Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

alert.html

windows7-x64

3

alert.html

windows10-2004-x64

3

bidvertizer.html

windows7-x64

3

bidvertizer.html

windows10-2004-x64

3

code/advertising.js

windows7-x64

3

code/advertising.js

windows10-2004-x64

3

code/alert.js

windows7-x64

3

code/alert.js

windows10-2004-x64

3

code/animation.js

windows7-x64

3

code/animation.js

windows10-2004-x64

3

code/flyout.js

windows7-x64

3

code/flyout.js

windows10-2004-x64

3

code/gadget.js

windows7-x64

3

code/gadget.js

windows10-2004-x64

3

code/heart_menu.js

windows7-x64

3

code/heart_menu.js

windows10-2004-x64

3

code/settings.js

windows7-x64

3

code/settings.js

windows10-2004-x64

3

code/update.js

windows7-x64

3

code/update.js

windows10-2004-x64

3

code/utils.js

windows7-x64

3

code/utils.js

windows10-2004-x64

3

gadget.html

windows7-x64

3

gadget.html

windows10-2004-x64

3

gadget32.dll

windows7-x64

7

gadget32.dll

windows10-2004-x64

7

gadget64.dll

windows7-x64

7

gadget64.dll

windows10-2004-x64

7

index2.html

windows7-x64

3

index2.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    14/09/2024, 14:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    alert.html

  • Size

    1KB

  • MD5

    7c0b11a89b3495515da8f575c1274ad1

  • SHA1

    b22650b073b7928e01d2881a6ae0c8fc6ec8c4ff

  • SHA256

    e5d8f17cf1ae6bcc7fb8ea1dc761f98e3cbff2f3f81655e1e3fb827ab2d8b93f

  • SHA512

    5cacea6c9fd0d8c87b96aa5cf2c4626e3de4fd845415b1cacba2f2a780db1d3c48cc1ba7122a3ee58e3271692fdc348db2fc36543facf9756b85f32df3aa8e8b

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\alert.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1732
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1732 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2336

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1391e4593a597b7acac985658eaffd5c

    SHA1

    28a4e9159d70790a4a0b06279e41dcd629005c36

    SHA256

    6a345366875dbe189731064713eb1237cbefd6eaa2305e08f389a34a76a67a7c

    SHA512

    11a8e2889cd06c3d8cc3948a256e973e53370b39a08a110719a031ffda4b0d2e491b98d35b5b72c01abf623a6c053d02bba742f6bd0558f576ff6b4753aa6fa8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cca3015126d3174008f4bda81ae27e6e

    SHA1

    caf16bf6af899a9ef65dd418f45a4b1f822075d1

    SHA256

    d68943ab862d9b4b0159b2f299ba9fb54b6dba363fcb7e9e43558fc2d1df3e52

    SHA512

    f40373f5c250b3bb2f1bd883afad0f69eed37dd674f3885b079e94c7f8920397259ff9fcb51933d58918662065aee4a6d4c73c024857c67c831e41541fb9fe7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    461233a29b962cc2981a0b98aac534b7

    SHA1

    3ee414960cf5b68327fdd5f9d1fa49f99c83b6ac

    SHA256

    02f45e1a5e58650095c29d128ce69a820e3583afe6c238beb933e0b12f74ca58

    SHA512

    7cd0852ad0ad8584971a9b7b44064fe729f6c4a3adef4cc42a35cea7ab091ef3ade0f4ff42baf8c02d7991e982b9d83beb551ebb36e13ff08c32e6409bef4384

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    27147b55ff76fad689b11f3397d0479e

    SHA1

    a51e66f01742faddb04531957571b94fc77f73ec

    SHA256

    b31ecd37f017f264c454a7842c04fcf604bd1a5329557834aa4e00987a529e77

    SHA512

    38c01dc115b95277b50b3e48e12bb17cda631ae94c29b52bf522713ec723af51915e04176c258f32f28783102c6fe43db205c38715efc334a66f55c9f0ddf6d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1ec39ff257e0b6de5eed4467e437d1bb

    SHA1

    b78622bfe054951e839077c6acc838501b21ff4b

    SHA256

    0e1b8cb8969f7b7d9e9665873493cd6f5b2aa4ea07412d91752a3422ee7a173a

    SHA512

    11688c83ccebcb2620b3e4ba7e943018a12dedbff9d0fc2dfb4aee541c6f11e56b2e69c0b64c8ca1ac28e60af006cf9d24f0f941bc58c7152835d6bb27f3aead

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3884c4f1eadda96abbd3fc4a1927bbf3

    SHA1

    349417196b3f7aaca24c31b6ad76b083e7d8e8be

    SHA256

    4d5c3aac754485686aa9c0fa48572a3b33b5e692b61a5e7da225cf38676120d9

    SHA512

    9f45917bf18a77c3cf9ff5f1eec4dc88a611a7b42d513a845d00b6d5ae7cfbfec7b28bb23b48f43f1dd35e4aca38af5927fd6169935fc1db4fbd48af276bacb1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    74c61ddf7f01e4d6f0068710998af221

    SHA1

    2acb408bbcf275e0d960325366b295db5cdbaff9

    SHA256

    42b74456aea40594c8a6b452481374bc62bf33ad3b940cda6459e8bbf7c7a467

    SHA512

    4dc2e40eba90c179e03eca8c8296233fdaf1e1f8681c0ef7139329792ebe3de0b527415e8a9accced670b7ba2f82e74de8bf014698bb36069b1eacd4c0e5ec60

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eb0ad0e54ae31a4b956553caadb18757

    SHA1

    db5d662b14e4b713129c4603400b7f00e5a01241

    SHA256

    5c374c5b6ca1d6f7bfd98deb1084cfae5f65dc3e7e83e27285b7391b80156888

    SHA512

    e205fc21e4aa0efcd12c3462d40c1785cf908a66a0bec13f9e0fef34945b0fa7d8dfafbbb0f0d431c4a90848b8ecdb87d757fe82dffc3ba537861a775bbc954f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f79eb1d50fd5bf1a1080da2f5a1e271c

    SHA1

    0271b90a016f0c38429b2880826788905b1699c3

    SHA256

    77a3c57c90e7f7ee630912258cfab22e83ab0c170bc0c4601cb84264605f40c7

    SHA512

    fb026356162ce6f69460950c7ae07084c9437b22ea72caae95f758c268464db4d895e03b522abc7d6e5d9ffbba3c03e1d7f5034ddc44c5f2141e13d281839cd9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    113fa8e3ec9830984f7bb8c927f7fbf1

    SHA1

    80b00ef26f28b3dee04bfab8deed3b812f9ece45

    SHA256

    5904acca98c92a7a29ecd1a7b8c1294f1e0f42c87233a2c704539e386dfcf5ae

    SHA512

    8d4aff6c04c657508e0dce0765c36f46733cabb07fb97e6ccdf6c39c6e81d04054e5ca3fd8d10d184f7d16da008c81aa7f1c8c2b87cb5d6fea1a4989af9805ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    84f62ca26ea2ba0a9daeaad1ab144010

    SHA1

    ab9271a96c7ccf67ccd9f0830e936182ab7f3184

    SHA256

    aa43771afd90c6d4687dc8a6fe7adbd190c2401f4267e49658c43ad47b1c8c1b

    SHA512

    0943666e60852f4923c6ab76e58a0544550c8d2bdd1e6d15f7742435053be2767dd4c9e4be8ab439340c93510643586437d36adf8f447d0e8cef297e3b19eb01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2dbf55eb8a135619b506be91b2b47ce4

    SHA1

    ca0c5b4ad8e26e90026b6318282185d764bd1772

    SHA256

    04a3ce4bc9346d24560a7957023b0ff9f60c13d89b3da3d0b27854b4b018d7ae

    SHA512

    60d50bb31570cd8c1f4c7beca88a5935054e9b7f0c51cede136368d6090e3fbdc3fb63569fcecd6602bb7866152f4c6ff4de0573dd5b641ab72fb356a4b0dfcc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e6e762f77ca9eb38d46e6c0b1d1f28a

    SHA1

    83f0d609293f63505b2dfa5b58fa54a4d57bb9b7

    SHA256

    25f17e7d2718821fd598b90defe8ef45d543ddad248cba74307e457b1546baa8

    SHA512

    017d9e65f55b9991e2d164f665eeb0cdc2e39d28cffb2531a02a245b9e832ae752222ca347d67b91afc40a8db2391fe6ac7dfc7d8cce4fc6f2affc8b5d9a5a47

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    44885e4acfb78b63e7b29be151be9264

    SHA1

    0b5474694cacd59b49e04e5359e5b7f4a9c241f3

    SHA256

    e1c6e405148b286089eaee06acbc13824bfb8e72d3b9c22cab393d2a7ead5d65

    SHA512

    5ae841baae2095169e3ebc125abf80183e302ed21358cac8e6318d3c53f282039d0123ebdf1326ba2f61eac1e8ccdf83f0a7aaf3fff3690084ff350a53305b73

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    441929e569c8ea77f9e1a08063f99db8

    SHA1

    97ac9c87e68dc7e55e964604a7ef8868fd6c0eb0

    SHA256

    5320be2b8d0308928e96aa08383ae1d4015989437e8a3b1e7532338521f3cbfc

    SHA512

    cebbab0679e3112e670d113d85124c5f5a59fa867e078c7bf90b530d61d11ffd15fbb9f4e7d26ba64a9ee1d0264ffc0da5870555c9bd94a72a4c5a1499b6c805

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    036bab13c974aeac4e2cb7e3efeb43a7

    SHA1

    226bed893d182e6b5a957890d9ea9bdcb167b163

    SHA256

    d8c78d66f90a84dc69e163b5022be1a445dfcca6993e8a99af8df964bdb9aa28

    SHA512

    257a9d28d2be71c29dfd72a685a73c2dd2a9a5d2555e157b4b2845697282daffd4d9de4da8db56394836dca9e057723870dc989b80e88bbcdbecf991b82aa40e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    507ca281c21fffed45d3f653b53dcfd0

    SHA1

    ae0b1b4ec607836187853f888cbb9079a313bc43

    SHA256

    30d181ec534cf0eabbc639f3538aa1402a9df5083a583a4df3c2b2f43d1851d0

    SHA512

    109103c82b237885ea3446bb2ec1dc535cf358f34ac55dedfdcaecb02bae3353af7e707caf3acda5c3d1a6d775b7b48546297b2737817b955c9be1c4ccc736f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2362c60a4bf5be87776d2eb6340468f0

    SHA1

    04270e6b538e1e69a0e78b4a2dc98ee1511792e4

    SHA256

    365e4b3321f21404a7292200d1b57f7b08de600feafd7709a349a054057b97fe

    SHA512

    29ae0077cdbfef3e23b7f8b4474a5f6e5abeebd036930e3778505d7f0fd7614544c07c910aa1499bb35c364dd09d9e3e419f0eaac75651e86abba3296e0f2033

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2cd63b45defdd61d8df95e5e7c91d480

    SHA1

    611c8d5b3ddb0049198812486d46d7d2949e2f2e

    SHA256

    b404e5e3f618fa4f5c25f2722f3486cdfa6ab1aea2512e502c0f39fc639834e7

    SHA512

    08d69097cf9c3db1be535f5ea7370229e58a360676a23961697e3c1120b3f263dfd504bfc1b9e60f40e0b7e35907087ed6837cb6116c3877ffec592cbcdf84fe

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD50D.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD58D.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit