Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

URLScan

urlscan

1

http://ctldl.windows...

windows10-2004-x64

1

Analysis

  • max time kernel
    105s
  • max time network
    130s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03/04/2023, 21:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    http://ctldl.windowsupdate.com

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 49 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" http://ctldl.windowsupdate.com
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1788
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1788 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3264

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_1DC6D7385EA816C957BA2B715AC5C442
    Filesize

    1KB

    MD5

    dde292d6a9acb9155b3d3114493a9a51

    SHA1

    81e89a5e56696093366c1c632d62d186a477a6ee

    SHA256

    46ab8693f1b782c32ae9eced71370e28f41576039edef747626103f1d6e63d97

    SHA512

    6ccdfcfce0c5c6ad5a0979ed61e9a05ebf1fa53690fa4be7a053c785c05eb4f0383906562189308703608f7073a22c768a553b948ea0491c841b8dd933a03496

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    8b82e64a7691fb70aec48c12c37eb312

    SHA1

    96084b73e24ced2adea93695f71a62092771ce79

    SHA256

    5e1b36f0cccb94221d862d2fe35c892d699d397a87f74f18a668a57ba7ef8d5e

    SHA512

    36802e6043f76d717a376d762f84e89be4bf5b6675bcc662f9f768dfe6487582654333ede1f871cadaa5b5120ad5147ca81bd79b5092623d38f1fbf4037237f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_1DC6D7385EA816C957BA2B715AC5C442
    Filesize

    446B

    MD5

    460624d8d04e1cde5a77dd541e3cd439

    SHA1

    2606c47e8f33e1b153b75b24b61777be3a5d3771

    SHA256

    df3f3dab7209e87f6d939bf99966e191712ea10049338c794dae99a6aa87e12f

    SHA512

    1894eb25d48570f41bad898212051631c78a027baf1d04d3aebec83be98af92e0f487f6a6b3e2ddb7e7025ea067ac08a5cf3395dc5d73e9479edbb1ef200fde1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    434B

    MD5

    36d26a7beb6b727a37c54dd312826644

    SHA1

    4b0f03a20a7fc6e09209921a3bb8f72eed24a8d1

    SHA256

    ca5df5175c30b26f7a2f5e3e9c3888854209dfe08f43cd18896d51fcd3a0c2db

    SHA512

    db88270aad7111af19db67effa84114fe843ba634c534bca00dbb72ebc61e59bf0af048f7b541fafde1483d8cab251523a1777f18572d07b044c936bf5bd12fe

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\VJF7J1KS\support.microsoft[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\phzg4yt\imagestore.dat
    Filesize

    771B

    MD5

    d6b823d90c548ef82369d025cda8c424

    SHA1

    f0f594036e4a11df42f18f5981bbb3524644cce3

    SHA256

    c48ef9b86848810d3b21140b2b3aaaf3f7876df7a0aef16e87f06dd2c404f85f

    SHA512

    7ab84d0ae9ddd23293401fd4bdb805bc22d104a5a67c0a0fda82283a21f380b549f2888e9ee239e2c1f6b287d6c506b080ac1516e3bde386620170dbe50eaa60

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\4VT6R2QM\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\EY3KXMB3\OffSMDL2.4.50[1].woff
    Filesize

    43KB

    MD5

    4c6c928daf19e2a06faf12bd2f002d2e

    SHA1

    027d4709db809d9e9b2627b74a152aec29066ee8

    SHA256

    2c9728c235211d8956826af42d99936b409536e6027e9162835731d5b005d462

    SHA512

    62445364d9696d1ffa4bacb49b6d04d4d2415d3145b628885d48348c233a11fa336c5de8133564c541d73152950b33a3661f190d3f86a326ceff13cb0d52005e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\EY3KXMB3\SupMDL2_v4_69[2].woff
    Filesize

    33KB

    MD5

    c6de87ee555ba9c32f8b95b2253963f6

    SHA1

    4f1e0fc053f1bd47bf515155405e15dba3f07a79

    SHA256

    736cbd05debaadea59f6eda99c3d8f7a7c586ad70a4a342b14ba8eb11a95a480

    SHA512

    012c96fcd366d76d33154cb9a3cd227c77252969ca1c0785044bc59dfff190dcba34bde9b230cef57675f650845ceaa3167561796142c34812af8dc73097ca68

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\U4IULL1L\favicon-32x32[1].png
    Filesize

    631B

    MD5

    fb2ed9313c602f40b7a2762acc15ff89

    SHA1

    8a390d07a8401d40cbc1a16d873911fa4cb463f5

    SHA256

    b241d02fab4b17291af37993eb249f9303eb5897610abafac4c9f6aa6a878369

    SHA512

    9cbcf5c7b8409494f6d543434ecaff42de8a2d0632a17931062d7d1cc130d43e61162eedb0965b545e65e0687ded4d4b51e29631568af34b157a7d02a3852508

    Download Submit