Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

Fortnite L...er.exe

windows7-x64

4

Fortnite L...er.exe

windows10-2004-x64

5

$PLUGINSDI...p.html

windows7-x64

3

$PLUGINSDI...p.html

windows10-2004-x64

3

$PLUGINSDI...x.html

windows7-x64

3

$PLUGINSDI...x.html

windows10-2004-x64

3

$PLUGINSDI...app.js

windows7-x64

3

$PLUGINSDI...app.js

windows10-2004-x64

3

$PLUGINSDI...uts.js

windows7-x64

3

$PLUGINSDI...uts.js

windows10-2004-x64

3

$PLUGINSDI...dle.js

windows7-x64

3

$PLUGINSDI...dle.js

windows10-2004-x64

3

$PLUGINSDI...min.js

windows7-x64

3

$PLUGINSDI...min.js

windows10-2004-x64

3

$PLUGINSDI...ons.js

windows7-x64

3

$PLUGINSDI...ons.js

windows10-2004-x64

3

$PLUGINSDI...ics.js

windows7-x64

3

$PLUGINSDI...ics.js

windows10-2004-x64

3

$PLUGINSDI...nds.js

windows7-x64

3

$PLUGINSDI...nds.js

windows10-2004-x64

3

$PLUGINSDI...ies.js

windows7-x64

3

$PLUGINSDI...ies.js

windows10-2004-x64

3

$PLUGINSDI...ate.js

windows7-x64

3

$PLUGINSDI...ate.js

windows10-2004-x64

3

$PLUGINSDI...der.js

windows7-x64

3

$PLUGINSDI...der.js

windows10-2004-x64

3

$PLUGINSDI...ils.js

windows7-x64

3

$PLUGINSDI...ils.js

windows10-2004-x64

3

$PLUGINSDI...ler.js

windows7-x64

3

$PLUGINSDI...ler.js

windows10-2004-x64

3

$PLUGINSDI...ate.js

windows7-x64

3

$PLUGINSDI...ate.js

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    139s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    11/08/2024, 21:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $PLUGINSDIR/app/cmp.html

  • Size

    5KB

  • MD5

    d7b8b31b190e552677589cfd4cbb5d8e

  • SHA1

    09ffb3c63991d5c932c819393de489268bd3ab88

  • SHA256

    6c21e8c07ce28327dca05f873d73fe85d5473f9b22a751a4d3d28931f5d0c74f

  • SHA512

    32794507a4b9a12e52ceb583222cb93300e38c634a72ea3f51a0189127aba60cf476fb7918942355a4f826185d7071e876cb40348ba34cf5d1ca7e9546ccb310

  • SSDEEP

    48:t9rc0/GLAoShbEHaLKNGiNQtvmolOGR36tgtr/GTvJP8AscaV4LiMt7ByBZXGz+p:4VLjHa2NGiivmmpWsBVutFwAk5vSG

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\$PLUGINSDIR\app\cmp.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2308
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2308 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1836

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    060eeffca8e20d1498dfad490ef5ccc4

    SHA1

    dbe3ed545c7bce8a8bce77eb5203ba2a3eb592ac

    SHA256

    951b31ec8c6601c45d1f0d5407df22e08da2c9c2dfbb058f0b1d796d52b970a5

    SHA512

    b799ab8d6e853a12123533922790023f82530b7048f2f5a632ca6567319a3243314c0b55ac9a68f6928495af66c098aae9d0c00b1a113c6b69f4563c1ade70d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d7395fbbdf5431471f2cc6345cd9076e

    SHA1

    5b756884e2f150645106a16cab0db4a8e1c84c8d

    SHA256

    edec628702fa0d2550599e91d34e0a832454496de61643a465dca65ba88625c6

    SHA512

    bb317743b55fd3e827310e081cd3afdabcd41172a2bc1fab8fa0ed1302aafb9481992d01fe5c2e615cc53a6201506fec5c2bb6b88833719e0842d52bd5d9a890

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f48bb7b7b3e53f6ba193a94df55aa4e4

    SHA1

    5eb6b50dbb4cff5aed045f83bcd8f28a9aa5721a

    SHA256

    d990aed247e01eae1309845a793e8b220d63c31fc8992ba8b494ad6d5b627a42

    SHA512

    6e79fb6b1a815d67f10ab72e5e526ac96816269993567d6da5bcc5627dfd4db0da2bde2c99b15fc1767e3bbab718acba2aafd8bb3861dace33030844d2a58d38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b7bf97b1a19b08eb290d8f40e17306ba

    SHA1

    416e6f372f6af3fe55370cc6c77e687a312ca0fb

    SHA256

    f99bad600f1e328547d92badf06208b3917fabba3b0df1d30fd71dd632226190

    SHA512

    ac3c7533f7482027f5474a890367f27a158af8fb1446b7d3ede3a86afac196d6074d52c5f77475193634725e75b81cf3ac1f005324ae749fb8dc1815f99e9871

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fdb820cb8c3d0a7618e41b522725c7fa

    SHA1

    332dc0b3597ecaa92b9afd5d2e899b5c1b95ef78

    SHA256

    79e9b0e9696100395087b5c8a490e4a2e8f03b6016b8bd474db65780881a823f

    SHA512

    3701937395d97abc0bff87ce7b855418a85bffd793a6327d73c58dfca7d61547f0f8034c5a3f7a8d7a14e91020eb68cec26321ab08f6dd0e93ab366803fde10e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c737b30fe3accc1961aedef4adaf1aa2

    SHA1

    ef8859d72212a3d9dfa91b7cdda80516ead96cc8

    SHA256

    b859435ff5d48d62938e7137f1e865482fb1ec74f1a6ae10f995eceda1b1a269

    SHA512

    23a6d6d82ada6ac1357e4de106d660ecbaaba02702891b80939f317d1690b7b38ad5c066311f91a461e4ee41bd0e63719cda7529f837b6fca9477e0702c9f898

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dbb4c553761092fd238adf7b2f0caebd

    SHA1

    a6033e0d45e4a1c61a8764bdb3a87ddf42c555a2

    SHA256

    1b707755bf79cb0ee128427dd549f5d63e80aa593409279a7dc11b41b34d318f

    SHA512

    769bcb61215f99b756333909515af88bb434aae5d8f447dfdcffd2a8ff8514c4aff7191f0decc998eef6e67173bab6df65e2ba9ab8a81492d00c34acc5466fb6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    34bf5526e5a49c4ecbecbc3f9ed19579

    SHA1

    4294689069c2e38f4d0140b44b90bf0b7953748d

    SHA256

    fc32f0a234e9ee3f895142b07aab7ccfa1f0f1ab283fb08bb7dd52d6b77fdbaf

    SHA512

    85291eac82a2bc0457135c63eb18be1ca8ee6768244492fb7ed37e868bf283752d93745286c17822dc7a03f95e3a5029c255500c0fd0ff6f2c7adb6e3f629fcc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    85fb27b3a4a4193f71a3ea99c491f85f

    SHA1

    f13ee1795da5782ff1af522dafd16eb29f1f5e54

    SHA256

    ed272a440e5d65107bf662f28aa73563b32c7f30fcef591d474c7a55d2affc38

    SHA512

    70b204d7e4a2feef53233d1a110b6a376599678424d3374daf059e72d61fc9624326d0161fd60584369af4d6f284f72e10c280a01099384bd747fa5951c54a36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6ad039af5f797381154c57df7f716419

    SHA1

    bb80c416751e7704f462b6305f288a9f016dd8cd

    SHA256

    6e154fe5c7e20ff79b15a9de42433e2627c94c27e9a0edc799d72fabab774942

    SHA512

    a5a02c1c1a7121fafbbe898d17997abfb5e2d27886462d0390a9b0deea5ac1369e82384071463ef3a4a68f96bc0b5dedc314c5579aa9c7e5473a572e955bdba3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1e879f8de678c42778a8bb3b96bba923

    SHA1

    cec29bc0b69ad1f7573d17c2fb0a462f278a71cb

    SHA256

    134e621a95036dd3332d8235e5b8019e2a362d5b24aa047d3af6a0aa5379760c

    SHA512

    a14cf5728d676e4da9362967aecbb91e593d15924060aa04efe80755a2f501da2a639b6c3b5f10378805cb6f86abfcf488122f418ab94cf5ce4475470ebfd262

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f7b6fbb13e05c56a5a3a042cf607c9bb

    SHA1

    5b6349c8d01a38aea79cff3b386e39d469eb38d2

    SHA256

    ffbde10a54ae2c0a771f927cc958c62adb5fafde9625eb2b7f9a8e067f22c74d

    SHA512

    701c54abd3bcdcaf141dc337a534fe8aafb44330cf8ba6504bb6bde4897464a31212b1cbae1553761cb3e0663df5fc6f736b4baaf2c569cf17b226bcdda4bc63

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7c8f82c9d0a851784bb0f56f4c69a806

    SHA1

    24c649e8f1193312c73ac0a722a757d5dd55ef45

    SHA256

    08ada8362fc69e2584e6134cfa2d2a8cce1d7221f1eb98ee887c403be2c6773d

    SHA512

    19a641d770176cb262e16c85ca7be132694914a98cbfc07ec550814697e3d784565ab6e196cf77460674eb7f291b28df78b5efcd18dc642fb5921bf554824271

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    052c11aa8e6949e6d44254ecf9bb53b0

    SHA1

    f894365488b907faf994138f14fd0580f43b7cb7

    SHA256

    7df842a1241e74449117df0a8f1660d993f03935a78ebe157181e99db97774ee

    SHA512

    b056a624eaa2fb993471aa2f75273cffa3da8216ddbe1f8e01cec2c10158f4878839cc549894bf34327b72d36c63de002d0f28b31983834cd17faf7df8d5ee72

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    91e46250bbbae7bdcca5c38ae0d5b608

    SHA1

    4c8313e7550a41e2c86c7f6c6a2d86f29973b7b1

    SHA256

    c5f8a184cf102243b0acfcc918a79c5c197590fc77d8571a1688ec9c07ae6639

    SHA512

    5a0c13afd6317f081682c489b8a22d383aa268db6b46f9c8c62e27c8dec14be15de1b387942ed6ff4ba7f2ab1fa8a24ed5d98448b618ef6e8e44f104d9f25192

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabACE5.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB216.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit