Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    134s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    15/05/2024, 22:11

General

  • Target

    jre/Welcome.html

  • Size

    983B

  • MD5

    3cb773cb396842a7a43ad4868a23abe5

  • SHA1

    ace737f039535c817d867281190ca12f8b4d4b75

  • SHA256

    f450aee7e8fe14512d5a4b445aa5973e202f9ed1e122a8843e4dc2d4421015f0

  • SHA512

    6058103b7446b61613071c639581f51718c12a9e7b6abd3cf3047a3093c2e54b2d9674faf9443570a3bb141f839e03067301ff35422eb9097bd08020e0dd08a4

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\jre\Welcome.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2036
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2036 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2788

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    639e6a5d305a3020040f7c784dbb91d1

    SHA1

    b763bc22aec8f62d89cad28087da623a46f85490

    SHA256

    c276beb98288e0d16f40bbeafb711f8e60cc267fc98f3c93caa3c12202c65887

    SHA512

    84372f4ca76fc23ee2444409f4a1e44b4606af3e0b64aa5d4f70f9dca6178e149d5a19a6538d799e92188f35e2a84e2c3d03a73f96e3f8c9048a69329cc4bf9d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    3802cf4f44af1c5862b54b00e4ff8688

    SHA1

    411f060782e721948a03d9bcafd9649bb69dce15

    SHA256

    5e752e81a655b3c21ed9df59806a38ef87d7889ca1027379efb37f63d98ac929

    SHA512

    0c27aa89a194b363e129cbc41f56dbbc6dd35a66a8611590bfb302805b4071f5371845f35e1e58951a24d69840362d231e7ae1a049de76573b42b2f49582184d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    141791f3a4218664dedc591e93e41a37

    SHA1

    ed5aa5a9612f78f7d94a5f75e4017fadf68e7f4f

    SHA256

    c91a4d6212bac167c2c1633569bb29dca6d0f5e4d2e3eaf5125eea350ae99c95

    SHA512

    dc4643ce4717a71b77a2128ccf0931fe4bd353ed9616a6d3b68f01531becbbcff6782d043dfc620233ac5e059076f9e9b4feda93e26da4110d3015c28435a5bb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    69cd5b9aee21c8396d1bd290e936300e

    SHA1

    9bf9e920a3fbb1b0a4faea44e6795e6f8313382b

    SHA256

    239f68c0c2f4958d66e7f6d273783312f35e8996c43714969c133faedcf4304c

    SHA512

    80771dc0cef839a2a4f0214b38d02140e4fa079d32ba8e6b33969c74efd10555be32592a0793c4dcf543bf13db6b820d184279180de776cf1659402a08efc385

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c375e9d0aaabbe88d92342b65fa677b0

    SHA1

    d8b9a5b22375ad5f4c0432cf655050ea40b24160

    SHA256

    4553bd802011e42ef164082ef3392ac0858db389c7d91685908abc74c64195db

    SHA512

    63d70e3ac125e9b416ad0ec20365f8ebba05ec70756e08812667cc4029e756133115b291710a81d9a6794b9a9b37ea9fa2f020865d4dd15c7a45f47f74ab3c37

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    18747e5f302b37f389394980ca03c08d

    SHA1

    b09ff3d6774f93fc887f932fbbb5fc2d067e0f81

    SHA256

    c78cfccfaf3841f455f1ef98e811fb851b98a16490d4558a6c19aada3a173d11

    SHA512

    b1b10b3c741f22e05f86f4839ba99841293ab9f8f5946352e691736c412fc0f56d2067f879cbc5b8b47eca76829f524d72fa8b013a0f1f59ab18433f0adf57f9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    8d4a0af763e01b8b2d53e2d6f9b3a374

    SHA1

    2ba52c40352f16f913bc9144f35a2bc2cc4ea3e1

    SHA256

    1328357492327bd008cf6a4439ea3360f3753f609fa0fc48875e750200d73dbc

    SHA512

    940c1a6cf2974808c7dd3a0b40d82f17350396576b78b67289cf73ca033dea72acb35753d44bbf08256afd52e3787e7775501b22fb5cea4976107f8d28176ce3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7a259134e9ebc57b253d80ccd14cfdb4

    SHA1

    9d8283f2e34a6c9661f0356d5b2ce83dbfb9c721

    SHA256

    10eb274b76ffb0539f258eab111f13f7634d934eb8086824caa4ad1e384c4c6a

    SHA512

    3945eacba62f38fc99634fe294201ccbc2c47338314e67829702a2c91163e77f8892c9fea1c7671ba5ab21fa062c3b2f005dd3f952f96b8f7411ef763b20952d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    83ad094661361cd61f4bc05d8567b7cf

    SHA1

    8d95d3b7d56b38aaf719814ac3ede86791feeb90

    SHA256

    9671444c6287d85b8e72101f8e5461d7a1796a76d37fba070109cbc723f45ecf

    SHA512

    de01601b352d7ae8f3e43667a43f25f3ed4fb2ee8480e2f4ef771a3067592d9d50522a2c2122ff4884587984a002f90cce93704d59b0170d79cecd07426bc146

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    070ea90edb0a78480e3a53e4e992005f

    SHA1

    e96a1c372c9833e02beea2e88469f49df384907c

    SHA256

    33658fa537e8fc525221a126267187a2e0d0f17e66a0d202d1bd31ff07961ef7

    SHA512

    f70249f60523b5e24260962d9d77fbb95fdd4d5661e448d5dbe6f840a346f51e2390b28d5a8ed0df170542ef548d7a862626a1b1b983766a54a678cc1cc8882c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2e289c6c7d363b40e22739bce3f752c5

    SHA1

    59bf58eb0d8e922ebd6b25a09b396c19a96adf33

    SHA256

    8e27ca445f235bdc7c532ef6259fa86e7cbf4291d2a69d19f27c7c23c7ce01f6

    SHA512

    a5397dc5fd3a781f6f48f5ba652104e5ce9dc8c816e71c7093cb72df484f97b4ad39785c0064aacc0250e56a93918b1d23b4f0c3c4b096fc464186c33660f99b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    506f165d90a0f54d2ef3102913df0592

    SHA1

    26e8c2d932326e0a3dcc16f22e72153bdf5dbc05

    SHA256

    ad4528f86b694168f02b7505dfddd0d4ef72c4895a7e51e35cc8d8dd718cf1de

    SHA512

    bf76fa90f4dbdd310bf8fce743fd8fce182a071c0a2d0e0a73ef0566be5ac05736c79d5de6a91e56a252cfa95c6d86567bb86e063d5b2adb2f48f4b4c9e07b7d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9686a5859ea97286b99e5ef253344c47

    SHA1

    03adf7dfebb60795e58c48df54a897f593510358

    SHA256

    ab7904c0c89e1ce4e838fa718e772b9a1011e5b6bbbe8b30f50770b5176f38e5

    SHA512

    a8a8ddb100f5e8a84f80eb7027982baab2e4e1bcb862e27e67667638db98f798615f03130a60b5fc6eb253872431fe032debe1db959e1f9ffb8596cfda4a260c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9465c29631cdeb180f25cfed1fc2fdae

    SHA1

    644042ee3c84316f59a39af3ab94878a21f84c73

    SHA256

    09fbcd4abf31771fca661c659c409e359c9eb8671c9570545d1de2a9e3adcf82

    SHA512

    19f5e6f1d3b12ede0825be0e9bcf6e64083cd8d693add78dc99e56c865b3bd67d916cde6fd37c9bfbf4e23ccd36cfa35b0bb7c43d36a512fdc40011632e27793

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    426a7094abf9ed98b15ac541de999dac

    SHA1

    f8029008aca00f3812ee02bb906bb052e07bb15a

    SHA256

    cf32dd9e33428d9096c5428ae7382fbc893f7a8b08931b14c377b5fe1eaa94a5

    SHA512

    6f069e66aefc2cfb5045e5ca1e42c927b9856a6e87306299eae2bef83f056104dfc0f50a856a286222ff60d2a10a5355d0d2b61cbc21c749c02eeca29ff62eeb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e1b366fc929597dbf45be963c2b41838

    SHA1

    cd80517be76ee5ec13c902cfaef30b029b56e855

    SHA256

    0a6905eb5ee7ebb660efdded38c3c7a547765e9e3cd64abe6563ce4d2f04f990

    SHA512

    b0ae38e3d47fb2b157d483b8bf1d8852d84939b1b58b96b551d9b24ff50d9b738054324b66db587e9ee5beced3966a80f5d63be625d56b4182d161b491d793ce

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    494b7bb2d29852c44927fda3b78318ed

    SHA1

    79bd52fa7768911f476df26ced807c4460bf6288

    SHA256

    bce3dd96181c8b4b6602b09b0ab1b98d0244641c7eead7d82a4bc5f432abec16

    SHA512

    94d13e64a0e618bf5f918203839e77bf09d5c2ef73e7c451d4e5bc7b26dcef96eb49027b0041c19ee4eaef197e3ea521ad27c3d4c9c92cf67f8a7dd9360ecbaf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    cdfa6aaceb75a2d3474e06dfe24f91fc

    SHA1

    8838933a18af6b44b2200e0b7bcdab68597db1a9

    SHA256

    a52f00caeaeae91ffac0bc28e953f5b6177665628a695e227a8becf4cae857c4

    SHA512

    69333e663947c641327f2f361eba33a58af501022d5d26226473f1e2cf8136ca6152fc6c5f05f25113d445ca1f2084cfa732832f90bb492c8706651852312d80

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    67d227617fdff7cfb1afaabcc5c9aeb5

    SHA1

    07b9434a2d2c79cbe8b5268770cb5c99298671ae

    SHA256

    a3debe58401ac7802f5d384dff6254a09bb5ec0f2a66c73670d5c33b76eb6fad

    SHA512

    10aeec88b838de0b10508dbca6a1dd6431a48d9398d8e2546c8778b49efe9b63a275930edbb09769bf8f927d8d089fca2e4249c448891c13cddd1c1ae4e714f6

  • C:\Users\Admin\AppData\Local\Temp\Cab454D.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar45AE.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a