Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

74ec3e31d5...85.exe

windows7-x64

7

74ec3e31d5...85.exe

windows10-2004-x64

10

$PLUGINSDI...s.html

windows7-x64

1

$PLUGINSDI...s.html

windows10-2004-x64

10

$PLUGINSDI...n.html

windows7-x64

1

$PLUGINSDI...n.html

windows10-2004-x64

10

$PLUGINSDI...l.html

windows7-x64

1

$PLUGINSDI...l.html

windows10-2004-x64

10

$PLUGINSDI...Ex.dll

windows7-x64

3

$PLUGINSDI...Ex.dll

windows10-2004-x64

10

$PLUGINSDI...es.dll

windows7-x64

3

$PLUGINSDI...es.dll

windows10-2004-x64

10

$PLUGINSDI...ss.dll

windows7-x64

1

$PLUGINSDI...ss.dll

windows10-2004-x64

10

$PLUGINSDI...r.html

windows7-x64

1

$PLUGINSDI...r.html

windows10-2004-x64

10

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

10

$PLUGINSDI...sh.dll

windows7-x64

3

$PLUGINSDI...sh.dll

windows10-2004-x64

10

$PLUGINSDI...ui.dll

windows7-x64

3

$PLUGINSDI...ui.dll

windows10-2004-x64

10

Analysis

  • max time kernel
    117s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    25/01/2024, 16:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $PLUGINSDIR/Components.html

  • Size

    3KB

  • MD5

    09129279318e4b369ab2735238c096a8

  • SHA1

    650e5805ba4f4f57df7316ae86adc96aa639730d

  • SHA256

    c4a462d888994922c132fdd69854db07f34a43fb685a9c527ad5ab57462e08df

  • SHA512

    bbfd5880bc41fafa3de9dc800f9417f6ccfc61842e706bb10e92314bec34e172d51cf1f54475912e5e2dd1b08dc0bffca9a519fdee0959b9e25f523d47c29172

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\$PLUGINSDIR\Components.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1392
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1392 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2156

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    491ef25fe49581a3775f6b7e576750f0

    SHA1

    d151fc9e51d8573ca6527a62cbe167c31f250008

    SHA256

    b804d1107f75edb47b6f9280332919d63eee5057c8434e918f1c06e5b66ac89d

    SHA512

    15800adaa973da9811bffc35d8d47bf9985d04293a6c778da2abc825e111c0e4b09256331e21aaba46d537793d9d3d897c90587da1282ba20fdd2a79a9625fc7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c2ad5d777838003bd687a600171c2991

    SHA1

    8c4ead2098d5812ec6a8619c55a02785648cf29c

    SHA256

    7e90f87b57a3d1462047574d6044d3dc3d1ebf0d9d9913bdc1fe52716fc829e8

    SHA512

    a44b3aa735465f37e30b8e6c746687a4cd37785b4f53078febb7cc54bf931c9a8ad9e577a2f530c7fd825216c963336e720070aad03a408ed35a90ae9db81793

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a1f465f90457260db6e8a1e1cb009dce

    SHA1

    3397ab030ee34ccd1eccc703a6bd49929ec20d6f

    SHA256

    d2d42ccc0f20f578185ce7e0598f8756ad7654d1a1773f84efe58a319bbe4a10

    SHA512

    02e6469c47c5e2c9b3cdb31ae914ae542632273b1a04f0528783bd3f2f02f77fcba137acdfc0cb60f9f2778b5afd4aa21232c216e5eb5fe14e937fde7a300cb9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    55364834351b90629b1f9e1d2a844892

    SHA1

    5daa4a56747f707c8b59740b342c414a21c5d09b

    SHA256

    4535f8efd07d197c8f752f5ebd6dd660dafc8d0390583b53af18b39f9e45c827

    SHA512

    6aeafa95fe9272421665902baf603bba15b58957fd884839d8efab2ea4c2fdd26bc8780d40616a04a8752150dfc141562e03826b69b7d894b473767eebcd9c61

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b309a8c573b28a2f85eb4df7e8ef26ee

    SHA1

    a8a7a39f3623516188ca2c7407f0617450e4e101

    SHA256

    48443dd5394fcd88903f38bfb9ba81911d049c40d806cc090e68bddd0ed004f6

    SHA512

    33676dcf776beef56573edcc4b3858492c38c05387818a2186e2903a32e53179598fda875e9018c2cce2407dfb78e0fdb0dff33a4636e8be9320bf03490a1c54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    90e7b9fde3c3d8194053812653c4c09c

    SHA1

    448aec4769703a920e44499cef0bd83429b3f92d

    SHA256

    cdcd03a5d4788962155d4dc77f4ec1af479f22a0ed8d87b27f46d7c89ef71b92

    SHA512

    a4fe1f44983822d557916689dbb87908624039df50e574b996966979e328273de150049d064c33893fd8b7eb54b0efbf1feee6b6db918176ab8647e4006ebbf7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c0e561eb01b1e7b9ad1df4421b55a529

    SHA1

    20b687d10fb7b7b0a0545395b7c4923dd3aa883b

    SHA256

    5f756ed04039d0e1418bf1db95875d2d82be848d88a55cb2d2b8b5372147b0c1

    SHA512

    4578e00b2db85a450824257d7a71c104be94648bfad1e03791e4d6d44884a7a994bfa38b7186c5f8c0bc97a5a845b2a2d96da88f095ef4d2bfbe339793780103

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aac76e2e2069ee73b69d9a0d22f325eb

    SHA1

    81da96a31bdf50cfd3b2c275a1a9bda8b6918d1c

    SHA256

    9e5da542aa81997b74b0633328e4a9b0e75acf4d4310562ec43234ba40eada86

    SHA512

    a8f6266ecf040675668a019936ffc4c6aafc8c6f8440b1422abeb86eae10e30c811089717ab9451a86f49960fa7c869ece21184aac3242089959982264c120ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    76cf8e785ca08253423f056b087a0297

    SHA1

    51acedb6bf2ce3f7e0c00bb1f5ad9b554e31fef8

    SHA256

    b8ccdd30c0f30f6dd266018f51a5eb86b30e7cec5da3aad06cd5a841de802026

    SHA512

    78b65cdc39137ce2ca8b6b99ed424416754e49adb3cccc47e624f2a8fa628844d9221bf4456be2a81dc4ccd1b33237ac5ba50e2165a52a88ca0c93112367daa8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    af5c9ff224357e234745e567d9129fdb

    SHA1

    45eaaba22c9ee7900f4d1db1b4d9adfbac4a6ba3

    SHA256

    57c281de915840cfea742aa90b53900d84846d8f4cf0e1402830227c12fb9b86

    SHA512

    57057de6df85f69e895f905d9f18a661dcdf25f2c203e7586310568d2ce8e65eceb2dad1ea49509b3f2770abf5b2241745e6349e3062ee8480f89253fc7e741a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c0b8b7bb13cb9f45cdef21fd99c265aa

    SHA1

    6561a75d98cd8e884aa203c8637fde16320f1bf0

    SHA256

    3c9b99ebfd3556eceace11de941e965c617cda708451c622c96914fbd5a667fe

    SHA512

    6985429e7fc35959995f572c6c9affe2e1901da9d519b2da6ff982261ff71d44a4621a0c0bb508e43e908f1391752ec2b713cb018ab7a399cf5c03a4d82d0025

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    06f2b196f43f5f7603235f903ef26614

    SHA1

    f44be09bc643d43c0fbc4089419fb8aa2d98483d

    SHA256

    39ac3ec4d2ed4ee7f4a68654d81886f4e545eeb864e76f8d00d2b14a1ff35c9c

    SHA512

    d6b51d547e8293f40e37798c9fb383ebaeb95a47962d2d2ced3a3285d4039ba4a3e9ad51c91cb128459485c3cc88c62a8515b0af16ab0f47b395facac9597c3e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bdc08d02a1cfa93b3117392d5fb127a8

    SHA1

    0a2918d0cd355baee86039213a385bd7d6d724db

    SHA256

    c668d402a409def6d5a9d34b3b495f75f15e4c213d4383c25a6b949cdcac9bd6

    SHA512

    435e5befffe2cd833b2c325c30cd17b460ebf07a508b08fe801422368716e1ebaf1ada22f1530f0a33d482f90eaef09968205a8aa100e4fa42f8663201eadebd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    feb85a4d0b59f75cb59fdcd244f8464f

    SHA1

    6c1fbdd3fd35e345f75b6b27e33dd3f5a013a761

    SHA256

    ed2e51478aa76cdb68bfe985f4fdf0c57434eb91e32739583c773ef1729b961c

    SHA512

    bf547ed4cc910e79c5f05529b6e4de33c9b46c7001865d01fa70dd2ace62638d875641295f6d7ae30c4673f23cfcd21c237f7ba9e456c00bcc9a8d23e0d4e4dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0b1ab371ac593981a305fc9f54c184c2

    SHA1

    a17e13c9559123e01e4f50899c363d2e781c204a

    SHA256

    defb5ca830b61d0c52b7d42cdf9c029ffc6179e8137e8ca4193e326c43f7a828

    SHA512

    4c984b62313f7fe2aedff24e229b720f182842a8db5fa316df6050d7cc94f162a9184de82ccaad9ca4143c280320c8d173c3727fbba7472e434a6d72360935b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c601c251c8f079a947111b71787d7fbb

    SHA1

    8cb5b4dcd991773164f2ecbe7acde7250913b20c

    SHA256

    b02b3771bf245717b3970917412da8053fce4efcd5db1f0e1f92c74f940a9fb6

    SHA512

    cc474741443c79c76827701fc14488a90a51853dd90471ef901e58bc9dc1f7b279ba31eace615e9df5ebfac641ba79ee9dca2ad798e3a51902f35feb66467502

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    12d12975d75dd56f2e2ae044cba2d4f2

    SHA1

    118b2d46ad1496e66349588cd7c31bbc299ef297

    SHA256

    cefbb168942e758f5e8063d6e38b2bdae7c3f73b29c1e89fe9c10790ea15f2ae

    SHA512

    2762e099a83255dc89e8b7c329bda2ce36cb94cadee9233cdcd53921839cf66bac25031c1a189384fb7b85196b15599939eddb21bce0e95922e1b018f9cdae7f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    544771eff6400be787d14e1213744179

    SHA1

    ef4ee76adbc7adc735b82622f581fa3ec33cad90

    SHA256

    bfeeab419ae31ca168137dd154a115a234d6c0e37ad2c4632f74d87e41a521dd

    SHA512

    888cd0f00c3accd3a3af63ea3eb487e8c425771e84d8f45f36166b34296afa3bf3954de24a165b877a1f926e9dd00744d335c0dc21fbe153bd2a51264f5f56ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ba05d24213c2a6e143ca4f59491cbef7

    SHA1

    24f2641cdc81bb03fb0b2a7a038b5cbcc51609ae

    SHA256

    c71640aca54d4d8c49264b3a65ac973c19d397812c4ba89c2bf1a699cf8ee487

    SHA512

    a42ec9de6d706accdd5ae499517610a62d30389e3f8e53f504c0725e93858d1d745e14860cf3a9ba8618111fba5ffe9a4c10193daa27be873b927fedb1785e3e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    15cdf211348a43c11f42f5bab001e62f

    SHA1

    b250c73351a4b87a71e8216bdc10b8ca14f9d187

    SHA256

    d1e7c21ba7839d27321affc60772602c5f359c6c10250c95de2aa82fff84b30b

    SHA512

    219cd37a25d89481df798b28388d9535caec65761df363c0c5a216fc9282a40f35b850121f56272a9b4e3973a575dd55381fc00d2c4471ca112edecc97606f93

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    1dba1deec6423b6b2636f50bf5e6e962

    SHA1

    af56e7ed2e112ba5aaac5b83428eba15fd87f167

    SHA256

    83043a7b8567063cd448fdb869dba423ca04c76719d702ab0e32941f89677897

    SHA512

    8609f5a6bf9c957e4026a11846482059d74d04c712a0fcdbfe08c510a2bd42c5485e3a4bedd883655252a48b0317c94e30db964e55a46a3a05ccb0973f5c2b6d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab25E9.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2707.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit