Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

805b7db999...9c.dll

windows7-x64

1

805b7db999...9c.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    40s
  • max time network
    46s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    01/12/2022, 02:29 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    805b7db99981f3b72d1b770baf5ef90f8a2adb8fe92703583f21b55633e7ee9c.dll

  • Size

    79KB

  • MD5

    5eeac1a840ab0b99a48ad6d680cd5c9d

  • SHA1

    4fca48dbeef3a98f88cee6f7355c3c30c9c47c6a

  • SHA256

    805b7db99981f3b72d1b770baf5ef90f8a2adb8fe92703583f21b55633e7ee9c

  • SHA512

    c1c3c392748af586ec616c7bf4cffa0f3ad3fe8a649fadab0e726f568dd900ac63815c336e0d3bec6fce61c83ce240c722dc1a7cdeac3d7be1ea6ebde6afd5f8

  • SSDEEP

    1536:BxDZ0RZ8nljO6mK2fFsGQqptxccuEaC8pSIaJoX+bZBWy/aRQWmfIm:xjnljbADNecuQ8sIEoXI71SLmfI

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 7 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\805b7db99981f3b72d1b770baf5ef90f8a2adb8fe92703583f21b55633e7ee9c.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2044
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\805b7db99981f3b72d1b770baf5ef90f8a2adb8fe92703583f21b55633e7ee9c.dll,#1
      2⤵
        PID:1460

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1460-55-0x0000000075F81000-0x0000000075F83000-memory.dmp

      Filesize

      8KB

      Download

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.