Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

79d6f6e041...8.html

windows7-x64

1

79d6f6e041...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    147s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27/01/2024, 09:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    79d6f6e0419f78abc8a81997d7726538.html

  • Size

    22KB

  • MD5

    79d6f6e0419f78abc8a81997d7726538

  • SHA1

    7dc75e33f2091e254cd33fa18084b8722434a268

  • SHA256

    0014ee870bbf531d7882407141d96b75a04ad4d49f1dd3d1b873a76cb2c7876d

  • SHA512

    6e6394a64c91bcf2d052c9b2faed44b25fe819e401c312711a25ed0c1684c087e5f195969d33e09d244ab0033a732952d76e6f55397f1d0ab7823db8bbd9538b

  • SSDEEP

    384:F8an/oC97hnflvP5LESGKDqiSiDfQ3anVc1D40SGKfhrwjaXwrgwiGKdAfGKnsko:F8an/oC97hnflvP5LEpKH7DfQ0qd7KSA

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 50 IoCs
    adwarespyware
  • Modifies registry class 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\79d6f6e0419f78abc8a81997d7726538.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:4828
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4828 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Modifies registry class
      • Suspicious use of SetWindowsHookEx
      PID:2852

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    b610bd5c61e2121914699e4b6cb9f7f4

    SHA1

    514f5ad7770f18e1c5b62253d95d6aa3c63c83ee

    SHA256

    3a418958f81aae04aa13719238c42d24adc5258b95246b3df0b32a1bf7676b51

    SHA512

    9ebb50a5b4942dfbf1a037e8a1b6308502d5bd337abaf90cca0d44f3a88001b25c6f82787f13b2d5a6f2bcb81209f831c16422d4c1a6cb6e07d55e8dccd7b3b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464
    Filesize

    724B

    MD5

    8202a1cd02e7d69597995cabbe881a12

    SHA1

    8858d9d934b7aa9330ee73de6c476acf19929ff6

    SHA256

    58f381c3a0a0ace6321da22e40bd44a597bd98b9c9390ab9258426b5cf75a7a5

    SHA512

    97ba9fceab995d4bef706f8deef99e06862999734ebe6a05832c710104479c6337cbf0a76e1c1e0f91566a61334dc100d837dfd049e20da765fe49def684f9c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    404B

    MD5

    23d2deadf99c5c7c3fe9fc3dce2e1fb8

    SHA1

    135f24922dc75255672d3cfe858bc719105bddf8

    SHA256

    b5aef84d427f770f0e8cf1924e35eda5cc0eb082785dbef2ad56b8d3384b6992

    SHA512

    90f727a0b45a538670948cd30bf61ec0bd07102c29fe8f7afbe3227fb6d688c7daaabe3da0ceff5bab8370ca4a99ee412da9d18839c86f4da996b5b2d493a987

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464
    Filesize

    392B

    MD5

    7162bcef82f444fa7483a86119290336

    SHA1

    d0c2d4b5633ad6e33ed8b44b5e90f6096e21b675

    SHA256

    9704f23899c1dfc9177f7771be12d5b108517d2003e7994fd0ac833dc5230e23

    SHA512

    3ccd801788aba5b0b8bcc42f708949b66bb022a26631f999d70a78a92aa2bcbdc83c8489aab3caa30ea10745ee35ae343f24a24fa308a61b8d5269ba070db862

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\2N3N6S1S\avgle[1].xml
    Filesize

    84B

    MD5

    f32848cb4c8d0a84a984075de89482ac

    SHA1

    50e5701eb6c139451e418ae6fa42fe80742c4ec8

    SHA256

    ebbcdf04cecebca8565081d42471b90d6fbeb2c99ae50861e393817ba53ad07a

    SHA512

    e6547288530fe8cfb65ee66946854f59cb0740f5195ae52d9f90a19d5d3c68122ea8eec221c07df5d7004396c0b70541176520422f8f7d12e193282a17d6c666

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\0A013ETK\jads2[1].js
    Filesize

    3KB

    MD5

    bc8141c4650030c41f6a98026b12ce80

    SHA1

    af5618f7e467a207d4c64627be580283ab5640cd

    SHA256

    5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51

    SHA512

    70fc6246b67dd18b92661c9562020cc9256a9f2aa500017bc79e71b9528251dc241505b58efe58174e0268d6cd44a2158c25f5cb6217ea25a6ea73f58e99ca86

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\QPBAQNGM\analytics[1].js
    Filesize

    17KB

    MD5

    498d1cff947c1f8d818dc18b2ec281d5

    SHA1

    614af39f37745a8bd51f157559b52410fca4bb6a

    SHA256

    26bd64552d525b81329a2ca3a6059fbd1ce0135e5738c16971fdf3082757a18d

    SHA512

    9cd0250bec36414dfdadef9428c131fb83f61d3df43d1866b0b558634108da10590883dd5568b7761bed2135337ad1ddfa669f44613f93d03e8639a58f4b4a98

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\RVXHSNZG\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit