Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

dbbaae6190...18.exe

windows7-x64

7

dbbaae6190...18.exe

windows10-2004-x64

7

$PLUGINSDI...sh.dll

windows7-x64

3

$PLUGINSDI...sh.dll

windows10-2004-x64

3

$PLUGINSDI...ge.dll

windows7-x64

3

$PLUGINSDI...ge.dll

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...fo.dll

windows7-x64

3

$PLUGINSDI...fo.dll

windows10-2004-x64

3

$WINDIR/ls...py.cmd

windows7-x64

1

$WINDIR/ls...py.cmd

windows10-2004-x64

1

LingvoSoft...ar.chm

windows7-x64

1

LingvoSoft...ar.chm

windows10-2004-x64

1

LingvoSoft...fo.chm

windows7-x64

1

LingvoSoft...fo.chm

windows10-2004-x64

1

LingvoSoft...lp.chm

windows7-x64

1

LingvoSoft...lp.chm

windows10-2004-x64

1

LingvoSoft...te.url

windows7-x64

1

LingvoSoft...te.url

windows10-2004-x64

1

LingvoSoft...ll.exe

windows7-x64

7

LingvoSoft...ll.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

00lsFRAR.html

windows7-x64

3

00lsFRAR.html

windows10-2004-x64

3

LD069D~1.html

windows7-x64

3

LD069D~1.html

windows10-2004-x64

3

LD13C4~1.html

windows7-x64

3

LD13C4~1.html

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    12/09/2024, 03:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00lsFRAR.html

  • Size

    18KB

  • MD5

    739c8094c4eb18d7857d105ea9647982

  • SHA1

    dfd744a52bec64cc506fa558110b6ea8e4a01b32

  • SHA256

    24ee04778f4303c0c4a5f1fd42d58b3a5e5088fe0f0219f95b17530ec3d0ac57

  • SHA512

    28c87fab3c6c906e3cb195cbaf93b0932e78573364a9cd338f7bace790d457e2b55bde9e0a929a4c06a65f5ef78e840b13ef3509adc4c1c8470b5614990ab824

  • SSDEEP

    384:cNLnsh2Yf/5HVMZoqlSPaqO6FPDk8h7fORpE00L8+wOZ1ZqcxnHsG5sMk5fj5l6v:dquVTO+r7HUl6gYQcR

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\00lsFRAR.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3048
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3048 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2592

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee28238049f09fa3ab6a20972f29776e

    SHA1

    bb4a5c7b2186109bb64d0a745d3ed795da85310d

    SHA256

    2e9d2549043661c1816bbcbbd2023933c6ee76624ab6005b15092e0d3e10d9f9

    SHA512

    2262fba4869e1434be295bd019304f5ad4459a8af48ae193ee9205c5e462caefb9c9d815ebcb8242d4c7465b2b488319c151c3b275d50fc5f85c73bf73a742a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7f91d31ab9cd2a3c455b49802498dea7

    SHA1

    b1795ede3373ce996caab4014004daf2b19fefd5

    SHA256

    8b0f036eb73022637bc88f9bdc6d36afa1bdb7478c2db80e9e4abfee224eb572

    SHA512

    2fcba553a3c6bbf1bb4495fb010ee70b57cebfb01ab68d72733f0d6416cdef958be82a837be4da9c1baf9a6d89144fbe6b58ea13ebf9d84e3aae6345ab915b64

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a3c67fe0c11778444785df5f26db4504

    SHA1

    084d1946ea034a6acf37eb3ebb4e55c1cb6e11c7

    SHA256

    671319b5a9283744dca6896888736ffa95feaddd47fecab87104e9fe002c454b

    SHA512

    672338ba2759a8defaa824b480b7f95e697ef93568770e2fe2841fc026b92ebd93d75f3f161b693e19a03e0aa295bcb459b17350a62b2d3185ab36e03fba093c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    91d43adac4293c7200a50b708c53ba81

    SHA1

    9705103404710718532bb31e4e4af2dc5e7bfaf7

    SHA256

    5f97725bb1606b0a749c339bd85d2bc8d2de573d3929a02353d7dea9813d5ecf

    SHA512

    515c0befdbcdf812d9e207ed0c351a6e1c158cc058e5079bbebce5b73e0a4e53a753a751d1ab7197905842e8320c5b60dfd8c19757af91e7bf0bf2db8b9b93ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ad59eb1a057bb8d38cf8034e257cf55b

    SHA1

    168f24380fcaa20398c8f77bba7c5dc56abf814f

    SHA256

    e436b667008353907062f5884502d0a0f7b64f46897de80aa97c202f5a0615ff

    SHA512

    da8f218dba305b8bf5bc5772cc7b3e7f1b71b1d10ce2f7cd149a64963710e988020db7bdfbe032696b92149860b3e5f64cc2f1b3e3eeafb713622b2f1b2811e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a0cc47d23dc2f067a297b04d527e8c3

    SHA1

    d27808632b56918a13267b026425f9def8d6e5cb

    SHA256

    cfbbb7c3a4457e15253a5be3e56ae7ea81f113e61f6c4585b1d50a45480ae83f

    SHA512

    7ff271480aa823aab6693338fbb2819ae400a6d97264ba10bb17dfc1c5cdc390d353f79ba6552f6e3eb86ef2904d99f31cdb0b2c6873a8be4730fe417428928a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    33d29ea644f5e31d454e2c64ae0915a8

    SHA1

    32c89f4f97cd6a97c49494bd16b31c148aedf125

    SHA256

    e656c66c21d1fce1bc52553d176f46c465820f578e19d7c794b8aaa9f23d3330

    SHA512

    6ff09e7fd367d9a46ab7c58a5009bfc6f0912d976508545ff383eaa12e6e91c0770255eb0ac7e034ed599f4e99347b4e69b3c86dec586dbf19ac789e3cf2d1a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90dec69eac757052c27b867a9dd12d12

    SHA1

    5ea85423ec552f04e5b3a4282d2e67e4b1197275

    SHA256

    46089976d24b182fad657fae8c5593d15939531808e93961da120738c12e28e5

    SHA512

    86823ed7b6c0a7a29235bcc0a9d933352d78af677a9c80d17ae6a03d720dc3502fe3234f605e44bd41d92134faebfe412f92a495105fc36c591c1d46ffc8e646

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bf8b5b19d36d2f4d6166ff051cf8e857

    SHA1

    7b18b046815b135565c30bf5acf13ab8ec486054

    SHA256

    5ef804ffea535c40a189be437fd681b60e21e8da0de1640ecf6170d82d1085aa

    SHA512

    c135893af95e7f136ead1187b7bbb47ac5d70d40bc0d6432d5fbe39bdd83413b177bfe638becbee5075769371ab0df93320ade64a07a1497305f78a76cf869f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f28be8a875f1dcf1cf32119a6b07e15d

    SHA1

    fefae8110a6cb66f88876e3d3e90d5decc5c5650

    SHA256

    440d170b8755079adb47e9d94be1095ecd7e16ccce3f488c7f0982f57de8848e

    SHA512

    6e626fd8d7b2b45fc9c2c9aa2b378171f31610b096ef0827fa2bc38beba92b3cad2a183163dd92b00fb588b8d401bdf410b59fd45f1f6905a95fcd7ebfbc2a71

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c9c2803b14c8bd78f2036f89f1f13a06

    SHA1

    f90979b86ac203cb089c637e4133ad10d8b9409c

    SHA256

    8dde0e3e8ad1ec19f08f4af256dec37d60c3e18a9abe132935b87cb148f77fed

    SHA512

    b94d0f6e196d7e885ead87d7c81de0fe91ffdc06a9bc98b06732a242811647b44bb955406eb48f7be6e33d67952ee139cc0a2b294a338a5d3d4ad84741900c9a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    243d062e1a1f4bd079c7afcf1d71b4bd

    SHA1

    39f4d2ce6f6e92c4f237648a7db0eccbf98678f3

    SHA256

    2f671162ce1d4e1a58d78eebccd80bacfd2e819e0ff59f790bf252dcbda78f2b

    SHA512

    306014fd8cae64a2cef66d1935c80b6e698cacfdf4ef1624303c084f02a75544b0f410134f149e3d35c843e7e6dec6549bac84146a69a05cb635e4223e6aee4d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a0ec463a434e2d5bc460dea9778ecc3a

    SHA1

    1d53f85033684cfed77beeacb8cf9ab7eda55d51

    SHA256

    88fe92b0f240723955478bd24d738c76f36228ad15e7790901263e57b511d98a

    SHA512

    20f267a67e3cf86faaf1b9f77ea0a41860e432c2ca656da3673124a7cd3e50ad4a5abf0cccce7f283bd84f0d5f51c25d023eb6da493ba422c88069bbd6aeb10e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52f68d607bd71be0e78a7b675765907d

    SHA1

    45a200d4343e3febbcfc4bd45f4fa50645c1eaa5

    SHA256

    92081b96a97262de68ea36da8c11a1b4b4c170232cbe8fc96426129fdbfe9bf7

    SHA512

    1f35865b1f1bce1adf052c2bdb3590cf7b55b6c3f5b474da1219c657a3e9614a7b0b1875eea257bea15303430e7becfa3c8e13a41a6366195628e877cd03e854

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1436292b1e0873d33fd7a4ce50082529

    SHA1

    58842f5371347bb592812c2235e7ed524302640d

    SHA256

    56b2c3d8fb1d6f1ff2013043ca1b57b77d933dc7068f98c718bd0efe3a4cdb0d

    SHA512

    0606e11719eed4f85522e7db83ba6d8d63a22f6b711af7342f4bee01fee36a6668731d7ac04d80f6e74f43971b6e9502a0408bc2d967ff4591cf84b2ce349335

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ad21274baa0d239216fb584c220b632a

    SHA1

    d66eef6ac422138888c081925caea622996bb340

    SHA256

    35831c721f41e8f9469c06aa077627b59c9a8c3041ff6028a0ede6758b2dc53a

    SHA512

    0cc564336e2f65caea40a4423dc2e8f58c228e6d8c66bdc9377eaf21be47ea7a2d7823508029fc8a8612c4d1bf00eb417f541808df1619cb0274168ed4cca16e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    01546d21b8a13d675b2fc4c5cccf8629

    SHA1

    a960df908de2d653273d54cf37fa6c5dfe14de50

    SHA256

    7f5cdc6a4b633701fb3dee161c249fafe0473a5ddbd24a3b5c3aea8f482e811e

    SHA512

    5b8ce9898bc3c3a0576d229443e590ba94d653585138647b1e05183ba713c6dcfbfa773078ab56f63437daf8e625b4633eb29370e20ad9343d75008afb2af517

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f0ad90c9cbfd0c63500314828e35cdc6

    SHA1

    96cf64fc7f2abf1886d4aec76a136a5583d355b5

    SHA256

    00ef3cf2d1e5c3f6642f390256d00da932f0e3d2aa4510c9ba99f1b5c99d3033

    SHA512

    c7a635e7925322a9e1e1b57ea4c12a2fc2355350476e7b430a1659850db65684f8c110ac7608af5b48493bbe5a22b7cc4f5a24e91fccef62405aa831f2cbeef4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    269b81a23695800d53b562cff973d531

    SHA1

    06c4734e0565409f17542e0a60de1a5d16ebdcdb

    SHA256

    348e5eb50d94e7eb7f1a3bdb798500b7417a824347a623bd1939aa0226bc365a

    SHA512

    20d1fdb104d236caa838d2d0159578096797296b0e15af3ef6d3bcab1db09c6f9ce46ab07721bbe853905ec345c280a42cfc02ffa318717cbd8a3ede7b7aba5f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD8C4.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD974.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit