Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

URLScan

urlscan

1

https://members.gate...

windows7-x64

1

https://members.gate...

windows10-2004-x64

1

Analysis

  • max time kernel
    157s
  • max time network
    212s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    19/10/2022, 10:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://members.gatedtalent.com/lr/Clpvs4pHSTpMF0T-cOaXYfVUMnxhhYHj5Y5b8ymc7DG40mj6ceUieseE_aCpNsWhu9W9u_2jbqSWGsK2vvm5NZEd6QxnA5US3NUbCSWp5Ww

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 17 IoCs
  • Suspicious use of WriteProcessMemory 8 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://members.gatedtalent.com/lr/Clpvs4pHSTpMF0T-cOaXYfVUMnxhhYHj5Y5b8ymc7DG40mj6ceUieseE_aCpNsWhu9W9u_2jbqSWGsK2vvm5NZEd6QxnA5US3NUbCSWp5Ww
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2044
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2044 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1540
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2044 CREDAT:406547 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1992

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    15b1e1ae89944e7f2e20e0e94ab9d141

    SHA1

    d8fe557ba9c08eb66427fb73f26546c526d0b379

    SHA256

    56d1503ac04076c147574ab136df753549f294278340dc1c962aefa9ea350bdc

    SHA512

    83156c3d2b84ab55449e10862e293f132a16145d7ce882ea69041b24fe5a187a92b35d2e817af31a361c523f9d62d8cebbd174ad3c234aa739e2e4cd7676c5e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\265C0DEB29181DD1891051371C5F863A_14F2E352CCFE495001982FFDAAC3BE84
    Filesize

    471B

    MD5

    c190204159a1cbcfa30e3b35639f47ef

    SHA1

    37f20a9f9e47377d8036d8cf8f2b5393d7e2a2d5

    SHA256

    54acc7148382a5219d0c0d0ca5aa83c6fe65d6269415adc56a69d1c89373d9c8

    SHA512

    6f7a6249f85fa75402a6788a658e5b903bfc116ef0ebbd06756b6f21cdf77cf7239aa38504390f97d818d7595ab7fb0b26d7bc23bbac97d3ba5d7902135e979b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    60KB

    MD5

    d15aaa7c9be910a9898260767e2490e1

    SHA1

    2090c53f8d9fc3fbdbafd3a1e4dc25520eb74388

    SHA256

    f8ebaaf487cba0c81a17c8cd680bdd2dd8e90d2114ecc54844cffc0cc647848e

    SHA512

    7e1c1a683914b961b5cc2fe5e4ae288b60bab43bfaa21ce4972772aa0589615c19f57e672e1d93e50a7ed7b76fbd2f1b421089dcaed277120b93f8e91b18af94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\A16C6C16D94F76E0808C087DFC657D99_A49E2928C282F3D7B74BA1083F81B152
    Filesize

    472B

    MD5

    80f58eb695988bf482ace850ddfc24bd

    SHA1

    6a432d1e9a2b461b2d96456baa813b959ba7da29

    SHA256

    f0631022cbeeb1204a8fbfe188d8c4d3f687e06bb76bfed3cee4019db294cfcc

    SHA512

    5cfb697a2030b9d2a8051e5cbd4baf3afac52b2a68ec9b00cdac1e90ca321319662ba279c6903af5fd0b0458a23a12887d5c60d4ee1627cb1406963ffc8e5da3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    724B

    MD5

    f569e1d183b84e8078dc456192127536

    SHA1

    30c537463eed902925300dd07a87d820a713753f

    SHA256

    287bc80237497eb8681dbf136a56cc3870dd5bd12d48051525a280ae62aab413

    SHA512

    49553b65a8e3fc0bf98c1bc02bae5b22188618d8edf8e88e4e25932105796956ae8301c63c487e0afe368ea39a4a2af07935a808f5fb53287ef9287bc73e1012

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    03c925653c08e33395af2c1eda326cb4

    SHA1

    571492f45f923495f7890216a0ee33ad34e31ded

    SHA256

    39b75cd1240873c96f4f00921fb9649ea7b1e5d7355d21a8a1b9357052a2eaf5

    SHA512

    2e4ecbfa3f7b75ed2da48e874ecc037d482cbf0c636f7dbeba9a4463e5b39ee353df2d0fc670fdc8633139a49dac6f445c28cf8e7df5ec34b6cfaed2efeeafd6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\265C0DEB29181DD1891051371C5F863A_14F2E352CCFE495001982FFDAAC3BE84
    Filesize

    406B

    MD5

    bcc171e476c727da1659397edc7ddefa

    SHA1

    51ae982c6a5bce0148a2498bbd594d69d945e1dd

    SHA256

    4300708ed8d96d4e2f5e5748f389d28dccb05922d63e08a35d85562271737c12

    SHA512

    5603d9ac9b344a47db8c8394dc0951c6eaebcb46e0bc66ea6ced2cba05cce232bc44549c30536c4cfac1c820b9c9b13b7f1d5825787d19de24f9c91eb5e0ee8b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    642d3b2ee0150c9a63df519dad42b27d

    SHA1

    a6c5da6066a0362e24fed154d73ff1551f8ebf16

    SHA256

    b6682b32f7942b9c85bfc7130a848064af9d684f76f7a8328a0a32b54c8d1e7f

    SHA512

    988cebf49ccade5fa49f04106a32d0c6eef88cd4276ddbfa2a2b85bea2f59405f0ec4b24c90ebf29e0d934a1a03c8495a42626b9d689d509986e240adc44e9cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a488ec32e69c7ab6a90edd45e1f451c

    SHA1

    3af9709ddb1834aab988939d57fe5579033fcd44

    SHA256

    0810fd91c680f2d760fc8faed254478aacd7ba45c886be2573ceb5811b0cd107

    SHA512

    ccc870d0b9fc4f61e74f06b1f9dce379b242fbff84b4cfc7294e774f9be8bd3a33f953e7860e607d09fdab346c8d211f767897a145c16f03c9ce9551f7264a73

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\A16C6C16D94F76E0808C087DFC657D99_A49E2928C282F3D7B74BA1083F81B152
    Filesize

    402B

    MD5

    78b9ed3d1e5f972c6adedf7a51a92a41

    SHA1

    99d5685d186cd3d54622c0b4a476dcee9cefc2f1

    SHA256

    16a21b534d2c092853920b9a8765c1f7b057021b8cee2bdd9ca337bb258bcecf

    SHA512

    e7eee3ce909d4846bab653d05a13a6ed7b0032b4347713d9fc22583095cf95c26d41859781c3035a9e13262577ecc39bb1895a63e3f2576b263bdce6b23f61fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    392B

    MD5

    6cf5cf92ec9a6c0a6416e1f1f2544e8b

    SHA1

    f26493c185c35522cb4295f9946bcb727cfddd9f

    SHA256

    000944df93ac9df575a802ab351ac95d066f7fa5cca583a1b2b27798d8c94575

    SHA512

    0c42d0355a9b98eeee2dcc3888d8ed5fd8ff2635311a406e31a19ad13204a40a927e99fd55f65f219e7f45f7091322a7a5d90ab28968ee0c8ed90b9ef54edd6f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    5322b38f21a6ee309159f7189f27b356

    SHA1

    66134103bd04c2e2a3f8f2a6b843f5319a42b2db

    SHA256

    1981c442675dbfe151f49b90ef284e61c4d3d3a40beac70723c232cd920083c0

    SHA512

    0c152f7e0761996f50ecad8294eed4eb8b298868c22b37ede53b713ef825f7da9a9d839459d5fbf239878dd29392496ab120328dd4c6ccf5330174bf8622229b

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\1evexod\imagestore.dat
    Filesize

    4KB

    MD5

    32047a3ac93bdc0a54c9574a710e5dca

    SHA1

    7c7542921ebc819f44811bf5c86c493e86951160

    SHA256

    2b46854c465feb47709baef19725895ac4b2ac24c91d641bf06f9eb8f3f5c7c3

    SHA512

    4082a0b3a7f90040583ec40163a16879d573a6553ca53ec97e93a24cebcc0be50229f63b65a1a29dec5f72b1013aea99c1d88fe21bc6c5975b20050a37d2903c

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\1evexod\imagestore.dat
    Filesize

    6KB

    MD5

    be0921f48c9e864c43df7be8b48bd104

    SHA1

    fb47436d3ff05cfe3ecd6dc144ed983d3f143fc5

    SHA256

    1d21d845252ab1a7578282d8290a814073b2d567b99c1d0184b2658ebe1149bd

    SHA512

    f51e20bdfb3c5f3e416c4ed896cdc2237967cbd77afa350ac8c1b202dfd64f9c5fc02276905fae0201d07f390728f8f2815d0ff2fdcca149a955ca3bea6bfa36

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\4SSG6KYJ.txt
    Filesize

    601B

    MD5

    dd70352c833dd640d052b96d8271b6a4

    SHA1

    ff568b7e2f6e7a4fa53d188f7b9601845d8b222a

    SHA256

    e6df82f04ff1e1c117ecf077579efaae1321f4e4769ea223c787597644ced5a2

    SHA512

    b353047f2df0ee40653c107def48a662a0873bef5d3c1716e13f6ef5c7ae95b11d2e8b0e7ba3a5fa2cc4cc6d92d77569fa58130662a068654a994c47c67125d8

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\A7NWSBMN.txt
    Filesize

    261B

    MD5

    4eac74a4dee92983ead3782682e7d5c0

    SHA1

    12500be5720a9aed9edd659f7ba1dbade4e88c1f

    SHA256

    3921844414b551cfd31abf0bf45b2e57b7491acfbc5540bcd3683a36e36628d0

    SHA512

    a941bf60223fd1a4393dd8c513a0d12dca087631764983d96bc183f1b0ff8fb009e7e407c96094b2924bb2aeb938f5941f39a4749ac76d7e926aa21d9921a8fd

    Download Submit