Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

STYLEXP2.7.exe

windows7-x64

7

STYLEXP2.7.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...nu.dll

windows7-x64

3

$PLUGINSDI...nu.dll

windows10-2004-x64

3

$SYSDIR/OEMLINK.htm

windows7-x64

1

$SYSDIR/OEMLINK.htm

windows10-2004-x64

1

$WINDIR/Re...JC.dll

windows7-x64

1

$WINDIR/Re...JC.dll

windows10-2004-x64

1

$WINDIR/Re...le.dll

windows7-x64

1

$WINDIR/Re...le.dll

windows10-2004-x64

1

$WINDIR/Re...E4.dll

windows7-x64

1

$WINDIR/Re...E4.dll

windows10-2004-x64

1

$WINDIR/Re...le.dll

windows7-x64

1

$WINDIR/Re...le.dll

windows10-2004-x64

1

$WINDIR/Re...le.dll

windows7-x64

1

$WINDIR/Re...le.dll

windows10-2004-x64

1

$WINDIR/Re...le.dll

windows7-x64

1

$WINDIR/Re...le.dll

windows10-2004-x64

1

$WINDIR/Re...le.dll

windows7-x64

1

$WINDIR/Re...le.dll

windows10-2004-x64

1

$WINDIR/Re...ch.dll

windows7-x64

1

$WINDIR/Re...ch.dll

windows10-2004-x64

1

$WINDIR/Re...le.dll

windows7-x64

1

$WINDIR/Re...le.dll

windows10-2004-x64

1

$WINDIR/Re...RT.dll

windows7-x64

1

$WINDIR/Re...RT.dll

windows10-2004-x64

1

$WINDIR/Re...le.dll

windows7-x64

1

$WINDIR/Re...le.dll

windows10-2004-x64

1

$WINDIR/Re...P4.dll

windows7-x64

1

$WINDIR/Re...P4.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    131s
  • max time network
    129s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240611-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26/06/2024, 00:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    STYLEXP2.7.exe

  • Size

    21.4MB

  • MD5

    dcd47ecab4c6bb5b98aa7db784d30cd1

  • SHA1

    34e3ca63e9ef824cb74bb98b194ca09784511f9e

  • SHA256

    eabed75897fb2700063d9d689eed25cc2fec2f018418dbae64cc8a7cbc5d1777

  • SHA512

    b36575b46aef72b714d3d5fac3b001f4c30cf765596a7c059a2a21957b69854b6c9d52729555ab40192348fc40346bf7303318f4e80cf9c894de5472edd4d7d8

  • SSDEEP

    393216:3YniCaEA0ALUQHLD4NVH/gxb8wi0QNOoxS1zWVWOlzWmEZ8tEgw:cJJALnrENVfgRMd9xiqVWO1kZGEt

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

Processes

  • C:\Users\Admin\AppData\Local\Temp\STYLEXP2.7.exe
    "C:\Users\Admin\AppData\Local\Temp\STYLEXP2.7.exe"
    1⤵
    • Loads dropped DLL
    PID:5100
  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=4244,i,3833046924978547022,12404847742964713612,262144 --variations-seed-version --mojo-platform-channel-handle=4224 /prefetch:8
    1⤵
      PID:2120

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\nsuF7FE.tmp\InstallOptions.dll
      Filesize

      14KB

      MD5

      32aa6334fc543e70ef0f792bb9a0c45a

      SHA1

      54be1f5004f7e5afe7c9ba160495076ea2a4d60c

      SHA256

      610e54bcfc2831d4f9d7030ceb16d35ee33006403d842f01b6e75bebea0083e2

      SHA512

      ac92116821a032de8df64bf9aea9c6ba4040467eebaa4e028c2bf031f1c81bb69531288b9d89d951b952fe0b4ecccade874a5ae76d04db8b4dee2d13c486f9ae

      Download Submit

    • C:\Users\Admin\AppData\Local\Temp\nsuF7FE.tmp\ioSpecial.ini
      Filesize

      645B

      MD5

      dc9e88bde0c0d0fad7360d0e02579614

      SHA1

      670c30a972a673e329b5af60ff75e62917f67414

      SHA256

      70dafd8e7cf79cc825cbc863f077994697b8551bf0002052269010099106d3d5

      SHA512

      690a95aabeeece6853d43f5e0ef8a4ec086200306438d2d71e29c2dc9b8c5c7b3103cfe10adb82074733d9cd15adfc364e208b7a46614e62ae862778dcbbe3dd

      Download Submit