Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

DX TextBox...al.asp

windows7-x64

3

DX TextBox...al.asp

windows10-2004-x64

3

DX TextBox...ls.dll

windows7-x64

1

DX TextBox...ls.dll

windows10-2004-x64

1

DX TextBox...st.dll

windows7-x64

1

DX TextBox...st.dll

windows10-2004-x64

1

DX TextBox...tor.js

windows7-x64

3

DX TextBox...tor.js

windows10-2004-x64

3

DX TextBox...p.html

windows7-x64

3

DX TextBox...p.html

windows10-2004-x64

3

DX TextBox...ain.js

windows7-x64

3

DX TextBox...ain.js

windows10-2004-x64

3

DX TextBox...e.html

windows7-x64

3

DX TextBox...e.html

windows10-2004-x64

3

DX TextBox...rm.htm

windows7-x64

3

DX TextBox...rm.htm

windows10-2004-x64

3

DX TextBox...r.html

windows7-x64

3

DX TextBox...r.html

windows10-2004-x64

3

DX TextBox...r.html

windows7-x64

3

DX TextBox...r.html

windows10-2004-x64

3

DX TextBox...wf.htm

windows7-x64

3

DX TextBox...wf.htm

windows10-2004-x64

3

DX TextBox...e.html

windows7-x64

3

DX TextBox...e.html

windows10-2004-x64

3

DX TextBox...mv.htm

windows7-x64

3

DX TextBox...mv.htm

windows10-2004-x64

3

DX TextBox...st.asp

windows7-x64

3

DX TextBox...st.asp

windows10-2004-x64

3

DX TextBox...��.url

windows7-x64

1

DX TextBox...��.url

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    138s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    22/08/2024, 13:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    DX TextBox 多功能文章编辑器 v2.0(.NET控件)/dxtb/specialchar.html

  • Size

    5KB

  • MD5

    93082e4281c091ab93bb274f30300e26

  • SHA1

    9f16ac532255adf5625b039c039fa7e418a5bdbc

  • SHA256

    f47b2c3e717dcdc5f74dc46e40a30442ea65427c98188d4538f3067045d2110e

  • SHA512

    c32e9eb7449ea4cde732c2abae7164be9516693d397c6e746e4522ad986d69784c87d22f3c377a69db5679fd02c3bf346545c4eba018286f00c571db912f61c7

  • SSDEEP

    96:o7+yAQgozXfA9qBXmhTKTH7hoSon2pUgMd7hwSrn2pUgMj0wX482am:F8BXmh+TH7hoBmMd7hwMmMgm4Xam

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Users\Admin\AppData\Local\Temp\DX TextBox 多功能文章编辑器 v2.0(.NET控件)\dxtb\specialchar.html"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2564
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2564 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1936

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    68f85d10a23b2dc1d7b943558509830a

    SHA1

    f575254286e1ac13bea46f0d4be33d720c42649c

    SHA256

    60e5741d5891aac8b33f4fbe8352965d52089d15d6939276e0e2ab3be4f7240c

    SHA512

    52833029d2bf1ec0623a6f60db26de135dec244654ce529c3eb6305621bc72455a37e8f515a619b37f610d1152b41076b5e8756c4c838c057928854c3dc77d74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0fff106eb08d92ae9e693f5ca9a2d9b9

    SHA1

    9ec2efdc0acbeedb309eca317495c586e1e51c79

    SHA256

    a18837ddc317555941783be9e904333b9e5b77265db6e533523b390133fe7bd9

    SHA512

    fc75b168178df2454bb3fb0fba71496c6c736c7bf5bc39b23287486a3d8dde20d69d6249e14e57f8e2f8a7074d5581257ee2cc457f97f523baf2bde16ca225b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aad9c6fb6acfac75bbd5c815b824aa64

    SHA1

    64d031d6a1b029322df18333a2b88eb5f74095e6

    SHA256

    cf8f7bcafbc5e4824385e9bae7382ce0899f146d118b3fa96469b473ba908dbb

    SHA512

    0b2f29f3aace88a8aa90d3bc7294ce2b332242e705c6d4344f6c03a512e06a350a4147ea95d2c925b9e61055822953e1a64227b41c83a7862948c817ec8bafa0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6239eb2ee8266ea9ad34da29e1584b94

    SHA1

    d9b68369940453236105d64c34a432035f173043

    SHA256

    17fc46f07300aaa48480648057a9d5eec54e375736c7218d6bfa37d05542f03f

    SHA512

    faba132ea9fb57b8786db7123a0325fde90d1cc019a85723c71644cc2eab7eea33b691ef3fb88ba65f6e6e96667277d21cbe210fd8128c3b360bd723d0862b55

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF73D.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF7BF.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit