9fa85129c0997203f7b60493778a0a93a46b5165cd1cb13e826605b25a502fc7 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

Cracked LB...ts.dll

windows7-x64

1

Cracked LB...ts.dll

windows10-2004-x64

1

Cracked LB...ec.dll

windows7-x64

1

Cracked LB...ec.dll

windows10-2004-x64

1

Cracked LB...re.dll

windows7-x64

1

Cracked LB...re.dll

windows10-2004-x64

1

Cracked LB...le.dll

windows7-x64

1

Cracked LB...le.dll

windows10-2004-x64

1

Cracked LB...up.exe

windows7-x64

7

Cracked LB...up.exe

windows10-2004-x64

7

Analysis

max time kernel
105s
max time network
123s
platform
windows10-2004_x64
resource
win10v2004-20250314-en
resource tags

arch:x64arch:x86image:win10v2004-20250314-enlocale:en-usos:windows10-2004-x64system
submitted
20/03/2025, 17:31

Sharing

Static task

static1

pyinstaller empyrean

4 signatures

Behavioral task

behavioral1

Sample

Cracked LB-PHONE/client/tool-formats.dll

Resource

win7-20240729-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

Cracked LB-PHONE/client/tool-formats.dll

Resource

win10v2004-20250314-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

Cracked LB-PHONE/client/tool-vehrec.dll

Resource

win7-20241023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

Cracked LB-PHONE/client/tool-vehrec.dll

Resource

win10v2004-20250314-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

Cracked LB-PHONE/client/vfs-core.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

Cracked LB-PHONE/client/vfs-core.dll

Resource

win10v2004-20250314-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

Cracked LB-PHONE/client/voip-server-mumble.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Cracked LB-PHONE/client/voip-server-mumble.dll

Resource

win10v2004-20250314-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Cracked LB-PHONE/setup.exe

Resource

win7-20240903-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral10

Sample

Cracked LB-PHONE/setup.exe

Resource

win10v2004-20250314-en

discovery persistence privilege_escalation spyware stealer upx

windows10-2004-x64

13 signatures

150 seconds

Report Analysis Logs

General

Target

Cracked LB-PHONE/client/tool-vehrec.dll
Size

271KB
MD5

ce933d2aaec06d5ebbb0662d9357dfd4
SHA1

488aa4a6e79a98b15c3aa17a2b9a69300fe2186a
SHA256

c0bfccffe9bd324d14a5bf8b2541dfe2be21f437b48f3637e678b0fef3ad1db6
SHA512

ea4e5569e2ffe29aae1f6a69db22fadfabeeed1cc4b053bbb130c323b82f29a0a0dc8358f6ebb5c7b8a9dc08feaaf2f73749e89dfcca66086aa7faa1a3e171c9
SSDEEP

6144:hi543+Kf7A/4CZ1ojTnCdzEb8fx+Z8tN50Z7O:hOzvzJt

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Cracked LB-PHONE\client\tool-vehrec.dll",#1
1⤵
PID:4564

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy