Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

~x64__x32_...__.zip

windows7-x64

1

~x64__x32_...__.zip

windows10-2004-x64

1

fh/HalExtI...MA.dll

windows10-2004-x64

1

fh/fh.dll

windows10-2004-x64

1

fh/gpsvc.dll

windows10-2004-x64

1

fh/msftedit.dll

windows10-2004-x64

1

rmclient/SEMgrSvc.dll

windows10-2004-x64

1

rmclient/SRH.dll

windows10-2004-x64

1

rmclient/rilproxy.dll

windows10-2004-x64

1

rmclient/rmclient.dll

windows10-2004-x64

1

vdsbas/Tok...er.dll

windows10-2004-x64

1

vdsbas/Vault.dll

windows10-2004-x64

1

vdsbas/tquery.dll

windows10-2004-x64

1

vdsbas/vdsbas.dll

windows10-2004-x64

1

winspool/wdmaud.dll

windows10-2004-x64

1

winspool/winspool.dll

windows10-2004-x64

1

winspool/wvc.dll

windows10-2004-x64

7

x64__insta....5.msi

windows7-x64

6

x64__insta....5.msi

windows10-2004-x64

6

Resubmissions

02/08/2024, 14:19

240802-rnce8sscne 3

02/08/2024, 14:17

240802-rl7hlasclb 7

Analysis

  • max time kernel
    7s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02/08/2024, 14:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fh/gpsvc.dll

  • Size

    1.3MB

  • MD5

    ea9e9444d9e00a55433f12e8985dbed6

  • SHA1

    5b308448ef002ffb365d91ff4af3e8f326874323

  • SHA256

    49545521a549b9f045cf2dee0eda41deeab3f37e20735d7f905276b5f8980481

  • SHA512

    204923e984427b9eb21b70d358f96e524d0d2b203c8ee2d0e2008ee33ec5d225c619eca3589e0aa1dc8e9c3f8c9b862a88cd5d04d331dbcc776b3fc9f2b097d8

  • SSDEEP

    24576:SkmzGalx3MnAHAH9AXjBCTnAjBkreET9ZTBhldhrT5TfuAlE:SkezlxcbH9ATBY6Bqeq9Z5PT5TfuAl

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\fh\gpsvc.dll,#1
    1⤵
      PID:2396

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads