Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
33s -
max time network
45s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
-
submitted
26/11/2022, 22:10
General
-
Target
47c3642ffa359cb34c0e977b258bfd8ed73b1bda425679d35d8f41df953fc934.dll
-
Size
22KB
-
MD5
2d39379f5050b20f8364b0c69a5722f4
-
SHA1
5e663df050739c68adb4b85a805f767d3507e101
-
SHA256
47c3642ffa359cb34c0e977b258bfd8ed73b1bda425679d35d8f41df953fc934
-
SHA512
9cb765cd386c1fe402862bf3431eae54a3ee34c112a9e0f2bdf41af9f384d6619e1f0da9fc88ffb7b097fc600370eba2bbeceacfa10998f5580d42a79bbe18c5
-
SSDEEP
384:TeH+tWzlSDrb5+gIS3a2Oaa2pbNGJ38pPJv1TCAxAr6+S9Pfu7n5r:dtWurb6SOaVwYxv1TlxndeVr
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 11 IoCs
Processes
-
C:\Windows\system32\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\47c3642ffa359cb34c0e977b258bfd8ed73b1bda425679d35d8f41df953fc934.dll,#11⤵
- Suspicious use of WriteProcessMemory
-
C:\Windows\SysWOW64\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\47c3642ffa359cb34c0e977b258bfd8ed73b1bda425679d35d8f41df953fc934.dll,#12⤵
- Suspicious use of WriteProcessMemory
-
C:\Windows\SysWOW64\Wscript.exeWscript.exe c:\windows\ime\vbs\pp.vbs3⤵
-
-
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
8KB
-
Filesize
52KB