Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

caokun_bbs...ad.vbs

windows7-x64

1

caokun_bbs...ad.vbs

windows10-2004-x64

1

caokun_bbs...r.html

windows7-x64

1

caokun_bbs...r.html

windows10-2004-x64

1

caokun_bbs...it.asp

windows7-x64

3

caokun_bbs...it.asp

windows10-2004-x64

3

caokun_bbs...er.htm

windows7-x64

1

caokun_bbs...er.htm

windows10-2004-x64

1

caokun_bbs...ay.htm

windows7-x64

1

caokun_bbs...ay.htm

windows10-2004-x64

1

caokun_bbs...sh.htm

windows7-x64

1

caokun_bbs...sh.htm

windows10-2004-x64

1

caokun_bbs...e.html

windows7-x64

1

caokun_bbs...e.html

windows10-2004-x64

1

caokun_bbs...ss.vbs

windows7-x64

1

caokun_bbs...ss.vbs

windows10-2004-x64

1

caokun_bbs...log.js

windows7-x64

3

caokun_bbs...log.js

windows10-2004-x64

3

caokun_bbs...dit.js

windows7-x64

3

caokun_bbs...dit.js

windows10-2004-x64

3

caokun_bbs...ot.htm

windows7-x64

1

caokun_bbs...ot.htm

windows10-2004-x64

1

caokun_bbs...p.html

windows7-x64

1

caokun_bbs...p.html

windows10-2004-x64

1

caokun_bbs...e.html

windows7-x64

1

caokun_bbs...e.html

windows10-2004-x64

1

caokun_bbs...rm.htm

windows7-x64

1

caokun_bbs...rm.htm

windows10-2004-x64

1

caokun_bbs...r.html

windows7-x64

1

caokun_bbs...r.html

windows10-2004-x64

1

caokun_bbs...wf.htm

windows7-x64

1

caokun_bbs...wf.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    16/07/2024, 01:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    caokun_bbs_GBK_V33/HTMLEdit/inc/flash.htm

  • Size

    1KB

  • MD5

    6346f09abc38136882aefbed0dc622c3

  • SHA1

    a2d58fc622181e794d6ccb29269854c26539cf2a

  • SHA256

    cb473a0ec7e598a9fb6b47f69d44d768e1dc2d04ab896137e9b4e1ec2ae5e74a

  • SHA512

    a2eb856f3815a580d45b1e45f214848244f12ede61d3115d66310a0ae5f929c6bef1608cd3559e5530efa6fcd5996f7092128422b511f76511a6edb8f2c2e853

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\caokun_bbs_GBK_V33\HTMLEdit\inc\flash.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2064
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2064 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2100

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3cacbbcff187d3b19402a1d24fa62bd4

    SHA1

    cc420e1ff4b4707bea49e930b90d6b62c1c1c80c

    SHA256

    211ab4df08c4d7d14379a98f134fca6d5dc014a48feb805c91863a3dc67c10aa

    SHA512

    844eeadf054fee5fc9921c5259a4bfa801bb9a5f2820949be825d18152ad9836848caa6b6f68aafff8605227511372655e1fb325f0efb57699240deb268d60c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    000bc539e9ca76b97078ab48797f6802

    SHA1

    ef94af7048d69073c0f6f6ca546bdf1bf1bbc3aa

    SHA256

    10e0ea8b7f075d6ac7154e43e4e939c7bc4fef842d20726ca24148a8850e73e0

    SHA512

    44b372ba85a0ea5363108a9f58e9aa1515370c6b8370d8de4b1fae04ebdd6d6a1fd047449bfa512883235d13a5198b653a7e326976c26408888e5d8c15104823

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e4316b221c2e3fa46211f7f95fce90eb

    SHA1

    946d1bf3711a4df290f0425a88eb5e9cf1328671

    SHA256

    49d3f0f66ccca98ece991cd6cca4046f84d8f753b1bfe34f7858f30815c2ece3

    SHA512

    77c4208776eeedb772b2b60bce56194f9950506b9248fda53a4f1f7b91ca48bc7da78cf658203d3f02edcc36481acab22b22309df8929e91f2f2c96b79f3ac8a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1a13a99af2cc7327c05241d9e00608fc

    SHA1

    ede6095485bb4256eb9ecf6c496643d917fccf48

    SHA256

    5988406f5868e3c4d39bf907711bd67f9112377046ee2683566e50f903ff7028

    SHA512

    6503e7a5e1db8ecbea0ea897174d0d0fe981ef801c91f5a89a1cb211e4b08879cb33852e1e455668ab0e4878b661d55a3bdbf582f616c216bc1cda6d9d829b1d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ba44ab2ce311c6d63adee83f1ba4d723

    SHA1

    140ff654423f3e67ae64b78afb6f19ea69eb7236

    SHA256

    38a3a866ef1df42bf4e1ae2d114b9eb68ec644c4465bfa2c0e098015a8da9620

    SHA512

    97e6841b15e02cc54d6e6943d8e2d49dfbf47f90e526ba8a7683aaa9d273b9e23e13a989a09d8a12656901271cb722707784e6bb478f76878e455bed142ed813

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5ae70ec12765b88fd8a68c514db86f4c

    SHA1

    d48bb58b6e34a22f540a40e6f938862d8f86f073

    SHA256

    7d54502c6bfa2d380480f3c48b9477ef5e956ac549d786a462ed6deb1cec4aae

    SHA512

    2c8eccb1a8c371ff7a2b1e20cc8dd1d648675164b697b70f3f26e5204dc9e0447427adfb60477eec576370b20751c024bba216c515db36aa0d72cac66061250e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c8c62fe8760af83295cb4ef961e5d4c3

    SHA1

    970fa9e1a9b528e9b68ef92b100d4f1d0aee9085

    SHA256

    e04a1e2507181f531db6d42197acc1e42dec8e8cecaacb588441fd2c3ee1b890

    SHA512

    4b2d48790997b5c019d01f36e46fe3a553255337d26eee0f38abb03ed270cf2c58dbc6a1151dd33788cc3f4e03c0368b2591a4f84d05c3d68b449443ffeb6179

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c484c65a43f581afabf8113232d19d2b

    SHA1

    b3b482e2bb693e84f6d4fd7e9a7b6eac8e4d5b82

    SHA256

    516f81eb392b9dd34e7b98a21f5745b5fbbee3f046f363e81303510640a654fe

    SHA512

    72dde8b3f52cef2b1e72dc94777449c6f0dc34b1345abf07fa4f1e9ada81060260bbdcdcdc2f5cdec61b18e1e08b04ba6434d422a8af2a07394d3dd65af6345e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2f4ce5a017d0bc5d8c3236e05f24a88f

    SHA1

    d513770ef61da8e8c8e964190065534075b3e99b

    SHA256

    baf727c2f11b72dac2daeb99aefe9e1b6c67cc9740dbb070c0aba3598e131162

    SHA512

    6c95d223410fa880daf994d1e03feba73cd8ad15dde9fa929e90ba3252c252198f852d983c0af5863be073b7970b36e276dc95cee2f7f649af1134ac4de0e7bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f62b569c8a70e151a5cdea1787d23c81

    SHA1

    49041a64ea4e4bdb72d57b7408c3ef4a128d53e5

    SHA256

    9be7c58e34b4bd8fadd51153390b241862fbae3bc10001a4117ca4637c234775

    SHA512

    796b36c14f682964758c004d69012140877568995a452e0e6120060ded4366badf653f71bc87825bb8c427c7e76db67411a040b4a3332afa9e5f9d138988abdb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6fc16f57aae1455bb083920d01d39835

    SHA1

    a63d1dafece99b933bab720f989d97d52b0a82e4

    SHA256

    6f58cf52866703e33b2f3e645077c7ba6156e066ffe1332580d60c1e4412fb5d

    SHA512

    94442e99a03a24c7314a01f419c09d03d35d9f81f819d765b0424a7a2f52d4e5735e75ac25351b8c20ccafeef1e29e3a37e9dc90b3e78d18ffb6cd79ba0d4fe1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    de054f14d4bf95fe283a534b6bb40d6a

    SHA1

    7b837129209c92006bea97b2d41b5118b4e590d9

    SHA256

    5e50e76a8c22adad64bbd347000e4ca8b1fbf2b79e8b3f3ca0936bc3ecce1575

    SHA512

    e2646a8705cf319e4cdcecdf427144a1d8e611ab9c1f494d0e64936092107af729ba4158924f132ca1219a5ed2d4325ab81848ccc9e8089773d721f55b24de13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    003fa01dae689ff1342c286658087419

    SHA1

    a0cbf453b4170739598017e2d1f8f908a1c362ed

    SHA256

    33be7eaa9fa934692518cb71b04bbb203f8ffe1aed4a81dfb9bf1176746f1a35

    SHA512

    34ca556b5210dddb396eac9696c14d5d8b3c30a60d126c8bad380c61aece3bdbb01d195940f44d1ccc0ce6e8967b0d6a3292b6806420086fb43045500725951f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8892a77c6824206a29b4054708797598

    SHA1

    22f910c5c8b81d5be99d78db229d37d93c7ddcbb

    SHA256

    fdacb01b16aee4498c30b0fb757990e637c1d9351cf3be725a470824fc21d920

    SHA512

    5cac5b91494eac653a2feb88f231f7822837acda8055b930c252d245fbdbb51c9c6b8009633266a02fc5af4b768bce016228a85942b1f9ba03053e697c04c476

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a2c7aa408dc59ffa5e4a7bb7bacc8449

    SHA1

    5c128e951493280fcdd1f5c7ff914c19efb0fb54

    SHA256

    5f5c13ecb11f83f20da9d007951bb8b95a74a5d92cfceb81405588acd11d565b

    SHA512

    0a8d7f55637191b2d1ed7a39187a534d97165f025970cb5c0a4930a243c58e87aaf67663acbf93f03664fe5905d2649ab2575af2b111fa5612444d21a72949e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f42dbb45b1521b5e79225f99ab92fe9e

    SHA1

    e7118efef92288136197210056f2dcad0bc99dd1

    SHA256

    ae17b8d265df07faffcce80b45f3e5e0f002484236a28bcd91f77b255b809ef5

    SHA512

    85fe5db62aaf5a207eda3d413035f1becb503e98fc732f619cd27b8fe25c995fb524e76c0e39311f4b34acbed8aea94eb4c56452560363c7e9c12bc9ae30a340

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7205a75318a652a9c0d22e69bc25f270

    SHA1

    c514273ba75f4b68af649479298e5b0d500f1d8f

    SHA256

    bd8750386bb469ed9ced8a40896abcd35c79b0b128a8d3af3ab0c80289eb8840

    SHA512

    3388f865790378664a42eb961ea08d5bdf99a3e48ea261b4fa76c2271cb3ba55bf92571b47e32792c72daa14e9513ad6af0f2122cb43385366a05973ce7b17c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c0d2e9442fe354502f9fb7c656cd5228

    SHA1

    71d6d0415d9ef020904a548dc014a0489c122087

    SHA256

    abbe615b9672f4799fb120c95e5577bb715de67f90238e2e4c7b1d1a9dee8701

    SHA512

    4093bb36251a8a94c7421788764c331073a5590d229772e95aa67ebc7cf131fbfcdca2a2849e086b41e9f12e1b6cf5028aed4c953ef98101051092ccf6e818e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1fe44481705a7024bca3c1a35da32145

    SHA1

    418627b1f2dbd1f5131ae9fbcb0b8085bda2ab1a

    SHA256

    240395e161bcc8439d1520a314ad63dcf92692753322e6c560645a78890e102e

    SHA512

    4ac82244fe7c683f513a2b5062bacf2a5c4ea0ebc8257dc7cbdc6b1d1cf31fc390d54cc00c6d1b966580582637c61594a8a2507ff08ae439dd10a95599f5439a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE4D4.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE585.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit