Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

9

fc17855ddf...79.dll

windows7-x64

1

fc17855ddf...79.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    9s
  • max time network
    47s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    02/12/2022, 19:51 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fc17855ddf2837349bf427a9f15748a990302052aa7d952bb759516e960ccd79.dll

  • Size

    61KB

  • MD5

    223b31b5b1816e701e380cf9c31f9890

  • SHA1

    ff129cc7213f3728fc6a612701f22627d9171791

  • SHA256

    fc17855ddf2837349bf427a9f15748a990302052aa7d952bb759516e960ccd79

  • SHA512

    0e3c8d2fd543a64132785c8c6324067833aba706239101bfe143b0edea32e05e647e0b2c7b0c9091a462e50a863ad356e41ad59e7ce7ea1c08a8978835266ae9

  • SSDEEP

    768:GbvLDaaMact8TsvXDbfGnd+mA8JEIjLTPe+OopjeydBAD9dqC/Z/r7SBWDSdOPyK:evQLbGds8eIjLnpj5Ton/fSuSdO0XK

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 7 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\fc17855ddf2837349bf427a9f15748a990302052aa7d952bb759516e960ccd79.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:896
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\fc17855ddf2837349bf427a9f15748a990302052aa7d952bb759516e960ccd79.dll,#1
      2⤵
        PID:964

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/964-55-0x0000000075BA1000-0x0000000075BA3000-memory.dmp

      Filesize

      8KB

      Download

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.