Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

4103f3ac4d...18.exe

windows7-x64

7

4103f3ac4d...18.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

3

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...dl.dll

windows7-x64

3

$PLUGINSDI...dl.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$WINDIR/Sy...er.dll

windows7-x64

1

$WINDIR/Sy...er.dll

windows10-2004-x64

1

Cleaner.exe

windows7-x64

1

Cleaner.exe

windows10-2004-x64

1

Firewall.exe

windows7-x64

1

Firewall.exe

windows10-2004-x64

1

Resources/...op.htm

windows7-x64

1

Resources/...op.htm

windows10-2004-x64

1

Resources/...ty.htm

windows7-x64

1

Resources/...ty.htm

windows10-2004-x64

1

Sweeper.exe

windows7-x64

3

Sweeper.exe

windows10-2004-x64

3

Uninstaller.exe

windows7-x64

1

Uninstaller.exe

windows10-2004-x64

1

firewall.sys

windows7-x64

1

firewall.sys

windows10-2004-x64

1

foxiecoreu.dll

windows7-x64

6

foxiecoreu.dll

windows10-2004-x64

6

foxietoolbaru.dll

windows7-x64

6

foxietoolbaru.dll

windows10-2004-x64

6

uninst.exe

windows7-x64

7

uninst.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    13/07/2024, 08:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Resources/HTML/Desktop.htm

  • Size

    138B

  • MD5

    a7a47c0a0dce2bec43dae167a5a3798e

  • SHA1

    31e749363319f8a09267a45e109e7b11f7788b46

  • SHA256

    42f8b8de52e44c4f1fa86a833c71c88bb6310f8f82a45c3055cb1016e50b243c

  • SHA512

    b312f1453e36294c42ac59076d83601cb26750d58fdc528cdf0299cc0d80bf7d82b1392deffee3b6f56a1112581c76860deab5d1044cceba91cfb16f534ca657

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Resources\HTML\Desktop.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2704
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2704 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2800

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a198f69e9f3362b247a47b77d7658623

    SHA1

    63c598f103b0349648b176916877111390c2598c

    SHA256

    124657b4524e58c432a2058889ac6ec22c33401d1a50f0f61908ec6ffde3d472

    SHA512

    e1d58e454eba0e46eda2f37d6b7e1cee2c803886cc228abd6c8730529f5962902d7ed3edb1e5408d91e6cebe1b190cb6e286a04363e0c427d5c45ac851644f55

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1b4898b1e59de98f6576ebc5e9e93593

    SHA1

    23f93f3111d78386e049f3fc84053b2e9e17e414

    SHA256

    9be2a5971199c9e8e559a898945e9a3f341c477b2a043ea0828c7b63c56f0fd2

    SHA512

    018b3b395616fca8696b0591415db2e36c39e2658d1137e2929536bcf39e6ec70d1a8b195cc8c32b067098ad0e18327876b4d7fb21c4a15bda7e963fef0afac4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0f592c68805f7197075f7c716c8c29ab

    SHA1

    90b40fecac2648873b97c6c5f9721b40cd9a21ca

    SHA256

    407f3f5dd0c00a7e71296b7460fc55798421c964718cd5d3a728ac62851203db

    SHA512

    f115f22cafc6cd6c021f17e982f7b46707a895c8f27b25b582df446f2066993ccaedeaa2228ee0182421cc7790af69eafac40797ed01e76611a05196014a5bac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8b12da8ea8e5ef916f8466417e6bde29

    SHA1

    9efca9312744917e9ac3e7502a8fac609e5018c8

    SHA256

    7846bbd5abef705ce93625e3646c075b99c407a14e71834645773963b22416c5

    SHA512

    4ade494f78640414352ee4c404174e20ce140c47d406305c9e1d5c785b8bde48552d9c6c14f4750eb96c0081e00eb949188bac6f1cdd19db2ff4bdc0a480ce43

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a67b31455e3d2a18f3b1fd9e2fd154f5

    SHA1

    823bd9e488f86dc47a2af09d5565b664c14e8c2c

    SHA256

    8267f0c3f226f9287f0c887e9c43418bb25f41fe4e5696b0d47014bffa92d0b6

    SHA512

    51513199a6be82a97876827a79e53dbdfee9fe313e95340e6f6cb1f24b969ba68787dc1e33be98216d7c89189b172dc0f5a0e0f166f2af6f28f83ba315e7bf46

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ba1e35b7d41138d22f4236d772ed6965

    SHA1

    367f868b8197c1cfaf5af897b17ecd224f5cd335

    SHA256

    742e3107ebcc7523f09f81cd0537668dd7126b2b6115a683d575f0d54aad7714

    SHA512

    0873fd19ab7b4238ae46269672b5bbf07f80d58179bf1edc2d61df6636591d28224e4d5a165ffd279d7d9fd780ae7e7f10b1fd061bdbfee7bcf3e26187bfe28f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3e0527d7044c5735566c08d4b4a6d0d0

    SHA1

    e7c679d33b90685a1b1f8126395f0658909f1fab

    SHA256

    af70fe7221ddef98de3662c837722c376d17e1dcd6d020f8af45c9482ada0030

    SHA512

    bb583a290da3ec17bab2d756bf2c9a4b87b5561a2fcb6f473992fb92ae86fa403cd256cec70d1e227034f68e8eabaae6ed61e4fd3ec7e5faf22a9fc38d236b5e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cde140ac95d3f21e048ebab628994ba8

    SHA1

    f34b467ef99345d189aaa3bdd070e29c5a8587a5

    SHA256

    888094971822ecda6cdaafcd56b7ea5e23a3ec48071f108d340323f00174efc0

    SHA512

    56d3181e84ec313cde5cbaad14023b380acc008e354d698710ba86417cfac5da25df786b290cab95ecd8d93cd2f270f2f442dc9c20adcc6281c7c736e380767b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    21a5781915ac858b38f54467dc188d01

    SHA1

    50ffcb67e4fcdcb3f0db7a9574186a3338235fd9

    SHA256

    0dd20f7b8329d5f52f2138460dcad73fab5a3fafa56b615858e6a87899d0eae6

    SHA512

    71dedb5d01715b9523e3ba78de91292680fb949a855e4e46e4538cd1dc03bd9e6c3f6bc97cb589b11dd3e1ab9fe7c04219b4a57737e171d411d52ec708f5792b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ddd7ad403d3dbb044b34af6fa5f758b9

    SHA1

    c58526522e80ea184fd6d3b1fb9fa5d21b31ce78

    SHA256

    9841413bfad0def314ab3c17976a3f34812c52a1f0b7cfe287e3fbbbcb9e3473

    SHA512

    c4ebf289058ff35c0935b35183cae40639808de8561a002c0203b93ab73da82ebb6f915d2dc5c792ec4d2175ffaed1524a8b57dcbbeff6599d1ca4eabba25ec1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0d465973245a80129d557d71ffc8259f

    SHA1

    a863db7da2f2564f70a21be32aa3af910929e39f

    SHA256

    bd617f354ee7f389c256e3e1b8d4d97f333eb231ad84a64545f8cf9b57c2fa14

    SHA512

    98e4afb36689fc147079175f25b21bd75366ab79c6221cd92b3fbd00b492bd6d67600cd7217b55f16a2c4f42d8f13c1cf68ad025e4c44061f50aa1354491a1ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c8e5c9b28885d515a087525a59025361

    SHA1

    4082250b54fbdc590ba1231ff0fb0979b5dc23b0

    SHA256

    de3bd792870c67e24b4d066c1a8be9adb266e8394081d825cf778a9a4870945a

    SHA512

    ec29cb8905b49264f9f0ba900065578e033b66d6493fc6722378d2e7b2e0978874e737b823e66322b2ab1102401961705efdbf06d2fddb0b580ebf39b81b77d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76dfafe71a9d7b55aad9c293bc40bc96

    SHA1

    62db9dcf405d56b0b56aede4ad5f191e80b9d274

    SHA256

    bd051e12ffecdba3a03089ac2cb6e1855290031937772c6cc09fca872db706df

    SHA512

    698f03a9c545d3460a2a641c0c495a1d5449a75d914a71eb18e3c31a59b09a51f00900c09d80c90620befcd0f0bac12ab0f692e23623bf7167079d191dc8d351

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f594e5a0d64c1cd1792b78b10389af8

    SHA1

    9b9a641dc9096b77d64ea502a1adb24c102b3479

    SHA256

    f4dd4660f56577caa846ee005604f57fcc05e3aea39c2dc75cc9dc78a293f037

    SHA512

    526e27cf3115f12a5e628c7b0022fd8024e6fb39754af7953852cffa8ad7f899335fbac8f391b84413656d9add4ba3b7b4eefa85a401d9dde6207fb86512bbc6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3bdacd5895b12dbf24713a53703a07e9

    SHA1

    0a3938ecf5723cc676735408e19dcb08f1882e44

    SHA256

    05f73b594d0d927009cdffb79a2adc2b35309e76992f9a9559e6b060aa201f00

    SHA512

    393fae7a605170f4ce2c8aa969ea11b235866b3c6771d67b53785de6835153278646bbb264f49c1f8075c193f9ea6fb75e56dc1937ffffa3cba1e1812700168f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6021e41c7263f6cd83f237eadfd36c6d

    SHA1

    4c09a677d6df676a2325a6eedec928b93de10cc9

    SHA256

    6eeaacf1cae53cc8e58cf7d245c8035ffcb799dce89c70347605e5799be7e32d

    SHA512

    235ea430b1f51a6dddbc2b715393602f6a33f8d99cd8f637eb25bf99204648c7bd21057b142745577352b5d4ae77101dbb469b59acf1c3e10245976bb68e04c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5a3de72eba1bd6a7b79be48af44432f7

    SHA1

    be6975bae0b2e30f42f35bcd5fd34ca511aeb695

    SHA256

    cd73c1de831faa5bafa61b748f5b73dd9f18ab22be5c19ed3c4d755a2872c0a4

    SHA512

    0ad3220780925bce9c3ceaafab3eee26306fc856f05ea7b568a51fa53d74ad8c5d2f551011e1e00f14ec2c7348ee0c075a7b25e05d6f71388ee0a9815d245580

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7fb75766279627d7c8317da3999e38c0

    SHA1

    1f8108c4e1aed79229961449cde7e8e2a6d851a3

    SHA256

    02f3a27324ce0cfbfe59b56e5bc726eae0a7de45b66513e146dad5b7ee354595

    SHA512

    d508dd1ed539886ba0f9468a94606b99110da54d9c3981234f538a3b29eabdb2b30cdaba806d0dc8f6eb5aea11756678b3da69dc8804271b9bd7af7bfc84eec6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    64177e29c1e5866d4b7d199e87aadf7e

    SHA1

    62f87c77cca81b363a5406ed886eb7a3a2128d73

    SHA256

    388c1a1f59b97e0e4ad8b0fcc525ef18dd57872fd0cdb3447dafd9fe71b9f898

    SHA512

    71d778e78c443a3b2ef934b7298347ab3d36a402bbd6baa2bec38b5274a525ed93f8625eeb39235f4fddf8cd21021f46dd755f2e23314ece943ef944cdcc07e7

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab58F.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5F0.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit