Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

URLScan

urlscan

1

http://url8706.seife...

windows10-2004-x64

1

Analysis

  • max time kernel
    72s
  • max time network
    193s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    20/04/2023, 16:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    http://url8706.seifert-inc.com/ls/click?upn=lTl1NOnHRKE8-2Bq41t4QiKJKpzuLSuZB81tRZQnYXBDsW2YCS7KcWcMxx5iw-2Fli9H1V1Jsj2nT2HJP1PEDPOqxqA3g7RJ-2FJLGcsGuA7M597g-3DbNyR_DyZS12w6kKa37YcSWniv1vItl7caFC8WOW3ROMQzoDuJjDfiKvTmv09938eFlNxk03SZHJrcKMVfG5CpS34o0vDpyaAfUova3q6P144rWth8AqheaNVW9Gi66xfUgl-2BA8BWoLEvH-2FAcw65FihL370x4MFPCjphnt5bxpVPjv-2B-2Bk9pHM5mg4vyfxnseodg82zEcsPLp5-2F71QTThADDc8lFGxUQB4LpHGRhimGFhQXpwi24amRXX3t7C4nNk3On2NovF7c43JQyeQ0j6279jUeZIZqrt6b-2BJ4pZrFVPKris5Z5T-2BKISOrsIbfQM2j0tjWqUpBZ3vbqEmRY77TTnBho3QvqfUeCGZbiv9iMsvoPtCWv3pUv5wWRIEaVEXi-2FEU4fVgKAKeLEmkq9pDJ8sJUBdwCVCACvYUJAJt4gEjHIJZg-3D

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 39 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" http://url8706.seifert-inc.com/ls/click?upn=lTl1NOnHRKE8-2Bq41t4QiKJKpzuLSuZB81tRZQnYXBDsW2YCS7KcWcMxx5iw-2Fli9H1V1Jsj2nT2HJP1PEDPOqxqA3g7RJ-2FJLGcsGuA7M597g-3DbNyR_DyZS12w6kKa37YcSWniv1vItl7caFC8WOW3ROMQzoDuJjDfiKvTmv09938eFlNxk03SZHJrcKMVfG5CpS34o0vDpyaAfUova3q6P144rWth8AqheaNVW9Gi66xfUgl-2BA8BWoLEvH-2FAcw65FihL370x4MFPCjphnt5bxpVPjv-2B-2Bk9pHM5mg4vyfxnseodg82zEcsPLp5-2F71QTThADDc8lFGxUQB4LpHGRhimGFhQXpwi24amRXX3t7C4nNk3On2NovF7c43JQyeQ0j6279jUeZIZqrt6b-2BJ4pZrFVPKris5Z5T-2BKISOrsIbfQM2j0tjWqUpBZ3vbqEmRY77TTnBho3QvqfUeCGZbiv9iMsvoPtCWv3pUv5wWRIEaVEXi-2FEU4fVgKAKeLEmkq9pDJ8sJUBdwCVCACvYUJAJt4gEjHIJZg-3D
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1636
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1636 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3760

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    b3190077c7c84e2cfa647d44e0d7babb

    SHA1

    da898c8fe5d577196138df0b9857402ff931902a

    SHA256

    ca611b5f7c0759d63dc8f7d2ad6040bbca506e6d3249d4deb6432a5c8fcb855b

    SHA512

    f64b904af24f47cfd7967fcbe65adeb4379ae137e8cee5833134edf80729977f417f71b70174da3ac0ee26d34567c072e9f988a687b7d1e3331341cd4911df24

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    434B

    MD5

    f9414e109f6cbe7d5b8ea0f7f06bdc72

    SHA1

    e6a25027afca7e7e92381c014d674faf54817006

    SHA256

    b5eb2d433ae6765a1ad87105527aa6d25e719605bb71c259e5da738acfb53bac

    SHA512

    9ef16b5a965a7e44787e0f0f4633ad829e97da9b868edc21db0ed9fddb11227b83644d343aea771cbb22ca0839c82b0d148b5385b57305423bf7aa2a57ae1606

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\dcpq11e\imagestore.dat
    Filesize

    1KB

    MD5

    cd4a45a948f998186c1e81110ff29e4c

    SHA1

    3c415123cf41a2d43f6c767dc7ea4073c83541f1

    SHA256

    059c73110b6c781631c77ade9bddcd6ee7ae0750f20a1b816b095ff294d9f59c

    SHA512

    9de41dcd852663b640835b3506f69c0f5d176e1d09c46ba5486297d8fcb5c551046f9186cb74f4c0e13fae5c558b59f66a1ddf3962d4a613baf8749fa4e78d6d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\4HAJQ22Y\favicon[1].ico
    Filesize

    1KB

    MD5

    1f5103571dcb6984d79efd6e129d5c48

    SHA1

    ade1688fda202178126ecb7a56e851d482c50fb4

    SHA256

    0afb297fcaf9ac134966020c8cf37ad63121529f28a509a57b3c4ee502f14e13

    SHA512

    ab103067de4e6f9735f22ad58c52d9cea47bc111e60568b23964d321bd26942d1ef701e1da68c1c4a7f917bdf1342f0c51d4ec6029143ca04371ab0d20234d3e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\5AN3FZ97\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit