Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Overview
overview
3Static
static
3Setup.exe
windows7-x64
1Setup.exe
windows10-2004-x64
1jre/Welcome.html
windows7-x64
1jre/Welcome.html
windows10-2004-x64
1jre/bin/JA...32.dll
windows7-x64
1jre/bin/JA...32.dll
windows10-2004-x64
1jre/bin/JA...ge.dll
windows7-x64
1jre/bin/JA...ge.dll
windows10-2004-x64
1jre/bin/Ja...32.dll
windows7-x64
1jre/bin/Ja...32.dll
windows10-2004-x64
1jre/bin/Ja...ge.dll
windows7-x64
1jre/bin/Ja...ge.dll
windows10-2004-x64
1jre/bin/Wi...32.dll
windows7-x64
3jre/bin/Wi...32.dll
windows10-2004-x64
3jre/bin/Wi...ge.dll
windows7-x64
3jre/bin/Wi...ge.dll
windows10-2004-x64
3jre/bin/awt.dll
windows7-x64
1jre/bin/awt.dll
windows10-2004-x64
1jre/bin/bci.dll
windows7-x64
3jre/bin/bci.dll
windows10-2004-x64
3jre/bin/cl...vm.dll
windows7-x64
3jre/bin/cl...vm.dll
windows10-2004-x64
3jre/bin/dcpr.dll
windows7-x64
1jre/bin/dcpr.dll
windows10-2004-x64
1jre/bin/de...se.dll
windows7-x64
3jre/bin/de...se.dll
windows10-2004-x64
3jre/bin/deploy.dll
windows7-x64
3jre/bin/deploy.dll
windows10-2004-x64
3jre/bin/dt_shmem.dll
windows7-x64
3jre/bin/dt_shmem.dll
windows10-2004-x64
3jre/bin/dt_socket.dll
windows7-x64
1jre/bin/dt_socket.dll
windows10-2004-x64
1Analysis
-
max time kernel
121s -
max time network
130s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system -
submitted
12/02/2024, 03:12 UTC
Static task
static1
Behavioral task
behavioral1
Sample
Setup.exe
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral2
Sample
Setup.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
jre/Welcome.html
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral4
Sample
jre/Welcome.html
Resource
win10v2004-20231215-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
jre/bin/JAWTAccessBridge-32.dll
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral6
Sample
jre/bin/JAWTAccessBridge-32.dll
Resource
win10v2004-20231222-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
jre/bin/JAWTAccessBridge.dll
Resource
win7-20231129-en
windows7-x64
Behavioral task
behavioral8
Sample
jre/bin/JAWTAccessBridge.dll
Resource
win10v2004-20231215-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
jre/bin/JavaAccessBridge-32.dll
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral10
Sample
jre/bin/JavaAccessBridge-32.dll
Resource
win10v2004-20231222-en
windows10-2004-x64
Behavioral task
behavioral11
Sample
jre/bin/JavaAccessBridge.dll
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral12
Sample
jre/bin/JavaAccessBridge.dll
Resource
win10v2004-20231222-en
windows10-2004-x64
Behavioral task
behavioral13
Sample
jre/bin/WindowsAccessBridge-32.dll
Resource
win7-20231129-en
windows7-x64
Behavioral task
behavioral14
Sample
jre/bin/WindowsAccessBridge-32.dll
Resource
win10v2004-20231222-en
windows10-2004-x64
Behavioral task
behavioral15
Sample
jre/bin/WindowsAccessBridge.dll
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral16
Sample
jre/bin/WindowsAccessBridge.dll
Resource
win10v2004-20231222-en
windows10-2004-x64
Behavioral task
behavioral17
Sample
jre/bin/awt.dll
Resource
win7-20231129-en
windows7-x64
Behavioral task
behavioral18
Sample
jre/bin/awt.dll
Resource
win10v2004-20231215-en
windows10-2004-x64
Behavioral task
behavioral19
Sample
jre/bin/bci.dll
Resource
win7-20231129-en
windows7-x64
Behavioral task
behavioral20
Sample
jre/bin/bci.dll
Resource
win10v2004-20231222-en
windows10-2004-x64
Behavioral task
behavioral21
Sample
jre/bin/client/jvm.dll
Resource
win7-20231129-en
windows7-x64
Behavioral task
behavioral22
Sample
jre/bin/client/jvm.dll
Resource
win10v2004-20231222-en
windows10-2004-x64
Behavioral task
behavioral23
Sample
jre/bin/dcpr.dll
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral24
Sample
jre/bin/dcpr.dll
Resource
win10v2004-20231222-en
windows10-2004-x64
Behavioral task
behavioral25
Sample
jre/bin/decora_sse.dll
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral26
Sample
jre/bin/decora_sse.dll
Resource
win10v2004-20231215-en
windows10-2004-x64
Behavioral task
behavioral27
Sample
jre/bin/deploy.dll
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral28
Sample
jre/bin/deploy.dll
Resource
win10v2004-20231215-en
windows10-2004-x64
Behavioral task
behavioral29
Sample
jre/bin/dt_shmem.dll
Resource
win7-20231129-en
windows7-x64
Behavioral task
behavioral30
Sample
jre/bin/dt_shmem.dll
Resource
win10v2004-20231222-en
windows10-2004-x64
Behavioral task
behavioral31
Sample
jre/bin/dt_socket.dll
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral32
Sample
jre/bin/dt_socket.dll
Resource
win10v2004-20231215-en
windows10-2004-x64
General
-
Target
jre/bin/dcpr.dll
-
Size
139KB
-
MD5
4bdc32ef5da731393acc1b8c052f1989
-
SHA1
a677c04ecd13f074de68cc41f13948d3b86b6c19
-
SHA256
a3b35cc8c2e6d22b5832af74aaf4d1bb35069edd73073dffec2595230ca81772
-
SHA512
e71ea78d45e6c6bd08b2c5cd31f003f911fd4c82316363d26945d17977c2939f65e3b9748447006f95c3c6653ce30d2cda67322d246d43c9eb892a8e83deb31a
-
SSDEEP
3072:aoGzTjLkRPQ9U9NuLqcNicj5ojGylYCE2Iu2jGLF5A9bE8LUekfCz:LGz/oRPGLJN1IGgYCE2L1F5A9bEGUeR
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 7 IoCs
description pid Process procid_target PID 1568 wrote to memory of 2212 1568 rundll32.exe 28 PID 1568 wrote to memory of 2212 1568 rundll32.exe 28 PID 1568 wrote to memory of 2212 1568 rundll32.exe 28 PID 1568 wrote to memory of 2212 1568 rundll32.exe 28 PID 1568 wrote to memory of 2212 1568 rundll32.exe 28 PID 1568 wrote to memory of 2212 1568 rundll32.exe 28 PID 1568 wrote to memory of 2212 1568 rundll32.exe 28