c79f3697cc8671dd38370f3ce88dd86792ee0f183f0aa4cbdc1603df4eba2d8a

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

LeagueTagsv2.2.0.zip

windows7-x64

LeagueTagsv2.2.0.zip

windows10-2004-x64

LeagueTags...m.html

windows7-x64

LeagueTags...m.html

windows10-2004-x64

LeagueTags...ee.exe

windows7-x64

LeagueTags...ee.exe

windows10-2004-x64

LeagueTags...-0.dll

windows7-x64

LeagueTags...-0.dll

windows10-2004-x64

LeagueTags...-0.dll

windows7-x64

LeagueTags...-0.dll

windows10-2004-x64

LeagueTags...-0.dll

windows7-x64

LeagueTags...-0.dll

windows10-2004-x64

LeagueTags...-0.dll

windows7-x64

LeagueTags...-0.dll

windows10-2004-x64

LeagueTags...-0.dll

windows7-x64

LeagueTags...-0.dll

windows10-2004-x64

LeagueTags...-0.dll

windows7-x64

LeagueTags...-0.dll

windows10-2004-x64

LeagueTags...-0.dll

windows7-x64

LeagueTags...-0.dll

windows10-2004-x64

LeagueTags...-0.dll

windows7-x64

LeagueTags...-0.dll

windows10-2004-x64

LeagueTags...-0.dll

windows7-x64

LeagueTags...-0.dll

windows10-2004-x64

LeagueTags...-0.dll

windows7-x64

LeagueTags...-0.dll

windows10-2004-x64

LeagueTags...-0.dll

windows7-x64

LeagueTags...-0.dll

windows10-2004-x64

LeagueTags...-0.dll

windows7-x64

LeagueTags...-0.dll

windows10-2004-x64

LeagueTags...-0.dll

windows7-x64

LeagueTags...-0.dll

windows10-2004-x64

Analysis

max time kernel
107s
max time network
140s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
03/04/2023, 04:26

Sharing

Copy URL

Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

LeagueTagsv2.2.0.zip

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

LeagueTagsv2.2.0.zip

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

LeagueTagsFree-win32-ia32/LICENSES.chromium.html

Resource

win7-20230220-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral4

Sample

LeagueTagsFree-win32-ia32/LICENSES.chromium.html

Resource

win10v2004-20230220-en

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral5

Sample

LeagueTagsFree-win32-ia32/LeagueTagsFree.exe

Resource

win7-20230220-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral6

Sample

LeagueTagsFree-win32-ia32/LeagueTagsFree.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

9 signatures

150 seconds

Behavioral task

behavioral7

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-console-l1-1-0.dll

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral8

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-console-l1-1-0.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-datetime-l1-1-0.dll

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral10

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-datetime-l1-1-0.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-debug-l1-1-0.dll

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral12

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-debug-l1-1-0.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral13

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-errorhandling-l1-1-0.dll

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-errorhandling-l1-1-0.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-file-l1-1-0.dll

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral16

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-file-l1-1-0.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral17

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-file-l1-2-0.dll

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral18

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-file-l1-2-0.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-file-l2-1-0.dll

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-file-l2-1-0.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-handle-l1-1-0.dll

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral22

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-handle-l1-1-0.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-heap-l1-1-0.dll

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-heap-l1-1-0.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral25

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-interlocked-l1-1-0.dll

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral26

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-interlocked-l1-1-0.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral27

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-libraryloader-l1-1-0.dll

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral28

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-libraryloader-l1-1-0.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral29

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-localization-l1-2-0.dll

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral30

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-localization-l1-2-0.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral31

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-memory-l1-1-0.dll

Resource

win7-20230220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral32

Sample

LeagueTagsFree-win32-ia32/api-ms-win-core-memory-l1-1-0.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

LeagueTagsFree-win32-ia32/api-ms-win-core-console-l1-1-0.dll
Size

18KB
MD5

502263c56f931df8440d7fd2fa7b7c00
SHA1

523a3d7c3f4491e67fc710575d8e23314db2c1a2
SHA256

94a5df1227818edbfd0d5091c6a48f86b4117c38550343f780c604eee1cd6231
SHA512

633efab26cded9c3a5e144b81cbbd3b6adf265134c37d88cfd5f49bb18c345b2fc3a08ba4bbc917b6f64013e275239026829ba08962e94115e94204a47b80221
SSDEEP

192:3jBMWIghWGZiKedXe123Ouo+Uggs/nGfe4pBjS/uBmWh0txKdmVWQ4GWDZoiyqnP:GWPhWVXYi00GftpBjSemTltcwpS

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 3 IoCs

description	pid	Process	procid_target
PID 3288 wrote to memory of 2544	3288	rundll32.exe	82
PID 3288 wrote to memory of 2544	3288	rundll32.exe	82
PID 3288 wrote to memory of 2544	3288	rundll32.exe	82

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\LeagueTagsFree-win32-ia32\api-ms-win-core-console-l1-1-0.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:3288
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\LeagueTagsFree-win32-ia32\api-ms-win-core-console-l1-1-0.dll,#1
  2⤵
  PID:2544

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads