Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

SKlauncher 3.0.0.exe

windows7-x64

1

SKlauncher 3.0.0.exe

windows10-2004-x64

7

Resubmissions

25/05/2023, 19:15

230525-xx766abh69 7

Analysis

  • max time kernel
    105s
  • max time network
    191s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    25/05/2023, 19:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SKlauncher 3.0.0.exe

  • Size

    1.2MB

  • MD5

    32c7e3347f8e532e675d154eb07f4ccf

  • SHA1

    5ca004745e2cdab497a7d6ef29c7efb25dc4046d

  • SHA256

    107bb526c374d6fd9f45317c0c16e83ab50076f2bcd630caf3d6794596fae69b

  • SHA512

    c82f3a01719f30cbb876a1395fda713ddba07b570bc188515b1b705e54e15a7cca5f71f741d51763f63aa5f40e00df06f63b341ed4db6b1be87b3ee59460dbe2

  • SSDEEP

    24576:Dh199z42ojP6a7HJlF9eu5XFQZSIZeNGdmEE8H17UBcegl:R9zbgH3euNFQZr/oEE892cfl

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 40 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 11 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\SKlauncher 3.0.0.exe
    "C:\Users\Admin\AppData\Local\Temp\SKlauncher 3.0.0.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1488
    • C:\Program Files\Internet Explorer\iexplore.exe
      "C:\Program Files\Internet Explorer\iexplore.exe" https://adoptium.net/
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of FindShellTrayWindow
      • Suspicious use of SetWindowsHookEx
      • Suspicious use of WriteProcessMemory
      PID:1520
      • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
        "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1520 CREDAT:275457 /prefetch:2
        3⤵
        • Modifies Internet Explorer settings
        • Suspicious use of SetWindowsHookEx
        PID:692

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    48f1a8991051a33985605c05d2fbbdf3

    SHA1

    98238d7ba76a2417d1b02df05433e70c6a3d43ac

    SHA256

    2e4819570d60c7387dc71baf8c73d9cf4db332da0a3138978836092567b84aee

    SHA512

    a17fdbce912c4a8d1980ee6f77939d9a5b086954c913c388dc7ef7395096010d39b88247b7b77f90e921d9873c2429d998230ad54aae59549dad821659db00de

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea134f9a172f4e19c77cc0d91a7f5dc0

    SHA1

    c4e56b251bb3919af7b6279b919ef90da6d208dd

    SHA256

    b7e7b99d6e41574dbe3093c6a70febe69f2f95d20c10975299758843cd1d9bad

    SHA512

    cbff522ec41f5a1a4762713b13600b2574916a351d7ea7b803e5c6c605d120c54e6c162b8f798f62950bc9d6e628c21d1e3ade7071e36136ccd06a988b3ff180

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a01262ed845788590d47bebf3e41a2bc

    SHA1

    61c05949f5c5f12326d10745d39edd5ea55af279

    SHA256

    beaef4d003f046afb79d46a7c114a53396ad760ba6c4af88d968ad2f09620fd2

    SHA512

    fb8e7840ad6bed6e8ea6928403cb1304eadb7338811a9515d9c66d8f7c8f85aaeea8654d7cf86df12a11e4aa64f91c52b0649649f3f64c19ad9df86cf2411e11

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    448c63ece59cf6b24b6b0a1c208f5f11

    SHA1

    1786ed97206010d3aca0147a20a8acbb9eeec50a

    SHA256

    83171f0d4b48ac09959b60a4dd67ec356c43f0027f7248154fd2d843d62a9391

    SHA512

    ce9c7da3aab84bf8a91225c650c316dedf04b302d04996957717aa2971ee6fadb32fbec8e7a2668d7c7af0e757c73ab552131294bca42f6a41c4a24b0b911b11

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b0c1dab02c02771d97fc6354d6f82bb6

    SHA1

    0bdbdb7fea20b00e4c4296bac83479fd06f57b0c

    SHA256

    c83d4405fddcd41b2737180dcf02398b5993f93d2c3e9542adbe00227bc92e3f

    SHA512

    a82699f04c3987c0345b5fb41479e6aeea1651835878f615ebe372c10f03717266fbd0b28900f7c0e96b8d68f6297939d64f3552ee00354ec0c31316fe14dd7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    50e7b65527d0b12f9f9ba1e8e5605509

    SHA1

    489f89f745550612fe27bae786392a6bdbf8e9cf

    SHA256

    0bb6a83b1d00fcbd000009b42e32bf76b70e72c13454f0172ea388df3e3e6cdf

    SHA512

    f0d2e5c9edd9061060fc0dbe9c08cf404103b9ca682757456430f4188ee5c3c13b9059019f21f29de39e6825efc7e4c91627e15ec77405c99d8e610f8f7b9fbe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4cda30b9577e2722fb99c6585bcfe75b

    SHA1

    c4628d7a73e6f8bdd3d2bb41ae957611d1fcf39a

    SHA256

    50170787f8469f48ae6008048702c57720dedce7be01e2abc809fbe51fd8a226

    SHA512

    46b2bea85f5b002180b2b9dbcc8e9c29e3b47cbc2662ef6df5716234f958d13f759aee2a9944347548475992ff79d92fdb4f75259b34d961f136498f9485f96e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1b0e94ce2f4ed316873d32f8c91132b9

    SHA1

    02e582986b7fd2f7531d29e54647601cdf8a4df2

    SHA256

    95767ceef3fce0feea1d140d668f690f568a08f427d09ae534efa4ae1f80689f

    SHA512

    4b33960d9c11d5beef24b2f5fcebd2c84055fb832116998247a1c604c4ee9c41507dd3c0d48c70032cd4e6a9f8a74b4e8172c73754a0d1b4bf43e77c75a9916e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8d78cd1a1e903fc826f65fec2bb56d58

    SHA1

    a33d473e9acf051df47f7d60b19a28118e7aa51b

    SHA256

    6dbe37405286fefe16b98416e4665e0b09ff5c97655138cfedf179510a473e02

    SHA512

    0aa520db75cb72e4831b6a1e518e51615246ac002b8b6e1dcccdcd6826687209b7ef34e47303e33028d6c0879c026c3b5cbc5bac69b015ac25d9c6a9ad361ed4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    773368d1c2bc87cedf13214fc28461df

    SHA1

    e9f4cc41b6024a09534e23efc1495bec2da5da52

    SHA256

    14ac57465b5a5700b236af7ec27545e400d767e5d4aafdecbe59879d1f34a26b

    SHA512

    953361b3acc10cd38d5b0c247c253a996212d75077f6d6a791e4997e143d5280d183a277af07b05d972b6f56464f60ec8f310814205d2f3509a05431ceea276a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9b2b814242e4d60c40bbf0fc999df275

    SHA1

    9229d0571752f9167983b79c3c2e77c0bb7535f6

    SHA256

    760e1d44849e566fca124be02077df17d10db43cc904a43b4f1836e605c993b7

    SHA512

    9372c1efd8399a0d511e8c5fa56cc1b4118b9f58ab72d66c4f769230f6b1a9c360ade6eb985ea40d9465b860b37f2dfcd10334b5b886b73172d6d7461e8c228c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6552e885fe02e38fb4117a0fbc8bee42

    SHA1

    ec740273d464a008e167019b0e8adad90169199f

    SHA256

    f057fa93a36d38d93bad70f99ab9d07c45657e801f22d8ab3c9a6d45330d68e2

    SHA512

    c820e0005e2d87efb9cfd4869a6e70e321b3d1de11be8c5a8a3e7411b44a19041122c763ba6423e00824077569a3058e4899a8a56711f8c256760c184950d0f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    68843bbade227f61ff32b8f9f562f58b

    SHA1

    3040d9104321bd75781e57a41579cb6b0f506e04

    SHA256

    8c9c49272bea2f1249c0828a07a5d3c3b4ed53df2cd76ade4c10bc27adbafed3

    SHA512

    a4691c69047c9bda614ef8bcc456341871aa564bf271139fade4e36f0af1eb77a4b46e710f62370012f6b15aece64db788049025baca7fd14023be21dffb7abf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    87712bf68121ce6d0a7cf755c954fcd7

    SHA1

    1d8c07030d82eb063610d4dfe00bed59422527e9

    SHA256

    3f1cb1c412b2e9277c5de0d7e8748eb8ddecd8884f38c13230fa003a752ee51f

    SHA512

    8e2e4c2a3f75458d7547f7735c36bdf81ccd84c125d1334e51cab904a38d7e4bfabf305379e669c2d4cddd50e94a28a81fdb0d71a3af037b2f99b7c7b9413600

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cdfb635b7010e71a722a43a3c7f63d54

    SHA1

    b724917757a3f4cd327e76b7d5e3ac0525086aba

    SHA256

    08ebe77a8224837bd88c464225a240e0ac4053a493af14198a923e3a88bd8334

    SHA512

    ca5feff11aa0f5bc194b13f450a3a4a6eec8243798b6bd927355cf5686c2579ca66caa849e5ec5d132e6be2f43af6a8a6a4299b08f03ce6d4711734e99113c18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4bbcea4ca787a1985918a746284cc3e1

    SHA1

    48b82d62633750bbe15e7fcaf238eeed628fa3b0

    SHA256

    644a36b218a7d343eb429a837b7a6fb17ec40d62f0ae8df78cdbb56eb83b9bf0

    SHA512

    fcd62e03095fec6792a022b09592c0c4cd83c3d0c7f0e73bf3592ce3375fc2b7851b74d8932f1a0dc1a4a666665f2ff417a540f4228e06d35da4528842fc16b0

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\idyde9r\imagestore.dat
    Filesize

    7KB

    MD5

    3ea642bc9314631c14d996a7d62a643d

    SHA1

    fb713fedafc402fffae02aabc0d371143718bb35

    SHA256

    1ab528622fb06a92051d34ea30f6b9f582605658684209721cdbbc8a779d7e48

    SHA512

    c9c24ba5d0c29089c2a6e4b0d2c60234fae0c661ddfbb4a2adae9e848d05d12dea75a19493e96029e4291c96db024551e1fb0a06a20b5923781c0b3e052ded82

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KIMPJA9E\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NMXH1C0L\favicon-32x32[1].png
    Filesize

    2KB

    MD5

    df4253088bb850c76f81c91db284d4f7

    SHA1

    46e3e3c42a159f22038d86bf39fbde118c91dcbf

    SHA256

    590d33ce64b321c321644bc8c840c354257371f8c247f776b788a5ce2c9bbc72

    SHA512

    7804f8507d35adc2a3f65a4fb017bc50219fd2ee326693dfc5011cc9e22df61f50533ee7eb597133ac69e502683b7089df89735f03e11807a4724564061b0b22

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC140.tmp
    Filesize

    61KB

    MD5

    fc4666cbca561e864e7fdf883a9e6661

    SHA1

    2f8d6094c7a34bf12ea0bbf0d51ee9c5bb7939a5

    SHA256

    10f3deb6c452d749a7451b5d065f4c0449737e5ee8a44f4d15844b503141e65b

    SHA512

    c71f54b571e01f247f072be4bbebdf5d8410b67eb79a61e7e0d9853fe857ab9bd12f53e6af3394b935560178107291fc4be351b27deb388eba90ba949633d57d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC1BE.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC31B.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\~DF5269B59A894B2B34.TMP
    Filesize

    16KB

    MD5

    11d7b0be43557d2b95a286859b0cd323

    SHA1

    c40d93b77adac3146241f3feb87d532926d23906

    SHA256

    4f5132017f36a6bd8cab048bbc5b463415dd557bbcf3c62ea93e8532ff50a887

    SHA512

    4e8ba6ae9a2b0a4d706777402210b621ba31f112680b4ed11703c9dc6f9dc96ef194d5587cea42ff4a9ef4a65b605c7ef17b9a4d12e36d95c52b449fe8a8a88c

    Download Submit

  • memory/1488-56-0x0000000000400000-0x0000000000435000-memory.dmp

    Filesize

    212KB

    Download

  • memory/1488-54-0x0000000000400000-0x0000000000435000-memory.dmp

    Filesize

    212KB

    Download