Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

9

bwwxyxw_gr...EL.dll

windows7-x64

8

bwwxyxw_gr...EL.dll

windows10-2004-x64

8

bwwxyxw_gr/dm.dll

windows7-x64

1

bwwxyxw_gr/dm.dll

windows10-2004-x64

1

bwwxyxw_gr/reg.exe

windows7-x64

9

bwwxyxw_gr/reg.exe

windows10-2004-x64

9

bwwxyxw_gr...��.url

windows7-x64

1

bwwxyxw_gr...��.url

windows10-2004-x64

1

bwwxyxw_gr...��.exe

windows7-x64

8

bwwxyxw_gr...��.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    164s
  • max time network
    182s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27/11/2022, 06:45 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bwwxyxw_gr/更多软件下载.url

  • Size

    219B

  • MD5

    122e953f3a92541c27cc62db2d9bb0f7

  • SHA1

    5c85d98b4bce0daac9631297ddb00b005161d131

  • SHA256

    5bf9390d32df4da5ddb91425fc5002768a85305964a8e0cb8eda391b4b6511dd

  • SHA512

    77240964186d2e9c9c73ed6bf13edccaeb40c0d8cbf477080c9a40a76d044964330e97421e4b45818bfbb2688e6bfaf6720a52f2efdd3b944f3624b1b5767583

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\System32\rundll32.exe
    "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL C:\Users\Admin\AppData\Local\Temp\bwwxyxw_gr\更多软件下载.url
    1⤵
      PID:1476

    Network

    • flag-unknown
      DNS
      97.97.242.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      97.97.242.52.in-addr.arpa
      IN PTR
      Response
    • flag-unknown
      DNS
      f.7.6.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.7.0.0.0.0.3.0.1.3.0.6.2.ip6.arpa
      Remote address:
      8.8.8.8:53
      Request
      f.7.6.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.7.0.0.0.0.3.0.1.3.0.6.2.ip6.arpa
      IN PTR
      Response
    • 209.197.3.8:80
      322 B
       7
    • 8.238.21.126:80
      260 B
       5
    • 67.24.35.254:80
      260 B
       5
    • 104.80.225.205:443
      322 B
       7
    • 40.79.189.58:443
      322 B
       7
    • 209.197.3.8:80
      322 B
       7
    • 209.197.3.8:80
      322 B
       7
    • 8.238.21.126:80
      322 B
       7
    • 8.238.21.126:80
      260 B
       5
    • 67.24.35.254:80
      260 B
       5
    • 8.248.1.254:80
      260 B
       5
    • 8.238.21.254:80
      260 B
       5
    • 8.8.8.8:53
      97.97.242.52.in-addr.arpa
      dns
      71 B
       145 B
       1
      1

      DNS Request

      97.97.242.52.in-addr.arpa

    • 8.8.8.8:53
      f.7.6.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.7.0.0.0.0.3.0.1.3.0.6.2.ip6.arpa
      dns
      118 B
       204 B
       1
      1

      DNS Request

      f.7.6.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.7.0.0.0.0.3.0.1.3.0.6.2.ip6.arpa

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.