Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

1

winprofile

windows7-x64

3

winprofile

windows10-1703-x64

4

Analysis

  • max time kernel
    135s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    03/10/2024, 22:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    235632327d82b415fc040d6f11f7ac3d617c42411066ce2009c4859237b0a5a6.html

  • Size

    4KB

  • MD5

    c1f05e13d0224ab1f88fcad1b1bb7160

  • SHA1

    470540b7e2c2b0c84da493bf090ea269788a458e

  • SHA256

    235632327d82b415fc040d6f11f7ac3d617c42411066ce2009c4859237b0a5a6

  • SHA512

    c681538874706655bc580cf750a89eafc315780374b2af9039202d11c8305586e2b7a255601f765eec0dac9e7567358674efd252e62a8bd69474d6641f59ae3a

  • SSDEEP

    96:1j9jwIjYjUDK/D5DMF+k1avJADh/pRsaSrRb9PaQxJbGD:1j9jhjYjIK/Vo+kaRADh/pmaSr19ieJ0

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\235632327d82b415fc040d6f11f7ac3d617c42411066ce2009c4859237b0a5a6.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1992
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1992 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1196

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff1960c29c9879316ce70bf7642f373e

    SHA1

    751764f3e86dddf2a1901a5e1620eb1abfc08f98

    SHA256

    a3e6ed9e2c7698aa738e51f568f7cc1efe9ccb74f24e2da147cc29a4553a9c71

    SHA512

    d4a745784ba63e231047b50f08382fa8d3533bd6b6933c687048fd1a78af7b53553f956ae0d1fb41118b325a73bd7ea36af0f066b03ec079fe56ff0df329cee5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bd3dcad2d8e1244a376475deaed40abb

    SHA1

    3083f0e882b31dfd9ada4ef461048eabddb5651f

    SHA256

    ee056f5d7a9b10780c18f2231960fd4556917f6904241c9b699e5f497c96645d

    SHA512

    bb96cc0b9e62f132703f8256453bd8d1be97774c68048ef5eaed66e6f73b8194d123923a8c1b3dde7a02f8c45538000f9b4e1d25d8c814deee10856848235dfe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b4ab5224b083c1840816ddd074732f39

    SHA1

    7b3c71e340caab2fce189dcf88d560f75265db01

    SHA256

    c9e0f46d8ec679060eefb49c352564546b2d12d1cf86b6e9c5dba6c88773b5f9

    SHA512

    a9ccc816a4cd15d56f9e2fd19fb28c0266368c234cf01ce4fe471ba21ef03dc47974988c3087348b734fa1a0de76e609b53f544bac7425dedfb8d35a104d0f0a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f0b1d9bfff361f53cadc6839eb1bb502

    SHA1

    9272efbec4e47013f6bfcb90ef8f7ab90623fc78

    SHA256

    345af21fbc4bd178a1a3504d35b5dc4f2b9a83270266b5b40aad90ff4cc89ed1

    SHA512

    799032e88b8dbad3192073bce0a5628496d5022902f103d1b1f574feaebe6f90b9ae87cc18885b2ac926160df05be2526e9d9eb10f20fe746557b914a770829b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e408d18ee04c4b7390053541d36d429a

    SHA1

    545c5440d9e2bfc97446657c3df299d3fd920fae

    SHA256

    87afc7aded4419e2f713d4a438c1dde39c8479153f707f5eef7d15f0c5876021

    SHA512

    b28d5cce456fa7c92b64d9c629c3492a5d19b3693ec2457ff4bfbbf16775eec507b36e8cbdaeef56cb87108634ad4b1bb4aa884c5fc40ff74b0a654edfd56576

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    98fdda93ddb0b65ca5d31ff371246731

    SHA1

    f58f3a65576ff4642f3f12c9b97cfac444a3bb7f

    SHA256

    930b42e22841dac363b1b9dc6e44213ff2098c2256061a2daf707b83f2c33c6a

    SHA512

    8c3939e8e3cc0dc7067a9ff70d87bf19caaa33878053c6a314e8d730be95c6cd2e75dec137937ae4e4cfd5b7534f637603f4d7d73544dc9a113b7718fd22b450

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    30fc0c267a5f0949e91be55bd7af874a

    SHA1

    879bedd353f5def74e1a24731b43288bf98cc6c7

    SHA256

    fffd997ba79648e68fc615bee6433696bf1aa99fd9593eb7834de2bf2986af2a

    SHA512

    2463c878ca72b4ace7c7fd46e03c6394825e39bc12f5966124c47982ea465ee2222eefc84c5a65ded0b6e66b69db44240eca532c9b28e05aa4a7f9253f52f84e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a7341013c3643b4b38eb779a6d28d832

    SHA1

    cc354704f4bbf5dea182e30dade7cc74077833ff

    SHA256

    455458ee3e055ab5a32c70f40d2ab27034fd308650b05dcc637bbe57b05b7ca6

    SHA512

    9a99726ebc5f0233f4720a74ba12619976ca3c7481799ef50a932a0cf269848dbe909cfd297cd0bd3a7fb5442fa946ef5084bfa9def9cafd50629f80d2eedaad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    46345f384b8550e73145141aa83b9af6

    SHA1

    5d69b5fbc13282644ecaee03f16ed2ef5e74dabe

    SHA256

    a5adbe5805cbc41d30b458f099f19ff16dab7b06f863b9e87803873c1369772e

    SHA512

    5a9a7c7b16bff07aa48d0ab1a3a423495f22dec6843b9c5210885b2e777381512a1303983c9d990db39551a49aaccf3fc45cb3cfbc1cac518f9f6326dd671c07

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC600.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC623.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit