Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

NEAS.ee4c8...JC.pdf

windows7-x64

1

NEAS.ee4c8...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    172s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    03/11/2023, 00:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.ee4c873061366000ef6f39c3c8c5a310_JC.pdf

  • Size

    84KB

  • MD5

    ee4c873061366000ef6f39c3c8c5a310

  • SHA1

    9bd6d7acc1f2f18beb73b1f017fabccf4dc0f46e

  • SHA256

    9df43b4f9ed2e657293e304a71e291a6741f3215b412352490b0f5d27454378e

  • SHA512

    75cca4618d30aca7939551512052252030dbb1a850561633d870288eff921101c3f33002d99dac6b439b944c8578132cec47bc38faba17581f9a2d4f4238fdb2

  • SSDEEP

    1536:QoTFNzb30cP06Y0TvCYSqlAtNN0WQXGH39S1FYWspO25jy8R:9TTf3FP06Yav9At7EXGY1Fz2hZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.ee4c873061366000ef6f39c3c8c5a310_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1984

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c2969398adda1cc6a89b163ed0119143

    SHA1

    d87e05303337f5ee1d0f48070698337a96ecd8ea

    SHA256

    60cc11f6a4e3686d9cbd5e33ddc329c1a8bfa2249d32538555445307eabaf210

    SHA512

    5575aca098a351bef0fd32948ecc3e69658f2db888e3ec320e47111867be5e2fbf8c235dcaa001b1afdabc16d621ff57dfc4542ecd32ba3accb85f9c75f4ed6e

    Download Submit