Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

Qt6Core.dll

windows11-21h2-x64

8

Qt6Core5Compat.dll

windows11-21h2-x64

1

Qt6Gui.dll

windows11-21h2-x64

1

Qt6Network.dll

windows11-21h2-x64

1

Qt6Svg.dll

windows11-21h2-x64

1

Qt6Widgets.dll

windows11-21h2-x64

1

Qt6Xml.dll

windows11-21h2-x64

1

iconengine...on.dll

windows11-21h2-x64

1

imageformats/qgif.dll

windows11-21h2-x64

1

imageforma...ns.dll

windows11-21h2-x64

1

imageformats/qico.dll

windows11-21h2-x64

1

imageformats/qjp2.dll

windows11-21h2-x64

1

imageforma...eg.dll

windows11-21h2-x64

1

imageformats/qsvg.dll

windows11-21h2-x64

1

imageforma...mp.dll

windows11-21h2-x64

1

imageforma...bp.dll

windows11-21h2-x64

1

jars/JavaCheck.jar

windows11-21h2-x64

1

jars/NewLaunch.jar

windows11-21h2-x64

1

jars/NewLa...cy.jar

windows11-21h2-x64

1

libb2-1.dll

windows11-21h2-x64

1

libbrotlicommon.dll

windows11-21h2-x64

1

libbrotlidec.dll

windows11-21h2-x64

8

libbz2-1.dll

windows11-21h2-x64

1

libc++.dll

windows11-21h2-x64

1

libcmark.dll

windows11-21h2-x64

1

libdouble-...on.dll

windows11-21h2-x64

1

libfreetype-6.dll

windows11-21h2-x64

1

libglib-2.0-0.dll

windows11-21h2-x64

1

libgraphite2.dll

windows11-21h2-x64

1

libharfbuzz-0.dll

windows11-21h2-x64

1

libiconv-2.dll

windows11-21h2-x64

1

libicudt75.dll

windows11-21h2-x64

1

Analysis

  • max time kernel
    1584s
  • max time network
    1484s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240802-en
  • resource tags

    arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    06/08/2024, 15:03 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    imageformats/qicns.dll

  • Size

    57KB

  • MD5

    cd676b30a2090652cf4225678008ffda

  • SHA1

    68d474f47c4278252ac1ae441ecb16fdcb430e46

  • SHA256

    a2676bc8ef8ac3a0efd4539c372206f7456e9389e216b72610df8edfbc2621e0

  • SHA512

    edfc631bb672b9f2c390ae15f63b0c5d32b345dd088aa579c0837046b27080a5fcb0a2351a1ad7585138a8f7f8f12bbfde4007e7f71d250ee56e09bb3db57003

  • SSDEEP

    768:uYLeS0gZetlVv7/IBXy4/a5JeI2PKtwNs0zBZSY1SLeD:teS72l5OGJIKtAXSSSLeD

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\imageformats\qicns.dll,#1
    1⤵
      PID:2800

    Network

    • flag-us
      DNS
      73.159.190.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      73.159.190.20.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      26.35.223.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      26.35.223.20.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      26.35.223.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      26.35.223.20.in-addr.arpa
      IN PTR
    • flag-us
      DNS
      26.35.223.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      26.35.223.20.in-addr.arpa
      IN PTR
    • flag-us
      DNS
      54.120.234.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      54.120.234.20.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      ctldl.windowsupdate.com
      Remote address:
      8.8.8.8:53
      Request
      ctldl.windowsupdate.com
      IN A
      Response
      ctldl.windowsupdate.com
      IN CNAME
      ctldl.windowsupdate.com.delivery.microsoft.com
      ctldl.windowsupdate.com.delivery.microsoft.com
      IN CNAME
      wu-b-net.trafficmanager.net
      wu-b-net.trafficmanager.net
      IN CNAME
      bg.microsoft.map.fastly.net
      bg.microsoft.map.fastly.net
      IN A
      199.232.210.172
      bg.microsoft.map.fastly.net
      IN A
      199.232.214.172
    • flag-us
      DNS
      88.156.103.20.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      88.156.103.20.in-addr.arpa
      IN PTR
      Response
    • 150.171.28.10:443
      tse1.mm.bing.net
      tls
      1.8kB
       10.5kB
       20
      17
    • 150.171.28.10:443
      tse1.mm.bing.net
      tls
      127.3kB
       3.4MB
       2505
      2496
    • 150.171.28.10:443
      tse1.mm.bing.net
      tls
      1.6kB
       6.5kB
       15
      11
    • 150.171.28.10:443
      tse1.mm.bing.net
      tls
      2.5kB
       7.2kB
       18
      15
    • 150.171.28.10:443
      tse1.mm.bing.net
      tls
      1.6kB
       8.6kB
       18
      15
    • 8.8.8.8:53
      73.159.190.20.in-addr.arpa
      dns
      285 B
       315 B
       4
      2

      DNS Request

      73.159.190.20.in-addr.arpa

      DNS Request

      26.35.223.20.in-addr.arpa

      DNS Request

      26.35.223.20.in-addr.arpa

      DNS Request

      26.35.223.20.in-addr.arpa

    • 8.8.8.8:53
      54.120.234.20.in-addr.arpa
      dns
      213 B
       553 B
       3
      3

      DNS Request

      54.120.234.20.in-addr.arpa

      DNS Request

      ctldl.windowsupdate.com

      DNS Response

      199.232.210.172
      199.232.214.172

      DNS Request

      88.156.103.20.in-addr.arpa

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.