37b51c529c4f88f175fec0d639759364d8dc4df55d0ebf775f4b4409546d6255

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

App/Direct...FS.dll

windows7-x64

App/Direct...FS.dll

windows10-2004-x64

App/Direct...id.dll

windows7-x64

App/Direct...id.dll

windows10-2004-x64

App/Direct...AP.dll

windows7-x64

App/Direct...AP.dll

windows10-2004-x64

App/Direct...ng.dll

windows7-x64

App/Direct...ng.dll

windows10-2004-x64

App/Direct...rs.dll

windows7-x64

App/Direct...rs.dll

windows10-2004-x64

App/Direct...ng.dll

windows7-x64

App/Direct...ng.dll

windows10-2004-x64

App/Direct...rs.dll

windows7-x64

App/Direct...rs.dll

windows10-2004-x64

App/Direct...in.dll

windows7-x64

App/Direct...in.dll

windows10-2004-x64

App/Direct...on.dll

windows7-x64

App/Direct...on.dll

windows10-2004-x64

App/Direct...ty.dll

windows7-x64

App/Direct...ty.dll

windows10-2004-x64

App/Direct...or.exe

windows7-x64

App/Direct...or.exe

windows10-2004-x64

App/Direct...nt.exe

windows7-x64

App/Direct...nt.exe

windows10-2004-x64

App/Direct...le.exe

windows7-x64

App/Direct...le.exe

windows10-2004-x64

App/Direct...ce.exe

windows7-x64

App/Direct...ce.exe

windows10-2004-x64

App/Direct...er.exe

windows7-x64

App/Direct...er.exe

windows10-2004-x64

App/Direct...ll.dll

windows7-x64

App/Direct...ll.dll

windows10-2004-x64

Analysis

max time kernel
121s
max time network
135s
platform
windows7_x64
resource
win7-20230831-en
resource tags

arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
submitted
13/10/2023, 02:46

Sharing

Copy URL

Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

App/DirectoryMonitor/AlphaFS.dll

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

App/DirectoryMonitor/AlphaFS.dll

Resource

win10v2004-20230915-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

App/DirectoryMonitor/CG.Controls.Grid.dll

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

App/DirectoryMonitor/CG.Controls.Grid.dll

Resource

win10v2004-20230915-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

App/DirectoryMonitor/CLAP.dll

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

App/DirectoryMonitor/CLAP.dll

Resource

win10v2004-20230915-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

App/DirectoryMonitor/DevEnterprise.Core.Logging.dll

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

App/DirectoryMonitor/DevEnterprise.Core.Logging.dll

Resource

win10v2004-20230915-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

App/DirectoryMonitor/DevEnterprise.Core.Monitoring.XmlSerializers.dll

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

App/DirectoryMonitor/DevEnterprise.Core.Monitoring.XmlSerializers.dll

Resource

win10v2004-20230915-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

App/DirectoryMonitor/DevEnterprise.Core.Monitoring.dll

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

App/DirectoryMonitor/DevEnterprise.Core.Monitoring.dll

Resource

win10v2004-20230915-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

App/DirectoryMonitor/DevEnterprise.Core.Plugin.XmlSerializers.dll

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

App/DirectoryMonitor/DevEnterprise.Core.Plugin.XmlSerializers.dll

Resource

win10v2004-20230915-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

App/DirectoryMonitor/DevEnterprise.Core.Plugin.dll

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

App/DirectoryMonitor/DevEnterprise.Core.Plugin.dll

Resource

win10v2004-20230915-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

App/DirectoryMonitor/DevEnterprise.DirectoryMonitor.Common.dll

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

App/DirectoryMonitor/DevEnterprise.DirectoryMonitor.Common.dll

Resource

win10v2004-20230915-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

App/DirectoryMonitor/DevEnterprise.Utility.dll

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

App/DirectoryMonitor/DevEnterprise.Utility.dll

Resource

win10v2004-20230915-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

App/DirectoryMonitor/DirectoryMonitor.exe

Resource

win7-20230831-en

evasion trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral22

Sample

App/DirectoryMonitor/DirectoryMonitor.exe

Resource

win10v2004-20230915-en

evasion trojan

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral23

Sample

App/DirectoryMonitor/DirectoryMonitorConfigAssistant.exe

Resource

win7-20230831-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral24

Sample

App/DirectoryMonitor/DirectoryMonitorConfigAssistant.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral25

Sample

App/DirectoryMonitor/DirectoryMonitorConsole.exe

Resource

win7-20230831-en

evasion trojan

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral26

Sample

App/DirectoryMonitor/DirectoryMonitorConsole.exe

Resource

win10v2004-20230915-en

evasion trojan

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral27

Sample

App/DirectoryMonitor/DirectoryMonitorService.exe

Resource

win7-20230831-en

evasion trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral28

Sample

App/DirectoryMonitor/DirectoryMonitorService.exe

Resource

win10v2004-20230915-en

evasion trojan

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral29

Sample

App/DirectoryMonitor/InstallerHelper.exe

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

App/DirectoryMonitor/InstallerHelper.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

App/DirectoryMonitor/Microsoft.WindowsAPICodePack.Shell.dll

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

App/DirectoryMonitor/Microsoft.WindowsAPICodePack.Shell.dll

Resource

win10v2004-20230915-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

App/DirectoryMonitor/DevEnterprise.Utility.dll
Size

433KB
MD5

cd5e05596414ba9d070f29603e9fdb50
SHA1

4b3fce7d86e1e496791ebd65f7a0e04edb9471b2
SHA256

9ca5ea6da2223cbb37b53caf2049a1361d774474be1dc82c6bc32cc508494588
SHA512

1879250b67ff7a633082292d8d824b92d133b0e4acb2ada987746dd27dd1eaf9ed97b05208c19188647ec9deeb366de23e7c1ab90bbedef19168fec285e6d84f
SSDEEP

6144:uopIJr4ZdWPV3XrJfoY4orWjf9Y6Wd6nOTeiDb/jcwDWVWjCLf60nTa8y/gmFBjc:9OJr4ZdyJfUjf9Y0y/NSxLy0ne8yZDjU

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\App\DirectoryMonitor\DevEnterprise.Utility.dll,#1
1⤵
PID:1744

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads