Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

PCRemoteRe...16.exe

windows7-x64

4

PCRemoteRe...16.exe

windows10-2004-x64

10

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

MonectMediaCenter.exe

windows7-x64

10

MonectMediaCenter.exe

windows10-2004-x64

10

MonectRunt...ck.exe

windows7-x64

5

MonectRunt...ck.exe

windows10-2004-x64

8

MonectServer.exe

windows7-x64

1

MonectServer.exe

windows10-2004-x64

1

MonectServ...ce.exe

windows7-x64

1

MonectServ...ce.exe

windows10-2004-x64

1

PCRemoteReceiver.exe

windows7-x64

10

PCRemoteReceiver.exe

windows10-2004-x64

10

Packages/v...64.exe

windows7-x64

7

Packages/v...64.exe

windows10-2004-x64

7

QRCodeEncoder.dll

windows7-x64

1

QRCodeEncoder.dll

windows10-2004-x64

1

SDL2.dll

windows7-x64

1

SDL2.dll

windows10-2004-x64

1

SDL2_image.dll

windows7-x64

1

SDL2_image.dll

windows10-2004-x64

1

TouchInput.dll

windows7-x64

1

TouchInput.dll

windows10-2004-x64

1

avcodec-59.dll

windows7-x64

10

avcodec-59.dll

windows10-2004-x64

10

avformat-59.dll

windows7-x64

10

avformat-59.dll

windows10-2004-x64

10

Analysis

  • max time kernel
    117s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240215-es
  • resource tags

    arch:x64arch:x86image:win7-20240215-eslocale:es-esos:windows7-x64systemwindows
  • submitted
    04/05/2024, 14:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    PCRemoteReceiver.exe

  • Size

    7.2MB

  • MD5

    1f131b830b107f7ff0e12be96cac1eb1

  • SHA1

    1abb094ccb683d7e5ab18c1fe3bc37ad777accba

  • SHA256

    22720868281ba4a699ebe9e34a94865bfb40207b386672d0afa4e4daba94bc0d

  • SHA512

    c4df0294a1b25f96de69bf228f6b8612a9ab6f048110de441f83ef088296cb7106cc1dd125b32f4784395f99f579a4090c35a6db801d8ee442e57344858142eb

  • SSDEEP

    98304:n+iVLTjmGW8YRlXXe4nazbKBZ1P9BAvzycT6BKig+Z6elPq:nhzmGQRlXX5azWH1qKgig+Aepq

Score
10/10
privateloaderloader

Malware Config

Signatures

  • PrivateLoader

    PrivateLoader is a downloader sold as a pay-per-install malware distribution service.

    loaderprivateloader

Processes

  • C:\Users\Admin\AppData\Local\Temp\PCRemoteReceiver.exe
    "C:\Users\Admin\AppData\Local\Temp\PCRemoteReceiver.exe"
    1⤵
      PID:2160

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2160-1-0x000007FEF5E30000-0x000007FEF6033000-memory.dmp

      Filesize

      2.0MB

      Download

    • memory/2160-2-0x000007FEF71F0000-0x000007FEF7298000-memory.dmp

      Filesize

      672KB

      Download

    • memory/2160-3-0x000007FEF7140000-0x000007FEF71E3000-memory.dmp

      Filesize

      652KB

      Download

    • memory/2160-0-0x000007FEEAB10000-0x000007FEEFA19000-memory.dmp

      Filesize

      79.0MB

      Download