Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

b495d730a9...5.html

windows7-x64

1

b495d730a9...5.html

windows10-2004-x64

1

Analysis

  • max time kernel
    144s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05/03/2024, 11:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b495d730a937146369ff2ce042f57af5.html

  • Size

    14KB

  • MD5

    b495d730a937146369ff2ce042f57af5

  • SHA1

    80f209e02064c81be57fb35b5fde5c61629e9d6a

  • SHA256

    e661aa9cc9c832577446675423977dfb402a57d26fd92c98a0d1f8a5e4174411

  • SHA512

    cfdd0a3c988e44c8dc1c4f9f75fcfb9115fc5b1e348d214cd8f20355f311f7be8bb3e00d2af16ada433a5469df031738a0ea18cae7b321fbb131c06aaf3d2446

  • SSDEEP

    192:rb47Za1nR5NruqZomTxzX+oC66e6D0tytW1xPGUZBg1UzDHOC5T1p:raZanRqqZ5TxzX+o31xPGUD/uCT1p

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b495d730a937146369ff2ce042f57af5.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1712
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1712 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3064

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\E0968A1E3A40D2582E7FD463BAEB59CD
    Filesize

    1KB

    MD5

    285ec909c4ab0d2d57f5086b225799aa

    SHA1

    d89e3bd43d5d909b47a18977aa9d5ce36cee184c

    SHA256

    68b9c761219a5b1f0131784474665db61bbdb109e00f05ca9f74244ee5f5f52b

    SHA512

    4cf305b95f94c7a9504c53c7f2dc8068e647a326d95976b7f4d80433b2284506fc5e3bb9a80a4e9a9889540bbf92908dd39ee4eb25f2566fe9ab37b4dc9a7c09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aa666187a9836f3f55f2f2be6ba78e27

    SHA1

    70c6ccdee1f162f4f9784699c4d6ea02b6203c07

    SHA256

    5b86f4909b79360d014f673fbe1d09e7d2fd3a6be18a11eeef3a66e3374caf6e

    SHA512

    8086a9beb426939a3dbf09d31314f7ac8e9885318f914b5296bcfcd6d650016878483aed3ec273e055d20dd0f8fc2d69ea7e0ebb3f62eb1b6df5f453241deac7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    416bf6c88b6e5d9dcbeaea81cfe93025

    SHA1

    b488c8e32bb902d3118b79fb5c239899afc548ea

    SHA256

    e38a16f1021e1826cfcd6e2c38b18227bf0641a3152d5407f828b92c489b5c84

    SHA512

    d8578308ac534e1285e1fd31a7a25f635fea5e58f788080fe800ab39ffd4558d5d908dd3b12d8058d41b50f3f2da53afbd69260e740488e8a1e1682b4d54bbf1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    76a62bb09fa930670b6e7034785ce69c

    SHA1

    c584a08bbdb68aec008a480cd33560800a8ffc6b

    SHA256

    c10f08b80cf4adfd4a93b8c4dc99a103902c9ab0cfa47efac9a87b4a9b5b6133

    SHA512

    50f04187adc4ecee59b43b1a947b2a38ca0bdcc748d9100d46d5e6c10a7235e55799d28acad80018b33a7fdd178c5b41716af98de90f0c37c9bf97fa321f833f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7e86094829af6c33dd0bdfe3cdec7d49

    SHA1

    b810bb23c2b5de0338def2ea0ec424b1ecf3095f

    SHA256

    1fa5a62c6138f9a041cfdaa6a830c448bda9a206471e3c5a354e9bc6c75d23d7

    SHA512

    7e666ed8659700a9fdd734d567e2e3fca750d0c75d2984101fca16518ee1c2db470b1e494a93f8faed2d7fd49e3d417639a9da739dd2061b65561ecb045dcbec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e3b1410266a01da90f6bbf6b78dbc577

    SHA1

    6f4076e852720a550387f586ec86402b2ed8a0f4

    SHA256

    27645bd7a3777cb2da845430f6915e7c5c79ec388d1b9409224f0026d4c1514f

    SHA512

    ee19cc654626dd2eb69ba31d2e80783ac73e82b94dc41a23786b6b1e8aaa4fb3a77949e4fd7f00d78636866e2064c3a918d820ea1066d4be2081f57f7ba716f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ae87424cdb85625f94621158cd2eb0e2

    SHA1

    7b08be96347358852b4aa5bb5875c34f07d8f746

    SHA256

    a23509424df36621dfb13517ae3abb0ab56bfcb697b54cf83d60146bd466adb5

    SHA512

    7f250a0864a5393949fa20d63be4c62f742f2e56ed469c26fc6cac8ed923f29712a00bf7dd3a72e142554b7bab3be7a8e23ed004954610d276cb498f2a27b7ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a0dcc179ccc561a3f3a8e191ffa121aa

    SHA1

    e8ed3891ed2acb461d7b81ad64241a39a913466f

    SHA256

    c6c40b491c0caa1c8a988a861ea4b2b36c1f01ef94ab7a1b783bfa4f7c757ae0

    SHA512

    869a8648bb590067147a3a9f218151ef47f2e863919d32c7ea51c5af4c35c5172ebf2480ccc566d8d587e66296e4c3b44e3d79d40c697d0755220f7cfa196733

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    39f3a24ad3fd3448cca616f847f5f77d

    SHA1

    1676c9bfa5fdd43a7833f46c8e2048c1850dcb54

    SHA256

    5580aee27585d7e5824a1405c06ddfaa2b4b426ab7c2a043673928cbbf2fadcb

    SHA512

    05aa156dc81d9165b80c5d79584ae60df1197424bc7b2114b912af418a9d394c83e0f5c77f219e2fdb05142995634e2f13ccd31ca0fd5b7b7b1891c14dfd3571

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1c88964c7466ae2fadf29ba91f434f2b

    SHA1

    22bd982a885f70daffd1612c60d65c9790a4060b

    SHA256

    e488d9a2680f55dfe218f7ca52ac36568ad9b5998ef3cda64595e251617dbafb

    SHA512

    1936869ec59c1be3a8ca2731c86edc396e03dad423cadfc8b37145a729ebe1b333ab503c3ccffeddf2e7fddcbb3a1a5a1da3ab4d77adc5ab0cac5298de5f8344

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab93C9.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar93EB.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar94DB.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit