Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

Pralevia.exe

windows7-x64

7

Pralevia.exe

windows10-2004-x64

9

$PLUGINSDI...er.dll

windows7-x64

3

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

3

LICENSES.c...m.html

windows10-2004-x64

3

Pralevia.exe

windows7-x64

1

Pralevia.exe

windows10-2004-x64

9

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

resources/elevate.exe

windows7-x64

3

resources/elevate.exe

windows10-2004-x64

3

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...7z.dll

windows7-x64

3

$PLUGINSDI...7z.dll

windows10-2004-x64

3

$R0/Uninst...ia.exe

windows7-x64

7

Resubmissions

11/08/2024, 22:04

240811-1y9cdsvdqa 9

11/08/2024, 22:02

240811-1xxbfazhmk 9

Analysis

  • max time kernel
    118s
  • max time network
    138s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    11/08/2024, 22:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    8.7MB

  • MD5

    1ca87d8ee3ce9e9682547c4d9c9cb581

  • SHA1

    d25b5b82c0b225719cc4ee318f776169b7f9af7a

  • SHA256

    000ae5775ffa701d57afe7ac3831b76799e8250a2d0c328d1785cba935aab38d

  • SHA512

    ec07b958b4122f0776a6bded741df43f87ba0503b6a3b9cc9cbe6188756dcde740122314e0578175123aaa61381809b382e7e676815c20c3e671a098f0f39810

  • SSDEEP

    24576:ZQQa6Ne6P5d2WSmwRFXe1vmfpV6k626D6b62vSuSpZ:ZMfTVQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2340
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2340 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2920

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    abe00bf1a02c8e8e6a7cdc50530d756f

    SHA1

    b2b0cc5f3f7c4fbc23378f5d5ea1ab41308b5603

    SHA256

    aaab35fa554de0dfa54d20ef54029c4c31f4980ed9e1f2f536997c9a25186724

    SHA512

    d3994d3806e9e0f35028a7d732407a44385a4e98c5ecc74996dae5bdb216478f433adfb7a91e9fe1903fc3b13169724b47e4a3392db880767d28699e9b226bc6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fab6277f23b96d9517d15618978a9ae1

    SHA1

    d2a7ca5af087ceef92a49331b5e19f64a48ef36c

    SHA256

    45ebb2ebe22f6b66087d0e11e1a8636c2132918a58b27e16cd5dc739c88d2468

    SHA512

    a85cb876956dad1088412775611d8a44cb20a379526ca2f326c828b76cf6297e422f4cb076afc1a9b5eef53a6e03bed44eb56704308d35a04d31b231eeb405af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    09d2dd9597e6a8dcb4b7fe427d05dd1c

    SHA1

    0c9be692b010fa2d512a497355ca36a37021535f

    SHA256

    03d570d451d9c1fc20d1eadb7ad9c2b39b6f38c9e655d75386e28a2aaafc9c06

    SHA512

    1ef47deecb19cfb0eecf748a6adaac077a71ed074746e1a70318f47d2503a15d944e093c1bf9c9cd1179b5c7b42a75b26f824f73ed8ecc3b2f005629cbe7013c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    56e8b1a99f831747a8c172a1d51ef24d

    SHA1

    107de0018597e0e7f0eb04d94eb61695bd6d98ff

    SHA256

    b5f3f4a6cd1dea0b0bea40117e90a8cdce5c7b367307a1081e8d29f2b6dd2623

    SHA512

    e0b786b6676708296b29d6af287f89b4871b07140c72a92f931192da38571696b4afacdb3f7b7826c8c7099a1f598fde7c3893b031d3135cd794ca41d253b5f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d66616f4565b24105149386ce09a3e02

    SHA1

    f82baa5cb93fc7d247293cc89f377cb8b3ffd677

    SHA256

    639ed23f40c96087353204fe55594c20c62c5d1396556086b2855b1506f11656

    SHA512

    a1639e16f1500df6c48497a43b09baebb7ec208dfc7aaa37ca449be184c087cdf269c0cf6e5ea1cf12f42160d9393d41a405f450a4c0c34f6c44f3662d5b2b90

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76ec2b6773624ac364c11e0d8ba62db2

    SHA1

    276f1e81c597156c3abaeedf102bf7dd41bbefbe

    SHA256

    31b861cf63ce2394f626970a1beee66dde97f5b0935f443bf29a5af8e991e1a6

    SHA512

    0bb109b7edf384d1089e5968a219c2e42638655cf0290ca40b0f7ae5532155b0e5497f72b29693d40edfd339f4af02d2c65081ad4d0797247dd1383db6745e2a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5e35c04db295cf8d31543af51ae40858

    SHA1

    89d12f72fe050759eb496086c8de5d7216116e4b

    SHA256

    28b016a58c8fc050f27e62a89330e99ed844e1a527da127f567c2230202fd28e

    SHA512

    66dc700937ae04970d7a3887e1b2b7058efd7ff8f26232524da864102ccc3751b54bce52accd48c6cad6f060227c22ce671ed8a8e9312d4eba5f3a3022a02ab9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5478b059c23964f0cdf8ef290c4071a7

    SHA1

    3daa9b4cd5785458c76af8c17dda4aef1192107a

    SHA256

    bb0293bfec0cc0087ae218b2efd3cdfafe07e77a6cbd8e899d67b53bd7619bfd

    SHA512

    f8c4983707a251a8a6e1565eb88bf6707735809df9f797870e6533fcfb3b526ed42589bc5ebbf7ebf9f272514580182130a90cacc9d6f9613fc6f361283afaf4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f1ff541402aea14a5407323604fd8ab4

    SHA1

    ca348ebd7670f8d82780a2ed96af28259b3a8645

    SHA256

    85caf7ab1ee4674d00ab0ce97f346f898d187e282c7e998261df1614e87909d8

    SHA512

    70dc4e82a0aa32740873a4194c88533d341b85b8b2bd710b821ffc54e51e7b0f2428a72ea0a066d6a87f5cfbec4ce12c572c559d51ed6d2b2d3f6d171092539d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7bebadec817fccb09207c7bab967dabb

    SHA1

    0fcad97ca4299a3cac843d7e65dcc16cfa67f5b4

    SHA256

    3bdf7dacb60eafa613595efaae46998ff333f30915f0d6c7f86a284a13317352

    SHA512

    4fd9ca4bc0c3f8f06d9442d24bc02832ab5e34daa3ec69ec4d74bb6d30e1f3ff8deb4e308dd4c3960f3213f885935b0883e1860b87652f4b65fff24126f9651e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6af99f0857b943de6cd76599896cc626

    SHA1

    949f762611ae07867a0583e96706081327901ca5

    SHA256

    1b3715abd00ed7521c1c7d5e796e810b0e37c1c7b0d693d761915233073074bf

    SHA512

    c7e257ce7afebc810e54ce5ae6fb132835742e827450945f820db409c58a68dd5293da2ecbaf2b847ccde98ffc8869c94043c41afc02f018490c4bbf1103a6f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1fa5ff6976d08f560b44242b4dad2976

    SHA1

    e0bd4530432dd675bfbeaf99b05c482487f81cfb

    SHA256

    478fa7b309d8e460a0d99d95d0d4962cc9cfe65d0dfc0682a901bedc8b5efa21

    SHA512

    85f293c063081afa064d59ac98de0831c154c5c0da428e2d0f2a455f8b42f4340696d5de875b1360364791a91e715c6c5a8223ed9a394f5cbf14a45a709fcddc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a3787792ea83536c5164e01967d425c9

    SHA1

    1d75f4a2867e587183828de4573ab7c8fa7b57a7

    SHA256

    1c9870134299c178c0f692ec28f590eecfda5d906a0213b3444f3a9063a846c6

    SHA512

    f1977466a4703c86484ce0181acc4f5215238e5048e0518b530f3ac218ff660a945f7b6c5d7f6c07ea692127943d88ffd6c7bd234792d98a3af507482e0b06b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c822b92dc7286c4a52ff9e3afdd11bc6

    SHA1

    c001da94f7c0ddb948874c018902c07923fd2990

    SHA256

    a72abc2f5a0cdf3ffdd07e9625aa4204de5980966546b5ff8ab0b6b46336b263

    SHA512

    09250143c8471523cad0e820dd623d80c4e33c8a81145b361abbecf38eaf2d6d7774d6e2e66f12f35eb5cba28f8c16eca3d62b4f65e23d4d74e34d99820b18d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c578d5e382071c58617d4182c3aefd45

    SHA1

    50d90d598344a2f6f91a3a359918641615284bc7

    SHA256

    b87e43e2393ebb2063c3e1b94b6d905eec721174c8a8ba9f0d5dd75b83be2f8e

    SHA512

    9973bfe63293e70176f26f3ec0d724629a9f32401a9efa7ce79a4abc3599add15c501e603eb6ba712f6cdea037ba0561d1ef7a51e3dddae409da175479d179a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    468353149fb9be033eced30d8127558d

    SHA1

    1213dd75470757502fad809d0dfd162c81b16577

    SHA256

    b59b5fe93f8e8316bc238d19d8cf9ddf43de1a7ab78f06b4d67bcefd566b803b

    SHA512

    f84cf2c72eb49580764aa222cb72900802f84e47b151d894d36f21ae4a45da88e5e253f2ef37417bb91a7fce91b3e9772321e41775bf05ab3e877b701f44059d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4454415ab80ba7585554d7cc6e88bba1

    SHA1

    73f54234a0374ffb77aee51e362ac09ba5ed38cb

    SHA256

    7c736c6e9dd345943c3100e4a7ad15c7dd64d9b36f59d2fb4aa33ecc58d0c4b5

    SHA512

    c0e93e85f5a137ca7d904abc13b805f35c5c7eef17470a163e4a2b1b20e1a319c6e4a0cf679cc751c89cffecfca1cc824e13dc47a03472cb5613c39a476f2b6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9be173fae529d291e6102fd8e9e36a90

    SHA1

    c7e59dba794cad15b83b2f2efa39029715e3b879

    SHA256

    090336fcbbcea74f1502579f037879d6736543e2f0910040ef8df21835ada565

    SHA512

    8b07f3b0ab045f30838b946d1f97634500b737f6914a5e21f84398cbc836902503d3a4a6a551dd9090bdbd5e9dcc8e0106df383eb4252c5e8b0ca85786585bf4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ddd9412217a142a19fecea0e06422720

    SHA1

    8c2ceafa2421cf9c579c9b05d68d4f429137ddeb

    SHA256

    1323efc37b8a51f46852d6733752b17ccd33669d08813f025668aec212542bc2

    SHA512

    a73cb0575f8274ed531d4645263d142a5e01c147c7a12e1f7144782b662029db68062aa618eb77252cc165c5a5438cb3699036fb47f3f8a94b0fad5597b98c84

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab5EC.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar65D.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit