Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

8f24ef1371...e7.exe

windows7-x64

1

8f24ef1371...e7.exe

windows10-2004-x64

1

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

client/error.htm

windows7-x64

1

client/error.htm

windows10-2004-x64

1

client/index.html

windows7-x64

1

client/index.html

windows10-2004-x64

1

client/index1.html

windows7-x64

1

client/index1.html

windows10-2004-x64

1

client/index2.html

windows7-x64

1

client/index2.html

windows10-2004-x64

1

client/ok.htm

windows7-x64

1

client/ok.htm

windows10-2004-x64

1

client/view/list.exe

windows7-x64

1

client/view/list.exe

windows10-2004-x64

1

mpvod.exe

windows7-x64

7

mpvod.exe

windows10-2004-x64

7

readme.htm

windows7-x64

1

readme.htm

windows10-2004-x64

1

register.htm

windows7-x64

1

register.htm

windows10-2004-x64

1

repaire.exe

windows7-x64

1

repaire.exe

windows10-2004-x64

1

skinhelp.htm

windows7-x64

1

skinhelp.htm

windows10-2004-x64

1

vodclient.exe

windows7-x64

1

vodclient.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    04/02/2024, 12:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    client/ok.htm

  • Size

    1KB

  • MD5

    073f5d80a7eac89f0baa8de7dd1fad83

  • SHA1

    dc915ab293ec8519377b3b78a889d404b60e2dbb

  • SHA256

    4cfde6bfdd629e90acf500a89b15c0f4dc367d0a1a193d56072cb5bd3d399dfc

  • SHA512

    300bede6bdb7a4284154ab3bcd139a9a0eb89ec74c6e3e11896daad61ae7e1a9f537a435531582c879efc4fd74659ffea97cf803e4f5151293c355d7fef47812

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\client\ok.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2500
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2500 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2688

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e099c83a0c32b939caa2247ea2463f2f

    SHA1

    b90cc0721e733efa0c3537ecea7de646b9988882

    SHA256

    fee062728763e0f70f0937643dca9091bb90cfc06114c891eca09c5d49165769

    SHA512

    fd50fc537db1ed04e5a5be6e3165649f98e21ff3132823df344ba1bbfe163a79f3455119dcfb8490caebb9559b747f1548cf5b3e907ad8868b6b421dec796347

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e3adb4d1c2af8c0b911619e09f750597

    SHA1

    7bca275f7ee6035ab0aff94eb20a9ea056a3e1a8

    SHA256

    2b563fece7688096ce20931e71a56b097b6dd4279ad2606a2ce5d7a8df60cfb0

    SHA512

    5a4192b88fa59a4d72421a220e0ba876a3ef8ca954f1913e03a9939554d9e3eba6aa046555f208ad3e9f98b65c306a973597baeb965d840030dd03f5434609dc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bcb89fb3384c6fe349df2c8d6650e867

    SHA1

    ff1869d9f71308ffd01e04e2d9eb4f80e4f15872

    SHA256

    702ece14de818108ed75e3f3a53dc838e0f3789b56d40ad12d38c0b00f2d2c48

    SHA512

    f8c53de4c4a6ba14d91c0fcec33834ba7728cfe1b0664fd8a9f5068c9c15e8021aaa38fb6a88ad37ee0a7aa70e97272abc5f9cdba02bc1b1ebd359fc6f158d0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0adfd08174889e81b90ae175580c4099

    SHA1

    98c0a8a9a8ef11131ad27888c827da1bfa94ff73

    SHA256

    a7790622b1a3594526bdb27d76da51169f882e26abf68eb78f999a9f90905c99

    SHA512

    9d5eef18d578ca9317b3b80c9dbf36ae5715867e8ebdd1f2a8914683329d25442530fb235a10bfe2979a996f5d2c341bedcbe2e8de5e52c23b5760baad1d309b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    02f7449734fa25ca70bdba49154295de

    SHA1

    f890595598610229b499f290666166e84560201f

    SHA256

    cf53e572b981315e163c4287651640382480d55110f5cad3cde2310d110525fe

    SHA512

    0a437c7bd9335c269c304d5809863af8dd6cc0bde000897ef6d82d31fdd04f44cb3cc637ce15e3aab03d324a4228adad7cc529f140c4701f88cdaf4c4ebd3eca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    05bd336d58d2baeb3157c88e0a3f158d

    SHA1

    e0930e5b4e117c93dffb97061cdfbf34e4ae1917

    SHA256

    2139844cc16be64ff34879820b58b5e2dc2075f85902ec08e7757a6870bcce4b

    SHA512

    02428738106526bf7a7ee6443077206f3728cd75a90f2616ac4986e4ebd102e13ce9141fd0fcdb4353b1df210a4fa3e9372594a0431df6b26d4e721abecacf2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    85f0ba5a55d76d4d14655207c5ec767c

    SHA1

    85a4cdf109bfad61ca972f4b8c88868b292e2e1c

    SHA256

    692a505557582b129503503a5d9be932cedf3f9cdff3c814064b1333dbe06f61

    SHA512

    d5ebbe8edbb42e90311d9a41d7be926ad230e1e80bdfa97734caf2d94c9d1ad904bc47943ca666568ccc8ca870cd75d14819a8a6469c291de5ddde960f6f2340

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5aa813408e8a37de2ca0fa02f15d99c9

    SHA1

    b886ae8410b9ca34a245a591511e7c1ecedf78bb

    SHA256

    a2cc0838fa464dcea30e43bc12f577a6f54ba55297b8231e6f39c8eaab71defb

    SHA512

    9920dae97504d2783a33382bf87b6ad3e3f8db3082f92f5f6a09023a7f386e7c96a630ffecab18678fc836b0eb58ce4e80e9a316d22703fd2e8eb8d643127037

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e8d4684de59893959faef4f11e665f9f

    SHA1

    52ae121a66cf4b92040d7dde9ce86db28db53853

    SHA256

    70cf75681c19ba3c5aeade8e48449ab96abacd874f3fc66650037d7a6f9a8e36

    SHA512

    3dde1dd0a408d9994150ad63434533d914ed2e05090824f8b60684853096e85298f673e36cc072044d4e1bda526c799a00a8cc95b4a9810827da47fa2b6d2ee2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e38ca862b939b92d848fba50cee8dd31

    SHA1

    49521914d006528d08d20d7c9c6b4e14c47430f6

    SHA256

    7bb5d0a99be0aec915a9dafd9d536e93df70b63d5055faf237bc27d75359a6a1

    SHA512

    2ad7b79b3b424b2b2b71cb6bbd06ad94ebcb1589af75910ca0970f1ff31a0c8f3473ab3c7389fccd3d715ac918d3abb3688ae9f0feb11423727264e567933ec3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e3c93ea8e9c296212baf276651e6d718

    SHA1

    ae821503e92e108e1558f2b65b8fd823e5b89410

    SHA256

    7a1e4860720166602b50fb3c2ea36ca38ce1118b1403b8cbf4d2fcfed0790f09

    SHA512

    e8d344b9aec17a31a84ba6b269ab108b7063e2a3ef9e386f875b1506528c5c86495ffd7876aa7a6794646f92499d33afdb23e8f78694b605e648914f6704ccfc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9a01e895830d332b63bf5f5fe6f66543

    SHA1

    246a10a4d5acddad41a6db4db0b0136ade629978

    SHA256

    a6887aa4b2c9db4859a459ee1b87a2c9ca6eefaea30a81834350d5b8fc074ec1

    SHA512

    7597ed472719d454068bccdc06e182c7abee6421f3d8216474005fc4c7684c19ac6a8805701d8cf669a20745c14ab989a1bef7bb093a5781d65aeb050d8c4a32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8dc16668c8b8dde2b32892aeda97fb77

    SHA1

    7291184d1583b96c1988321ac9a8c8ca5efa1c37

    SHA256

    58f440f454389dacbf733b30f173e9c3552f330606307e77b6599a50e9d2a740

    SHA512

    371066d79fcc0a8caa1bfc35c785d554ca654156a5feb5a3379869371c6351ec920b5c776c238ced7a9861dd05f308183fbfc89c476cbbda5e76a2187be1f6e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    da5cd5874197487fcf0c57fded54a165

    SHA1

    aa1a6d891075b335700f8ee1547e93921b5abef2

    SHA256

    c1247efc59cf25708e1e54256415ef9291eb0ff07098d1e4d038e9f03bb6b91e

    SHA512

    a053080b76954213e059855b45b455d91cbc642b3076249c8bf398fc37d77730bb10a62ca60af299da9667a975fd4b96341e367662c9a72abc2c3d4622144a0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    67c27920d6abc72f6f04c6cac7fa9938

    SHA1

    0fc4ce7c29f3ed4e85d5e29712ebff35bf9bb92f

    SHA256

    40f84f80956981088863da7618a3100cb1407f41beba12696e0a3e9ad552fa78

    SHA512

    6a0c380abda87a0b864c98fde3697bb87fd6a8fdbc40ef4559d2a4a818eea58ceda56c7fcf7d71e07755d6b75e43884325eaae8198e291dade57f7a2f3845331

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    29a41fa8a61a347fce3f629bdd2bb390

    SHA1

    7436ea59f7c137e438d155101c620ed5500a14ed

    SHA256

    34f1173e27a6f32cbea0038e2bd38e9d84d9a1ac683a9070598e6685606add7b

    SHA512

    6ec9dd8416602823c93b0dd6834166a31234bdc983d0c4da6fe12a9d56400aae61080dcaff8f7b0600c57fa48f7dac9004b60ff9f0cd631866ef7382833c4f5e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    39a07f4b9539b27b18b16ee073d6dec6

    SHA1

    7887fe11610f45e31e2d29ce6c9131cd213d230a

    SHA256

    b1d4dcacc16fa3aa7d1db69d0094066d6593f51d4b723f994c53336efbae8bdc

    SHA512

    811311a86ac691aeeb0be9e74c86af3e1769b9707e13435cedfeadb7186e7bf806c0a02204cc9e9baa3269212e2fbcd60ecc892ec9cf89ca3c2d5b801386cf3e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    637228bec27ee01b90a8ce1721791f77

    SHA1

    ae1bb643e894379de90a55d6743cceb7ff5fab84

    SHA256

    806c5bb3d2a9155671182055f08c18984247a90b4874d80e60bca3bf5da261ad

    SHA512

    f3f8d2d87de74ab5625527e1324b4b47a1a3b3de16e45fca52f271a8354739385928ef5f5c3c8145313c5b7f001fb2dffc145d473d32dfc50833fbc5ff0d4715

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    847dfdca289613e6b841e9a232105169

    SHA1

    621108fe353bfb577210c38da71cdf6df0748f2f

    SHA256

    cbdef85edb7c1c722d0fae21c15ffd4651ad0781177ece1251a819a30f629a09

    SHA512

    c98f99bcf8fa01143d8cb72f6ff10454c88417bb3eb3ce010a150e8a2f611eb1e049cbaafefe6177417d6511438abf27635cbc87c0b090d0ef2c7726980e0012

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab211B.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar21AA.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit