Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

d49ac36494...1.html

windows7-x64

1

d49ac36494...1.html

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    18/03/2024, 21:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d49ac36494b246ebc6e52a5f8a6fd9a1.html

  • Size

    118KB

  • MD5

    d49ac36494b246ebc6e52a5f8a6fd9a1

  • SHA1

    8bcada2dee4fc4c857e1bd14e62080d12ba9e27d

  • SHA256

    9d61dd0b8f153cbcaaef3cf89c8b7b431a351f8f6a62d731f4bee067d881e7ab

  • SHA512

    ae65a7e9b792599c7d293d4965577968c01c6097ea3bdf0839ef323fd97d2b47d135160068ed590087d193091926d759a4b28f15f6a3c733c502a22288885c96

  • SSDEEP

    1536:SUww/KyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dK:Sfw/KyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 43 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d49ac36494b246ebc6e52a5f8a6fd9a1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2216
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2216 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1748

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    fbc6f57a573665bf1b53cf04d764b87b

    SHA1

    9efaa02c3ec855e557894f2de86c2b8a26aa6172

    SHA256

    a9b9030de88b2bc5be9aaa4b278580418d0d2ac34c85ba0c28fa594c70454070

    SHA512

    6b228a1b39a082ac00a0e59baefe0eaca35c8691303531dc2e4a97c5d5717d7e77671baeafde33c160379ac88f68956a70fccea3ac695de41224139d6939687d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    58423baf784cb595123493820735c61c

    SHA1

    30f0c0db5fd58d6c1b7a368214f55228ffea1853

    SHA256

    8e0eef8601ecbb41a97695f0446e5c1bedce5083bb78843c34a046800a8ce18c

    SHA512

    ce167de1b63d58c714d34a4814e68f50edc9c677986b9194d1ef9311265b15175c56390fea6ae4888c33f324a45c3e2089e0c2d24866cca8668a47c00adbe937

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bd8817800be91366f68b1ac66d63e1bd

    SHA1

    e74299fc9c1b505efdf9c76eea186871bdc6dd0a

    SHA256

    578b48ff073765ca61c5688af33a80054f651110cfe9f49d76fccb8b79acd1c6

    SHA512

    4de3092114a0e20b5ec03a6cc9797ebfc5812954090ac0af1a45f6c7b24c6f08aadd80e9fbd41ceb396dcc86d259aca92bb3a0c9ce3c09d9b39a22f8a7a1ba9a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    db8480437e11b7d3e28987a55794a4a2

    SHA1

    f3bc7665f358b92e36f947067dd16d0a98d7729f

    SHA256

    cd56b1d745742a1b83816f47ce3459b26fc5a8af84d7d7d6c437f6e4191c51e3

    SHA512

    11c667d84d87ad1ba8c0fa9d8e9242f256d2c572013eeb86d411ab66a0861c5ff2786af982e1efe25c1eedad66aa39285126d13e5177749655a6e1c594c1f269

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7d4ab13728ac444a7906bef98daea068

    SHA1

    16451b5136d302fa6c7af198fcd6f9164f8c22a6

    SHA256

    0bcbb968808d14f0a7a93c9ffe079a7b231f6bd8c523dd802ea1d182bef2fcee

    SHA512

    7caf51200cbdeb9c138a729a22a1519b95da80a13219081b435dd49f08f9df9f2af09eaf93523494d46e04c83bcbbbb08a60c336e035049c484e7a83dcbd19aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    23cd963c04e5c8e4238c1b79e98e5eef

    SHA1

    27ee0498903a44d9ba4140d5a62babec9aedff47

    SHA256

    54cf9240fa1300b2983b658ff6b4f08cdb0f1849b7107ba0ea59e32484be7997

    SHA512

    b27043f6aa19f3f6c0bb49014b5da866a78c3c0bb2c5db8b9f59dab8623ca621f5038cd81d46f95cc16837f1ba09653836ad4391a3689f476bf8b5734f91987f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c3eee00f5d834071107d72bd1070c6dd

    SHA1

    527c87465761790d1c7bee7b9ad30450e49d5154

    SHA256

    98fd7fc7ed3f2833dec28ae3d5ba4215925914e76ab706d14fdce97593302543

    SHA512

    5ea001b97c9c68dd66564c52235f71b09f99ab463b7b200888bb25497ca3173e2619442630a35d6378e70fa86513c79e2ab728d213683083c73580b20fe0f227

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e7bbfd67ad236e7bde8fe1d3ebf10361

    SHA1

    a22a0c46779f2d51eedc878bd209ad2786e9f724

    SHA256

    d6e658ebed658a8ce95ba85140999c3b0667cc9dd1870f3bb19dc106c745bc27

    SHA512

    9a149809d58421813cb9f5a2d09a439ef626e4da77f24171fbadae424374a8b97b33088442666c6e13794c5b450299198eb6a672dfaf34a34e54a41518f8a39c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7a9551c84316ac4a99e4f570a5a5f3d0

    SHA1

    87e54581f405e3c353a603662ae8fc6c3644c8f6

    SHA256

    6eaab85a7ea8335c562fb89e528c8224959305333499a4487abc314770451eda

    SHA512

    80a77a5594a7caec59358eb04f1c3482b2a7ed64302cb982ede737b12e0b03a4575f311209c0c6c625e4cac19acb1f6a4b887e3459d693c52611dfd6838c2125

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e660ff5251a733bbbeec24c873961aad

    SHA1

    a04544f1883bd64b86d0f01a9b2b4d49fb3ad966

    SHA256

    3d2791cf213d4e047c3056a1c9d2d05b382a84b1d8de5a5f0dc414f8b25a72f9

    SHA512

    cc2763f1e5d6a8673f6ac5a14b0f6eaf52e5962081904676e1040da6f38f17ef61071cdf52b178f61e48405e49a37d5040daf02a5d7ab01f136cd8bcbd8ac239

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5707bb9bebdeec1863e24aa9d19d1a60

    SHA1

    380ebab158c9fca36599b485eb6d8b0d1fffe06c

    SHA256

    e055bc77c9a995acf70f7bb5aa0c32ce845d92c025b4e36bbc1cb8baf5c2a0ef

    SHA512

    e4e1997ae67fb9a6df6a3d22e959f13f6b884bf02838ae0340b2a72cda6da32aa3a474a81886b8ea9ebca4543dce8f90d0b5cc233dd9a861b11f74f1ae39ed0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    e493d00e50e7d9e32846cba70e3e78dc

    SHA1

    80ba62de967334cad426b7fe94a3726394aa9a16

    SHA256

    2db3fa00b92fed3d4b42db518690a8b99ae390e4135ed320389e2333f5009899

    SHA512

    43597e5907c5d2c6a9a13ca2b440e60076d61d2fbf8b208ef2f13e5cfd031499b543ff6cd348c1bd27ac8927e763b6d51efe4e6840be39857ff8f7f3a9194168

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3BBF.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit