Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

Bootstrap ...om.exe

windows11-21h2-x64

7

$PLUGINSDI...er.dll

windows11-21h2-x64

3

$PLUGINSDI...ls.dll

windows11-21h2-x64

3

$PLUGINSDI...em.dll

windows11-21h2-x64

3

$PLUGINSDI...ll.dll

windows11-21h2-x64

3

Bootstrap Studio.exe

windows11-21h2-x64

4

LICENSES.c...m.html

windows11-21h2-x64

3

d3dcompiler_47.dll

windows11-21h2-x64

1

ffmpeg.dll

windows11-21h2-x64

1

libEGL.dll

windows11-21h2-x64

1

libGLESv2.dll

windows11-21h2-x64

1

resources/...trc.js

windows11-21h2-x64

3

resources/...all.js

windows11-21h2-x64

3

resources/...nel.js

windows11-21h2-x64

3

resources/...ent.js

windows11-21h2-x64

3

resources/...ent.js

windows11-21h2-x64

3

resources/...nts.js

windows11-21h2-x64

3

resources/...dex.js

windows11-21h2-x64

3

resources/...col.js

windows11-21h2-x64

3

resources/...FTP.js

windows11-21h2-x64

3

resources/...nts.js

windows11-21h2-x64

3

resources/...pto.js

windows11-21h2-x64

3

resources/...o.node

windows11-21h2-x64

3

resources/...305.js

windows11-21h2-x64

3

resources/...ers.js

windows11-21h2-x64

3

resources/...isc.js

windows11-21h2-x64

3

$PLUGINSDI...ec.dll

windows11-21h2-x64

3

$PLUGINSDI...7z.dll

windows11-21h2-x64

3

$R0/Uninst...io.exe

windows11-21h2-x64

7

Bootstrap ...en.exe

windows11-21h2-x64

7

Bootstrap ..._1.dll

windows11-21h2-x64

3

Bootstrap ..._1.dll

windows11-21h2-x64

3

Resubmissions

01/09/2024, 14:15

240901-rkpldssgrl 7

Analysis

  • max time kernel
    212s
  • max time network
    283s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240802-en
  • resource tags

    arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    01/09/2024, 14:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bootstrap Studio 6.7.3 x64_SoftoRooM/Crack/libssl-1_1.dll

  • Size

    513KB

  • MD5

    2ac52a943cbb33b68f6af7d1c9875da5

  • SHA1

    568d40a51b3c19766183c20732402e4527d31ae4

  • SHA256

    6c5bd35dc01424116e19465ce014c8d4e2fd373fb2e3c9243b9391f2666cf854

  • SHA512

    0981e0c325704e5d84d38f21839dac181f47f8e5523a6813f279cc093aa9851bd05204b0895b0d74de1295474197d033fee6255c1f3339e3d274ce4712952b89

  • SSDEEP

    12288:L5EikPSJWSofyXduJRjTlJvQuGVk/IttN6SSv8H:L0qW68JH/IzN6SSv8H

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Bootstrap Studio 6.7.3 x64_SoftoRooM\Crack\libssl-1_1.dll",#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:244
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Bootstrap Studio 6.7.3 x64_SoftoRooM\Crack\libssl-1_1.dll",#1
      2⤵
      • System Location Discovery: System Language Discovery
      PID:340

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads