Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

Wireshark-...64.exe

windows7-x64

4

Wireshark-...64.exe

windows10-2004-x64

9

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

dumpcap.exe

windows7-x64

1

dumpcap.exe

windows10-2004-x64

1

dumpcap.html

windows7-x64

1

dumpcap.html

windows10-2004-x64

1

extcap.html

windows7-x64

1

extcap.html

windows10-2004-x64

1

generic/qt...in.dll

windows7-x64

1

generic/qt...in.dll

windows10-2004-x64

1

glib-2.0-0.dll

windows7-x64

1

glib-2.0-0.dll

windows10-2004-x64

1

gmodule-2.0-0.dll

windows7-x64

1

gmodule-2.0-0.dll

windows10-2004-x64

1

gthread-2.0-0.dll

windows7-x64

1

gthread-2.0-0.dll

windows10-2004-x64

1

iconengine...on.dll

windows7-x64

1

iconengine...on.dll

windows10-2004-x64

1

iconv-2.dll

windows7-x64

1

iconv-2.dll

windows10-2004-x64

1

imageformats/qgif.dll

windows7-x64

1

imageformats/qgif.dll

windows10-2004-x64

1

imageformats/qico.dll

windows7-x64

1

imageformats/qico.dll

windows10-2004-x64

1

imageforma...eg.dll

windows7-x64

1

imageforma...eg.dll

windows10-2004-x64

1

imageformats/qsvg.dll

windows7-x64

1

imageformats/qsvg.dll

windows10-2004-x64

1

intl-8.dll

windows7-x64

1

intl-8.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    24/05/2024, 09:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    extcap.html

  • Size

    8KB

  • MD5

    f738cde79e96769d2b88f294550235e6

  • SHA1

    bf45e4f7efdb779d874ce93c7f22044109186f0a

  • SHA256

    6b01f9040e156292ccc5f1466618b24678f076473e0b7be65450711a266d637b

  • SHA512

    b27fbe3f6659590ba05a43fadbdcf3a5022d1f47de36d5b628b219682487b0c03c43a681df00319f442a28e9ab861405886b4d662433005142ac7c5b9e04c7ef

  • SSDEEP

    192:ZK1pwWZzPlmkFsOndHLk3AHDA2OkghZAp:Zqp5Zjlmmr5kc3p

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\extcap.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1712
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1712 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2964

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    d214b1440c6974d048b931a880cd9835

    SHA1

    fed37b9d5939b9d072eb81ec7851f0e05c255788

    SHA256

    ab81fc2a6077bdcf33ad78477eda2ff11005a3c13e1375b0504ff56d3bda09bf

    SHA512

    dd5becb30e11b8baacbb607c74b81b0ced908293355a60b29e68b4ec30cde89b1f78ca1835e827fedd94c77099b773616507febb69219ab004773f153e4a9d3e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    29e41dd700d426bd8c5885d0e729e23b

    SHA1

    8e9e9f615ec70f721fe467413524535d93f6f8ea

    SHA256

    149b58170dcbacbaa3c3850257998c229bce4778ed8a3e47f23f8589bcf74bf2

    SHA512

    4dba85afdf3bd228cefc9fe6174528d62fabd4432114f86cce98563698905da6875c1e4a551c5fa5ce72518c04ce3e8177efa5121e7712fd9bc321ed9254f516

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    8d9f249e64fdf988ccf04653ac6a7117

    SHA1

    91d42b770fa7364a7845c6efcb13a4887e7e8985

    SHA256

    30ee208c093afaf8613ca73c4d3237a957ab69cfded4066ddb8fd758f88fd68f

    SHA512

    a95a227caee1d21f282321807058218868b5a92dc740038fa531c5b231d2907b2d65897d9eac29b2cf3a6d3dbeed692da2cf85dcc3fd2d2c5d6c20c80d822d10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    9623a6cc182a6f55c4f3b073eed2d6cc

    SHA1

    a78348bd08af51557ff9830ba7a850431eda65e8

    SHA256

    d1fdd76bd4e0587fc15b620ef5b2442bfa69c77fdbf831dad3ca43cbb756d2ba

    SHA512

    d3d46b314ae0444fb9ffe40988b5faeccd2f5f3d49cefa9ed2dba98352a966da05363be49b38d42d937af044fe0adc7036cd1259ca7fd7c769658bc6606c6a6f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    8b43d7f6c2f6a0beb0458ec41ba15c0b

    SHA1

    32a172b3c802f1c413c932e9cf4c05305006027a

    SHA256

    16e6c3bc91c7a093aa9c3d16e5d09a6298e922f5333a05b0d2b260f47ee01044

    SHA512

    9dd753b060100a21054b81a0e1a235620debc4521fc299c5027ad168256ffaa07f2260a5fa482b96d209f1106464d0e5cc436dc7c1b5b07e3a320d2c4a6709ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    f1d1015792ae9837ff0bbe5c4e5b99a5

    SHA1

    a5123ed4f49822277290aea59dd1a688c4b1da44

    SHA256

    9fa5e8e4ab75e8ef7fc1e98fd83525ca61137ab70c5e4f85c4befc8999683785

    SHA512

    59d4d6cd99f20bf20b6afff37efc85f389b18f4a485699b7178778bd21172cbff2c6cd8b63dbeff05ab017085f87d8e29bb1397d9a05768dd0a4a52d0be66da1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    c576d044dfde8273aea2da3a3f461f43

    SHA1

    6b0f1c37fdbdc170c71217c707c311382db58ede

    SHA256

    7f02b6a612d3ecdee4b660c5f2f6fd019320857d15e04c537f70971fe31a5ff5

    SHA512

    d0b59ceea93d4fd31980a815ee73e5b8185984ee51aa98e33cc1ad5bad5d3f721f9e4a03653eaf5eda1ea879d9410bc9a118dac77ea5215df134e384cd059f53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7c9821a96f80edb8f10543773643ceb4

    SHA1

    858c20fe008ed329c231793133792809077c8774

    SHA256

    9f4338e5a0168ff8f2a231785ac40b207ed5ee25984edaa27e52e482107014db

    SHA512

    82d242dfaf05a23e0b4d2fbb6e4ead3c605c64ea41ca2edf934a8545e57da5ed981a77a98c2fd90b1824498bb34615b522bfde8cd3245e5db04bb7d4f5d50772

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    2cf6695c1cc55575ffcd3466a6e94147

    SHA1

    200a508dff1f7c1d72402394aa32171c16c11aab

    SHA256

    418b2eb3cbda2971a3db62a21c49ed64ca16f5eaead67c63dba68572d16b6064

    SHA512

    dad089d60c4dc5b4f6abde346d216f6b3678ad45ab82ddce3ab182a1b674cef2423dc9637e3b3a75d99c5ec0f94bb4cd30d23961310ec0cced5b64b098ddc0ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    205c1e50c6d00ad27eaadff4e0055b9f

    SHA1

    7c33efb84c9b4d89e9f2b3771e0059ba895fb144

    SHA256

    d4fdd813546d06509ebefa514dd81fbe1c23b8910f21d1a2eb2d6b7e6e0936d3

    SHA512

    6379da7bb5662d27d56bbcb339b2490c0d33d20097a489ce99ef91b44e8b742dacd8db00639d17077a8fff14eb2aff600a7e3a337524c48723eff390c62d15c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    07ec1ff63d0eccb7520e777761329b3b

    SHA1

    1fea0bb0a36ad3bdbd1647c56badf86c41b24551

    SHA256

    4905d124682f23e3539c5ce2c22f9105e4e82626602f8e1209f4e88cab052990

    SHA512

    c45556f93f46b8cbff630828b2dc6f76a9b653cbf127a5144017262cb938566b90f7468e82a8f958f2b6e4ccb76fab8a34cbbee05ed7deec87155d92a518449b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    5fa882c8e89f7bfc5f51a508f301c25b

    SHA1

    fb3f55594ce56007b0da03e260a9dbb390ab34eb

    SHA256

    e60c025eaa6d1a2cd6205d6c7a08c91cf7c37ed172157f7c4b83e4359612ea03

    SHA512

    9690a34e2d9bd21bdd140754b9fd01406f24ae6f630e94c6c80d556db78d25005cdd460a56f7526c828d627314159b11ef0a7536e89125ec0a7e5c140be10aa1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    9779d70796a0cdfe675d6de25ca6b998

    SHA1

    f32b95f861489753122785a16cc6b5b53bf7a306

    SHA256

    6ccb3ad31289c560243bcf0d216c70460500b86650bbf2316b1bf513478e272f

    SHA512

    b37adf4ad8c85d7d4f7f224d99d1b9cdd1a80876fac14458f5c543f1a0acbf99588c5ce9bb45401d23bb7502ff39f8b8c0a54bfb4b1e94f1720ffd9fef8f8cab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    78ac071dc6ef46e3d20bd1f17ac48f80

    SHA1

    2d2a674bc62c20e8d949dc5d9482c84182f2152a

    SHA256

    692a44a3fcd7e239cb05ea86f96f34f0c1c2f89dc47311ea6ab0c2a9d6e1fa82

    SHA512

    76fd1c87730b680e56fbcb7dbe393efc427bf5c0d0e4cf3f11e14d2fd7bdec08feeb6aa7382e76db543848b7421713d16591a0a132271812c46ee119b6031e9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7a8fe5b6c6a5b4ba1d32a5c09aeb7f31

    SHA1

    004d8ec1bdf51928cdad5cfe43b5d522dd90a60a

    SHA256

    dada2847a1199a7dad9befabe44d6b2da4dced70663849f9ad40b546219c89f1

    SHA512

    88b97f08057be00d7a0416194cf4f7827551f6d06621e7444ccac94271cddf74bb193e50c7d6639ba33cdb6b9d55143ab75bc739ad746ecf2e6e390bc0fae943

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    50ce21254b153a78817fa94dbe661332

    SHA1

    f2032f3f2d2cd96bf5f2e5a4121b665ee46bc200

    SHA256

    3e3f8713588b58ad2e6f517ac3e95a1d4a9ee982391cd458c93c854e6db0e851

    SHA512

    93dc9d928162dd2dce0bafe66d8dfabe9a785711497393c0a323310486331a0c56a30562d1f38424d00b5ae8dc508386786cf27f70081e564d384a63a6b6f63e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    003c7273c60e788b56038c0eeb65a097

    SHA1

    6709fd330b3ba9b1f9fbcca57ac5816f1f09bbe4

    SHA256

    ab47aeccf877ef8a9992af776f9c10f0bd150a365dbb9626d20a22907a3014fa

    SHA512

    f27b46e4c8e515e978f3b31fd758d2f23f0e25508d19289a4aad6f9903f9e52f9aa70f954cd1bbb1708b43293192759311b771e7d1da7fb4370c6ed8f48fa468

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    19c6e4268921c016bd962f4a2365b8ae

    SHA1

    65a4c9193011f89d1a785936ba58245e7e1c2ce7

    SHA256

    3bad1a53d68c504eba62a7702f7beaaa92fb9cf4d8148c1b7b9d79fc5974a85a

    SHA512

    d63244af93a44563bb54704fc37688d65e21b6e2ac770bb0c0cbd29fc0395108160f37821e7af9a38a7008c004d08ec365e735f59c90f0c80f9d54423e712824

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3822.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab390F.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3953.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit