Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    150s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    16/10/2023, 18:28

General

  • Target

    NEAS.8d436d0087706ddf5d5f7f645d3fe760.pdf

  • Size

    382KB

  • MD5

    8d436d0087706ddf5d5f7f645d3fe760

  • SHA1

    8b06df7ee807d3097ce23afbc4911f8ec3873d36

  • SHA256

    2fa0a8cf84e41899cae2c3f6d7412a15ae7416cf6ec6f87326d3a64dd144cc9c

  • SHA512

    569ffb2333525af289af78ddd0cb4d43a332fea6970c25ae750da7d32da277813abd91f7452be44844f5237d3053ab2beaed6f44513edf3affb4d2db823cec80

  • SSDEEP

    6144:Vh7b4I0IGjdSvWpGGQzv/hyv9ULDdEj0MEFz5NxoJcGAwpaxXJtUTqmviNkZiSq2:Vh770rxIBzhyCLDej0MI5fsAwDXikMS7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.8d436d0087706ddf5d5f7f645d3fe760.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1708

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    b64d5dd14e395aee091ca7f1c258a7b6

    SHA1

    422c98e8654b1bf8e5a8adea9394b9591dc3ca67

    SHA256

    d39ad9e4967f045c93228dbf007015bdff052aff3e44bd89dd2affd4748f7723

    SHA512

    6638a1e011a3463e025c7e39e064ce56fc57f88d170fbaa9cdfda3acf9e6174db239890762164e9ea253057332c75ff45b4149f1c39ce17bf76c83d62c598bea