Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

SKlauncher 3.0.0.exe

windows7-x64

1

SKlauncher 3.0.0.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    120s
  • max time network
    153s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    04/05/2023, 20:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SKlauncher 3.0.0.exe

  • Size

    1.2MB

  • MD5

    32c7e3347f8e532e675d154eb07f4ccf

  • SHA1

    5ca004745e2cdab497a7d6ef29c7efb25dc4046d

  • SHA256

    107bb526c374d6fd9f45317c0c16e83ab50076f2bcd630caf3d6794596fae69b

  • SHA512

    c82f3a01719f30cbb876a1395fda713ddba07b570bc188515b1b705e54e15a7cca5f71f741d51763f63aa5f40e00df06f63b341ed4db6b1be87b3ee59460dbe2

  • SSDEEP

    24576:Dh199z42ojP6a7HJlF9eu5XFQZSIZeNGdmEE8H17UBcegl:R9zbgH3euNFQZr/oEE892cfl

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 11 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\SKlauncher 3.0.0.exe
    "C:\Users\Admin\AppData\Local\Temp\SKlauncher 3.0.0.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2012
    • C:\Program Files\Internet Explorer\iexplore.exe
      "C:\Program Files\Internet Explorer\iexplore.exe" https://adoptium.net/
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of FindShellTrayWindow
      • Suspicious use of SetWindowsHookEx
      • Suspicious use of WriteProcessMemory
      PID:1988
      • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
        "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1988 CREDAT:275457 /prefetch:2
        3⤵
        • Modifies Internet Explorer settings
        • Suspicious use of SetWindowsHookEx
        PID:572

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4beb8b03c2ec6d4f64f0d73ebec48f1f

    SHA1

    5405070d0758c6ff5f0608d9a11b46cfc5b31ac7

    SHA256

    d256187047cb27f23b3bbcdb54a96344419500c526ebf136e98d0cef6b8577ed

    SHA512

    5a8e692daee95392368124a9e78f6ccbb4c431122f6507f5f88b214b67d748ceca0258e3a3f017fb07099cbce1c4b247b62fffa4bf2c8fd26d0335a104494e47

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    570e0c193ef7f1286c1afc135782e6d9

    SHA1

    2e02f2cd46f447f57e4dcc38c6054f4d2935f6c1

    SHA256

    fa0a09ef7f4d73ff382259c9ef86679aa1e35f6086147bd24df867f6483f3ed2

    SHA512

    cde1e078d56b952ba3a14836b981e41364e24d6572d6b1364c3b515ea7ade8149730a05f9c0db4b5a463c969f813fab4dcb7425503577156f9409d44ce4163dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8667ecafaeac58e2527e92610af14e80

    SHA1

    d9dce37b4b8dc25f95dadb33824fc2c34738433a

    SHA256

    7ab065e55c917b1566d5de2684123698c727c51500b0d266bc12eaf82b0a4506

    SHA512

    bb32f7acb8448986def8f2a3f4fd2dbca4e6f788ba1b6826873f79424703cf6ebd5f7008fb9a0586937b4feb9d2aa8be35d33dbdb29d8fdae3a3873b135cefb3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    904f7acfbeb12527b7bf5d9257f2f1bf

    SHA1

    d51d005e71d4223b17f27cc37ab27bc87ece1767

    SHA256

    21b0a66387553c8b795c0243c214c06198f36c13d94fd6c18fa9649e641cc800

    SHA512

    1bac3a1370e2755e3cc4a8aaa4d6c459696b311ca0d09c91aad30f88a663dbb1e09a8002a34c2d60035e098fd07650b6700458447fe717b62a4de1f70302cd52

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6138ab00d9c4bb611123c0db22f80aae

    SHA1

    9c2a3b97933e683f450f203202998bb291f7f9db

    SHA256

    d54fe14fab86cf8ab5592ed392e4a75671804bb6c48f47737a9f35893519dcc7

    SHA512

    12dbc08e226ace22377078e7e2452d1e55cc355585ac83c5e4135c700530c23f37fe7f1159d0945deafebbf736940cf8a3830472d58bad526e51ccdae29de07f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ccd3cac03fe2f975223e72557b40027e

    SHA1

    ea046ee6ae71ae0b091ffe737c33f25b52b1ff06

    SHA256

    10b53dd7c66388bb7f042b311e6883249614e4a0ad60c2e995a57f33a2f33f99

    SHA512

    2d418cbedc42d91ed34c3ed88820f92c005b45ee76456bb66fc85028b9f59d1eadd5f69813cfc5a3578a4bfe68189c0dedc090bfb82d4644924d51fb9744cc6f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2cf7290c1ad94d60e397270052f6d314

    SHA1

    77d07e39b9aa859672a380e768876d5b0ca58c7e

    SHA256

    2ab03e8fab1b1e7ad480ba7bac75700824597b877645b3e577904f6291d2b076

    SHA512

    93e924554ba76b20e5348075e13bf66fdd0e84753c196c8eb3d4403305db16efd05eefa2d211e4209b6eb3a68d95e4d3e8d913b8b09176afedcefcbf1dc5fd43

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    902e090593d807eb4e813c9a153864da

    SHA1

    7d39473fafb5a35c0dbd51dd411e899b63977228

    SHA256

    690b80ac2b7182ab9a5162353b918d9e26df6057e8f5cfed33ecc9fbf540a6c3

    SHA512

    09303230442129d123f124c8c9b2e522610c02693e92653effcf69c337a1845bb7657a9821e32014d5b509703ddd07f9781c3d7c7d569ff9817140abe516745b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7b9aa82a79b68b588d56bd428050b7ce

    SHA1

    1feedf2c54ad1aad363929431d48977912b62eab

    SHA256

    49ee1629014605a88df8d6a3c9ce6aa1a27811a23f65952e6c85d3a375ace75f

    SHA512

    87549f18204244c6ddb5f32da32466666adae62c75060dee9c58080957ef03b1755b6efd3b587b461e55fd769cce43402e58d468d4d8cb8c98ad77f7ed4acfe5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f493797addfedb898552541c550dcb1b

    SHA1

    20c32c242f852689dc5777890f5545013fd50574

    SHA256

    792291490f74d5e6de702ed700d9a4b4802a7be4d5e387670fda14bdea7e7fa8

    SHA512

    fd1f2f930a52b99a12136ec60412c3836a4dbc7de63799b4a670be4102b121cbd4e8f077d4d212dd0b772f7a3e0b11e265b14e5eb102a600725488f486db8e08

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    652dae538f040b79d984938d988ff0fd

    SHA1

    504d4d041fc7cd5470f409f8aa229919c868d00b

    SHA256

    f0caa2c6b57332356b3afd3f86bf8dfe69fc05813656fce12d2e455a539f109d

    SHA512

    885d921f10ef9ca01f07617f6f5279a22dc6e405eef27986fd6d4b0380ef0cda21a50e404ce224d837c0ee07c7707e3da8fbf6a17c7511152b9419626694e8cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8cfbdbb7ce2bf351e49a2b9e5c15678d

    SHA1

    9e2b031a5a74741067d7dcad1e04c1e3ed517f03

    SHA256

    133aeebef7675f7f0f1b8540822286e4e5425796b039cbe1ab01391873167f9f

    SHA512

    412de385f2e2d9c31bc6c5b377d732357990a9059202eba6a6825722112b5475ab01dae4a7105e5cb0ff11085af70bab862cb0f0069c786634715c27195a5f39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e80ea93df8865953857e7705d306bc50

    SHA1

    0dcdf78167713beb3054f40f5410b16dfd55af6b

    SHA256

    b932a439a804bb708701d78c33f8ac7e39d43462681fee769b6b09932c10a13b

    SHA512

    98401da0ab6f89a3f03fb224e55e1fb9c20ab27224bf34ed64a06ccb9a6d5301cc9702a06bfb8a689a6ecf1026fec6e38725c18cdac8fdec202a078eb17025d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cab7a657f7c7e65ac963f03b6c39f96c

    SHA1

    04b81d3dd61cfc7613e511c0c1d208bdcf33a6de

    SHA256

    1df64dfc9ddba590ee0bd875fb03aeba32357114648b31ccdc51ba701283d301

    SHA512

    d72b853d23858017371866ad84e325235996193c65dde1a545bf550601b0c92bd5413d5a3b4acccae172972c2a1a31054f3df78e7992d2631015c9284a9dd211

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\z62wpf5\imagestore.dat
    Filesize

    7KB

    MD5

    4c63be15b70a883c0291520f201c382f

    SHA1

    da50e2a020818fbdd5532c863afe691cdb6bafb2

    SHA256

    f105453717b6dc4f5a38172d43300f0890da474575dfbc34e0936191ec1cdb41

    SHA512

    c53978210a868e344163c6d245db79cdbf609fe90c8b8e0f2d7e8d895d63236a9365cac3885cd5952ff3177800f24ac37018eee6fbed3f264b11f6c035cc8e5e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\03S7L47X\favicon-32x32[1].png
    Filesize

    2KB

    MD5

    dfb98b35bec083cddf7e575ccbc12efc

    SHA1

    f77c5e6f37aec582c5977a76691f992e3ebc3a05

    SHA256

    f053cec8f37df661ce13646ff5ecad7050bd50c4afb4f7ad12cd252577207e66

    SHA512

    17d2d675bc677f126fabab826b4fc79a05eece52cf586a97b7d8093dc402d0160f273fbf9d38978f01befc9f85a979208c2355cc0a4c129a2232ffa4554961ef

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UOYUJSME\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4F1D.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4FEC.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\DFA5F7D2.txt
    Filesize

    605B

    MD5

    10033553749458e64a5e15dd89333450

    SHA1

    535f5ab44153415d30a44b03cf116f54d98a197b

    SHA256

    5801870cadbd8e3866331c0a1da2d5c93b939821f3d81a5587f82fefd532f3fd

    SHA512

    4a08135de45b76cc16442f95841f3d4c8b9948bc67736ac68477105339e169362eddb86cae872aecb45f8042f222e0200c9a5c26d3bbffe1a4f28a45c439f3ce

    Download Submit

  • memory/2012-54-0x0000000000400000-0x0000000000435000-memory.dmp

    Filesize

    212KB

    Download