Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

SMS sender 2023.zip

windows10-1703-x64

1

SMS sender...7z.dll

windows10-1703-x64

1

SMS sender...7z.exe

windows10-1703-x64

1

SMS sender...te.zip

windows10-1703-x64

1

ServerCertificate.p12

windows10-1703-x64

5

SMS sender...to.dll

windows10-1703-x64

1

SMS sender...ox.dll

windows10-1703-x64

1

SMS sender...er.bat

windows10-1703-x64

5

SMS sender...or.dll

windows10-1703-x64

1

SMS sender...es.dll

windows10-1703-x64

1

SMS sender...23.exe

windows10-1703-x64

10

SMS sender...te.p12

windows10-1703-x64

1

SMS sender...UI.dll

windows10-1703-x64

1

SMS sender...UI.dll

windows10-1703-x64

1

SMS sender...ip.dll

windows10-1703-x64

1

SMS sender...ub.exe

windows10-1703-x64

10

SMS sender...te.dll

windows10-1703-x64

1

SMS sender...lt.dll

windows10-1703-x64

1

SMS sender...Ip.dll

windows10-1703-x64

1

SMS sender...ib.dll

windows10-1703-x64

1

SMS sender...le.zip

windows10-1703-x64

1

Resubmissions

02/02/2024, 15:59 UTC

240202-te4t8scbdp 10

02/02/2024, 15:54 UTC

240202-tcesbscahk 10

Analysis

  • max time kernel
    316s
  • max time network
    875s
  • platform
    windows10-1703_x64
  • resource
    win10-20231220-en
  • resource tags

    arch:x64arch:x86image:win10-20231220-enlocale:en-usos:windows10-1703-x64system
  • submitted
    02/02/2024, 15:54 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SMS sender 2023/SMS sender 2023/dnlib.dll

  • Size

    1.2MB

  • MD5

    a35b13c0996f83ab97a83205a3653cf4

  • SHA1

    97bd8754e4baca421fcf5d9b42ec759b13f2afb3

  • SHA256

    81567965f22b9065d9e41f3c6cd75855b360c2b5e74d4a149c9e049f56782f5b

  • SHA512

    5570a899d87768f9088810790a5962bb4875f08eba94d7e7f7f1b245dbfd22d121f81163db5d2b00b3a26720ba6ae4b52873391cab18b4ccacb86cb55fdb971c

  • SSDEEP

    12288:4ztF8lIxmFE8Ae2wx4i77vZHfLDAeBopgVU732A5HxUPwxTjMD4CITBC5v7f79nW:4OIYCDvw6iNAekgglRTBh1C5v7fUhb

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe "C:\Users\Admin\AppData\Local\Temp\SMS sender 2023\SMS sender 2023\dnlib.dll",#1
    1⤵
      PID:3528

    Network

    • flag-us
      DNS
      57.110.18.2.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      57.110.18.2.in-addr.arpa
      IN PTR
      Response
      57.110.18.2.in-addr.arpa
      IN PTR
      a2-18-110-57deploystaticakamaitechnologiescom
    • flag-us
      DNS
      74.239.69.13.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      74.239.69.13.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      79.121.231.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      79.121.231.20.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      201.178.17.96.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      201.178.17.96.in-addr.arpa
      IN PTR
      Response
      201.178.17.96.in-addr.arpa
      IN PTR
      a96-17-178-201deploystaticakamaitechnologiescom
    No results found
    • 8.8.8.8:53
      57.110.18.2.in-addr.arpa
      dns
      70 B
       133 B
       1
      1

      DNS Request

      57.110.18.2.in-addr.arpa

    • 8.8.8.8:53
      74.239.69.13.in-addr.arpa
      dns
      71 B
       145 B
       1
      1

      DNS Request

      74.239.69.13.in-addr.arpa

    • 8.8.8.8:53
      79.121.231.20.in-addr.arpa
      dns
      72 B
       158 B
       1
      1

      DNS Request

      79.121.231.20.in-addr.arpa

    • 8.8.8.8:53
      201.178.17.96.in-addr.arpa
      dns
      72 B
       137 B
       1
      1

      DNS Request

      201.178.17.96.in-addr.arpa

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.