Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

b9c3eb4289...13.exe

windows7-x64

7

b9c3eb4289...13.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

Babalar.exe

windows7-x64

1

Babalar.exe

windows10-2004-x64

7

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

locales/uk.ps1

windows7-x64

1

locales/uk.ps1

windows10-2004-x64

1

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...7z.dll

windows7-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    151s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    10/03/2024, 02:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    6.5MB

  • MD5

    180f8acc70405077badc751453d13625

  • SHA1

    35dc54acad60a98aeec47c7ade3e6a8c81f06883

  • SHA256

    0bfa9a636e722107b6192ff35c365d963a54e1de8a09c8157680e8d0fbbfba1c

  • SHA512

    40d3358b35eb0445127c70deb0cb87ec1313eca285307cda168605a4fd3d558b4be9eb24a59568eca9ee1f761e578c39b2def63ad48e40d31958db82f128e0ec

  • SSDEEP

    24576:d7rs5kjWSnB3lWNeUmf0f6W6M6q6A6r/HXpErpem:rovj

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2992
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2992 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2620

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1eb710fd94bce72b770f90430b79fa25

    SHA1

    3089340a288b9ea2d2aa98985a239cd43d2f5e79

    SHA256

    ee65e8091666eb668f7ea3111c1e3c85aef954f09d52b5e1c1a6e405aa21c014

    SHA512

    48780bfac6e7b3024852fc35116bc93c8a4868edda1f61a69993b000b929cceac403ed0529b7495e8c0ab9cff065e216a9fc9ceb0370b99222aa827c9c36044b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4d6f2dfe15b082d4a122d224647313c9

    SHA1

    09236b89a3629c9bf3d88778780170fd8de4b5e2

    SHA256

    5f754f741f56142173a2f93d828cab92ad5dba8f85362fc2dfa8834db6ae57e0

    SHA512

    ce823d39fd4c0c8e841bdc8b4311ab76500c18507102d375c55a3280318999fe2d78639a625bbd5f40d5df437303a1c22587f562c6e443a8a26196d646daee5a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    65a09323a4c5b00c96f8a2b7db8d699e

    SHA1

    6eaa2809bbe4439342981b68e94a4e2fc982963f

    SHA256

    aa5a88e665ad9a27ad619405e703dc30aea16e1406d9f2ec8a6f78be63ef8e6f

    SHA512

    76f300399531b100f76f1446c5bc361550cfa179ce05032c90ca61f58378f1fbe75bab5ab8dac541c91745b309cfc6e4c444d259a3753b0043cc66f36a32522c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eb80dcfc2b668d5ea9869d65e5ca5434

    SHA1

    f9ce8e780405ef200026d680b2e10ce9c9f52529

    SHA256

    c0cecd5fe52cd86e14c981f6a0e4eb17f5fa526a167833f6f7a5a94181ead66b

    SHA512

    0fa6c062d91c39de55fd4a86bab5abb4474e62bcc052d0520f10e174a835691262e64b28022d75b3d0c19b346f7c8cc9b650a089c2d444193aebec2bf0ca8372

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fba95df3cffd622a1c253f59e4f8f201

    SHA1

    946476f2dd13d8fe59ad7b0c26ee04e66236a576

    SHA256

    0ff46ea0709bea220069dea6510311e3f6c0b77c2d179e0e50bac673d350088f

    SHA512

    67b8f931d2d8babbe919cf66b7247066d141e04be3803943a58c723ca4bae1c1c463f24e9e91dbbef4712369544fee47a4b4ea5eba5949b2c836a52ac425d600

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fe98f7db01839c5fea613f57b495e962

    SHA1

    a35c89b358545a421a2157d8878f99b47b655f87

    SHA256

    9b492f0744e0c7eb959f2cb17662fc4b0f759f26c69ae5afc5867b7bdc3158e6

    SHA512

    54be17813869e776f3d84534e943b3f178446c12006161df0a1aab2061edc6da9f85d0c1d5689b0e70c4eb96f93473dcb3a5da2def5c0a6bcbc03342eb442987

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d9f2abb559cc93869657a8a5e79ad687

    SHA1

    5bfc91e70cdb0a075629e6ddcb584e319749a376

    SHA256

    4308206827b8024ff3f73a38656fbf5ff728957ad16c471412f8bafafd45dca1

    SHA512

    5435b35abc8ee25bc63dc31fe19a5c00a67c1db8fd3f57416503b0e25110d03845f4d1d202e06abc6030a619b06351dd34ecf82030113f8977a1c6770e665f80

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2bb5131694c92a08e9343b03857cbdff

    SHA1

    4fa1c13e77450314fdd40017015d4608bf77a5ba

    SHA256

    cd9ea17d5d75dc35cf5737d8d52427ac7eff05b1f5d85c345cdceca1d97caade

    SHA512

    7e948f8f3d04b92cf75ff43f6dbfdb4b5b5f4288c3fd4627c089afb87d00e6a70dbf16af3dd5b2d110ee946f8c9e9bdb44137406bdcc3b30e06d38e56f4e7192

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6a970d0bb184339fbdb2c1f569350920

    SHA1

    e8db220b93c157300864080c263d8d376faabcf3

    SHA256

    280d3b4e6b30676361dcb428d2754f81060ece1304dea163f15ffd4141419984

    SHA512

    96df5b1ae3caa950c1691eda175dcf22abf761171ae54a14cc693cf9c116ccf6c716a5e9968315e2c1145656d1c2a9be746058c1acc53f1c6f23ef52296d83b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f4823ab9c6ac0f8a7fe71598a327587b

    SHA1

    643b5a6487c67f92b62c1996095b1e196c7ef6d8

    SHA256

    f15bdec00fc98e4eb8e1a2e382fd4e7855d1bb9023a984ee0e1c33032ee0f66b

    SHA512

    528008f05b811c5621acf6a9dace057921b76a10da5eba3c154f16cca22650266256c7b2899b50cd828abc8a6c83a78bf7d0f4d3877b00bf097f3982b082182d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    90733d8ccfa98ebd097624b661f3bb13

    SHA1

    fc401aa67d56d14515f552021d655eaa58a7623b

    SHA256

    93df30732929f170e93e4c00bdeb90ca2d792d2b535d6c6533105696f1b04fbd

    SHA512

    1eefe8d1c290e824c4344b410451fab4718b27456c455d89edac3c8dd04a27dc74dfff7f82bc80c835dded13babef0fb8d09ccc9e8dbd6c187c5842c76c10c41

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6d9af037819c3ba333d8851bddc09798

    SHA1

    a2fffd574496dd30b9c4fa8c6ca00515c6e79444

    SHA256

    7447bee478a901815e89301f353959270c678f0640d29209b62707a1c7dead6f

    SHA512

    6461f475def969a3bcea1bd01d4bc493520886fd005756d713bf1f6dc46935c8bd4dccd03a99212772beb60615daf92e078e05270cdc2a127da73e967a202b5c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    34cad82ff32acb9b1e1e8308aeb401c9

    SHA1

    8ec40487c97f3b05fe82918573187d7f0a0ecef3

    SHA256

    df99db040fa5f39191176feb44f7ec546b4fba20028d80560774cfd1eadabfd0

    SHA512

    e7637fb11cfcc2f591020a6ab19aa540de8a16dd8eb81600c2c2a5cf05756b93173e4609ef7ff3effdb8d4c0db5fecb1b97cd1ce90522c04aa889b2dc8dfb981

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9acf447d0c20ab43ea8ea7c6e476ca66

    SHA1

    fabc4ed1318a691d1c03d89e11a305512b80baf9

    SHA256

    3fcb7f7a82ea9d62790f6d14fdc0644e05b5642014815a071c1ead684eac5815

    SHA512

    890fc8969280b8fe9903e2da30e72a75b37f98525a3bbd8122b2af87a4209c19ed58da918fb029e03bb442780e7acab9ac7fce25fecfa9793b7731ad309b86f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0d5467442019ca62e2a9ad7abda5ecd2

    SHA1

    8b4613943065a127e7c3f558c7bf11dd9dbc9ef9

    SHA256

    8a33de4093d3e99fcae6a4fdb2f7bf7b569841ced1f2d57fff4976d71fab6447

    SHA512

    8d441d73996a269d0806612de6da5dcf7c0633c6f032f86507e2588947e090b30a73fa7ed2364f0f3b7dec3a7fa02888429a5e61c15ecdaf34a3ac59a27c06db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ae673436dd9555ceff8316e121d7a845

    SHA1

    f3e4dd2e6606e4469b0ac2324b37121aa25a2515

    SHA256

    18b91f5014705b7f4534ab8fed2d156e21fd54e4313b9a2535947f38715270bb

    SHA512

    7e90d611ad6e45ddbf67bbed573a39754f0e5c8609beb9583c285bebbb70ac842f8f84814c8225a0f53099af62f22cf274c5e07da513f47f310918403acd29da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    55c3f73029a20041e2cedb333cd6cb54

    SHA1

    778deb8740bc950957dcdce9e9650fcca04136ae

    SHA256

    3902f341613199b1a5ca12fe11cdd3a2698a16dd785a7df9794cbbe2ff3281e2

    SHA512

    a654287598bd3d649557c7ad849b4e141f477a618b1c4238f8889a704aded186803e6d9df3fd6b6c750242fad032734468e442593e5481548e222fd9661aa525

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fd460be4943b4438d08b035213ffc6c0

    SHA1

    29ab023c192febc8256d5686403b3b098039ab28

    SHA256

    0dc72afd1a0d63e90540ecc561779118a2619e93e94e6782138f81e4acf4925d

    SHA512

    6ab4e20b5d78b7e099c79f9d3474bbc1b4ed47977da4ffae86f336fa559a0c82b984486db2b42edab41a380a102369c4d0321bb0aa8d13e867a79903838742c6

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab22B0.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar240E.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit