Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
105s -
max time network
128s -
platform
windows10-2004_x64 -
resource
win10v2004-20230220-en -
resource tags
-
submitted
10/06/2023, 19:34
General
-
Target
25e2b25a77c09da623a453989fbff3577af67c15ec0a2878acc2de7bf83fab32.dll
-
Size
264KB
-
MD5
6d4d0c75249acfbe8dc8b342bc678224
-
SHA1
504adb4b02a68c850b6ed1d5694def6014ad8d63
-
SHA256
25e2b25a77c09da623a453989fbff3577af67c15ec0a2878acc2de7bf83fab32
-
SHA512
bf398a4ae5c4517421706ef2bf74a46872fb009808e801576d048d55cd14a225a4f3f6fe29644f559d1379efe24f92f7f947e9ad11f203e166aa4ba8f1b0927d
-
SSDEEP
6144:u1cBNnIOW9NSrxsiJle38U53FN3sUZm071:umRIO2NS/ep3FN3sCm071
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
-
Suspicious use of WriteProcessMemory 3 IoCs
Processes
-
C:\Windows\system32\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\25e2b25a77c09da623a453989fbff3577af67c15ec0a2878acc2de7bf83fab32.dll,#11⤵
- Suspicious use of WriteProcessMemory
-
C:\Windows\SysWOW64\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\25e2b25a77c09da623a453989fbff3577af67c15ec0a2878acc2de7bf83fab32.dll,#12⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 2804 -s 6483⤵
- Program crash
-
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 456 -p 2804 -ip 28041⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
300KB