Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

BlowSXT/Bl...w.html

windows7-x64

3

BlowSXT/Bl...w.html

windows10-2004-x64

3

BlowSXT/misc.vbs

windows7-x64

1

BlowSXT/misc.vbs

windows10-2004-x64

1

BlowSXT/rBot.html

windows7-x64

3

BlowSXT/rBot.html

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    25/08/2024, 17:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    BlowSXT/Blow/Blow.html

  • Size

    1KB

  • MD5

    a10c97e037dda9e75c0ae3400750f2ea

  • SHA1

    3c7e63c2e4c2ee470804f3539708302a5f3abde2

  • SHA256

    0c836daef4a1b96db0f3d113bb033400930ed310c3d0869a3857b9ab39639abf

  • SHA512

    64f97a5e24561eafaa1811d3ee282ad5891d504987c4422c479967ec34896409e0b7531a971d001a31f693581368dbf62ca7364dcd754c5a34c9a7283d2ad887

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\BlowSXT\Blow\Blow.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2848
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2848 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2696

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    320ad064a20f1c0d683885eaa7a97dd8

    SHA1

    23ee2654583d2e8ba5b94788a520ef21e816375e

    SHA256

    2b73c707d41da3c34b4483af4de05345a7d39f40839155ac4cf56c5ea827868f

    SHA512

    e84f7cae36a347026c0ff30fe1e0bff8f53ba17bdfb031e80de6b4a56b92ffb6a1b5d99a5a9c457c3d5d7da85a13ba5a2ea3661102b631b3df8ace70057a6890

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3752adbdf55184500781c634eb830455

    SHA1

    1f165e1c8ac464cd2f66bd02c51a5fb718a77cd9

    SHA256

    8725091ee7b6cd339ca4c999da0e930492f1ef40f1854ef83b8c7c4a62c38f5c

    SHA512

    5104047c9ad8c7bfba1477f48a0c820a1abdaf44f98ea5b8a5abb5b2aed2d662dd845997e2a220e503f0cf81bbe720dc6dff566b03e854b6ebe1b07bc00e7722

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c7a942dd5b92be621f0f4a50f2e9b103

    SHA1

    276a7c9fcd19965862579e7b48aa18c5b37b2670

    SHA256

    2171900eadc557cf90508c7c02a0695f090f1beaa300e4ab9764a0298a114d32

    SHA512

    8a6e9d73f19bb485bf23e7c07f91f185f1615549c9397463f4dc0f51050c77fcc1cf24a620041a924e4a117140d44d19b93cc3ed461727a25145dab8036fdc60

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    764593a3e918fb0f38efe9386819f33f

    SHA1

    a7caca7149a6369f9f2180a6959ad1d5c1145b10

    SHA256

    59e857ef8a0b2d508da575e9c3800933e6cee10bd37c0f510b1182adc30789b4

    SHA512

    8f5474626d93b0a90ed9efd38989d9e7b84e2182506edfe0b6984308edb45a05f6912800e6a69fc130cb4d7a8aa639223f782d108cd1ba133f7fca75868f43cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    356174d29f7395133ec167e67a3f67f5

    SHA1

    06069e949f64bbc99d0bd46c500c7465bbfe08d2

    SHA256

    675c701fad53c0c9ee662649ff7b5ff275aea5887593aab2cc8689d2d696d06e

    SHA512

    9de0baa5d26dedf53882a6bc2653e23ace12948cf227f408129c038268523473207c0a70abe5fd8459785f9f9818cf1cc7dbddf9337f87ddca9b8fe9874b67af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eec81de5962a7a4ae7133afe7540e8d1

    SHA1

    68d48aa144c0a63f41fc8dac57c836e6a6530fd3

    SHA256

    6615c59d7af37fc1b8084463a9bc7dee68c503e85484aef1c990d4516702232d

    SHA512

    edbdea1666597ecc5963fb40bb1116c99fb6bad86f761f919eb45f372ee2ad5c6db2d45fcc64abe531ae2327fd3597ba17b262ee46abb12d9f417627c0f9fca0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    71eb04756b023bab546f3b89e8891c26

    SHA1

    0e5bfb591bfa209cca7d1872f47c88e76758b56e

    SHA256

    7ac21363d112d497a4b1e37c8aa38b8b62f3efe8552ea49d49f1cd25ab7936d6

    SHA512

    7f3debb97cb21bb7865b3360ace1f4fcf095a5995b1308f500adffb43889733bbd9cec5da9f349f71f2b10b2fc5a10afc2ea9b26e7a50df9d0f3672c9930db27

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6b254449534d1290eb3d9d36cc1ef484

    SHA1

    c3dc4e40cc7601d2e8b91f43e1b0f6aeb9658acb

    SHA256

    4927739e832d77a79f99469554e41611639cee6ebceaa4f15e922cc71fdc1d9d

    SHA512

    a57a05571150a0276ae36bafe5bd073e44e17028a9c3d218a10eb6541a1444cb63445bff2d6535e481b6913c1fd21fca8b68c1616d11a5c7ef7b4e6cc325fd54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5eb45ff07a38faef051df6974b04c830

    SHA1

    dde99580a0b907220fd208ca49a0d38130ce02f0

    SHA256

    80d160efecc809a74acd0c71242a8d53fa0ee49ac322d49997c737ac057dfbac

    SHA512

    922dd6fb179de945bb7940a0413fd945dc374e251413664b3ffc0a9a2eec5e742d243d679436d2682fb636011ab56aeada788e77dd3a32326a060d2f7710f17b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    416afc07de610550a8742bb6c992309b

    SHA1

    42ed1c6f9ad5ea9ced98f61136061ff0b4623476

    SHA256

    92b95473af8e3ccf613ae0ba3498a7f9036a5e342cfd923e4fa600e7de8b3928

    SHA512

    4395e041b403ed99091d97aab0f685781fe48c9e5253166d7a9d99fa539f139d1c4f1e1a8e20914ce5b2cdbeaa1570999a804ee422500ca76430ddae22ba447f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    38c8318b7db950313f92da9641f52c4d

    SHA1

    33071d61ed5a6d3e731f59839cb7266215c3b9ec

    SHA256

    9340f0ff9a21ae7e978a4375c627785b33d9f98dd8f61324e8efb95e89cdfcc8

    SHA512

    cc46c9c03574fb110b56e0c973dd764eef0d985c721de23801d093420e206f5f8596dc48af8e0ef7eb01e04c94d204c2238d3f9ee8e204a9f76b06879a1a36af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e2635df45a7a765885c197a4b754521

    SHA1

    7631269bee3e62a3dab5cb96091ed2c76ed4cc91

    SHA256

    4553b04ef320ee9988525dac58d3e428b7a724239849c54b62685f5eb2dbcb00

    SHA512

    1db00d61719c6bb743f5ba9dc592ac583442c60289790ac51d64ba357a7c9156185224d4fd8c9a8b3b4a4cdc8ce4b15f07b8421b1a61ab40057646dfcd6623d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    47babe40a76efce5ba9f2352766fc1a9

    SHA1

    3f92a8a82142ab07db66c819b524791a5b0f0f34

    SHA256

    29da9c7cbec8dba6cda1e450e30e2d448732314d3a05963e2f32038fae2f11c2

    SHA512

    57248c6b72f2650f7ec8edf6d0023f138a0a4148721b9f48595c02a24ff3c0594be79b3017ba4706cc4c35c1b8f42f028530d3a88a0b004cc0988d7e9c9fd96b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e8d5b08b977cf041bd2ce132ae001bd2

    SHA1

    76c449ad654dd8724b4597aa505f1241c9cc55c9

    SHA256

    d419b76e70137187535033a549540fb7d00ac15cb653e6799077d96d137a952a

    SHA512

    6ea083cd853378c7aea40ffd91314c4443cc4a10c99cbe7a51c0faa4c5168b15a4d886e6b6113c9ff7ca56dc6808c5b6c68d07fa3bb26cb4bdf0e077586ff12d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4da25b91b0d56a0b4afaf8d3e3f15eb9

    SHA1

    3cc0229121459161ab45cc75dc30c5cf57489677

    SHA256

    630d851ae8bff73d331f2307ec274c2165d0c3e6728ca67d2b3fabba32eb9b83

    SHA512

    4a996f5990da5d8c3903854b02bb537b50a4c52b4e50929265291628dc9ab48603f9bf984a07301681060d9230e37ebf4c902242973b86bb3e79f1fc3e377aba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    176cfe1ed580eec13b6fc06a25a87fd3

    SHA1

    0ac8228b6ec9af6dbe46ee5cc6e0fdffed093f1c

    SHA256

    9ff1737a42651f51f9e4cfa9d3835e2a4a194ac66fb247b9ea63ed6562db3d4c

    SHA512

    0b5899bd5e135252ee10992fa7246b7045324c1c5e6aac402f39fad63e8549b69920131f0bf5f8f35e32eea2d7a43da96346d1e8ed112e307469f44b01b068c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    abeb93508b71dc7fcb6fe759855e06e4

    SHA1

    461357829884a2ec4602d111f95a795c9b0821f4

    SHA256

    4e5d4518416a934b45bfb8c6a38f180ce026a9f4a56fb1391f288c5b456bd05c

    SHA512

    222635b3b4d9bf5796d18f079001ad4090485f62adb7dcdcfeb9adba013c6abc563a6518a199ca64f103fd3348a29607dac8aa5bb557d7504dc9efd2a28d6f47

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    78a137bb1397825a53facfca5286c626

    SHA1

    999586095573d03b588f255e9f3fbf91ab69b48a

    SHA256

    4fe5608d16f6add7adf2d8a1fc4c49c6588d4219aa4a514701da670aaa68105d

    SHA512

    e4f908322251a22846da9b84dfe15f7f6468641df6115f749cf42d0be651c84028a638c34658d91ff66910a345fc7ff43e493b4937b6610665b73656f61e2526

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab34E.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3ED.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit