Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

8f24ef1371...e7.exe

windows7-x64

1

8f24ef1371...e7.exe

windows10-2004-x64

1

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

client/error.htm

windows7-x64

1

client/error.htm

windows10-2004-x64

1

client/index.html

windows7-x64

1

client/index.html

windows10-2004-x64

1

client/index1.html

windows7-x64

1

client/index1.html

windows10-2004-x64

1

client/index2.html

windows7-x64

1

client/index2.html

windows10-2004-x64

1

client/ok.htm

windows7-x64

1

client/ok.htm

windows10-2004-x64

1

client/view/list.exe

windows7-x64

1

client/view/list.exe

windows10-2004-x64

1

mpvod.exe

windows7-x64

7

mpvod.exe

windows10-2004-x64

7

readme.htm

windows7-x64

1

readme.htm

windows10-2004-x64

1

register.htm

windows7-x64

1

register.htm

windows10-2004-x64

1

repaire.exe

windows7-x64

1

repaire.exe

windows10-2004-x64

1

skinhelp.htm

windows7-x64

1

skinhelp.htm

windows10-2004-x64

1

vodclient.exe

windows7-x64

1

vodclient.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    04/02/2024, 12:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    skinhelp.htm

  • Size

    5KB

  • MD5

    0c2fb21551b9bab138aee227001d26d4

  • SHA1

    b18d8f87fd12212ed63beb4ab6e00bfe56906133

  • SHA256

    dc54d7ffa8ee9a7875bec2560ae60900317463f268f4adc38e41e1a59669306b

  • SHA512

    dded5c6cd9b22fd9b3c35c3aca5b46695286ac31f3c106680c7b2719ccfacb38446bc769a14a6d24b794ebceb312ee34fd050cf61d88d8542db024e2fca3095b

  • SSDEEP

    96:kbJfmxOfSQvPcFgo1NIcvtKi8ogR2UVMUhV58rf/QAB6y9WHlfWXavg8zY1ZrDk:kbIIXvPc1eaJ87zF8rNYfWXV4

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\skinhelp.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2132
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2132 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2668

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9060c968e8ddaed6d0394712f5fd2a68

    SHA1

    fb3b97efebb884cc2d045419c2542344d4eb70f9

    SHA256

    fbd75216cc0301f87b5550cd05050053629e52649d3433f5a452fcf7beb0a62a

    SHA512

    92680d430797e20acb835cdc43a12d79d94c4e5c9238175f22682a0ef1440352231e0693f1e53bc6f42b66c198948183de4cd7aa97e09c7ceb14553cfb263ce6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3ec0f34868c01725302ca04110f2a9a2

    SHA1

    5795110358dc200f03fc501801c7a31b5ea26351

    SHA256

    1845d1b8a1d58beb88ebeca4f45dbf6df56ae322bf883becffb1fc72c798cec2

    SHA512

    d8da568b60ebe1ff558b7b413e471a939e7ec0606ebc79bf49a6352f33787648518bf54e1711be93577bd703f01e54b524105285858140f34822b3122042d537

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d51a167e9ce86cbc890224914a061aec

    SHA1

    1400c3f14e641564c310bfb97117be0bf00bcc15

    SHA256

    e5ace826261fe81f840fdda56724955a9f87895217047ea1078f3d0d7c2af49f

    SHA512

    875930df204eb3756473760e21ef3177274d1e707694e6631f5ddaa5d243dc155989ca4f4215f112f6ea9ed0af5a68398e9d10fca20f7e4023cd4b1a0f0f7637

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c6ba3db4cffd5c5fe8513926bacce962

    SHA1

    93508f7466d32443408692345876ebf5f6f662ef

    SHA256

    42977eba92cd59ddb09055e08e54e36d897d8c1be0de7f2dea9684d2cb0e3e5b

    SHA512

    c2291a2ca3d4f74409e392aa25624b5568a9e8e97519c08de910e5d7ce5ae9a70eb58a45584e278442b720d460d7e43ca1a9c6bb86425a3a57583373a4a03a50

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cb8694d3df2975687f9a0695d55ef324

    SHA1

    6f194069325e0841ae8b9f67509c84ea87010ada

    SHA256

    896f40c5c9acb2c6eacd217296cbeaaf0c01ccf51a88f0bc23628ae97de37cf9

    SHA512

    5dd549902c619e9843fc7268e194fd789522ff2f9b4a69be18c0f940c713cfeb32a81774b2dc6d4aa4d2b21ca324ea608572b99d1737f5abb8b123458c0159bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a0f8c62ac4a5b1cb70d19a9358f4807e

    SHA1

    7f2f880e5f5d1727880a59e205a940411b1c1502

    SHA256

    254a933f998ae95ffe2223f7d6c937c9c8dd66cc957bad47de9c5a71ab43a280

    SHA512

    8b2b48e1d5b7d0b9a2c38b4deea7532d7544a5ac0c98752b7995e650d55e1b1e8bc75de19f5d9b8b9bd2fb2b33dd9b697cfe8d749bcac574841a4da97b74f14f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f9ba39aaee1f0a270187ed023bda718c

    SHA1

    901e77ebcdacf78a6e31de4ca7bc68daa142685b

    SHA256

    3a412d6f0bb46eba8b80c3aaacba70b2f6920387aabfe01b09f458efbce5b48d

    SHA512

    b32ff8bc6e5e547703d37645365f1f0548c57fa9dc582deb11b8b42f2895ecfec85ce94f9128a68d8f631b67a5eed13354c508fbd42617bfe1449dbae88d97e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    466d3d6f62e45e9f6f44450619ed530c

    SHA1

    9dcdcbdf5b09b2b5d14341b5ba1536fe433daeb9

    SHA256

    6b0b9b05fa0a17382f3ee45dc5a19a0efdbb33858095e692ca082cced0db3776

    SHA512

    a5c88281c465cf0636273ed6c08671a76e7771721ab65b902876468f040b3f378ca8d9220d656c7349695fd8b3404d801daa72fa9f04832c1431b011a1e0d299

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8437ff39d0ff97e3e7a8b6f148aada43

    SHA1

    2332a218050944b761e63b1a5bacce8c4df57236

    SHA256

    29f2a04db51ad6b5b28843c3f00036d845dc1cbe6cc0610ef5469a6bea35f5e3

    SHA512

    b8ef4310bb5c3a7f1965926abc5f144f23db38e9cc05acf0835f14a1624da9ee9dc090169861e6e7846d98265039649453659cbdaa6bbc2112160b8df3f822d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    66b3c27fe54bf1f662ecc4e30f580ffd

    SHA1

    6acdd2e667cf79761331fa3d45b4678d0b64ff53

    SHA256

    d0d3bb8495858d9faa43f8a31ac20f873e9bbed13d7d28b62f4ae68ce39f9fac

    SHA512

    773d1b2c1889a76fc9d2e6af3cdb0667b05251a6154c4123ab0f496541028c2d933c779923dcc88592d3b918e165cc9d6b5fb03470ab45ae3b9c801de5a6ab94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fd442c9e04a5342f1813daeb42d93a02

    SHA1

    31e480a0ec845b9f6e1d8ba9fe60abf494423098

    SHA256

    5149f350de685d01aa3da1f32f2167c46913a577745b3eae81de1e4be749114f

    SHA512

    910db7ec1847ccf995fd10aa3e7dc9c8564388f69ebec9b04d6a705078f019d342765a5f40e33c4f400bbea621a17eb3317d541f53005c99b54cb1e18bc0681b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7cb6e3485878a69d65ae88608d35af18

    SHA1

    aab909c2c524b6c9e10a943b568abf90c6cf68b7

    SHA256

    915bc9ad844ce70902f65597feb81117908388d3b717a6dfc064f774b27786cb

    SHA512

    b883a2677275569e83ddcb91410e03be4de322dff78c1933d5d587aa4c8463a9394a45050f32f381b8f9182c9e3fcaa98d00ef89f0f12c1ec7c50adbe887ad7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2be70f7fe5b6e9d8a1450a3d84aaf357

    SHA1

    e1cc1253cf037539fad6db429a98018de82de3c5

    SHA256

    f4e99f79b88e8c66dbfe9c8b2733531f110cdae026b4a37789264496e827bdff

    SHA512

    f9d7bc81daace672fad76b6b43d9e4933e0858dd7174c46b743bb8824757b719ba9572838f283877f49ae137b4589ec49fd0db7cd083549053483da87e59132b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    10cec63ef9cf6189691b2b5b15270e58

    SHA1

    eaaa19a6039800fce1ec233efb35f3de3e47726a

    SHA256

    42f928fb16aa05c570de6a6753531fa5f740cea3830607233943d5c8e42c3fdf

    SHA512

    51c3f4d54d2a5dee4b7b9530a0545845f2de295281ff12d0b0920c1034536d0b54f1f042c4efb76cb0c8163306765182ca5c8f58ddc6f18902d2443f38ede72d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a8d7381d06e4b2e78d98dc0c01a62765

    SHA1

    1adba80ea933252d4d3fe399ab9aa43a0b197cf9

    SHA256

    e898d4c242ef8c9d0fb6483625e73674746ebc03e663c3d7626f5f21dcd1d1fe

    SHA512

    05199b64caaa869110686dcdfcb0b2bdfeb35a8644be7ab2ad3eeed462df1f262109f0363fcfaa0ff3eb9c8b29df545dd040069e148393ec65f54156982c6b8c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5ac481c787e0239bacc1c777ac4ed2f8

    SHA1

    cc1f26dc7fcaf67a9bdb4f8639fd4f0e5533341a

    SHA256

    8229e5bc751e42cd99184faa5f814d2313cb22ba4a97edb81de2c606645b1f86

    SHA512

    56dd15951f5d6c4de6f9b74a21937888378b8c878c43001c6beb18fd1ab4cdc53fafdf90eb69e32d5aeb02ff51fd1a14af67211489598d26116f89ba993fe964

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ee74acd4e5dd677a1be8ff97f2f25afd

    SHA1

    053b6601a248f2f9a0108beb17f25c5a60ef486f

    SHA256

    67e27cd2896fc099934bbc19151c84b7f9335665a470fa4381a0584fd01c7499

    SHA512

    a911e6fdcab4379f13bbf7088123baa65c8f91b44ae1c4da435fa83fc23b80bfe2bd3ba3b123f9f81c984509216eef153d28a9063f92b5ef563a5eb6ef1dd5d2

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA611.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB0D1.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit