Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

3

ExtPack-license.html

windows7-x64

1

ExtPack-license.html

windows10-2004-x64

1

ExtPack-license.rtf

windows7-x64

4

ExtPack-license.rtf

windows10-2004-x64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.amd...eR0.r0

macos-10.15-amd64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.amd....dylib

macos-10.15-amd64

1

darwin.arm....dylib

macos-10.15-amd64

1

darwin.arm....dylib

macos-10.15-amd64

1

darwin.arm....dylib

macos-10.15-amd64

1

darwin.arm....dylib

macos-10.15-amd64

1

darwin.arm....dylib

macos-10.15-amd64

1

darwin.arm....dylib

macos-10.15-amd64

1

darwin.arm....dylib

macos-10.15-amd64

1

darwin.arm....dylib

macos-10.15-amd64

1

linux.amd6...cam.so

ubuntu-18.04-amd64

1

linux.amd6...eR0.r0

ubuntu-18.04-amd64

1

linux.amd6...eR3.so

ubuntu-18.04-amd64

1

linux.amd6...pto.so

ubuntu-18.04-amd64

1

linux.amd6...ain.so

ubuntu-18.04-amd64

1

linux.amd6...nVM.so

ubuntu-18.04-amd64

1

linux.amd6...rR3.so

ubuntu-18.04-amd64

1

linux.amd6...mR3.so

ubuntu-18.04-amd64

1

linux.amd6...RDP.so

ubuntu-18.04-amd64

1

linux.amd6...ypt.so

ubuntu-18.04-amd64

1

Analysis

  • max time kernel
    98s
  • max time network
    143s
  • platform
    macos_amd64
  • resource
    macos-20220504-en
  • resource tags

    arch:amd64arch:i386image:macos-20220504-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
  • submitted
    24/05/2023, 04:42 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    darwin.amd64/VBoxPuelMainVM.dylib

  • Size

    31KB

  • MD5

    d23d6289236d5268f17a781b596da96f

  • SHA1

    7e2ddb5bdc1d4c74d971a963ac0c9d6f4c22d2b7

  • SHA256

    06f87b41033cf2313fe639ec825781b1a025325465c9cdfe3ddb4243c82a4a35

  • SHA512

    1d04c44ca0d53c8578cd758e5701dc630a86685ae5a2587fff38d87b23afb96a2bdad226f3c65c28ed8bef86ac5bf7bc6be26a11aaf83eebc794f53ddecb3b01

  • SSDEEP

    192:e2fgu5eu+6ild+NLZlbSzr+RjG8P0GzrzjFJlzr/8rgUrvplkrv75alZ8P09rT:euYfiZRGr+Q8frzhrCzrv7krNab8erT

Score
1/10

Malware Config

Signatures

Processes

  • /bin/sh
    sh -c "sudo /bin/zsh -c \"/Users/run/darwin.amd64/VBoxPuelMainVM.dylib\""
    1⤵
      PID:519
    • /bin/bash
      sh -c "sudo /bin/zsh -c \"/Users/run/darwin.amd64/VBoxPuelMainVM.dylib\""
      1⤵
        PID:519
      • /bin/bash
        sh -c "sudo /bin/zsh -c \"/Users/run/darwin.amd64/VBoxPuelMainVM.dylib\""
        1⤵
          PID:519
        • /usr/bin/sudo
          sudo /bin/zsh -c /Users/run/darwin.amd64/VBoxPuelMainVM.dylib
          1⤵
            PID:519
          • /usr/bin/sudo
            sudo /bin/zsh -c /Users/run/darwin.amd64/VBoxPuelMainVM.dylib
            1⤵
              PID:519
              • /bin/zsh
                /bin/zsh -c /Users/run/darwin.amd64/VBoxPuelMainVM.dylib
                2⤵
                  PID:522
                • /bin/zsh
                  /bin/zsh -c /Users/run/darwin.amd64/VBoxPuelMainVM.dylib
                  2⤵
                    PID:522
                  • /Users/run/darwin.amd64/VBoxPuelMainVM.dylib
                    /Users/run/darwin.amd64/VBoxPuelMainVM.dylib
                    2⤵
                      PID:522
                    • /Users/run/darwin.amd64/VBoxPuelMainVM.dylib
                      /Users/run/darwin.amd64/VBoxPuelMainVM.dylib
                      2⤵
                        PID:522

                    Network

                    • flag-us
                      DNS
                      e673.dsce9.akamaiedge.net
                      Remote address:
                      8.8.8.8:53
                      Request
                      e673.dsce9.akamaiedge.net
                      IN A
                      Response
                      e673.dsce9.akamaiedge.net
                      IN A
                      173.223.112.22
                    • flag-us
                      DNS
                      gsp-ssl.ls.apple.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      gsp-ssl.ls.apple.com
                      IN A
                      Response
                      gsp-ssl.ls.apple.com
                      IN CNAME
                      gsp-ssl.ls-apple.com.akadns.net
                      gsp-ssl.ls-apple.com.akadns.net
                      IN CNAME
                      gsp-ssl-geomap.ls-apple.com.akadns.net
                      gsp-ssl-geomap.ls-apple.com.akadns.net
                      IN CNAME
                      gspx-ssl.ls.apple.com
                      gspx-ssl.ls.apple.com
                      IN CNAME
                      get-bx.g.aaplimg.com
                      get-bx.g.aaplimg.com
                      IN A
                      17.253.79.204
                      get-bx.g.aaplimg.com
                      IN A
                      17.253.79.203
                    • flag-us
                      DNS
                      itunes.apple.com
                      Remote address:
                      8.8.8.8:53
                      Request
                      itunes.apple.com
                      IN A
                      Response
                      itunes.apple.com
                      IN CNAME
                      itunes-cdn.itunes-apple.com.akadns.net
                      itunes-cdn.itunes-apple.com.akadns.net
                      IN CNAME
                      itunes.apple.com.edgekey.net
                      itunes.apple.com.edgekey.net
                      IN CNAME
                      e673.dsce9.akamaiedge.net
                      e673.dsce9.akamaiedge.net
                      IN A
                      173.223.112.22
                    • flag-us
                      DNS
                      e4686.dsce9.akamaiedge.net
                      Remote address:
                      8.8.8.8:53
                      Request
                      e4686.dsce9.akamaiedge.net
                      IN A
                      Response
                      e4686.dsce9.akamaiedge.net
                      IN A
                      173.223.112.159
                    • 2.16.118.172:443
                      64 B
                       1
                    • 17.253.79.204:443
                      gsp-ssl.ls.apple.com
                      tls
                      2.4kB
                       6.0kB
                       24
                      23
                    • 17.142.171.5:443
                      448 B
                       7
                    • 17.142.171.7:443
                      448 B
                       7
                    • 17.142.171.6:443
                      448 B
                       7
                    • 17.142.171.5:443
                      448 B
                       7
                    • 17.142.171.7:443
                      448 B
                       7
                    • 17.142.171.6:443
                      448 B
                       7
                    • 17.142.171.5:443
                      448 B
                       7
                    • 17.142.171.7:443
                      448 B
                       7
                    • 17.142.171.6:443
                      448 B
                       7
                    • 17.142.171.5:443
                      448 B
                       7
                    • 17.142.171.7:443
                      448 B
                       7
                    • 17.142.171.6:443
                      448 B
                       7
                    • 17.142.171.5:443
                      448 B
                       7
                    • 17.142.171.7:443
                      448 B
                       7
                    • 17.142.171.6:443
                      448 B
                       7
                    • 17.142.171.5:443
                      448 B
                       7
                    • 17.142.171.7:443
                      448 B
                       7
                    • 17.142.171.6:443
                      448 B
                       7
                    • 8.8.8.8:53
                      e673.dsce9.akamaiedge.net
                      dns
                      71 B
                       87 B
                       1
                      1

                      DNS Request

                      e673.dsce9.akamaiedge.net

                      DNS Response

                      173.223.112.22

                    • 8.8.8.8:53
                      gsp-ssl.ls.apple.com
                      dns
                      66 B
                       226 B
                       1
                      1

                      DNS Request

                      gsp-ssl.ls.apple.com

                      DNS Response

                      17.253.79.204
                      17.253.79.203

                    • 8.8.8.8:53
                      itunes.apple.com
                      dns
                      62 B
                       205 B
                       1
                      1

                      DNS Request

                      itunes.apple.com

                      DNS Response

                      173.223.112.22

                    • 8.8.8.8:53
                      e4686.dsce9.akamaiedge.net
                      dns
                      72 B
                       88 B
                       1
                      1

                      DNS Request

                      e4686.dsce9.akamaiedge.net

                      DNS Response

                      173.223.112.159

                    • 224.0.0.251:5353
                      332 B
                       1

                    MITRE ATT&CK Matrix

                    Replay Monitor

                    Loading Replay Monitor...

                    Downloads

                    We care about your privacy.

                    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.