072e244f3c1e865c53ed271f58be1dacc8263bbed3d94c6a95c17572f38a84eb | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

CSharpDisc...ET.dll

windows10-2004-x64

1

Google Chr...te.exe

windows10-2004-x64

7

Newtonsoft.Json.dll

windows10-2004-x64

1

System Run...or.exe

windows10-2004-x64

1

System Run...or.exe

windows10-2004-x64

7

System Run...or.pdb

windows10-2004-x64

3

System Run...g.json

windows10-2004-x64

3

clretwrc.dll

windows10-2004-x64

1

clrjit.dll

windows10-2004-x64

1

coreclr.dll

windows10-2004-x64

1

createdump.exe

windows10-2004-x64

1

dbgshim.dll

windows10-2004-x64

1

hostfxr.dll

windows10-2004-x64

1

hostpolicy.dll

windows10-2004-x64

1

Analysis

max time kernel
126s
max time network
171s
platform
windows10-2004_x64
resource
win10v2004-20231023-en
resource tags

arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
submitted
18/11/2023, 04:23

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

CSharpDiscordWebhook.NET.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

Google Chrome Update.exe

Resource

win10v2004-20231023-en

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral3

Sample

Newtonsoft.Json.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

System Runtime Monitor.exe

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

System Runtime Monitor.exe

Resource

win10v2004-20231020-en

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral6

Sample

System Runtime Monitor.pdb

Resource

win10v2004-20231025-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral7

Sample

System Runtime Monitor.runtimeconfig.json

Resource

win10v2004-20231023-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral8

Sample

clretwrc.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

clrjit.dll

Resource

win10v2004-20231025-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

coreclr.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

createdump.exe

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

dbgshim.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

hostfxr.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

hostpolicy.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

hostpolicy.dll
Size

383KB
MD5

99932ee2d65887962dbd38b1ae9dc51e
SHA1

07dc6e46548ab90af27273d0c5ef92f36804fbb5
SHA256

05c4a3e5af8483bb2196bb6052c6589a4fffeab738a0b2caaf3954b8da732890
SHA512

aa8cfcd7017a62b4bb97197e436d80f54ce771e8a48a66b3c968fa7fdceacb90015d7c665f2f1ec7c4ddf7d05f560da2aec53627d0b350286838cd96fef1ca78
SSDEEP

6144:38WQUm0xDWkw7DbpxjIxFtpwJ96nc35/v:38WQUzNODbpxjI3EYcJn

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\hostpolicy.dll,#1
1⤵
PID:1600

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy