Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

SKlauncher-3.1.exe

windows7-x64

1

SKlauncher-3.1.exe

windows10-2004-x64

7

Resubmissions

30/10/2023, 18:25

231030-w2rjjaee4v 7

12/10/2023, 17:12

231012-vqtzvadc7z 7

Analysis

  • max time kernel
    26s
  • max time network
    34s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    30/10/2023, 18:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SKlauncher-3.1.exe

  • Size

    1.1MB

  • MD5

    021b53abfc25a261077282498e5726a0

  • SHA1

    ba7f38a28444504e6e8e1f995cc40ceb70ff6409

  • SHA256

    c3db9475c3ab6b53d8f6d711f587e5218c9b8d332229a208277bc0b27a24b620

  • SHA512

    484bb65ecb1ccd3e5472a27737fd2fa4471240aeefcf4bfdeaf4e49636cec9b3e43a5c2feb7134074c92af01f52a456b8074aca8269480e210cfa3b51acae81d

  • SSDEEP

    24576:7h1tjL2uma7hLQKaikK21SHCJ3ny+SGiPsGSa7tLC+/e0cUEcnr:sghMKai1viny6iPH5hF/e0m2r

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 11 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\SKlauncher-3.1.exe
    "C:\Users\Admin\AppData\Local\Temp\SKlauncher-3.1.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2924
    • C:\Program Files\Internet Explorer\iexplore.exe
      "C:\Program Files\Internet Explorer\iexplore.exe" https://adoptium.net/
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of FindShellTrayWindow
      • Suspicious use of SetWindowsHookEx
      • Suspicious use of WriteProcessMemory
      PID:2920
      • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
        "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2920 CREDAT:275457 /prefetch:2
        3⤵
        • Modifies Internet Explorer settings
        • Suspicious use of SetWindowsHookEx
        PID:2800

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e544c29960734aac030825ab8691c373

    SHA1

    9df97a32dfa712a29f163e0773289ab5db9577a0

    SHA256

    8244855c177adc8672f150431f206589ca8880c6a86e5dce55c176f32c07acdd

    SHA512

    adeac7fd8b7d00ee4f545017db5940de24297d75a066636426a06c1a3b3f6437d029235d05df640afecaa5da0cfd96569699b4bc8830ac5c055a0ce763135480

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    15aff7a0b03da2733bdfeb00fabad7ea

    SHA1

    023a1dcddecaaa4d410fe3f51bbc9c1c4966f45c

    SHA256

    f790488f447f58da8ac0c470063b5ca6bcd9d4c184434bc37ff42a31a17661c1

    SHA512

    85e62ff7f9fa8d5e1f0c3444f70fc59c0778b4e94edde6f16f31eccf4ccdf6bfe42dba264182d11689dacec71eae5ebb8d030b979508ea6534f2a68e050546c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ddb7604211ed20098a28bf8a43434584

    SHA1

    ccbcd838acc1984842f48da763d648361be7e36c

    SHA256

    efd457685e2ebd1d77e472f3d70415f74678ff337d5f43c57d166a1a9b63f9e2

    SHA512

    928dc2d305ac78e2cb7f1ea542030dad8af90581712eef3857863f8cc195a1714748cba123ea84d9eb874305eb0a975a8222dd32fb48aac9ce19b2ae6343a844

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    be1a8d1f74a1e5a30b43babbafb5e1ea

    SHA1

    5c19428952ede656a91801e8284660e674ee7eaa

    SHA256

    7edce7ad07cbeae84b1c2ce20c12a2995473b5bbc456ea44b0117e4735294deb

    SHA512

    760a509ef7e529ac946fb44b7f30ca8ff4f9919154e271846e8ff60dee5eca661e7857ec95e5c8d1ba63f8af1d69311870d9e3a3823a2a597c93d25d899ab01b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f10827fcc3971a69a9c0696821e4b92b

    SHA1

    acf48badb305d389eda19bc17c42a5d8f4a04ac8

    SHA256

    403dab89c42398ee19e716564926d0901ce01c794582ca1cb4719b593dc725f9

    SHA512

    33270f76134565eb3eb4c3bd41c84f41e4abdea69af7895b54e86ba90b0ce28e33bd0844d592a5d169dc327635284cd7b3e56ebba19adb85fbfbbd1f9049f350

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    815a878cf19e0d46874737091c80a54c

    SHA1

    c404104a78efd2e5812ab83a821466679e9585c6

    SHA256

    7ebc7ba853b492d328873a7a3f0add88cfbd1700e9e847f1735396bb82543e5b

    SHA512

    f41a5923f51e7800db4e6d2b9694ea1ced48cf5768cc6ab3b6ad8e3e10e4a3a9763ce200f1c9278625c2ebce8f99a9b251d29fd212cafd5e7dc4111406496e7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7fb7fe2df1d7d555db00855b22d0001c

    SHA1

    bb0505452bdfbe0065c5784d68792418d026df7d

    SHA256

    3ef942ad494b2d697b395b5be28622eeb31d97cae924ecb895d8382d01391a79

    SHA512

    225074fd281dccb45a49eb7303412b9aad867d3088c0c445375897e5a3d3c35a1e32fbe29e2258da6fa5137f45fc6122dff355c48258b36571b744c6887e50b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d11d8f1b093da12d49946029d3258bdf

    SHA1

    9f4dee15170baae99fbb03047a294e4a0942b94d

    SHA256

    da06b496628072e900c916a580d13845bfbb32cb19f3e10e3fee04b02109698e

    SHA512

    6a0647f49d08509990abd81318465f0c0ddd99fc67e144e88afb85c0b9c8b4836024d1eabb7390b9949633d0a915c89d26e68632da427605df970ba8a1709bd2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    14c1245f630be6a16d6afd834509e3f6

    SHA1

    be22453eeb092d0bcb32eb61146440ac538a6b3a

    SHA256

    c8739a3707cc142102cb9fe2794d265ae5679a7fd611590aa492653d8ab72575

    SHA512

    8a748e4c39c8cb3c1fbe915d63b70a4fa7c2af68253612b033ff92820e80710216f326179570a1a42afd8eab0d609951789e9766a1cb22888a846daa9b95ab55

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8ed35cc59e69a99f03494734caba8b8b

    SHA1

    3b3424715177609887170bd84c553d9cc7057f5b

    SHA256

    50a85ce69a085d3c51f2041951f8ae86ae3e6eec46b4be533d57a9f521fc128a

    SHA512

    1b7e92fe5f35a9541673d736c3392c4faa29f8fba6ca07fc109bc433e6cddf3833e7c0765a7bcac487a9ffb9f225ec896f18cbe68b8c41b49ce61314b8479a00

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    edbf88f54c8cead97c8ef46af330f5fc

    SHA1

    1dcf7c2a7aac81b0703b3a18baccb91a0228df18

    SHA256

    48a935bf8d2b563b2b2802243e72cce98e9b4168145ed29b2b6a9ad165de3458

    SHA512

    535f9764fef877f1caac69be6a19d5ac824f6fa63c839d9e4ee2b289eed066ab9b4f6a9754cb2d3dfcb634d18b6e070e86144f233d2d55a04239e1b4406f6422

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    22ff97783b06684ed2116dd7f7289729

    SHA1

    af4d8d8149077f8137fd7a2354b4d2b472bcad2b

    SHA256

    29069ce2e7c0781954f013824091f5b0821e6978c7a98a47289c4cf10470d7e1

    SHA512

    d9754256d6d3c3133dea2c11dffda441daf4ec8bb73e8d710327e47fa1ea95731649780a851ea84e3f2a96c95663e56ef0732629943d7f4eefa4c9320acd0de0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    97c49313babeaf427663390e084345cd

    SHA1

    7d1317a51c0ba5b0a82925a3b2cf2a2691e32389

    SHA256

    8ca8157c1cd919ba29730acecd2aa629d33c0557a99576408aaedd9945b21b74

    SHA512

    255d79d09c8bcab54df2cdcedec8861070b6ec9fac564a9d5841096fa4772bc2ef3d564acb2943e2591512a7a7746413539964748af016e9474af404ca188944

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\p3auzoo\imagestore.dat
    Filesize

    2KB

    MD5

    0ab04e3320ae5de90f487eda0aaeeb78

    SHA1

    3a991a20ca816c833ce7a3483d4f16a11de3489c

    SHA256

    abd06839ac5ae8440eb55e6dc60f417b31fcfc79cb37baaeffaf31bb9f8010b4

    SHA512

    3adc1bfeafcc6646e6dd934395e7fc026f732e1806a7f0e2129e0f418325f06747fa17ddd3e092fe43e7269f13b1b78329c2a22f2bd49649aa19eeb63ae14ffc

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H57AUUE9\framework-aba9a139625d94cb4f9a[1].js
    Filesize

    138KB

    MD5

    e1dac52c245ffcb07a84366c03e33d88

    SHA1

    09fd61c7ad9fa0fdd6a87e33912ed915bb32cb00

    SHA256

    6dfa2214b83346304aa14203fdb4a93693f2a95c7772418cb7704c99ddf178c0

    SHA512

    6d37d9ac9c3cec68b6e5b6e3cfc1ae372f10db44b13034e170ff619daa9d964e6753a20668f75bf77095fe740d4385ea9ed7b2c0c02009d5997b31d20c9c4c7e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HYJJYCDH\gtm[1].js
    Filesize

    188KB

    MD5

    34d9397798c9bc5d94fc3c5e054f2f0c

    SHA1

    b031e321ea62f3b1e0b46f419bd441600d8ad52e

    SHA256

    159189bf792d202aa4fad66eaea6fa217d5f5637bed57e5dfe55459a6a068c74

    SHA512

    cde826bab5a394222cb1ede947ecd07837fcf2f4ab15c0603d97543d5a121d8650b4037ba73b1815d30c584451c2d2d77abb5d01337a486949860e4411a2a8e3

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HYJJYCDH\js[1].js
    Filesize

    265KB

    MD5

    4d597bc22bbc964d163062a23efe89cb

    SHA1

    7d991a18502544e52182a419e8a3e4771d780324

    SHA256

    c5123a41f3a855803331c63a09ead4dde8db4d085988e5954e141e4903e10537

    SHA512

    eae5f7e0e6d5c3a0fbfa98bfa8876cf1c6ce596f55918c421794d75d2ef9c13ae07ae7ec474919895a2e611806ebd9e58a1dce96d219df288a85234afe97ae03

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OE1L9TUT\app-773afcc15f3361fe2a49[1].js
    Filesize

    234KB

    MD5

    561480cfab571ec6dfc04ebc37611e43

    SHA1

    4f79c7d540614a49fd9d0e8f8f931af84f8b385e

    SHA256

    0536f21a63881f20a98124f5f2fb5298bd566bafa8b7f84c3009c3b455cf082a

    SHA512

    bfebbc46e010c43ce196e6581472b742dd4850b05f1da068ab74cc9459f39cd34f2c6ca466a09401d8a92a973014035139b53aa0887ac8d78641d73e2a7dd9cb

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q3NPL6GJ\favicon-32x32[1].png
    Filesize

    2KB

    MD5

    df4253088bb850c76f81c91db284d4f7

    SHA1

    46e3e3c42a159f22038d86bf39fbde118c91dcbf

    SHA256

    590d33ce64b321c321644bc8c840c354257371f8c247f776b788a5ce2c9bbc72

    SHA512

    7804f8507d35adc2a3f65a4fb017bc50219fd2ee326693dfc5011cc9e22df61f50533ee7eb597133ac69e502683b7089df89735f03e11807a4724564061b0b22

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q3NPL6GJ\webpack-runtime-0663f4f6c3ef3a74c4f4[1].js
    Filesize

    12KB

    MD5

    49a68b0d4d22ecf4ce58d0594bdd5131

    SHA1

    ab04cc3e29a30d9366eddf7ea7f023908231ee4b

    SHA256

    843ff0c9ae4b1ed3a1e7266b2d9c19cacbfa1fdef12b6e4e79ab46c8891fd463

    SHA512

    3cb3780b638a8c90962be78182be161e74347b379aa144853380d136e71e3dce3a5d7de59d46d6ee66393cb5ba3a955cd860d49f60b85312155c160781e94424

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab671E.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar679E.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit

  • memory/2924-0-0x0000000000400000-0x000000000041C000-memory.dmp

    Filesize

    112KB

    Download