Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

wintaylor2...32.dll

windows7-x64

1

wintaylor2...32.dll

windows10-2004-x64

1

wintaylor2...it.exe

windows7-x64

7

wintaylor2...it.exe

windows10-2004-x64

7

wintaylor2...LL.dll

windows7-x64

3

wintaylor2...LL.dll

windows10-2004-x64

3

wintaylor2...er.exe

windows7-x64

1

wintaylor2...er.exe

windows10-2004-x64

1

wintaylor2...er.dll

windows7-x64

6

wintaylor2...er.dll

windows10-2004-x64

6

wintaylor2...te.dll

windows7-x64

1

wintaylor2...te.dll

windows10-2004-x64

1

wintaylor2...32.dll

windows7-x64

3

wintaylor2...32.dll

windows10-2004-x64

3

wintaylor2...pt.dll

windows7-x64

1

wintaylor2...pt.dll

windows10-2004-x64

1

wintaylor2...39.dll

windows7-x64

3

wintaylor2...39.dll

windows10-2004-x64

3

wintaylor2...39.dll

windows7-x64

3

wintaylor2...39.dll

windows10-2004-x64

3

wintaylor2...39.dll

windows7-x64

3

wintaylor2...39.dll

windows10-2004-x64

3

wintaylor2...39.dll

windows7-x64

1

wintaylor2...39.dll

windows10-2004-x64

1

wintaylor2...39.dll

windows7-x64

3

wintaylor2...39.dll

windows10-2004-x64

3

wintaylor2...ge.dll

windows7-x64

3

wintaylor2...ge.dll

windows10-2004-x64

3

wintaylor2...de.pdf

windows7-x64

1

wintaylor2...de.pdf

windows10-2004-x64

1

wintaylor2...40.dll

windows7-x64

1

wintaylor2...40.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    156s
  • max time network
    154s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 14:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    wintaylor2.1/Programs/Imager/help/enu/ImagerUsersGuide.pdf

  • Size

    497KB

  • MD5

    2aab2678fdc4277aed6def001bd1dd9f

  • SHA1

    e6539b55f1c1346948f44029d8941457e79c192e

  • SHA256

    b8d9f9872828db6aca5b5957007615a5a1a6d32e957ce2d283a7f27b6a0596f1

  • SHA512

    a19a74a212609a16286b6068a930d414774a69c89642eea1df028fd053a50bf2578f141c8440d3e32f4d7205bbbd7611aa577ccffd01d8993dd23c2416272b80

  • SSDEEP

    6144:SOGCx/Kb41ag7yWAW4bPOPg2izBJgDuzivkB5+OpQTa6PzKPhARStAv5:1dOy0WAHPM5izBwAh5lQTR2hA0KB

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\wintaylor2.1\Programs\Imager\help\enu\ImagerUsersGuide.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2724

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    324ed677766a47f8efc0099cac66187b

    SHA1

    d5a4766ba003c95ef84ad923d7b34c9e547f459e

    SHA256

    57943ea9e92c8c04d7317519bc25c76fb84a786dda39463f93ccb6429554da89

    SHA512

    9e6a663fcba7454db1a3826a4cb58e86cfe51936fa00d01ece95882d0934c6b4b1400483b1f524b2a9ebf50d8b35e2c6f6af5da455a34575494944918b99f7f3

    Download Submit