Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

URLScan

urlscan

1

http://texascrabcomp...

windows10-1703-x64

1

Resubmissions

09/06/2023, 19:46

230609-yhgakadc24 1

09/06/2023, 19:44

230609-yfw81aea4s 1

Analysis

  • max time kernel
    115s
  • max time network
    231s
  • platform
    windows10-1703_x64
  • resource
    win10-20230220-en
  • resource tags

    arch:x64arch:x86image:win10-20230220-enlocale:en-usos:windows10-1703-x64system
  • submitted
    09/06/2023, 19:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    http://texascrabcompany.com

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" http://texascrabcompany.com
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:4956
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4956 CREDAT:82945 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1728

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\103621DE9CD5414CC2538780B4B75751
    Filesize

    717B

    MD5

    60fe01df86be2e5331b0cdbe86165686

    SHA1

    2a79f9713c3f192862ff80508062e64e8e0b29bd

    SHA256

    c08ccbc876cd5a7cdfa9670f9637da57f6a1282198a9bc71fc7d7247a6e5b7a8

    SHA512

    ef9f9a4dedcbfe339f4f3d07fb614645596c6f2b15608bdccdad492578b735f7cb075bdaa07178c764582ee345857ec4665f90342694e6a60786bb3d9b3a3d23

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\35DDEDF268117918D1D277A171D8DF7B_8F7E9F194A1BDA2F6D6206540A29D5D0
    Filesize

    471B

    MD5

    de6288624b97a8339a206c688b1472ee

    SHA1

    50787a14c733a732950659cb0f5be3b45b9d6c29

    SHA256

    445c89b2205a33605d502fdfb4f36c48c37eb35215581c7b0195284ecd2103db

    SHA512

    8376925d7fe0b3d979c8941f789b80326b80cc5adc56bf2fb8c7eaa17795bde8c2694662423cb81d03cced910e068a8cee7563813695911e0c8b7b3d3197f765

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\5224125D27EF794917455960AE5FD620
    Filesize

    503B

    MD5

    602c1c7182b039564bffa4598b1e6498

    SHA1

    21d9b55283e407483eadb32e74b448178e415130

    SHA256

    99d54344ee8329bbeab4c5ed879819552e43031b9913b96210c3da9a8db77fa1

    SHA512

    6ead74962a25a38ef2503f49d807d337be85de3aa94858e42042151f1cda0966bb79e3902e01e98b7df8e978feb76d33fe4768f591656315dc5652d0fc758fe3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    6a696bab5dbda1f9e3dead87bbdfda15

    SHA1

    efa2517cc9c306a85acce2f45a1b1a4763bc0ad9

    SHA256

    27afd05f059c8af3bf76e14ec650eee55d2d4ef298669efd65ca1acaeb66ac2c

    SHA512

    7bed5bb59abb768ebbf6d597e8b3b14be75cb23b08bd64945bfc80fcb0b9ce155d961c8b67512943ad30895be6201e669c1c0f8481373f2a95a744170e3a9050

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\EDC238BFF48A31D55A97E1E93892934B_C20E0DA2D0F89FE526E1490F4A2EE5AB
    Filesize

    471B

    MD5

    c5969061ee55b78d3867beee5b5a5923

    SHA1

    eda4914cb75be65da5ad7b974951842354e99b8e

    SHA256

    be2255546cca6a21f574ddc189581c3e81f8a84c3915f65afb1f6c42b84dd1c6

    SHA512

    84e09afb3e094734b61dfffedd9cb2fb4cf856773fd2b8130a646c237dc7017331c85218b17065286d1e2696a129fbc50377d632d68070a41a21bc104588a848

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\103621DE9CD5414CC2538780B4B75751
    Filesize

    192B

    MD5

    f10280e9497e09ea7fcc0143aa8226ce

    SHA1

    adc2fe97524590c8b947193da52aea5efe87375e

    SHA256

    08ca69020b08651ddf716f6fb93e3e1fdf206057c2fd8a5a8da64faf26a1137d

    SHA512

    d3faeb123071216c6dfa767cdffb5ec3f506492b9089a90d338d68e18ab79aefc1c43e14ad8267fddba26d6133e1e8d652b948e5e9ba5a6a7c8ece9e9e0c2a24

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\35DDEDF268117918D1D277A171D8DF7B_8F7E9F194A1BDA2F6D6206540A29D5D0
    Filesize

    408B

    MD5

    f304db62c1979151a7097243fd405b9f

    SHA1

    85e54b961b90005b6a162f0ec6d619b7b20b0a03

    SHA256

    be0d28cfb0ca39769715ecc01c2a6bdbf72ff281a9868767776ead2ceddad09b

    SHA512

    1a10bd4f9a0c9d34d5ad37494a293b1b59afc264cb3ebf20f0f4b26250546354eb906c28f3be97c25ebb3139c54b7e71799dcddb9bc4f6dd803188ac7e3ed916

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\5224125D27EF794917455960AE5FD620
    Filesize

    548B

    MD5

    d8afe2d2af47137290c7ea187a679170

    SHA1

    072c79898a275ee2e0bb9af8fb72a7d9f852b9ce

    SHA256

    a2c1cfe8264ec1e131b725364367575ce60efacf753ca71c5c41aa976073701f

    SHA512

    fc7eb7010ca5f372abc675212ecea4e28c0026def995d4f95b2d378eeddf40deff90534f8f8c570246947e4e8196c753c2550bf274281ab833044a721b4fff23

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    404B

    MD5

    449bdeff43d6637dad1093be99aca3cb

    SHA1

    766c85e9fa60db8d8cd3851476806909c5f7c245

    SHA256

    df843bb7a1e7cf2a3a8d9809ae770be02d41411b3e0b425f7da5fb87dc415b6b

    SHA512

    3469d56202adc6896d72e94d9adf5219402a50875d2cca47cc642433cb781d23e13af8976ed15e073aee3942b35b154b8e2020d9514e82c2be1a1668613adcae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\EDC238BFF48A31D55A97E1E93892934B_C20E0DA2D0F89FE526E1490F4A2EE5AB
    Filesize

    396B

    MD5

    f1cb8fccfdeb5b4832ff9e425316a712

    SHA1

    bcaf903bb0aecdefa19ebb274a560c120d632e60

    SHA256

    767f7150758e71a9f3261330e8df81f64a88b6f881e42944f90b0352de18d3d7

    SHA512

    70f6998e901b728610fa9a883408f49604473738c94827275135eb4e9842ef144dc6179252fcbb8c82d897e7e65464ccd021e217a5b3096397fc2ccaa8643d27

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\90YYNDET\m.facebook[1].xml
    Filesize

    100B

    MD5

    5b083a4e1c2b034849e5f7764bef858c

    SHA1

    35d1948ad018247cda9d4a451e4358a9cfcfbf91

    SHA256

    63a382c424e1d8cb4f08da01502f008789f6a0f3ffd18a56113065a4a3f6588e

    SHA512

    e8c2fdd49e2ffc8dae519637230eeebd34849f49623eb281c96029824b242dbb9b2ab5a30ca5d28668d03069c85d541bacf783d78ce51b0bc1ec70bfcfbb9dc6

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\90YYNDET\m.facebook[1].xml
    Filesize

    711B

    MD5

    9dcd9357dd646dd383915b80e9cad93c

    SHA1

    9e860e62d1086b1b1fd561a15a22bf2981cc827b

    SHA256

    0c13045bc08fbfb2e2cd9f6f1b6575f3290c553184d5a6ab163ff17261e80cf4

    SHA512

    c509f5357457988d320c5d45eb8f0f9060b7147e8b5bba3437218336d6bb5730df4ed1d089370b4e96c841ef7da963eaf18e22c35f7a22bd91dcdd19dfa98690

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\90YYNDET\m.facebook[1].xml
    Filesize

    508B

    MD5

    3d35e5b1b80510c9e85d7bb8ba835c8b

    SHA1

    f8d280859976a812d50b823827f079ee4fe877b3

    SHA256

    1f2b35c2a89539233a3c603b28fbbcd21bcf02c01e1e1325e4df67333c2b22c5

    SHA512

    d87521a006c7722dee400097ab0c1bcda021118fbfe602aa22f59d4f2562ec559544e0832e248fdd8a2db75b704ab1b75c9521fc271ac4748300a3723f39080d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\480JMPRZ\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\O4HR65AL\gB76kJXPYJV[1].png
    Filesize

    6KB

    MD5

    389dfa18be34d8cf767e06fd5cde4ec6

    SHA1

    47b751cffab47d076816c63ce08d3e84600376ee

    SHA256

    3c45ce612f41b1e7936e7cf5b235047344fd3146d1630e342f186d1d1e8e00d5

    SHA512

    c4db18f636ad85e87f93a208fb4b02b528659ba367e51cfa6d7826ac1159f445a85fbca8d12ac67556e8fb5208dae24ae309e783d50feb088ef0e9f47ac19430

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCookies\DTVRI7VK.cookie
    Filesize

    614B

    MD5

    7bfe4237dafe2a2da459bab1b5f98e27

    SHA1

    07fe0ec5daaf8176a0c126eb6d843884024c9ae1

    SHA256

    aa1e01b5235388e246f5d8d9da47beec1e49d4567aa0f76149523915a76d6d2c

    SHA512

    af488a1f5589fcbe1d52a4cabf0b790d378760442cb457d20e243a1d5a14d62455920681b3757ac579c29d1f5bb8a0c09b69bfa7f00d0e2306929b1435f245c1

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCookies\WFCO9F8O.cookie
    Filesize

    243B

    MD5

    8444cf9401903d2d734290d04a58d8bb

    SHA1

    31f13c57f07bb906f75a6cd17d30a4643c84c1ec

    SHA256

    4487b5b3dc19643139d1001f9bd1eb8ac36289f49a6f0c245aff0d8b369f8657

    SHA512

    ed3e95262f6a69793eafb8bc3ee2478a095080bc6507419821b8260c11ceaa540ffaeee800c4df405b7ead91489f919519b62ca4d4032a2a37d489e69cb3d0ac

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\KnoAB77.tmp
    Filesize

    88KB

    MD5

    002d5646771d31d1e7c57990cc020150

    SHA1

    a28ec731f9106c252f313cca349a68ef94ee3de9

    SHA256

    1e2e25bf730ff20c89d57aa38f7f34be7690820e8279b20127d0014dd27b743f

    SHA512

    689e90e7d83eef054a168b98ba2b8d05ab6ff8564e199d4089215ad3fe33440908e687aa9ad7d94468f9f57a4cc19842d53a9cd2f17758bdadf0503df63629c6

    Download Submit