Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

7

Ephinea_PS...er.exe

windows10-2004-x64

3

Microsoft....re.dll

windows10-2004-x64

1

Microsoft....pf.dll

windows10-2004-x64

1

PsoBB.exe

windows10-2004-x64

6

WebView2Loader.dll

windows10-2004-x64

3

data/ogg/HEAD_ON.ps1

windows10-2004-x64

3

dgVoodoo_d3d9.dll

windows10-2004-x64

1

dxvk_d3d9.dll

windows10-2004-x64

1

ephinea.dll

windows10-2004-x64

3

online.exe

windows10-2004-x64

1

online_compat.exe

windows10-2004-x64

1

online_win7.exe

windows10-2004-x64

1

option.exe

windows10-2004-x64

1

patchclient.dll

windows10-2004-x64

8

uninstall.exe

windows10-2004-x64

7

Resubmissions

28/06/2024, 16:48

240628-vbh9ssxakg 8

28/06/2024, 16:39

240628-t58acawhkh 8

Analysis

  • max time kernel
    1791s
  • max time network
    1785s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    28/06/2024, 16:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    online_compat.exe

  • Size

    1.7MB

  • MD5

    6190c213968ab6f302d4ec04567bbee5

  • SHA1

    25de16ee4c255b8d7322d385b18366f9991af20a

  • SHA256

    a7538c21afe1d3bfb7a3bc3395f4c426d772dd6ed2301eab84469ad1c09696b5

  • SHA512

    614f09603547d81dc9cf6cd01978b86d0dc5df0fcc6f798e284277b362699f17b382042b05830f195e46942e05a759b979339f3de07d8e7d6b1cbd1303a4df53

  • SSDEEP

    24576:lIsrw176xvSMJe/Oh8rsISWiIh6y2+cN:lIsrw17zYe/IFm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\online_compat.exe
    "C:\Users\Admin\AppData\Local\Temp\online_compat.exe"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    PID:348

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/348-0-0x0000000000A80000-0x0000000000A81000-memory.dmp

    Filesize

    4KB

    Download

  • memory/348-1-0x0000000000400000-0x00000000005BA000-memory.dmp

    Filesize

    1.7MB

    Download

  • memory/348-3-0x0000000000A80000-0x0000000000A81000-memory.dmp

    Filesize

    4KB

    Download