Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

add_data/�...��.url

windows7-x64

1

add_data/�...��.url

windows10-2004-x64

1

admin/admi...xt.htm

windows7-x64

1

admin/admi...xt.htm

windows10-2004-x64

1

admin/eWe/...ate.js

windows7-x64

3

admin/eWe/...ate.js

windows10-2004-x64

3

admin/eWe/...log.js

windows7-x64

3

admin/eWe/...log.js

windows10-2004-x64

3

eWebEditorClient.dll

windows7-x64

1

eWebEditorClient.dll

windows10-2004-x64

1

admin/eWe/...or.htm

windows7-x64

1

admin/eWe/...or.htm

windows10-2004-x64

1

admin/eWe/...tor.js

windows7-x64

3

admin/eWe/...tor.js

windows10-2004-x64

3

admin/eWe/js/lang.js

windows7-x64

3

admin/eWe/js/lang.js

windows10-2004-x64

3

admin/eWe/js/main.js

windows7-x64

3

admin/eWe/js/main.js

windows10-2004-x64

3

admin/eWe/js/menu.js

windows7-x64

3

admin/eWe/js/menu.js

windows10-2004-x64

3

admin/eWe/js/show.js

windows7-x64

3

admin/eWe/js/show.js

windows10-2004-x64

3

admin/eWe/js/table.js

windows7-x64

3

admin/eWe/js/table.js

windows10-2004-x64

3

admin/eWe/.../en.js

windows7-x64

3

admin/eWe/.../en.js

windows10-2004-x64

3

admin/eWe/...-cn.js

windows7-x64

3

admin/eWe/...-cn.js

windows10-2004-x64

3

admin/eWe/...-tw.js

windows7-x64

3

admin/eWe/...-tw.js

windows10-2004-x64

3

admin/eWe/popup.htm

windows7-x64

1

admin/eWe/popup.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    136s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    10/07/2024, 17:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    admin/eWe/popup.htm

  • Size

    1KB

  • MD5

    cee7f2d412f68f02b43fdc60894e1800

  • SHA1

    e85b6f74d65763374d4ffc70ca0de14252720ccf

  • SHA256

    659f6a3808ef0a3eef46c6a7456693ab430675f900e49766e7d6bf02fbaa3cc8

  • SHA512

    237d8cd86fcad873836248a3ffe5ea3f8bca2378ca7bc70e8294d65cfd1ad6743398fba975c88c7cd0be8fe1101addcc03114b43bd7e9dcc2f7479ffc2c65b2f

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\admin\eWe\popup.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2152
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2152 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2268

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0390850047d900a6cb701705cc4472a5

    SHA1

    fcb9d305651579bfd1208f200a2edd701c99c98e

    SHA256

    7fa65a6f6b4ec2590f50742b2134d69c56ea70ec2940c7ee160b519701f468a5

    SHA512

    a6f4395e02763d9c9624c9199f047c1ac6f929620a5c69a5c29a4171b809e016e46c6db0213a1881265971f426a65a51ef7209d048bbb7a95cd4b9651de32a5f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f84de0cd7cb5d31930a6ef8d4f59a348

    SHA1

    73218d5fc5a5cdeb7a9674fbe3af09e9b4c7540e

    SHA256

    81e21bd40689968cf52a796fd8dbfc93b87606c80813e002e92649c2b5715b46

    SHA512

    b1cbe4ea940f726bd2b80a93e7c5d0d63d9357874afb075ac7992faedb24643ffdd7ea8872da21ac4d3d967bfa30c6ea6364859fbeb4b36284c7f76fb58af5ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    22c4e4e0055b6253d63066eefb10245a

    SHA1

    7ab063a355c9fd7a94298646e8c9fbd44367b38e

    SHA256

    a04e474f3a99352202e6af2b235f614351e0279f10c752ead385a7c5667d3ce3

    SHA512

    44acddb7004b93397fe3ff5dfb7a26857b3ee7ea2886a79471fa5f3a3b6b7c99131d845713ab95392141058b76099e259115379a2857ac5b1dd0a7dfe1c0a71b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3ec75c8a06e0e32861234b9735bdefa7

    SHA1

    431e712b8ea7ba00b55c3d6f8a2828c898f6f210

    SHA256

    33adebfc853b6a1304a2739ae30e34d6eaea18a548dfe57846dc0cb804d88ecf

    SHA512

    8a5b58e3026540443632c3d046c86704bece6578f95d34961074694dde87e6643b74f0582188afc5564a5850e92203e23292727565f073f0ade2f32a979b6d1e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    de85e823a7832f38ff035f91c36317b7

    SHA1

    8aec7e4c2985216ada55d5b148991e9f017d579f

    SHA256

    93b14231be5ede27464c47d62ddd90f9badccf34c57360c90ef31443edfb81d4

    SHA512

    9219424ad7410d45d77e1412621763eede7e05d809baa7370e35da5f4bc3c5d9cb1b0d9c8d8319af4ddc8c2cd4a53115018d8b7595ff9fc08d8faccb78203e11

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d675409d262b9c5a62f46d27ea5b10ba

    SHA1

    2ce684d408b0528b28fcea36927d068425912370

    SHA256

    6dd66f5bdb1c9526270d8ad39641d0a92946e157e85cec347f00d5da8813d76c

    SHA512

    fcf7f61c3721e3dc64e0d5e6a97cc4ccd522a8cf39feca65f3e0abd4fa75fefea0557c7b64e180f502b5472334c899be3b9ed19c9e8e67f1cfe4cf85604cd955

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4a5f3ed41f975cec61d0ab952b5f8aba

    SHA1

    07e771b5cdcaa9e072f537d922785ee42535d58e

    SHA256

    7194e02c1788ae2311c33df019dcf21860d616ca4fde967db2ef8aa842e77c90

    SHA512

    9b9959b798d3a599a4668fb715fd96f7b8b22ff7ac593f05b9f68a69585fd6c0e406ec8d528709ba04fb57071f9272ae4b010ea82465c6d8e1002811523c3d69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b0af4390065cc39fe6b6344762950d11

    SHA1

    49d97da0ce2020e1394f96f7fed3076562dc7cc3

    SHA256

    4de5b273281112a3f7e807248bd642807af9676398867f5304146be911c0bbf6

    SHA512

    5a43c804abc515103c6bd95a985212577e1dece123deaaa9f33c83be6df940f30ba9e83718c332da677adb0f3683c69ee2198deb9d4b8b2762732634416cacfc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dc0af46110327830fe716e43ee802666

    SHA1

    e15aa220de55eba56510c78a04738292da4fe8d6

    SHA256

    ccc071488b4bcdbd8d12f7f69ed884108c72aa412fc1b5eff13dce9cb42329ba

    SHA512

    6a287caced23d18d186f50384f1b67470321b81a8e37d736ef083f43f8ec7cb739a67bea197cc31872514eaa79cef0be54ec2d6011717cbdd50ea2dfae0c4b51

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0fc4ae2bf15fac028cc9bfa4e2f8de93

    SHA1

    f6b38e1448d8ab1e76219ee2b079b3d4dcf0abcc

    SHA256

    b5db10dcc3a13ffb119098d03c994595e309aec713b481d6f5ae7f332272052a

    SHA512

    69d372df30265c0731afab6cc6aa980449c52b0e472aad3d142d39b201d76e7c4f3e5c80e53d2f72e5f632772ee0f6823e75e3ee1e9b76d82d4cf51a2f1c6f25

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    487fc924c8ec2a7c87a3e497f3ac0130

    SHA1

    a817e93cfe055b3b5238c81e68e5d1d1e4faea37

    SHA256

    807e1a1652e414f9681e3b85f81bca5bed7e3b9d38d37fd3adb6ffca366ba566

    SHA512

    1d53904d2b1dc8e18c96c7f9130f2eeeefd084d09c59d3ea9619dee760b33aeb8e24236f4470f3908d98265650ff9a4e2cdb68855693379254a18fd9d970df0c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f9aa6af05e93f4afd12d878abe2d766

    SHA1

    432decf07295c205e0981f9920f95354652f5ceb

    SHA256

    ca545b44a59e0cf25fde670bf52daea9140cdeec87c03fdd5604225d29ab19e8

    SHA512

    6ae9b57e1c9c713d3df7c9f6aab9054c9c00cefa9d9e4579190bd26c932e03c9d5ecd66eb342cc2de4cbaf574743dcc45445ad9e583821c46a6c35c801511573

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9e4be7cf944f3c5c9202483130b5ac45

    SHA1

    1655cd2399b05248d1a4a8e0e3d9fb8b2e7f6a09

    SHA256

    2650f4342694d95c8d4d8b93894d594bd7212fad902e32650969eb659e1f9aa0

    SHA512

    5afab96e154933ec5ca4c3c5b7f039c1fb16a47ad01f1945ffc9142cfd9c84de1e9a5399dccfede714d5cf8f749ecce128e5d1dd13b512ec1bd6f05cb4b31030

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9f900d167837f87887a3c709b40bf74e

    SHA1

    fa4b37a61b16c7e2f860c0328d251d6840463d75

    SHA256

    5446799335b9044f5e5614cb9dd75dd076f62a63251021d07bee8a6edd8ebb99

    SHA512

    5a7c64b630835603138363c5a4a10cd8b8785c4615e541c843cdf78db8c33dbf87ec11628a9a40a16bc671c3ef60a7c619130b1aa768e26afaa1a1c38cb0d118

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d5a653f06616162df74a9b3b3a6cd71

    SHA1

    eda511562d9a46c7545342d9c948bc25dec5d89b

    SHA256

    97a39c26b7426e022541c3c027e7029e823353e0f6996349a3a51b751c738ae0

    SHA512

    5aecdc9386f4f1a8a125a92a458d7d65492f960a5d4da6a5118bf6cb8a88e572da945550ab07545b21934b15123690b9af7d4c4bc645f712c9b66b8269020931

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    94ac851aaedbfd9810fda78f256a3de2

    SHA1

    d88ba031c816360f2902d6a1343566b86583950d

    SHA256

    38455dd1ef4c120e0709f058957117f59f084c6b5a39dcc1f9f413c4e61c6ae3

    SHA512

    3b964d866d19525014b33e4da421cd2250eb818455aafd4b3fd0d75c1b3a15e2165c7f7a0a3db0a76898017f75156b62596f3d6ec1cf75c49b46b3f7c1ac8fa7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f4624d65d607f5ab2e4932a935acdfb3

    SHA1

    2afc7f286178c49c2bc6c16555941ecaedfdac56

    SHA256

    e58b7c77c3ee76df4d06c598a3cb4f36912d5c7879a62bb9863c18df36485314

    SHA512

    d5d7bbf51af8bf880d5f4b72ed58d1d2b454b84ea054a738594fe8b5e635cf09e1a704af29529b45b6380918b00b63f4273340ff90e4e58c1e08fc9c6b5f2fdf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76ad4e8ca5b7b7ee610f470a671db590

    SHA1

    15dcdffddf98849aaa5ece26248ccfaa69de62a2

    SHA256

    f049c0ef90cc3302b1532fd5cbbbd6fd34eec8f0b0c4ba60696f2c2aa08c6f19

    SHA512

    bc29b31bd51227379f0ab0b05703d90494cc43b4b8d90cf7dde4974f426f5485314dc7ddac50c6a71054c31cdb64fe2ab1ea44944e8c44bf9d55b29401309098

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5ea338a6a303739e82c34ebb43da286b

    SHA1

    fd264fd6956803355b9f05cdc6c7ed3807db67f8

    SHA256

    0ad094010eeff7c42ec74bb3a74f923198c1f92a838e8012eada472018c3c538

    SHA512

    72b740e9df64fcfe04569c0566280232e025ab79329caa193d0f96b9361a4ceddeb0f67288695c25c8b2e9a241f28ae8c717ec13efeda95d1c183215d386eb7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e8b50662e39c3dd9c05cb2cb3814348

    SHA1

    583f5de1a28f01916d42e61b5b882c7695210e41

    SHA256

    2d9774eaadf6d8a8b17851e8f721f0ff84fba4f3c6d7bc03b78695f884a509ba

    SHA512

    8226092f5d3648ce2d9f8f25782fb9fb4fe68d6fa90dfa02913798279f2e9746969e0f89fdbfa72c8a1ea5bf37eff243e41e01b01fd213c5757ada09c163faf2

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4481.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4531.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit