Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

热血江�...��.url

windows7-x64

1

热血江�...��.url

windows10-2004-x64

1

热血江�...�.js

windows7-x64

3

热血江�...�.js

windows10-2004-x64

3

热血江�...��.htm

windows7-x64

1

热血江�...��.htm

windows10-2004-x64

1

热血江�...��.htm

windows7-x64

1

热血江�...��.htm

windows10-2004-x64

1

热血江�...��.htm

windows7-x64

1

热血江�...��.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    27/06/2024, 07:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    热血江湖全功能小精灵 V18.4/热血江湖官方对按键精灵的看法/热血江湖-警惕�.htm

  • Size

    1KB

  • MD5

    01f3bec9218a41e75dbfb1d973eb7f56

  • SHA1

    ca919312eee0f756e268db13c1760d81007f8436

  • SHA256

    ea39bd46309afd2d5dd165f1e2636e4454a61dd8cf7cc21580de565a3b0c9da7

  • SHA512

    d568079828d7754fceb6027855e01f7d4251698cab209661fa5966010ef347e35955dd34b903526dd49fd3141f2895daa2ba548ce074b546a99042066f90f9a7

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Users\Admin\AppData\Local\Temp\热血江湖全功能小精灵 V18.4\热血江湖官方对按键精灵的看法\热血江湖-警惕�.htm"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2924
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2924 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2492

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fcf27530aa1262227ba79b9621cc741c

    SHA1

    61954412eef1d3fe64f93855f685845dd820f941

    SHA256

    57e5b8f60851bccc906b089a9e446c10a64a190b3c3c04a41b2953c98deede54

    SHA512

    cc403b2a184768d7008faf10f3ae4971507a25c8b1149efd85104e4cb5e824bb01b9da9fe939c9719051b8059e7e17615e54751e7cbe4fc57c7b2f447cbcd685

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f8aa9743e4e77d253aa4ac33994c7674

    SHA1

    a407b248c0eeb5057a48cf21490850cb320dd2bd

    SHA256

    0660cf92d41e2b904f74ebb8cd9f79785b04eef245b70318b085cfd7fea7e352

    SHA512

    546353f0760ee07b61513ea55de889c5e60b3ee98feeeb838852680fda75e4326e425a6840abf09faf9f8f39a5afd93d881a1ba9c260f183b12961dca36bf56b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a78579e7f7e542a99099150a4370064f

    SHA1

    74e715663c35dfdf85c76a5951c179e805f663a2

    SHA256

    be5e123cded2583ee4aa07fd949cd254cc02e8c8a93f7751b8034cf3edd6a634

    SHA512

    f3dbcff0baa073b395e000ec7d25f04c3cf5251b3964f91451f74dde022a0aa1d3b84b22a9212f223c84abd24ab238ca5fd07f839872798d15b1412a5ce153d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    86c9d21bf7ee9c180f7d5bca8acd77d0

    SHA1

    2d871fcbab8eb35c86adb07f396c8c00ed963030

    SHA256

    fde4d9c4fecf5020b47119d5bc99a33562f0c64d918447640987da5825438fd4

    SHA512

    3bd51a5019651a9ba081db4f05c54af6f33a350c0f9198dc0c603133c0cac1449a5247f0695926d1bc25c1563fa1e2cf181d86b84cdc575eeaf81061e0cb1be1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ca0dc9dfb17170d53241fc4871b96ac5

    SHA1

    c8516a1a70e5c8cb6109890783f9e7fdf7d96437

    SHA256

    1a5798e228dd12fffbe80f1a33395d814d384c705dac4b639c213d7393901c25

    SHA512

    77d2e077c9ec2112b14298470864ad6c23f240ff77c658addc2f4acb01c30b4cfb28e95f284861f15885775b90b7f7e3a8e6ea2a611fc9144d0d532b011fc4d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    152efd810b256c17b7fad176cf3a1b90

    SHA1

    b67c5e5832a1f16893730f7b145334332d5642d3

    SHA256

    d23da88e7d87af9239ca64ba67badf3f60149510d3b899cea24bcad92762abf6

    SHA512

    72aaa1e3c5ede6a8966248fd3f48fbba0bd87cb073518db3896a975c8e6a9c2caac971f342321abc0404b5acc5bb3a866c15558e32ed2eb3431c9c810babef0a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bc0b2a87a45bc4c218834e9b542a0fdc

    SHA1

    4ea8f36c4909e975b5ec659a2a59440f3ee3bf7d

    SHA256

    76395f075d406aaf05ccfd468525cd096f1e5caab39d81f605acbfb199550d8c

    SHA512

    be250effcd3de9440832e8c7185fdd9185515d89e38d96837aa032d52c321ed4ea4a6c657cb446c23fd7c93984afa1f50198d545bab8b68c624f683aa171139e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    304fbb80909a06e5cf2f9a60db5a6809

    SHA1

    e2ca988cae988822a662c49d1d406c660289966d

    SHA256

    ffa5bdfbebf1feb8b7ed41ca6b2e0fc614a4d8b90ba130c81e108715d448c27c

    SHA512

    77182d83f2ec26604ba5a035a98af11502846ffd6730fd754feba24b223ab29a02a9e5fcd6f42bfeb6bbe6643be557fc107fbaeddaf1db2ade6ec1f4b0515bcd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d7f9289bf16b231d7af10b888f8bb00

    SHA1

    733b200afb656ef529b547093a8a8b1b534a2267

    SHA256

    f9bd9654d5ed45a99cfaf79c39a2456ff38565314e2cd38250f041446e6cd46c

    SHA512

    08e5a865fb0c3cc952a4a67f61c66c5c2743e35a8c6478eaf9909d03d0f6328f32ad976711cff6bd06ba93646612b6732bc54bd0ec75ecef57a8fc9c1dd8e6f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2cf761cdc4e751d152cd0b32a4d76c35

    SHA1

    8885e06e198b6f90be9f53c8270a65dc055a59b6

    SHA256

    323274e9411471b9b46336b4f0edc39207a30a39adc4f5cdcae3016e59b0c908

    SHA512

    bce7ee29ee080fdbca4a71226eab7b49811d11920b41a7cb011ca79546b7f680d25839b6e49c9d0d8fcfbd1207012f1fe4c04488c74be710a0a56b88f6845f41

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4b9a89166fb699ec4de106485c1d6ca6

    SHA1

    c2e8f89f0930c93ced9943e5dbca995e9056cab6

    SHA256

    ce6021b8e944fcfaafd3c9791905d4d315522ac0af4a57d55ed9e53644570738

    SHA512

    281fa79117842867f4be23723976ee4ae0dd7ddf2effc958323fc153c2a1c641a62c67fce77cc3917b80a8fb200146b2de905a619225303a221cb6f771d9fbbb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    87855e29eaa1dc91a2504bc74a0bb72a

    SHA1

    2770363ec7b3b98a4835ead17ee95aff135e7e09

    SHA256

    af34c26ddcb3acd8eba80a7077ef3e32c753d1290c07778c9c29f56c29964d5e

    SHA512

    59d1dd4c833c7601dd2f991f61f874d197bf219bcf6fba142e175558774d3b78e27c0c9a830bddba6243ca14b6f302e0ab8283d7b5fbaac3c60243eb010466ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    44ec271a8474541bcdc35814e2308742

    SHA1

    127a3bb42ae12437baf212c0c8dbac0ba7f10bb5

    SHA256

    a84afc0552cebda542542d1b0ca10c11d28a49c75f77d10dd603c58e89fbe0be

    SHA512

    144ada29de4a2b951815a7a4ff9330842fec1d9cbb978aa4d78a634efc516f2990a5f8bd06a43a99f730ddd0e19b5ae7ab4ee4646ae743f939a8d9c13be262b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eef24d5f2de93d8c7db9d9b92ae4d36f

    SHA1

    2e5fb1b6a202c53eeabe0e0645c6410fcb5b78a3

    SHA256

    ca089c337b12d9c9c916ee939cdd762990b7376913b2bc99cfb6ca16dd6c132c

    SHA512

    242b9e00aeff829f6eefc96ba3a7d5fed1a6efb04a1edd89a477e9be69f044afebbc0d458b6f911edeb84885ea8eccbeb40c1202e5f0a0c48cb1324d60def2cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    493df7b7f2d2380cf5efc9cf5d3447fb

    SHA1

    18a27e18d7b567c0656acc9dafab97011612c18c

    SHA256

    afed6e93c590b43e4ba297871de495f21876b5775bdff2782ec9c229a161ab2b

    SHA512

    535db45d886d311a5f6d4511079e70ec7a64f3c03ab71ee1f6f3d420629896655daddd1746afb5c6067e4a75ff917fdf22f1614298d525d2e938a27bb276f0ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fda56553d888eebf923950b8c21d6319

    SHA1

    0d1a7f76419fe6e3e7f5ffd840ac930d1d1dbceb

    SHA256

    e839b24b360d2621945375804245cac160faec84dc5f6a026db006fe6d791361

    SHA512

    d00981c07bfee4d643c751c8883498a8aa2a73a1eeab121d48a1dd44f6a1b8ee66efbf52a6711c2870753b1bedeaef44bdca268bd471bb46b309bb31c2041f4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a34702a20b6ea7d78da4348da74d695b

    SHA1

    67f95418454a239dc169f10484dbcee62d3deb13

    SHA256

    d0ef959421a24f8760903f4dd8f1c78789bf8755400be190e2c5c0e9bd6d3525

    SHA512

    c23fb32bcd58e62bc1ed954ba65eef57301d35d563ff8342a66c37951e5b1e98771b3b8518630f8c4ecb2e87263ee1a3c49c5a5b0014abed7f78e49fc9a00bb5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90e581f192be024f75af1821b3417590

    SHA1

    ac89c504aacde195cea4f0381b45a8dc632da804

    SHA256

    9af6c572282e171b22cff3264bb7f037925855848efcafcb7c9801bbe491aa0b

    SHA512

    aa01fb79bf431306e4e7ef7a5f3655c8d8f31f4e66014219c33b8eda89cef5e2d56a1cd2fc45f3efe844eb0e6ad4de91d2feca0e53bea77c48be4e1d69af0d1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    03de0ed6b2fec04c87619fee318ae36c

    SHA1

    30ee61cb3eec99512bc99155a8d2aa6f818d3843

    SHA256

    5853ec2907daf0a67b2795621231887c7726e9de86ab6f26ab99c5dd7e768df2

    SHA512

    e56f1c62499967de339b3bbb139633e3db910505973e87204d111bcfc8008d0267af82d36e844693ef379e535cf901f7747f493264c88c9aa0e0fda8c57b7cb6

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab145E.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1530.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit