Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

NEAS.7007c...a0.pdf

windows7-x64

1

NEAS.7007c...a0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    151s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    22/10/2023, 18:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.7007cae43ed9b66a004edcb81fb48ea0.pdf

  • Size

    91KB

  • MD5

    7007cae43ed9b66a004edcb81fb48ea0

  • SHA1

    f7d0a2f031fc1cdb89301563bf2cdd7f5fdfd276

  • SHA256

    8ce5403a094834628d7e470ed563421d6e43c457484f275f06f243def040782c

  • SHA512

    786ede716c7c9daeb287266bf2d08531922507b2b82fafd4354975b64a69d83e92db41e55a0d202a42fa9495b720cc11e4dce96eb6866156f35c8833543b63e3

  • SSDEEP

    1536:juPugWDEVMZ1LPSOamsx2YcZ+p+tdgeeXzeZVxbEWrefnfWspORxxozl6gz:6PuBC4NPSO5sx2YcZ+snOQonuROF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.7007cae43ed9b66a004edcb81fb48ea0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1472

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    eb8a1db5719bf8b7acfd90329b671265

    SHA1

    10cfb1ac01e10a2ab58d8708d0743da00b256b6e

    SHA256

    c260d828030bcd1d0802f1051557e01e6d538dc7de862e3bd7ce808b1c670b69

    SHA512

    7690164218ff8efdfde6833430b13fb686bc31d36f3c4d1c441be65374718b50d90664a39c7b6428f7f3a854d69d4df4ca28713594b3faea983e391d783dde77

    Download Submit