Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

caokun_bbs...ad.vbs

windows7-x64

1

caokun_bbs...ad.vbs

windows10-2004-x64

1

caokun_bbs...r.html

windows7-x64

1

caokun_bbs...r.html

windows10-2004-x64

1

caokun_bbs...it.asp

windows7-x64

3

caokun_bbs...it.asp

windows10-2004-x64

3

caokun_bbs...er.htm

windows7-x64

1

caokun_bbs...er.htm

windows10-2004-x64

1

caokun_bbs...ay.htm

windows7-x64

1

caokun_bbs...ay.htm

windows10-2004-x64

1

caokun_bbs...sh.htm

windows7-x64

1

caokun_bbs...sh.htm

windows10-2004-x64

1

caokun_bbs...e.html

windows7-x64

1

caokun_bbs...e.html

windows10-2004-x64

1

caokun_bbs...ss.vbs

windows7-x64

1

caokun_bbs...ss.vbs

windows10-2004-x64

1

caokun_bbs...log.js

windows7-x64

3

caokun_bbs...log.js

windows10-2004-x64

3

caokun_bbs...dit.js

windows7-x64

3

caokun_bbs...dit.js

windows10-2004-x64

3

caokun_bbs...ot.htm

windows7-x64

1

caokun_bbs...ot.htm

windows10-2004-x64

1

caokun_bbs...p.html

windows7-x64

1

caokun_bbs...p.html

windows10-2004-x64

1

caokun_bbs...e.html

windows7-x64

1

caokun_bbs...e.html

windows10-2004-x64

1

caokun_bbs...rm.htm

windows7-x64

1

caokun_bbs...rm.htm

windows10-2004-x64

1

caokun_bbs...r.html

windows7-x64

1

caokun_bbs...r.html

windows10-2004-x64

1

caokun_bbs...wf.htm

windows7-x64

1

caokun_bbs...wf.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    16/07/2024, 01:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    caokun_bbs_GBK_V33/HTMLEdit/wbTextBox/rm.htm

  • Size

    1KB

  • MD5

    d8ce4a27fd6f7ab477b1085f89f65be2

  • SHA1

    c8bfdb9427c634b8551d0e314729c7ec002ae77d

  • SHA256

    5680aaf1aa7cf979cb7b7e41a42a71f625f4a568cea4ed42588cbeb767987044

  • SHA512

    80f23880ad88961a4cf9b4585da16dc56f3eab0cc590c583299cdd46184afb68e8378ba138a56bc8707da144aecc0aa79cd59912568aa102706d4e6837b0de36

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\caokun_bbs_GBK_V33\HTMLEdit\wbTextBox\rm.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2756
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2756 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2616

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e110df5f8b9530797e9098a67ec99460

    SHA1

    8248a7c8f27f4f88c13a7030fc7e62e63ce550e3

    SHA256

    935f09d9442c5a00b2264c4bc9568078a3636f191a64f5b51b8016e03a1b9383

    SHA512

    59973f7ae70559d4602efa703fa61ff15bda839c1886bfe0bac65e860e6e559a30d62ab2bc5707791c471cebef155cf9d91553d0fdda67067ce0dbc453c88104

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    42da7a687ca50a0552ab4a25bf440e8d

    SHA1

    7c7a1a3066d5b02da02230dedd406e9d841b30ed

    SHA256

    e02f17d57f26b8700b3f4ad97ff8a66183f4169d2efaa03d050888542a36cbd3

    SHA512

    03631c149086552313d1c769d161c4d9714ae34f4ee12023bc71f4a993837262a1675638b2de26e1d42f3cd0f12e234ca9ec7aa04c9575a7f393aa628129a440

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bb38a5ccfe9f2e9b645aa23637b88653

    SHA1

    6f01548f12f63fda36f6913183a458531b4a35aa

    SHA256

    9c53cd63b782cf8e93a8588b375dcab27ebb5bc79f12bbdbc3443afc864a4dab

    SHA512

    f111d9e7f9b978591a93a497a097702c3ec3471a660fdd47d1213de6a2cc94d80636b11f6af3485e7146ec5270905ae1aff68ce267f4318456504e758581ae2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d36685eca5164244ba65740105ed76a1

    SHA1

    76195f1cd27e045293c3a10a5837c3e67fbd59a0

    SHA256

    ffde59825d6b723f43caea4d2c9140586f2e0b53e94fa11db7406183285bcb16

    SHA512

    57208fe2529e8293b77ca434d09cef1fc03d73160238ae6c3e9fa36497644ccfc9d9f9731040e5371b9b635439d86fb8455a45b5df48818aaad438a49e995e1d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a8e1c2e14c307010f361d9e6615025a1

    SHA1

    2e7aa9a68ee65979ad6fdc61554b2d240e368540

    SHA256

    a6f6cc3d4a87bd67472d13401d37fe90d44dc69ccb291aa24e2bc8d64db3d125

    SHA512

    214fc08cac8f9ad36790cf338c88efe9de834894d345bff3eeb9d785e0cc8ac4f375c8057a7b2cd00426e2813efce83eeef128eb35ab1a6d3f84c2e0dc63e58e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59f873a7fd5f0458cc22614f037a1224

    SHA1

    88729cf94588ac04651a77486aa16a4dd0325fef

    SHA256

    2dd84deb2f8910afe6958f3a874af3413ab5893dfdecace596fb34b48690edb1

    SHA512

    df485c6abb5ff4e65d4d7aef17315acc63a903b93626556bf5f815362bc0d87c6dd77b9333a81bb6e37803d1aa0ff5e06075ea796f57d138da98380e7a8d930b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9d1c4e1ea26ca58804a872dfd1ff502f

    SHA1

    f74f5fa694fd9574be6090a35fc68b23d9687462

    SHA256

    a645264ff89f9886c6f90911b318d1cfa3d94de245e4ae7cd815d41c3d604dd6

    SHA512

    25689c9277794ce08c23332adf410e5894c48d2721c3b149478238451733731dcc85c7fdac415c2cbc5d241ebaccd47bc1bf8e837b3b1096c1d6edbb1a1c3a32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4bb4a4ec76581ebda35f8665a41b1900

    SHA1

    644f30166b3340d8e98f5e63a7cf96a2d46520f1

    SHA256

    6cef507ed567e347d4b736121fc5afa98fc6f76990d26c5e98755f0402baf222

    SHA512

    852a2c671ac85d4f6e2f7d870e85c7a8b1691c0391ee9ec89f63cc18316aa6b28f4e8ccec790282b94533f3e2fe1e2dd19744b0e162a363d1ebfb6de9118c531

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d67232858c756cc80f7f4bf97eb99351

    SHA1

    a0bcd5bf2730acb597db088d1f6b2766826398b8

    SHA256

    ca8089452028888002aadf7d2d062f5f0a1305d8fa4b27b9bf8cdd5359924ca6

    SHA512

    0969b1792d318e5bc55553dacd3594cb9573e24a75a9b25642a5c8e40ef05aa78119b980ae823f8a75d04cd949c0de756f2bfca8721a1be267378b263ace9316

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d4b82e6021c8725a1e61030df228968

    SHA1

    1cda281a854409b0297fa183f0bdca7ae6c5ffc3

    SHA256

    c7e85882768867d03c54d4a0fad7b437a93e22525a10ceec9be6907829b71fda

    SHA512

    9d5611988f0a57885a3d2ec99ee5b59d7292cbe837ccfa0a3276521dbe9b7a6cc7b11721a6fed491fed3a220915a61fc344e5c41e2bf277e6a580a7bad0880e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ed69b7764a2efabe58e5e0e745a512c8

    SHA1

    629fc39cbf8b88284018a2247e95406df15635c3

    SHA256

    d1070cd58f69eb0d7b4499765c35a1d70df99110e56e18ce359e9cc1e61665e1

    SHA512

    e1e5613499053a3a141ebdf7d444f12caf2c4817586af09e4db82435343b56958e286e4aaa5281d44940044efbae7f31ab3380178c7cb0f2060b726fc466b916

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7e36ad31ad4c5c20cf0f714eb1f04a75

    SHA1

    6d3f773e3bfe1f35f49331afe1a41a70ecec1d56

    SHA256

    8d8b8c755bdf2f7d5a0c75168b5ce4c44c74293544274af799f3501564eb8dd7

    SHA512

    591d0e85866829a4b1557a254e3bb2c99c824516368da9e88978198349d325457eb0e8ba2d03f95824681e12395d78cd97454751be4773523560232782d71832

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    55d178a2cfbda69ed6d01469399940b7

    SHA1

    a520a0fb2a35c96155e8d40b208d4e1a246d22e8

    SHA256

    1e7a262dc71b4ed6e5c4f8ac536acf5fba277d73ece00adb0568968e5fa0355f

    SHA512

    08db805fc4a073a291be44ee98b4666d84efb3b17e7e3a6b061ca0e10ce1dccc9307de06efc7bbef25687a6aa96d153236c58eae3abd7815d15f7b756bccd87e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    23cfa21b6c3de6cf66244b42e2c18afc

    SHA1

    8ab4ddec66753b03f1b6a663b40bf8e0b6ef323c

    SHA256

    a9a1645ca324b21a064c9e06f019875fb84dc2c8de7cacdd080c23cd91ef3361

    SHA512

    fdc9275c44a6d519774e8f9a8ddb1b0db81f239708cf3c8ca1e3eaf78ee98ce193ab9b037dbe28682d6614bdbd3024dd307d931e88e8c3233de600f92adcbf64

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee0ac9b09e1603518ea9a39236ecc945

    SHA1

    68fce564dfcac6ee2de5133d129935c36122455e

    SHA256

    b17fdd2f204e98d40813ef4af0c9a457a79d0ef589fafc3249dc152280109d2c

    SHA512

    260f69665885fe12799eab418e7c429a1a47a574bacb69bf379807f3abe6f4b4cc4f9e81dd75565c2ac560aae3217e64cb422f9f01879faaed1fab84d33cf4db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d7e043bf5a88e2452bf94e062f944795

    SHA1

    5c7d387064613e6b085545325ae81eecd59ccb7a

    SHA256

    573bab1897714cff44f2e452cd2870986ec68c78850e837bdd46969aaa545a89

    SHA512

    c58f5a5c193f7f5fa2d007291cd66dae45812cf1fcd93076f929585581496aae8563203245921068e66addf8783c56535fa8dc45d9aef804556bf6e60993682e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b320cf8488479d767d9615cc49cdd260

    SHA1

    b8d2e3aa496b0218a903b9665541da52a02c8499

    SHA256

    9c95ed7ae0eaba5f80accfd3189efa06856fe76f104b53b71c1a4a51640005bc

    SHA512

    51b103c97a4f4e4d9391edbcb35623d8ad4bd4296379bd3a472508d301b11cc056afabdf9c695ded29997cf108e7679b4e5f39453eefd31215b177937325c02a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8111045cf59b9426cba812bb483aabdd

    SHA1

    e4e2c32dc8fb151b8485b6659fec81515e1ff8e0

    SHA256

    92cc5ad184d685a8c3f41a17d87bc672a5a6c4be5b51191e90de70b24b86892d

    SHA512

    9999565dd083f29c05455da790ca21a5811882da19d681ef8cc8b727fafee7433c9376adcf24d92eb2606d948d08ab19452abc85603b69d8b83aad83be89976e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4348f3d5426a6853f6a0af04aaffa6c6

    SHA1

    aee4e28ca21028a9bbe7952f95de08ab6fc13941

    SHA256

    8f9dd21f8082685610d7956e60a792d1a36fa1ea739fd98334032fe3a09c9032

    SHA512

    b92d83392466acf15c06b27f2ad3b871a65543f7b1137b96822058c85aaafe06c871b9f39e849a5c3135a85bb23968f16f7676e8edc2e56aa61124e24455558a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0a4e89d0e66bc32c3ac0810d6ef3740a

    SHA1

    ec69d259a50a1f298ee8b39441ecdd27df8f6f6d

    SHA256

    41d105e552499c0b7e6a89011fbe05789453b028c0789dba987b722987f568f0

    SHA512

    02941107d101c7653bc2278a0bc2b9eae69eeaba4ecfb6148840eb0baf28aa822d49c35f5bd23135029286fabcdd9c77b9798590ed40e0a42fcdff567be172b1

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7BE5.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7EA8.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit