Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

suyu-windo...re.dll

windows7-x64

1

suyu-windo...re.dll

windows10-2004-x64

1

suyu-windo...ui.dll

windows7-x64

1

suyu-windo...ui.dll

windows10-2004-x64

1

suyu-windo...ia.dll

windows7-x64

1

suyu-windo...ia.dll

windows10-2004-x64

1

suyu-windo...rk.dll

windows7-x64

1

suyu-windo...rk.dll

windows10-2004-x64

1

suyu-windo...ts.dll

windows7-x64

1

suyu-windo...ts.dll

windows10-2004-x64

1

suyu-windo...L2.dll

windows7-x64

1

suyu-windo...L2.dll

windows10-2004-x64

1

suyu-windo...60.dll

windows7-x64

1

suyu-windo...60.dll

windows10-2004-x64

1

suyu-windo...-9.dll

windows7-x64

1

suyu-windo...-9.dll

windows10-2004-x64

1

suyu-windo...58.dll

windows7-x64

1

suyu-windo...58.dll

windows10-2004-x64

1

suyu-windo...if.dll

windows7-x64

1

suyu-windo...if.dll

windows10-2004-x64

1

suyu-windo...co.dll

windows7-x64

1

suyu-windo...co.dll

windows10-2004-x64

1

suyu-windo...eg.dll

windows7-x64

1

suyu-windo...eg.dll

windows10-2004-x64

1

suyu-windo...on.dll

windows7-x64

1

suyu-windo...on.dll

windows10-2004-x64

1

suyu-windo...ec.dll

windows7-x64

1

suyu-windo...ec.dll

windows10-2004-x64

1

suyu-windo...nc.dll

windows7-x64

1

suyu-windo...nc.dll

windows10-2004-x64

1

suyu-windo...-1.dll

windows7-x64

1

suyu-windo...-1.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26/05/2024, 01:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    suyu-windows-mingw-20240410-0de49070e4_/Qt5Core.dll

  • Size

    6.3MB

  • MD5

    f6dba4325acc5c396eaf1fa9cb35f427

  • SHA1

    e1ff92b0254fff35a56f0c23d8b8e8a0f7de7ece

  • SHA256

    69f36221300644fa431c4d07162b9529c3d5566ca2bcaa476e08354d70ca1646

  • SHA512

    d21b5cfe7f993147030d3e3ae2d57a91b402e80b073ab0910cb3e92f9811f9de6b552b1d69b10754a7e80e6d86ca941543b86260d4850b7b76653bb564ebce23

  • SSDEEP

    98304:nSL89qKgvpzhEyahgKi+1ku+T+w1h9+Ku5z+Pvhrl8tp9/cxpOtDTbQJnUAC3Jsp:qyTZJsv6tWKFdu9C8XttT

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\suyu-windows-mingw-20240410-0de49070e4_\Qt5Core.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2236
    • C:\Windows\system32\WerFault.exe
      C:\Windows\system32\WerFault.exe -u -p 2236 -s 224
      2⤵
        PID:2220

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2236-5-0x000007FEF7200000-0x000007FEF7294000-memory.dmp

      Filesize

      592KB

      Download

    • memory/2236-7-0x000007FEF7F80000-0x000007FEF7FA6000-memory.dmp

      Filesize

      152KB

      Download

    • memory/2236-8-0x000007FEF6540000-0x000007FEF6660000-memory.dmp

      Filesize

      1.1MB

      Download

    • memory/2236-6-0x000007FEF6660000-0x000007FEF6884000-memory.dmp

      Filesize

      2.1MB

      Download

    • memory/2236-4-0x000007FEF8060000-0x000007FEF806E000-memory.dmp

      Filesize

      56KB

      Download

    • memory/2236-3-0x000007FEF72A0000-0x000007FEF7398000-memory.dmp

      Filesize

      992KB

      Download

    • memory/2236-2-0x000007FEFBCE0000-0x000007FEFBCF7000-memory.dmp

      Filesize

      92KB

      Download

    • memory/2236-1-0x000007FEFAF60000-0x000007FEFAF85000-memory.dmp

      Filesize

      148KB

      Download

    • memory/2236-0-0x000007FEF5BF0000-0x000007FEF623E000-memory.dmp

      Filesize

      6.3MB

      Download