Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

mtv2.4/视...gin.js

windows7-x64

1

mtv2.4/视...gin.js

windows10-2004-x64

1

mtv2.4/视...ht.htm

windows7-x64

1

mtv2.4/视...ht.htm

windows10-2004-x64

1

mtv2.4/视...ut.htm

windows7-x64

1

mtv2.4/视...ut.htm

windows10-2004-x64

1

mtv2.4/视...ad.htm

windows7-x64

1

mtv2.4/视...ad.htm

windows10-2004-x64

1

mtv2.4/视...20.vbs

windows7-x64

1

mtv2.4/视...20.vbs

windows10-2004-x64

1

mtv2.4/视...nk.vbs

windows7-x64

1

mtv2.4/视...nk.vbs

windows10-2004-x64

1

mtv2.4/视...nn.vbs

windows7-x64

1

mtv2.4/视...nn.vbs

windows10-2004-x64

1

mtv2.4/视...ct.htm

windows7-x64

1

mtv2.4/视...ct.htm

windows10-2004-x64

1

mtv2.4/视...80.vbs

windows7-x64

1

mtv2.4/视...80.vbs

windows10-2004-x64

1

mtv2.4/视...lp.htm

windows7-x64

1

mtv2.4/视...lp.htm

windows10-2004-x64

1

mtv2.4/视...x.html

windows7-x64

1

mtv2.4/视...x.html

windows10-2004-x64

1

mtv2.4/视...nk.htm

windows7-x64

1

mtv2.4/视...nk.htm

windows10-2004-x64

1

mtv2.4/视...ft.asp

windows7-x64

3

mtv2.4/视...ft.asp

windows10-2004-x64

3

mtv2.4/视...80.vbs

windows7-x64

1

mtv2.4/视...80.vbs

windows10-2004-x64

1

mtv2.4/视...ft.htm

windows7-x64

1

mtv2.4/视...ft.htm

windows10-2004-x64

1

mtv2.4/视...Z.html

windows7-x64

1

mtv2.4/视...Z.html

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    21/04/2024, 14:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    mtv2.4/视听在线Ver 2.4 清爽版/admin/AZ.html

  • Size

    6KB

  • MD5

    c21575abfce81ff50d8b074eb837b487

  • SHA1

    6dc4785c7d1e6feabd7bd19e7e09365e4ffd942f

  • SHA256

    e7a3551eca1ece28f3cfacc9e532f9d45e3051286228bbcb906278f95b52616c

  • SHA512

    f66ec3c815a434abf507369b2a1fff3b7ee82e9c14216711b90a2d48ee4699dd5dcf4e74bac3fd097a6af176a8db50b0615387887c098dd3a69177b57a60515d

  • SSDEEP

    96:Dp/GY3VWCG1FmAh9VoMDzO6x5MAXXyO1tAkbLGypxk4vPKG3dl4cTDeKBJcQnnCO:ZkCGFtf/

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 43 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Users\Admin\AppData\Local\Temp\mtv2.4\视听在线Ver 2.4 清爽版\admin\AZ.html"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2212
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2212 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1696

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    568da04aec7ca9189baad847ce6a6f7f

    SHA1

    031a15911cd67b2d129acf6dad72702513c3b6e1

    SHA256

    1625fe6572121ae65afd9d002b2ef94284989352ef609382f51ea8b734dc7819

    SHA512

    7d220a55d592b013399fc46704556eedd5f4fc344087d7e141aee33edaad357b3943cac880290511a7f10d1aac2d7c760268c7ba2486f5ca909bcfa1bf109311

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5438e1b50d32f24a5aa37aa5b67ab3a8

    SHA1

    4ec5d896a8148bbc8a289f38ee8188a79f8a90b2

    SHA256

    269cd5a9a2573c5098a77aa1f642cbdf03471cd77f0308f3753b7d6969bd9c74

    SHA512

    dea29a7329158a68a6a78d01c671619bdd0e3abda8009ee585e21d0841bb1828e23c2395ce67a5b7cfebf26e817e5eb3a6706d02b1ab82b46c89daac1e4c68ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    deb76f3feb700bbb5cb02ff78deb7140

    SHA1

    8f3e93c336edce0459dfb224798a8ff1a5adce7c

    SHA256

    a61d454a0590b2c62d561f55a5511c5a669bb5b0dd9e344237f45c64c303884a

    SHA512

    aa6586a25e97b3cf78a69377cfc6bdb81748dd39625906ffe3b2194a276a53f01682e8bfd5179c81b9d4afda7a32bf8fe7a2f7f24eeb387051ed9b7a85e7eb1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0aaa311c381d08f555e5e20146f45b17

    SHA1

    c916e7c3522a36c839ee36231a94bea5e9da7723

    SHA256

    3516fc81269c64fd6f720a0a9340a18a02c3f87ea9393bbd57e1c8bedf49ba4f

    SHA512

    353c9ebd47f6848d74818f2d754042957b035a6b2620f1956bc850ca06d65a220c2b91e37b243c03d6060d0aad2da3b2ea5a71635deb3a58009e1bc2662b3161

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9721a7e51bfd54e74015866f8c422c4b

    SHA1

    072f1b879f4fbce79d3eceff8f6533353ec7816d

    SHA256

    ef158dc8578dd7bae0dde7cce5cfd70368031c393cc9f40737f685d0ffcc34d1

    SHA512

    1a98cf10ef54457ccd8fb10cf47829408476d783153e0f498cfcbe2893dc53ebfe338149560d562de98f6216833217692280c2d848923e546a5dfd53dca02f36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6f8fc3d180442b485778ac5de5a5b7a8

    SHA1

    6aee5ddf3dfbfd392d178e196c5d2ad1bc73052c

    SHA256

    0cdc2d4a6e39a793c0464303bf5e0e8be33ea1e64d4ecf3bbada76ec6638ad2b

    SHA512

    ac6edd55115cc34ca906a7bc1b8a94b26773af0e0eb5d1ac7139cbd6e1b3bb4c7055ff36e85033ab55bc7b3339e15bddfccb2c66a82debcb0a7611c967982cec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6f22c57b80d4a10a2a957368e4c0ca5f

    SHA1

    fb654d8016e5959d69ac9b1c163936798281035c

    SHA256

    8af2fc78798328c113d6c72f55dfe564b7ace1b1b2e2a4602d7dc978d18bb085

    SHA512

    2bfc3356b4882de3df3bfa62331196766c1c6d3f71b02c9d3d5c01f6ccf40637ee774da2391faf4aeba6d65867838bde99fce3014d59d2dd2214cbb563abaed6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3c5f1e14d5ce86fa32791f6cee9b6404

    SHA1

    9a3bb2fc82e51ade72a7b4c15ff32e99faf4e099

    SHA256

    8626211b4d10dc7192f551a3626ee78ae1cf9b8c7701aa3214f5ae24ae34842e

    SHA512

    6f9982b2e2d90cdc361f0959344e6de9f06437b6750b672678752726fdc4481543272350c6229091d15974a1594221e1554df0c24052bff683bd360d766d173b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    132a366c9945adcd179cad647c3acadc

    SHA1

    2a10cbcf437ec06e608296870faeeea5793905f4

    SHA256

    6cb640f32d9423eff4a361a63fccae83f67ba42e42cd1975dba0cbfd2e9a096b

    SHA512

    d0a14f81ad35dbd07bf2dd6d2830f7269221b8c19393bf3d5c779b4ff6c40b997a4012d72337f3918bdf474c456d91e61d752335a6cf0519748cca43359c04e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    625339c5b50b13fe37e63bf3ba7a62e1

    SHA1

    44317e753b6e2591fd18047c21141ebb81155b06

    SHA256

    41f925e6843a0ed420ca0adfb229578f30151d1ae74a930d897088c1e6f23827

    SHA512

    b6679027e0382d8dbc3af51b8b8e271ca4ec03056f31691d4a397da67c55973d06d9adffea0cb0e143358d6ba69df58bcfc73e0322b219e08555174bcc191a84

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e9044920e4d7288d65acde04d9e80984

    SHA1

    ca2820e65967a71339c11a5611057def9dc303f9

    SHA256

    c03ee13eb6c40ae1016214239945bead3ced14502c8bbbb0746521559c42d13d

    SHA512

    2dc01b5a79396be4ba1d93fc05e73c99e7fe2ede5057585a6aa70f85e85fb143d145a3b5158be96d5b446da0dcf35531b92dc1ac5a9424589bbab69eddcc35d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    12f4993521f916790aac138a708a3c5d

    SHA1

    278798808522869978ff2cf693f9f18e52bea814

    SHA256

    c7bb4d4ec822e84732ad752d6c50e1f96d2b024977150938ec7471c8fdd4bfaa

    SHA512

    28085aa6303badd875e9ae0cd36da7259c14cf8d8974c6fe7ecd66fcf9405aafc4fa16ded35d6b8d1daabe1846044e0d77bb3df2ded6db8f45465747b43c84ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9dc9719bf290f7119fdc1ceb39a9b84a

    SHA1

    5a918a3fc719950105cf22fd8199a3b76ff8a3dd

    SHA256

    ea92c7ce7d05f2e85c14ad4732a570cc5ad1b90d29c78d30cbceed4d2be44656

    SHA512

    62bdfac3dbe12e72ef28bc63a6c137c8f217df751f4b37a6e3cd35ba28cbe551d9c8ce6cbff414fb110aec63970c9b4a8f9a1106c564c4080276abacf84c457c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    6ed6f09356ba5d9157c9a78f51ce8edd

    SHA1

    cf9709c6306943a74a0e72f5c88f78bcbf017177

    SHA256

    a64d9491d749d18662ca65712a45167be89bfe4fa82bccd0305d1b30fa251099

    SHA512

    2fb73c0f88a8c5cf8e46f280908b6df7b78c3403e39b6b41c87417af4c7fa3c20372e385ef3fa8dcd40a44969b55eaadcba5a439489413fae3b6759bb01d2928

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab37C4.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar393F.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit