Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

lslt(BMFor...��.htm

windows7-x64

1

lslt(BMFor...��.htm

windows10-2004-x64

1

BMForum.exe

windows7-x64

1

BMForum.exe

windows10-2004-x64

1

lsmf.exe

windows7-x64

1

lsmf.exe

windows10-2004-x64

1

BMF.exe

windows7-x64

1

BMF.exe

windows10-2004-x64

1

cygwin1.dll

windows7-x64

3

cygwin1.dll

windows10-2004-x64

3

lslt(BMFor...um.exe

windows7-x64

1

lslt(BMFor...um.exe

windows10-2004-x64

1

lslt(BMFor...��.url

windows7-x64

1

lslt(BMFor...��.url

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21/05/2024, 12:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    lslt(BMForum)ldly/lslt(BMForum)ldly/77169.org˵.htm

  • Size

    5KB

  • MD5

    9a97b36f3a6c7fd582e4cee14ff7e2fa

  • SHA1

    172b3b861ac280475ca78014cfb136ccabef40d4

  • SHA256

    198a65ea6c0cb0369edb10dce2e62379bed85fb82b5bba017686c91eee5e5511

  • SHA512

    a2c5d29ef579f53deaab56a70700d6892002a1be98348aea39c325a3d427695d768baa61b31ef2f1ca1c0ad5a0c3ab2f11999d841168e621812d5f2948051222

  • SSDEEP

    96:mQOQeRA2RWhwM6w6mheySgh/SnljQhhwQ0660X8bJhnYOPMj1zNMXlgIak:7X8A0VdIYehu2hwQpZ+JhnYOPMjxNMXf

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\lslt(BMForum)ldly\lslt(BMForum)ldly\77169.org˵.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2212
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2212 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2308

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4d0b7269659857f97fef1eb89be28d2a

    SHA1

    94dec1a7de2836f8dc090abf853f66ecebeeed45

    SHA256

    f99630a596879f2a51d61b68af68c3a57556dd255a73560751354ab11044d121

    SHA512

    321c19160d96bc878ca19ca6ff7d29ec19f4b31407a92b456511612f764bd9afec82dd18e677cff3843ff1cb79e51ead6822f8e7304b03eebcbe98e572be7614

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    637ff3682e732fca9d50ee3be0ba89bd

    SHA1

    a5d0874aaa71fc139d921ca9a9c2655c9fcefcf3

    SHA256

    881987ed0be504d4f3a490d73ffe9996f239b56a356164235864b974f7682acb

    SHA512

    fb161e04d6f12f59a6cd16f1256d972c79ba371a747410e7d3f1c124abdec59660607ab144e11f33d14938045a748c5b319e5f177eb3eede3d0936ca879dfc6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    65eda78068f29d91dfed0969935ec526

    SHA1

    28f4933cb63ea7f5f51c09e0756a99e174808268

    SHA256

    081c61a7a9a8b04c079ac976b6a3ccaaf407cc17780edcdc6b04b8c17df11d1f

    SHA512

    4c0591526843bc1e25e6dc3230b15a70dfd9c118b40bd344f4348bdb9a7af9e2bca512107c4e865fbdb288dc8a63759d0fff9851b09af5b71f1f883bac174720

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8a338a8f4a4155841e496c46f9ba0ac2

    SHA1

    f29b855b46be56f0149bcfb3f6f8698535ee3364

    SHA256

    76224a06416f74d173ffa25f03b55f44a38f579793e3cdd1d6d156d499fb8fe0

    SHA512

    7590f67340b559082f17ee0eb3cfa4eaebf81f770abba0ce5612790c3fa024bbcb416b72a4d697ca15a1e7b5bc6f97a6ed8ab1e998d9a10044d1327800f89215

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    486bd7f53d357efc51220bec97b4de7c

    SHA1

    0bbfc58c598fd8967703e55341f5520fa9fc4445

    SHA256

    ae8b9f3cc3e0d0a4dec3cbeeb399f078a63d1cebbc76e8de72760ebd55be4c67

    SHA512

    bf2909b1708414fb6e0a994e796aee720c4bc7121e2599d3fcb71c415818ddcbd790b658d9f0f1ddbb20a5e63c469e15790daa1adc962e2cc520b2425865689f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ab8d737d149e74fe4e9ecb487fe20b6d

    SHA1

    2fdde43940acfd8bb40f3dfb1bc1170f8df284fb

    SHA256

    16526b856cb13f5287f708fb9d405f5a130d3fc75cd99fdd931ff4f3c5fc39eb

    SHA512

    a7c02d3ef2e0813a830c61fab9d4c796ba14d56a109cf87acf00b2ef58c6ceb2953ff3a89f2e2e91f364da9c0c552dcae3115ac42fa8900a7cda93f7931e14c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0e9437ec13cc822b6d366d8dcfaec9c4

    SHA1

    29789a90041d8f77654fdfcb8703a8538ddcb008

    SHA256

    e3d84b3a05b08ed974327a88d72777c5625b62f07df249d9347d61e4e61c6b6a

    SHA512

    7dc48b590d714c3db0e44bca6368f210685b026317318394dfef29df4431a7bf870ca9d2b9bb3a4b535f779fbee8ff7f0a3de4d81c6f09202613a0ec9c4984b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    758ecea480f7b1bf548e01a830ae4e82

    SHA1

    5534a2418af2f1666afdcf6e4816fe431e8674b8

    SHA256

    afd27b5cb1759ee9402bd54ef5e6b29f4e0acd39ba85962febfd838dff75c8b8

    SHA512

    6b0e720731b16a1945eb05c93bc35571fd83407790f3a929b9aff12213d00dae874f74e54cf6e169a35e3565d5fb256df5a8970f2fef4ef18ac0de297ea2812b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    392c0aae12bb0b33055888be8e0352d1

    SHA1

    d672234fbdcfbc6b5d4262a822ef817d57978d5e

    SHA256

    81afd3f870b2956def1b42b88fe3481a3f113b27db7b87b2bc83f2bed7679dc2

    SHA512

    b8cdf98467b82f1d78f434b53295ba36c5f0e8c4724fb3ba39e00c16a323d3565a552334f222efdb94905c8de28fb6fded5fc161314e9681f7e69adabe3f0925

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    11766dec1a2164ea7e2dbaba8ce33ded

    SHA1

    43e3292d23940aa76363b5a5cf763a52ca007106

    SHA256

    033d50fb6dd145772cbb6e84eb2a1bc4257ee4ee089aed31b853b269387291a8

    SHA512

    49c9dc282eb24759feb065f1e65bf417ba2699541b9fb8af693fec1a8a6fc086f5e4ea56870776d48419bf059acfdaf85f7257b460e24c6019f5c147a85a4b78

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e1207e038d7941b0c5a7073faabfd7f6

    SHA1

    547f2bf5318109e28098cc5807e1a196b2f3bde8

    SHA256

    bda9694f8c9405afd13bf3e0e24de0dd326aba1679d2ff5afe3216a053990c4f

    SHA512

    324df59187ec87310e0328cc4ae77a2264b0602b9fa468f3d5505b3039e6320076037324c9456c0c56834b196263e768547317613937d43802940d7232a18350

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    020abf4911939d831cf0987ba793ebc6

    SHA1

    352bb8cac43a8c29bc1dc82ed836c37800bfc55f

    SHA256

    72e7a2ae45f9a4661aa8ae8f5fc30b82b227e16c0376f4340b2eca7246878e80

    SHA512

    af8d681616b75f4c39f5c576e6589561b037bdc5210baef76f4cbe1294285a1ddb689aae430c5d79ea80ad5adb1802e31419c9b84657f6bf9458be6f54b302e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    efe5d0b22b6e3ae0f9ac2c3199f4ffa8

    SHA1

    521f4c762f64425b8335266402c7d38b975d6c6c

    SHA256

    55f45cc061452c5c5bec392039a5646136d0f4eab2493cbeaf01e42dbc834e32

    SHA512

    434ca090253e637f5cece8f4b4c94a300c5aab0994510415636821ada10dd9b6ef1f4f27b4e77b342693bc3c4123f543b7a24f354c5e00f2a73f3918e6879ebc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0ef23128bc46f6f255dc121204abcf67

    SHA1

    12950c7fdd3d237788cfdbbc2c9b09842b3e1c4a

    SHA256

    152c349602895979584e7ff63c96a9243b2bc86cf72c5bd6e23d574bad9ba1fc

    SHA512

    8d8d14ae15dd74c13e70613654dfe1e5bbb60401c6598f273084b86c896a0fd9a3e845b2c0330029fab346303158b6c46b713a0c04ddc6b12e5afdfa8400634e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0c35de26e409e0d785338a3a50058533

    SHA1

    ea99a2a676c195c7b044a7cf60a8558571b1ef22

    SHA256

    b7c7ea02ec53596db88c9b4859968e1bebb1b7c66f4b3298885302037ebeef67

    SHA512

    c51ef91c834b4c0805c64c885892de43a99ab3e5d685d6dd5733cff6fab248a36e0199a9117df4c589c1100375cb793232c635a1ec1630a06bc0473a55371fc4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    82be73bc07cd53c17c915490480d5205

    SHA1

    6ac4a744712ac9aa08517fee7860123cce83a00f

    SHA256

    01b53c845e1a89a6400c4ceaae7e4c41390a0d7c1bb685f9eafe7c7fa1d57d92

    SHA512

    5bf41b8e1e1a6d1e2417c7e948281292da2fb73f7dc54b67a2b1cd6169f3a3afbe72e6fc866b13b58a0b701e7dd092772fcb4113852d594f85cd682519864352

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4dd3a4fc313c9d163697a91f0959e58d

    SHA1

    0fdddc5d2eb5f97dc9649c261e7e9927f5a15eba

    SHA256

    83403f6ef9636a3dc1e5d362dba78d4fa09c636f21697ad6955fc9be4e81ff4f

    SHA512

    e3e13797d1f01fc9a4ba5d6e8e613461e90c0b5c308986e1cd72eb06672b3047070bc3635b2cc0e8b67839cc8b5eeba853731b018f393a52734d606668417ff1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ad9d6397169c143e131b44197410828d

    SHA1

    61d371ec7efffd1c596cf1e8f33c371321a26bc8

    SHA256

    b6b7d7d33459d0ecc57181595c9d824137a623bb5cf2ae5fc6d39fd2f62f2d45

    SHA512

    fd57dc9c8c20e878732544f584a799e4172783afc6288f15b81558f5493e7f17b4ef609f4d59b7a176815fced6668b13732217cb34d0c72a192d0b60b23b8988

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab37B6.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar38A7.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit