Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

dolphin-x64-5.0.exe

windows10-1703-x64

7

$PLUGINSDI...ns.dll

windows10-1703-x64

3

$PLUGINSDI...LL.dll

windows10-1703-x64

3

$PLUGINSDI...em.dll

windows10-1703-x64

3

infinst.exe

windows10-1703-x64

4

xinput1_3.dll

windows10-1703-x64

1

xinput1_3.dll

windows10-1703-x64

1

$TEMP/dxre...UP.dll

windows10-1703-x64

4

$TEMP/dxre...UP.exe

windows10-1703-x64

4

$TEMP/dxre...32.dll

windows10-1703-x64

4

dxupdate.dll

windows10-1703-x64

3

$TEMP/vcre...64.exe

windows10-1703-x64

7

Dolphin.exe

windows10-1703-x64

6

OpenAL32.dll

windows10-1703-x64

1

Sys/GameSe...r2.ps1

windows10-1703-x64

1

Sys/GameSe...01.ps1

windows10-1703-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    136s
  • platform
    windows10-1703_x64
  • resource
    win10-20240404-en
  • resource tags

    arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system
  • submitted
    11/04/2024, 18:21 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    infinst.exe

  • Size

    68KB

  • MD5

    45d4dac07aa361bcd77aa815d1724a16

  • SHA1

    3bbdf7da5d51211ae269572961b5ebf508ada28d

  • SHA256

    34ab99536ea59ad60ba6efda3ea6d18291ef096a0bab3664248d6045805da0ec

  • SHA512

    d940002a8e0112a3b56a909008403b447e9cbb80e38b9bbd508f40aa68224f7e5d9681e1039e747ae939e0829a25be2319b9f9d0862cebb042e4c525ccbc20be

  • SSDEEP

    1536:dSKL6bzRYK/ixmu3XyhJRxjWhKfLXJ/y/Fae:dSKL62K/u3XmxCAfLXJ/y/E

Score
4/10

Malware Config

Signatures

  • Drops file in Windows directory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\infinst.exe
    "C:\Users\Admin\AppData\Local\Temp\infinst.exe"
    1⤵
    • Drops file in Windows directory
    PID:2912

Network

  • flag-us
    DNS
    122.10.44.20.in-addr.arpa
    Remote address:
    8.8.8.8:53
    Request
    122.10.44.20.in-addr.arpa
    IN PTR
    Response
  • flag-us
    DNS
    0.205.248.87.in-addr.arpa
    Remote address:
    8.8.8.8:53
    Request
    0.205.248.87.in-addr.arpa
    IN PTR
    Response
    0.205.248.87.in-addr.arpa
    IN PTR
    https-87-248-205-0lgwllnwnet
No results found
  • 8.8.8.8:53
    122.10.44.20.in-addr.arpa
    dns
    71 B
     145 B
     1
    1

    DNS Request

    122.10.44.20.in-addr.arpa

  • 8.8.8.8:53
    0.205.248.87.in-addr.arpa
    dns
    71 B
     116 B
     1
    1

    DNS Request

    0.205.248.87.in-addr.arpa

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Windows\DXError.log
    Filesize

    156B

    MD5

    fa613f286e362ad97a7aee73bd8daf0e

    SHA1

    ca463677610381a4c4ee196390eb960dd3c079c7

    SHA256

    b163c53064e6d7204ed250e6a07297790466d0a380f7ba2aba305cbc0148d24a

    SHA512

    56bfa108de04e53447b779571075bfd11b60d4685a6e65dd650f077a4480997ebf4961c95e830131323b3cb54aae51acceb585b79aa290439d2a654bf00b66fe

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.