Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

1

ddfdf54b57...kes118

macos-10.15-amd64

4

Disk Image...e.html

windows7-x64

3

Disk Image...e.html

windows10-2004-x64

3

Disk Image...e.html

windows7-x64

3

Disk Image...e.html

windows10-2004-x64

3

Analysis

  • max time kernel
    71s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    13/09/2024, 07:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Disk Image/VisualRouteLite.mpkg/Contents/Resources/en.lproj/License.html

  • Size

    4KB

  • MD5

    738afc385f9d339118e0824e16f4ff4c

  • SHA1

    bd917682a1035954a80aa0cbb818a006eeb0d400

  • SHA256

    56e09a2d5d32d5d96d2a2fc0eac70664edbc0080188eb95afbbd4acfbc7c03f2

  • SHA512

    3d8bea297bc8ee6c2822e4393cea248cdca6e4f9f5f94e7ea3977176a393ba0832d62af998cf2a5160d18c508a7caf8556babc935eb1281a701e36590d9554ca

  • SSDEEP

    96:NGJ3XJnKTSds+qGlhqin1Ftx4PckEHBiSGXfT0Yvip+EyfzQlaL:Ne3ZnKmdhqUDvHBvYgPyrQY

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Users\Admin\AppData\Local\Temp\Disk Image\VisualRouteLite.mpkg\Contents\Resources\en.lproj\License.html"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3044
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3044 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2836

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dce8d55444f4fc22a47b99c9a56b4a18

    SHA1

    cee53fdb324fa0b33dd087147a639acfa6aaaded

    SHA256

    ac54d1ca330313b4eab3097e7915e009fb331308e236146bd896c7037006229d

    SHA512

    cbade7a426326728b206e0512972b0ceda2da361eae463fd0b2cb2064448c76a1ff87256645ae87b5fbf5232326c507f59ef465052f35c95a324408a8071c040

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ebfb2bac9525e9ba85d6ff9c3c7c7565

    SHA1

    0e3ac8c810e92db843eaa78ee6add734a76beb47

    SHA256

    3dea2811d1f57ba23fcf35250388b8bfed2786304550a15fea53415deedea3de

    SHA512

    0f690a38828ec23bc10748fae3a7ee8ddbb62b370ba43be48044eff661e3069bc531eb640603d022b21f4b53cbc9f2107c311814c8e6b2b7bfd725d3a814f497

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    35f87b6d9ee5c9ae5bdf90c5c5b988e7

    SHA1

    9e74e4f8819ba7417bc4fe488635eac2d7f3eae5

    SHA256

    742d96c0f336e2e7ed88ceefe8c8747ea00b2998e142ad85546a43d8b86ba157

    SHA512

    4ef5978a2a59a49ee17c5b3c25c339046a297e40f7609c64a02c1a11cc2095e7883a38dcf4551cab212abe4ebad484d28050b43b4bfe5fdfc4f41fc47df69295

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a20490d1fce317ba995e56e7481df8ec

    SHA1

    bc4aaaa6529204d0d7a79b44d53298532d50dfe9

    SHA256

    ea37dc827f97b61bca883abff529c765ebc687d14c95f6c8b47e23da51a46670

    SHA512

    7933cda63a0b05d1f08d489d9e94cebf0557132ca17c57501d1bfba5c9266974ce817aa66c3ea0b9b713cc1d7dff482c4f556946d670b5e5ddc453d569682ed1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f3cf7d2ea5194922888b2be45662299

    SHA1

    b65b6e01f51a27852bc9177547abb0135ed7966c

    SHA256

    1a67321074eb754e7a74a6c27307b5cad76cb62d6f0f7e66ac61dd849f7e41cc

    SHA512

    86d75e5044fbfcaa3a49bb548d65067097a3fb0b6db10f0edace43c1a42a686412050ba4c70155c9270d4ddf7ab0e643672a89185216e625617a11ed4df48221

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2bfb98600b82118b0eac4227aee823ce

    SHA1

    4eef5afc4ad519f5eebcc1265bd9a6216cf0bf5c

    SHA256

    e5eb93f997286dd0826ad0bcbc42190500b78a73e22b47b8ea1747e384b503c0

    SHA512

    a128cfa2b307458a5f8f7e97e1dc591538649becb6ac542a80feb519b5953735c5da5070a993ba7a0ce0aba810c2aef7de08a160a72898b0ba849e183cc10b5d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    444a19e6405023c79e975ab4f39cfdb5

    SHA1

    912b754589d49bf380a5e93c88b4ac438aae3648

    SHA256

    0626a8a4a39f060a0e849b67a871c64a84dd773d978020c7dfede69ed173a016

    SHA512

    8a7d2a082aaf8c1f6fcbda4df96b5a42f0278b7262ca4993cbeee1526810671ef67022d01676910ce3f62566d1a640a33366d64aa41d7650e7d3fe0e6bf8e857

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7488c6d83cf1fc6ec83aefbc6424c25d

    SHA1

    cdb6b1db57f93443e469443a903182eff5263860

    SHA256

    4c409274aaa2551fec6a39b1e991f8705523b7e414591f7b397d40faa54d6b6e

    SHA512

    50caeda41d4ffa28b31a7dbd5c3d221ed1e2bb3b8435e0c4ee53326d4e51dd227039dab4bfffedb3d0acf690a907ea1f564534f22f757af9b679084be35837fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1685d3603f7ace5e008b27056f14ac34

    SHA1

    553ecf0ecb22158cce45c355bf5639fa95bd7bdb

    SHA256

    f73a26305fe515850d9f88a7bde946ce7ae63e937f36140dce440bed1cff41dc

    SHA512

    120e68d7ef6bb55afefc431d1a7a94992114364f0573ec8258f62361abf990b6e050ff62a816a8702b094e26e4ffe3ce06e39a5ad15be4ab45179f23361437e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    acf92147269c815650f563b5f8885e27

    SHA1

    4ed75cf6e988bc5bc20a5cc91b7cfc76079a10ca

    SHA256

    d1d67c31f61376dd28188e9acbfdc83eaa9efa8e73c6f116345f7711dab946fb

    SHA512

    0659a4588be1949846ffb52a531b8be485c09c127e1e27a5a9dba47d82d6f490ee001b5ee71a1a5c47df76b08beefaba629c59e9e0281a7085f37e41dec9a1d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4df3addab613cf5292fe8f239b7b088a

    SHA1

    9c7f659a6e30379a905805f41429d9f1817c12be

    SHA256

    41fa920c89d2fef99077072a5aae6adf05b3b8d5bb01eeb350822e052a841402

    SHA512

    4f4baab247fc1c37edc686b5671ef47b70a71d3ba879a6b00c9dfff650ef1b41b134416ce6063715b20264a11d1a44dcab55711208dfcdef6c8e43e4f45a5128

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    63079cfbc389a1ec33cdaf8b2d192831

    SHA1

    5ae7074e47be08353bfa9380c0369a3456276030

    SHA256

    f0a7f85a609db42decf740d2bbd6bb23a4d7f2234de1c593cd990ca0e5e7e072

    SHA512

    0f558bd6baaa5a1be6abfcb543a2e69040241ea507a80e60bd8d7116a2fb4e3220a28b404276398197109867c5cc5afa7794b6c5af9520dc22f4af3121bf8071

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    069a412a5241bbcfa1c5eb58c7993350

    SHA1

    a209566d7843fb65c3375796034e1f6dec8a359a

    SHA256

    f6011c11e6b0770bf3e98535345e84484fa6a3cbc4934c4c530698211c8af749

    SHA512

    111539c7a9d3bef2a0a145e2e7620996bd1578db0521239949a421ebf901c18581fcb71f6366bf9d3483676b844ab400de56d8a5084ebd8ee87b309803b1dfdd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5b6681c918bb0eb1d414de0590f29462

    SHA1

    47ce41e8bd5dda47bc8b2ef7911a8aeb85e1893c

    SHA256

    6e8c42bb984f0c0864ab38327206488575b11d65bbb1b18465fbe0de2fc0578c

    SHA512

    9d5448c9aed856834ddd303e3f9c5d9dd02fb448d5c2b0fd21d6d52c20bc7732c8ae837f4cfd6270b014c1c48febd3ac4ceb4f05b5bcca26ec103ade5c9ce541

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f2038d6e1f7d0b1384fa711b532bd5a7

    SHA1

    df12193a353b92a78164ffbd7bd283c1c2ee63c3

    SHA256

    b4b1aaa086473cb13ada7bb888a1eaa5d59bdafe4269edf002767d20d9b8abe7

    SHA512

    9860a36f5d50425e655dc52bf957ece8cbfc824610746301bc51b935ca9b558893c625295a02a2945c05b73096bbc20f5f2818e6da1bdcc5f13e279ed4302ca4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c49b3db04761892dd7f96455d662c1c6

    SHA1

    39b45cf9e2061fe9caa8419424358638c402c709

    SHA256

    978b46ebc9420da9f78c0ac6c9583bba8b446ccb830b333dfd1862f0c5a08aa5

    SHA512

    82fb684a0cd10197e52688b5b2a28b26f87236765eeca6813a51abd7269e64f0a89078e583e6ba873bb771e3d2783f5b85527292aa715c2ba8d41244cfbf67c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3edbbb75369296dfefca2a8b2109c55f

    SHA1

    2bd89d0705ac1378c2127b9bc019b060a59825bc

    SHA256

    5f7b0be826689c494be11341425e4158562fea88147fe09a7988937467203d93

    SHA512

    4e352e41ece38a8c59aa3efad8b1358b07584b90e2ce460b2719c363b45fa34ec3800ed5776f8375f1b48bee737e8b416c5210f0aca45f6ed70efaa2cdb55a2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a81658c635f1d179cdb91be9ea546cd7

    SHA1

    1219ed0eaee501915cf1087426168253474680aa

    SHA256

    864059a830b95ee315a5f2439f3c54959cb5062988f4aa5b46be4ccc1690e928

    SHA512

    158f74734c256fe5135abfb2124f62de3ea42f32d39b87fb451c6174c0382a2814288181d97a86e5eae132c3feb0c68a0e7079f7e67face57637cdd3828312ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    93e087840c5d8227e5baaa6c8e23af4a

    SHA1

    e61161f2e54e3606ee760571d8520aa40cefdfdc

    SHA256

    87acf752e6c6c34a01b0843a552d6b425d94dc4161ff0ffee20b4781e3439758

    SHA512

    bfaa0bc8aa388e3383070e9072af37e7e38970a451e7bf82762c27ccb4911f604ce6b4fa12a46a02fb174ee5e70a68861df96cddfdb8a041621f4a97a57886b8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1317.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar13E4.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit