Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

5

sms/Contac...p.html

windows7-x64

1

sms/Contac...p.html

windows10-2004-x64

1

sms/Contac...p.html

windows7-x64

1

sms/Contac...p.html

windows10-2004-x64

1

sms/Contac...l.html

windows7-x64

1

sms/Contac...l.html

windows10-2004-x64

1

sms/Contac...x.html

windows7-x64

1

sms/Contac...x.html

windows10-2004-x64

1

sms/Lib/My...ker.js

windows7-x64

1

sms/Lib/My...ker.js

windows10-2004-x64

1

sms/Lib/My...dar.js

windows7-x64

1

sms/Lib/My...dar.js

windows10-2004-x64

1

sms/Lib/My...fig.js

windows7-x64

1

sms/Lib/My...fig.js

windows10-2004-x64

1

sms/Lib/My.../en.js

windows7-x64

1

sms/Lib/My.../en.js

windows10-2004-x64

1

sms/Lib/My...-cn.js

windows7-x64

1

sms/Lib/My...-cn.js

windows10-2004-x64

1

sms/Lib/My...-tw.js

windows7-x64

1

sms/Lib/My...-tw.js

windows10-2004-x64

1

sms/Lib/cl...nc.ps1

windows7-x64

1

sms/Lib/cl...nc.ps1

windows10-2004-x64

1

sms/Lib/cl...ay.ps1

windows7-x64

1

sms/Lib/cl...ay.ps1

windows10-2004-x64

1

sms/Lib/ed...min.js

windows7-x64

1

sms/Lib/ed...min.js

windows10-2004-x64

1

sms/Lib/ed...tor.js

windows7-x64

1

sms/Lib/ed...tor.js

windows10-2004-x64

1

sms/Lib/ed...emo.js

windows7-x64

1

sms/Lib/ed...emo.js

windows10-2004-x64

1

sms/Lib/ed...t.html

windows7-x64

1

sms/Lib/ed...t.html

windows10-2004-x64

1

Analysis

  • max time kernel
    137s
  • max time network
    139s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/03/2024, 16:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sms/ContactSelect/Index.html

  • Size

    940B

  • MD5

    81b67244a36413d6ace99ca443f59530

  • SHA1

    179b25a4ef52cf1a7be31eb9f4bfb41e479c54f1

  • SHA256

    9407d9a12cd452ba7096afde42c3e227d77fbcd38a9329ee4a2df26026bfac23

  • SHA512

    22acfb0ff5c87fec15d0bca34633f04d13a9ced2993ba72ff4c6ca7ddeba30927555a30be824744937740fc6ee5ee9ee35e266910ef13a873bb0dddd92a10ce6

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sms\ContactSelect\Index.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1344
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1344 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3052

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    592726b236ac6732147c411c46226fdc

    SHA1

    f252caf9211d45c71901f5c1163a08768db8aaef

    SHA256

    6ba85a6055b99ed8f8e134f64e4e6555f6a85f4b9a91908a7eb5f7e5c3faa71b

    SHA512

    8b853add159ef1be57ff618ba121cdff2b86e68d3b7d9d0618810c25d6825490f412a3d1270f8a9404f5776e25e7634aeee4b4a623743feb3422e81962b4fa68

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9a917d0f11814456f20bd38e3b20adc7

    SHA1

    cfb01b7b181f6f575c637c9db5c50cf48a99889a

    SHA256

    8de6c74bd1bff89ff1cd1c8d71d259964f4024622ee85bb1a65a206f79de2cbe

    SHA512

    86f87d50ea7fedc860e4a95ca0879d999297d788b0199fa7e1bcdfad37a11624e641f904b84055183569994a4be91f6653551a35ccd79ef567d9b40e3035642b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    464ae030f10929fdb795d603acc0a9c4

    SHA1

    d53bb426b22c91fdcb4ab440cf19d80a9f5791e3

    SHA256

    6f3835c3b5581b388054fa312cfb17e112cb9dc6bc6e1878e98f1a27f735992f

    SHA512

    36f6e5099db0bac39e7d20060bc1244365d3afcda09597cae75b3c91cd74ebb55e7c7786e5d9ccc58fd07acfb71d8faaec0e8ce46089941d5dc3ee073d35b95f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f572e62a59d76ada0fa02725d30dc469

    SHA1

    420000d3f11697353087421047d5175475bc0870

    SHA256

    2f6481305c404d3d5177855f21347a080a21a39fc77fc00e92202d4b1b824b45

    SHA512

    4ffcb21d027fcf8df8a35ad17a5d1a6ebb25d6fa8757077c0e9bf4b7f5c69df1032e134682efab506aaa4f043b0e5d57c03017f64882d348f4ba0af67775654b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ca56ef26c4a5ec2e6f42653a385877c0

    SHA1

    a612e4a62b64900092671ffe86f23a7656d50e1b

    SHA256

    41b05a3a18af442b00fd72c6dd540b4e5b8b1f0aba7df98e0f93cf3f7d9fcf69

    SHA512

    895df63720f15c5b561bd2444ac786206e39642e1f0d86ca2f28cb9d7851455dd564d13e3b042543bae0e4072e8a4dbb7b9cb8505389e1fe28d54c6f80990f9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    67c90cca7af9d61f3101e495921443a8

    SHA1

    97a0dbebc0270f1496c7ad1708b00c2a955d5f0e

    SHA256

    210d229bb46f8b9eaa6c2d3f1732eef39d18891ebd3858dfeb03573144971043

    SHA512

    c5de4cf38897ca4c67f3826d58f03d34773e0dc65c1abd82c4c9d4b6169e60783dde83fc8100bae61888ffc8398f8a1434a171573eef994d5d55d9c14361a036

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3062e629fd85fda4423fdd1b78f795eb

    SHA1

    61c9d6ff41304ef68df5b56b510d6f479741f9eb

    SHA256

    935f7387f70a039ea639c4421546d92001892803d1e2b071ad2bbef794ffca86

    SHA512

    ad189626b0d5b762b06ad891c2dd7d8e3e6b4d06e2aa4f768f5fc1ff4fc69a38591ff7ae38b4858d7c4ecf328e9033e726bd3327251490c4313801c37d3e606a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e9c1f68f359d746b23ec5a7b3907ad40

    SHA1

    44a09b1421af0f15f077fe7b27242e506d063409

    SHA256

    5fe0118a04e2e1aa052cf74dcd3b5f75913044c0669d440b86f32824fd19e77a

    SHA512

    21dfb9b8a09ab7b08d82096a6ac29e9ef7510536d65eb354399a55debe578703393679c9f0559a6b8dd84384d12eb78b4238874c2a5c25dcbb90e60b8f0f82df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b3c3810b0a87cd50612ef13b3ebadeb7

    SHA1

    c9fe8f71f378d979a06a14ab43bc056be82ea90f

    SHA256

    28853e259a91840051256dc6a8c163c1beea7ece1c8380a01500e60aadd8d064

    SHA512

    612c917437de809d2c4080db3a1a8722a7c960dde019c62b386a806b851bec64389f53bdde6110747478aeebcbaa68b4f6d4d4081d47023917b963f203e1557a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    32bb54946a72ff9022afd8a247206099

    SHA1

    ab73a1aabf8553a782dac13285c4d439840d1fa2

    SHA256

    199b4e3eb7348fcdd51429d24291d422119cbda17773a31c22ebf597ec62998d

    SHA512

    837ac9caa0716e2673c5f9a128521f01896de42cb69a2131d62e9839b19b135fb06da2673760fb509671ebd8bc9740678a8975168e87807f4eb9f6539539ef3f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2146b0cd5d51c3af416c52fd1874e885

    SHA1

    fb34cad50c76cd7fb8fe9a66dcbd4d74c655d669

    SHA256

    e8e54c40a984f121f0328de7929d416e3210d4d41212c0bbcba4ed888a0d6ba4

    SHA512

    e45a708b0d6105ac2dc64eb10e5837cf42e5fa957e681009a51c8748609613cef11ceb631f7024b99121d125abe0d7a34acd50a5b2e0fe341161b4a9de02da98

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f6d6e1fafed204129e0e2739f92c1589

    SHA1

    72acec23365f4ed9b89798fa22f3ecf71e416618

    SHA256

    32ef5e427296185e22a5e627816026cc8824710d0c125ab148d2c9337a8ae365

    SHA512

    8b37d6f4c1c33d3329442d9df3fe81d2accbb90a4ae413f0116c4cb070f6522694f3596e787eff5c3531e2dce813f416a0931ea3f54152c0cd8ee7751f12e5d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d1a46a0a48b373a612fa3d07d64d7cc2

    SHA1

    00b52c8a9a6876fe9eeda089457152c4171af977

    SHA256

    6cecbe9e3d8a77cc9631622171ccae16cf973a973a87e30ce6edd5ece013a44a

    SHA512

    9d6ac8886c551a83c207fb082bec7e7c0fe33ae67f29cf3fe57d2d78f9e3a614a64aa1ea5912a5b9347c1d70f84244d9a92ed2605ad467d03a60df005e532ba8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cfa7901bae5617b92329fb8cf91617d5

    SHA1

    f2c2754eaf2e05dceee68b8b65d3d61c4f095522

    SHA256

    a04a49685df106412a03e0ebab3183f65c09191975ac2d93610cd9517fd3d9aa

    SHA512

    92f60d67cdf3c57818da3805206b3495d8331d354dd801fc42cc384df937b3ba4e68d047ebc8539c6bad181d4a8f96f94fc351fc2ac82f36babd3ccf57bb73a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f29ece7be81276b9898ecbd728e1ab99

    SHA1

    1341833f400b11956c3bca66e7882d882b4282b1

    SHA256

    6be1cc7f226537b1ed77c802226de196dbaf699d206aedd137ebad5f13796f04

    SHA512

    af43241bbec7c2b92edc53b4bd820293e8dbbb144e1a15a52106418afdcae60304af48cc963f37a0cc11f5fa4baeb8bf517680822faf80a72e2f150b366127f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    26b8f0d49ad69f7ed325ddf672867862

    SHA1

    2bd6ad37ec53143c62306795172bdab9076430bc

    SHA256

    dee920921c64097baa3d0db579427aee56addb263469fb3ac978f8ad06c1644a

    SHA512

    6ab9f417e9841fcc2122e85e560e62044b989df8eae5c18f382dcfb9de218f2f7df1eaddabef01d1e8e47d02274d541a37d79f7ac70bae7c7ff8004109a9c790

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f079fc9aea8157eee90cb82339637b1b

    SHA1

    e9050bb0e53a15351e9a8c05056755620e27d6f5

    SHA256

    1af8baa760ab0cce2b32a30074353a246834330a4e2e2ebc1c1bd57c490c465a

    SHA512

    d89a0dbef10c79b41a43408a11cbd190fbf5534b91613ed74c5fbee842e4cf453bd7cf588289c80d8dbcd92fb085273203d8f7594c0b45262f235f6196fa9df9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    53e3076cc683d63e9e324e4dcf4eea5a

    SHA1

    dd3348875e0294899a52ebfd5cfa2de548725f2b

    SHA256

    d2bc31af4e7368221d9366906c8d3c300712f03e59df2ad61249b848d09b4bf0

    SHA512

    41a4d104fcbe4880a37383237c8614eb8f1701ce7da027dce7f8636aeaf6be0371fba7a38cccae27d44af754ce4e2001ef2cf015c51bf5725085130926a4f854

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7ADC.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7C1D.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit