Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

3500.dll

windows7-x64

10

3500.dll

windows10-2004-x64

10

3501.dll

windows7-x64

10

3501.dll

windows10-2004-x64

10

3502.dll

windows7-x64

10

3502.dll

windows10-2004-x64

10

3503.dll

windows7-x64

10

3503.dll

windows10-2004-x64

10

3504.dll

windows7-x64

10

3504.dll

windows10-2004-x64

10

3505.dll

windows7-x64

10

3505.dll

windows10-2004-x64

10

3506.dll

windows7-x64

10

3506.dll

windows10-2004-x64

10

3507.dll

windows7-x64

10

3507.dll

windows10-2004-x64

10

3508.dll

windows7-x64

10

3508.dll

windows10-2004-x64

10

3509.dll

windows7-x64

10

3509.dll

windows10-2004-x64

10

3510.dll

windows7-x64

10

3510.dll

windows10-2004-x64

10

3511.dll

windows7-x64

10

3511.dll

windows10-2004-x64

10

3512.dll

windows7-x64

10

3512.dll

windows10-2004-x64

10

3513.dll

windows7-x64

10

3513.dll

windows10-2004-x64

10

3514.dll

windows7-x64

10

3514.dll

windows10-2004-x64

10

3515.dll

windows7-x64

10

3515.dll

windows10-2004-x64

10

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    13/07/2024, 12:05 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3500.dll

  • Size

    124KB

  • MD5

    26912db9ada884eacda8e236e88f7942

  • SHA1

    abc974678cf9dcf55f2bd119d0793eb1fd2d7b5b

  • SHA256

    3ace0708305008a0c0a44dfb7fd05ade298d0b67a895eca9d9fc1c3dae7ae63d

  • SHA512

    0ad4e06d3e85aa0d0a68c42611d784a00a6863b35bff10cec90c47477efd617a944e249de607511f77db054042dbfa1ccda29ff86c6bfcbd23c6686e14ad9273

  • SSDEEP

    3072:MblAYez5JG2ZTfrV8IsB5Yi4VC8Zh8TB:aAjDfS3R4VCU8TB

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Signatures

  • Detects Strela Stealer payload 1 IoCs
  • Strela stealer

    An info stealer targeting mail credentials first seen in late 2022.

    stealerstrela

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\3500.dll,#1
    1⤵
      PID:2988

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2988-0-0x00000000001E0000-0x0000000000202000-memory.dmp

      Filesize

      136KB

      Download

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.