Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

r2modman-3...pimage

ubuntu-20.04-amd64

4

r2modman-S...48.exe

windows7-x64

7

r2modman-S...48.exe

windows10-2004-x64

7

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDIR/UAC.dll

windows7-x64

3

$PLUGINSDIR/UAC.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

r2modman.exe

windows7-x64

1

r2modman.exe

windows10-2004-x64

7

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

swiftshade...GL.dll

windows7-x64

1

swiftshade...GL.dll

windows10-2004-x64

1

swiftshade...v2.dll

windows7-x64

1

swiftshade...v2.dll

windows10-2004-x64

1

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    7s
  • max time network
    150s
  • platform
    ubuntu-20.04_amd64
  • resource
    ubuntu2004-amd64-20240221-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2004-amd64-20240221-enkernel:5.4.0-169-genericlocale:en-usos:ubuntu-20.04-amd64system
  • submitted
    21/04/2024, 14:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    r2modman-3.1.48.appimage

  • Size

    114.8MB

  • MD5

    51281c42cb0ea32042e5ab30df9d021b

  • SHA1

    3628463b9f36ea4fd102fa9d58b8ace1902e3ae4

  • SHA256

    fde5cf99e4bf70edf39fc59a278b3eca8c16b5728f6b4a9d00d5bcd803660f53

  • SHA512

    44855fa671eea9880cf1920401abf5e970ddde863d9974b3aa042853e00af1047f9710c759e920b0d74a0b9a9af29fbbb660cf0c999549be1435a7e2e7ddf87d

  • SSDEEP

    1572864:ZXyT0byfJW+d2aPn651w8eA+LnwTZM0RUEZbxm8bs84gt2NKM4lDLNvHIP9LYs0S:ZnyRdZQlJ+bwTZM4RKW8NKM4llvol3Oc

Score
4/10

Malware Config

Signatures

  • Changes its process name 1 IoCs
  • Reads CPU attributes 1 TTPs 1 IoCs
  • Reads runtime system information 2 IoCs

    Reads data from /proc virtual filesystem.

Processes

  • /tmp/r2modman-3.1.48.appimage
    /tmp/r2modman-3.1.48.appimage
    1⤵
    • Reads runtime system information
    PID:1565
  • /tmp/.mount_r2modm0e0LIw/AppRun
    /tmp/r2modman-3.1.48.appimage
    1⤵
      PID:1565
    • /tmp/.mount_r2modm0e0LIw/r2modman
      /tmp/.mount_r2modm0e0LIw/r2modman
      1⤵
      • Changes its process name
      • Reads CPU attributes
      • Reads runtime system information
      PID:1565

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads