Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

URLScan

urlscan

http://www.au.af.mil

windows7-x64

1

http://www.au.af.mil

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    29/01/2024, 07:00 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    http://www.au.af.mil

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" http://www.au.af.mil
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3004
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3004 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2156

Network

  • flag-us
    DNS
    www.au.af.mil
    IEXPLORE.EXE
    Remote address:
    8.8.8.8:53
    Request
    www.au.af.mil
    IN A
    Response
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    747 B
     7.6kB
     9
    12
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    799 B
     7.7kB
     10
    13
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    779 B
     7.6kB
     9
    12
  • 8.8.8.8:53
    www.au.af.mil
    dns
    IEXPLORE.EXE
    59 B
     122 B
     1
    1

    DNS Request

    www.au.af.mil

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c7829ce8bfb7c7c0f4af4597c5df68c5

    SHA1

    b90dec6ff322e5fb9cb36e61e71d0ef7fcedc0fd

    SHA256

    7cf7b39282259094f1bfcd2e2e5bfe2bc3268a3261ee34300f6c0fadea21f88d

    SHA512

    ff04cdcd36bc7a8f009cddccef1fcba657249a1a9d5528e541f9508baecb8cc15510a68e74f8cfcde900e152e5c78322dad96ebfab82a47c9af4c53c86bb9e66

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    13a7d69d04e121113c583bb68d519fc8

    SHA1

    537e260467f9e6a5ec94c6a2b6d4a5498a2bf356

    SHA256

    f41e0f24a95bae554defa2f46dbc7e1bbcecde7e2c33777ec8d62b1f91b0886a

    SHA512

    f85fb41c8a27de359b3b9fa74c11a936ef06d5a533f1f84a0a6d4a14e7d272709993aa3063d59f6a41e3d517b82f0551d5234d741b9ab2b656c7da9c5c45fb6e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    989edca9d869f0da808d765cadf35b78

    SHA1

    68c58fe1df42c23acc5c7202015a292456273116

    SHA256

    d79ea503384be7ad4808a024603693c93f0e7fe76f2ec249bf0fc30bceb6e07a

    SHA512

    f37b62aa8cd688b184dc543092ddfa5fd9f742bfcf545c8a9e84d4e442f56dc84ad0b044f7c5d645cbb098cbbf296bff2e322387adf3eeeab7ee4d6fcad85b7c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5ce9fce17d4b83894dc1064956d29954

    SHA1

    567018bc8737761a73c23392317ddb3be5dea9ea

    SHA256

    4fbaf883d1cb9366c60f3cbe5f9e405c226ce0ee53fbc334dcb9d55c03335b94

    SHA512

    ce99e004876c7ed62339bdf39325ed4e82b1bb4dc17a1226b46e8f61d652a4e98cf01c5b324e330fd4b4340af7855987d0997ff0fb19212ea072c019c7c87bbf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a289700f7f060a91dd33c5cc6b04e981

    SHA1

    6e0a9ce5bc92ba8e8d346f6ad975a93ee9e68299

    SHA256

    10ffde9d9f31e98a532f52f596643288e88b3cb55920ecf1aedfca1150fee049

    SHA512

    8ef725e6446b89473e2356f4fce73610b69ba0c99fc8a0fadcbd66bb6b555879386efcbf288a90ec637161cb545284e5a6f71a37e1ed696c11d4f4c4901693a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ffbb91b2d8ca4628f9028bf7584c928d

    SHA1

    3f94b007dd9c44399fced68a784e44ef4af1e063

    SHA256

    47ddab9b53f7678a249b5e4c081daae0cf8231676f07f1541f8e73058f10a02d

    SHA512

    00c0b811316b6a2ce24f57be7cd5b84399fc434bd18ab17bfcaa3666bad62d4c3cbeb7cc33555ebe77f386eaa2151091f3013b991731b45049cf43e2d955b5b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bd27fe7844f5289c903be2141a828235

    SHA1

    de58d44add721ecb4b1d2466c4223768d2711cda

    SHA256

    ed69dcddbcaf398d8794d6c0a5787f6f683801781b12735fc7b85c7e0f2c2b32

    SHA512

    da07b7ebc1d70255a3749d1f6adeb4843e8757d303559d86ea8f026495dc4c646f38f2b8abbeb46c19c7c3ff56be2660d45d30b0ba623c76215e701a2a851254

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3f3d380435eb6161a903894de76177fe

    SHA1

    3d32a61da282b2bd3faccc5a0833e917e41c503c

    SHA256

    e2666b30be4815393de126e9f2dde70445adbd1d2d2b0af6418572ae5652c4be

    SHA512

    918af07246aed06f96d65460754d75d5a05e82bd9e705680304ada90cdb886be8d5ad828c9ed08f03ef25af0456a517431fae376f2e2a20839c07a9146f55a45

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3f6140accd5b6edb29a370330cb2e482

    SHA1

    7623b390c0e237b5e4faf762dbaca9edfd915f58

    SHA256

    c5666d961fddfc31a2c55fec906ead3f87f62756a6aadbe1af813565ced3665a

    SHA512

    c992f30805effcf150537172124c05ae6226e32ce6e25221caad6e2fd528a45b14a42fd948aad15ea2fb10ac40fcca34b4c080de3bd783d30e91dbc2675d082c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3606c3f63c479db1ec89e511839512a7

    SHA1

    0e28f0d628f186f47e297801c95a358839a862b2

    SHA256

    e97f84ebff08327eee9f2a8cd2f4979d4b32084e17f20f54922df85b05f73361

    SHA512

    0810b4ca4bc89e6d7a3050ac96c7718d719be7bfa8f47be2dc21ccb7f50b3db420daff5286690cec29d12a4f4ffac0fc6be7e0aca7a62a0eba5c5716bbd3c508

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6eb03f57f8a8af3a6fb7af9c3b6cfc37

    SHA1

    de934579ef627359426b43769bf1097b67d6b584

    SHA256

    1ca5305e72503dea11fed333faa7b7b2a953c68599ab6938b540ae2655569ebf

    SHA512

    b3a30e8787009ae8f2d2fa9ce76ff06516a3e2813e7547fff96be32b782b0e97ec2e5748ae7993c580ede942ef41c4f2dcfa7464f9c15a0cedba08abef2db7e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a56091048bd738603d13f9513d4b75e2

    SHA1

    e042f87e84eda39c5fb2044597a58afbd74032dd

    SHA256

    5ecde21983e6174b8270f985af750e044a0a27153998bb191a2480aee0ce7a83

    SHA512

    20963655964e9baeb79e1ade81ccbbe61974545428eece14b4bcb9708177462abd190e6f9925c8aad64ea4d50373db4fd26e28f4d6392258997788ab9ad1774e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    be82328065e04d18d62fb4a1e111f3a6

    SHA1

    ebd6d572716df8635e7a48a0c2ac8a702c071692

    SHA256

    2e09c853b15e53ac17c5c4d2ff5c52815ce64952d26c98490352b119d08180a0

    SHA512

    59961ab848e040b6fdc59430277376fa171667034aa6c98d55aaebdf1030fbe01ca6f25b212d2ca07f4c6efbdad3bf25509e0abf2a29290b5f2cac466a7141c0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    31bc40ea540af132e8c3b9390f28b959

    SHA1

    36ef58c0e30631b4544791fd8bc4fe63db807f40

    SHA256

    d0f292760d2f5f9d7d818a53bc6324be1cbb05635e60231c0d3680af8fc69535

    SHA512

    1d8ccfde9727f15abe2a5f81b72c1e4d5f23d8566b05a169a7e2cc5618854fcd964f7ede210e566e13b32a0a0a59205908777713665e67a80331c769ae20e358

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc3ceb4968fd339571c482d93ecd7ce1

    SHA1

    4ec7c8569cec0101004d37f1f87243208815a065

    SHA256

    a7bbd76eb339a70fa5d2baca97a5b1e1440d0bafbb0a9600b2de3e407b72d715

    SHA512

    778a537907cc41f772a358a4d9785b8c44ccefc50f2eac875ecf03a08617e68c9986b0b698e3bb8498d282a41735d954c80dc224730ef1adc57f0145ef7f5d2f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5816daafcc8edb245ff4c5d48040ba87

    SHA1

    08ba9cec166116f9a503b82bdf0b59b1b48a2349

    SHA256

    df9d0c772fafe69e4c9c716d1683f4c341127aabd2e70f3d0c5b9f9f44322bad

    SHA512

    88388493f7f29791d4a850f67f9297235329cb80bae67197f0ffdfcc992b39f1c5bfb755762b557ea4a6f4d8138e7436e07ff9453de45087b82aab005533e05f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cf61b6c7c29f9e1fae181c5ed4cd95c4

    SHA1

    99089d54fad159db79e8a46775316c868ea05a5b

    SHA256

    0c30299ac5d2fbb887be66de33da433b0c11258f8011d363209f596ebd028a98

    SHA512

    95ccb4f48bb9b3ad3cfaf7f18e00d0b2e4181d0b95b6e25f775230f98ec09d0a1cac7615b8da4e93f4849c5a6509b660c5af301d70300edf3dc60185053871a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    245c575ae1dc356067c6eeb2ed14463f

    SHA1

    5fef82c89e8787c045742b092eed758028ad093a

    SHA256

    2d17db3cc60cf4b24c8fde5fc941bca2a7fe6810fde78993e17a9f9584a2df98

    SHA512

    8ab9ea522a06188ee8a6d45c3f3f04389fd9ded75a572a58c577f7e9eb2b484229839f8e556ee07c1f292f6650c5d1f6d04565c98e4d37e1acb8de89137486f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    15d253d2eb910db5ee10e0cd25058b45

    SHA1

    350ff2eda7ad0eed63cb92459f7495a477495a57

    SHA256

    7bbb81c53396d4feee7ecd61d27cbe3936d436323785b47e1dedd5befb8c5c72

    SHA512

    d34227fa6cd3ac8a377279e660183b363cf8a3e484dec78cf317b4f5992c8cf5e151f2dca075a0800c535a39342a4b4a8789b75d5b1be53a186ea3ee8ba06713

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    58f37519e2ad0a02fe82d8f88483e07a

    SHA1

    ecae610bfd486ef973d582411054d81f67489f74

    SHA256

    f57a3ccb1e33dd3faacfcb8874f46e7afeefc3bddeb75660db82da47a08ef01f

    SHA512

    30f2850644c39b28f4a58d1d35c17745cde826bb7479f3cb8cca1f6a630344f18e85f8afa5bc6a5afff3899239f934b596d7acb7447c304d2ca3d3914a566b90

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabCA04.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCB05.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.