Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

3

AppvIsvSub...64.dll

windows7-x64

1

AppvIsvSub...64.dll

windows10-2004-x64

3

Mso20Win32Client.dll

windows7-x64

1

Mso20Win32Client.dll

windows10-2004-x64

3

e-yazi.doc... .exe

windows7-x64

1

e-yazi.doc... .exe

windows10-2004-x64

5

e-yazi.pdf

windows7-x64

1

e-yazi.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    33s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    15/05/2023, 13:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e-yazi.pdf

  • Size

    30KB

  • MD5

    f4ef5672af889429d95f111ea65ff490

  • SHA1

    58353e513c91cff6bbf350a52b58a232302f6339

  • SHA256

    7a9d27006887464220c456cc1cdbcf7766bc8fd760114b79b04a7e3fef73b33a

  • SHA512

    84aa8fe8e0187c3c4ee5bfb5fb5c4b5a4b1c5367d3d257d0efe38b80ab68fe91187db0b08a8e3aaa88b80109d4c99391058d5a54dfa07ea33f31bac36e06fdba

  • SSDEEP

    768:AcmYClxR/NHdnRfeXB1eRYDPzx8q5omSmgoZoZ63iCcYILOhILS:AXXTR5ReDJvc8Zv3bIO

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e-yazi.pdf"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1568

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads