Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

MatDeckSetup.exe

windows7-x64

7

MatDeckSetup.exe

windows10-2004-x64

7

SCADA.exe

windows7-x64

1

SCADA.exe

windows10-2004-x64

1

SoftwareUp...in.exe

windows7-x64

1

SoftwareUp...in.exe

windows10-2004-x64

1

USBDEV_LIB.dll

windows7-x64

1

USBDEV_LIB.dll

windows10-2004-x64

1

VMD.exe

windows7-x64

1

VMD.exe

windows10-2004-x64

7

VirtumentU...al.pdf

windows7-x64

1

VirtumentU...al.pdf

windows10-2004-x64

1

XlsLib.dll

windows7-x64

1

XlsLib.dll

windows10-2004-x64

3

biodaq.dll

windows7-x64

1

biodaq.dll

windows10-2004-x64

1

biodaqutil.dll

windows7-x64

1

biodaqutil.dll

windows10-2004-x64

1

ftd2xx.dll

windows7-x64

1

ftd2xx.dll

windows10-2004-x64

1

imageformats/qgif.dll

windows7-x64

1

imageformats/qgif.dll

windows10-2004-x64

1

imageforma...eg.dll

windows7-x64

1

imageforma...eg.dll

windows10-2004-x64

1

imageformats/qsvg.dll

windows7-x64

1

imageformats/qsvg.dll

windows10-2004-x64

1

lessons/Le...nt.pdf

windows7-x64

1

lessons/Le...nt.pdf

windows10-2004-x64

1

lessons/Le...ph.pdf

windows7-x64

1

lessons/Le...ph.pdf

windows10-2004-x64

1

libMPSSE.dll

windows7-x64

1

libMPSSE.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    27/06/2024, 16:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    MatDeckSetup.exe

  • Size

    98.5MB

  • MD5

    e9a6c7d3c8883ce2c9204373cde23ffb

  • SHA1

    52b5dbb1b9af4b129c6214541b50fc97b041b428

  • SHA256

    3e36732ff2a298a34acd083639cf0f8b1aef0e099965e6ff30706489bf1297d4

  • SHA512

    eaa2c68a50cc20025486733e6f058f41c9143f35a4c95374c3afdc7a9ceae279a9187cd947aa3902201402321703650bc3345a1a45d125966057b9c338104d5a

  • SSDEEP

    3145728:WTCrf4FYTWRRBx/ZoPTj1Vo34TpeRbnZIk:xf4YCBVZEj1VoyeJ

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\MatDeckSetup.exe
    "C:\Users\Admin\AppData\Local\Temp\MatDeckSetup.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious behavior: GetForegroundWindowSpam
    PID:2540

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\nsoA249.tmp\ioSpecial.ini
    Filesize

    690B

    MD5

    0f816ad9d1645809267ec5aff40a8235

    SHA1

    0ec7303e4767fd71b369a5a545f6f41578787994

    SHA256

    cf7c1d644a4eb1e3b213039b715bc78ed024483690d42dbd2c9bbfa47e9d82a9

    SHA512

    8881381b73c06c7ea20c7a9bc85f401187912a920d6d04cfa6ac7158a8a4ceeb816ebdd3486e0267150801cdf2634cbc782c9e0637dc69daeaa15576ff617bd3

    Download Submit

  • \Users\Admin\AppData\Local\Temp\nsoA249.tmp\InstallOptions.dll
    Filesize

    14KB

    MD5

    d753362649aecd60ff434adf171a4e7f

    SHA1

    3b752ad064e06e21822c8958ae22e9a6bb8cf3d0

    SHA256

    8f24c6cf0b06d18f3c07e7bfca4e92afce71834663746cfaa9ddf52a25d5c586

    SHA512

    41bf41add275867553fa3bd8835cd7e2a2a362a2d5670ccbfad23700448bad9fe0f577fb6ee9d4eb81dfc10d463b325b8a873fe5912eb580936d4ad96587aa6d

    Download Submit