Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

eac5755ac9...18.exe

windows7-x64

7

eac5755ac9...18.exe

windows10-2004-x64

7

$COMMONFIL...ip.dll

windows7-x64

3

$COMMONFIL...ip.dll

windows10-2004-x64

3

$COMMONFIL...S3.dll

windows7-x64

3

$COMMONFIL...S3.dll

windows10-2004-x64

3

$COMMONFIL...e3.exe

windows7-x64

3

$COMMONFIL...e3.exe

windows10-2004-x64

3

$PLUGINSDI...sh.dll

windows7-x64

3

$PLUGINSDI...sh.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...fo.dll

windows7-x64

3

$PLUGINSDI...fo.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

HTML/0_days.htm

windows7-x64

3

HTML/0_days.htm

windows10-2004-x64

3

HTML/15_days.htm

windows7-x64

3

HTML/15_days.htm

windows10-2004-x64

3

HTML/1_days.htm

windows7-x64

3

HTML/1_days.htm

windows10-2004-x64

3

HTML/2_days.htm

windows7-x64

3

HTML/2_days.htm

windows10-2004-x64

1

HTML/30_days.htm

windows7-x64

3

HTML/30_days.htm

windows10-2004-x64

3

HTML/5_days.htm

windows7-x64

3

HTML/5_days.htm

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    19/09/2024, 06:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    HTML/5_days.htm

  • Size

    2KB

  • MD5

    88eb76dadfb6feee08f0b0420447e855

  • SHA1

    8ea86f02e72503080db84bc63e6d9f2dcc91571f

  • SHA256

    44d3d520494089d2806c8ea5ca024c650131546955a3aa7cc00c92ad5ce263d3

  • SHA512

    579ce476cf87bd337e505c66f1b79eb8693565f185b310825186134df31f5fc40ac6516833c54877ea909de1fbe1e9344df5698b31fa40a16d54506b6511dfa4

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\HTML\5_days.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1920
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1920 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2592

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bf6841d7c1e36e344cb5bee2a072f253

    SHA1

    03a7d371d4a5a17c4866835dc7c0ef7426562b16

    SHA256

    a041031508daf60798500f2bc857f202863c9a0d18ae56e7851ae636c5b1c625

    SHA512

    7e7cea3233917a56f166ee7c6f6617deb2566927754ab0c08386f977db86e61be9f37e9984f018a39004316103ac47c66627c9ec295490cca975c8970f0b0291

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    610ba4ecd138c6a3fa65ee761e8c9936

    SHA1

    21bc11227a39e4dc7c0c9c571e432c87e627daa8

    SHA256

    e211d75ec5939f194072e7af8b04b0e47d427fa3b6aa22f8755d16f2441663a7

    SHA512

    f5d24a61fb53b362d44e43418748af0ceb33f93e96db22bf825c8a66fb7767cbee15319507cac897fca2c4f52739c6c50546fccf705a7a8eb3ebc3c312d28f74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    648be3de3d9cb03a1b0db534b66d44f5

    SHA1

    f87d445637df76c7d45b6f2cd59204f112021424

    SHA256

    670186aefb64a90a301c3ccf0982fe589ce843e5c2d8cce899d99be00baf8031

    SHA512

    992d07d5f1e50d037d2880fb7cc7a26205b607d4db024ffc38d978df7de400aa3704d25edf5b6039491364f928e66321d7d50207a99704d84872389c6f6b9f94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d7eb47e4a934bcc31a6e22a7238126ca

    SHA1

    f7892ddaa533cefebfd105e4296b683929212f9a

    SHA256

    63da936833e0fdedbfb6fbf7ffdf32d6b9a3bac223f9b6dc750ced440cfed8ec

    SHA512

    14fde54abda6b5dbaf31037741c4083ecd9586ece20d54e5bb57d7b331a0f4df85476a021b0282ab12dad4ab79190ebf59d46c3dda45ee57e91a82013cc13f93

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    681bd2d06516dfa1096fcb8b246a1567

    SHA1

    408be1bc2ebcfca2f6448019e6f9dcec417b9252

    SHA256

    7f0c23aef3132697d1dc3285fbf2eba3690ff82e691d31788bdebe7b9553866f

    SHA512

    4e745c5c96c131483cc1fa42206cf7cb5c2c845035b63f66f97fe1d86bb1888abef8ad39f6d7cec5d86d791ac29a89004abc1dc59256f238b1e5002d3d5dcd02

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    18e5e5502c209077993ccfdd73f13320

    SHA1

    1f4f0273ad93de09a351b9f67223dbe0d43f2947

    SHA256

    f141862c8b064711854edc133f0084645f69e383ca3b48b6d21c5ae927a1f35d

    SHA512

    a3561e926127cea51322248e84697c4a74176c0d12b9faab334fbeead404e37ca67852dfd39ddcf4daac2f81f3da83016e1a335c47bd50c4201abecf2bced183

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af14840cb848d1ff296af3621379ab01

    SHA1

    28fc3f63ed32c3523247905df3ed6ca0edd397d3

    SHA256

    e7c9fd6a2647ae4e86dde05b8af93999438a2572b66c91e01e65b683436835a3

    SHA512

    2b3266018356a735f6e81d641af9eb48814255679af4476082221e181b621577e5f6068715a181cab29b2088c8e357763c40cea97ec01150f0e442486a1bf783

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bcc0632046ea8fa3379a58acebfa360e

    SHA1

    cef500465b3db8fc19a1b9eb74fcdca250e9608f

    SHA256

    524255f144935560c20d1deddd47e9289385ba6f192dd4b85ac72caa4afb0cc3

    SHA512

    8834e585265fa7db9e5fa3aee0d2da939aac3d680fbdcbd9ac6920d765f8786e262910bd4198514618fe8ca08f1bf7002bb198121c0692eb47e4a34c5a2473c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6130a38f66383f536d375d67eac744c8

    SHA1

    c66a3b85e349ef2153e3f6f7714634089ccf7186

    SHA256

    2dafd418adbe23e5aaf7f6a243123a52515e20e91714da22a6de3eee21eee480

    SHA512

    f56fcb627273a61b1d25e3cdd927749ecb89fb1b7a7fb4bd666342e05893ea9fad2342dbc241e40fa7f3214aed77c1f058f86f5bad056863bbbb3fbb1e104d6e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2f6858315c05b0b9b56bc11ea8341a66

    SHA1

    ce7eef0868a3a8e28b6c7dacd916e2d60a086605

    SHA256

    0dc150b88095d450c96967daa2a585b4f216711a995c598ead64ac425687d0fd

    SHA512

    faa611aa1d845e3260d0710f36abaf11390639e33695d62b9c27be086e7247eda0bdf151c07b3e4a07bd7edc0f3ccfa53bd60cb2f43114e13a99fdfa807b2e4d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    736f38542f81103a431962ef9716f09d

    SHA1

    3bbe87198b62c0904e31a5a074ab989c7eea2f76

    SHA256

    41dd0a173848753894d67d3b78d3ebbfcb2756fbe2b1329c636fd2520e8596cd

    SHA512

    20ebad7aecfd6f13e6c0929ceb8ae975fdada75930785dc0c8c728a64ba13d34b2022c5f0184453569f65f92dd208019093cb887c16f17221805f2b18946d824

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c4cde4ca225823d1d4554627839b7799

    SHA1

    7c3e92df79a8d5991336a81d22151ce3cd9a5830

    SHA256

    e47273c0a6ea35dd825b997a8d2f7b7e7f2d5121fcd67f4fc86585ccbe96c5e7

    SHA512

    32fdb0011ce4e3c63935a6751c72f22d6b3551b12d37dad68f52a895627b38a00baf21f2faf9ed83807e2b25893cab18cdda015e32a9360d6c194cf94070e93f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4510e381fa71a6bbcaeaeeec11047be2

    SHA1

    d03ed963d1b24e26217f1f1d51fe7d0d8596a3cd

    SHA256

    4606772eb573b37b72f51815fe1c7ef29a2eae2eac444bdeddc23410a207da67

    SHA512

    af1a717899c56c4ad3e9b6512480a17b70192a8facebe55570f8f3e916b42c2189abab616e23c64a5b64e20f12ada206afa29f5c9a3dce57799bb28827c73ed1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    46bd3fd9c4a8f59c51644ba9cbeac99d

    SHA1

    d600c18e2533a0f50e93a4c9cb9ef49eadeb2b0d

    SHA256

    ff451a2e397670f236db262ca7d55d8d951e8dcbc2c3bb804e3a630234207991

    SHA512

    7b4e9ce7057339e09d659439f803945fcf11ef56710af3db390bc4ff5811e34f7a2baa9a7111412be5e34b12867426aa1ec6a23e2f44bbba2bd7f20c9e59c93a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9974753caef47fdb5f65f951e98b4754

    SHA1

    203442862b4834df7b4353736c871a52db6e66c6

    SHA256

    2a9382b400df8c9abff8b633e8f7e65ba776489265ca340a6e8f2639c46ae685

    SHA512

    248562200a394b0e54c635df28d296d725cc8cd61a9bba53a9dfe64ab95136616f1e2690b83c304670d94bddc5f521f9a2a864a6db5c17dedcea35af3dd00b7b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    355017ee59bb292f92ad584420c2f2cc

    SHA1

    a5373de7c4d340114de5bc391926f82f2778e4ca

    SHA256

    c8adc7ba260cb646a6233c90fd7770b14d8ab7bc2db27ef17cfade9cc7179fda

    SHA512

    9f900c133dbcced07e3efc3c06f76fd3adc25fa434f0e1df55f0c96e602c1c926f646884a76740c3779197951b9ca947016d1e7832ac2fcaf5cdd75ed1488bb5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a4b85a19c972fa97b1c2928f6822f015

    SHA1

    061428dfa7aa7a1c6539b3e9867944765006354a

    SHA256

    fe9ea2d4eaa5af78777b96e1e0c595e753f57736cd7e2f447debaf8191ca1b1a

    SHA512

    59fc897b12b49543aad6f07ee335a5cd20a3e40f1e802d93f866abcab1a425f37e3c933c8fc0267661bb1940bcf5e17c981b31c4a58bb183141751deed80a7a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0a78aa871bfd26c263377a2152f6b22a

    SHA1

    9b98f410485a387f56864ebc28ffcc1e9a27661e

    SHA256

    4931f6faf40fe27637740b7c9848f5fcb10147809c2168b517b046bb5b7ccbb7

    SHA512

    457d38495c663912784bf47112aed1fa596848917f9b0844901e6f9c8fcf87a5931a23b9d074b3f7edd46e6682227261986e540c3965122dcf756f8add984f44

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7aac2754f8f7f7765b965be59df015c8

    SHA1

    abf656535f5699e76de94ae5fda40726a10f128d

    SHA256

    cf2dd7de09b93a07f110acb0556296ce7573286ee2585a1614c01f0ec33e06fb

    SHA512

    f8d1b2816e1a44ea5fdd9799f37305f6c05d78852b5494a0de5df582792b21733d8c3fbe0ae1093821d4f34449cc0f3a6d670d56cb66bbd18307cce17d93254b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB980.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarBA31.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit