Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

sample.html

windows7-x64

3

sample.html

windows10-2004-x64

3

Analysis

  • max time kernel
    141s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    09/09/2024, 18:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sample.html

  • Size

    40KB

  • MD5

    b4b99c8f2db24a19696a9b874a4d0c44

  • SHA1

    21b5db9c45d07bd61a1b388f7955ba228dc5a0ef

  • SHA256

    d3b2a1ccc7e0acb404b0c32134dd92ad610e80f6ae649f2871cf644e0b441b63

  • SHA512

    dcef06ec6e07c20d16a10bdf2ca385ef9b520deba951fee4d557770d2f4dd1aa8cd5cad25e0c408af85801c267f16d531f36739970eb3d639ef5bfc43056eb47

  • SSDEEP

    768:Sumh0OG0m+nczw4s4w8fGshBc3Z8vfvg+1YUF7jJ+GTPtiVI+CkkaBvj+3rWOiLo:SumSyCzXshgGABc3Z8vfvg+1YUF7jJ+o

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sample.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2352
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2352 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2060

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    376fd72fb32dd3f0f2b63bba7b684c0a

    SHA1

    12a5cfc2586d76b8a681088f64d24c9fdf573996

    SHA256

    412d52dbd97e479cfc8abd0922602e0aea21ad21e70e7238983fb69dd0d265ff

    SHA512

    ee29eedb019fa973a8d87c94ec686459b5e8e3b033297cfb136b60035f12ec080db23cd8e137542a730641ea5bfae281d0fea66af01b47d2f1582744e82a1836

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a9346c1bdc95204009b0a603b7bab1ed

    SHA1

    5663e5815ec0b81a41f4dd3d83a3b1a79048ba25

    SHA256

    d81d7c08d080ba813f59931f8d170304677fbe0e8a19017da8d62776a069d4d3

    SHA512

    2a70d709071f3d1bdbb7e13bb6014bc97e58fe887235b09464d3379cf95a0fe03764f167126745f4c5fdbe4617f771aba53949489b06d6a7d72dcc9b2ea52caa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9f4e6063759e1bea99d116b56da69dfe

    SHA1

    ba63b8b65b773d047d70ba1f935cb5706a45d458

    SHA256

    d869e261324e377daf24984c1ad1ee3cb72005eda685c46941b9966c2e7660ab

    SHA512

    44e4acae61228a6d408a666882ded0dad61bbe02984d37e766cf17d9e1f5c4247dbaadeee044eb7160f6f1623e11255a0ed75d69794ba6b3134f590f5ba38ae3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    70dc7c2d4a251f4a2af20936d42e39fe

    SHA1

    b4637fae05b500ec44d259ee207914bd1ec793a9

    SHA256

    937769a013e70829379c7ad6d08bdd62af18cc3bd17a3a7e78b3aee35c40e1e2

    SHA512

    1597e107e229c4eda909114ba82c1e5c1c5a937cc4b7d64f34fff04a481d88289e6af8edc3da0e504e23b15bbaf57f835f9b2bfbeb949aca8300b4160f9b0ded

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6ba9ebc30f81bde40f26d8ea77ce0221

    SHA1

    4dc1bd9db00ec4025cec287b6a0bbb17dcab800b

    SHA256

    448c30854243689ada82689b831b6e582073fa66612c3b66ad3f68ab276bfda2

    SHA512

    0dddb96842c48b7774911c841bbc1cca7b9c10408c98cfea18417cda22fba80708d8a78943f28eb317c7bb9d32a8134d79ea2cc18fe6744b15663013bfa64516

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    817f5a9dd9e79f99d324d2400101a539

    SHA1

    692fece0683afc09544b18c83ed46c7e9f340190

    SHA256

    2ea8a8ec144fe2282c10b85528f4a59435f91b4ef917afbe62f1b1a4660df0cd

    SHA512

    f190bd36e5e8ea977ff7f0a95e0518f36c404eabf8331d0c7fa08d8036fe507bf6298c18fb217fd813fa77e11ff78f75ebc5fd6a4f59b37c3e138fc796ac9a0a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bbd944a813f331dc562d527e542d7f29

    SHA1

    8a33e7b7cd0869af15becdc337769d8ed8945a5b

    SHA256

    9dca45a52fa8de9e83decd04f270d4d48f1bf2a92a9c44584caecf381e4ffbbd

    SHA512

    a04311072cf5441f8fcdaff8beebfcf10c89e23dd5a0e2291055d694b2d9254c74b942dd92b949a4ca72eca0a1b467b49a1690db04396fea42281397f529aa71

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae3bdc2afe79d4616169213fa1ba86ee

    SHA1

    0649726476d221dacfb46b1b6f11267daa4ac3b5

    SHA256

    62cf8a29ce85fa1714b8a1892640dc303f8b963b3b538e8c2dfb1f1089f892be

    SHA512

    a74f93d191c8734f97385bbc3e5943f3203f1bcb3f22b43f2cd329f7afd04365988229acd32016ae56fee0232a36bf1ba0ca6fb63ed4c617bc02b8ac48847dd9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bf4a92ffb6868efe1f18daff5cf2330f

    SHA1

    20040e85c53035a044d854554a4131e2ba16d158

    SHA256

    71368cd97f4c77e9a282615c626a3a2379bb71b87e5ec2082b48b9acb555757b

    SHA512

    84bb8ffbbf357424e9e652f0e0223009f05330a95fa48f225353aaf2b945335b52ea07caebf643e3f6aac5a08d5d71920bd0371cd139b35abd23254cda0c3f25

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1556ed4e6484cc7beef496530f6b9c5d

    SHA1

    08d83acf07dbf7bee758385152b055b1acdc8d4e

    SHA256

    26c5a9eee4ad2aceeeed72b7621f3faf521e7da7ee4a5db63308e1860f4d59b1

    SHA512

    4bd2155a47ff173e6622897b77b1dc081a807de4e014426d7289a55d71fc497de51b8c35910bc5762464d1de8337fbc637bc4af50df567f619b944d8dd83ac9a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    abfb786ef043d93d1d30f4dd0bac9f6c

    SHA1

    743bdbe9532843241e69ae27a2f132a0259f2151

    SHA256

    93e5e0aa52304bbe3ff2145b332a70df618112141b3c309c387017f9c70280a0

    SHA512

    bef9824704f3e9a9051b21824b861c4d798d4846607f351c6aed7dce614be970b44b11053467465f78dbc4562775e3bb0d1ed1afcc88fd657752bd0098d4ccf7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f389cab337a0fc94424110f74072717

    SHA1

    34e1a2c5806601c40f5e854c8eee958e69022e2b

    SHA256

    09b7a7c91f071f0f883e4e7f6c7e9908af0167f3ec6415e9e9a6364c0972fa86

    SHA512

    a7cf05b00237127a58ded913e894b0f0fb1ba8e6e8b0b4c67279705987a510117520e7cd4a8f56cf7d12a01b84f5bc7dbb7fd92e7d1455563753d137d487e995

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af727c8d158c1fefb4897bd1473727da

    SHA1

    78d2db83d8bc374014002090e23a9038e94e0721

    SHA256

    acc0f9b5ada0ca75c8514e033f2691d8d0fed58ab8d7d0218df316034e6fcf77

    SHA512

    3129a7c3be794b4e6bec40dcafc50f2b12a01d01a345bdc8716aab0a19ebc070652d86403412939e4bf3e7733abb2cc1c9e6185dc3966c48d74f88610d5f09d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    edcadf85afc8bf947696facdc0247d9d

    SHA1

    203190d6b599a537e8860fec9c506c13f9c770f9

    SHA256

    2f5f37e048b27f6a40f07858ef713adc45656e132915459dcbc06baf268c6cd4

    SHA512

    760d45a1990c043a6a5fb6c4561a6f0521e45790bcda8a790137fe982654eade51fc3885cfbcf1d690d5f5d3d471300871e3c2e5366f730dc0540ac20c88074e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0787b93ac70715afb177c6983b14dc59

    SHA1

    2b77ccfabd85c35f8b2354dca900f8c3ad88e9e3

    SHA256

    c30e5e02bdc53b4ed287ffd7d2277bfec50353f468f6049901fe315f4830f85c

    SHA512

    2fa99dd5702331f9fceb1ee0eefa8617c73eab8cf87a0d5cf4a4616a27faeb5536c1895a484ac202aa7492cfec4fae647c37ccfde373b7bb3dd4c60d231a6398

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d7733458410faa4146f93220a4eff7d3

    SHA1

    940a2c3f5498c8037084e7ad60261128bcf9fc32

    SHA256

    d451a53a35c7345b0a3c63812217db30de1af39f989ead492950df711837719e

    SHA512

    ee7e7902db2d68bf28db1bd9303e89d6fae6d8ac895e0282c1695071c47ed91e20cf75d9046086b3dd3a2cfc2f5ebf9fb62b97a73e09d606d4799e89995e3542

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f58af1fd308b1c86efdf214fb7f0cc96

    SHA1

    0a9c104d54dff012d326456a8f07174e03bcb5dc

    SHA256

    62f4a0119d8ebcb13c9b4c65c61ea82f63e845b799a4f766237aa3dfb91bd5fa

    SHA512

    01a3cd89b569afe8e06a25af62a561db097dcbefb87e20f9008d3fb2a8bea019be7fdd4e978f946a0debd44b54a893b99a038ca8d4463e3aa7180faa04a15b25

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8eb2c63d7590acd057b00d571ea634a4

    SHA1

    f5ed10d178826b8826b8b9b130a5b8965416243d

    SHA256

    77656b01f4e293642d3361c2cc8ba048933ad5d8178956ee357a8deef0119243

    SHA512

    963b30d1bf2115a3d532df0ab1ec3ae9020df4c6717f720292a8c89e1c01f2dcad9da538d06abcee999545fe6ec25380dcae1cd730b60be8619318b5102508f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a0316d5a62821a375163f4d3224888b

    SHA1

    5e5abde6af2dd5c655f584d3a61419d79e87848b

    SHA256

    de482ef04a12960ad5064711e02d40bfcb372848369b61a626efa3ee3aa5810d

    SHA512

    b0d64d6f9173abf863f726f32723566dd9e5d578858440003f5210186dd9ac161fd5d715cf739a50466e2f82e064a473f4096165e542c6cdc95371361c8c8d3c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA7D4.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarAAF4.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit