Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

URLScan

urlscan

1

https://pixelfy.me/b...

windows10-2004-x64

10

Analysis

  • max time kernel
    136s
  • max time network
    148s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08/06/2023, 04:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://pixelfy.me/bU6uLf?1214488007044

Score
10/10
phishing

Malware Config

Signatures

  • Detected phishing page
    phishing
  • Modifies Internet Explorer settings 1 TTPs 52 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://pixelfy.me/bU6uLf?1214488007044
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:4284
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4284 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2320

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    9f40f0353257052e597cc6a63918ff40

    SHA1

    1c28ed248cce39532cec1a8685dbef608f1fcc1a

    SHA256

    71ac9b72aa96f07fc0108f5762830c2007eccf77726516bc4c31de6f619e04fd

    SHA512

    f9b9c9377b51d371d7e1691e46f5be78ec11745fafda0713844c6aba10c075afa8e07b9dae67794fe06a1f8d99258d016b7afd386d5a257c57e3bab3a1318713

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    404B

    MD5

    e0be1975634849676550bb333d2424b3

    SHA1

    2cfc91ec1c04c1b8a8f52ca96ac2625da5429dc1

    SHA256

    ac2a4701a5b6a10737ee710111a879ccdb810b6f6365a2b29f51f8546b0e9e07

    SHA512

    5b67dc164e294e0a78cf9081ab9c909bd91094668b078e215a943f86e9b09a9fa8ff80f892ff979f791406b43cd6fd13c84f290863914d4e212ef09760bd3c03

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\11XX1HFV\bdimakassar.kemenperin.go[1].xml
    Filesize

    430B

    MD5

    6e7fda98583dde28b62ec882a34de996

    SHA1

    96956affa319537acb105cf041645d1409979477

    SHA256

    838dc1be420745c9706a43325489a78af18de24c986e6bfa9b177aab352f422e

    SHA512

    900a5f16a299c8dd4ab2ab026122bef411d6e7470a8bb50e66f9dcf7a0c7b01dcb60f618725de6300970cfff8c13f5828066cfb5b30e2610cae2f4591068bc6f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\q7s3h6i\imagestore.dat
    Filesize

    1KB

    MD5

    c80f556d09837d889a8de947b1adbe85

    SHA1

    6aeaa1ff4cda636328edcd0725060d79cefbab57

    SHA256

    eff56a2e32683e38c49c374d590855baaa4db77aa18d14f5d85f163b15896c62

    SHA512

    ce834c92e8586d3c6538aa7b44b8743a4d084a555483ee5d1140552017e0ba5c655c8b7520d623b284afe134ceaf14e1aced76c0756e0aff3da59695b758f136

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\q7s3h6i\imagestore.dat
    Filesize

    2KB

    MD5

    3a30565cf42859adf29e938a0e5b5394

    SHA1

    90d4dd8133ce065e5980dea3f6325efb18c8300f

    SHA256

    d46cc03fa625db908453ee29fbbe35767547f64b18a55aa3e2ecc5f16a63615e

    SHA512

    4f102e5872d2bc23967144d9beb4086d7c4530a15dfb443e0cd3fa323206a30f864c4064db9080b05b2eef89a90ab40292298d86bf28db713c5463d572b9165a

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\0BMP3ERH\favicon[1].png
    Filesize

    410B

    MD5

    fbd47b9c735371d87c1c24e2c163d3b8

    SHA1

    94e9e66cd833687a601e15f5335379722d886cf6

    SHA256

    976e21708a8f1cb95fa5651a794773f13513977760c63a8390ec599d7e10bd7c

    SHA512

    7b800c2d775828378680856ca6761c3e589b9c3a22cc9bbbb7e2be1090affe23f508c7f0b31bf49b89ac5145fd9cfa24edb009b2b2f08575c86c9a97863a6f21

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\V6GB5GU8\adrum-ext.281eccdb0a28fe3b4dbfbf942f8b88ed[2].js
    Filesize

    51KB

    MD5

    9cfee67f2681e1e92efb3f85fa9c668f

    SHA1

    c75ac9268b74cd96cf32be69368e263a9973608b

    SHA256

    0db43eba61b33934229b19b825b7bea29c3bb17fc1e3e1e43047d7772aae6036

    SHA512

    620643847686939ecce13b1633424ce10329cff1acd6c19959ab0507a8f0542a4c3f3c755582691eea3f4ae80a8fc33172eeb75491d44d9a2d09453c2914e20a

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\Y624AVVJ\X5UMG16Q.htm
    Filesize

    125KB

    MD5

    c38014f91fbd9a7ffaceba13318fced6

    SHA1

    cd68c95fb95e9abb31f51cf43c05e6b1e7287f86

    SHA256

    cd192371cf9f03b0e3aba3062654c85610245de5b32fc7d41b095e9910a59b78

    SHA512

    d8ccefa8cd93144089f962d21019d365c43014eb178fda12a653f46eb7624bc103acd738938d84d8b3cc05d3a6e6c9a9ed591db522000ef1023da41a7b842559

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\Y624AVVJ\favicon[1].png
    Filesize

    1KB

    MD5

    68b8786e30cd4809979950cb120ea718

    SHA1

    8d60bd47cc9f5fb8377f7d302456096e6da5836d

    SHA256

    8fd189f5a7b7090d3ad9d3c8f8745a97e7c98b230d24b3ca3e50d29e98133109

    SHA512

    53c57d0558e026ed25458690eb8ff4dd5bd0d9421065d77790490fc4c9373b0c194ad494c07fe7b00fbcac5a221a3aa21eb503947a60e4b921834bb82499056c

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\Y624AVVJ\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit