Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    139s
  • max time network
    30s
  • platform
    windows7_x64
  • resource
    win7-20230621-en
  • resource tags

    arch:x64arch:x86image:win7-20230621-enlocale:en-usos:windows7-x64system
  • submitted
    29/06/2023, 08:26

General

  • Target

    UNILEVER RFQ 5.pdf

  • Size

    600KB

  • MD5

    042eeb189e1d8dfc4d70c2868acb86ba

  • SHA1

    055f61f0b56429351b64c53a9482e5c5fe39a13c

  • SHA256

    89aee68be0787afe7b56794b9a9917c5ee4329e64c28ea805c0b73131b6c84c8

  • SHA512

    cc7783312c8221495011ef383438f138d98427ebab8d389a654db6928c496633a4a398072e64ae10c52e1033d0a3e915037ddba4bfe123a81989506d81d5af79

  • SSDEEP

    12288:YYurQt5ZxpFm2eq5uvIPBvsLhAZ0+LuYbvwJVsanz6bO0lCI7F5tfIcJ:TsQt5U/KvsLhAZjLhTancDf7bz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\UNILEVER RFQ 5.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1448

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    3a39ca1fe8c3fc6ea71f10fc2b5b2f75

    SHA1

    82e58a0eb3ea134c210da68aff4032b8662a2d19

    SHA256

    7b3cd2cbe3175c3d048c8a5b088cc2e5b1137b03cf48bceeb25533d64f1f11bf

    SHA512

    fa734367ef85d8d4ad27785aa4de4d376e8a253476dd4d02ab568eb57d6f6188ab2f19928b13470e3f5630e743bc11684494525c83696df4981bd898d4d65e44