Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

libi420_ym...1.html

windows7-x64

1

libi420_ym...1.html

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18/04/2024, 00:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    libi420_ymga_plugin.dll.svn-base?id=e3b43bd36fd50840467669364014ee53553872c1.html

  • Size

    186KB

  • MD5

    e0f52e7e29d3e1341535a83dfe6ab5c8

  • SHA1

    4edb3fd884746249450420174dcbede414addee7

  • SHA256

    1896f1d5a3daadad45e29aa63814751fc36476098e7ac65fa6b4667ba9f1d74c

  • SHA512

    536d6f5d3ff919e2de5202dc843bbe45a116385e67191739c7176f8bd94633387ac50b11dfe8ce602a1443285e534b3089e045dcef4ac7d7e0fe4693d34af480

  • SSDEEP

    1536:Gh/AHYb38HmQII373lWJzMgYWcWKtIy0ZdujvMQYqERiSuE8B:Gh/AHYLDwGYgEfPSUzMQEAD

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libi420_ymga_plugin.dll.svn-base_id=e3b43bd36fd50840467669364014ee53553872c1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3044
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3044 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2508

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2fe723d5fbae1a10d6a49d27041ffc15

    SHA1

    8e93b0006476db803467d972d27897998ad1e7cd

    SHA256

    9a1cd63726aec256186134df63b4f3c43d82536f10a30c82f11e77937ca45bb5

    SHA512

    1cbe5ec37570369eeb993eca528aaa92ae9b01a720e257bdd4bc693c65e17b017e4bc9f1d17f29f73a10441798497be41c5524ef4a720d55c07915ba994987fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a797a327a29f5f0cc5e6e625b5710211

    SHA1

    eccfc00f6a520ec9effd0286864d98b1d9821c0f

    SHA256

    c982b6f8502f378eb3549a23ff3bc425aeda91d4c36cedd9d8856cbcdaeda7d2

    SHA512

    6cd332bb3979a894ce1679de6e9df016ab02b7db009521df3cf79189d1d735d36ba3c480e6b30a025dbdc1ac7829b0ea085e8dafa5056e0774d7d3d6fa1bed88

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4845efcb7c66438001b77f3ce7a64920

    SHA1

    de8383586e5bb81d2cfc7e793c11d3a19d978b96

    SHA256

    840af58b4a5328e2babf7a44d242725d235616066a2bd8bc4ad1a48ad1861dcf

    SHA512

    0b9b1fb90155cdfa57cf7ab65144d40601a1de6c21374ad39333807422ad8fd3d8fcf06c6a6a4368dc41ab5914cb957340b743ac97984b64bb9c5ce5a62ef524

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2e11060b2263781fcee1241d3d49888b

    SHA1

    80883c33820b9625936cc089356e207b041be1af

    SHA256

    537170c27dc45f691485f53ae4ba2692cecab7cc07f5ffbacc693ff0de5acee6

    SHA512

    0180e7e72a25db50983d6469fa76cddf3dd7cf3178e1892bb03728008daf2294b433189096bb1a89ed21902895b7129950b8998bb5840692fe25f8a7ddbc1369

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    726706a45266ee7e93f765222274ee23

    SHA1

    751126fe262148ba23fb29b050f575b7411ff69b

    SHA256

    4f2d046c65d2b41c534432434376c2e729f1154093005e8e89d1aa15329114a5

    SHA512

    f82dac8b7694eb6cfcbd7871f06c9c36522d662f3a6991fac01317cea8442ffab2bb7935b9a5746d3a4f6edad174cc8e6623a8add1435dc83066459c2f4275b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7743b58b95c59adaef9dd4135561b094

    SHA1

    6e7e42179812c345df70edae6487b444062a6a99

    SHA256

    7ba42bb98f0d68375f71e0be7f668e6289445fca51b80586156c9c64bec3b96f

    SHA512

    21c4666a000ff2057702fe9ef95daa7dd95430fc21846534123c55ede5d662c6f3f79e02fde350ddfa444f3d8a9e214187e64c16403ca74dadf801866acca24f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8b873df2965ff7437a495df5a45cce24

    SHA1

    c1b820ff0615b54df68fb0256ff603aa5fd0b246

    SHA256

    8923a9fadbf7dd6302c0e0ca8d46fc293d550b67eac9977f2c8008fabc180ffc

    SHA512

    6e07ade07e293b4f8ff952d94d88a71abc852514eb8111b4da67bcea0bf3fea97ddab6965cbcef02226fcb3133ac118237fe781bf29af012a859db570982b747

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d3a6a4a5f199940fd588936b255555c9

    SHA1

    da24fcbdede62514bacea834480d8c7aba436f9c

    SHA256

    226b6cbb4a411287e3f4464a61da87947afd6cc7a5fde97a8a5c43bddd70bd5f

    SHA512

    aec7cd93eefc116300cf9e13eb897d607a7b08d2460748b2266653ff31cd084573ac0613bb7112b41cf3d3a74f256379519715a90c114570becb0ac0d3799630

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    212bd34cdf8a6a9f149fbc698e9d7877

    SHA1

    6d880afde51b2bf99158804ff4a1f3514b09c43f

    SHA256

    713cf2e32446a77fdf1e5dfe36ab1e653259b23ce754759df6d1c074949f5cc1

    SHA512

    79d7f88949129576e43a7c9dcc643ef5c4919c20a35e1ec6b4e7784f3fa7fde9ea91686fd3db4ef845e913a7c90e7fb3da3a769b636dc354f80e50dbc6ecc483

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b84bbd6948a0145db6590a8011556467

    SHA1

    b60005d99cd50857e74c40377b6d38047a5d4010

    SHA256

    5c9cf75e217a3667ca1ec1394d1b898595bded8ba6c38f1b39e0b1ed41c0a6bc

    SHA512

    879c1f07a341aba84827528b6af7da9c4877651f7d1239dbbf5223878ad51515d426f8a32341acaa5c77c5dcd573e53a54502f3628408f7609c022a81df723ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0c885aed42bb96d8d620b69a0d7fdb6e

    SHA1

    aafe7a5d862c7fc22c6208ca32fada0e00d76293

    SHA256

    6801a8e45a72cc086e722c6c9c6b249e980277a53988cf16b1275ff5e72d59e8

    SHA512

    fa72f37f70875ad909effd0c1cb88fe47a00bf2b256414b7707c16cf7ebe4cb1f5b61dd52578f3842dac70318bbc830a7730a9b22beb842d6fe7b231c8eb41c6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    03eae238550c275bd08b2c857e41be2f

    SHA1

    4cd7a16ff2cd8f35ecf80c5a6ab0d41f5efbba6e

    SHA256

    0e2f9adbddf5e42bc11e70a70722b19212fc7ac6f89b1c4e7d581ebce935d73a

    SHA512

    5354c66846afdabdb330d672a51ee26119536fdac3e61f2fc5d22bd1bde9000ded9eea7aa6f9ea78e1d8cc594d009bb4171ea29dbfa09806fca80541a70a2657

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a974a2cd4515c4ec7b4db07d60171384

    SHA1

    60bca46c0fae0557d7abd96be5bfc50b44519d38

    SHA256

    7a71f0dd56e41594cf325a28d101baaef9cf9ac0c1aae4ebe0199ccfde6b89d5

    SHA512

    a28de5311a5e63b37a27984544a2ec0ce8424d029abc6313c8c371f009c89f26aa09a146ba66a2fa963c113afdc224df089de2a11afb4d1e902c53d3147677bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    63db56065c8a4a04a08908d7ee7d79ba

    SHA1

    61d29fe4667e029e0f03d91596c6d1cd1e2fbb13

    SHA256

    d800d5617d23d181e995bdc03715aaeda2cbd885e7973d99d683ff100f67f093

    SHA512

    fa9087ad156a9f57508d6d46a4fa6b07c97a8a62c016a6ed9d02358bdf13162d3699ea33c36e6e1a15e52d296abda355b4424a48854b39ea027a02fa85d82c13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    282830fbb8b43ee87b6fa77bb703330b

    SHA1

    9b437b381229e5e646db6e23ee373927f322af6c

    SHA256

    9145f50ac3842bacefcdf16237674bad7cf121f930614e5aeca2da48ae97fdf5

    SHA512

    0567b1a7c6d2a438e5d1fb43fcb08f2ff54afd8b7a389bcd06055121242dcc49b37ba82307d4cb8f4bf994d1d5593c55716699b2619d16d6c3fba7a16a604dc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    399e1e2f2474b0e54e65e55c9d4abd94

    SHA1

    7ab314d1747c06b8241103cac6007493d52b9f45

    SHA256

    606ea30e86345b7c319b97445edcb8c9c4682f5311e3e063decd22ac310d1b45

    SHA512

    0de4597767da9531c1c5bcbb9f77f02a5e8936da061cb17420c845c46eb9366f970b38f2a1abfe4029f8a59183acb53ee369d6511c9b1325d1871a220595eeec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ba2eea09ffe213e9ffa229225c4b7064

    SHA1

    ade97b677bd8ba9f8f7cefb5d2e6bcc24f88343b

    SHA256

    db01717b9ad3d22d7940b446c4f086ce13d7dde5fa2b171a4fdf9620aadd290a

    SHA512

    2021bed3d0e5a181c5c1efe9382367d4b2b666e88e86d0d6eeb979d36ae364c280863ff67d730eb4eda65b45860d265572dcf5b7a8a05acb50820113d9efc751

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    740a55c8f6aa8814ac3a4602a5114596

    SHA1

    f1091ce28497f97f7cef20e69b49d25a5244b8e5

    SHA256

    8a3bf917a92c79ff3e4ace4a3e09ca6b35943b946af39f3b0cf4051d647babee

    SHA512

    324022b406859cc90d94874365e18c0b76d86549f8f5fb41dd93b48e1fb3e47722bd8e57450c759bfacdaf3a62300c31cf4f6a42598255e806d9bb2d09cf5243

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab72F0.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7390.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar73B4.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit