Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

WebFTP_v1....do.ps1

windows7-x64

3

WebFTP_v1....do.ps1

windows10-2004-x64

3

WebFTP_v1....ss.ps1

windows7-x64

3

WebFTP_v1....ss.ps1

windows10-2004-x64

3

WebFTP_v1....ass.js

windows7-x64

3

WebFTP_v1....ass.js

windows10-2004-x64

3

WebFTP_v1....on.ps1

windows7-x64

3

WebFTP_v1....on.ps1

windows10-2004-x64

3

WebFTP_v1....dex.js

windows7-x64

3

WebFTP_v1....dex.js

windows10-2004-x64

3

WebFTP_v1....min.js

windows7-x64

3

WebFTP_v1....min.js

windows10-2004-x64

3

WebFTP_v1....kie.js

windows7-x64

3

WebFTP_v1....kie.js

windows10-2004-x64

3

WebFTP_v1.....fm.js

windows7-x64

3

WebFTP_v1.....fm.js

windows10-2004-x64

3

WebFTP_v1....1.4.js

windows7-x64

3

WebFTP_v1....1.4.js

windows10-2004-x64

3

WebFTP_v1....s.html

windows7-x64

1

WebFTP_v1....s.html

windows10-2004-x64

1

WebFTP_v1....ess.js

windows7-x64

3

WebFTP_v1....ess.js

windows10-2004-x64

3

WebFTP_v1....cko.js

windows7-x64

3

WebFTP_v1....cko.js

windows10-2004-x64

3

WebFTP_v1....sie.js

windows7-x64

3

WebFTP_v1....sie.js

windows10-2004-x64

3

WebFTP_v1....era.js

windows7-x64

3

WebFTP_v1....era.js

windows10-2004-x64

3

WebFTP_v1....x.html

windows7-x64

1

WebFTP_v1....x.html

windows10-2004-x64

1

WebFTP_v1....asp.js

windows7-x64

3

WebFTP_v1....asp.js

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/06/2024, 12:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    WebFTP_v1.2/WebFTP/jQuery/plugins/codepress/codepress.html

  • Size

    1KB

  • MD5

    13db6129d42f5758c73ba5c7489003b9

  • SHA1

    2f5bdba29a32623eb83353128844a0232e51176d

  • SHA256

    a055d32ec3233f6bed47727931160ccd8d9bb9f84f47cc0ebf7a7b47831a11f7

  • SHA512

    78e8a27362ea3dae7ffa06e83a0a7701551ed953864bec4bda944d4ec551adb00957fcb8e2550472fa82db3aff03e743e756894c2bc97526a31c604c9114cf46

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\WebFTP_v1.2\WebFTP\jQuery\plugins\codepress\codepress.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2212
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2212 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2492

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c52144e2d7af49cc1eb1f04e954f24d8

    SHA1

    129e24584e1eada29c5266c5ba98fbf364c33210

    SHA256

    d3adeacf42b2a0ea1fe47496f9ea72958960b943b1643a36e924433a804c7a9f

    SHA512

    1bb4a0f47c7ca054042cc5ffe8ad322d089c8e3543e370eb0fc930618d83cddddcd1ae90f173acc6fa82f04835301d1abe3e6e5efd6cc6b76eb2290dd3201a81

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1162e1e63a117a1cd0561020a86ee136

    SHA1

    f6172114cc0a2605db9c8db7c1b914f06a48320e

    SHA256

    5f6f42e88515738fc909fdf4d656c3ed43b0dc0d547d9f7b47ec112096cdf396

    SHA512

    b41b494cbf24f35b0ad456581fae2cba4f245237fe6296e121a1e30df1bf13105abccd04717e7a0f39364497f79289c4802805e936039dcd1da07f8ba0c29847

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6f2dc4e5c0c09e037f90eb44652c86f6

    SHA1

    4c81fd249dc04f7dd17a79d39106d5577829077e

    SHA256

    14c07ca2a8a53523ac18a5a04281605bb8125862c61b038deb1df6a6c85096eb

    SHA512

    ab9aa0ef99f83f63000c43394c77bfc2980a6138cdc53649b4fd3d5d7791e7ef631cc7363518411cef5633b0c500e390ce5af1d0c00a337d8ad6da15e5551f0e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f774567249339d98593fa9fe1ac860b2

    SHA1

    e54be436e15596e6711263c32eb559e74ccb9df0

    SHA256

    43a04c4674c091eb26aa5d50a5e488776ce74f14bc8dd0be5c2ee3adf638f588

    SHA512

    71529df59fc339485ad69730e9ac6936f58e85e93bc31229b723f80ce0caea65eaaabd348d29d1ad01f0768303de17d029a29458cf27c30bab5256051cdd9444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fdbea17a6d4da686830c191d4dfe4b89

    SHA1

    6e8ff2e49f2da263fc4b2b199f97c9dce306d6a3

    SHA256

    645d2a9cb1a2063bec20a8fb61c605f25e24256adea1389eb81ae84d57b23ad7

    SHA512

    c7ed0099019830c354794f7ee2c7abd7b1349a3240caa29a6a5ead54409410ab3bd406d089ac5b0caff6f6cf49665eb08bab1eb247f923cbef209fa1b534e272

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f34ed326c146a976671dd254927eb921

    SHA1

    ccbc0d9f6ba30cfe5a1bc577f5e320fef254e60b

    SHA256

    895b3d9907da4e68dacbd3c9e5e03f47ceecf207b03e392ad099ac6c1677a79d

    SHA512

    16d90aabb9bae9de62e436dfd3a7df8c14dd2726f0d960f91ba4fd711a5baa830c341bbf01933cd3dc537dc72b3cacf0fc939d8ddce06231f2e3af51045f0817

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cadda12218e7b5a699e95c72f3773731

    SHA1

    d5fb5fda872ddc8cb6faa107303cfa84936b1dd7

    SHA256

    31904c49bbdb132e4f8fa52b285127201492ac7f61dc94431058dbbc03c2d46c

    SHA512

    dbe2f06af6e462d8ae4c2a753d936869c06692f0d98cb8102cc3e11adf34bb18e3be3c5fd7d0ec4b84c6630b1222f1e311f7a23db413ba293b8b56aba6ac02fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    909ee8fccd25df3b7584277fab23a0c2

    SHA1

    f72b46468c9e9c269102e29ddcdcb697d4c1d14b

    SHA256

    9780ba99c150acfd9a73910494a0a5cee102aa3ba2236e2dabce6056e10f4c44

    SHA512

    0390936c8e84068fcaeeb20d2a8d4bc84baec17382be1861d978be34e6d0fc9d193e34aec33380f91eb6ea34d4d17181d8000a6d190a92049185505b44f45c6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    41fa3e011697de1233192ecf1a6178e7

    SHA1

    834a535c903a4dca816c92a88617f8081b897652

    SHA256

    359ea5a16de0b8f9d8b5424f2103b6d59396300fcff025a900046281d2f17435

    SHA512

    b02a3d0757df015a3d8d0928758a81d652032319149c12b13d783284bf4f344652412356b96eb73b1991843514fdc306ddb6cc26c6c8c94d3b31f86e12ae7247

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    95611fb4c7b4b4bbafc4de0985ef8b05

    SHA1

    cd255a03be982169bcc7a62afeb3a96b739b5939

    SHA256

    c26380a80f094857f62840ccacb2834bcffd8ed898e23733fa97451bf0e276c8

    SHA512

    ce64657ff60a44f62e725f1b28d28c4b1d9e9102566616b058fce648fd5912ae2c3bfc9f2d0e3f36f2b04c57ceee7677ed49cdfc47f44fcae35645063bdd9efa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ba20fdc47c95ca5836cf85be848415f

    SHA1

    a9a3ed4fc55c5c7ddec18cc1a5b98f76459202fb

    SHA256

    6fabf5576761753f34681570158669027c3a4b8b5e300cc11be1654e322e6321

    SHA512

    316540103f17bb083d41e97401c7ac23540e8d9dedbf4d0b3311a75fc5a9d1b6b2bd53632044dc0e508f5f23673760280eb63af9e864369a65b0f52722faf3e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a8bcc85051215b77bb9feb07141da812

    SHA1

    a488a8bf8ad49d0df3f41d4e1faeb130fc86907e

    SHA256

    797f0e037b292bc7ec36b7b8f7f9140ac381754021b26f8870f5bc46093521d2

    SHA512

    132cd91d3c3475460548aaf50e02c8e3d76d26363b2d6476770eb18c746e187e9a53ba79282bf8d17457ed342dac475346da70662d475ea2322a5f0317bccfac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be3e7558fe80a8ab9b79abbd4c5b9298

    SHA1

    ea2d3b38e9c9113c0c75bffd07f217702945934a

    SHA256

    37a3010be9cdbe66f639b5e489a5028651d82794e9834a9b5e58cc40df7b4012

    SHA512

    ab0cade4ccea0968674dc83d7b9652c740f622bb8d673c74708c92cfeefe1d22cab6a30cba4b13a5b30340d6c09a8f3a62c1d6fc412e55b0123ae9457d69fad1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8cf258bd9d85e508e55ec7bdc50aa67d

    SHA1

    857d7d9c7ed86230d28b041c000a696d4182796b

    SHA256

    9180f987d58daa7d8d7d3eee9b856c9ab5bb4a9322be0d6a38a0c986b9aa5dde

    SHA512

    fe0baa2adc8591586d93e7f8f9d64c82de19298e65b4100b9878bfdfe69c48d0bafeced5c05ef8f99a335f66cf34f51670fd2367199efff6ba7aaf1e721923e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c38c96dd79afd04631efa81bff9246bc

    SHA1

    99b1967ae4e81197b433c3531e25d2c06564b516

    SHA256

    ab31627991a5ec0d72e2e37acabbf659cad4328e2925f12890ac21811682bddf

    SHA512

    880bb9cc50090b2378f4d0caf83272a0323ed811f8c3e9a5dfd44ef04d3ad553f6fa2b456a8ebcb32c117920c215ab5e343023cfd655f244eacfe6dc6fe2d6d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8fc53470348e068a39e3943185d469ae

    SHA1

    e00d29f4624dd169a3ac8662363e5d569c37acc8

    SHA256

    dd5068c068ceac7b7993fb99061d0d2ad66b17f01ac37666e613f89596cde2e2

    SHA512

    26593a6f754b9d6384fc0c5804dcb1f423031371bf2abfff0710563cb0f0c2bfdee7d6f04a7689e35fc6d895698928415ba3ef645b911e7da0958fcd13e2edde

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0a1f36c96dff0622c9773635c8bc2e9b

    SHA1

    74b4d692438b354a02fe57867ba8288362f4493f

    SHA256

    4df01a1a7eb9a19aa50be528a1413339c3fcfb97f216a353fd218f0d3ac7c7e8

    SHA512

    b63fcc6fcbedbcbf34fbe1a25f500750cd86f55e989064dead612a2f9a42ea47b374eb7a815b0e329b971fbc5f27cca2b25e63d681a519230717691b32541624

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6b1309be1974f204b2f5f06750538163

    SHA1

    5c14eb285f7479772757aec3cad81384350248f9

    SHA256

    df5f6f9c1285e06a4663bb8a4d94867b1c51859f0d3876824da7dcebf6b33477

    SHA512

    278806532c4fa8099c41ac4787c3cfb6720b4229f9bbbb720f5ee141fcdb011c60d65f68af5b1f7c772f61935dafd99e68d92947ed5d31a813c841d418208d9f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e9d257fb71aab734d7be07a83a964ce1

    SHA1

    b6f7a5a6e4fc49b646d6dbe7d51043efc8282924

    SHA256

    2d8cc81d0ad8027ed06faf18f12ed7c127678c5d0791fc0a8d8a77358e5b2cb3

    SHA512

    e69ea6d97a9711f32f6f5d157dd08099f2b7da96b4f4d2544bad6f0d804d06c8dbe0eba527578a9b6f0957c830df827aad6716490bb832682443db76e58d1cb0

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2FD8.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar30AC.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit