Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    105s
  • max time network
    147s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02/10/2022, 22:52

General

  • Target

    759ecf54fc3b55825447e5b0d3d99303de443620ab00bc529e9b64a1a7a81bdf.dll

  • Size

    15KB

  • MD5

    6b661b9ab8df01bdad7275851c68a485

  • SHA1

    3844a1e0d40371d4b73b5c502c9a64234ce6248f

  • SHA256

    759ecf54fc3b55825447e5b0d3d99303de443620ab00bc529e9b64a1a7a81bdf

  • SHA512

    f5321781d36ba975da4015eacbb32cb18c1a1df5a6b652237fa01360f696626f9ff530d40ec5bf2b658270772b6861353bc0d04aa0ea17d93ce9a2651945c5d7

  • SSDEEP

    192:SC0itFaWlB2SYxmJzTQsoHImVigU6d984blsckwLsBb/d6T+z9SCqGfFMKl:SCb662ZWzh3ws1Jb/KU9SCq8FMKl

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\759ecf54fc3b55825447e5b0d3d99303de443620ab00bc529e9b64a1a7a81bdf.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:4876
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\759ecf54fc3b55825447e5b0d3d99303de443620ab00bc529e9b64a1a7a81bdf.dll,#1
      2⤵
        PID:1008

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads