Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

MirServer/...er.exe

windows7-x64

1

MirServer/...er.exe

windows10-2004-x64

1

MirServer/...er.exe

windows7-x64

1

MirServer/...er.exe

windows10-2004-x64

1

MirServer/...er.exe

windows7-x64

1

MirServer/...er.exe

windows10-2004-x64

1

MirServer/...te.exe

windows7-x64

1

MirServer/...te.exe

windows10-2004-x64

1

MirServer/...rv.exe

windows7-x64

1

MirServer/...rv.exe

windows10-2004-x64

1

MirServer/...al.dll

windows7-x64

1

MirServer/...al.dll

windows10-2004-x64

1

MirServer/...er.exe

windows7-x64

6

MirServer/...er.exe

windows10-2004-x64

6

MirServer/...��.htm

windows7-x64

1

MirServer/...��.htm

windows10-2004-x64

1

MirServer/...te.exe

windows7-x64

1

MirServer/...te.exe

windows10-2004-x64

1

MirServer/...te.exe

windows7-x64

1

MirServer/...te.exe

windows10-2004-x64

1

MirServer/...��.url

windows7-x64

1

MirServer/...��.url

windows10-2004-x64

1

MirServer/...��.url

windows7-x64

1

MirServer/...��.url

windows10-2004-x64

1

MirServer/...��.url

windows7-x64

1

MirServer/...��.url

windows10-2004-x64

1

MirServer/...��.url

windows7-x64

1

MirServer/...��.url

windows10-2004-x64

1

GameLogin.exe

windows7-x64

5

GameLogin.exe

windows10-2004-x64

5

MirServer/...��.url

windows7-x64

1

MirServer/...��.url

windows10-2004-x64

1

Analysis

  • max time kernel
    188s
  • max time network
    233s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 20:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    MirServer/Readme-说明.htm

  • Size

    2KB

  • MD5

    1a919a1a4999d56a1defb343667aac28

  • SHA1

    f56134f9bc67aeb242ca6c19bae4c347ed1a9206

  • SHA256

    faf1518bba5019df39d5337577be9fabee9055d7fcd1ea252da60cea3b7d4f9d

  • SHA512

    c51893606073f3e767af9e271b43a2090e88dfcea367a1ec28deb7a0940767bde14fdedfcb2338af409c847622d06685807e4bb5c64899cc9618d5f2e8c98d92

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\MirServer\Readme-说明.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2716
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2716 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2608

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9b58b600508086f2a5f68bdffc435a57

    SHA1

    5370595a8d1691596a1b3b6717fa91bdd296086a

    SHA256

    972958d94a94533edf4a82fc82f1a62ef1ac29224f9d5b177b80122ad63f2854

    SHA512

    b71fc303ede95873d73ce7318fbda08c49293f24067409b6a53bb4d96646158de2e800041d7b74800a3f37ad0793568e45f0311511faeb23f667d2ae665014b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ca70b3660145a028c96ad340df5a8c14

    SHA1

    6f76b055872ddb89fc32209d5b1075eb76aa291e

    SHA256

    73cadf5647af216c4d95ea7559a6a73300d29ffc1d5304f59e320fd1aa8df560

    SHA512

    55e8498dfb40bc7f590bfdceaf8e0ce81091592ea661fe961107b777fb92d4ef369a9badbf59616a224bd88a0837f7fca3af3866f6960c00c00fb91db11519eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    be92fb0323381e030bba32623d6dabf7

    SHA1

    89c015c771efec59f91677e9a733feae2b741ef0

    SHA256

    41ed581e2229b97995b3e7472704cb08318e74c5b7de0674df8d24586dfc1797

    SHA512

    f3bd73092dbd4f0c77553691f5f3c8eb19edb0e20a85f3b46abd58331d541de15362556c902ea46c7c9955c6ce9b19062ee54a9bc111c5fa0f6dbb58d53d888b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e583cb806bb63e142fbd9507ec71b7f5

    SHA1

    9bbbb42fdcc36de86fe80430f99a5431de9f988d

    SHA256

    13f3cfc9745eb76bcbf77831f1244e16ec5131cca1e9240e0fe3094245af0309

    SHA512

    f83654a14cbd9ca41def5259c136fb93af8cccfffedc35d51657845a191ccd7a0fcd1ada2144bd64443d0578f895511e6524eb3f58b572a58578ce4a5631a995

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4b674ab29c37e41e8cc7778df912dec1

    SHA1

    8b5c468230e3248279b102ab5cd3221e321c2f53

    SHA256

    5a9749dd857421346a87b349f910924ea648a2dd1c85a655484a6f68782ffa79

    SHA512

    c6aadbc9470c6a33d2de4ae0f907cf1d024bc167474b7d3ff28738b41422bd8028ee303fc5e726547b0c5389dc6419ff93a77b8ce5759b27c6fbdf866fb3e7a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f8430a3f20cd16e4298b1d6d5b28bb60

    SHA1

    153661b2812c70626a941d6006feb2dbd8f79503

    SHA256

    f3f61de208364d9ed19427c225fae080de9c5b38117e9f0579e6fe8216a44677

    SHA512

    7e1054d2e94f356db92a141cf00e62af8b321e4286e3effa3dbc082c63f837d376532af20c5ab178c3ce03b9d21ec56dc0d063c9eb7766e3fe81bb2aa51438c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    107e40707d4b66e82a0ac3a1c583be13

    SHA1

    e4b68d8baf99f5e1a67fdcf071ef923dfd326283

    SHA256

    8ad78f74b901721481bf62e709feb716145733ed14eddf50eac1f49f6d9633d3

    SHA512

    86af12be79202e88f341e14796aeafe59a8fed0735dd7f3930b4fabc3faa1041427731f7102512b44d9a36eb5334d9420510bad8cf2dc0a9661b2541ebfe3e4f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5df76e53a5cb6cf33da6a6a61130294e

    SHA1

    bac776d48aa52929a75ad59cabdc285f1004c4ce

    SHA256

    13adac0d1724256d8c233b49f2e807398ccb4a8898e393ae755b496ae6b53ece

    SHA512

    b91d363b47d7971113d7cd253352e1bdcb1710f6e7dd6d52d15fa2a1dd1775123fbce9f19dc0c8d3bb69deaf0d638a6608e185f11edde2966307a0ee5c22c5a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    60f5d852f1f39c37a348b68ef80a9a04

    SHA1

    6971ffdc959f508219c77bae542dc8f639742bba

    SHA256

    7f2205bd15bfeda5a1fed7786ea012fd73d901e45a0783c461d1b6d1358512bc

    SHA512

    52819c9c17552d87593e6db396092132ef7db328e833ecf87793146cb3c751a7435bd9621e73e121b0fecf88e21af44ab808c5dbf0b8f76dfbad08812c189e9a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c79e5b41f6d2841a17fbc086284e3b0c

    SHA1

    b2e4ee0714f7c9f81ecfcda744d6c9b8d53a0343

    SHA256

    6e95e798607bcc585675709787d052d4968785c05d66045b11d9119051d0d26b

    SHA512

    9066f601abdea062abf7c9802950ecf352a9ee018069090c56abfa9d4025dba193b992be4cf7aa1571b6ce6a08d615720780dc177d002ea9db0c23b6f26536cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    258d71557444db1d3916cfc096e732ca

    SHA1

    db9eeb7982cff867c6e9f8f345b518dd28dc45e2

    SHA256

    aa39b2b3f7ad4153c31f0a5cdbdf88cd922128ba59fc85d449210106306bdb38

    SHA512

    6e80128aa561ef6ea6989dcd37a7d8ffd04abc0889b2c6d1904c67184fed22044781a4e58bf7e5677947dc817ef06a05eb301081aedafdab51cd68b48583917c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0cf01538dc9d9a54f2405809a45fcd9f

    SHA1

    20fa5a106c9f9fced42cc46c19cea1701777cd78

    SHA256

    0f63e974613c24c10d0e670caf4604144724e8e7ca24465b06d3121188b94269

    SHA512

    9e2997b23b164984b011150aaa1f77d68026c9bb3a5dd44d7bcdcc41055b68a4de6375134e53864b965ec424b53d46060f8671199719503a0533c9a94644c1f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    11dc9d1341bb6862e28c125b1a705b5c

    SHA1

    f19b5b59f807a2f2189a29ba958d9c65b9e2a49c

    SHA256

    24b99bce3aabfe79e567e81bdaf905c36121c88189e11e260cc8b0077dca0121

    SHA512

    b945904edeb129c814a13e0af564c0a09032960d8aea7c4b1140ca2139e98526e4b343bbf0fd8f1a119264cbccea0288828131b541cbf0480b471da60e318a39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f641a10a55f62b3ed8edb48d74e4aa62

    SHA1

    8ec83b581fe3e8638594e05a1e44dc62f552f156

    SHA256

    2dfbe034646acd9d9d7b69ba1e6a54fb9a83c951576e26452c917a164e5d065b

    SHA512

    9fbfeebb813cbfaef9e8782b9461885da2993cad6c2d012a6f88a092d7f570f707a684123d920fabdcdc15c9fc650d8804371c463601f145cf021294adab0db7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d6bcb94ddd55a7ee9b5ebc0ed66923d3

    SHA1

    e50f25bdfc0b91ce0fca5b4ab59c9d565f6d65db

    SHA256

    f74dda45f4ef6dfd2855ac3a65d7d2f9cc3b28f908a11e23b5c34f6e69d5303f

    SHA512

    b0070949f7a0d99dc87763892900ac002c9bd15be53ab35bc9e9df0c7639d4b83d7d30fb3df95e37b1ad3511ad44772a49a618e1725ee2caa5ba92cad4635ffa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5e5479ec055fa9fed0b174b23e9e5a18

    SHA1

    d20a68d1453d0c6c11736b33d0b52193fffc82a4

    SHA256

    4fc54d3971912db452640c6bc2240a216dc81d37494eaa2c85a6409285158323

    SHA512

    781bac28a2bdd82ca33deb35a551b9a822a3948f1a737342000ec7187f543a7a3d8cd2ff34e0e24693f1196e21aaaf25f9ea5b159c205be72fda6cef36ebcce6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b4f070febaab5ceb8bec84e31df56be6

    SHA1

    dd1e4b6c1dee2e11ee07e2fdfbd98650374e0962

    SHA256

    828038b650c030af47bdac278f2bf06ddae7e288a0c4c7570022317863504f6f

    SHA512

    ee9845631375f7c2757f3d6de11cf1da0325f68aea9b27582024774f64913f254cb59628b7cca0571aa7fb44cfbcdc7cbd7f6c8ac6774833039f1d6af16cc12e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d767049ebe1cf96dbc8b6a3e89182561

    SHA1

    e8d58e0d819d7d3ac6abff1061495b3d9a2f0235

    SHA256

    68c4944185357494d7acdc053597ac5447889272f8c875d1f104681464e8b1be

    SHA512

    cebae52b054b6409c6b9d3c7478423210fda8e162dc57f2f7e47d63121fb019836f6ebcec717d8c9e7bc6c62ef401d98b24d131b0ababc29f32d2c40f852c2b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1c01b6bdcaee6fbd0268ef22f4ba0e30

    SHA1

    307837d32e0ceeb54e3c022ea431144e98318849

    SHA256

    71451e03f153de5e96ecce8519acf44a29249edb8f3b91f78f62439c7e0ba013

    SHA512

    a559583cef28e174f091142d5a850f713ff8510281778cc78faa6e1af397443cbdbc685f12dccfdfcb4705fb5dc61d3bd3d95c485044a244fec8addfc580d38c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f0552978c2ee774af4d69388b6843773

    SHA1

    5748ba23fe32bcf6127f2d48bda22c4332372a1d

    SHA256

    b0a461e967f00b543f1e098fd532d12a856c553c09f317e973f0abae603f740c

    SHA512

    0e85ac37c9928940f6c47b747e963fe6c679edbabcd13c004fe8bbe06b3b6c537795b31d389312ca1b8800eea77c57b33a5cbf77406368d6995bb307483e1433

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9AAC.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9B7B.tmp
    Filesize

    63KB

    MD5

    f2ecee8dd6dc38d23acde059c04d7cb7

    SHA1

    d859d579598cedad8d8d27e2e0d29840880c44ab

    SHA256

    a008be7bdc004294252c9a9a64f393ba1ad004a6c2c8bbbb03ebe438c2525c95

    SHA512

    e2a952497d6453b054b2e4fa00feca5af2435c5353089ae449505751b997702496a12c5304b3e9dab2e85c3d6fbae7482310cd70161ee93307de9af330e23094

    Download Submit