Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

df33d1a662...4f.dll

windows7-x64

1

df33d1a662...4f.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    112s
  • max time network
    129s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220901-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/11/2022, 12:34 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    df33d1a6627e117aa8cdaae4b0dcb9211106cdff519bee86b990d67b0544d64f.dll

  • Size

    126KB

  • MD5

    3f46d6a666794ac26dce06ea3991a269

  • SHA1

    49df97aba380a9cab23770bbd22b89d804007e83

  • SHA256

    df33d1a6627e117aa8cdaae4b0dcb9211106cdff519bee86b990d67b0544d64f

  • SHA512

    f14590a64faa2bf1cde586ae628c128133be59d6f029f3315d74a8bf456870db00aae2b9c640b40d5d4984d6488d11ebd3c1e4e47026ef5710af25dfbbae1ceb

  • SSDEEP

    3072:VHWFhlZVv6L0z9lYUXyz6gLLjH2pdOSVqNBVk:1eZVv6Lv07Vi

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\df33d1a6627e117aa8cdaae4b0dcb9211106cdff519bee86b990d67b0544d64f.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2672
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\df33d1a6627e117aa8cdaae4b0dcb9211106cdff519bee86b990d67b0544d64f.dll,#1
      2⤵
        PID:1724

    Network

      No results found
    • 2.18.109.224:443
      322 B
       7
    • 20.50.80.209:443
      322 B
       7
    • 209.197.3.8:80
      322 B
       7
    • 209.197.3.8:80
      322 B
       7
    • 209.197.3.8:80
      322 B
       7
    No results found

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.