837ec0e9287fcb56331695971c618ce18f14dff0107ccd5749bd51c75bccc6d6 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

IniParser.dll

windows7-x64

1

IniParser.dll

windows10-2004-x64

1

Iron.dll

windows7-x64

1

Iron.dll

windows10-2004-x64

1

Microsoft....on.dll

windows7-x64

1

Microsoft....on.dll

windows10-2004-x64

1

Microsoft....ts.dll

windows7-x64

1

Microsoft....ts.dll

windows10-2004-x64

1

Microsoft....ns.dll

windows7-x64

1

Microsoft....ns.dll

windows10-2004-x64

1

Microsoft....ns.dll

windows7-x64

1

Microsoft....ns.dll

windows10-2004-x64

1

Microsoft....ns.dll

windows7-x64

1

Microsoft....ns.dll

windows10-2004-x64

1

Microsoft....al.dll

windows7-x64

1

Microsoft....al.dll

windows10-2004-x64

1

Microsoft....ns.dll

windows7-x64

1

Microsoft....ns.dll

windows10-2004-x64

1

Microsoft....og.dll

windows7-x64

1

Microsoft....og.dll

windows10-2004-x64

1

Microsoft....ns.dll

windows7-x64

1

Microsoft....ns.dll

windows10-2004-x64

1

Microsoft....es.dll

windows7-x64

1

Microsoft....es.dll

windows10-2004-x64

1

Microsoft....op.dll

windows7-x64

1

Microsoft....op.dll

windows10-2004-x64

1

Microsoft....ng.dll

windows7-x64

1

Microsoft....ng.dll

windows10-2004-x64

1

Microsoft....PF.dll

windows7-x64

1

Microsoft....PF.dll

windows10-2004-x64

1

Microsoft....ns.dll

windows7-x64

1

Microsoft....ns.dll

windows10-2004-x64

1

Analysis

max time kernel
140s
max time network
158s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
20/05/2024, 15:32

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

IniParser.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

IniParser.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

Iron.dll

Resource

win7-20240419-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

Iron.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

Microsoft.AspNetCore.Authorization.dll

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

Microsoft.AspNetCore.Authorization.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

Microsoft.AspNetCore.Components.dll

Resource

win7-20240215-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Microsoft.AspNetCore.Components.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Microsoft.Extensions.Configuration.Abstractions.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Microsoft.Extensions.Configuration.Abstractions.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Microsoft.Extensions.Configuration.FileExtensions.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Microsoft.Extensions.Configuration.FileExtensions.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Microsoft.Extensions.DependencyInjection.Abstractions.dll

Resource

win7-20240215-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Microsoft.Extensions.DependencyInjection.Abstractions.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

Microsoft.Extensions.FileProviders.Physical.dll

Resource

win7-20240419-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Microsoft.Extensions.FileProviders.Physical.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Microsoft.Extensions.Logging.Abstractions.dll

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Microsoft.Extensions.Logging.Abstractions.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Microsoft.Extensions.Logging.EventLog.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Microsoft.Extensions.Logging.EventLog.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Microsoft.Extensions.Options.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Microsoft.Extensions.Options.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Microsoft.Extensions.Primitives.dll

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Microsoft.Extensions.Primitives.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Microsoft.JSInterop.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Microsoft.JSInterop.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Microsoft.MobileBlazorBindings.Hosting.dll

Resource

win7-20240215-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Microsoft.MobileBlazorBindings.Hosting.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Microsoft.MobileBlazorBindings.WPF.dll

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Microsoft.MobileBlazorBindings.WPF.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Microsoft.Toolkit.Uwp.Notifications.dll

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Microsoft.Toolkit.Uwp.Notifications.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Microsoft.Extensions.Primitives.dll
Size

39KB
MD5

9860d478e7b4f30657f96e354d56f107
SHA1

37d683c9a9dcade1f6aa648ce47b48930bb4a28c
SHA256

c4a6e972a494a937b2f81a287f7fbf70271485e4c3861e9437a66126f3100137
SHA512

7a5794fbfa4d2c396fb87e274718ebc6982151a5fb757600f7c7f25a582fe781f92cb21315beff73c5a999f63d9c44730e50eabe6348f48bd090647c7543a5b6
SSDEEP

768:mx+oKvhhdBe+pEP3erH0OP7NWEfgwEuiEk3vj1Mz7bk:uVK7pEP3aH0OP7NxfvEuiEk/j1MI

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\Microsoft.Extensions.Primitives.dll,#1
1⤵
PID:4452

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=3820 --field-trial-handle=3060,i,1774866140584649235,8085848018931772189,262144 --variations-seed-version /prefetch:8
1⤵
PID:2568

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy