Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

15450c8b27...d5.exe

windows7-x64

7

15450c8b27...d5.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

Cli_AP.dll

windows7-x64

1

Cli_AP.dll

windows10-2004-x64

1

License.rtf

windows7-x64

4

License.rtf

windows10-2004-x64

1

Samples/De...AP.dll

windows7-x64

1

Samples/De...AP.dll

windows10-2004-x64

1

Samples/De...t2.exe

windows7-x64

1

Samples/De...t2.exe

windows10-2004-x64

1

Samples/VB/Cli_AP.dll

windows7-x64

1

Samples/VB/Cli_AP.dll

windows10-2004-x64

1

Samples/VB...t1.exe

windows7-x64

1

Samples/VB...t1.exe

windows10-2004-x64

1

Samples/VC/Cli_AP.dll

windows7-x64

1

Samples/VC/Cli_AP.dll

windows10-2004-x64

1

Samples/VC...pp.exe

windows7-x64

1

Samples/VC...pp.exe

windows10-2004-x64

1

Samples/VC...p.html

windows7-x64

1

Samples/VC...p.html

windows10-2004-x64

1

uninst.exe

windows7-x64

7

uninst.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    135s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    09/04/2024, 19:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Samples/VC/TestApp.html

  • Size

    2KB

  • MD5

    aed787ef99ae1d65ab810f75406e7b6e

  • SHA1

    8b23f7bd25122289c4ba6aa69d1926e17c885113

  • SHA256

    a8c9b63a32597c36dec41b97fa0d945ff320f885b576dd27c43814fdd446e56f

  • SHA512

    534a84a250d44a871fd885ca100c8f9170d587872e1bc34b05f5b75b7ba3e12140bd430c9fe7318307d9a9ea17dfacbda486bcdc73f0f00d960aa6ca3b9acd72

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Samples\VC\TestApp.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:320
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:320 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2976

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9ceb9e6375858d470d28b6bb9105e03b

    SHA1

    62c52baf36bbf758b4eaa728c80136d36857abf0

    SHA256

    a15751e9bf5cd925375c159dc8fb3b3c6581630ee7ce7db23320f366d6d4a68c

    SHA512

    480b958cc8409aecf09ff16fa7c48a38a0e9119eab4214624385de802c1de0d12626ec8f5e10a4dad7466e6e511d18e5c65736ecc5415dd0323c826b8ec34ab5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5f6b2aa0da48d9c5b207ab143fb34d1c

    SHA1

    14bbada3afafb472356995ed3e916787f500f729

    SHA256

    24c233771b728d8db674c3b869d03f929db2c5466b4031e40c4328d34fe7e77b

    SHA512

    535fcaae52eb3b48b63ff8c950a8ff6ba45cf28fd7c5f8a4ef622e251a2ce40e36b5e93776ea4923f9d58239569837509b8925769989963e3e92200ae93aa5bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    90a66dbf7415a944f4e58e2b7388c947

    SHA1

    a5348d99e8dd928f8a6faa61f0afb3e815139b9d

    SHA256

    1fb74cb15962009893aefb5d02b2d15562b5df0689dd7649327bf89243c4db62

    SHA512

    a6beccae36cf58c24759050ecbe22a77390ca7292da152c97836ce20fb78eb638a291a5e3827e28a490a79f8d86d1cd7b0611c57726eaa51b141cb8ccc96732c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aa6c93ebbd2bcadf117f5798ab89daff

    SHA1

    3c39e3124b7afe4f0400ba211051b9c89eef3eaf

    SHA256

    efca0aa4c2b85ddaa77ffb314a05b8d1671141535ee0d92a414399fcfbf771a1

    SHA512

    8b1443891a69385e8bd4006cb6192017507f7df75f43173b7f1d39cf3a8c15c05ae03d8842a88f958e5863c1663ab34d6f5cc0ee925128a366e1a7787ba2f2d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2292d74288651e1b33b5d81cd19640e4

    SHA1

    fc1010767cee544edc395068eaeec825c405a6f9

    SHA256

    a893096ec225a5733f89c09583b5876a67f177c9e25cac52cdce2a59a652a0fd

    SHA512

    e6919538e9525e5817e2cefb0786853dbde9ecaaf9f245feeacf03b7b83473c70d7107fd286e20072f1b9ce1f6c4114849ebda71adbdde39a330255780521d4a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3cf5f2069db5ed8dff9c2b9030de7105

    SHA1

    6a367ccde742f754a649c58967402abd0dc82437

    SHA256

    c1a3329031b235b235d38a22ce846b6ac48d7a09963a0d538facb05203156e07

    SHA512

    241729c83f1204a2eda8ac20675a555374edd1de6806d226588e6408ea6ebebaaa91841c7712b56546f9716301f35129132cb371b3df67b4a7d54375177c35ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c85eb06fe376970fe6f00ae970ca448e

    SHA1

    2d88da516533e87056bb4e7fd1c67800f251dc40

    SHA256

    c25811f7b6e1e68f1c5217217739d18c465fd2e8c26162b68951e7786ce8940b

    SHA512

    8a2b49acd74bc8257530d4c00b92aee06963fa75bf59dc18c19e36f11d6097e3ec67693d4760e9cb78fe3df3ce87a75978fbda7f1666f5285bcea7f40b32be0b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    26655c1918bd112faa2302edfa24e270

    SHA1

    ce08d49823921bdae5dea1fc0c0a1d9530ec9150

    SHA256

    1597351d3b978267a4ad17985f2b11eddea38cae92c537a28fee2d210e87ae80

    SHA512

    71bca37f68c9cc85ac027cf88123324ca1381459f20af80700a0cea76b52eae9b3ee5032fc5325fc10f0cd05fb4cbe26c2f7bb51561c68346bc8355cf60ce70d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8d27843da06afd85fad258b89d01d0ff

