Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

thinkphp_2...&A.pdf

windows7-x64

3

thinkphp_2...&A.pdf

windows10-2004-x64

3

thinkphp_2...��.pdf

windows7-x64

3

thinkphp_2...��.pdf

windows10-2004-x64

3

thinkphp_2...��.pdf

windows7-x64

3

thinkphp_2...��.pdf

windows10-2004-x64

3

thinkphp_2...ʾ.pdf

windows7-x64

3

thinkphp_2...ʾ.pdf

windows10-2004-x64

3

thinkphp_2...��.pdf

windows7-x64

3

thinkphp_2...��.pdf

windows10-2004-x64

3

thinkphp_2...��.pdf

windows7-x64

3

thinkphp_2...��.pdf

windows10-2004-x64

3

thinkphp_2...��.pdf

windows7-x64

3

thinkphp_2...��.pdf

windows10-2004-x64

3

thinkphp_2...x.html

windows7-x64

3

thinkphp_2...x.html

windows10-2004-x64

3

thinkphp_2...ss.ps1

windows7-x64

3

thinkphp_2...ss.ps1

windows10-2004-x64

3

thinkphp_2...d.html

windows7-x64

3

thinkphp_2...d.html

windows10-2004-x64

3

thinkphp_2...e.html

windows7-x64

3

thinkphp_2...e.html

windows10-2004-x64

3

thinkphp_2...y.html

windows7-x64

3

thinkphp_2...y.html

windows10-2004-x64

3

thinkphp_2...t.html

windows7-x64

3

thinkphp_2...t.html

windows10-2004-x64

3

thinkphp_2...1.html

windows7-x64

3

thinkphp_2...1.html

windows10-2004-x64

3

thinkphp_2...x.html

windows7-x64

3

thinkphp_2...x.html

windows10-2004-x64

3

thinkphp_2...w.html

windows7-x64

3

thinkphp_2...w.html

windows10-2004-x64

3

Analysis

  • max time kernel
    73s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    19/08/2024, 15:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    thinkphp_2.1_full/Examples/Blog/Tpl/default/Blog/index.html

  • Size

    6KB

  • MD5

    7cb4d4d627ec7a87ced18e1e070f041f

  • SHA1

    15e65c5bf2b0ce607cc59615f53d975189e7ba7f

  • SHA256

    d1f963ee966fa977196d1610d9b44d37aca7db9a9c0b2c0ae10afa24fd997f6e

  • SHA512

    a4322a1c0ba6e78a14f7a9bd33ab51aa00e7e4ee9e1bf139be22a2cc60475bbc60ca2e68fb1090a7271fe5d9811b30ad76981178e361d33933a41d33bd90133a

  • SSDEEP

    96:1jp7lA7MekDSMUSSIxl59vIRm59JLujSqeuu4dZuwOASwDKrIXYMFEkvvJWl1JSO:1d+7MekmaxVfujxOWD1vx0

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\thinkphp_2.1_full\Examples\Blog\Tpl\default\Blog\index.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2296
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2296 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2264

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fb949781cd31e948d8f5c57162f15592

    SHA1

    e5160b084d044a5dfc1c4609c8da7d502c2c7d11

    SHA256

    a179cb57d07b98a2f86466e6e304a20e096849e3d34f2aee389aae12e264f3f2

    SHA512

    ffee773158af728d4ce53e5a2ff5a606fb541a5e5d08cdcda5eac7e95663a698461fc5d58bb3ba66021d4f3567a108d3ba24ee15083a40dd490907cc2b724cbd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    73a31a7fba1ae32bf68c406b0b336e12

    SHA1

    eb9e36193cc646e5f28951210e6137868006626e

    SHA256

    84ec97a46202322c271bebca6927f034e719c16bcd96322cd954b34798bc6f94

    SHA512

    0d3b75e4b3a67a60789cc8739db962048a5fb60d2043b6aea8fe72c835d81cf6af6c459286bc693ec6e5e478bc959fed38e559c8ceb5f39652475f08277f6b8c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e295ace5a4f1d38c4189e07c4d132af

    SHA1

    225b8b4c1614b6660d8e1a9815ec24e82127fa2d

    SHA256

    8c73af66de5e239689672f6bb4c2ee956b0b7f22dd30b8d4b5418cf7344a0340

    SHA512

    712621040cd3ff8af79e1c64967f6f9a8a1aa4cbc48c9e716fffef1c9acf7e2d11f43c820ae64887ccdf42320d847b0f43fbdead4845506cba89f900065d7d45

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0f548177630b79b26fb23443761f9607

    SHA1

    be6e82d0cc4c63234549f5ce7f1663d47f1ee339

    SHA256

    6df5b327feb8a634c09692e00bb26889e233f098e24b96c3b6f2ff9d5bd1a79a

    SHA512

    2aafd65f227a1a00e2e088aecbb794d26eb37eb8e2c10f76fc2cee7f083d7442b19b2bf2e88569f514498856ed51c70cb1bc997ac4826af5603a202d31f81c37

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e8da894e89274c43ec65022c904e662

    SHA1

    6311a56c43040985c611cf3d1a8e040d42812106

    SHA256

    ae2329f064bdd0cbdd06067637f046e71a9ef943472126821ada48a736d51ee9

    SHA512

    9362eae52696b5a4638226e659ff646d512e82eff02923b9a8a9d2efec408462e392992daff6cb7dc06d8a9e8d7d1c1fc28a4580b78975274aa595cea5450690

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0ce5797a8b2f80a06bb4d28c1a618f5d

    SHA1

    936be39446d4c70739d6cc11b87e9a3b9fe48c44

    SHA256

    320f46307733ce131992fc28ca173833c8e1af4585c2343db7c2abc7f4010ff8

    SHA512

    1f13a7e448fda6aa6b5a9be4cb0e1e0fbce2026166907eda2bf2f132144d32c86464560877809b1c218bf105da720230b73c80864c8874fd06e6976cf2ca5df8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    742b8461d225ce7515b3aeb76238c4d8

    SHA1

    af1a1951a702c4786d7cd5992b9ad941c9dbb351

    SHA256

    df48b91035e20e0d1513bfaad0a1e3d172e46981e3f1b0a940af869cc7f054c8

    SHA512

    85d78afdd1cca0ca05b0a2b4eef02e92267bdb49693a4a3bd0476e5d18d1ea6dde86ae258ffcab23e660bcf4c236d51056856d982eddce8126f23c2a5eed3b7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f96b3ea6d7ad7d79e747a4537ee71e7d

    SHA1

    3beead3acf14c252e383612dca864df5d0e6e6de

    SHA256

    9c54b6b8b4baeed27be9a3852a6943f02fbd036a41b12430b3ca98655e74be69

    SHA512

    604ef6866fc6af3f002ccc22a03f6bc332cbecc5f505908982c04a88cb184a0688b08e7335d8f8853a87dd31b5c047b3b2386157480f8d15724f6f9fc2a690bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b747af57b08f78dc436044cc16443605

    SHA1

    34cbe16218f61f8f81e19ea0b2896e16b9ff0baa

    SHA256

    1a1c64f78993c6a79a39a166e79fb9ff56ee891d80f1410ab0bb4c448fc169ee

    SHA512

    ae653f9d093b9c0d876becb6b31a85a51ba13d02869b553c4e47e17cc90507c9ebc967b1fff0ee1b96844a62f9e1ee92945865ce8eac6ceb20278b0391d7117d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c5653d7898131914baefe113f31a8215

    SHA1

    8a8fe24c9d75ec7db5f4ab8aa8a501b6bb3ae9d7

    SHA256

    a31b12810911cdab04da5ecd342f172e8eabed2c7daaec0145073a44a3133c68

    SHA512

    7a52ecd15188ab06ae71b619f937ffcd1ed20338faf01dba36f193a7f5348c63599796e14bdbf8d796fbaf4b548b448adc14b45238a213fac5c7ff7905604c0d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    055e74cec183c913a7f33ed1f26e8e01

    SHA1

    2f0632b54ff361ec53b1ce17eb337214a2163744

    SHA256

    22d434ba9afcd48d6275f872b7547fc034f0728238a2eaf7a1827e298bfff7e2

    SHA512

    7595564498c1657409316b07cad945cf6342f63cf54f3d2d4c76b513ff2e9b0af5754c577300bb4ddd77b1f0f13b741c2ed4ddd0f2d58dca5e7d1cfb374deff6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    62b8fdb8673fa75b90e2bec2e990b825

    SHA1

    517f9b369ff51f54f29f2e97b807a9ce63e6b337

    SHA256

    53066a95d096db8f3ad78bcf9c7d3350ae496a13a0a70cdd0f29c630d1f87d5f

    SHA512

    afdd4261ad9276c6bc7a98eb90e35c874ddf1cc4f2c3608a7fab9e64991af93ff147d9ba55efab2e410eb8a310c1633e03f6b94ea5dcfd19d0e55b8e34a3e8ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    97d31eb009c234645d45730ac159234b

    SHA1

    20ad4ffb6a4cf2442ea736c245821a546e510304

    SHA256

    bd254b26e28a40b76a1f32354cb63ee4f4db84514843028ca90a4a199d8b7ebd

    SHA512

    c8f4f287da23c473c866a754d289809f6d751a539cc94a19b3ad0a353a18bcdb0dc4e45a7ca4364ea85b8f76e0604674e28b1d8ee23a6d0a3e30a3b788407285

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e7f9e33a191df11c2695db5de275e99

    SHA1

    30ff162ed15fd54520e2ddf0f8464f03603c1fd4

    SHA256

    f1586869b7859fcbef7e7e45e7c64e35001f18efbb76e526efe5d1051401a79d

    SHA512

    b6a1a2cb174966bb7a5dd4caa3b21474199770f27aef823693765b7fa8a835366dfe117ebac624d6221d6b6a0c934ff86ecea2018a78959f2cd897a1b0c45fbf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a613563838d40e6605df2b1205152c5f

    SHA1

    1e9829f07beca6336bf9c8a843c883f181446e66

    SHA256

    52465efeda15451da577e7c2092f3ce778c2a36e25f453c7eb516dc35ce460db

    SHA512

    70e5ce596885f141d149aebb377fdc7f284ed224ff71b6df77fd7d9da54f556aeddac46a926341fc6d8c3e98e8712a6476d18be0d147de21358800b1730da904

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8bb0751cde1ee71f172a3dd62ead5424

    SHA1

    162b0edf5464d358091a2d6e2880aa479f189126

    SHA256

    c02c3561a15e38afed03420ab76731d5be3171b63f9298c85e3ce00bf89fc3ff

    SHA512

    22bb64ecfd4ce6a2ecac81ba9af1b6e0709d143635c570a4ca378f6582569cbf3b9a09b6ee1fbf97b1a71ed33df97d2852ee14ac90e82a286b964806051d2cbc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6c74c354787b40e21dc5bf5d80ee2dfe

    SHA1

    7fe8529e70a31f930236b3e6c3512c5e64c1ead8

    SHA256

    e6e69e49ea7d540a29952fd59e04b59d5e5b62b8a580b7f1fd4e2bf0797a2566

    SHA512

    5d54f7eed13f7327648271b339d397f6ef7385c2480ec20976ad2d506c8ee0b4f500c8082b8986f020d196cfd2812a8dc0e6e2e1110c102cea38a1d129d0c45d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab25DA.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar269A.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit