Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

SKlauncher 3.1.exe

windows7-x64

1

SKlauncher 3.1.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    72s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    13/06/2023, 22:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SKlauncher 3.1.exe

  • Size

    1.1MB

  • MD5

    021b53abfc25a261077282498e5726a0

  • SHA1

    ba7f38a28444504e6e8e1f995cc40ceb70ff6409

  • SHA256

    c3db9475c3ab6b53d8f6d711f587e5218c9b8d332229a208277bc0b27a24b620

  • SHA512

    484bb65ecb1ccd3e5472a27737fd2fa4471240aeefcf4bfdeaf4e49636cec9b3e43a5c2feb7134074c92af01f52a456b8074aca8269480e210cfa3b51acae81d

  • SSDEEP

    24576:7h1tjL2uma7hLQKaikK21SHCJ3ny+SGiPsGSa7tLC+/e0cUEcnr:sghMKai1viny6iPH5hF/e0m2r

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs
  • Suspicious use of WriteProcessMemory 11 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\SKlauncher 3.1.exe
    "C:\Users\Admin\AppData\Local\Temp\SKlauncher 3.1.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1320
    • C:\Program Files\Internet Explorer\iexplore.exe
      "C:\Program Files\Internet Explorer\iexplore.exe" https://adoptium.net/
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of FindShellTrayWindow
      • Suspicious use of SetWindowsHookEx
      • Suspicious use of WriteProcessMemory
      PID:1772
      • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
        "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1772 CREDAT:275457 /prefetch:2
        3⤵
        • Modifies Internet Explorer settings
        • Suspicious use of SetWindowsHookEx
        PID:548

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    25b3760c7565bfe7064014525eaf759d

    SHA1

    1ee0b23e8cb78e4db90f64835f5bb5710fdd4f5e

    SHA256

    4fc0e41319c5585d68393e97574d976bd8cdf8ae41a692323044cc5adb3e25e1

    SHA512

    e9fc1970d2a8a878a982693eaa229512a40923b2e4a5009ca95b4e2481ace173c7b9b0eff48df30291ef0a64af0251a9bf14ccb5dd90b9e66ffb3121dd734989

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f2c07e0b8b49544198ee054e2bfc9a25

    SHA1

    616c4ce1b0faf95576380b4cfe0677449343ff5f

    SHA256

    ce965ecea8c5133392fa4fc07b0fb69b8a0e85544fa2315d87241bd2d9f69a7a

    SHA512

    531ec0c1f2e42b2ba90e1d71dc74b0bdc867499f575ef66011dd016337f81174a9df11b73ab2515d64286db6bea71be690b2b8709f339b39818f0b4082fb4c86

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    45bcf184a56693d69f8020f63dabfda9

    SHA1

    9def5623cf85eccd05f6606b9dc05a1a020feba2

    SHA256

    b409ce1765d10b3714e95af091a72c09ba62f23ef0e68f05f86b9168fd0b3f97

    SHA512

    8cf2fd1028bc911967bd896f31a0bcbca35587edc2b87ba4e840d75dbdcdfd2b2154fa6728e5f3186ec117302d503da809763b580254cb262621d1dc4d38f58f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    71eb7ccc15f7beb31d8b13cd9f50180c

    SHA1

    6021728fe4a44afe0b57a3074bc3e96635628870

    SHA256

    e9a0a5a1bacb377c81297769ff390eedd51575d2af7b8f38484c093dd8ac4125

    SHA512

    24e7c6c812db785d52a54c6501ef53cd946b547c8254364c0598a65d699422efed22ad98f01e1ef94a6db76b7b1c982e7f744c694af872d1628a2932ec693a7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    56fe3b855be28f62eb6ecfad4b586fed

    SHA1

    125429f747dcd204d5e63938588b0abfe4fadb7e

    SHA256

    aba6dcd02007c670df5e31d77b34c855ad06d637ab968f9c300f763ac56f52e6

    SHA512

    e895923a38a68c9552c102bed68883ea5393435d96d838e2ce40f812fdd6651656504d6dc62ec7c517de8a77d54a1aba34ae83693e2e0259c1cd19244df4f834

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cbd6200c9568bb9061775470d75caadb

    SHA1

    724ecad61f4968f4f99a1f051f68603136dc2e77

    SHA256

    998deaa7ea4dcdabb1df83cbd55aab273a48710e329af3e32878fbecd1fa490f

    SHA512

    3de4d868b171bd25e1a3fc1d1177147b3b8e4b1aefc5ccd3fc0d1af448427f1ee730ba654e309bce97a8ec0e1911fd5674901b3c8b775918c0df8e5370603e9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b315436d6f85eec6bcac5910266d5e17

    SHA1

    f605332f7d693f76424996d072f9f9f88793901d

    SHA256

    751a6c93381aeb62d2ac7cb331a50113514708f1980b290d10c6ae8430b610be

    SHA512

    537c031bbfe4e8cc6b28479d2deeb2beaa640b00133eaeb7ffd1fc94067b76d9b1aaf77900062d64e1263983f7356d39b56423de1340b451274dbfe4ae6479ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    571d8c68c8549c012d8d2e64dd5e9831

    SHA1

    2954c450994ea1b35e4dadf3c80d6a9726c3635b

    SHA256

    1ebdef260ef421495399ac4ceb16ffc54bfb1b58372c0d4495a08dc27554efef

    SHA512

    54358809e0aea114c1d64de9499f2f7f462da63e4a75febfcf1142854f797cacf0d50f79033bc0c77c085dbc93101698595fa1f533b309d28321336535bff759

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cfeecfe65800e62bac8381b5def16298

    SHA1

    e2c807cb40c9ee2fa0d8f68649988af504cd4cfb

    SHA256

    235141758e79facd47139c7ce4b9e30eb9592e9a309b4345b34371845ec5b7dc

    SHA512

    21e542298f093be8af68d73903a13cfd756afe57a2fc7fcb85b9f156866325cecb93df59adb7b00631975c9d7f7191f7b0869369a388e404172c47becce2796e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    da240e8bd8813f30b1e90d0df619a3e1

    SHA1

    b0852ed4ca853434e7b957b8e790f18f93aafbb8

    SHA256

    4a911390bafa03dc8086b5ba7e184247e4580f6f53edbf3e03a721165c73403d

    SHA512

    59e4df840163832d6dbca324f3668ceddaeb3483ad3317bd72d81b776b458612f4d2a5a473d24612888d85bf0ab85d1bd24a0243665e57649fe4085bd961c040

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    84860cb829528b980fe0a115fbf1c113

    SHA1

    30dc5743593ba7910d454b59c76e518c36dfe46e

    SHA256

    08b9f2edde1e3c458a8ed840a2cd799f205b137fd0951f8eb59c9708e218d420

    SHA512

    4231421d73bfe61e46ae86a351973c502fc7a615b89891ea1e63edac7aa8a3627054811cf7de48928a2600bb6d7147bb43f0d9d171f2b69df47a424c2e5d10fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ee83b47f9f00b73fd2e8f54680632947

    SHA1

    aa7ed8dbb9fc72e39f88861960e3cc93d9501e75

    SHA256

    992dae9847045ce490bf13a1eae9c86c2f70d1ea9d2316e2eeafa61df56cd88e

    SHA512

    dec982426bf314d793d1ec6c892c51cc4f05885484361ae124fd54b05a31eb6170b7deb685e7f9ddc822c5a4aaf577b0e0a8574efa8cfa52a0d74a96d1da7a58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f257a2c7bc75ff289d5b2483e76c0be4

    SHA1

    4d72d9e0b64ca3a774a39be0063febedc54d1042

    SHA256

    b611a03ce31dfdc9e9a6f13fc15153d565737e523a591b90dc9740d5070ac73e

    SHA512

    0889effc87cf19d5212f773bbe877aa094f02be888e0f1fdf0d1a2ba94fae5acf29e53f54613a0576ab754f5150c1126b231808415f4212401bdfc1ab9b20817

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c8117e813025c3345c03d5711092158b

    SHA1

    58da3093a6e4f525e1a792b3efa2985da03ab7d8

    SHA256

    b14938138bbdd8b3c1185d516ad6c4c08f2e1fd68113590abaef52d33dc71650

    SHA512

    7a4c6c7e07232f0efa7ee6a9f44ec85b8bfd4c8e90498aa3243e7974fac949448efb015f2a0274c3b1a415932bd3af0c73ecae40720eacb63102dbfa69178e87

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8d159f89684a11251942fb25b78ef9aa

    SHA1

    0f1b0f16f19a7137ef997d8d5a171deff797e84b

    SHA256

    25bae98cf55e0cc8ce84b4c5cdc7a27d27f883db63ae9d61b286ec9fddedda20

    SHA512

    83302192a9ef9cff0ed9a3173d1de0ce746e37d82899d8c5b22261fcaf5a954e70c5ec42d9fabc665efb163c486fe43c2b948e74bcb73a61007602ca9aed7e6e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\jpkegi3\imagestore.dat
    Filesize

    7KB

    MD5

    0c708bfedcacd01ad79e146e0beccf76

    SHA1

    fb9f96e8dbe911277e47647dca7e720bc84bc905

    SHA256

    dab68e2f630795c4df07c872907a92e4747fe07c3a3769009c0de624feea3f40

    SHA512

    5cf26ffd37189bcfc8336e0f0f63d012484befaa19e898786e774eac15cf8222ae43ff675b4060c02519920ca4fe351cdcff6f31c79fd978ff54aa58df72ada8

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JN2GDFP2\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QHKTFKHM\favicon-32x32[1].png
    Filesize

    2KB

    MD5

    df4253088bb850c76f81c91db284d4f7

    SHA1

    46e3e3c42a159f22038d86bf39fbde118c91dcbf

    SHA256

    590d33ce64b321c321644bc8c840c354257371f8c247f776b788a5ce2c9bbc72

    SHA512

    7804f8507d35adc2a3f65a4fb017bc50219fd2ee326693dfc5011cc9e22df61f50533ee7eb597133ac69e502683b7089df89735f03e11807a4724564061b0b22

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3C67.tmp
    Filesize

    61KB

    MD5

    fc4666cbca561e864e7fdf883a9e6661

    SHA1

    2f8d6094c7a34bf12ea0bbf0d51ee9c5bb7939a5

    SHA256

    10f3deb6c452d749a7451b5d065f4c0449737e5ee8a44f4d15844b503141e65b

    SHA512

    c71f54b571e01f247f072be4bbebdf5d8410b67eb79a61e7e0d9853fe857ab9bd12f53e6af3394b935560178107291fc4be351b27deb388eba90ba949633d57d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3D97.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\A97ARSSN.txt
    Filesize

    608B

    MD5

    89f65cd040d350103ba9a11c4373729a

    SHA1

    7449ff50c783e818a13dad5128df520747cf63f7

    SHA256

    9bcdd03e8bcbf1bb03e9e5088d69ad234b4ab875c9f76af6756fb35a2690be51

    SHA512

    f665692a03073edb4b665b2ac7f9701a87f7eda82d6dc163ca82fd5eeb41825eabfc097607b989005ee1339406e96e42bb0f4acc6976b52240c90572a857874b

    Download Submit

  • memory/1320-54-0x0000000000400000-0x000000000041C000-memory.dmp

    Filesize

    112KB

    Download