Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

1

Machines _ Triage.eml

windows7-x64

5

Machines _ Triage.eml

windows10-2004-x64

3

attachment-10

windows7-x64

1

attachment-10

windows10-2004-x64

1

attachment-11

windows7-x64

1

attachment-11

windows10-2004-x64

1

attachment-12

windows7-x64

1

attachment-12

windows10-2004-x64

1

attachment-13

windows7-x64

1

attachment-13

windows10-2004-x64

1

attachment-14

windows7-x64

1

attachment-14

windows10-2004-x64

1

attachment-15

windows7-x64

1

attachment-15

windows10-2004-x64

1

attachment-2

windows7-x64

1

attachment-2

windows10-2004-x64

1

attachment-3

windows7-x64

1

attachment-3

windows10-2004-x64

1

attachment-4

windows7-x64

1

attachment-4

windows10-2004-x64

1

attachment-5

windows7-x64

1

attachment-5

windows10-2004-x64

1

attachment-6

windows7-x64

1

attachment-6

windows10-2004-x64

1

attachment-7

windows7-x64

1

attachment-7

windows10-2004-x64

1

attachment-8

windows7-x64

1

attachment-8

windows10-2004-x64

1

attachment-9

windows7-x64

1

attachment-9

windows10-2004-x64

1

email-html-1.html

windows7-x64

1

email-html-1.html

windows10-2004-x64

1

Resubmissions

01/05/2024, 06:06

240501-gty63sbg66 5

01/05/2024, 06:01

240501-grbb8shf2x 5

Analysis

  • max time kernel
    118s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    01/05/2024, 06:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    email-html-1.html

  • Size

    86KB

  • MD5

    f56d5f5552463305dd7c15739cd2fd65

  • SHA1

    de3e445c1dbb4622ac0dc081fb451549ead47c88

  • SHA256

    eb3cf66f75629f8f992f26ec5f3e6a5bbd9369879dc1b3575468e8a392f16375

  • SHA512

    bd8a7438c41e98d9e8a6637280e621798930cc62dd7ea2848dd22aadbe389372ff26a9eec29a05b36153162f10e4b4bb7662db12cdcb06872fdd32b9d6e29462

  • SSDEEP

    1536:sg8M5cJUZZf3UWUCBvmXvmivmpSmPSmLW:F5ZUWUCB+X+i+pfPfK

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\email-html-1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2772
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2772 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2480

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0f1049c15d5cba764866ffde8868dbc9

    SHA1

    1414da0e5d2f42b854650e5af9f0498072d99515

    SHA256

    2d370331596cbdaf30b7f8821d779d286c4621951129b685fa50a84a667842a8

    SHA512

    93b5060160a9c586483a81fdc425b23ec27461ce5f69b049306bd91b929be2515df2f4657259c6f3c2a338b6ce2a9bad8c4d7bfee5e53af7e2e8cd58ec0d1a9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bf91532a5d41e1300223c982a585a85f

    SHA1

    0cbfeedc0b8d39eebd0f4028f47934b491421f43

    SHA256

    100916693174e0e46a863798b3fb2e58ae201248250d1fc9933b670a5590e8d1

    SHA512

    42ad045b2bf4f161c4a3fa9837d5d5e7e0768dcc0fc3d29684a8e9c8b048be3bcc3df4b6dac612ee29ede326ba71ee29119d6abbac799ed3332b8daa7364bfa3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    637beb1b827e1afcd0b6c2c2d08e4f75

    SHA1

    67c7c416d7cb80724693980b55205028ef9c0b47

    SHA256

    8364e0f82352dd338f18546b64b7c601ff55b253c26f75f4395892b07a7400e4

    SHA512

    4a664efef9f372ffa12a9d9a840ab3317860733f3a65fc66e140fdfffe955cabc9b0d5dd51eb566a83c770fdefd05ed706f3fb7a523d6f3bfc99626ffd6e69f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    391c276120e00ac4b1fd0457cc99b247

    SHA1

    fe5b7de01d2d1d7233ba4a7a59d3559be20fe3d9

    SHA256

    aede160640b349a5acabf64a3d3b05b405d9f0337a909eea1b606aa436d610b8

    SHA512

    181bb3e9ee1d923de553a15e483d87cef1afd0a4d1794289f7f75571cf3ae42b82ef6644c0707c1654d661cb340961a4c82c21c9da14826011c485c7dd113013

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b2a950215fe947aa98f00df9d4a46b2b

    SHA1

    ab5b5a54337c85414ef21c8585c45bcecb000333

    SHA256

    cf21f47266393f57fb56fcea0d26ecc8ff8bc51291feef9f1823b500a41b8655

    SHA512

    c33d619c63b4f2000208f75ff126f67f0eab5e9703a97a19ad7918e2e445f63725c9401f350af07665ebc1e1063c9b3ff87116e56688b53cdf694725bda54347

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    72a29b80964339182c95c4a3e795da99

    SHA1

    d71ea9780318a118a68dbc4c5bcfce3a13064df2

    SHA256

    ee46bf942a920a26092754815eaa2379381c20e4a0f8f6b1831a54db362e8131

    SHA512

    f956f40b1d6ada0178a4e8f2c6f4e9ca006632c0eecddbcf3b8e58cc6d1403b9381f797a067e6807f1160821f888426a1505df775e806dd94f9edde36bd32523

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fc2ead42ec211f7df335463d24e49ff6

    SHA1

    64bb023aa38713423c8c8bab2e51f7b5d34fb0cf

    SHA256

    cdc0aec4ce121e17c226e6ef5edc1d1b7386db8e545306e89cbcd7c5a212e8ea

    SHA512

    95569798f8e90811848ddb8aa2681b964ed556c8ec60b638866e13a4945111c920bc16a1b276b714134a2e1d7e3408e343a1beeb7fd157ab17ac47720e0b6761

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6e6b27f0ddcf2a86c04dcf447caece06

    SHA1

    e1cbb42246e2141775be64c15c83a23ef8bd730f

    SHA256

    2e9e6bbf0d5e587c16685b9b9d6cfc86636b52e92a096cc77a798516d4a61e5d

    SHA512

    a1a4616821612a32e0c82563ff4b7d0c0299af4f72853565990e4ca37d803c2fadcc6a55faea0cab17eeab421f6acb9d1000db381be47734eaeca40ca9a6f9d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    03bc961869cd7bc834373fe6dea0dce3

    SHA1

    00026f803f469470b3407fb3f52110045f4b82f2

    SHA256

    3bcf7273c70c6e22b9811527fe0d32b2f720ba6b3a123047ea6669df23b7f939

    SHA512

    5d265e46cd3f1832955152fd2f89355676ee114f803fb9b99d1af587087e123d61bff7ad10bf36b5829a837b7c881a5e06eb27e189abd12b35de7121030b3852

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f28917b8642aa292fca34c41b9904ff9

    SHA1

    451849ec6aa076f9f2c20c1ee97ca2e5479df7db

    SHA256

    a42d904ac6d95fa25ab49a6f01957711d323cd2d2a504005f182cd7ba6465f9f

    SHA512

    5aa4c80ba52b1882fcdeccc813ac9e90ad473e586c92f52f10fa194ea19f579fec9de9cd878221fbe576ddd3b23bff0031e5fbfc4bc30f60a87fcfc5c39a2065

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    db38e3202e4cb5aa5c36c278350ae9df

    SHA1

    abc208b2af45420775ade8a8a31f72a2274c21b7

    SHA256

    e711f757212a614843b174562c4ad204849d1891b8a2582ea657694b6d120bb0

    SHA512

    d0eba28d4964bdced19c9de29c7667ffeb302cfd3c19941441c9fa89e4a69ce08124078b650e28f3842748f55dde0804c8b29a62b8a16bb1beffe71a770ab0e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1ac65c7bc2257dfbc05cc6f80c0e85cd

