Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

1

URLScan

urlscan

1

https://ums.koreanai...

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    https://ums.koreanair.com/Check.html?redirectUrl=9JRD01MTM=&U1RZUEU9TUFTUw=TElTVF9UQUJMRT1FTVNfTUFTU19TRU5EX0xJU1Q=E9TVF9JRD0=MDE5MDkyMzAwMDAy&VEM9MjAxOTEwMjM=0lORD1D&Q0lEPTAwMg=URL=http=:**Aums.koreanair.com*Check.html*redirectUrl=9JRD01MTMy&U1RZUEU9TUFT=w=TElTVF9UQUJMRT1FTVNfTUFTU19TRU5EX0xJU1Q=E9TVF9JRD0yMDE5MDkyMzAwMDAy&=mp;VEM9MjAxOTEwMjM=0lORD1D&Q0lEPTAwMg=URL=https:**Akfp.cl*wepok*=p-auth*lvcxn8**[email protected]__;Ly8vPy8vLy8vLy8v!!BB=_p3AAtQ!NZB1_R5tex6nrgN3OhhSJj6jWi9a6yOOvYPS5anHG7fW81bLQbXJq2A8WZ8Jbd0svJ=yQ5TF6dQni55yHrDy5LllRn6QoNjSCg$

  • Sample

    230316-tvw5bsea8y

Score
5/10

Malware Config

Targets

    • Target

      https://ums.koreanair.com/Check.html?redirectUrl=9JRD01MTM=&U1RZUEU9TUFTUw=TElTVF9UQUJMRT1FTVNfTUFTU19TRU5EX0xJU1Q=E9TVF9JRD0=MDE5MDkyMzAwMDAy&VEM9MjAxOTEwMjM=0lORD1D&Q0lEPTAwMg=URL=http=:**Aums.koreanair.com*Check.html*redirectUrl=9JRD01MTMy&U1RZUEU9TUFT=w=TElTVF9UQUJMRT1FTVNfTUFTU19TRU5EX0xJU1Q=E9TVF9JRD0yMDE5MDkyMzAwMDAy&=mp;VEM9MjAxOTEwMjM=0lORD1D&Q0lEPTAwMg=URL=https:**Akfp.cl*wepok*=p-auth*lvcxn8**[email protected]__;Ly8vPy8vLy8vLy8v!!BB=_p3AAtQ!NZB1_R5tex6nrgN3OhhSJj6jWi9a6yOOvYPS5anHG7fW81bLQbXJq2A8WZ8Jbd0svJ=yQ5TF6dQni55yHrDy5LllRn6QoNjSCg$

    Score
    5/10

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks