Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

5aa1033a2e...e.html

windows7-x64

1

5aa1033a2e...e.html

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    14/01/2024, 07:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5aa1033a2ea96980bab309bcf15e1dee.html

  • Size

    12KB

  • MD5

    5aa1033a2ea96980bab309bcf15e1dee

  • SHA1

    36960643c1133f1dba3b38c40a215123c881b382

  • SHA256

    3060060147319e08bafc1c767b33c2643d3497ae8a2096f85fd10163f0364448

  • SHA512

    12325b4d52c7e8f0f59497672389af5335ba9f571203d85342d328bd22fd5fe8fd68e46908846d12a9ba9ce31cca6cbc7beb3ca119b3b7f1f40c493f3fc9fc57

  • SSDEEP

    384:QIzdnFchXgld6rTyv6Rb+nQKrlibQmYMH/pMF1E:LzEFggyvCAdhi8yfpe1E

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\5aa1033a2ea96980bab309bcf15e1dee.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1732
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1732 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2084

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7689175f793c283dc0e558be4a690dab

    SHA1

    41aa02823daa7180f41d847951901e94a6d02052

    SHA256

    b2a2cbf18abaeb6da0c5bf1fdc6d02615d7c5dca3c15e6db049d2f097c5589de

    SHA512

    f7018ca62a9c3806756ceb67271c5818eacfe9914a35faf6903de59bad319643652e37c018e4c5de76eb722a82d3ff65ff94ccc47609883f0f7e6f464b80bb0e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f17261304c8db704cc239baa51044196

    SHA1

    37b0b6ffcfa4685167ea10a4e1c5e623224075e8

    SHA256

    0ef712a07a390090e63f347f353e44367aa423a4adef3b0ff359231856e42a8f

    SHA512

    ce912b6ef9c5a668b3fb5735ba0d34c83fb6fdd6ba0f6d98d125645e4e9e8e92e4d0beedeaf61c877f52dc11ddf894a8b4e49158f2f483b8eb2977b83564f559

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b0fd9bd0502186ce8ea274e15588f04d

    SHA1

    edf1a44728929d3a85ce0ce8a46a792a51343fe6

    SHA256

    990f978398577306b48a5d8ef878d437034c724ba4a32f5705cb86694be7257d

    SHA512

    068b6a80cf55ffd0f2c3be89c794277c3750ec6814ba64b5d9bbeebf19994df7fd86c546f76b01c631d24a51c381de9e8f0e5ab4dac46d9119ae827d7a9a543a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    549c642d252121c2722b975986328984

    SHA1

    b8490e24c3188d66a905d16906aa6c550afb4db2

    SHA256

    78a5a71827f242cacb809f0596dc8f0ed0b80cb31a52514506c5046bcaa0a96e

    SHA512

    7743017b3d0f1f8d72cd6c88e35f481ee4332c0dde7fd6f3346ed15e868d0e99a41caddcca767d57022a8240a78c52d50ad642254ee000734c083c8d400992ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    de7c00fc9bf659105704b33b64c5be9f

    SHA1

    6e798f8d1fabcd99d3e4e0a0d5748f326db613ea

    SHA256

    dfca49527901403dbe01c377433fc644c39370fe349479c039b38f72b77176ff

    SHA512

    d82591ef6c463644c3240685c802c9c0dfdbde693ceb211c0ff4ed93b64422e7bc3e28def4f88d4debf9610fefc93821e0b0cfc28f62cd18ce3d8914d1bed8ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    94890464fd94f54c0a42c9ad4d7f46e1

    SHA1

    96e11ea648b7b5db5c271459f98cf551826bbc7c

    SHA256

    39e4a7bb4ae0211feb8c534a43a07e72c8fe7d4edd21fae7a06e9c5244d4c413

    SHA512

    7682a82a05dc6afe604f9e99d84be902741876f96328873168bb295c33bac4f4d8e495a730f38d6a5bb6625a4b50c51b4c623039695bd7dbe34d8a8a129f2343

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    669261b8e5cbbd96de7288e6fcda91f5

    SHA1

    ebe02102c174fa2404671bf25d67d08341b1bb53

    SHA256

    3747128448a7ee3babf2ad9de10f8b2d079742b17bdd7c8b9fcfdcf97373c6c0

    SHA512

    96922c87843d57f332d69d334dd50a2b36023150a5f0242a5f91a67d17829888e1ea6f46527553e7e4280c079ab2a301992b689100228f867ad64d9237ea3c88

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2aa1810ef9448ca836b1faa6c20c6cc3

    SHA1

    f4705a92881c815c158aa219b5cfdd858b5cd882

    SHA256

    7ad8b807905ca728964072d31e68a86c4c381931de783bfcbe3b1bb7479e58a9

    SHA512

    55c039123b8637e33a236607f8ec7b07f4ae9dd066569a5027e2c6f3e936b58c99ed1db4a0fe9b22fb6cde4649a767733269fea29a88629c1e781f19dc9caf7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    85ba55d5d3e1f49718eeb1d6f95c33e6

    SHA1

    abe0833253440fdc97ce95502e63d77e7a16d1f6

    SHA256

    081d468de95b91f9c1f2f91162230f5678275b8a7e671c070aa8f63bdf997798

    SHA512

    f567f24ac9e08faf70268a736059f0f0e92cb3484895a611741badf0a0af297e303faf1deb6d957e1373e33c336a044d4cc2eb42d1797c5fbf759c9ba51ef0b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2bb69f102dfaf3f4d7eec02d12972130

    SHA1

    a7f3f3918a72efe285270c8d51fb72e474d87d38

    SHA256

    aa68094d92963c7c52e5ff6a2e8219d17f1564bfa66ff13a024cdd4f0d59cedf

    SHA512

    c6079fb5b29882417d3bdfee27ad74f7cdca0a5d335aa74a33e917970126331a59c53f2b6cc62439126eef27a1bf7d8dbc1ecdf0a6c7ca31520ad34ca1ff0baa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    10fe7e6cbf3874ba674be06aa3da8062

    SHA1

    f516743745098b7dfb3d44f2761649400c39d36c

    SHA256

    22ff8df614e62626f3dcf3c70d9f78705fa09d3e0ac54deb0f13f4383a3a73d6

    SHA512

    e6290fd8b289a31966d2508921136217bc998db14e60ca71d7a2368b9789cdc6a9149924765c66914a1b5a301feeaa12bb5db72b12e2e718657a789f41ec9ac3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a6fc63b1c11c705734d37a009280742e

    SHA1

    ac98712225c22196cf56b4912442cccb00500394

    SHA256

    d2e0d13b9628539d8318544c7a0759d737cc8e9b6e7bab1b9e00be948375d2bb

    SHA512

    49e2cd7c5a2b4cdbf6372c41f17598b44e1d31b92ae88e7b27ba2f269b17a2b0d17b098bb9fc89129a01538b7189f64ac783031361f1ec723db0738be8cb4b31

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab42EC.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar48B9.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit