Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

nokia s40/Micat.jad

windows7-x64

3

nokia s40/Micat.jad

windows10-2004-x64

3

nokia s40/Micat.jad

windows7-x64

3

nokia s40/Micat.jad

windows10-2004-x64

3

nokia s40/...��.url

windows7-x64

1

nokia s40/...��.url

windows10-2004-x64

1

000Micat.exe

windows7-x64

3

000Micat.exe

windows10-2004-x64

7

000Micat.exe

windows7-x64

3

000Micat.exe

windows10-2004-x64

7

咪客适�...��.xls

windows7-x64

1

咪客适�...��.xls

windows10-2004-x64

1

索爱k750...at.jad

windows7-x64

3

索爱k750...at.jad

windows10-2004-x64

3

索爱k750...at.jad

windows7-x64

3

索爱k750...at.jad

windows10-2004-x64

3

索爱k790...at.jad

windows7-x64

3

索爱k790...at.jad

windows10-2004-x64

3

索爱k790...at.jad

windows7-x64

3

索爱k790...at.jad

windows10-2004-x64

3

Analysis

  • max time kernel
    145s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    20/06/2024, 14:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    000Micat.exe

  • Size

    211KB

  • MD5

    067add53b711819fef44da05888cdd31

  • SHA1

    34c5f69837c196153ff4002545b0e61731db558d

  • SHA256

    453c75f27cba6fa2fa71b1f43118de6497d1bfc0edf28099d8d4982113ff7301

  • SHA512

    46f951a31c116f55f625477c88a460147150ac8ecade4978d093da2eb8810523f0dbd355da06ac042fcd2d082e503fe574ac287b74fa64aef0546fd752a201c4

  • SSDEEP

    1536:TmkKw3bx6zamSZgxNJETRxwqVewx8a1ccijgc76gevnVlDwQcij6uumcijyhg0El:TmkLNrHANJexwbrgFHug0EOJrnXK

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 7 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\000Micat.exe
    "C:\Users\Admin\AppData\Local\Temp\000Micat.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2460
    • C:\Program Files\Internet Explorer\iexplore.exe
      "C:\Program Files\Internet Explorer\iexplore.exe" http://wap.micat.cn
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of FindShellTrayWindow
      • Suspicious use of SetWindowsHookEx
      • Suspicious use of WriteProcessMemory
      PID:2292
      • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
        "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2292 CREDAT:275457 /prefetch:2
        3⤵
        • Modifies Internet Explorer settings
        • Suspicious use of SetWindowsHookEx
        PID:2660

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CF14D1855652602540DFCFECD21854DB_54588CF5E8C00DAFF481CACC7AEEF6DA
    Filesize

    1KB

    MD5

    9859f3006d6867b887556473f9832d4a

    SHA1

    0b5cf78bf9f18c0edc131944a456c52500146a25

    SHA256

    2726298c5825931d08c28eadd0557654c18c3bc30222463dfc886f862196d6f5

    SHA512

    12cbd592d3e2f75a8a8a34b46b43552c8b0791763911d66a16a5f7acb151a30f2fd417cbea26329c60e1365f95fa9ed3e13ed81fb162e4fc14b39c4bf0a1b8d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8d70c0967972d9ee1bd5cf33b3ab4b44

    SHA1

    f874099c169c3aadafc4b96f11098caebbc5a498

    SHA256

    db48c390b7e23129a48cb9cffb5d8cf55d31cdef07a3d0f2f90782d4507a4038

    SHA512

    66e844d81f4d7d12fd353efd0934ba9030ce849bb71a272cc62cb5753f802c3af3ba741ab648e2f85d2d9a2937f7004cd24ab7fe2c1bd3f1166cd34d682bb994

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    658adeb073fc26810c0cb34365131bf9

    SHA1

    732c5fbfb4047799ecbb70bb177b31113a18aece

    SHA256

    1dd19e924b503b4568daa6c1d0122a8f2ef541f116c3ad9dd49523b44b769b22

    SHA512

    d9a93b77902cab492c42c2084f5c27805ccd418cbb75fb6d44d1ddab0b9b718b17ca94f6a7391ada7c922e6ecb40bc1cf1ee6b1db534393d34e63b4962b272cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d3ce96365ace5356f03430eaab98b7d5

    SHA1

    f2e40a7bbba0281b3243a5a1d6643dfb65a292be

    SHA256

    15c313b5518b0b55b09ba3c6a07a61aefce8e183c643b43dc2d6e8580a142ac0

    SHA512

    f51d9ccad0ba06026ef07c14e522ab2c8747e3f324b732ee5b13864abe0d4649c9131cb70aee20a8eb4fd9e0c62527443c4fdbac8330248f73d9b58a008d099a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c7739583d772d3a22d4322960f65ef7d

    SHA1

    387204223ab685f0c5635bc2383da71cb83a78ce

    SHA256

    90e6629099e1015dab6cf29cebae6d927f7ac0ca0eacae52c931b4fa2731810f

    SHA512

    c6010c5f27d0d43eee4b8b211b8e4359d595790490273e1c585f0b415a1e59d8b18207dccb474f9b546c9c3c01257bbfba539d7ab9a7f49a5e3875fa9e40458c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    45342361d9426c1a2f07b60cff9ab38d

    SHA1

    8fe515d9affa045be3bc929896ec52bc87b70da2

    SHA256

    504463abe793f4d904be2fdcaa106bcbc9e4666e2e2cd42a957aba154f7f32de

    SHA512

    3a5eabaec1299d453ad2531a3a7777a1558fbd80d989aaea6b0344fe93753410a9ade6d5c9ee92a0bbe391335815ed3f537f99a865a8f862ee28f3460255782f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8f549374369ee9d22f72a5b4472747f0

    SHA1

    2eb69a5a794144afd7a83abd6b134bb535d805b8

    SHA256

    0cbe21a8a95736fd8486b216118b2b452f5b4938b5d8feff66e6c4bd44618dd7

    SHA512

    9bd21a51caf6f8483ea37aefe0ba2ec94964503962219a7f0d08422ee0c9874b1dd4813f9d5383914321fcd73200175619ef4e1c838c242077f508c95b90d273

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3ac09c6abfae103d96be39cf634bb060

    SHA1

    0acdf655621b520f465f288b595e0d4e37ac4519

    SHA256

    1515c7215b96454e48590b646db7369721d7f6f54c79b5d519c910c16bc0899e

    SHA512

    7b5e9fdf4ab3704c3029e73236df59b462dac9712199a1002c3c53b7865879d95a2c413af9b1b7c98022bcf671641a04646b06194de29326922da9c6dc8db96d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b1f106a38e91144b17705a388985fb5f

    SHA1

    f9323822bc6b92943ab4139605ffb5f27489e63a

    SHA256

    61396564d39c70deb3eca84294096cd4529785f7dbb85d6f6326225af5746bf7

    SHA512

    916065074146e44c8d0336cb876f4543ef497e27da41a4970eb406e863525b2826b2514689d1447ce87c62e7378c2275530abf7736d0fe31291aff336620827a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a71144c723b42a11311f13fcd6fd396d

    SHA1

    97746ee32af92a2031f018d0c3f0142961dfd630

    SHA256

    9a72ca6a21c600f5c3f40c73a6cd9b606f4e2481fba9486a19beccbc90305a25

    SHA512

    197b23e4f3cae6999d72098e26f6fa92361687597d218cc78521cd0d75f492165ce77966f4f6bce80e69c775656bbd8736b96ff6293914c5a0430c99707cc809

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dc0166726a332550ce484b5d1e3e45e3

    SHA1

    d3ba47c3c9f0eadc69bcd0ea4368424eb47828b2

    SHA256

    5f3bc60e38c9b45149e3db153389b8793d9ee11f9cab4dca6230ac65043d16f7

    SHA512

    fea171fe0bb9ba291d434ea2093e28d89a93c18b5e7f9509ad9eb17660a9753648fc4824a268b38033d1c19cfcbaa9a01a86dc589485f49c695abf679168863d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9d3a750f1ab08f0f68c6696c5b153e2c

    SHA1

    f2ef590577f70698e07cac08f7fce4a5bc7b4001

    SHA256

    20dfe78eb17861fd3675cecf46be3c1418d8ebbe959409631bd7cedceb244b7a

    SHA512

    0ad67e03a7a11d32eee6b956b7114c2567595a6ac93ab936115e3f43be740c75ddb672c8655eae874758fc0a5df05fbe78b9d1cabfa8f8b31a192dd863498c56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cedb8274ba71f2542cef2b195eb70851

    SHA1

    ec985cccf8ae65dc740a1091b226f27902af31f2

    SHA256

    d37141f7e388b941f9ee1890fa482f12120036fb3c3fc9c15b0bec044abe50c0

    SHA512

    74d875311479d131832cd97fa784c6ea8b122c9384d926c9b4b8e772c19a11bd33527fe32bb762d83b5668a095b7e44ba78c0473d716bcaf77824b30809d0f9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    29a1855e8b4a697f4eb478e4393b0629

    SHA1

    966172eac62a59661001cad2d46d51750b11f96f

    SHA256

    d97267fa311294ee046e49a79e382981e504d8fda5ac141cd1e3d1afed1718ea

    SHA512

    1d1c30de7efa4b790976856731f48ba0c17a862d6e1d9b275af6b70c16e52ae6e553a81c63250f0432071e60fdea45dc99e66041d7c5ddd653f16e9b1787b0f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7224ad7df874821dae3339e8d5d62f54

    SHA1

    333f1b99feb643bb69b0f9b4834fb6eaa4a583d1

    SHA256

    a3e3eef1adf0179ac9491e25378e781417ac0d21dd4f4634818338fd0afc50e8

    SHA512

    dc86786cb4b1e4031f1e882ec4d023270c5f1db26e2cec73dff00de27bb2961568fe3d3182c74f87294aa1eb19eb9b99e5a08ab9fe4568012d7e8861a4fe4dd2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    219212b76e8bfee41199d209fe625f74

    SHA1

    8fc0ddb9b13153e445cfb4edc2da6e6a1e4718ff

    SHA256

    9201a7782203d11192ea87a5c294dc23cc96eacbd8efd9110f057006af105dd2

    SHA512

    780867ef10858878bdf0110a9868a8adb82408e6cbbaf57b74fe183f032d0f70d8a182bbf2dc2c7fc780c0fb8de506665e84978a72165572f216224810bae117

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6d30ac7973031640ee6366d287b18d72

    SHA1

    a2a80e4a86076af03705b5595749a7af08a0b0e6

    SHA256

    824fb1de034ee6edd99134f16802dcf921f1bd01f3edc534aefb9170d217ae85

    SHA512

    a26c64777cbb0b50311e7d514e3107197ac1f57ca47579fef6810e5c8a6d3168f51efc3c6f3ff589f45d0f9f9c5493933203f3dfb698b699aed836f40ec9a1e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CF14D1855652602540DFCFECD21854DB_54588CF5E8C00DAFF481CACC7AEEF6DA
    Filesize

    532B

    MD5

    a2a474859b3d80e2faf1fa910495851b

    SHA1

    022819f9d85b98d92358a0dad0cc12d5df7ad4cc

    SHA256

    8e862259ade4db7e5fe3d42d6ebfa4496cf8ac2bce9dad7f36276cbc4a9f79f7

    SHA512

    5db15410459320c7bb274c5948237f1a05efd5332b114a1216f957b42897cd39cc7c523ea3411a38e0962a2ac8ae66f597532e423602ddf44becb7d12b2aec6e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\SQ0D0320\wanwang.aliyun[1].xml
    Filesize

    365B

    MD5

    750b468a1fd7a84c5e438fb30810247f

    SHA1

    06cabc94566e9a5fe6221af31eddde1a63f95311

    SHA256

    913cc12c1c8531944441749fc7fea3f58cd400f3ef2393503fd3629cf0a765c1

    SHA512

    24fb3552ef801d09113cb74e346932d0e8e7489712cba75fe7c1856f47db21b7c6000dc4deabf3b15bdbe299d278d43b5bccf9eec10ca5f3dec70de004662a96

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\SQ0D0320\wanwang.aliyun[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\SQ0D0320\wanwang.aliyun[1].xml
    Filesize

    143B

    MD5

    abc5973cd33166220da92ba05bd47222

    SHA1

    8758abf117a7aabbe2e6a7ccb81fc4248c4f69fa

    SHA256

    d92992959864a0809390efde22695b6031668da4a752e96eb4383de56c6ade45

    SHA512

    f3888402ead2a800ae5eda0d6d514f1055d71647097fb94742589e7a242e6dfb59a71021bf1af1e16021d36440d2a8490a24ac9b627a5008ea7f37361b1d1f59

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab55FC.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar761D.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit

  • memory/2460-2-0x000007FEF4DA0000-0x000007FEF573D000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/2460-1-0x000007FEF4DA0000-0x000007FEF573D000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/2460-0-0x000007FEF505E000-0x000007FEF505F000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2460-3-0x000007FEF4DA0000-0x000007FEF573D000-memory.dmp

    Filesize

    9.6MB

    Download

  • memory/2460-4-0x000007FEF4DA0000-0x000007FEF573D000-memory.dmp

    Filesize

    9.6MB

    Download