    SHA1

    61814d3c5fe8e0dd8c62c5541722fc9f4c7b23ec

    SHA256

    4bcae306bbaffe736b07d59e31fb804e35d6deee1056724dcbd4e04321e79e34

    SHA512

    9429540c616bbdc2b2984d8737c1ec1a36de74f7ac8229714e44a0f69cfab019ed131781699158b7308fbd760593290e22aa4a488b7a19e7874b451a228bf011

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    325b8d319a0e1c3f5832415b1691bce5

    SHA1

    452144b42f0654b482802b54ace5bede344d3884

    SHA256

    32147d69dc423dea20dd4865f495932408afdff94d18573c8e3d478bc391eebc

    SHA512

    5dc18ca24892bfca664e26b0e691440bc47de5983a38ea8c1e8b19859891ca1978271a8cad469d12795ce447d0cbd032bfca4a15212de238a4fe87bd3817cc35

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    09329118e88ced07e65b339f0dadbf26

    SHA1

    af44a6b97c5b83af00c0fc91312a95a0b3b3a7c1

    SHA256

    acba2f29ff2893e0fd791a0fbf75b321a0d522f0b8e5020acfead161daf9a0b6

    SHA512

    4943e364dcd115d070b190d79e52df922b9fd6db28d545528f2ec929485966686e34209efa934ee55c43df484c8341e8afb5797593b4f44a733e6a288c2d40e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dfb7bfc87c6e4b1de3915700c27ace81

    SHA1

    f905e2423b384960f005701ca4c8a2be2cc4c1f2

    SHA256

    c855b1ee8006244d8b58ee70ac838b7390daed39edac63a96a3d9350bf3ebc30

    SHA512

    cb12429498e504661de98f069e6c285f61ed7c040e64a627827e033cc3508f3c6b85aa7901d78594afc24d24b07f121e1ab801aa77231b5b9accefe9f386294c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ac59a3c183fa8f64a1b4e7df9f0bce89

    SHA1

    d9ab03e184433e7658e1271d824b6f9b1cac7e31

    SHA256

    1ed670c99effbbc5c0e43b03feb0ec22d0d11213f3ee587844b859b091910833

    SHA512

    515aacce574da23394536bc90b7f9797288f05b37a7c027fbe2513839ead2288f3cbce686492d032337c3c772f646f3917cf0e04d113d5401070085e0c65be36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bd649099148f36947d071ff62873debb

    SHA1

    9d585e5491160dc1767e76c0b3cc5ada60ad02c4

    SHA256

    f1f11fc5c7da1196ae3f0619249396e49267f44cace68703e7c919be7d85d7c1

    SHA512

    a7987bfa612fd44631ac94b73a741eff231dfc17205bd1a0f7d3bf53f6ef50611a515c805826a6fceeff115ae8c0fc3e041c8364d6336c5d985705fccbbf11ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ed2cc1d94c6e8a8e885d3899115e795d

    SHA1

    0f4f21a48d847fab3141f9a503346079d0ba19cf

    SHA256

    bff381cabbae0ad8c385f1902e5d5f376940c5297f091539e3705255ace77d20

    SHA512

    45fb8405aafb15bea5cc5739dd971cb8f746e97cb18add8e5d565b6667fc8a4b2c465e94803294d76b97528ba01d0747b4eb6c1b9b7fd5aab69a1665d1278e5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b6a416f93997f2ac8b9e41799ab53fd4

    SHA1

    437f9c382d0538c0d5c5ce79c95ddf400d83fb50

    SHA256

    83da5e843707a800a7fc0c6114b0a1aa1fc2e1207fd1a5b41a8276ae14d6169a

    SHA512

    58a1a60aaab14b36e1841d07eb1f15410ef73ccf43f0e3b6665bb9939de79c97ff123b7f6c5b7f01c5a69f29f2541683ba12ecbda4a1afdbf7b8777acd1be7ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4962.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4A1F.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4A34.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit