Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

c3bb101295...76.dll

windows7-x64

1

c3bb101295...76.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    12/10/2023, 02:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c3bb101295bf4ca36c77019008bcdd13dd93b4fbc2a11bdaba0da4892ac67676.dll

  • Size

    40KB

  • MD5

    283607d0326ec9e89d07ce9156d5f0ad

  • SHA1

    e3d036ee9bfff9f594481af0864b4c69c8b08520

  • SHA256

    c3bb101295bf4ca36c77019008bcdd13dd93b4fbc2a11bdaba0da4892ac67676

  • SHA512

    bd47cf18d581b66b34b40214ec13e649ec6a829c19c5259ae8ef876ed991633bd34899d063835fb3bd8d206843a8d7a02eb53acbd3942ab18e92b0f12b6d4fc9

  • SSDEEP

    768:3sfR1wqkcLe/hdTlKmnTEDSl7vy+xFpF5SMwCkGAIC:4XeplvnMqrsMwCkGAIC

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 7 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\c3bb101295bf4ca36c77019008bcdd13dd93b4fbc2a11bdaba0da4892ac67676.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2256
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\c3bb101295bf4ca36c77019008bcdd13dd93b4fbc2a11bdaba0da4892ac67676.dll,#1
      2⤵
        PID:1100

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads