Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    150s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    31/10/2023, 08:54

General

  • Target

    NEAS.725fcdfe60c25f30008d211017f1ebd0.pdf

  • Size

    67KB

  • MD5

    725fcdfe60c25f30008d211017f1ebd0

  • SHA1

    e9bd02a22f4dc558d9bd8ebfe461f41bf69d42df

  • SHA256

    31ccd39dc3b8cb8ed74515fa340360a1cae442533bb1c2fa8f7c5519e0ea778b

  • SHA512

    9c93817fb13d8ba77cfee124db855b6274b1189e98ea7419b46df572fb8f557055af9f1779efa7104f69b140845d08fde3156c0be22faba77c2e75c64e1d5520

  • SSDEEP

    1536:BTwLgK8UieD7sKXWEw0IYt8b/FlIoD5Kxuca+5SMBpeW98CYLb528a:Sj8xefsc8ct0Dr9AeW9DObHa

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.725fcdfe60c25f30008d211017f1ebd0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1244

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    3bbde9745850d26259e7524b42aa6e0a

    SHA1

    fe0ec2228dfa99ff5ab11cc122b2e59008adf75d

    SHA256

    8f1ff167c2cd08b42e584d49c8ed87739222a1d8d9927535b08261d9a52d993b

    SHA512

    8cf06252f5af4239973218dba7f84e707c79efc0f636ad62c63d7e5c8dbd94c6cba9005df377ff1bf6573e008571d077d17af8be901002196451302ce7f42aeb