Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

d49d3b2df6...1.html

windows7-x64

1

d49d3b2df6...1.html

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    18/03/2024, 23:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d49d3b2df6c9b76e6eeb936b23213211.html

  • Size

    53KB

  • MD5

    d49d3b2df6c9b76e6eeb936b23213211

  • SHA1

    7465e5db420cb64b4b1412ae3f9486190eb5d79f

  • SHA256

    e978cd28c21dcde1e2b8339bccacdac3a4f6a09aa587367f6392a5a6c0add298

  • SHA512

    9241a97e26f2606e35b5cb475cc98822bb568fd316827585a530b5b846cfe73bc4bde43b52035c4cb31e4a28de9e54a8e04ab4ba6d437f6c5364f4efb2402f55

  • SSDEEP

    1536:CkgUiIakTqGivi+PyU9runlY963Nj+q5VyvR0w2AzTICbbAoy/t9M/dNwIUTDmDS:CkgUiIakTqGivi+PyU9runlY963Nj+qj

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d49d3b2df6c9b76e6eeb936b23213211.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1712
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1712 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2388

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    694046cf35a899098be99104e29b0588

    SHA1

    973a1f9aacdf9141e13290ab390680984f5bbe79

    SHA256

    df353fe13c59b08493674d4f41c6fe676cb55183dc32cd78766d0d33c4b88a44

    SHA512

    73800eb71eb994d37f332edb888041ec279a776b5e909c60f3f9c0f1b9841868fe2954bb7a727e6c42e186ff97d4f68891e07a00d73e69dfdb5818cd17a5dd85

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9ee18f0254a6a2a019e3421728907d19

    SHA1

    8735f9f7671a432bf350860a14be3ee15d9f02b7

    SHA256

    4cf9dbe916506874355d876ff6205934c6862cb8637b2898e73bcb49f03f73cb

    SHA512

    ee06cdead9f64cbf4961bad7a629b5a6447434759ec71da2b0bbd4efe0a18281f47e357dc47a774cefb13d4c699210141b0777465fde9feee580df243e265715

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7e9382c164fd9b92bf39e3949c13b30a

    SHA1

    a94506b3c2b4fcefd6921416ac4fa652e55b43ff

    SHA256

    18e3980b9753fc3d722078ce75b75cce4089234b906a386dee0910c144b31b54

    SHA512

    33e6f64ea70a9c10754ea3d8e8481c6ecf12c1791ae5422f71b36187d60340a6bacc54f932fecda9d72ade45352411b76bfcbff3328946c2afb72624558a3d37

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1b66e071ff72fb978cea8173a66dd41a

    SHA1

    2617d2d2f3aa55e01fa825c4cb5c215a923aea9a

    SHA256

    33444ab59d8d14fd2f89943690186d21d332e4cbf2c70f797cde07aae1d0323b

    SHA512

    6ff188d1b5ed06bb0b918d0f2d64447ccadad838117fb1b258a16a4f4f995918d858facf3ed6af651a63ac4052b31749c2945d2d8f5f65ec0bcd3eb066e59b00

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3393a6159e4a4fde607fb1a11c2b1872

    SHA1

    fece4bb68d57df319e171ea3766bcba8457e015f

    SHA256

    d4181bfc81cfe8be26fa5e3b749bbd2bc2a78d08eda53bd540896e350334e749

    SHA512

    445cf2edd8c8b38a38f0c381d40f28a9d8705a102a38d0acf0df7372e26f97184f43063e5ba592281c2e6c4a828ec0b390a6131f79212ad04ff5faae08d937d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b5159c136d2a85cc0f420fb166391ef4

    SHA1

    6a6bd02304251e2507c8d3c58119f1ebb9885b04

    SHA256

    e938c524240cf2e34e183dd57e0b25aefd47ff26416ff3e9d17b5a2495292a6e

    SHA512

    ce35790fc9dd2f7ba16d693b864f441b1fccd7fa722161f52c8e455052acd259af05edf773c2aa862fd59655a2fc87e43dcfaba167d2f2a74d3b340173299397

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c0a097c733711704bde65b3300f02b89

    SHA1

    6f0541a7b33b2b30c344731fdf168b4683df106b

    SHA256

    2cb56c60c949944451e1c11fe932705685b2cb6e8d9708aa8c5df41d02661164

    SHA512

    de3b117365b5d2df63b215c7a65be0b71817b1ab2e28010491737a251113a5cf50bd6de0e6c7f078484790cbc63feef93a7a2c174c37e667da16df48bfd21fce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bbf43e14ddc00f16b63fd75bf399c5f9

    SHA1

    47fd9abc64b67d8c5da7df2d7ea1643b5a1dcf9a

    SHA256

    f4cd5ac45a62c5045c6317853a6d4320cd43f0b24ef5c861ff8c90a830bad0c2

    SHA512

    825c03b64910c62e94fb6debae1055d00b1ce95341a10fef832804905e46a4f40c2a880c80810bb40fc80c73fce5e6edf604c97cfb3e796c1381a193043e8a3c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7a318e68a67f1b35cf212d0eb8fa7314

    SHA1

    8bb2cafd3d7136adaeb06897dab5a1b2da9d4ca7

    SHA256

    55b1bf391f045cf6e1c4889c59a248f6e758e0f16aaa5cff7adba80530153f5d

    SHA512

    7f86fe26c61874efbc872df359cd26082bce80a43cc9398a8e51c5168a6a38b11ad99a33e8fd75a3f1c415e2be4721c416ae06f222941506078fd1c47af53613

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6468a1a259c2e042450e462213aa8e98

    SHA1

    81044a8a189e31486002a977db1a7092867dc316

    SHA256

    ef0daabd572ed3dca59cac0e68d0bfe4d45bea862f487110ba03ec60bfe24340

    SHA512

    ebb8ee0a4eb0fc6bd47ee992e4ddcebbb3763f2bfdfe2f9e45aa39643284ca91c37ee0eea5bbc7ff53733f07ca5925b106cb7adaa4b2250553ceec1a3c96a344

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b6e257a5ea12d9b697fbf261822a6ffe

    SHA1

    47f12117c324e23e61444e6f60953ba30be928be

    SHA256

    e5306013a2d2d9130d72e056094d50fc1e02a1aba9b51093c04db6c921432af2

    SHA512

    51bd1cdad294e4474ba88663ce8140621113c0e8e35d15aacbc004cad672f80d1e8e337cd09da17ea9e9bce97a7fb9c4511177432991a1311595de2936385839

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0b141f2b07835927b2625991a01c81b7

    SHA1

    147bbd3c37f7a7301237df82c49c48e65fdd3d11

    SHA256

    d992dca630bbfda539178ab624c1d2b77fe789835a6c4bc2b55c96d954ef0b89

    SHA512

    51ec5622956d7aedaaf43772024a12cae1cffa2b6f8dd7469d4e4ff6577b4a7374f258c61fdbe6edee12b926ced894b8e3489c270ab805471daba28597ae639b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    444aa2d4209848b53569c4cf7c2b6834

    SHA1

    1abd356895e31500cf9e809489ea257c0da86600

    SHA256

    6f64c5acd647f65aadb481e7374dd4b4e560578796b97484a22ead5ca6212ab3

    SHA512

    8ee79e322f2f6341972cedc6616c0631530b387aaaa509667324a89ee0a25facebc230a6acc33bbb4097e17c59b6df1217db15b594ca644ecc6f227340440330

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3520b7b6d312ef801fdcd594f01a1263

    SHA1

    131e05b512bd9d21e76b9c9b547696a37abe9b8d

    SHA256

    ac1b16497623a1263de2071696ae87a82971262881065f6691599b1c82a043e0

    SHA512

    b33550dc7b13430309e3d2ddeedfc120329090e427da308b7c3c8c0b8a7e8e4daa0c150e03cac61044bccd9dfd90dc9fe6aae313a1ed4d440481f1107d9e3c2b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    56fbbc38ee3158e39d6c7ec96d8b8a85

    SHA1

    19e5187f072ecf5c2e8473a8f4364710cd61718b

    SHA256

    c661856845b207cf5a71243cdecb2cd5195c69bef9971450d48765d2d2ffbffa

    SHA512

    9f2ae9000720ce8692d309da6281829d204219177333d46387cb649570912e8d95a795c2ec5cdd4c52a7688c9eaeb80ffe8993c777226c63bddfe38490702aa2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    12a1e180cf1be445bb5d55075d083a2b

    SHA1

    55cc70231f6e5fe48d87d92bc22610b9f8ba3df0

    SHA256

    519729621ddce5c9ba549c5ea611bd1775abc593308c448937b8e0f34b8e8c48

    SHA512

    5c531118861c5c074849e6c278ca3140078ebcf9bf3404b14e3e21a2b265608e027321b2c7bdf637cb93d6ef4e424cffd76624c46e0b2ab233174c28c43f38df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    74441efea0ce33c5dd993496d026e558

    SHA1

    453ad9b89bb4c1aba467bf14444796ddcbad125e

    SHA256

    3ee823433929384a625d337d1c920ff0d6d2817a4047f5ca0b2dbfb2247c40a2

    SHA512

    9eef6ec2eef5e307730113521cd4294433cb700ab27bb58dc80d07b1a14db519f7440605250e88dae7a99f0d00098c5ed963dcb376738cf5b76abdf311ef7d81

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    df8e5563bf697b27562016e788906bb1

    SHA1

    1bb7d12bef04ae44927dab723458f29865cab01b

    SHA256

    d2f7f95ee777cb06c77b9494e1576ca37956b57d144d07307968e518f41ab8d4

    SHA512

    44bf2e987e01dedf46d5ec4aa51f5b72cc2bf42462f2653008a82fa58cb09f6727af450f227fba69f1d173d0e9b41daa7a6aa0689253d3811938e29ff60682a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ee805dfa99256bbbc292c83c9be5a5be

    SHA1

    baec4da2aa7ee4968dd43d23e8c1c688b99ba3c2

    SHA256

    03a1ed16e74e3c8e9b7a0bae30ac2e22e01105c0f5d1113d782b3811a498935f

    SHA512

    3f6dae61e9791ded632c71296f2dffabff3c9fce9efbc7e9a24fe260a95982b3eb1cf72bfa54e700989750db03ce378e6ca8fff7ab41253b5b53f680bf815e39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1e93e2a3d2541a6bdd18b8099c5d5252

    SHA1

    23e20e06826743a1cc408ea88cce2ed11c4ab0f5

    SHA256

    68ca6b0075085761a2e0c0f3857669a2bae7f6c4e93aa0f0faca33c5a547aeab

    SHA512

    01e266015b51882397e804c19a2aec212812af3eb3f3c102414a55f7c56e43b1a7d2840506152b24b39b621661a769a3d31ee9152692d7c0d34acd43dc503759

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    f531dca9af39629b942269ddfbc01073

    SHA1

    e42e6f406600f121ef38096a95aa79042fcaf4f3

    SHA256

    c5c86b480e85c41f4fea7293324f7e1d63612a7ad17003dc5c1fcf568f82a05d

    SHA512

    3bb1ce95a71e98e42e6aeb10dc55dbc1f7c1569beac6ca9b7af845137fb92ed7d7d3a553f6905e501d10f01618df14eaf3b1f95e930723ffb810dc1f6e010e74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U2O6UHTP\script[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2938.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit