Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

NEAS.48e8b...b0.pdf

windows7-x64

1

NEAS.48e8b...b0.pdf

windows10-2004-x64

Analysis

  • max time kernel
    150s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    15/10/2023, 10:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.48e8b5dd95939d88b40a1e47015c62b0.pdf

  • Size

    47KB

  • MD5

    48e8b5dd95939d88b40a1e47015c62b0

  • SHA1

    651a729d1d8e972c5edfe1589fc8bd8c29a7e2aa

  • SHA256

    15b70a5e1b5c607f32cc9d6bb7339672a55205ff88fd04ecc4ba47842970b6f9

  • SHA512

    bc3264b92b536689bbfab59edc8ce7d388325ca4ce60169a8e2b9925a66801e0cdd2a0933984a4cb6f225c36c8c33020829f74f94756d26d63f327f09a74562e

  • SSDEEP

    768:VzXpMLz1oxzv0odz4jz3S9j579dbd6VxYznKSdKBNA5kupbz3R776rVrB4W2DtcS:thaWGre8z2SFYLpgO7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.48e8b5dd95939d88b40a1e47015c62b0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1716

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6cf1d7c1ac04266ddd1957cc095fb83e

    SHA1

    5c123d701d54bb1bb416508d8d68eded27db2c50

    SHA256

    4b50c8fc93426abae0af33ab264ee122647320615b70bf84a093c77d836f0045

    SHA512

    75472d3d57643689a5a3b982265e8cb09bfd7a758a374aab5b4f89988bb6e49b272be7caff5e7c612bfcf467d9372317262a77d3bec4e94f31406e3f26543cc8

    Download Submit