Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

MultiMC/MultiMC.exe

windows10-1703-x64

1

MultiMC/Qt5Core.dll

windows10-1703-x64

3

MultiMC/Qt5Gui.dll

windows10-1703-x64

3

MultiMC/Qt...rk.dll

windows10-1703-x64

3

MultiMC/Qt5Svg.dll

windows10-1703-x64

3

MultiMC/Qt...ts.dll

windows10-1703-x64

3

MultiMC/Qt5Xml.dll

windows10-1703-x64

3

MultiMC/ic...on.dll

windows10-1703-x64

1

MultiMC/im...ds.dll

windows10-1703-x64

1

MultiMC/im...if.dll

windows10-1703-x64

1

MultiMC/im...ns.dll

windows10-1703-x64

1

MultiMC/im...co.dll

windows10-1703-x64

1

MultiMC/im...p2.dll

windows10-1703-x64

1

MultiMC/im...eg.dll

windows10-1703-x64

1

MultiMC/im...vg.dll

windows10-1703-x64

1

MultiMC/im...mp.dll

windows10-1703-x64

1

MultiMC/im...bp.dll

windows10-1703-x64

1

MultiMC/ja...ck.jar

windows10-1703-x64

1

MultiMC/ja...ch.jar

windows10-1703-x64

1

MultiMC/li...ic.dll

windows10-1703-x64

3

MultiMC/libeay32.dll

windows10-1703-x64

1

MultiMC/li...-1.dll

windows10-1703-x64

3

MultiMC/libnbt++.dll

windows10-1703-x64

3

MultiMC/li...ow.dll

windows10-1703-x64

3

MultiMC/libssl32.dll

windows10-1703-x64

1

MultiMC/li...-6.dll

windows10-1703-x64

3

MultiMC/li...-1.dll

windows10-1703-x64

1

MultiMC/pl...ws.dll

windows10-1703-x64

1

MultiMC/ssleay32.dll

windows10-1703-x64

1

MultiMC/updater.exe

windows10-1703-x64

1

MultiMC/zlib1.dll

windows10-1703-x64

3

Analysis

  • max time kernel
    51s
  • max time network
    71s
  • platform
    windows10-1703_x64
  • resource
    win10-20220812-en
  • resource tags

    arch:x64arch:x86image:win10-20220812-enlocale:en-usos:windows10-1703-x64system
  • submitted
    14/02/2023, 16:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    MultiMC/Qt5Svg.dll

  • Size

    324KB

  • MD5

    e25bfd0d6abc4f87ecdec70bc51fc7a9

  • SHA1

    fafb10832b91412d255f59037017558dcb8d5e3c

  • SHA256

    db354712a22d2df19d0d3c3ffc386197b9b1d1ff3093609e520e5b762749c74e

  • SHA512

    a320ee861bc55c63b372d4ebbf61659b048bfe233cebdb93478804f112b94a08ea01975aea9420c76ac1ce558b805ec8a60a6757821bc2b25f9a5a3115988fdc

  • SSDEEP

    6144:V77VnU3hX9JENpcKwMIv76VODpr913/D3pW23P:V7pnUh9uoKwM4Dl9xT

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\MultiMC\Qt5Svg.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2476
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\MultiMC\Qt5Svg.dll,#1
      2⤵
        PID:2780
        • C:\Windows\SysWOW64\WerFault.exe
          C:\Windows\SysWOW64\WerFault.exe -u -p 2780 -s 684
          3⤵
          • Program crash
          PID:5100

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2780-116-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-117-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-118-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-119-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-120-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-121-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-122-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-123-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-124-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-125-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-126-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-127-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-128-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-129-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-130-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-131-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-132-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-133-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-134-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-135-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-136-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-137-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-138-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-139-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-140-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-142-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-141-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-143-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-145-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-144-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-146-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-147-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-148-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-149-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-150-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-151-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-153-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-152-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-154-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-157-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-159-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-162-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-161-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-160-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-158-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-156-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-155-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-163-0x0000000003FF0000-0x0000000004635000-memory.dmp

      Filesize

      6.3MB

      Download

    • memory/2780-165-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-166-0x0000000003FF0000-0x0000000004635000-memory.dmp

      Filesize

      6.3MB

      Download

    • memory/2780-168-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-167-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-169-0x00000000777D0000-0x000000007795E000-memory.dmp

      Filesize

      1.6MB

      Download

    • memory/2780-170-0x0000000068880000-0x0000000068DAE000-memory.dmp

      Filesize

      5.2MB

      Download

    • memory/2780-171-0x0000000061940000-0x0000000061E60000-memory.dmp

      Filesize

      5.1MB

      Download

    • memory/2780-172-0x0000000003FF0000-0x0000000004635000-memory.dmp

      Filesize

      6.3MB

      Download