Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    172s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231025-en
  • resource tags

    arch:x64arch:x86image:win7-20231025-enlocale:en-usos:windows7-x64system
  • submitted
    03/11/2023, 10:37

General

  • Target

    NEAS.00b787d040caeeaee44f27d1baf274a0.pdf

  • Size

    50KB

  • MD5

    00b787d040caeeaee44f27d1baf274a0

  • SHA1

    488c81487cb754ac456a1c17eb3e3ad07b80df65

  • SHA256

    f3c54538a1b378576f6f6a2cea28809023bc1d57e3fce3062b9fec1ff2d1035b

  • SHA512

    9127d6cd84ec127c118011b12d150e88ad5bd67533ee3ab79c8e5214550521cd60ba41aa91b2e03513308ee286030e4a5d0826d463bfcf86e822563fb49efacc

  • SSDEEP

    768:V3/J31pq34hCvUc3wj9G21HBPCdZ6CHmX57S89koxZB8a3eH/VygKXevVpeQKndC:LJvnOmXRSJoROyhCVen8S2SFYLpgM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.00b787d040caeeaee44f27d1baf274a0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1748

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    33b0764b1fa2b3d3bfc2377ca4c1c575

    SHA1

    126ce8526f75c1352978f1bbea4d8d0c45e52ee3

    SHA256

    a3be9f92b57eab5fab01eca76735f196b2873b109a2684ebafec26986b1790c8

    SHA512

    0c95fd6e787c37d87c93e7399a3ea339bc87fcdf832e0d836d1f2f2b9aa4c133785ea1ac5d09c61376b33aac81dd81545869cd28374afa0f00dd2749a7961d12