Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
121s -
max time network
134s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
07/09/2024, 22:47
General
-
Target
海天在线.Net论坛系统 v1.0 正式版/Sqlcommand_help.htm
-
Size
3KB
-
MD5
badaf2eeef82032dc845b8b66fdaf391
-
SHA1
1888b24154cf80127c543ac5a6e2033658f999fa
-
SHA256
87e55bee9c2c08411838de64dd218c657e57cc5723a74065dae72da0232e495f
-
SHA512
5099fd9c78189f8e8d77a2b78533f38ce75b75563aed0d8ac1e29ae8b08dcef41b516b86057e83f649e31684c42adfbc497b57ea8588e567f2269b716290d0f2
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Modifies Internet Explorer settings 1 TTPs 41 IoCs
-
Suspicious use of FindShellTrayWindow 1 IoCs
-
Suspicious use of SetWindowsHookEx 6 IoCs
-
Suspicious use of WriteProcessMemory 4 IoCs
Processes
-
C:\Program Files\Internet Explorer\iexplore.exe"C:\Program Files\Internet Explorer\iexplore.exe" "C:\Users\Admin\AppData\Local\Temp\海天在线.Net论坛系统 v1.0 正式版\Sqlcommand_help.htm"1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2368 CREDAT:275457 /prefetch:22⤵
- System Location Discovery: System Language Discovery
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
-
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
342B
MD5bc63c6ab161b7fc1120b7009c819107b
SHA1362d4a12228d256ff3e1504e7f3f42f9c0c7e1bf
SHA2564e2be7658ca8b2825132f247783376f98a8c3f5ea888b1a52f74037595f87644
SHA512be7d368e74a13435bb45c4aff5c4354f4763c047d500caacede8c7d2ac80430f749c3c493a7c1f89af21397f4453fafb2b921269614e57664920ececaa857f4a
-
Filesize
342B
MD557fddd73afc2f6a62a02b8b34b4a0c0a
SHA10aa10a3dab87163971ce43c22a67085eb4181fc5
SHA25640bcb6ca9bc59dd997d76307888a3c866406e0239b9e53815c903b7aade8c12e
SHA512af2665e6fcbb65323e3fe1f4558ac860f364ba9c5c2ebdbf27ca860c16018ad37de76200ab9946200c4796c832a8d5cfc0316b338add1efb1639845b1337fa99
-
Filesize
342B
MD590af3520ecbd62244ce1a305937c94fc
SHA1c43f3cb2ba966bbecd147b94d798a7de050e1f60
SHA2560fbce44d001b1da2a439c02a09e30bfd8192e8933809e57a999424ad7713413a
SHA512ae58585d87b7e1b0a98e0b9fd06d2daef01fb09ab7439cba063c3c855d8e763b9175ef3dd3323f7cd59ea492a0eafd27ef9b318e322111249457ac3f98038e7f
-
Filesize
342B
MD5333357152be1146e24c2591ec911a6f9
SHA10420a576e99e6778b832c8b32d88f7b82e86a3af
SHA25606da0ba0151bfb90e5f1abf42e9e90af4d6edd527696523610b654ca21c34371
SHA512288aa8d0edbe673c419ab30ca280f352f9f73717ca01ef40bc50d1ffcf97d31bcf6c6be227aa5862ef27d56087d057667e54834ccc205ce3357554ca09b7f49b
-
Filesize
342B
MD5ffdadba2ba45bff8a5ee36bb4ee3b11e
SHA15a704bccae28404253eb83d4356646f945fb5722
SHA256b037bf9821ce90175354bc45f00f05df5119288d7d70fd5045b9caef3c8acb44
SHA512c2e984e48b0575318814ab43db491c9900dc03913b96a072f6801e96aca4e3e7131d2ddb4ba1c052f963142eeecb81bc3cdbd8aa22e3d9457f4669d46bb21c45
-
Filesize
342B
MD5b93cd876d9858b995e91ed29b5629117
SHA118dfe14b98f9d242d945ca646b439e23d88d2423
SHA2567d1327ff8dea350d5e09fd3510ddaea8ecee0c9c108076cea0ad4361c57bc011
SHA5123e41cc8b51b9a367005c4b9abda88a13eea9870e0a6ba944a82a70b306ec334ceef531573206f551bddc479e7b2065a6fbe67cdf4e194a378f0deebd8353ebb3
-
Filesize
342B
MD5459c0c231558f2b3f693f0e3ee449972
SHA11069544de9011aea2d0b985c8e80db3aa7cce8f5
SHA256d5529e7712c1cdc2086bdccb3694beeddda3d3bce9807d4131bebe842846f1c7
SHA512d1ae648ea525e6b836194d8012433fb9202b6b4a5536de320f85e06f2380c64bd01f86ff347a8afd28bb3265fde7aaef0823a20bf62657b31cd01fe40ca54c36
-
Filesize
342B
MD528b5777fa7b8a024911d62ffcef14cf6
SHA1c6e7cbe6a99f5e4d3cad5eb59e4a8c69c31ac54e
SHA256b5b5c8ce36e3be9b80e6a92a7bd07f87fe7413f67d20aa3d8b21d70cccd2a359
SHA5121319004accbe8962685f3a98fb206c2567a8ba2b2c3b3b4381c7a40b8327860d65b0d1f46820e1ad5f414bce5ba42be3af163d04dc8464b80749b5bdcd1a1991
-
Filesize
342B
MD54bc1081e970776491ddda5cbf5d9475a
SHA1c361dbb9d688c398d5a49b27d99f68db6708d19d
SHA2566634d159a4ed13556f17d1556104ee3cff9d05271a57a6ac663f024cc47d9146
SHA5125d1d477e6a0a2a34e18d7598e32010c87afb75b055a307aa94ca8cd56710c2776837a41efcf33f1f64f5cfb2d9c0b141e3eb41965c4d59dc625649ca27ea7b74
-
Filesize
342B
MD597e60e8f84cef738ad245ec67c441126
SHA1400936b0b687d4090baf64b73107435e5fb995c3
SHA256a90752c5daf6e6e65cda610e87ebd824b6b51c78df25d62ef6d20d0a2520b341
SHA512c2fee412dfbb5edb018f516338d04e218017fb30d71f0c232de6822656fa5b91b081dd03e1b7f84229b822213ca3922bfbf6c47b3186fcc73d16f3fca9689c3c
-
Filesize
342B
MD528f8ee9c8a3d840ea0bada225a9dff2e
SHA1be188b13f5d7c59087e20665a855983ff1423126
SHA25686aeb6875e6524921aaf3e42b2f8646774578be4da02fc0d351002e1eb23e017
SHA512d31997c8d0e3044c8be949727ebe6e3cdd2e2cf331d6bc95c77399495af7113df7460f3edd2cd4384d45968af98cd4250ee77d407295cd6063359506b5e0ced7
-
Filesize
342B
MD573b75403b9b6d635fb4f7d43017d0481
SHA19402af95d243dae1f819e1929b6371d738d5341b
SHA25626c2fd798e0b30f430b432595ff407c081d38b90e99ae6a493248dd18c1441ff
SHA512cd99f789d164cad036b85f0050a1b45a2c599190d9eec9c0c059c0bf6c17cc3b999c545d1057362f05bf00ad2f9158060c0ac08a0d68f0c096f99105e5a1965d
-
Filesize
342B
MD56482da675b52c8efefef86df46af45d2
SHA16a72674622c98891290e853c111c9ae70f929f52
SHA25652a7600e9bc35ff21df263112a7fc68f683e554c786792da3ea2f0bf03016b2a
SHA512ea74b6ef3e3265bdb38e5b0266b7ae2537a3bfc04a5e3cfb0e621c7dd2e09d6d33a8b15b9778daad66e3569de63c0ef6107837504875082f99c4c73aec3d8119
-
Filesize
342B
MD56cb6a49f1b0227c271675dda15222794
SHA178f6b9634a543e83de4216fde25d9e8ad4fb8973
SHA2562f091837cffb9941e01781e39ef7b87c3298b2115bc695b64e7f24bac0b44f0b
SHA512b24fe96dfd89256171e21928906685dd039ae932cd23c2a3ce28068b5395548fb7410385ea6b58691301ef545c08c9b320eefbba13f3d6c7abba8ed66f10fb7f
-
Filesize
342B
MD501e0dd661aa1c921d6e56e3ca612821d
SHA1fe55e281592ef8a2bbe52e110e6aa1ededa7e3e7
SHA256c00ad83a245b7a29446aa1824bf464fa5299cb162b2079069bf4e950e9ef7523
SHA5129ec86bd3d14e0891867f3e767335c50db529ffe7747e793e5780409122d1f4a5f9111f44cf3ea85aefc43d554241dfaf9a074dcce6873f275c8bc8bfc6184523
-
Filesize
342B
MD56d74d60263c82df4c50333bc8684af61
SHA1275f9f4d59d60fed5c0bf8de26c00a01464bda17
SHA256bd8664e3becae8befa38672662ce2397ee644ed672128fc182046ed0982618da
SHA5121e5d2b98eeed02fc7aeeb7f68edff8b9f661a7b6428e10afb3975cfcb5b9160d2363007dbf16efbef8504d54a00244777bf3e3e39e9bc2ab844e993f229e1fa2
-
Filesize
342B
MD50f0a93e033fb6fbb5d03d999c256fd84
SHA17c94485811189a5f12f32bf9b8d7a430018f5589
SHA2566350ddd0e5a18553f831d64d5ec69a5cd8c63a3f8fdd1e32083375909c7babee
SHA5123e74fd2a6c1db1bef424749531bd71dcaa909b8d67f164d2d594e154dd043e31126f31588c44345b1accbd0d361fe77f8b19fb470eff6ee53f17eee4331caa4a
-
Filesize
342B
MD57b5527e7a6818d10ede0a962c00bc4c3
SHA1387899738fdcf6a9bc332e401c09e19f4452818c
SHA25693d1fb0bbc5f651d4db9a216707bca26822a49bb6f82f924b11efbbc4e305a87
SHA5121e12f84046d424c99eaa263e06f49fdd502719587855db2e9bf0ba9a8229e173eedad2494d01662664049de7635c7f7f41fc6a0ea451f49f8e15671094fb6441
-
Filesize
342B
MD5a84ac905a2f07f8344518688990dc298
SHA19459b92575b5c6101fbaaabc06af86d4e09763d2
SHA256de3e754ebc58d6c9065f56973de4b036743b331315d329a332ebabe642a945d5
SHA512978e7c6ef19394b3595de16c255d6e31b03d8fac3f9fc59bdb84266c2c2badc0a4c4458d89fd70f431dbd997b48526f84ed2a16c89e41ede2c600deec20d3624
-
Filesize
70KB
MD549aebf8cbd62d92ac215b2923fb1b9f5
SHA11723be06719828dda65ad804298d0431f6aff976
SHA256b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f
SHA512bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b
-
Filesize
181KB
MD54ea6026cf93ec6338144661bf1202cd1
SHA1a1dec9044f750ad887935a01430bf49322fbdcb7
SHA2568efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8
SHA5126c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b