Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/libmmd.dll

windows7-x64

1

Synapse X/libmmd.dll

windows10-2004-x64

1

Synapse X/...-1.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...-0.dll

windows10-2004-x64

1

Synapse X/...40.dll

windows7-x64

1

Synapse X/...40.dll

windows10-2004-x64

1

Synapse X/...pp.dll

windows7-x64

3

Synapse X/...pp.dll

windows10-2004-x64

3

Synapse X/setup.exe

windows7-x64

7

Synapse X/setup.exe

windows10-2004-x64

10

Synapse X/...40.dll

windows7-x64

1

Synapse X/...40.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    92s
  • max time network
    128s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    28/06/2024, 21:56 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Synapse X/other/api-ms-win-crt-convert-l1-1-0.dll

  • Size

    21KB

  • MD5

    3e415147ccd7c712618868bdd7a200cd

  • SHA1

    b332f29915d846519dcb725d39e8c50604d7b414

  • SHA256

    77b69e829bdc26c7b2474be6b8a2382345b2957e23046897e40992a8157a7ba1

  • SHA512

    7e7e50f148414f8a84b4c39d3c7c1e0952f86f95873f3abc25b7f08574bbcce41394a59451868020b178bf68df12615bd356677e8c935c1185c5d07d15e61896

  • SSDEEP

    384:WluyxWfhWK+Y3DGk8ZpH3GCJEFxkNN0O+Y3DGEhy8JN77hhHL:RhDGkiRBEqDGsd3h9L

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Synapse X\other\api-ms-win-crt-convert-l1-1-0.dll",#1
    1⤵
      PID:3520

    Network

    • flag-us
      DNS
      28.118.140.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      28.118.140.52.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      129.83.221.88.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      129.83.221.88.in-addr.arpa
      IN PTR
      Response
      129.83.221.88.in-addr.arpa
      IN PTR
      a88-221-83-129deploystaticakamaitechnologiescom
    • flag-us
      DNS
      68.32.126.40.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      68.32.126.40.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      157.123.68.40.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      157.123.68.40.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      15.164.165.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      15.164.165.52.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      100.58.20.217.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      100.58.20.217.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      114.83.221.88.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      114.83.221.88.in-addr.arpa
      IN PTR
      Response
      114.83.221.88.in-addr.arpa
      IN PTR
      a88-221-83-114deploystaticakamaitechnologiescom
    • flag-us
      DNS
      13.227.111.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      13.227.111.52.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      131.83.221.88.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      131.83.221.88.in-addr.arpa
      IN PTR
      Response
      131.83.221.88.in-addr.arpa
      IN PTR
      a88-221-83-131deploystaticakamaitechnologiescom
    • 52.111.227.14:443
      322 B
       7
    • 8.8.8.8:53
      28.118.140.52.in-addr.arpa
      dns
      72 B
       158 B
       1
      1

      DNS Request

      28.118.140.52.in-addr.arpa

    • 8.8.8.8:53
      129.83.221.88.in-addr.arpa
      dns
      72 B
       137 B
       1
      1

      DNS Request

      129.83.221.88.in-addr.arpa

    • 8.8.8.8:53
      68.32.126.40.in-addr.arpa
      dns
      71 B
       157 B
       1
      1

      DNS Request

      68.32.126.40.in-addr.arpa

    • 8.8.8.8:53
      157.123.68.40.in-addr.arpa
      dns
      72 B
       146 B
       1
      1

      DNS Request

      157.123.68.40.in-addr.arpa

    • 8.8.8.8:53
      15.164.165.52.in-addr.arpa
      dns
      72 B
       146 B
       1
      1

      DNS Request

      15.164.165.52.in-addr.arpa

    • 8.8.8.8:53
      100.58.20.217.in-addr.arpa
      dns
      72 B
       132 B
       1
      1

      DNS Request

      100.58.20.217.in-addr.arpa

    • 8.8.8.8:53
      114.83.221.88.in-addr.arpa
      dns
      72 B
       137 B
       1
      1

      DNS Request

      114.83.221.88.in-addr.arpa

    • 8.8.8.8:53
      13.227.111.52.in-addr.arpa
      dns
      72 B
       158 B
       1
      1

      DNS Request

      13.227.111.52.in-addr.arpa

    • 8.8.8.8:53
      131.83.221.88.in-addr.arpa
      dns
      72 B
       137 B
       1
      1

      DNS Request

      131.83.221.88.in-addr.arpa

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.