Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

df2842707c...1.html

windows7-x64

1

df2842707c...1.html

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    26/03/2024, 12:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    df2842707c0fc2593eda904df82c56b1.html

  • Size

    27KB

  • MD5

    df2842707c0fc2593eda904df82c56b1

  • SHA1

    ac19eec6c583b8b3acd448b0c936a50691995f6c

  • SHA256

    3542f7eacd3acdb33d6c76fff55d3e92fe33fead932f1efc1faf85b458b9d864

  • SHA512

    34fa1775232d0770388582bc722c2c7852f5843dafcc921a529cd697d1e7a3c5d54408c2f4e59e0685e1aa032a1f2bde559c0742965a3e064988fe3594c55847

  • SSDEEP

    384:WWbJkIXlwnghcLYwhzWRDIeX5vneHm4eIR16:WWbJBXFhcBm4Ji

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\df2842707c0fc2593eda904df82c56b1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2968
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2968 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2068

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    459b726a887a75d1440a78c8df2d22c2

    SHA1

    6b548a42701dc7c89e851b4f4fd475705f81420d

    SHA256

    af4103e344934fa6c137beddcc44f8f8ca8ae1360f0fda0fc54e859105dcfc58

    SHA512

    23a55851684bdf7cb3746e92774dcd9150ed1001f85e4029e5fa6bf96ba1dc75af39775adc2319db3574c5c9afcbf90dce91bd24a4cf63e56d3672bce47f3787

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7e7c05bd67abf044d5a6e755a1b13a2f

    SHA1

    1caee9b82fd1277346225f5ae3bd1fc3f22b8da0

    SHA256

    ef7ec080ba6d7ba3e4d3fb0fba4880856e8cfa7cb9b8906efe047f85afadadf0

    SHA512

    84a01bc34e5fa8bfbf09a3659f53830661010e4fe5c1d47f0dcf6534677735cf0ace4a1c25237660d1a723afb2507eca1566c0d4d2c43793b95356b192cd8b15

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    74b01a3897f38c70acc47a86b0c2f05c

    SHA1

    97800356c1ab0dd67b2fce8860a4b047f2a45613

    SHA256

    5119bcaa50591fc7b5ada5789678891fd0c241df64058b2a2768fb8afab15f22

    SHA512

    656aba2a5bc2d02f913a3114b562ec3ed7bbaab894cf0409a0811cd47144337f67e7ef0910c30b96ede07a45e424509b61478dcecffcb74adf01a482bdaa57d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    68dbb9b3b7b92cb3df20b10a0d242e95

    SHA1

    f8b611361db890bd52c554573fa33c020ac29e36

    SHA256

    1f5016bc2e41b8e406d76824bbf6d9c7536bbbc9300324c315466645fb830a98

    SHA512

    3a268c311a451f9bdfb8f38959566a80e51a332923b124ede17944dee66e7440dd547f96db9a8324391fdac959a73ec2e7f00f5dc40b1ea550a5048ebab903c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    c4e5806f6fae3c172ca7a62b8171d09f

    SHA1

    c6ed2fc172e2a3758a991eced2d211b9c48b2eaf

    SHA256

    4160a2c9b314f8109b7c43d5355401bc3efc9ddd150e3f7fb8b825c0ae02df8e

    SHA512

    2098e932a70a1605efd4a47779b25d945b9e2e903139c1344faa966ae3b2322b54b913de4c9dbb8d3e15f773c60d3e90241537ac84fd6f03b5e46750fa02b264

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    bea30eb4a14b3221d2e8202fc4ce08a1

    SHA1

    4fff7f34377e0870720d2706802e6019e30e444b

    SHA256

    2f1d2db6eee3f0b5177d9978c0cb59846856c5522a4760ae2cc416e3fb5d793c

    SHA512

    7b3dc4e8a610089d1919e29b0a17bd40d1f545d8282034da45ffc28ddf0d014440b7d8a00210daf47b38b24d07f4f960dbf9bc1ca14903fb24139afb12086632

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    a3342eee56895b8971a912c039c68253

    SHA1

    8f68e43bfc74389b5dcc1b11c3c4cba3b2531941

    SHA256

    4d0590076fc7e1d9040f8e0aaf84acf98021216c82f95df28178d933d0e1cc22

    SHA512

    83329de984f07278b45ea9f2b1887a617c050586caf496293e39db496d5d4388641c4a7e9332d7e95f7510b767de117dc6dc71c854701fb8882dc34d10b4d574

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    bda7ffecc904d90b3de8e728c873582e

    SHA1

    2ed7f959ee91771f0c65cc7959d9094f98bec604

    SHA256

    84779b9e33506c280e74adb884fefabdf7ab25509115f03ec29c13846a9dcac4

    SHA512

    7fd07cb44660c389c986ec9ed7f82ce8d6a0bf98d317c799f194013f5cd09d0450d4cf4532bf75fdc898761c2d354b3370fa59f94c805476747d78119f750737

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    c931c4509600f758cb2651ab57a7efc2

    SHA1

    5a13948dd13d89ca054a195b8f820afcf3e46b62

    SHA256

    cba93fc5deb9b55aa55c6ab2ad19e6a599ffc585fdbfbddc64b2f345a48e1668

    SHA512

    517da5bc86c9dd0b25111541541df043db3bb3908068873f673947b5ccd0f1c7bd783fd345fba99ac8e863a365825961014629294569eaad0701dfeeca4cb12e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    868c355d135c48e9eb7cf38cafa57048

    SHA1

    f73a0176ff5063b3ff54d8d16771d7b16fea2358

    SHA256

    4fdd6a1f7b4aff4835ee4e6845aeb934e9c9751878141a75ec28a8c306e2eba8

    SHA512

    0293d49e793ad97e6588d2c843c76ef5afb1049ffa6f6e2e1ed33d3118511c92d2875e9093f82ea233cc8d4a258da2ad08dac30bca74b355087c5c4488bf6f95

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    475b9fda7eb4951fc937ea6eb0d331c0

    SHA1

    6a34b469ad7adf8aa9967ba069c2897416bb7b9d

    SHA256

    613aa487830cddcf350ea3653b86b29785f796cee978403a8a2b0d50140fd57c

    SHA512

    cd6efc8ce6850b65a0a445298adb5958126477a023cfa2cf411e413ba2bcea3e1b1933893e04c3dfb782f1b86e4830e0db5798c972ce62bfa41cf80370a3d92d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    6dd0c7c7b8500718123d38d053264c28

    SHA1

    32f2793b65a2fd7ec7999886214c47e72af87650

    SHA256

    91b27b2c229502334f8dba434e9d777cd8b6ad41cb22f5c17bf0e4229bbeac91

    SHA512

    b1bb96d4d36f01165be4d68185df1ec3e46e14ee565e17c5f0332b63f3b3e844bf2fad300ecf6c83ff254865a3ed0a5ba41bbecbfe4b4ce53141987d3ad4c211

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\123OU0LG\errorPageStrings[1]
    Filesize

    2KB

    MD5

    e3e4a98353f119b80b323302f26b78fa

    SHA1

    20ee35a370cdd3a8a7d04b506410300fd0a6a864

    SHA256

    9466d620dc57835a2475f8f71e304f54aee7160e134ba160baae0f19e5e71e66

    SHA512

    d8e4d73c76804a5abebd5dbc3a86dcdb6e73107b873175a8de67332c113fb7c4899890bf7972e467866fa4cd100a7e2a10a770e5a9c41cbf23b54351b771dcee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9UKEFYXL\f[1].txt
    Filesize

    35KB

    MD5

    e96ae5eaaf2a4d7311b3b15fbb77cdca

    SHA1

    66381fed5854d88affac61d425522a1640b7a3ca

    SHA256

    cc22f5ad1698fba232e041d4a88c84e324d28e2e0e890dedecd93625fe7eb473

    SHA512

    cca712f0cfbab6637b96b0d0e4d75c5b30c636be0f902da5af173ff5b6cef6778da5ff2957c3b00182d4ad2fce0d3ff32fd5a304717c1943fe75c1feaedb0a25

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9UKEFYXL\httpErrorPagesScripts[1]
    Filesize

    8KB

    MD5

    3f57b781cb3ef114dd0b665151571b7b

    SHA1

    ce6a63f996df3a1cccb81720e21204b825e0238c

    SHA256

    46e019fa34465f4ed096a9665d1827b54553931ad82e98be01edb1ddbc94d3ad

    SHA512

    8cbf4ef582332ae7ea605f910ad6f8a4bc28513482409fa84f08943a72cac2cf0fa32b6af4c20c697e1fac2c5ba16b5a64a23af0c11eefbf69625b8f9f90c8fa

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VEYH1KLG\dnserrordiagoff[1]
    Filesize

    1KB

    MD5

    47f581b112d58eda23ea8b2e08cf0ff0

    SHA1

    6ec1df5eaec1439573aef0fb96dabfc953305e5b

    SHA256

    b1c947d00db5fce43314c56c663dbeae0ffa13407c9c16225c17ccefc3afa928

    SHA512

    187383eef3d646091e9f68eff680a11c7947b3d9b54a78cc6de4a04629d7037e9c97673ac054a6f1cf591235c110ca181a6b69ecba0e5032168f56f4486fff92

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8DEF.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit