Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

echo-Setup-1.2.2.exe

windows7-x64

7

echo-Setup-1.2.2.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

$PLUGINSDIR/app-64.7z

windows7-x64

3

$PLUGINSDIR/app-64.7z

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

d3dcompiler_47.dll

windows10-2004-x64

1

echo.exe

windows7-x64

7

echo.exe

windows10-2004-x64

7

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

resources/...dex.js

windows7-x64

3

resources/...dex.js

windows10-2004-x64

3

resources/...rse.js

windows7-x64

3

resources/...rse.js

windows10-2004-x64

3

resources/...and.js

windows7-x64

3

resources/...and.js

windows10-2004-x64

3

resources/...lts.js

windows7-x64

3

resources/...lts.js

windows10-2004-x64

3

resources/...xec.js

windows7-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    09/07/2024, 04:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    5.2MB

  • MD5

    4247afa6679602da138e41886bcf27da

  • SHA1

    3bb8c83dc9d5592119675e67595b294211ddbf6e

  • SHA256

    bf59a74b4404aa0c893ca8bbe636498629b6a3acdff4acb84de692462fd626e4

  • SHA512

    ad3103f7fd32f0ec652bc7fcb8c303796367292a366037acad8e1312775cdd92c2f36ed8c34a809251ad044508e1e7579b79847de61025baf8bda5ad578a0330

  • SSDEEP

    12288:/7etnqnVnMnBnunQ9RBvjYJEi400/Q599b769B9UOE6MwMGucMEbHDuX0YnpWQZG:sPMM5FaWStHvmUKItmfDTeHiVQZp4

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2096
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2096 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2060

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fddf207702f2b9bbb597695963589b73

    SHA1

    b84e90cf6c43e77d52136f1916d7fe43d0d8627f

    SHA256

    791509874e1064644a764c686757dc6877ba7269031e37354f0a036bf50c4ac6

    SHA512

    4c2e1b6e1ae641df82ceee9568595e099ff1e4c04e5babf2ded875c913c16f0b3ae774c55d833aa46e274ddde6f99225c21a25932e19c49be7a832b085d6dd54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    025a2f089cf1f3af3f7888e4284d7529

    SHA1

    86d021fd5ce684c2e15a4130a29099d662b1c309

    SHA256

    4955fb0903a5fca5e8063744d408bebee5b64c0fd6c89244af305a7514205032

    SHA512

    79b466778d7a9aefa90fb6e46f5c6f9bc3dba9a016da7b3efb5445f3f6894e37ee7ef41512522c0b113d062a30ed6ca504cdfd4c20b6b26923eea97f3d118bbe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    93bd9424aae820528b45efd034fde8af

    SHA1

    4ed1af42138753a6d3e258d0fb364476fd0b6656

    SHA256

    e696ad69e4516f3380345f635104664e628e4681768c965f9108efd9f174d143

    SHA512

    9c8555ccab7c246f18a9989d6ed0efffa15f4286fa92463150394fbae05d1dc3169d5edaeb0e633f661767b50170f18264529f8c5db9ab14db93d6147aa2c85c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9b8b2c229a6baf0d5fb76a6d99809f48

    SHA1

    ae667f2448103e90eaeaaf3265d2675b4dae41ab

    SHA256

    e9513eebdff31f702837340c324d52dfe4f5185d458191550df91bbd3cd16b9a

    SHA512

    d8b4a276a6d2e4295263bacc9adc09ea152cc42d452d051352922d41030c3ddc245ce2d3e7279379d152f52f900724c84394223db5d3858f657c178576dc701d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b3f1d3ecd0ccfe18fa6fca09e85f51d

    SHA1

    e618899fb1ccb984fd1f82d7e66e69800533d636

    SHA256

    dbfc66af9db0e7a0bb2be4b91fe2705739d456066002acd8334fa224842d187a

    SHA512

    ab6956e2314fb75805770014849f1487f095208db95cfb863c69e49d90fea079cf69dbe99b096c81d084d9f3196d195657e6339257a3a240a2461d8a9be3d86d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    38c53dc4e918fcdd734cedaec33d7ea2

    SHA1

    f2cfb8e576ac87d8805210089af35b706154d081

    SHA256

    452ce295b593627ad97d428861ab5310f3c957393a8e2b9d6c3658cbcd91c3ba

    SHA512

    5245ddd6cd13515cfd254d7cd81d28568af1948340fa5277e30cf314c38fff709f83c5733e03d7428198e6cf808b11532daf0f051849480037654cde4d08d52d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a4e25c9a7c9a15292dacc13cc17b98f

    SHA1

    588e351510eb0c75f398f0ab1ef13bae4e80df47

    SHA256

    792f986a3cff3b64870de87cff3cb04249a1f46f35980ff3125c7e417e6070e1

    SHA512

    c2d2b600a86c717a38cb3b340b874f9c149c3d0446bb47dce2a17bb4f7e3a4ef65411dfc6bbd2d495d3650efa76cb6781d4b1ba07b18b93ec75a748e9da3e94a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d217cab15f60ae5bbfb1f4a4090daa8

    SHA1

    5e2d3baaffdd3580628fe4f168b1b51df1bc8eb0

    SHA256

    60716ae77c9ffd4574f8663f8560093dcab56dec69580c46f8df8566002692aa

    SHA512

    d6dd60c0501924896cdf509a4ccab9b2105fa18d7285ba9367c543d98e3d3b4386599e92980c1196f819e83ab50d5db8db69cd02afa040e5b6798772b22a02ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    73ce51a2cba89a454c2fe781e162f908

    SHA1

    8d6e58de6438328d3e4696b8c65c85e5a77eda20

    SHA256

    b17d65acfc95281e63eb51589716de2469d8abe204f85284b2d0b5dea36b66aa

    SHA512

    6373fb220be8fbe450425082d5a9b7878d81cb19f59fd490be05d298f87709819a6883185c6cf081120ccf5f1741703f5a1e32ef7ee045aa6c7e4aad3586612b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e5a27831409d0b5fca4215067370d1b0

    SHA1

    cc8b40ce667431ff54a1f6d1213d4d07ead996a0

    SHA256

    40737d3a3746b054dcea492ed70f1f8f4593fce65ca19ece9a43a483eacd6f22

    SHA512

    793c3e0660d10002a807e2d8b96648afa8d648372cbf24dba018f940ea2184e30860642e5afe8370d14b97e90b0c2b5248b1fdb3c400a276065431102b547c74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4b95e5091e5d3362ec511cbb3369509e

    SHA1

    b26d63dc66461c01b3d4f6ad898d13b83e295c2a

    SHA256

    8419ba70fdd949635e77ed1716658b1874f913626e8d10225d6e5e128261b7a6

    SHA512

    72cabfd85829d404c84046340ecc649a8a845b68bdbe0a7894a428aecfc7f80fd45aeac19756151a44ffe7ced837f6b77071ba28afca933a6f292260f0d36f50

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cd6a0d39c791ea9ee1dc0e478b4f2b4e

    SHA1

    2ce7c0bb2367ca7e479f7f57b3fc3935a640f9e9

    SHA256

    4b56979d53f4276ea98715d1a363c6e434b38f7f27d775bb93e38e08a41508c6

    SHA512

    9797073ed409b31954f2c85e3aeec5a9cfae497ab03c1aac0ddae256efbad6e915b85515c9112a746b225d155a83e9438b99d86749e38ca5238c21c33a808329

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fdef864d283b18386493399d387a78c7

    SHA1

    95369372d1697dad1c7794ae7acc05ad9c29c1e8

    SHA256

    b26b2b6be29bbfda180910ebf837de8c69e13c3a399f53a0a0af5ac225fa1551

    SHA512

    a4a032f7f3bcb0fc9766ae911318965ffb8605be71fed3adaf2610c3a3bc7b6acadddd2a8e3cbada73ebf47e6737a19c41b9661d0b8d8a224ca461053b6c2f7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    572bf8b237792548705a42bc5ef17f6f

    SHA1

    3d6e5b0eb4681962231da1b10c667b08416c731e

    SHA256

    0b3342113bf685ab49f7e94428d89a23d0309d182951e41c3ba4d3804431befa

    SHA512

    7cf6bd1822054764ff8426e1567a5e6afee46ea377891bd990dcf2e78894c0c7cc76cadc5ae288289b7cb1d8451036975844473fc0efd71af2bc879f7fd3d793

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e0d546a7b1d3235d78d7dd2a4077df98

    SHA1

    b83474da8387b3ec00c938c870ab52f8c6b97ffc

    SHA256

    f877a186acfe9a721b21472cdc072ab411371da8a3d5131280941e11b794b21e

    SHA512

    86341d6520dc19996efd4070ef255da3971e3678fbdc761711f2e7f4e81554d64fbf52a6509f7ee9cf2a68b7037d90797a2ee2a6a8eafa27f6c82ed3de47e17f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8f7442747e10a99275c1d18af548536f

    SHA1

    1a5919ad2c02b559064d80a8f6c2cbfed9e65755

    SHA256

    5b3b7a20a2566b7e291017e59f67ed128896acb6f2089ba520788eb363252bf8

    SHA512

    3c140f3887e387f3683e98071476c98c503c179b9837effbc98f681406a957fcbe8bb233e7e93eeb94eb868f0571d695df038b03c8fb2ce42ebafb28159d7d1e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    865b17a4d88cd8d2270000690ea1b838

    SHA1

    2c31346e1f707103b61d5d5fa316e60cae096dfe

    SHA256

    3b5ef7edebe0705613ea466097e1e6cff629b75b0ed3ff80f5681c42b857b9b6

    SHA512

    352926f638246a54f15b97c349d8b22c3a6ef097ba801edfc89e5aacf6970a3760350143edd5c6b89654ad8a3ac9b22cf75df64a5a0089e81c2fe93a0665e96b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7f89349612a1d1b3b82a0c25cf6780d9

    SHA1

    88683461f69396a60604fa3482aefc33cf59e3c9

    SHA256

    abde34853119d5530738dc8dcc8713169dcb4716d9ef06e631a5547fa26e41bb

    SHA512

    087cba6696ec0b196e3b97e3d80b7485008d17f2ca9116950f97921470c57d035458bedcb049a7aef43b3a73186c64a75cb4fdcdcaecd0c3f2de5ca666f437b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    72529cd7ff201e4161e60a820dfa8aad

    SHA1

    4d1746344576acb6b00179959ba6aa1462ee0b3e

    SHA256

    9ab74ba8944ca25b61b65fe8745e1942ef1a9b63070f90f1fd44b35bd73feb8f

    SHA512

    5b2a7e07ef35a4341530ce1365f35be55736ff4f311c6e250d881f7b62799a778c5a5fd795ace739395abe28db95c1154cc3f7d46ca93a220544d0fd59c29768

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1345.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar13B6.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit