Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

NEAS.3b93e...70.pdf

windows7-x64

1

NEAS.3b93e...70.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    31/10/2023, 08:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.3b93e03fae2aa253ad0d30049936c570.pdf

  • Size

    133KB

  • MD5

    3b93e03fae2aa253ad0d30049936c570

  • SHA1

    d19fce92cfed1d73bd76f85add8a8d98e12be3c8

  • SHA256

    f01d3f1fd1e16d6db1941c1441193a3ec00af633950f2097ddd9f933e5865bf2

  • SHA512

    6eaca0b0382bbb3978a57e7dddff2da1baaac3ff4db51c74ed79cddad947f515f6255fabc81c37da5ff909b83f2a1d6838f33abbefbac761f8e875f120b6b446

  • SSDEEP

    3072:yljsS6PRKP3CovbG135UahjnvBmH7m1jZmfBQ+ost:yljmPoP3CqbOJUKjnvB+mWfBnoe

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.3b93e03fae2aa253ad0d30049936c570.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2508

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1abacdbaedb38a084d74de11f7a28435

    SHA1

    4f80741c383d431dccd9c7e7815e57477e393b59

    SHA256

    a479bfc7980b9b541e6762ad8577402c9cbdf0ceac1d838a001080c85e4c5b18

    SHA512

    2fb0f724f308b2bd416dc807cdee4a422507823d60ad7b96551ca4572bf4586db0617e06df30a0be298362b564f67b5a13f3d72fb36831ea06298d102695480a

    Download Submit