Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

7d90b86b2d...d1.dll

windows7-x64

1

7d90b86b2d...d1.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    88s
  • max time network
    128s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220901-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14/10/2022, 10:40 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7d90b86b2df398c714a352f3cda5acea6655497cc764b46db1edc1f1715185d1.dll

  • Size

    5KB

  • MD5

    75594f331ddcfe6a4237c6c016835a8a

  • SHA1

    16a1e1646dda27db68e8c3ce5b3802cad7d43739

  • SHA256

    7d90b86b2df398c714a352f3cda5acea6655497cc764b46db1edc1f1715185d1

  • SHA512

    26bb7306fd274d2978ea926f1f8ebf319c9e2c88694a38b39c0a2d13f0622e809ed7ac0b3137047fe3f24f1dc569913e8e12facb843f14ac549e2f98ec4297c0

  • SSDEEP

    48:a5zjMTGcITBVQVE1lcMFMgD3+VHmgHARkvsUy2HrOvHU9kYzicQ:iT3Qu8Mn3bg86OHU9kdV

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\7d90b86b2df398c714a352f3cda5acea6655497cc764b46db1edc1f1715185d1.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2116
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\7d90b86b2df398c714a352f3cda5acea6655497cc764b46db1edc1f1715185d1.dll,#1
      2⤵
        PID:4752

    Network

      No results found
    • 93.184.220.29:80
      322 B
       7
    • 93.184.220.29:80
      46 B
       40 B
       1
      1
    • 20.42.73.24:443
      322 B
       7
    • 178.79.208.1:80
      322 B
       7
    • 104.80.225.205:443
      322 B
       7
    No results found

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.