Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    171s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    22/10/2023, 16:45 UTC

General

  • Target

    NEAS.01b0217a42654ae0f6b8f2b6861611e0.pdf

  • Size

    49KB

  • MD5

    01b0217a42654ae0f6b8f2b6861611e0

  • SHA1

    be7ffbb485569622396f23e368434a7c03077bd0

  • SHA256

    9827c9b987232f3ab00719852f49cb6c9803b3619f377ccc2d6ad89dadb356bb

  • SHA512

    9148d089210560c12f64d848131fa36b5abb0e812fa533e9beb0aa254d195aba5f522dfc961f6667074c5fb771da62a3452f3788568e28116fe9eef5e34bd6bf

  • SSDEEP

    768:NVg1/Ls8MTJjyfiFXi0J1aNY3Gu8QYsomXFZgRD0+HswGe37y1jUur:o1o8AH/3GuKsZQRgCG4MUur

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.01b0217a42654ae0f6b8f2b6861611e0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2264

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    2f0edc4852bf4ee177248f96680c0c02

    SHA1

    19d7f720f982cbd08c25d328c47099fbd8b8a5d6

    SHA256

    39254231f965bd8511b4459acc488de1c539d1c0aa5d59de3c0987498dc7a8df

    SHA512

    4c7b4366d29c81cf140a5c99ac5eba24ea6df0a5b712d3aedf4d70653ca64c2b06b135cf609822fe509e3cd699fd2992e68378d2f8c6670971230f51925883c0

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.