    SHA1

    a628557cee59a3c20063f8988a0b123d97d15129

    SHA256

    872f2ee9339c5de5ba568d1b50855c83186332298c2d5c0ff831206d8c050913

    SHA512

    0f5383d37a48b820940336926e766722d095444eea7aa3764dc0af46bbb24827e68f41c939174280217b241823ef86d391f4b401fc7e5e7db6444d9fd2f0d9d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    260772e33c90d133d7a641c41706a9d8

    SHA1

    edcb0824117b4be8074f5f01a580ceac682b4a5c

    SHA256

    f19b86d96633683367f1a80285eaa4864b1ef0ee38a05470585bfc1982626535

    SHA512

    b002f0b359ac73ee0c69ae4323c76399d3dd4dca472383f28ebdb0066128045351a47c1316d5a637346c8654dc028abd4e4b927515eb5f2e0a01d7653e56810a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2c3a26ea833c2336df183e8e54add482

    SHA1

    ad44c27927d999c7ab41dd5505f37c80019e935e

    SHA256

    d12a696fc9af6d204430cfc4e3246997dcadcc3e9c2ba2efad154d1a192947b8

    SHA512

    8b7f8a2e71bbcdc5918f8ed92da3f2c11b0b0ba3ad4903ea1d9fca4a68c34b411ee353b4fe4d2249ececdab360870a581329b91fceb460b8bfd02af053eaa6c6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    283ecb460b14f17144f2c4090e98aad8

    SHA1

    e55a51e1a593abccf7dfac24841102ef7b664b02

    SHA256

    de5dd00ced9f002a380b82a826701b196a61259ed1101737e41589323b5e2ff9

    SHA512

    2c127046462892b564a7bdbfb48cfb999a67914b0185aa2ed1c59f6c4c128230e1dbd6d4dfff39fbb7d9d1f98951d44452d9cefa797194646863a8439b6e60da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e7f68695e023fce289a0dacb7a6459db

    SHA1

    c8733c80d878a1b7a77370500e8923434f4d2d1e

    SHA256

    b03c2fd24ebf3e69f6aa8975e96546138d561b9b4248d92309b84eefe271f0fe

    SHA512

    3d3f7cafebb21ab797e16f0329041de53fd67fe4144b4d7337e1c3d82f58667fa13873501246cebd4a84f56eeb28d65f52a178c96f246b9e9fd6f3fec2c987bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    42e2cd9833c2bc298245bbafc8843e12

    SHA1

    9dbc80cfcc9648816c10e4b67c4e97a9ea5030d5

    SHA256

    18618a8cc1a0a89eee7c9400edab195907c3bc127ae2c76334184d2d16553e48

    SHA512

    52f4b81be41a7a255a8364045d0ec69ae76939557500d76e1e35d469cd6e1f1f5daffed67616b38aab888b3481d033686aa02668a081252edbd39f61e08d7228

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cea9b3a7c6bc27b150e530cb852496ea

    SHA1

    132013406c0811eaacd7ed208265117a687a75db

    SHA256

    82d3c37982dda9df2618deda5711dcae5c9662fcc680435dc04cba430768856f

    SHA512

    3126233713ccabcc6c08b46f2ae14dbccfd1edfca94c97e31bf47b71aa29e63570f9b497b3495a2784f4dd1e8294dd76702c82cb2ad84ab3f2af5cddbf021126

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    30984683464ef729c0b5e7a6249fdef9

    SHA1

    deb5bc02f3be0419facaebbeaffcac92d65ab0b2

    SHA256

    e58baeb7bc0e75ed6f05604469acd5e9add85e76f030c8e94186ff456f0a5a08

    SHA512

    004b4fef762e530892362a84f994eb201c655e808f43ae459002912ead26e84579b18f7980db77b5bc80c457275e9a0b0fc2e5f9ee0bbb2e89fea419e2e48872

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e93a51986a6409341f9b4f0a561416d9

    SHA1

    c6c588dc39e29052d1aa429c6b7eaa587a42f3ae

    SHA256

    c70607462f33b0130bca393ebe9d2e409db8bddba8a64f15244c5fd9ca212b2f

    SHA512

    27bd088e4e5c24f5453946bf84d04db4103ddba2f59966317816753c905aff3803faf0e2833cbde2e65e7cb690173bf73efc26e2d5fdfcb7ff851f0376e073ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    148ed3ff6ef3879adfd81748e209dfa6

    SHA1

    fe191660006a79bb21acb0258c18299162ea9d21

    SHA256

    8b675095ed8a6481e1d0b3be6ad4d8e224f190618fb75746d4cfb4f58840f3b5

    SHA512

    853b1cb5bffdcf718940edc4c656fe4b4ffbd4d8d0f5224ed3b279cbb46156d3632295afbc12e72570b6bebef95c98e6a85dc9c00aa096d982fb7ff3048f507b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9e85f5f8ccd4009ac2702b651c615348

    SHA1

    5b78809452c3d7fb2c40ca2cf8afb1ca25119ac3

    SHA256

    9d03a8aad9052ce653c989e8f5f6ce5c17475e93f7e3d18b546c401089065bf6

    SHA512

    1c770c241d7ac6426db651870acf8bfe713912d4033d7973144f99208e65454dc96193eed2ef780927508a699b1fa15fccb52f9e35076acf12c64f1477ad5eed

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab5D3F.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab5E7B.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5E9E.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit