Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

Baldurs Ga...18.exe

windows7-x64

3

Baldurs Ga...18.exe

windows10-2004-x64

1

游侠网�...��.url

windows7-x64

1

游侠网�...��.url

windows10-2004-x64

1

游侠网�...��.url

windows7-x64

1

游侠网�...��.url

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12/08/2023, 11:03 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    游侠网热门MOD补丁.url

  • Size

    183B

  • MD5

    1240cb2f6fdcd17b166496bd17f72cb6

  • SHA1

    2c4e10cb34c961bd93b977f138a2b04a0fde54d0

  • SHA256

    b309f388ad3192343d775f071c46d20e2c7cfff64e757c20071f164eb46be0e5

  • SHA512

    3723249fb3b771aa4b2fb17d535b2aee241dcd16091c90ec55993c1821f1b29f919406ae012b8ce7bf446616acd401cd4ccedbbff254d6b90f1027364c16e690

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\System32\rundll32.exe
    "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL C:\Users\Admin\AppData\Local\Temp\游侠网热门MOD补丁.url
    1⤵
      PID:2224

    Network

    • flag-us
      DNS
      158.240.127.40.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      158.240.127.40.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      240.81.21.72.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      240.81.21.72.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      108.211.229.192.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      108.211.229.192.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      15.164.165.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      15.164.165.52.in-addr.arpa
      IN PTR
      Response
    No results found
    • 8.8.8.8:53
      158.240.127.40.in-addr.arpa
      dns
      73 B
       147 B
       1
      1

      DNS Request

      158.240.127.40.in-addr.arpa

    • 8.8.8.8:53
      240.81.21.72.in-addr.arpa
      dns
      71 B
       142 B
       1
      1

      DNS Request

      240.81.21.72.in-addr.arpa

    • 8.8.8.8:53
      108.211.229.192.in-addr.arpa
      dns
      74 B
       145 B
       1
      1

      DNS Request

      108.211.229.192.in-addr.arpa

    • 8.8.8.8:53
      15.164.165.52.in-addr.arpa
      dns
      72 B
       146 B
       1
      1

      DNS Request

      15.164.165.52.in-addr.arpa

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.