Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

702ee6500e...8.html

windows7-x64

1

702ee6500e...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    0s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23/01/2024, 17:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    702ee6500e15031eed568cee3229c928.html

  • Size

    842B

  • MD5

    702ee6500e15031eed568cee3229c928

  • SHA1

    0b202a36bcac2af96e80fa6ccc74aa09ccf8f12c

  • SHA256

    cf304d61404768d90bc0f06ef8bad524db5e5bb45d2d8b426091dda102908fb1

  • SHA512

    d244bc2523cbd2f59642598106082a2188f15223dff3c20b6281f132628e4a457cd11670b652c5d661293d8626907072d7d0da83192c9063ee6efd74852ba4ef

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 6 IoCs
    adwarespyware
  • Suspicious use of SetWindowsHookEx 2 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\702ee6500e15031eed568cee3229c928.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2172
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2172 CREDAT:17410 /prefetch:2
      2⤵
        PID:4416

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
      Filesize

      471B

      MD5

      f3990afbcdf64f1f806d1b926cf35b3d

      SHA1

      da1297f9ac1e9e9e7e78b567006e9248bfc212f7

      SHA256

      48c214dd545cc2718f7e844d699efae28f80d683340959e000bb41ad75dd6386

      SHA512

      9b5bc750b2e1038c82a93d51efe0d7dcf951ca594a62a90bac0ca1019d232afd07f9630e1ba1b609e128a9ba9c23c1ea8f1badd9e6b25f3eb591a936c89ee939

      Download Submit

    • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
      Filesize

      404B

      MD5

      60e4a46715fb28f00ae43754c6ab6821

      SHA1

      8cae7079bea8d1e2ab45b3b6e664ecb57c9daba3

      SHA256

      029ec09146985244042d3dd4203368a12a483ffc84f47aec118711a815b55062

      SHA512

      7a40c59bb3f5c82e661ba45604e29ca1b02675d5fd919b0ef1307b137c23c6e582d5bf069adf525d81e234bace6b264c63195acdf3b1fccfba19c8fef178fd1b

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\7C34XGPV\suggestions[1].en-US
      Filesize

      17KB

      MD5

      5a34cb996293fde2cb7a4ac89587393a

      SHA1

      3c96c993500690d1a77873cd62bc639b3a10653f

      SHA256

      c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

      SHA512

      e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

      Download Submit