Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

URLScan

urlscan

1

https://dl.google.co...

windows7-x64

1

https://dl.google.co...

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    18/01/2024, 16:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://dl.google.com/tag/s/appguid=%7b8a69d345-d564-463c-aff1-a69d9e530f96%7d&iid=%7b89452841-ba15-556f-1798-31dea9c06ea4%7d&lang=en&browser=5&usagestats=0&appname=google%20chrome&needsadmin=true&ap=x64-stable-statsdef_0&brand=gcea/dl/chrome/install/googlechromestandaloneenterprise64.msi'

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://dl.google.com/tag/s/appguid=%7b8a69d345-d564-463c-aff1-a69d9e530f96%7d&iid=%7b89452841-ba15-556f-1798-31dea9c06ea4%7d&lang=en&browser=5&usagestats=0&appname=google%20chrome&needsadmin=true&ap=x64-stable-statsdef_0&brand=gcea/dl/chrome/install/googlechromestandaloneenterprise64.msi'
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2184
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2184 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2148

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    00e717bcf5dff9454078c85d810d8be7

    SHA1

    83a8a5d9655ce6129a175c3c06a1b644dda609e4

    SHA256

    6cd5b7a63eb65baf9fb00ffa5ae23423cbee0caf16a55ff85d38dbbf34913325

    SHA512

    f170a1a7114ad06b428d3142ff782df8a5aa2ad8cfc8289a5d391187849f833238c6c46fdcbc4570a9bf4e79c109a4dc8d8ce45554abf56f61ffef9f74bf6a0d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    de949fb0de2820bc94133f2d3f899040

    SHA1

    7df07f99f3daa52adc2cc369084ed4e76695eaef

    SHA256

    8244165b4d60f6a075d5445b15418ff1b9e3d13ba4766310db01b8c106822498

    SHA512

    b64f3371987a88af9b93d4d1f9b659c81a9f301dc6a16d4bc52c93f5cebcef074e7de989024749440d573f74e9cba8afd7221388d6429382c27975d5185ded19

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    69b42ee72bf9441cb36fa82c8cbdcb8f

    SHA1

    ce5e4c7c49594fe29db320fb97ee9e03471f38cc

    SHA256

    d42c79a5b81d98f17c3206110ea84a6bce40e462a9131da7014ca0de1559f939

    SHA512

    9c2e4fe449fa8ee2a428cf16d93e9e5aa55d2b2a1ae3564516ff466f86e297dccd459813b05ef09ceb4790723b733217d616d4a4db0d9eeec613e614978ca72c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e0b6204375e6580093991f5863b6f669

    SHA1

    854f57c0d96c4361c117d320758ef70bfddcb550

    SHA256

    94a6f64787574a8c6972b8679a66674b8dbed94b2e99bcf9b29c41b1d6a1ff36

    SHA512

    f015b1ccd755691579fd70e2cfc45edb198677474813b03c116f513a72f50f44b94d27adfd34afc926cf52874eb92344819db5dd57bc711a481545cf8ec1339b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e6736ef927bd74ccf0b850c5426c4263

    SHA1

    bd3b7ee87ef6428499ddff93283b6eb9ba2d2b08

    SHA256

    c5818f2c6bf15003dedef4c46628d295421fa8b5e4de12632474526d9f40522e

    SHA512

    92fdfedaad8925e53e6865195e35e6cced82a26c3dda3ecb4accf78d541acfad35e07e7f7f34022b1cbce1d4f67f102475e75b9bcdae5d111679082d311ed286

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    93db900ab6f1f64fcae67e8ac9d656e5

    SHA1

    deca963d735a7e8b85caebb84225c31ff2751cbe

    SHA256

    217a1ab00ab54c070530a84b9f0eaec4988f10cfd80d8cd9b9e32291c6ec5134

    SHA512

    abda08f7e750944bccdbbeaeeb4735e4f274728d2700173fb44211c7e34bdc78b18857f6ee9a0b64538228cab19c46dfc7ed4230d3afb37cc97359ebccf6fde3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d48d8320d4dfaa862fd1befa4f1933f2

    SHA1

    bb99855b3d4fc3d4c6e56ce0e291b45dbe57bf3a

    SHA256

    27ea36978a6232667e2b07e44f6616302097f86754afb9852eafad358b3c8a60

    SHA512

    d4e4285be8b8d8202176448f5aa721c00bae244fbf15e5dd4bda362bdfff4e32a0d82311389234bcfea1cda430225ba427bfcd828bbd8e81c3dedde86ec86648

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    037be71bfe2bf26e03991521cd6e9a37

    SHA1

    9bed4a5265244c38f64872b47c8f01897c87cfca

    SHA256

    5f7beeab32771dcea752ccfcc54e0f00984f110a8289ed74522f08e76517ff66

    SHA512

    8263a9ab740778e470f90108ab04d43201f3f2d0a4e4cdda7b94aa4de13ba21f6cf59f0e8d71d3cc112912190fc18760454f48d86b549e6d6776935edfc3d03d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc70c43f77c745f72f5afe2c58eae665

    SHA1

    5ff5cef6f642d7b741ccdadd438f7e5caa553efb

    SHA256

    5ac2264243eae3ed32d89ec0fcea133406a414a09cc429c12a891a46d5b2980c

    SHA512

    676180e73666ee8fe110d53f5243768c30f541ed34882df9839a1a60607c5cb6731cc9c7f8b73036994361e7726f4b16f2588bdf5b04cc6391ad212ad2b907a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    99637e33027ec623d8070d4a127c4d57

    SHA1

    22e8325bd2c5db16c0bd247b69884d3f449338b7

    SHA256

    48de110cbd1ff8de19063c4cbfccd190314e772073677a3ec1e6bd6a6cb565b6

    SHA512

    0291763661e085f421dda9cd31303cfe41be7f19338b480072637a92ed4c3f069bc4ee73a8e9963ed0e9a6ca3688fabad28daaba83c9db41519c3c7fda39dd77

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2c36f47b1113667ad4c85d7ff0618959

    SHA1

    3e3ffbb2c43d9fb3e90d9cb169a82b108de0d287

    SHA256

    0bb14e5efc1345145443058e5e3cdcf126a12de8457f7d4971de0d15cead4d23

    SHA512

    8438ea7a070f1f1a01d4c9b1b59e96ee82bfb56d3097d0e1cdea279320a4e15e23dfd91d5b4e2e996789d3703c8e77548d98ebe2eb7b84ee07a6c14dc5ebc1d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    87a02bdc1643d34ee472861700f3e990

    SHA1

    1ceab90f29cdfe5d96b17ff089054dd6682d1443

    SHA256

    48a537a0edddc7787146a99b3ae1ccacb43773d55dd4fafbd69f7a395eaa6b2d

    SHA512

    1a1f1c833ff1572054b1e7451bc4abe34ffe7f5b53897d6396623ac9d530dd80dda28e2d42ceee3fb3a9e56f4345d698dfc11c6c6fc87ee7e825b6bd11fd22a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    eae8ca94a935bf97293232c45f358cfe

    SHA1

    aa57347a9d37d2890ad8971df9e90012e1fc8773

    SHA256

    384da0d0fde5baeb142924f1934563f51d984ebdfa2b096703434db6465743c2

    SHA512

    42ff9845a6addcec6b9eb0d56d28dd41fe652ff6b838bbbe6f19bf53d1804747b5fd495a34bea7cf98621b6496f97ac641a9c48fe3be67ae4791b4fcdc4a2fe6

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab53CE.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar53CF.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit