5

    1a545d0052b581fbb2ab4c52133846bc

    SHA1

    62f3266a9b9925cd6d98658b92adec673cbe3dd3

    SHA256

    557472aeaebf4c1c800b9df14c190f66d62cbabb011300dbedde2dcddd27a6c1

    SHA512

    bd326d111589d87cd6d019378ec725ac9ac7ad4c36f22453941f7d52f90b747ede4783a83dfff6cae1b3bb46690ad49cffa77f2afda019b22863ac485b406e8d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\ccxtump\imagestore.dat
    Filesize

    48KB

    MD5

    488dd4d4b4d7dcdca7b4839bce2b6990

    SHA1

    bff234899336309de4150aa83bb3627077e0251e

    SHA256

    c2b5a272a80c66c5ec10278775ee4f7cc146d31c7f7ccc9ca556ba14493a8377

    SHA512

    36fe9ad25e6f31b5dee602de7b00543813bd826a1c2fee7d1606a0a84d84760838f73e26ad12acf02e8800d526eaf919acdf9f3e4e13cd8da20c9ab74a916c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\0A013ETK\bootstrap[2].css
    Filesize

    138KB

    MD5

    5f119ce9205f2b6f491d270e399adee3

    SHA1

    4985d4fdeaeed4e5c7abe02985ad7b5c4733caf9

    SHA256

    0fa0dda5de7fe281bafc27ac748063712002452b5f699cb3949ac22e7b035ec4

    SHA512

    5ecad57f79edd254046eae495b67ad19df8ae52d1b29daef730d77576b0369a0b129046081cbaed3222156f1648aed034e2277e8928585ab8f7a50bd422d96b2

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\0A013ETK\js[1].js
    Filesize

    175KB

    MD5

    aa80377b837ddee9c993c25516998b30

    SHA1

    49d912d448b98c1b04e0c15c35adc958ebe397e8

    SHA256

    d1079af3c137423132446bdf83b09255a229cc515513a4263b0e4fde117a8bfa

    SHA512

    06c0788a79b78c51930d78a6dd69adcc7ffe6b9116ee7965aab6abdd83ea6aa85721c76aa7a2dc034d3e9ffd30de8f647bf9a26c9af4cf3c369d8309b897e307

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\0A013ETK\modernizr-2.6.2.min[1].js
    Filesize

    15KB

    MD5

    42306a279a9e831515347ae319181cd1

    SHA1

    d069641242e4fe1beb6de8f53a77dd964c98bce0

    SHA256

    cf25ec18f223f4c51ce1128a42e644cdc2244d88f89d1a51440d9dbe51f4efe8

    SHA512

    2729e4c89ff5d7aeea9036d9d3d345506295dc04609e6c924b340b035a4402742e66a3e87400ff80d84f90f8eda85e6f329e053db20b156e35225ed9cb73be06

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\0A013ETK\new21649[1].htm
    Filesize

    61KB

    MD5

    dea2b5b650b82fc18d86b7f2c750ee8a

    SHA1

    34ac9f0752ade4d62f02d6ecd8311c9602a62f95

    SHA256

    a1d8cbeaa8ef6e5a426aa3925622aefb5c0e4640ad1af82b6ea47ec0b8da67b5

    SHA512

    3396923a9300347bd842875693b37d8d83506037bbbfb38f73ad6c42c3f6ed687e297b2e780b9bd5ff721c1bd41879b07fd45dd1a6b7672755a24f96af69aec1

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\0A013ETK\popuo-box[1].css
    Filesize

    6KB

    MD5

    dfcce7aa32615868d90c1d8d73780a68

    SHA1

    ad7d5a390945981cb674011d4c3b9f8574f1bbb5

    SHA256

    09d6ec9f2a98b46961909918b2a3fb3f1f2865852c27616c8f457d3924d0df8e

    SHA512

    a576b6b13befa76d3c932f021141e5fdbf93e8e12b1f75df250f266cd0cc8d5cd5ab9b774c12762b091d49846b6256942a5882c133b2a3af57db91c2829d722e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\DQ2SYU15\easy-responsive-tabs[1].css
    Filesize

    5KB

    MD5

    bcfee95d6072192fab02515e703dfb91

    SHA1

    b6df3b3cdaa07eee03adfbb58179b662811280fc

    SHA256

    aa7e391aae6e5719fbe6aa92c48dc980d4875f722a0d77a0ea2277aa9d6c5882

    SHA512

    59f5cb036e5fbda0e01b4e77485068c08f0d6b0f9febd13151fa69e83adba834d31717f3ee564b26fee6210f8d7b6c2196ef0b8806bc8b5b60cf09f5b2af9318

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\DQ2SYU15\font-awesome[2].css
    Filesize

    34KB

    MD5

    b652e3b759188ceaf79182f2fe72ea64

    SHA1

    4eda182cbcc046dbf449aef97c02c230cf80a494

    SHA256

    b977f453450222a069d89dd2e776f6f21f9fa42f6e15c03c7fe6ff34d9a2c159

    SHA512

    328efd96b43851e716f0e09c4546737f49ed7cc360a4e151e3a01c8f666d58ef2f2a106f0fbf550a9dd538a4b393a4e8bcb8397af2f75e2deee3be50fe332ee2

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\QPBAQNGM\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\RVXHSNZG\android-icon-192x192[1].png
    Filesize

    48KB

    MD5

    d6dba4445f509aed4cd3c3e43eb7bfc3

    SHA1

    66bf1be28e5ec3ebeb640bd7f751beccb37f3ef3

    SHA256

    39e4c1e7bbafca2feafeb911f4258bfdbbcd5d9b224e7d0d113dc6007ca3d17c

    SHA512

    2f29bca18e8cedbd43e8bfd918f80d313d434af2de7dfabc4b5a79c8787beca894e8d7d697c0f4487039bf0c4363ca56bb537c07f01af25f515fcef510b61f6e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\RVXHSNZG\zoomslider[1].css
    Filesize

    4KB

    MD5

    196ffb6dbad6adf89d3d2e1f4fc94f78

    SHA1

    2b5e1b7fbb138dd89841aad25fd6515fbacc8258

    SHA256

    5b01ed33eac4f598f5b17a6a4d25387838ea96770c72e228b2a5711576897d78

    SHA512

    c4696eb599b9da3223f76112504586e37723b5ddedf156f626f0fc8a53223ad0062c3b7ff978677eeb93aca862e9f7f7487ebc86d471b4d5792ca10a53d25e73

    Download Submit