Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

libhotkeys...8.html

windows7-x64

1

libhotkeys...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    137s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18/04/2024, 00:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    libhotkeys_plugin.dll?id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html

  • Size

    309KB

  • MD5

    74334304089f2bf48b1b4bbebf17f73b

  • SHA1

    ed6a301661121e943f1c7825a6200ddb093615f0

  • SHA256

    091536d9866b866e13667540987c496111333380df78c6e7af35e4e21d2d402b

  • SHA512

    0719599503b013e249ff6ed5879f11ef63da5267afe3454dad588581fffab40dbc4f29ece06059d5abc9413b9520326006f73dc90eacbd1c39622bd7445b0ead

  • SSDEEP

    1536:Uh/lgyrAnTlaA3G5NboNm/mHghpal5O3cyBHVIlb/eFC3aNAYpZHvKBPhbE5Ka6N:Uh/lP52HGHeqFwaSYmBPh459C

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libhotkeys_plugin.dll_id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2320
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2320 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2580

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    357852f9f2f91bcd6993b3237e3b35ca

    SHA1

    201110650516fc599f4894f9b82a1e8e9acda2dc

    SHA256

    c94e7a9d7d6c5f89bcbcd34855465e530a21323b4e4646c1d2279403d0608fc0

    SHA512

    3e4e1566c6342171bccb6c6af1ce0051f608d2e94eb9e636e9b036846dadb0c9e6dbc5c1a3560f10cc90e5797ab644fbcb2459266ea80fea9cb2b3485e671514

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1f27ef1622afb38fcefca9a7e9fc7cc4

    SHA1

    2c2459c3a2ea123b52dda83b993fd411431805bd

    SHA256

    d78b7c8afe50ebb4b7910c0b4393fc845490127e25924b0f25d7fa6472c5f474

    SHA512

    c0ae0a4f41232b5750c5b27072a140f89f62709889f57f1c01a7e284475c8cbd400b74d634e5d1907a2ce29861fb0cdc9423a8a52829ee9b6aa9569badfad697

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a0e3032621f4be2069ee139c4ec76453

    SHA1

    6109858dc36982394a1cffcf467a3a84be93edb1

    SHA256

    f890e92a2c9ead46bebba624736b71c631145bbb73ab682ed6d4d8767edf2b72

    SHA512

    0587e244739c24be083200e5788379ab17c34b1d269b14b571f74566a5c4f5ee407268aee8708e5e022d4ebbed4ee270312bad1a112e03c95eba8348beb00aad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    49ea7a56a53709994dd41947eb9d5e35

    SHA1

    eb40041e0ed9031e00bdbacc0cc77df7cb3b844a

    SHA256

    cd9f0e670e4bc55dad199ad5b046f3e54899e087e584583490d51d5a6ef83fff

    SHA512

    15180395bb56d34f4ea0067122664d4146ab869aa23cdde80863145f20aa3bcb90c51071f9d080f44222535e1928d22d54583d32f34a8095f065df04966ffa43

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c1f553a3f287e8d04356ca6a41c4036a

    SHA1

    c338ca46d18e4d18252e2dd57257f3c440e6f50c

    SHA256

    57676c4249a7953088d1b5def7e38b5cd4c1de38ed2843e0432dbf0a7b40fefe

    SHA512

    f0f109cede5b7fa6690db04ef1783b4af6d91054ac46e1c7fc6653c4cbaafc791a3ce69b1054e6cd75d1ab32b45280898ab2e05b206594b4d44362b43592926f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d32b08d89ab56583822d6d5605e9c86c

    SHA1

    f06a32a4668fa2c97171de7cf02ddc45116491aa

    SHA256

    aa22f174056b0a31d636aaae2d076aadf3acf8af152a3aec4827dfe92a8450b0

    SHA512

    847699739f9949acdda9b141d00934fbd037d0c971567dfefddb39a45cb0c85e3fe3f1aca324d073191de94ba2a005353171e119c3138274d85fdbf2f7ebcbc7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    47cc248e1c3eb1b7be4e4dd16526dff6

    SHA1

    d5dd298cd7b61c14c50e0de7452f93d1d7f72c28

    SHA256

    cdb791b7a73b12feb8a066d716b556cb332520cd98062faafc8e8e0a55528dae

    SHA512

    1c2c481a8c8afd5336d1fee2ddc6c283eb667519851f756d1be357f8dd502f5ba10c50a500038fc5ccc42d64ca154eefa2171434ff9ff7a0d4b673039013e9e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d9f87827581df0a19545111203fc57ea

    SHA1

    e8318e611360fd91dc3fcd76f188917c72398eb6

    SHA256

    74b143820c173184f9d57344f591da98d73cdac7918511a4a84645b99334b780

    SHA512

    2f8f259a305de979a93a49e8d4f8b9f1439e797e400dbaf847b25ffce1bfe193fb22e9a7339a4c1c6eacb6a139b81c4cd7fb3c6858c5700a724683fa55a56a20

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fc9e576453ec4921a5a529580e554d06

    SHA1

    bffc0bf3dc51ea790332c9af41efd94e15b00dc8

    SHA256

    440d068b11b70f6ea2fe0216dfd58458e6c3e9d4a974f99851574581f9d7b287

    SHA512

    8f3005916348be0a9351bc684eba7c2d50fbdad932c06daa7a77fdc8457ae024f4435a723e00fdb238b00af1e6481e6047c525960645b31145d7881db1f54d1e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6349672af41ecf2830f2a2bf85837c28

    SHA1

    3a64276a5d28ee2e426cbdb717ecd518c8cc70b3

    SHA256

    95f9c1645480cc7210d39cd8eae76cecb80a3d3176c7c7cd38b21fc1543d4511

    SHA512

    ae39b93da350c21c8c15d8e17100d35fc039f556eaf8fce8d37f0fdd9f3c50022d619e228a31a7cc9c6b580a938f7c4f555bc9e37a91843b980c3f04b6f4d84f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7f13c88ea35fd3df034cb24825451bf9

    SHA1

    a0e51ce0dd33b14f3e15580c5d11a836d2a66a50

    SHA256

    fb34eff0d0ac618490a1bea76a1de13fa4235bc0475a56fb6bee8edb9f4b5364

    SHA512

    f6d5bebc2946e56783cfee2f938b47d410329fe7179fd1b3c16181f609fa35757e89b67a80cd5ae4c8d8bb6c0ac575fcafdf23f381fd5eaa6949dd59b3aaf3d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c82feee9bd0347a5dcec1a49b99e6c3e

    SHA1

    d4058ab5254755e37b28d55467a7abc2ebb08579

    SHA256

    0e192f6041deb94e6ba05b6f86bc16abc38d2f94dc85397a34b79b6175c52911

    SHA512

    814cf5644bde4d711535641028fd9758753bc14d46f6f1a66cb461854b36999c49520b6f2e331f79995c353b98d70935618eb816d50215646980bb70052ea388

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1ac5c3a4e06c6a32b497253a2a888421

    SHA1

    d2c71e0f912dc0ad730f54081127bd8c39524dcd

    SHA256

    e75e65f924e3f6aadb29b8c190b4ac6a2d06da77fe214f453103c41b2a989129

    SHA512

    2378f9a207559c2a6a349ac56a43d2c00f0dc8b9774de0c88b0f68117f01a86f552c8a0810e04b0490bc95602faa8108ec601e9e8dd46bd41d09c72443f03e82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    53124f143fc799931bbe8ed099f45206

    SHA1

    182b1005711622221027e7227f0f1401afd5b2a5

    SHA256

    c176860b543410752ba6784704ab8c6fba23b186b55d258e81abf91720251050

    SHA512

    57dcf33ac9a966fc9d1b5a43cf33f8281806ddafba2bb5f818e21185bf765d7c6f149eee2f07fba260fac8f858cb8824c228dfa090a799bb7e9d9dab9c597931

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c308cfab9208352f06636ac7d4446ae2

    SHA1

    986ebe452d5c88c7d4b4594c79360f731be1ac83

    SHA256

    a6037b55e65271012d3e1ea4a973f6986c88edc1dfdbcaddd1e11d2e1c52ac93

    SHA512

    e67efce22cf284ba8e0fc45fe705f12dac5ba339ccdab3f2626ff9e40448c077a37f7d67dacd6f11d63a2266ff43085a80e0dfd768086c3ed19942d6012645ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8ae28b47ec76167eda0cb28a69f22bf1

    SHA1

    d682feb83a919ac4438fd2ebd88e5b39406463c4

    SHA256

    bf208435cfe5da1e10529ede9fc585cdcd14507af9ef830dbc4c062304518ce2

    SHA512

    bfc63747047d7d7b683d1e08c6c7505c038bd9105c870dceac87cc4a884a1d5a06ade4f6de4b8c8dc5fdd4747bbc49ff37e194dda4f96e15d28ab72b4bb83e4f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5f14a27dc6029b28cc93a7a6abba23d2

    SHA1

    f5794e0911052e645e26d7a89b882099ba03e65a

    SHA256

    df97c8ae3289aae7a0db13b61a3bb039cc610942d473a8e96bf31e5eea8db98a

    SHA512

    dd279bc9b5c9cdbbd1fe06b20d6aa5d5b65c4d3af958a0d98de6e9928b8e10e4d5a6a35fc1d21de45cf28079549426ce3e43a8431b17f62717e7544dc512b60c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7DF9.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7F48.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit