Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

thinkphp_2...&A.pdf

windows7-x64

3

thinkphp_2...&A.pdf

windows10-2004-x64

3

thinkphp_2...��.pdf

windows7-x64

3

thinkphp_2...��.pdf

windows10-2004-x64

3

thinkphp_2...��.pdf

windows7-x64

3

thinkphp_2...��.pdf

windows10-2004-x64

3

thinkphp_2...ʾ.pdf

windows7-x64

3

thinkphp_2...ʾ.pdf

windows10-2004-x64

3

thinkphp_2...��.pdf

windows7-x64

3

thinkphp_2...��.pdf

windows10-2004-x64

3

thinkphp_2...��.pdf

windows7-x64

3

thinkphp_2...��.pdf

windows10-2004-x64

3

thinkphp_2...��.pdf

windows7-x64

3

thinkphp_2...��.pdf

windows10-2004-x64

3

thinkphp_2...x.html

windows7-x64

3

thinkphp_2...x.html

windows10-2004-x64

3

thinkphp_2...ss.ps1

windows7-x64

3

thinkphp_2...ss.ps1

windows10-2004-x64

3

thinkphp_2...d.html

windows7-x64

3

thinkphp_2...d.html

windows10-2004-x64

3

thinkphp_2...e.html

windows7-x64

3

thinkphp_2...e.html

windows10-2004-x64

3

thinkphp_2...y.html

windows7-x64

3

thinkphp_2...y.html

windows10-2004-x64

3

thinkphp_2...t.html

windows7-x64

3

thinkphp_2...t.html

windows10-2004-x64

3

thinkphp_2...1.html

windows7-x64

3

thinkphp_2...1.html

windows10-2004-x64

3

thinkphp_2...x.html

windows7-x64

3

thinkphp_2...x.html

windows10-2004-x64

3

thinkphp_2...w.html

windows7-x64

3

thinkphp_2...w.html

windows10-2004-x64

3

Analysis

  • max time kernel
    135s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    19/08/2024, 15:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    thinkphp_2.1_full/Examples/Blog/Tpl/default/Blog/edit1.html

  • Size

    5KB

  • MD5

    cf7d2ba41150099c212bd8ade4476ed4

  • SHA1

    9a376812e97955fae90b3adf79cc6631dd252bb5

  • SHA256

    f2f1784397e7708a4b1b8ff7d96c88ec22de150f11e08b1a003248a261e20bfe

  • SHA512

    9b6143cfa8528c1cf0c16e649276b8fca8286b4f85791de7033ecf23e9959075caca8fe86ccd9cc81186cadaa197c0426bc1602620cc54fe791937c513e5214a

  • SSDEEP

    96:xJAEKJMnHaQCPaQthZDvBsvJz/0CZ2RYnEQskagdrbxfDD3JC2UDePsev7NDIA0:4847LZVsv1kcd3chuhDZ0

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\thinkphp_2.1_full\Examples\Blog\Tpl\default\Blog\edit1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2480
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2480 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2724

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    149ca41e1c37dcff4ce88f4caa70b2db

    SHA1

    dd8d707d3c86f0607d2bbb85698d003d3f25366b

    SHA256

    b7c68802c93d9a12be42da6b4ffbd963b7648783d37b61b19b6deec1948f8a86

    SHA512

    3cc9b2e42a21daf6e0430a9815ec6ca2a5c4c8fcd147d904b7c6427a653e4cfae80a19f0581b377f15cf1a6c83aff0da4faf7c3f77bd190ad9412f9bbd97d222

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    66fee88bb0372cd0419b829a4f098ced

    SHA1

    c09b2015e646f8cdba58bb70d7e02be0de0ca94c

    SHA256

    9d03d3a9f2bf843ad759bbcf083c06d532ff339ccf7eaf4a5cbfd5f4baee6763

    SHA512

    9c9af5c8a3d781ed4ec4f25c3e1787eba2b5a6d23e18fa43758d638ec4b608baf0a6b9f4714a63c94932e94be6bed496be7609d481b785753060dca95a30d293

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    087b30ccabaa661437ac4318d3304512

    SHA1

    e2ea55b62ffd6b5669b2d76c1b334dbea90fbadc

    SHA256

    2ae1232c1585fdca4b87afc53653fed17b894c0907ba764f0776757879808845

    SHA512

    80524cea418bba5cdc4c7b13d2dfefa1531a611a860b0286403c1eb241bd389ab0688f444221934f78477738d31fbdcb8ad2ff9546aab91064d1f26fe0eb56cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a9df6a23087f50476cd4b19d0a02b0ff

    SHA1

    60af274ced96928eb2f1278c965d3845109b739f

    SHA256

    1319d5b2d1760f82702207588711a980dc9235e9362fd770c67dc06af4b103da

    SHA512

    4eaa01b57d4b306b14512cb14fc7af933e1ee507938745ad9cb7430b545e7e8dcadbb1f2e51ca81ee7ffa99ea46dbb1da6290affe7e554f0b4c76fff5e006097

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    36453fe66d8c07a842749acfe3a4739e

    SHA1

    7e11609a8773dca3b15d5b0438270721c05aeb97

    SHA256

    07cb623bd15b986581404ea365703f0a0ec0dec04c2c51ad97f6840f6e86224e

    SHA512

    6f506fa8fde1a5122969dea4345a3d3efb4c3defea412cba93a773b58c18911ee1741c6fa95e2ce6ca5218aa06b649d54df805f693ec02d49fb4f16cdd2778bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d8122407a4f987b6bc6bdd7581c37192

    SHA1

    d681043c6855c77f411c50b397440f71ef5e895a

    SHA256

    d3085b20f12b77e0734fa65600ffc5b354d6cc544811fc9eace6364e8a633803

    SHA512

    a5d500000fd61ee511a410d5a9571ba353d5c565c5685f5191a0dcc184a1592a1237f1c4ea1c25d1e54e35f898050f98066577d532d7d7422c8d35bf1892ec9a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e989f424d3143fd407adf88c2df8f55

    SHA1

    c0e1b6f819cea5c120094191838211560f61aee1

    SHA256

    67358625b1b2ecb71e9f7c341c99e265953083a24ba76f36bde88a01643575a2

    SHA512

    7202620b336320dfe69994386f5379a70c996ffdbb773f65130437d4990daa2b6edc2295bbf0adebb8e7a95837bdc2921966d6ba6ff18bcf65f324b50f13b147

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6dbd647cbc91973c9f63ee446af2e82b

    SHA1

    62ed4533888b844c44e371961214abcfb47e4929

    SHA256

    5dc9da29ef9b1d7550ecc6ed917f4bdf38fa5dc9592aca8e1816f58644dcc758

    SHA512

    2b7d600f99960b3ecfa95f4de2ea495c3dfc8d4a33986d98d29c5411d11f8069806fd8afedfffd3975e8e467eacb348c3fbedba4e01e61d0d6f5793dfa7c36ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9587b6f2bf1c3100e7e14f50c3611acf

    SHA1

    de134d20fa1d6810aabc57f7edf9528ade713e98

    SHA256

    10dc9e10342f414f176ee8ae73def47061ef9eb7d4a48e26fd29a84127d45264

    SHA512

    9cb3dc10eea79f0625b0fc5636d1e205f021c5c505ce3d7d1c6d4a79a5e46be050efa839761adfaaa31221e2e1c5cdf0d0f85fe80550da63b8d70a7a3abd3b2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f0c62c1dd72c3cec9879d55ad05d8ab3

    SHA1

    65841294878d4f72dec29d93133ac3610d20ce3a

    SHA256

    ce23eab961f444f50d2b000af388a4b63835427a087df15779e049af75194895

    SHA512

    66e96e89625874a1a08ab5f73c38cc46c9c6ee2463eba825510af41d30f653bf3279d1858b72fa4204e13cd95eba2957f0465c76c7ec51dc49be2a0c10884b65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    892fa33de64758cae35b90d04b06eb36

    SHA1

    5c68c9f9b4105e768059015add51a85151fb7696

    SHA256

    8f7d396e616b25d43ec1f18346dfe3a4832cfe5dfb758c97782b2e3c4356385e

    SHA512

    af48271c1ea971182ca37e10ecd5e1a300b863e42916102acee0625ea93d31c401a11ca607418eedccdc14f0b86781537c2d0898e492389ab13ab4f78c14fa96

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e2d8c8ddb3fb47d9787b5712e7e9ba51

    SHA1

    d004105c49eed1b61a9c6a378b8523c171e628ec

    SHA256

    072235c7c8110ef1bc779702a126202ee05e112b6964d5f6dbb44d9fe9ae85c1

    SHA512

    21abd335e1866bd09544d9a62947365dd50fc54fd524ac97b9d65a2615dab4ab4c1e691d65e0bfcb970d658c1f8dab9c0098c0cba6f81c4c6f67d4ad826d4ffa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4e74a1d1fdc3843e9bce221ffb8a9f66

    SHA1

    e4e2dc1ce943e81786a4aeb8d23108d325ecf130

    SHA256

    99776cb5a46e42fdf10d3e2740036e4e3bbae9420b5a1cfe0def6566ca847ba4

    SHA512

    0c6d10250002ae796021019026aaabf59fcedd98fec34e823cbc36cb8fd453f689d1c8b939a8a62c0a5f98853a22244f1a21e499faa289a40b84ca97d2c8b578

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    46b7c7133140f702a5fc6ade98f6461b

    SHA1

    f09cf1d0c8c2cf1d09f05ea5fe16d50a7386253d

    SHA256

    191cb169d354009ceddd27e79299cfa6874b944b84e01ec6d922c67ba1eee581

    SHA512

    38fe557f7c1f3db98c0d0db4cac59947dca882b406ca8733489f6c8dfae90752641831bb7d1ad6ba52b14cdbfcd45865ae298891e5c1245237a46e7e241d3ed0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7ba7ede45c04e4890efef067f99a876b

    SHA1

    26279bf80cc5525dfa1f1d18ee6dd7dc4bcd6e19

    SHA256

    93b273fe80900e8b639bc6b4a8b8366ec286c0cbe449e99a38f025293fee227d

    SHA512

    7beb404920596d19dd8b0fa6fa8828a90e3c99fc38887c9dd450462b0afd17e09f73572441027a0c11b75e6897882334a98a2b363f3ad51941f8df018c52beb8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    78f51d97d5fdd3904b98e49aac503f5e

    SHA1

    0841e30bc801faed708324f4380d7f31657164a3

    SHA256

    bb22c202c25a75ac957f95d4bef481ee02b9b928bce53ebfebaab3bb1da5d32e

    SHA512

    488efc5f530087d46f68a1ec2b9d15636a90a21ff4bf2dc7abfbcc712979d0066ec54405e9a8d9325827818052f4dcc0317385d1011372bdab0f319c02fb2aea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ecccb91248effe23f0f3598d061ca136

    SHA1

    5bb05092377dcbb821ac0c87b58fae7c4a35539b

    SHA256

    635235ae927f1fd1e4cdaf0fe65f790b8a6f6bc50af3e6ca2c1df42316a6f236

    SHA512

    3b24e16f4ae96e3ad2c78812779a1afcf3e003307104ae7fea626e7510882bfea205511dc3cbe06e27276a00252e6295a5c6d6cb8480a0ca93597e462766b32f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6BFD.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6CBD.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit